Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Google redirect virus


  • Please log in to reply
31 replies to this topic

#1 watsford

watsford

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Local time:01:41 PM

Posted 25 September 2012 - 04:14 PM

Good afternoon everyone. Direct and to the point, my manager's pc got nailed with the "google redirect virus" and I am having a hell of a time trying to get rid of it. You guys are the best and I know you can help me out.

I have downloaded kaspersky tdsskiller & fixtdss, but I cannot get either one to run. I've renamed them, transfered from clean pc, nothing seems to work. After reading some other forums of the same problem (which I know isn't always the best thing to do), I downloaded rkill.scr and ran that, but still nothing.

I have scanned with: malwarebytes (which did find & remove a few things), superantispyware (which also found a good amount of things, mainly just tracking cookies), microsoft security essentials (found nothing) and Eset online scanner (found nothing).

pc is running windows 7 home premium x64 service pack 1. Let me know if there is anything else I can provide.

Thanks a mill in advance!!

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:02:41 PM

Posted 25 September 2012 - 04:16 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here.If you get crashes in normal mode,run it in safemode with networking

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 watsford

watsford
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Local time:01:41 PM

Posted 25 September 2012 - 04:22 PM

Thanks for the quick response Forum Addict, really appreciate it! I'm going to get a jump on the steps and post back when finished.

#4 watsford

watsford
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Local time:01:41 PM

Posted 25 September 2012 - 04:36 PM

So far TDSSkiller will not open and neither will aswMBR. Both downloaded, but will not run. Not in normal mode or safe mode. Running eset scan now and will post back with log.

#5 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:02:41 PM

Posted 25 September 2012 - 04:40 PM

Download Listparts from here

For 64 bit

List parts 64

Launch it,click on SCAN,post the log

#6 suzyqteu

suzyqteu

  • Members
  • 1 posts
  • OFFLINE
  •  
  • Local time:12:41 PM

Posted 25 September 2012 - 04:50 PM

I am sure I also have the Google redirect or hyjack virus. I think I have had it on and off ever since I had that SMART virus. Which, thanks to you I was able to remove. I am running Windows XP Professional. Thank you for any help you may give

#7 watsford

watsford
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Local time:01:41 PM

Posted 25 September 2012 - 05:17 PM

Here's the log from the eset scan:

C:\Users\Sales Manager\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\39\7006eae7-38d46311 Win32/TrojanDownloader.Prodatect.BL trojan cleaned by deleting - quarantined

Should I check "delete quarantined files before finishing?

Thanks again for your help narenxp!

#8 watsford

watsford
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Local time:01:41 PM

Posted 25 September 2012 - 05:29 PM

Listparts scan:

ListParts by Farbar Version: 25-09-2012
Ran by Sales Manager (administrator) on 25-09-2012 at 17:26:32
Windows 7 (X64)
Running From: C:\Users\Sales Manager\Desktop
Language: 0409
************************************************************

========================= Memory info ======================

Percentage of memory in use: 26%
Total physical RAM: 4085.18 MB
Available physical RAM: 2998.76 MB
Total Pagefile: 8168.55 MB
Available Pagefile: 7325.86 MB
Total Virtual: 8192 MB
Available Virtual: 8191.9 MB

======================= Partitions =========================

1 Drive c: (HP) (Fixed) (Total:584.25 GB) (Free:544.11 GB) NTFS
2 Drive d: (FACTORY_IMAGE) (Fixed) (Total:11.81 GB) (Free:2.14 GB) NTFS ==>[System with boot components (obtained from reading drive)]

Disk ### Status Size Free Dyn Gpt
-------- ------------- ------- ------- --- ---
Disk 0 Online 596 GB 0 B
Disk 1 No Media 0 B 0 B
Disk 2 No Media 0 B 0 B

Partitions of Disk 0:
===============

Partition ### Type Size Offset
------------- ---------------- ------- -------
Partition 1 Primary 100 MB 1024 KB
Partition 2 Primary 584 GB 101 MB
Partition 3 Primary 11 GB 584 GB
Partition 4 Primary 10 MB 596 GB

======================================================================================================

Disk: 0
Partition 1
Type : 07
Hidden: No
Active: No

Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 1 SYSTEM NTFS Partition 100 MB Healthy System (partition with boot components)

======================================================================================================

Disk: 0
Partition 2
Type : 07
Hidden: No
Active: No

Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 2 C HP NTFS Partition 584 GB Healthy Boot

======================================================================================================

Disk: 0
Partition 3
Type : 07
Hidden: No
Active: No

Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 3 D FACTORY_IMA NTFS Partition 11 GB Healthy

======================================================================================================

Disk: 0
Partition 4
Type : 17 (Suspicious Type)
Hidden: Yes
Active: Yes

There is no volume associated with this partition.

======================================================================================================
The boot configuration data store could not be opened.
The system cannot find the file specified.


****** End Of Log ******

#9 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:02:41 PM

Posted 25 September 2012 - 05:43 PM

Restart the PC

Press F8 on bootup

Select REPAIR YOUR COMPUTER

Click on REPAIR

On the System Recovery Options menu you will get the following options:

Startup Repair
System Restore
Windows Complete PC Restore
Windows Memory Diagnostic Tool
Command Prompt

Can you get to this screen?

If yes

Select command prompt and run these commands

diskpart
select disk 0
select partition 1
active


Now restart the PC and run TDSSkiller again

#10 watsford

watsford
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Local time:01:41 PM

Posted 25 September 2012 - 05:57 PM

After selecting REPAIR YOUR COMPUTER, screen went black and has been like that for about 10 minutes. Does it usually take this long for the next screen to come up?

#11 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:02:41 PM

Posted 25 September 2012 - 06:09 PM

Insert your windows 7 DVD and follow the instructions

#12 watsford

watsford
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Local time:01:41 PM

Posted 25 September 2012 - 06:37 PM

Well... unfortunately I cannot find the dvd, is there any other way to go about it?

#13 watsford

watsford
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Local time:01:41 PM

Posted 25 September 2012 - 06:43 PM

Can I do anything through hp's recovery manager?

#14 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:02:41 PM

Posted 25 September 2012 - 06:43 PM

Create a system repair disc using this guide

http://www.howtogeek.com/howto/5409/create-a-system-repair-disc-in-windows-7/

and follow my previous instructions

#15 watsford

watsford
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Local time:01:41 PM

Posted 25 September 2012 - 07:17 PM

TDSSkiller results:

19:02:18.0407 1548 TDSS rootkit removing tool 2.8.10.0 Sep 17 2012 19:23:24
19:02:18.0890 1548 ============================================================
19:02:18.0890 1548 Current date / time: 2012/09/25 19:02:18.0890
19:02:18.0890 1548 SystemInfo:
19:02:18.0890 1548
19:02:18.0890 1548 OS Version: 6.1.7601 ServicePack: 1.0
19:02:18.0890 1548 Product type: Workstation
19:02:18.0890 1548 ComputerName: SALESMANAGER-PC
19:02:18.0890 1548 UserName: Sales Manager
19:02:18.0890 1548 Windows directory: C:\Windows
19:02:18.0890 1548 System windows directory: C:\Windows
19:02:18.0890 1548 Running under WOW64
19:02:18.0890 1548 Processor architecture: Intel x64
19:02:18.0890 1548 Number of processors: 2
19:02:18.0890 1548 Page size: 0x1000
19:02:18.0890 1548 Boot type: Normal boot
19:02:18.0890 1548 ============================================================
19:02:19.0951 1548 Drive \Device\Harddisk0\DR0 - Size: 0x950B056000 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x14301, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000040
19:02:19.0967 1548 ============================================================
19:02:19.0967 1548 \Device\Harddisk0\DR0:
19:02:19.0967 1548 MBR partitions:
19:02:19.0967 1548 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
19:02:19.0967 1548 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x4907E800
19:02:19.0967 1548 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x490B1000, BlocksNum 0x179FAB0
19:02:19.0967 1548 ============================================================
19:02:19.0982 1548 C: <-> \Device\Harddisk0\DR0\Partition2
19:02:20.0045 1548 D: <-> \Device\Harddisk0\DR0\Partition3
19:02:20.0045 1548 ============================================================
19:02:20.0045 1548 Initialize success
19:02:20.0045 1548 ============================================================
19:03:06.0923 3240 ============================================================
19:03:06.0923 3240 Scan started
19:03:06.0923 3240 Mode: Manual; TDLFS;
19:03:06.0923 3240 ============================================================
19:03:08.0311 3240 ================ Scan system memory ========================
19:03:08.0311 3240 System memory - ok
19:03:08.0311 3240 ================ Scan services =============================
19:03:08.0389 3240 [ 581D88B25C4D4121824FED2CA38E562F ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
19:03:08.0389 3240 !SASCORE - ok
19:03:08.0529 3240 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
19:03:08.0529 3240 1394ohci - ok
19:03:08.0607 3240 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
19:03:08.0607 3240 ACPI - ok
19:03:08.0654 3240 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
19:03:08.0654 3240 AcpiPmi - ok
19:03:08.0795 3240 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
19:03:08.0795 3240 AdobeARMservice - ok
19:03:08.0904 3240 [ B2B64AF436FACCFA854DD397027C5360 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
19:03:08.0904 3240 AdobeFlashPlayerUpdateSvc - ok
19:03:08.0951 3240 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
19:03:08.0966 3240 adp94xx - ok
19:03:09.0013 3240 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
19:03:09.0013 3240 adpahci - ok
19:03:09.0044 3240 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
19:03:09.0044 3240 adpu320 - ok
19:03:09.0122 3240 [ BB6F577A7BB95B5CD3A7BBECB104C100 ] AE3000 C:\Windows\system32\DRIVERS\AE3000w764.sys
19:03:09.0153 3240 AE3000 - ok
19:03:09.0169 3240 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
19:03:09.0185 3240 AeLookupSvc - ok
19:03:09.0247 3240 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
19:03:09.0247 3240 AFD - ok
19:03:09.0341 3240 [ 48008D4EA73C1058F36D323A644410D4 ] AgereModemAudio C:\Program Files\LSI SoftModem\agr64svc.exe
19:03:09.0341 3240 AgereModemAudio - ok
19:03:09.0403 3240 [ DDF52C4C92D831A4CDB7788B37585E36 ] AgereSoftModem C:\Windows\system32\DRIVERS\agrsm64.sys
19:03:09.0434 3240 AgereSoftModem - ok
19:03:09.0497 3240 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
19:03:09.0497 3240 agp440 - ok
19:03:09.0512 3240 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
19:03:09.0512 3240 ALG - ok
19:03:09.0528 3240 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
19:03:09.0528 3240 aliide - ok
19:03:09.0543 3240 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
19:03:09.0543 3240 amdide - ok
19:03:09.0559 3240 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
19:03:09.0559 3240 AmdK8 - ok
19:03:09.0575 3240 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
19:03:09.0575 3240 AmdPPM - ok
19:03:09.0621 3240 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
19:03:09.0621 3240 amdsata - ok
19:03:09.0637 3240 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
19:03:09.0637 3240 amdsbs - ok
19:03:09.0653 3240 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
19:03:09.0653 3240 amdxata - ok
19:03:09.0715 3240 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
19:03:09.0731 3240 AppID - ok
19:03:09.0762 3240 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
19:03:09.0762 3240 AppIDSvc - ok
19:03:09.0793 3240 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
19:03:09.0793 3240 Appinfo - ok
19:03:09.0824 3240 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
19:03:09.0824 3240 arc - ok
19:03:09.0824 3240 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
19:03:09.0840 3240 arcsas - ok
19:03:09.0855 3240 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
19:03:09.0855 3240 AsyncMac - ok
19:03:09.0871 3240 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
19:03:09.0871 3240 atapi - ok
19:03:09.0933 3240 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
19:03:09.0949 3240 AudioEndpointBuilder - ok
19:03:09.0949 3240 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
19:03:09.0965 3240 AudioSrv - ok
19:03:10.0011 3240 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
19:03:10.0011 3240 AxInstSV - ok
19:03:10.0027 3240 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
19:03:10.0043 3240 b06bdrv - ok
19:03:10.0074 3240 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
19:03:10.0074 3240 b57nd60a - ok
19:03:10.0089 3240 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
19:03:10.0089 3240 BDESVC - ok
19:03:10.0105 3240 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
19:03:10.0105 3240 Beep - ok
19:03:10.0183 3240 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
19:03:10.0199 3240 BFE - ok
19:03:10.0277 3240 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\system32\qmgr.dll
19:03:10.0308 3240 BITS - ok
19:03:10.0323 3240 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
19:03:10.0323 3240 blbdrive - ok
19:03:10.0370 3240 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
19:03:10.0370 3240 bowser - ok
19:03:10.0386 3240 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
19:03:10.0386 3240 BrFiltLo - ok
19:03:10.0386 3240 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
19:03:10.0386 3240 BrFiltUp - ok
19:03:10.0417 3240 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
19:03:10.0417 3240 BridgeMP - ok
19:03:10.0464 3240 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
19:03:10.0464 3240 Browser - ok
19:03:10.0479 3240 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
19:03:10.0479 3240 Brserid - ok
19:03:10.0479 3240 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
19:03:10.0495 3240 BrSerWdm - ok
19:03:10.0495 3240 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
19:03:10.0495 3240 BrUsbMdm - ok
19:03:10.0495 3240 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
19:03:10.0495 3240 BrUsbSer - ok
19:03:10.0511 3240 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
19:03:10.0511 3240 BTHMODEM - ok
19:03:10.0526 3240 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
19:03:10.0526 3240 bthserv - ok
19:03:10.0573 3240 catchme - ok
19:03:10.0589 3240 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
19:03:10.0589 3240 cdfs - ok
19:03:10.0635 3240 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\drivers\cdrom.sys
19:03:10.0635 3240 cdrom - ok
19:03:10.0682 3240 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
19:03:10.0682 3240 CertPropSvc - ok
19:03:10.0698 3240 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
19:03:10.0698 3240 circlass - ok
19:03:10.0729 3240 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
19:03:10.0729 3240 CLFS - ok
19:03:10.0791 3240 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:03:10.0791 3240 clr_optimization_v2.0.50727_32 - ok
19:03:10.0838 3240 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
19:03:10.0854 3240 clr_optimization_v2.0.50727_64 - ok
19:03:10.0854 3240 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
19:03:10.0854 3240 CmBatt - ok
19:03:10.0885 3240 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
19:03:10.0885 3240 cmdide - ok
19:03:10.0947 3240 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
19:03:10.0963 3240 CNG - ok
19:03:10.0979 3240 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
19:03:10.0979 3240 Compbatt - ok
19:03:10.0994 3240 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
19:03:10.0994 3240 CompositeBus - ok
19:03:11.0010 3240 COMSysApp - ok
19:03:11.0025 3240 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
19:03:11.0025 3240 crcdisk - ok
19:03:11.0072 3240 [ 4F5414602E2544A4554D95517948B705 ] CryptSvc C:\Windows\system32\cryptsvc.dll
19:03:11.0088 3240 CryptSvc - ok
19:03:11.0135 3240 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
19:03:11.0150 3240 DcomLaunch - ok
19:03:11.0181 3240 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
19:03:11.0181 3240 defragsvc - ok
19:03:11.0244 3240 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
19:03:11.0244 3240 DfsC - ok
19:03:11.0306 3240 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
19:03:11.0306 3240 Dhcp - ok
19:03:11.0322 3240 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
19:03:11.0322 3240 discache - ok
19:03:11.0337 3240 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
19:03:11.0337 3240 Disk - ok
19:03:11.0400 3240 [ 599864BDC6D2D769E5FF53E960C6B3BD ] DNE C:\Windows\system32\DRIVERS\dnelwf64.sys
19:03:11.0415 3240 DNE - ok
19:03:11.0462 3240 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
19:03:11.0462 3240 Dnscache - ok
19:03:11.0525 3240 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
19:03:11.0540 3240 dot3svc - ok
19:03:11.0587 3240 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
19:03:11.0587 3240 DPS - ok
19:03:11.0603 3240 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
19:03:11.0603 3240 drmkaud - ok
19:03:11.0681 3240 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
19:03:11.0681 3240 DXGKrnl - ok
19:03:11.0696 3240 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
19:03:11.0712 3240 EapHost - ok
19:03:11.0805 3240 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
19:03:11.0868 3240 ebdrv - ok
19:03:11.0930 3240 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
19:03:11.0930 3240 EFS - ok
19:03:11.0977 3240 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
19:03:12.0008 3240 ehRecvr - ok
19:03:12.0039 3240 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
19:03:12.0039 3240 ehSched - ok
19:03:12.0071 3240 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
19:03:12.0086 3240 elxstor - ok
19:03:12.0102 3240 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
19:03:12.0102 3240 ErrDev - ok
19:03:12.0149 3240 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
19:03:12.0164 3240 EventSystem - ok
19:03:12.0164 3240 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
19:03:12.0180 3240 exfat - ok
19:03:12.0195 3240 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
19:03:12.0195 3240 fastfat - ok
19:03:12.0273 3240 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
19:03:12.0289 3240 Fax - ok
19:03:12.0289 3240 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
19:03:12.0289 3240 fdc - ok
19:03:12.0320 3240 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
19:03:12.0320 3240 fdPHost - ok
19:03:12.0320 3240 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
19:03:12.0336 3240 FDResPub - ok
19:03:12.0336 3240 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
19:03:12.0336 3240 FileInfo - ok
19:03:12.0351 3240 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
19:03:12.0351 3240 Filetrace - ok
19:03:12.0367 3240 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
19:03:12.0383 3240 flpydisk - ok
19:03:12.0414 3240 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
19:03:12.0414 3240 FltMgr - ok
19:03:12.0476 3240 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
19:03:12.0508 3240 FontCache - ok
19:03:12.0554 3240 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
19:03:12.0570 3240 FontCache3.0.0.0 - ok
19:03:12.0570 3240 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
19:03:12.0570 3240 FsDepends - ok
19:03:12.0617 3240 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
19:03:12.0617 3240 Fs_Rec - ok
19:03:12.0679 3240 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
19:03:12.0695 3240 fvevol - ok
19:03:12.0710 3240 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
19:03:12.0710 3240 gagp30kx - ok
19:03:12.0788 3240 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
19:03:12.0804 3240 gpsvc - ok
19:03:12.0882 3240 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
19:03:12.0882 3240 gupdate - ok
19:03:12.0913 3240 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
19:03:12.0913 3240 gupdatem - ok
19:03:12.0976 3240 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
19:03:12.0976 3240 gusvc - ok
19:03:12.0991 3240 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
19:03:12.0991 3240 hcw85cir - ok
19:03:13.0054 3240 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
19:03:13.0054 3240 HDAudBus - ok
19:03:13.0069 3240 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
19:03:13.0069 3240 HidBatt - ok
19:03:13.0085 3240 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
19:03:13.0085 3240 HidBth - ok
19:03:13.0100 3240 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
19:03:13.0100 3240 HidIr - ok
19:03:13.0132 3240 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll
19:03:13.0132 3240 hidserv - ok
19:03:13.0163 3240 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\drivers\hidusb.sys
19:03:13.0163 3240 HidUsb - ok
19:03:13.0225 3240 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
19:03:13.0225 3240 hkmsvc - ok
19:03:13.0288 3240 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
19:03:13.0288 3240 HomeGroupListener - ok
19:03:13.0366 3240 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
19:03:13.0381 3240 HomeGroupProvider - ok
19:03:13.0459 3240 [ 0141816A095A3F5A83FFA5B4A47B8023 ] HP Health Check Service C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
19:03:13.0459 3240 HP Health Check Service - ok
19:03:13.0537 3240 [ FDF273A845F1FFCCEADF363AAF47582F ] hpqwmiex C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
19:03:13.0553 3240 hpqwmiex - ok
19:03:13.0568 3240 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
19:03:13.0568 3240 HpSAMD - ok
19:03:13.0646 3240 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
19:03:13.0678 3240 HTTP - ok
19:03:13.0724 3240 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
19:03:13.0724 3240 hwpolicy - ok
19:03:13.0787 3240 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
19:03:13.0787 3240 i8042prt - ok
19:03:13.0818 3240 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
19:03:13.0834 3240 iaStorV - ok
19:03:13.0943 3240 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
19:03:13.0958 3240 idsvc - ok
19:03:14.0099 3240 [ 89B99E3E988DFA20ABB58FF1930ADD21 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
19:03:14.0208 3240 igfx - ok
19:03:14.0224 3240 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
19:03:14.0239 3240 iirsp - ok
19:03:14.0255 3240 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
19:03:14.0270 3240 IKEEXT - ok
19:03:14.0380 3240 [ BFBABCB231628A4551DBB10D0EA25D62 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
19:03:14.0395 3240 IntcAzAudAddService - ok
19:03:14.0411 3240 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
19:03:14.0411 3240 intelide - ok
19:03:14.0442 3240 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
19:03:14.0442 3240 intelppm - ok
19:03:14.0473 3240 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
19:03:14.0473 3240 IPBusEnum - ok
19:03:14.0520 3240 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
19:03:14.0520 3240 IpFilterDriver - ok
19:03:14.0567 3240 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
19:03:14.0582 3240 iphlpsvc - ok
19:03:14.0629 3240 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
19:03:14.0645 3240 IPMIDRV - ok
19:03:14.0660 3240 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
19:03:14.0676 3240 IPNAT - ok
19:03:14.0692 3240 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
19:03:14.0692 3240 IRENUM - ok
19:03:14.0707 3240 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
19:03:14.0707 3240 isapnp - ok
19:03:14.0770 3240 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
19:03:14.0785 3240 iScsiPrt - ok
19:03:14.0801 3240 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
19:03:14.0801 3240 kbdclass - ok
19:03:14.0816 3240 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
19:03:14.0816 3240 kbdhid - ok
19:03:14.0832 3240 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
19:03:14.0832 3240 KeyIso - ok
19:03:14.0894 3240 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
19:03:14.0894 3240 KSecDD - ok
19:03:14.0910 3240 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
19:03:14.0910 3240 KSecPkg - ok
19:03:14.0926 3240 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
19:03:14.0926 3240 ksthunk - ok
19:03:14.0957 3240 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
19:03:14.0957 3240 KtmRm - ok
19:03:14.0972 3240 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\System32\srvsvc.dll
19:03:14.0972 3240 LanmanServer - ok
19:03:15.0035 3240 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
19:03:15.0035 3240 LanmanWorkstation - ok
19:03:15.0144 3240 [ 108333981C841EB0FF198AA5DFCF3D3B ] LightScribeService c:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
19:03:15.0144 3240 LightScribeService - ok
19:03:15.0175 3240 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
19:03:15.0175 3240 lltdio - ok
19:03:15.0206 3240 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
19:03:15.0206 3240 lltdsvc - ok
19:03:15.0222 3240 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
19:03:15.0222 3240 lmhosts - ok
19:03:15.0253 3240 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
19:03:15.0269 3240 LSI_FC - ok
19:03:15.0284 3240 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
19:03:15.0284 3240 LSI_SAS - ok
19:03:15.0300 3240 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
19:03:15.0316 3240 LSI_SAS2 - ok
19:03:15.0331 3240 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
19:03:15.0331 3240 LSI_SCSI - ok
19:03:15.0362 3240 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
19:03:15.0362 3240 luafv - ok
19:03:15.0409 3240 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
19:03:15.0425 3240 Mcx2Svc - ok
19:03:15.0440 3240 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
19:03:15.0440 3240 megasas - ok
19:03:15.0456 3240 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
19:03:15.0456 3240 MegaSR - ok
19:03:15.0472 3240 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
19:03:15.0487 3240 MMCSS - ok
19:03:15.0487 3240 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
19:03:15.0487 3240 Modem - ok
19:03:15.0503 3240 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
19:03:15.0503 3240 monitor - ok
19:03:15.0550 3240 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\drivers\mouclass.sys
19:03:15.0550 3240 mouclass - ok
19:03:15.0565 3240 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
19:03:15.0565 3240 mouhid - ok
19:03:15.0628 3240 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
19:03:15.0628 3240 mountmgr - ok
19:03:15.0706 3240 [ 94C66EDEDCDB6A126880472F9A704D8E ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
19:03:15.0721 3240 MpFilter - ok
19:03:15.0784 3240 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
19:03:15.0784 3240 mpio - ok
19:03:15.0799 3240 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
19:03:15.0799 3240 mpsdrv - ok
19:03:15.0862 3240 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
19:03:15.0893 3240 MpsSvc - ok
19:03:15.0955 3240 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
19:03:15.0955 3240 MRxDAV - ok
19:03:16.0002 3240 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
19:03:16.0018 3240 mrxsmb - ok
19:03:16.0064 3240 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
19:03:16.0064 3240 mrxsmb10 - ok
19:03:16.0096 3240 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
19:03:16.0096 3240 mrxsmb20 - ok
19:03:16.0127 3240 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
19:03:16.0127 3240 msahci - ok
19:03:16.0142 3240 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
19:03:16.0158 3240 msdsm - ok
19:03:16.0174 3240 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
19:03:16.0174 3240 MSDTC - ok
19:03:16.0205 3240 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
19:03:16.0205 3240 Msfs - ok
19:03:16.0220 3240 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
19:03:16.0220 3240 mshidkmdf - ok
19:03:16.0267 3240 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
19:03:16.0267 3240 msisadrv - ok
19:03:16.0298 3240 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
19:03:16.0314 3240 MSiSCSI - ok
19:03:16.0314 3240 msiserver - ok
19:03:16.0345 3240 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
19:03:16.0345 3240 MSKSSRV - ok
19:03:16.0423 3240 [ 59FAAF2C83C8169EA20F9E335E418907 ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
19:03:16.0423 3240 MsMpSvc - ok
19:03:16.0439 3240 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
19:03:16.0439 3240 MSPCLOCK - ok
19:03:16.0454 3240 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
19:03:16.0454 3240 MSPQM - ok
19:03:16.0486 3240 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
19:03:16.0501 3240 MsRPC - ok
19:03:16.0517 3240 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
19:03:16.0517 3240 mssmbios - ok
19:03:16.0517 3240 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
19:03:16.0532 3240 MSTEE - ok
19:03:16.0532 3240 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
19:03:16.0532 3240 MTConfig - ok
19:03:16.0564 3240 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
19:03:16.0564 3240 Mup - ok
19:03:16.0626 3240 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
19:03:16.0642 3240 napagent - ok
19:03:16.0673 3240 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
19:03:16.0673 3240 NativeWifiP - ok
19:03:16.0720 3240 [ 79B47FD40D9A817E932F9D26FAC0A81C ] NDIS C:\Windows\system32\drivers\ndis.sys
19:03:16.0735 3240 NDIS - ok
19:03:16.0782 3240 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
19:03:16.0782 3240 NdisCap - ok
19:03:16.0798 3240 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
19:03:16.0813 3240 NdisTapi - ok
19:03:16.0844 3240 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
19:03:16.0844 3240 Ndisuio - ok
19:03:16.0907 3240 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
19:03:16.0907 3240 NdisWan - ok
19:03:16.0954 3240 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
19:03:16.0969 3240 NDProxy - ok
19:03:17.0000 3240 [ 2334DC48997BA203B794DF3EE70521DB ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
19:03:17.0000 3240 Net Driver HPZ12 - ok
19:03:17.0016 3240 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
19:03:17.0016 3240 NetBIOS - ok
19:03:17.0078 3240 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
19:03:17.0078 3240 NetBT - ok
19:03:17.0094 3240 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
19:03:17.0094 3240 Netlogon - ok
19:03:17.0125 3240 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
19:03:17.0141 3240 Netman - ok
19:03:17.0172 3240 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
19:03:17.0188 3240 netprofm - ok
19:03:17.0219 3240 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
19:03:17.0219 3240 NetTcpPortSharing - ok
19:03:17.0234 3240 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
19:03:17.0234 3240 nfrd960 - ok
19:03:17.0312 3240 [ 91B4E0273D2F6C24EF845F2B41311289 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
19:03:17.0312 3240 NisDrv - ok
19:03:17.0359 3240 [ 10A43829A9E606AF3EEF25A1C1665923 ] NisSrv c:\Program Files\Microsoft Security Client\NisSrv.exe
19:03:17.0375 3240 NisSrv - ok
19:03:17.0453 3240 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
19:03:17.0468 3240 NlaSvc - ok
19:03:17.0484 3240 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
19:03:17.0484 3240 Npfs - ok
19:03:17.0515 3240 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
19:03:17.0515 3240 nsi - ok
19:03:17.0531 3240 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
19:03:17.0531 3240 nsiproxy - ok
19:03:17.0609 3240 [ A2F74975097F52A00745F9637451FDD8 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
19:03:17.0640 3240 Ntfs - ok
19:03:17.0656 3240 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
19:03:17.0656 3240 Null - ok
19:03:17.0671 3240 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
19:03:17.0671 3240 nvraid - ok
19:03:17.0734 3240 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
19:03:17.0734 3240 nvstor - ok
19:03:17.0749 3240 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
19:03:17.0765 3240 nv_agp - ok
19:03:17.0812 3240 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
19:03:17.0827 3240 ohci1394 - ok
19:03:17.0843 3240 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
19:03:17.0858 3240 p2pimsvc - ok
19:03:17.0874 3240 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
19:03:17.0890 3240 p2psvc - ok
19:03:17.0905 3240 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
19:03:17.0905 3240 Parport - ok
19:03:17.0952 3240 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
19:03:17.0952 3240 partmgr - ok
19:03:17.0968 3240 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
19:03:17.0968 3240 PcaSvc - ok
19:03:17.0999 3240 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
19:03:17.0999 3240 pci - ok
19:03:17.0999 3240 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
19:03:18.0014 3240 pciide - ok
19:03:18.0030 3240 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
19:03:18.0030 3240 pcmcia - ok
19:03:18.0046 3240 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
19:03:18.0046 3240 pcw - ok
19:03:18.0061 3240 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
19:03:18.0077 3240 PEAUTH - ok
19:03:18.0124 3240 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
19:03:18.0139 3240 PerfHost - ok
19:03:18.0217 3240 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
19:03:18.0248 3240 pla - ok
19:03:18.0326 3240 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
19:03:18.0342 3240 PlugPlay - ok
19:03:18.0373 3240 [ AC78DF349F0E4CFB8B667C0CFFF83CCE ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
19:03:18.0373 3240 Pml Driver HPZ12 - ok
19:03:18.0389 3240 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
19:03:18.0389 3240 PNRPAutoReg - ok
19:03:18.0404 3240 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
19:03:18.0420 3240 PNRPsvc - ok
19:03:18.0436 3240 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
19:03:18.0467 3240 PolicyAgent - ok
19:03:18.0482 3240 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
19:03:18.0498 3240 Power - ok
19:03:18.0560 3240 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
19:03:18.0560 3240 PptpMiniport - ok
19:03:18.0592 3240 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
19:03:18.0592 3240 Processor - ok
19:03:18.0654 3240 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
19:03:18.0654 3240 ProfSvc - ok
19:03:18.0670 3240 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
19:03:18.0670 3240 ProtectedStorage - ok
19:03:18.0732 3240 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
19:03:18.0732 3240 Psched - ok
19:03:18.0794 3240 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
19:03:18.0841 3240 ql2300 - ok
19:03:18.0857 3240 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
19:03:18.0857 3240 ql40xx - ok
19:03:18.0872 3240 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
19:03:18.0888 3240 QWAVE - ok
19:03:18.0904 3240 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
19:03:18.0904 3240 QWAVEdrv - ok
19:03:18.0919 3240 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
19:03:18.0919 3240 RasAcd - ok
19:03:18.0950 3240 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
19:03:18.0950 3240 RasAgileVpn - ok
19:03:18.0966 3240 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
19:03:18.0966 3240 RasAuto - ok
19:03:19.0013 3240 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
19:03:19.0013 3240 Rasl2tp - ok
19:03:19.0075 3240 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
19:03:19.0091 3240 RasMan - ok
19:03:19.0122 3240 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
19:03:19.0122 3240 RasPppoe - ok
19:03:19.0138 3240 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
19:03:19.0138 3240 RasSstp - ok
19:03:19.0200 3240 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
19:03:19.0200 3240 rdbss - ok
19:03:19.0216 3240 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
19:03:19.0216 3240 rdpbus - ok
19:03:19.0231 3240 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
19:03:19.0231 3240 RDPCDD - ok
19:03:19.0247 3240 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
19:03:19.0247 3240 RDPENCDD - ok
19:03:19.0278 3240 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
19:03:19.0278 3240 RDPREFMP - ok
19:03:19.0325 3240 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
19:03:19.0340 3240 RDPWD - ok
19:03:19.0403 3240 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
19:03:19.0403 3240 rdyboost - ok
19:03:19.0434 3240 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
19:03:19.0434 3240 RemoteAccess - ok
19:03:19.0496 3240 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
19:03:19.0496 3240 RemoteRegistry - ok
19:03:19.0528 3240 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
19:03:19.0528 3240 RpcEptMapper - ok
19:03:19.0543 3240 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
19:03:19.0543 3240 RpcLocator - ok
19:03:19.0590 3240 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
19:03:19.0606 3240 RpcSs - ok
19:03:19.0606 3240 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
19:03:19.0621 3240 rspndr - ok
19:03:19.0652 3240 [ 91296F0B2653281B2F11E0FCE56AA427 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
19:03:19.0652 3240 RTL8167 - ok
19:03:19.0668 3240 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
19:03:19.0668 3240 SamSs - ok
19:03:19.0715 3240 [ 3289766038DB2CB14D07DC84392138D5 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
19:03:19.0715 3240 SASDIFSV - ok
19:03:19.0715 3240 [ 58A38E75F3316A83C23DF6173D41F2B5 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
19:03:19.0715 3240 SASKUTIL - ok
19:03:19.0793 3240 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
19:03:19.0793 3240 sbp2port - ok
19:03:19.0808 3240 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
19:03:19.0824 3240 SCardSvr - ok
19:03:19.0871 3240 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
19:03:19.0871 3240 scfilter - ok
19:03:19.0964 3240 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
19:03:19.0980 3240 Schedule - ok
19:03:20.0042 3240 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
19:03:20.0042 3240 SCPolicySvc - ok
19:03:20.0089 3240 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
19:03:20.0105 3240 SDRSVC - ok
19:03:20.0120 3240 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
19:03:20.0120 3240 secdrv - ok
19:03:20.0167 3240 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
19:03:20.0183 3240 seclogon - ok
19:03:20.0198 3240 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\system32\sens.dll
19:03:20.0198 3240 SENS - ok
19:03:20.0214 3240 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
19:03:20.0214 3240 SensrSvc - ok
19:03:20.0230 3240 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
19:03:20.0245 3240 Serenum - ok
19:03:20.0261 3240 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
19:03:20.0261 3240 Serial - ok
19:03:20.0292 3240 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
19:03:20.0292 3240 sermouse - ok
19:03:20.0339 3240 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
19:03:20.0339 3240 SessionEnv - ok
19:03:20.0386 3240 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
19:03:20.0386 3240 sffdisk - ok
19:03:20.0401 3240 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
19:03:20.0401 3240 sffp_mmc - ok
19:03:20.0417 3240 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
19:03:20.0417 3240 sffp_sd - ok
19:03:20.0432 3240 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
19:03:20.0432 3240 sfloppy - ok
19:03:20.0464 3240 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
19:03:20.0479 3240 SharedAccess - ok
19:03:20.0510 3240 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
19:03:20.0526 3240 ShellHWDetection - ok
19:03:20.0542 3240 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
19:03:20.0542 3240 SiSRaid2 - ok
19:03:20.0557 3240 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
19:03:20.0557 3240 SiSRaid4 - ok
19:03:20.0573 3240 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
19:03:20.0573 3240 Smb - ok
19:03:20.0588 3240 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
19:03:20.0588 3240 SNMPTRAP - ok
19:03:20.0620 3240 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
19:03:20.0620 3240 spldr - ok
19:03:20.0666 3240 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
19:03:20.0698 3240 Spooler - ok
19:03:20.0791 3240 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
19:03:20.0869 3240 sppsvc - ok
19:03:20.0885 3240 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
19:03:20.0900 3240 sppuinotify - ok
19:03:20.0963 3240 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
19:03:20.0978 3240 srv - ok
19:03:20.0994 3240 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
19:03:20.0994 3240 srv2 - ok
19:03:21.0010 3240 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
19:03:21.0010 3240 srvnet - ok
19:03:21.0041 3240 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
19:03:21.0041 3240 SSDPSRV - ok
19:03:21.0056 3240 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
19:03:21.0056 3240 SstpSvc - ok
19:03:21.0072 3240 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
19:03:21.0072 3240 stexstor - ok
19:03:21.0150 3240 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
19:03:21.0166 3240 stisvc - ok
19:03:21.0197 3240 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
19:03:21.0197 3240 swenum - ok
19:03:21.0322 3240 [ 18AA39F3229D033D83C40E2B86F86757 ] SWGVCSvc C:\Program Files\SonicWALL\SonicWALL Global VPN Client\SWGVCSvc.exe
19:03:21.0322 3240 SWGVCSvc - ok
19:03:21.0368 3240 [ 62EAC9FB03C327654608070FA78BA84D ] SWIPsec C:\Windows\system32\Drivers\SWIPsec.sys
19:03:21.0368 3240 SWIPsec - ok
19:03:21.0415 3240 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
19:03:21.0431 3240 swprv - ok
19:03:21.0493 3240 [ DCF11E08A8524B19EC47515C22BE492E ] SWVNIC C:\Windows\system32\DRIVERS\swvnic.sys
19:03:21.0493 3240 SWVNIC - ok
19:03:21.0602 3240 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
19:03:21.0634 3240 SysMain - ok
19:03:21.0680 3240 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
19:03:21.0696 3240 TabletInputService - ok
19:03:21.0743 3240 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
19:03:21.0758 3240 TapiSrv - ok
19:03:21.0790 3240 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
19:03:21.0805 3240 TBS - ok
19:03:21.0883 3240 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
19:03:21.0914 3240 Tcpip - ok
19:03:21.0961 3240 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
19:03:21.0977 3240 TCPIP6 - ok
19:03:22.0024 3240 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
19:03:22.0024 3240 tcpipreg - ok
19:03:22.0055 3240 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
19:03:22.0055 3240 TDPIPE - ok
19:03:22.0117 3240 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
19:03:22.0117 3240 TDTCP - ok
19:03:22.0164 3240 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
19:03:22.0164 3240 tdx - ok
19:03:22.0211 3240 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
19:03:22.0211 3240 TermDD - ok
19:03:22.0273 3240 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
19:03:22.0289 3240 TermService - ok
19:03:22.0304 3240 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
19:03:22.0304 3240 Themes - ok
19:03:22.0320 3240 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
19:03:22.0320 3240 THREADORDER - ok
19:03:22.0336 3240 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
19:03:22.0336 3240 TrkWks - ok
19:03:22.0398 3240 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
19:03:22.0398 3240 TrustedInstaller - ok
19:03:22.0460 3240 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
19:03:22.0460 3240 tssecsrv - ok
19:03:22.0523 3240 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
19:03:22.0523 3240 TsUsbFlt - ok
19:03:22.0585 3240 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
19:03:22.0585 3240 tunnel - ok
19:03:22.0601 3240 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
19:03:22.0601 3240 uagp35 - ok
19:03:22.0632 3240 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
19:03:22.0632 3240 udfs - ok
19:03:22.0663 3240 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
19:03:22.0663 3240 UI0Detect - ok
19:03:22.0679 3240 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
19:03:22.0679 3240 uliagpkx - ok
19:03:22.0741 3240 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
19:03:22.0741 3240 umbus - ok
19:03:22.0757 3240 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
19:03:22.0757 3240 UmPass - ok
19:03:22.0788 3240 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
19:03:22.0788 3240 upnphost - ok
19:03:22.0835 3240 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
19:03:22.0835 3240 usbccgp - ok
19:03:22.0897 3240 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
19:03:22.0897 3240 usbcir - ok
19:03:22.0913 3240 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
19:03:22.0913 3240 usbehci - ok
19:03:22.0928 3240 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
19:03:22.0928 3240 usbhub - ok
19:03:22.0944 3240 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
19:03:22.0944 3240 usbohci - ok
19:03:22.0975 3240 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
19:03:22.0975 3240 usbprint - ok
19:03:22.0991 3240 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\drivers\USBSTOR.SYS
19:03:22.0991 3240 USBSTOR - ok
19:03:22.0991 3240 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
19:03:22.0991 3240 usbuhci - ok
19:03:23.0022 3240 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
19:03:23.0022 3240 UxSms - ok
19:03:23.0038 3240 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
19:03:23.0038 3240 VaultSvc - ok
19:03:23.0038 3240 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
19:03:23.0038 3240 vdrvroot - ok
19:03:23.0100 3240 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
19:03:23.0116 3240 vds - ok
19:03:23.0147 3240 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
19:03:23.0147 3240 vga - ok
19:03:23.0162 3240 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
19:03:23.0162 3240 VgaSave - ok
19:03:23.0178 3240 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
19:03:23.0178 3240 vhdmp - ok
19:03:23.0225 3240 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
19:03:23.0225 3240 viaide - ok
19:03:23.0256 3240 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
19:03:23.0256 3240 volmgr - ok
19:03:23.0303 3240 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
19:03:23.0318 3240 volmgrx - ok
19:03:23.0350 3240 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
19:03:23.0350 3240 volsnap - ok
19:03:23.0365 3240 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
19:03:23.0365 3240 vsmraid - ok
19:03:23.0443 3240 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
19:03:23.0474 3240 VSS - ok
19:03:23.0490 3240 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
19:03:23.0490 3240 vwifibus - ok
19:03:23.0521 3240 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
19:03:23.0521 3240 vwififlt - ok
19:03:23.0552 3240 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
19:03:23.0552 3240 W32Time - ok
19:03:23.0568 3240 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
19:03:23.0568 3240 WacomPen - ok
19:03:23.0599 3240 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
19:03:23.0599 3240 WANARP - ok
19:03:23.0599 3240 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
19:03:23.0599 3240 Wanarpv6 - ok
19:03:23.0662 3240 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
19:03:23.0693 3240 WatAdminSvc - ok
19:03:23.0771 3240 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
19:03:23.0818 3240 wbengine - ok
19:03:23.0833 3240 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
19:03:23.0833 3240 WbioSrvc - ok
19:03:23.0896 3240 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
19:03:23.0911 3240 wcncsvc - ok
19:03:23.0927 3240 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
19:03:23.0927 3240 WcsPlugInService - ok
19:03:23.0942 3240 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
19:03:23.0942 3240 Wd - ok
19:03:23.0958 3240 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
19:03:23.0974 3240 Wdf01000 - ok
19:03:23.0989 3240 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
19:03:23.0989 3240 WdiServiceHost - ok
19:03:23.0989 3240 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
19:03:24.0005 3240 WdiSystemHost - ok
19:03:24.0052 3240 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
19:03:24.0067 3240 WebClient - ok
19:03:24.0083 3240 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
19:03:24.0098 3240 Wecsvc - ok
19:03:24.0114 3240 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
19:03:24.0114 3240 wercplsupport - ok
19:03:24.0130 3240 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
19:03:24.0130 3240 WerSvc - ok
19:03:24.0145 3240 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
19:03:24.0145 3240 WfpLwf - ok
19:03:24.0161 3240 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
19:03:24.0161 3240 WIMMount - ok
19:03:24.0192 3240 WinDefend - ok
19:03:24.0192 3240 WinHttpAutoProxySvc - ok
19:03:24.0254 3240 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
19:03:24.0254 3240 Winmgmt - ok
19:03:24.0332 3240 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
19:03:24.0379 3240 WinRM - ok
19:03:24.0410 3240 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
19:03:24.0426 3240 Wlansvc - ok
19:03:24.0488 3240 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
19:03:24.0488 3240 WmiAcpi - ok
19:03:24.0504 3240 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
19:03:24.0520 3240 wmiApSrv - ok
19:03:24.0535 3240 WMPNetworkSvc - ok
19:03:24.0551 3240 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
19:03:24.0551 3240 WPCSvc - ok
19:03:24.0598 3240 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
19:03:24.0598 3240 WPDBusEnum - ok
19:03:24.0613 3240 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
19:03:24.0613 3240 ws2ifsl - ok
19:03:24.0629 3240 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\system32\wscsvc.dll
19:03:24.0629 3240 wscsvc - ok
19:03:24.0644 3240 WSearch - ok
19:03:24.0738 3240 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
19:03:24.0800 3240 wuauserv - ok
19:03:24.0863 3240 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
19:03:24.0863 3240 WudfPf - ok
19:03:24.0878 3240 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
19:03:24.0878 3240 WUDFRd - ok
19:03:24.0941 3240 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
19:03:24.0941 3240 wudfsvc - ok
19:03:24.0956 3240 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
19:03:24.0972 3240 WwanSvc - ok
19:03:24.0988 3240 ================ Scan global ===============================
19:03:25.0019 3240 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
19:03:25.0050 3240 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
19:03:25.0066 3240 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
19:03:25.0097 3240 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
19:03:25.0128 3240 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
19:03:25.0128 3240 [Global] - ok
19:03:25.0128 3240 ================ Scan MBR ==================================
19:03:25.0144 3240 [ D8A52EE1AA79BECDEFE158CAD368052E ] \Device\Harddisk0\DR0
19:03:25.0424 3240 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
19:03:25.0424 3240 \Device\Harddisk0\DR0 - detected TDSS File System (1)
19:03:25.0424 3240 ================ Scan VBR ==================================
19:03:25.0424 3240 [ C8A668A74BAA2F6D92C888F5486BC2CD ] \Device\Harddisk0\DR0\Partition1
19:03:25.0440 3240 \Device\Harddisk0\DR0\Partition1 - ok
19:03:25.0487 3240 [ A4EB3A38DE73C6DE342108428CE50536 ] \Device\Harddisk0\DR0\Partition2
19:03:25.0487 3240 \Device\Harddisk0\DR0\Partition2 - ok
19:03:25.0518 3240 [ 4E7511A97510900CC7D29735529F87B0 ] \Device\Harddisk0\DR0\Partition3
19:03:25.0518 3240 \Device\Harddisk0\DR0\Partition3 - ok
19:03:25.0518 3240 ============================================================
19:03:25.0518 3240 Scan finished
19:03:25.0518 3240 ============================================================
19:03:25.0534 3232 Detected object count: 1
19:03:25.0534 3232 Actual detected object count: 1
19:04:20.0414 3232 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
19:04:20.0414 3232 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip
19:05:24.0406 1568 Deinitialize success

ASWMBR RESULTS:

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-09-25 19:05:42
-----------------------------
19:05:42.705 OS Version: Windows x64 6.1.7601 Service Pack 1
19:05:42.705 Number of processors: 2 586 0x170A
19:05:42.705 ComputerName: SALESMANAGER-PC UserName: Sales Manager
19:05:43.609 Initialize success
19:08:14.493 AVAST engine defs: 12092501
19:08:25.397 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
19:08:25.397 Disk 0 Vendor: WDC_WD6400AAKS-65A7B2 01.03B01 Size: 610480MB BusType: 3
19:08:25.413 Disk 0 MBR read successfully
19:08:25.413 Disk 0 MBR scan
19:08:25.428 Disk 0 unknown MBR code
19:08:25.444 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048
19:08:25.460 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 598269 MB offset 206848
19:08:25.491 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 12095 MB offset 1225461760
19:08:25.522 Disk 0 Partition 4 00 17 Hidd HPFS/NTFS NTFS 10 MB offset 1250234368
19:08:25.522 Disk 0 Partition 4 **INFECTED** MBR:SST [Rtk]
19:08:25.569 Disk 0 scanning C:\Windows\system32\drivers
19:08:35.147 Service scanning
19:08:54.351 Modules scanning
19:08:54.351 Disk 0 trace - called modules:
19:08:54.367 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys ataport.SYS intelide.sys PCIIDEX.SYS hal.dll atapi.sys
19:08:54.382 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa80048f1060]
19:08:54.398 3 CLASSPNP.SYS[fffff8800181743f] -> nt!IofCallDriver -> [0xfffffa8004446e40]
19:08:54.398 5 ACPI.sys[fffff88000f047a1] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0xfffffa80043d9060]
19:08:55.537 AVAST engine scan C:\Windows
19:08:58.360 AVAST engine scan C:\Windows\system32
19:11:04.471 AVAST engine scan C:\Windows\system32\drivers
19:11:15.625 AVAST engine scan C:\Users\Sales Manager
19:13:55.619 AVAST engine scan C:\ProgramData
19:14:29.486 Scan finished successfully
19:14:40.016 Disk 0 MBR has been saved successfully to "C:\Users\Sales Manager\Desktop\MBR.dat"
19:14:40.016 The log file has been saved successfully to "C:\Users\Sales Manager\Desktop\aswMBR.txt"




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users