Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Luhe.Sirefef.A & Trojan Dropper.Generic


  • Please log in to reply
28 replies to this topic

#1 kriist

kriist

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:02:02 PM

Posted 11 October 2012 - 06:43 AM

I have been struggling with my laptop all summer trying to clean/rid myself of these evil viruses. I was reading through some of the other posts but it seems like i might need to post my own computer info and get some expert advice. I am currently running windows 7 64 bit. I am receiving no error messages, however if I click on any links while on the web I am redirected more often than not. I wait anxiously for your response, thank you in advance.

Edited by kriist, 11 October 2012 - 06:46 AM.


BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:02 PM

Posted 11 October 2012 - 07:31 AM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here.If you get crashes in normal mode,run it in safemode with networking

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 kriist

kriist
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:02:02 PM

Posted 11 October 2012 - 09:05 AM

13:41:07.0971 4476 TDSS rootkit removing tool 2.8.10.0 Sep 17 2012 19:23:24
13:41:09.0973 4476 ============================================================
13:41:09.0973 4476 Current date / time: 2012/10/11 13:41:09.0973
13:41:09.0974 4476 SystemInfo:
13:41:09.0974 4476
13:41:09.0974 4476 OS Version: 6.1.7600 ServicePack: 0.0
13:41:09.0974 4476 Product type: Workstation
13:41:09.0974 4476 ComputerName: SAM
13:41:09.0974 4476 UserName: Kriist
13:41:09.0974 4476 Windows directory: C:\Windows
13:41:09.0974 4476 System windows directory: C:\Windows
13:41:09.0974 4476 Running under WOW64
13:41:09.0974 4476 Processor architecture: Intel x64
13:41:09.0974 4476 Number of processors: 8
13:41:09.0974 4476 Page size: 0x1000
13:41:09.0974 4476 Boot type: Normal boot
13:41:09.0974 4476 ============================================================
13:41:12.0468 4476 BG loaded
13:41:12.0853 4476 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
13:41:12.0907 4476 Drive \Device\Harddisk1\DR1 - Size: 0x3C1FFE00 (0.94 Gb), SectorSize: 0x200, Cylinders: 0x7A, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
13:41:12.0911 4476 ============================================================
13:41:12.0911 4476 \Device\Harddisk0\DR0:
13:41:12.0912 4476 MBR partitions:
13:41:12.0912 4476 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x139C5, BlocksNum 0x1D4C000
13:41:12.0912 4476 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1D5F9C5, BlocksNum 0x38625E6B
13:41:12.0912 4476 \Device\Harddisk1\DR1:
13:41:12.0912 4476 MBR partitions:
13:41:12.0912 4476 \Device\Harddisk1\DR1\Partition1: MBR, Type 0xE, StartLBA 0x8, BlocksNum 0x1E0FF7
13:41:12.0912 4476 ============================================================
13:41:13.0019 4476 C: <-> \Device\Harddisk0\DR0\Partition2
13:41:13.0043 4476 ============================================================
13:41:13.0043 4476 Initialize success
13:41:13.0043 4476 ============================================================
13:41:23.0566 2304 ============================================================
13:41:23.0566 2304 Scan started
13:41:23.0566 2304 Mode: Manual; TDLFS;
13:41:23.0566 2304 ============================================================
13:41:25.0049 2304 ================ Scan system memory ========================
13:41:25.0049 2304 System memory - ok
13:41:25.0049 2304 ================ Scan services =============================
13:41:25.0939 2304 [ 969C91060CBB5D17CB8440B5F78B4C51 ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
13:41:25.0945 2304 1394ohci - ok
13:41:26.0005 2304 [ E388503069001F0797EC200CE19B265E ] Acceler C:\Windows\system32\DRIVERS\Acceler.sys
13:41:26.0008 2304 Acceler - ok
13:41:26.0106 2304 [ 6F11E88748CDEFD2F76AA215F97DDFE5 ] ACPI C:\Windows\system32\DRIVERS\ACPI.sys
13:41:26.0114 2304 ACPI - ok
13:41:26.0151 2304 [ 63B05A0420CE4BF0E4AF6DCC7CADA254 ] AcpiPmi C:\Windows\system32\DRIVERS\acpipmi.sys
13:41:26.0153 2304 AcpiPmi - ok
13:41:27.0556 2304 [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
13:41:27.0562 2304 AdobeFlashPlayerUpdateSvc - ok
13:41:27.0739 2304 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
13:41:27.0749 2304 adp94xx - ok
13:41:27.0838 2304 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
13:41:27.0845 2304 adpahci - ok
13:41:27.0928 2304 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
13:41:27.0934 2304 adpu320 - ok
13:41:27.0975 2304 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
13:41:27.0977 2304 AeLookupSvc - ok
13:41:28.0430 2304 [ A6FB9DB8F1A86861D955FD6975977AE0 ] AESTFilters C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_056607ee0106e5e8\AESTSr64.exe
13:41:28.0432 2304 AESTFilters - ok
13:41:28.0635 2304 [ DB9D6C6B2CD95A9CA414D045B627422E ] AFD C:\Windows\system32\drivers\afd.sys
13:41:28.0644 2304 AFD - ok
13:41:29.0163 2304 [ B29BC445561F1AC7B1DAF67AF954C36B ] AffinegyService C:\Program Files (x86)\Belkin\Router Setup and Monitor\BelkinService.exe
13:41:29.0173 2304 AffinegyService - ok
13:41:29.0237 2304 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\DRIVERS\agp440.sys
13:41:29.0239 2304 agp440 - ok
13:41:29.0325 2304 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
13:41:29.0328 2304 ALG - ok
13:41:29.0635 2304 [ A99E57669390F265D25288C8BA042D78 ] AlienFusionService C:\Program Files\Alienware\Command Center\AlienFusionService.exe
13:41:29.0637 2304 AlienFusionService - ok
13:41:29.0732 2304 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\DRIVERS\aliide.sys
13:41:29.0733 2304 aliide - ok
13:41:29.0838 2304 [ 568C61DBDA2D9F1AFDAC58771E313AFE ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
13:41:29.0841 2304 AMD External Events Utility - ok
13:41:29.0956 2304 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\DRIVERS\amdide.sys
13:41:29.0958 2304 amdide - ok
13:41:30.0024 2304 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
13:41:30.0027 2304 AmdK8 - ok
13:41:30.0061 2304 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
13:41:30.0064 2304 AmdPPM - ok
13:41:30.0120 2304 [ EC7EBAB00A4D8448BAB68D1E49B4BEB9 ] amdsata C:\Windows\system32\drivers\amdsata.sys
13:41:30.0123 2304 amdsata - ok
13:41:30.0219 2304 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
13:41:30.0223 2304 amdsbs - ok
13:41:30.0279 2304 [ DB27766102C7BF7E95140A2AA81D042E ] amdxata C:\Windows\system32\drivers\amdxata.sys
13:41:30.0281 2304 amdxata - ok
13:41:30.0418 2304 [ 42FD751B27FA0E9C69BB39F39E409594 ] AppID C:\Windows\system32\drivers\appid.sys
13:41:30.0420 2304 AppID - ok
13:41:30.0501 2304 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
13:41:30.0504 2304 AppIDSvc - ok
13:41:30.0625 2304 [ D065BE66822847B7F127D1F90158376E ] Appinfo C:\Windows\System32\appinfo.dll
13:41:30.0628 2304 Appinfo - ok
13:41:30.0921 2304 [ 20F6F19FE9E753F2780DC2FA083AD597 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
13:41:30.0923 2304 Apple Mobile Device - ok
13:41:30.0991 2304 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
13:41:30.0994 2304 arc - ok
13:41:31.0039 2304 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
13:41:31.0043 2304 arcsas - ok
13:41:31.0067 2304 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
13:41:31.0069 2304 AsyncMac - ok
13:41:31.0180 2304 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\DRIVERS\atapi.sys
13:41:31.0209 2304 atapi - ok
13:41:31.0386 2304 [ D481083348138B4933ACFE95812DB71C ] AtiHdmiService C:\Windows\system32\drivers\AtiHdmi.sys
13:41:31.0389 2304 AtiHdmiService - ok
13:41:32.0649 2304 [ B579364CE413C6B8FCB8A594CC4C48EE ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
13:41:32.0768 2304 atikmdag - ok
13:41:33.0164 2304 [ DD1FB30E4AA31041B0BC6E5A9D34BCA8 ] atserv C:\Program Files\Bitdefender\Bitdefender Anti-Theft\atserv.exe
13:41:33.0200 2304 atserv - ok
13:41:33.0485 2304 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
13:41:33.0496 2304 AudioEndpointBuilder - ok
13:41:33.0514 2304 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioSrv C:\Windows\System32\Audiosrv.dll
13:41:33.0523 2304 AudioSrv - ok
13:41:34.0940 2304 [ 1D7D0D5D33D8B1507EC5FBFE332E5657 ] AVGIDSAgent C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe
13:41:35.0064 2304 AVGIDSAgent - ok
13:41:35.0211 2304 [ 5FD4D6C35738899905E16E5284981427 ] AVGIDSDriver C:\Windows\system32\DRIVERS\avgidsdrivera.sys
13:41:35.0215 2304 AVGIDSDriver - ok
13:41:35.0246 2304 [ 132251CBBB95062E12FF21E212EB8FB4 ] AVGIDSHA C:\Windows\system32\DRIVERS\avgidsha.sys
13:41:35.0249 2304 AVGIDSHA - ok
13:41:35.0305 2304 [ 996FCACE7A8EFD926C8BB2C70A40C83F ] Avgldx64 C:\Windows\system32\DRIVERS\avgldx64.sys
13:41:35.0309 2304 Avgldx64 - ok
13:41:35.0496 2304 [ 3E0E2D8CD63C58A37CF81704E83459DD ] Avgloga C:\Windows\system32\DRIVERS\avgloga.sys
13:41:35.0501 2304 Avgloga - ok
13:41:35.0543 2304 [ DC353C527816297BD11B13EA60C9BE75 ] Avgmfx64 C:\Windows\system32\DRIVERS\avgmfx64.sys
13:41:35.0547 2304 Avgmfx64 - ok
13:41:35.0630 2304 [ 639CBC2F67FB25F9AB31957D9BF5CF8F ] Avgrkx64 C:\Windows\system32\DRIVERS\avgrkx64.sys
13:41:35.0632 2304 Avgrkx64 - ok
13:41:35.0698 2304 [ 1917293728A872BF520952F69E024FE6 ] Avgtdia C:\Windows\system32\DRIVERS\avgtdia.sys
13:41:35.0701 2304 Avgtdia - ok
13:41:35.0748 2304 [ DE24B2CA078FC6A7EAA53B1DFD3F61CF ] avgtp C:\Windows\system32\drivers\avgtpx64.sys
13:41:35.0750 2304 avgtp - ok
13:41:35.0810 2304 [ 42F11F37CC06D9AB6528AF2E215B8799 ] avgwd C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
13:41:35.0813 2304 avgwd - ok
13:41:35.0988 2304 [ B20B5FA5CA050E9926E4D1DB81501B32 ] AxInstSV C:\Windows\System32\AxInstSV.dll
13:41:35.0990 2304 AxInstSV - ok
13:41:36.0169 2304 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
13:41:36.0179 2304 b06bdrv - ok
13:41:36.0334 2304 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
13:41:36.0340 2304 b57nd60a - ok
13:41:36.0397 2304 [ 5C0F919666954885D7760DFFE4B29A25 ] BCM42RLY C:\Windows\system32\drivers\BCM42RLY.sys
13:41:36.0399 2304 BCM42RLY - ok
13:41:37.0258 2304 [ BAB887A2B2786310A966881F074F4A99 ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl664.sys
13:41:37.0320 2304 BCM43XX - ok
13:41:37.0489 2304 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
13:41:37.0492 2304 BDESVC - ok
13:41:37.0611 2304 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
13:41:37.0613 2304 Beep - ok
13:41:37.0791 2304 [ 9BB84C554D7429F0A2CDF4EA1836F233 ] Belkin Local Backup Service C:\Program Files\Belkin\Belkin USB Print and Storage Center\BkBackupScheduler.exe
13:41:37.0795 2304 Belkin Local Backup Service - ok
13:41:37.0848 2304 [ E62A04D615A8CAC83601E1F07C010D3C ] Belkin Network USB Helper C:\Program Files\Belkin\Belkin USB Print and Storage Center\Bkapcs.exe
13:41:37.0850 2304 Belkin Network USB Helper - ok
13:41:37.0901 2304 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
13:41:37.0904 2304 blbdrive - ok
13:41:38.0048 2304 [ F832F1505AD8B83474BD9A5B1B985E01 ] Bonjour Service C:\Program Files (x86)\Bonjour\mDNSResponder.exe
13:41:38.0054 2304 Bonjour Service - ok
13:41:38.0118 2304 [ 19D20159708E152267E53B66677A4995 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
13:41:38.0122 2304 bowser - ok
13:41:38.0193 2304 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
13:41:38.0196 2304 BrFiltLo - ok
13:41:38.0242 2304 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
13:41:38.0244 2304 BrFiltUp - ok
13:41:38.0409 2304 [ 94FBC06F294D58D02361918418F996E3 ] Browser C:\Windows\System32\browser.dll
13:41:38.0413 2304 Browser - ok
13:41:38.0503 2304 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
13:41:38.0510 2304 Brserid - ok
13:41:38.0533 2304 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
13:41:38.0536 2304 BrSerWdm - ok
13:41:38.0576 2304 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
13:41:38.0579 2304 BrUsbMdm - ok
13:41:38.0593 2304 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
13:41:38.0594 2304 BrUsbSer - ok
13:41:38.0724 2304 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
13:41:38.0726 2304 BthEnum - ok
13:41:38.0771 2304 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
13:41:38.0774 2304 BTHMODEM - ok
13:41:38.0873 2304 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
13:41:38.0877 2304 BthPan - ok
13:41:39.0083 2304 [ 21084CEB85280468C9ACA3C805C0F8CF ] BTHPORT C:\Windows\system32\Drivers\BTHport.sys
13:41:39.0094 2304 BTHPORT - ok
13:41:39.0168 2304 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
13:41:39.0171 2304 bthserv - ok
13:41:39.0200 2304 [ 8504842634DD144C075B6B0C982CCEC4 ] BTHUSB C:\Windows\system32\Drivers\BTHUSB.sys
13:41:39.0204 2304 BTHUSB - ok
13:41:39.0300 2304 [ 6BCFDC2B5B7F66D484486D4BD4B39A6B ] btwaudio C:\Windows\system32\drivers\btwaudio.sys
13:41:39.0302 2304 btwaudio - ok
13:41:39.0472 2304 [ 82DC8B7C626E526681C1BEBED2BC3FF9 ] btwavdt C:\Windows\system32\DRIVERS\btwavdt.sys
13:41:39.0474 2304 btwavdt - ok
13:41:40.0040 2304 [ 6DDE1E97BE4D50253DFB9090A6A62524 ] btwdins c:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
13:41:40.0052 2304 btwdins - ok
13:41:40.0096 2304 [ 6149301DC3F81D6F9667A3FBAC410975 ] btwl2cap C:\Windows\system32\DRIVERS\btwl2cap.sys
13:41:40.0098 2304 btwl2cap - ok
13:41:40.0158 2304 [ 28E105AD3B79F440BF94780F507BF66A ] btwrchid C:\Windows\system32\DRIVERS\btwrchid.sys
13:41:40.0159 2304 btwrchid - ok
13:41:40.0285 2304 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
13:41:40.0288 2304 cdfs - ok
13:41:40.0414 2304 [ 83D2D75E1EFB81B3450C18131443F7DB ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
13:41:40.0418 2304 cdrom - ok
13:41:40.0546 2304 [ 312E2F82AF11E79906898AC3E3D58A1F ] CertPropSvc C:\Windows\System32\certprop.dll
13:41:40.0548 2304 CertPropSvc - ok
13:41:40.0706 2304 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
13:41:40.0708 2304 circlass - ok
13:41:40.0843 2304 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
13:41:40.0851 2304 CLFS - ok
13:41:41.0135 2304 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
13:41:41.0137 2304 clr_optimization_v2.0.50727_32 - ok
13:41:41.0409 2304 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
13:41:41.0412 2304 clr_optimization_v2.0.50727_64 - ok
13:41:41.0538 2304 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
13:41:41.0579 2304 clr_optimization_v4.0.30319_32 - ok
13:41:41.0690 2304 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
13:41:41.0695 2304 clr_optimization_v4.0.30319_64 - ok
13:41:41.0737 2304 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
13:41:41.0739 2304 CmBatt - ok
13:41:41.0802 2304 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\DRIVERS\cmdide.sys
13:41:41.0804 2304 cmdide - ok
13:41:42.0036 2304 [ CA7720B73446FDDEC5C69519C1174C98 ] CNG C:\Windows\system32\Drivers\cng.sys
13:41:42.0075 2304 CNG - ok
13:41:42.0259 2304 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
13:41:42.0261 2304 Compbatt - ok
13:41:42.0323 2304 [ F26B3A86F6FA87CA360B879581AB4123 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
13:41:42.0326 2304 CompositeBus - ok
13:41:42.0360 2304 COMSysApp - ok
13:41:42.0491 2304 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
13:41:42.0493 2304 crcdisk - ok
13:41:42.0690 2304 [ F02786B66375292E58C8777082D4396D ] CryptSvc C:\Windows\system32\cryptsvc.dll
13:41:42.0695 2304 CryptSvc - ok
13:41:42.0893 2304 [ 7266972E86890E2B30C0C322E906B027 ] DcomLaunch C:\Windows\system32\rpcss.dll
13:41:42.0992 2304 DcomLaunch - ok
13:41:43.0164 2304 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
13:41:43.0169 2304 defragsvc - ok
13:41:43.0240 2304 [ 9C253CE7311CA60FC11C774692A13208 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
13:41:43.0269 2304 DfsC - ok
13:41:43.0415 2304 [ CE3B9562D997F69B330D181A8875960F ] Dhcp C:\Windows\system32\dhcpcore.dll
13:41:43.0421 2304 Dhcp - ok
13:41:43.0460 2304 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
13:41:43.0461 2304 discache - ok
13:41:43.0539 2304 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
13:41:43.0542 2304 Disk - ok
13:41:43.0629 2304 [ 85CF424C74A1D5EC33533E1DBFF9920A ] Dnscache C:\Windows\System32\dnsrslvr.dll
13:41:43.0633 2304 Dnscache - ok
13:41:43.0711 2304 [ 14452ACDB09B70964C8C21BF80A13ACB ] dot3svc C:\Windows\System32\dot3svc.dll
13:41:43.0716 2304 dot3svc - ok
13:41:43.0788 2304 [ 8C2BA6BEA949EE6E68385F5692BAFB94 ] DPS C:\Windows\system32\dps.dll
13:41:43.0792 2304 DPS - ok
13:41:43.0865 2304 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
13:41:43.0867 2304 drmkaud - ok
13:41:43.0942 2304 [ 1633B9ABF52784A1331476397A48CBEF ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
13:41:43.0972 2304 DXGKrnl - ok
13:41:44.0058 2304 [ F369E83F6CDAB987CA2DD764278659A6 ] e1kexpress C:\Windows\system32\DRIVERS\e1k62x64.sys
13:41:44.0066 2304 e1kexpress - ok
13:41:44.0176 2304 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
13:41:44.0180 2304 EapHost - ok
13:41:45.0131 2304 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
13:41:45.0192 2304 ebdrv - ok
13:41:45.0237 2304 [ 156F6159457D0AA7E59B62681B56EB90 ] EFS C:\Windows\System32\lsass.exe
13:41:45.0238 2304 EFS - ok
13:41:45.0587 2304 [ 47C071994C3F649F23D9CD075AC9304A ] ehRecvr C:\Windows\ehome\ehRecvr.exe
13:41:45.0599 2304 ehRecvr - ok
13:41:45.0648 2304 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
13:41:45.0682 2304 ehSched - ok
13:41:45.0836 2304 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
13:41:45.0843 2304 elxstor - ok
13:41:45.0857 2304 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\DRIVERS\errdev.sys
13:41:45.0859 2304 ErrDev - ok
13:41:45.0992 2304 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
13:41:46.0001 2304 EventSystem - ok
13:41:46.0103 2304 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
13:41:46.0108 2304 exfat - ok
13:41:46.0229 2304 [ 2C1D443E14F376E8331F52F135DCA9EF ] FACAP C:\Windows\system32\DRIVERS\facap.sys
13:41:46.0234 2304 FACAP - ok
13:41:46.0785 2304 [ 53E30A6E86AA93C0FFC0BC0439E3E636 ] FAService C:\Program Files\Alienware\Command Center\AlienSense\FAService.exe
13:41:47.0022 2304 FAService - ok
13:41:47.0077 2304 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
13:41:47.0082 2304 fastfat - ok
13:41:47.0270 2304 [ D607B2F1BEE3992AA6C2C92C0A2F0855 ] Fax C:\Windows\system32\fxssvc.exe
13:41:47.0284 2304 Fax - ok
13:41:47.0347 2304 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
13:41:47.0349 2304 fdc - ok
13:41:47.0398 2304 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
13:41:47.0400 2304 fdPHost - ok
13:41:47.0425 2304 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
13:41:47.0428 2304 FDResPub - ok
13:41:47.0456 2304 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
13:41:47.0459 2304 FileInfo - ok
13:41:47.0504 2304 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
13:41:47.0506 2304 Filetrace - ok
13:41:47.0565 2304 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
13:41:47.0567 2304 flpydisk - ok
13:41:47.0674 2304 [ F7866AF72ABBAF84B1FA5AA195378C59 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
13:41:47.0678 2304 FltMgr - ok
13:41:47.0964 2304 [ CB5E4B9C319E3C6BB363EB7E58A4A051 ] FontCache C:\Windows\system32\FntCache.dll
13:41:47.0983 2304 FontCache - ok
13:41:48.0103 2304 [ 8D89E3131C27FDD6932189CB785E1B7A ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
13:41:48.0105 2304 FontCache3.0.0.0 - ok
13:41:48.0131 2304 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
13:41:48.0134 2304 FsDepends - ok
13:41:48.0185 2304 [ D3E3F93D67821A2DB2B3D9FAC2DC2064 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
13:41:48.0216 2304 Fs_Rec - ok
13:41:48.0352 2304 [ AE87BA80D0EC3B57126ED2CDC15B24ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
13:41:48.0356 2304 fvevol - ok
13:41:48.0389 2304 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
13:41:48.0391 2304 gagp30kx - ok
13:41:48.0440 2304 [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
13:41:48.0442 2304 GEARAspiWDM - ok
13:41:48.0649 2304 [ FE5AB4525BC2EC68B9119A6E5D40128B ] gpsvc C:\Windows\System32\gpsvc.dll
13:41:48.0661 2304 gpsvc - ok
13:41:48.0788 2304 [ BF2763FEA9704B1D9AA2C7719423251A ] gzflt C:\Windows\system32\DRIVERS\gzflt.sys
13:41:48.0828 2304 gzflt - ok
13:41:49.0023 2304 [ 8CD92502FEC49E837155B9F20E5E2D2C ] HappyOSD C:\Program Files (x86)\OSD\OSD_Service.exe
13:41:49.0025 2304 HappyOSD - ok
13:41:49.0077 2304 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
13:41:49.0080 2304 hcw85cir - ok
13:41:49.0189 2304 [ 6410F6F415B2A5A9037224C41DA8BF12 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
13:41:49.0197 2304 HdAudAddService - ok
13:41:49.0236 2304 [ 0A49913402747A0B67DE940FB42CBDBB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
13:41:49.0240 2304 HDAudBus - ok
13:41:49.0264 2304 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
13:41:49.0266 2304 HidBatt - ok
13:41:49.0287 2304 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
13:41:49.0290 2304 HidBth - ok
13:41:49.0345 2304 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
13:41:49.0348 2304 HidIr - ok
13:41:49.0403 2304 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
13:41:49.0405 2304 hidserv - ok
13:41:49.0481 2304 [ B3BF6B5B50006DEF50B66306D99FCF6F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
13:41:49.0484 2304 HidUsb - ok
13:41:49.0768 2304 [ 8D1F00F4254C3EF428B715484940427C ] HiPatchService C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
13:41:49.0770 2304 HiPatchService - ok
13:41:49.0825 2304 [ EFA58EDE58DD74388FFD04CB32681518 ] hkmsvc C:\Windows\system32\kmsvc.dll
13:41:49.0829 2304 hkmsvc - ok
13:41:49.0914 2304 [ 046B2673767CA626E2CFB7FDF735E9E8 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
13:41:49.0920 2304 HomeGroupListener - ok
13:41:49.0993 2304 [ 06A7422224D9865A5613710A089987DF ] HomeGroupProvider C:\Windows\system32\provsvc.dll
13:41:49.0999 2304 HomeGroupProvider - ok
13:41:50.0023 2304 [ 0886D440058F203EBA0E1825E4355914 ] HpSAMD C:\Windows\system32\DRIVERS\HpSAMD.sys
13:41:50.0026 2304 HpSAMD - ok
13:41:50.0250 2304 [ CEE049CAC4EFA7F4E1E4AD014414A5D4 ] HTTP C:\Windows\system32\drivers\HTTP.sys
13:41:50.0263 2304 HTTP - ok
13:41:50.0315 2304 [ F17766A19145F111856378DF337A5D79 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
13:41:50.0316 2304 hwpolicy - ok
13:41:50.0455 2304 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
13:41:50.0458 2304 i8042prt - ok
13:41:50.0531 2304 [ 87A72502C8AC5E89B5A46FF6E874F5C5 ] IAMTVE C:\Windows\system32\DRIVERS\IAMTVE.sys
13:41:50.0534 2304 IAMTVE - ok
13:41:50.0629 2304 [ 5516F8E518A2F6A8755498F3E73957CF ] IAMTXPE C:\Windows\system32\DRIVERS\IAMTXPE.sys
13:41:50.0632 2304 IAMTXPE - ok
13:41:50.0782 2304 [ ABBF174CB394F5C437410A788B7E404A ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
13:41:50.0788 2304 iaStor - ok
13:41:50.0998 2304 [ 31A0E93CDF29007D6C6FFFB632F375ED ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
13:41:51.0000 2304 IAStorDataMgrSvc - ok
13:41:51.0160 2304 [ B75E45C564E944A2657167D197AB29DA ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
13:41:51.0169 2304 iaStorV - ok
13:41:51.0394 2304 [ 2F2BE70D3E02B6FA877921AB9516D43C ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
13:41:51.0411 2304 idsvc - ok
13:41:51.0491 2304 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
13:41:51.0494 2304 iirsp - ok
13:41:51.0705 2304 [ C5B4683680DF085B57BC53E5EF34861F ] IKEEXT C:\Windows\System32\ikeext.dll
13:41:51.0720 2304 IKEEXT - ok
13:41:51.0813 2304 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\DRIVERS\intelide.sys
13:41:51.0816 2304 intelide - ok
13:41:51.0910 2304 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
13:41:51.0913 2304 intelppm - ok
13:41:51.0978 2304 [ 4B846898AA05BB1E1E88313C9174A9ED ] ioatdma C:\Windows\system32\Drivers\ioatdma.sys
13:41:51.0981 2304 ioatdma - ok
13:41:52.0019 2304 [ 7F4F67177E9FC600B2AFF6BB21DB6D04 ] ioatdma1 C:\Windows\System32\Drivers\qd162x64.sys
13:41:52.0020 2304 ioatdma1 - ok
13:41:52.0038 2304 [ 565DE53FB5E4CB14314E4F53848A025D ] ioatdma2 C:\Windows\System32\Drivers\qd262x64.sys
13:41:52.0040 2304 ioatdma2 - ok
13:41:52.0084 2304 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
13:41:52.0088 2304 IPBusEnum - ok
13:41:52.0108 2304 [ 722DD294DF62483CECAAE6E094B4D695 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
13:41:52.0111 2304 IpFilterDriver - ok
13:41:52.0132 2304 [ E2B4A4494DB7CB9B89B55CA268C337C5 ] IPMIDRV C:\Windows\system32\DRIVERS\IPMIDrv.sys
13:41:52.0135 2304 IPMIDRV - ok
13:41:52.0159 2304 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
13:41:52.0161 2304 IPNAT - ok
13:41:52.0459 2304 [ F8E8676D1B6B2CC12DF9AA6B1A43D929 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
13:41:52.0475 2304 iPod Service - ok
13:41:52.0512 2304 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
13:41:52.0515 2304 IRENUM - ok
13:41:52.0537 2304 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\DRIVERS\isapnp.sys
13:41:52.0539 2304 isapnp - ok
13:41:52.0599 2304 [ FA4D2557DE56D45B0A346F93564BE6E1 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
13:41:52.0605 2304 iScsiPrt - ok
13:41:52.0678 2304 [ 5122B80266E2DF2188466A93A31EE3B7 ] iSSetup C:\Windows\system32\DRIVERS\iSSetup.sys
13:41:52.0684 2304 iSSetup - ok
13:41:52.0757 2304 [ 9291643B494F87BFDAC95A524F69E737 ] itecir C:\Windows\system32\DRIVERS\itecir.sys
13:41:52.0760 2304 itecir - ok
13:41:52.0785 2304 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
13:41:52.0786 2304 kbdclass - ok
13:41:52.0811 2304 [ 6DEF98F8541E1B5DCEB2C822A11F7323 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
13:41:52.0812 2304 kbdhid - ok
13:41:52.0845 2304 [ 156F6159457D0AA7E59B62681B56EB90 ] KeyIso C:\Windows\system32\lsass.exe
13:41:52.0847 2304 KeyIso - ok
13:41:52.0894 2304 [ 4F4B5FDE429416877DE7143044582EB5 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
13:41:52.0896 2304 KSecDD - ok
13:41:52.0973 2304 [ 6F40465A44ECDC1731BEFAFEC5BDD03C ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
13:41:52.0977 2304 KSecPkg - ok
13:41:53.0005 2304 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
13:41:53.0007 2304 ksthunk - ok
13:41:53.0103 2304 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
13:41:53.0109 2304 KtmRm - ok
13:41:53.0194 2304 [ 81F1D04D4D0E433099365127375FD501 ] LanmanServer C:\Windows\system32\srvsvc.dll
13:41:53.0201 2304 LanmanServer - ok
13:41:53.0265 2304 [ 27026EAC8818E8A6C00A1CAD2F11D29A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
13:41:53.0270 2304 LanmanWorkstation - ok
13:41:53.0333 2304 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
13:41:53.0336 2304 lltdio - ok
13:41:53.0438 2304 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
13:41:53.0444 2304 lltdsvc - ok
13:41:53.0467 2304 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
13:41:53.0469 2304 lmhosts - ok
13:41:53.0521 2304 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
13:41:53.0525 2304 LSI_FC - ok
13:41:53.0544 2304 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
13:41:53.0548 2304 LSI_SAS - ok
13:41:53.0593 2304 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
13:41:53.0595 2304 LSI_SAS2 - ok
13:41:53.0625 2304 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
13:41:53.0629 2304 LSI_SCSI - ok
13:41:53.0653 2304 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
13:41:53.0656 2304 luafv - ok
13:41:53.0709 2304 [ F84C8F1000BC11E3B7B23CBD3BAFF111 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
13:41:53.0713 2304 Mcx2Svc - ok
13:41:53.0738 2304 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
13:41:53.0741 2304 megasas - ok
13:41:53.0831 2304 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
13:41:53.0838 2304 MegaSR - ok
13:41:53.0858 2304 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
13:41:53.0861 2304 MMCSS - ok
13:41:53.0888 2304 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
13:41:53.0890 2304 Modem - ok
13:41:53.0935 2304 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
13:41:53.0938 2304 monitor - ok
13:41:54.0011 2304 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
13:41:54.0013 2304 mouclass - ok
13:41:54.0067 2304 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
13:41:54.0069 2304 mouhid - ok
13:41:54.0092 2304 [ 791AF66C4D0E7C90A3646066386FB571 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
13:41:54.0094 2304 mountmgr - ok
13:41:54.0275 2304 [ 15D5398EED42C2504BB3D4FC875C15D1 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
13:41:54.0279 2304 MozillaMaintenance - ok
13:41:54.0331 2304 [ 609D1D87649ECC19796F4D76D4C15CEA ] mpio C:\Windows\system32\DRIVERS\mpio.sys
13:41:54.0336 2304 mpio - ok
13:41:54.0361 2304 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
13:41:54.0364 2304 mpsdrv - ok
13:41:54.0418 2304 [ 30524261BB51D96D6FCBAC20C810183C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
13:41:54.0422 2304 MRxDAV - ok
13:41:54.0494 2304 [ 040D62A9D8AD28922632137ACDD984F2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
13:41:54.0499 2304 mrxsmb - ok
13:41:54.0624 2304 [ F0067552F8F9B33D7C59403AB808A3CB ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
13:41:54.0630 2304 mrxsmb10 - ok
13:41:54.0690 2304 [ 3C142D31DE9F2F193218A53FE2632051 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
13:41:54.0694 2304 mrxsmb20 - ok
13:41:54.0745 2304 [ BCCF16D5FB1109162380E3E28DC9E4E5 ] msahci C:\Windows\system32\DRIVERS\msahci.sys
13:41:54.0748 2304 msahci - ok
13:41:54.0804 2304 [ 8D27B597229AED79430FB9DB3BCBFBD0 ] msdsm C:\Windows\system32\DRIVERS\msdsm.sys
13:41:54.0809 2304 msdsm - ok
13:41:54.0849 2304 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
13:41:54.0854 2304 MSDTC - ok
13:41:54.0897 2304 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
13:41:54.0900 2304 Msfs - ok
13:41:54.0939 2304 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
13:41:54.0941 2304 mshidkmdf - ok
13:41:55.0022 2304 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\DRIVERS\msisadrv.sys
13:41:55.0024 2304 msisadrv - ok
13:41:55.0118 2304 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
13:41:55.0123 2304 MSiSCSI - ok
13:41:55.0129 2304 msiserver - ok
13:41:55.0198 2304 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
13:41:55.0199 2304 MSKSSRV - ok
13:41:55.0244 2304 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
13:41:55.0246 2304 MSPCLOCK - ok
13:41:55.0316 2304 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
13:41:55.0318 2304 MSPQM - ok
13:41:55.0355 2304 [ 89CB141AA8616D8C6A4610FA26C60964 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
13:41:55.0362 2304 MsRPC - ok
13:41:55.0395 2304 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
13:41:55.0397 2304 mssmbios - ok
13:41:55.0431 2304 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
13:41:55.0432 2304 MSTEE - ok
13:41:55.0468 2304 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
13:41:55.0471 2304 MTConfig - ok
13:41:55.0513 2304 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
13:41:55.0516 2304 Mup - ok
13:41:55.0624 2304 [ F517103851871222FEA84379EDEB4373 ] NAL C:\Windows\system32\Drivers\iqvw64e.sys
13:41:55.0627 2304 NAL - ok
13:41:55.0827 2304 [ 4987E079A4530FA737A128BE54B63B12 ] napagent C:\Windows\system32\qagentRT.dll
13:41:55.0833 2304 napagent - ok
13:41:55.0889 2304 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
13:41:55.0894 2304 NativeWifiP - ok
13:41:55.0995 2304 [ CAD515DBD07D082BB317D9928CE8962C ] NDIS C:\Windows\system32\drivers\ndis.sys
13:41:56.0013 2304 NDIS - ok
13:41:56.0035 2304 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
13:41:56.0037 2304 NdisCap - ok
13:41:56.0116 2304 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
13:41:56.0118 2304 NdisTapi - ok
13:41:56.0153 2304 [ F105BA1E22BF1F2EE8F005D4305E4BEC ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
13:41:56.0155 2304 Ndisuio - ok
13:41:56.0227 2304 [ 557DFAB9CA1FCB036AC77564C010DAD3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
13:41:56.0230 2304 NdisWan - ok
13:41:56.0297 2304 [ 659B74FB74B86228D6338D643CD3E3CF ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
13:41:56.0299 2304 NDProxy - ok
13:41:56.0685 2304 [ 7D2633295EB6FF2B938185874884059D ] Nero BackItUp Scheduler 4.0 C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
13:41:56.0699 2304 Nero BackItUp Scheduler 4.0 - ok
13:41:56.0722 2304 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
13:41:56.0724 2304 NetBIOS - ok
13:41:56.0846 2304 [ 9162B273A44AB9DCE5B44362731D062A ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
13:41:56.0849 2304 NetBT - ok
13:41:56.0945 2304 [ 156F6159457D0AA7E59B62681B56EB90 ] Netlogon C:\Windows\system32\lsass.exe
13:41:56.0947 2304 Netlogon - ok
13:41:57.0139 2304 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
13:41:57.0148 2304 Netman - ok
13:41:57.0264 2304 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
13:41:57.0275 2304 netprofm - ok
13:41:57.0338 2304 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
13:41:57.0342 2304 NetTcpPortSharing - ok
13:41:57.0388 2304 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
13:41:57.0391 2304 nfrd960 - ok
13:41:57.0500 2304 [ D9A0CE66046D6EFA0C61BAA885CBA0A8 ] NlaSvc C:\Windows\System32\nlasvc.dll
13:41:57.0505 2304 NlaSvc - ok
13:41:57.0537 2304 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
13:41:57.0539 2304 Npfs - ok
13:41:57.0607 2304 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
13:41:57.0609 2304 nsi - ok
13:41:57.0684 2304 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
13:41:57.0685 2304 nsiproxy - ok
13:41:57.0831 2304 [ 378E0E0DFEA67D98AE6EA53ADBBD76BC ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
13:41:57.0888 2304 Ntfs - ok
13:41:57.0907 2304 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
13:41:57.0909 2304 Null - ok
13:41:58.0006 2304 [ A4D9C9A608A97F59307C2F2600EDC6A4 ] nvraid C:\Windows\system32\drivers\nvraid.sys
13:41:58.0009 2304 nvraid - ok
13:41:58.0116 2304 [ 6C1D5F70E7A6A3FD1C90D840EDC048B9 ] nvstor C:\Windows\system32\drivers\nvstor.sys
13:41:58.0121 2304 nvstor - ok
13:41:58.0227 2304 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\DRIVERS\nv_agp.sys
13:41:58.0231 2304 nv_agp - ok
13:41:58.0269 2304 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
13:41:58.0272 2304 ohci1394 - ok
13:41:58.0401 2304 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
13:41:58.0407 2304 p2pimsvc - ok
13:41:58.0556 2304 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
13:41:58.0561 2304 p2psvc - ok
13:41:58.0616 2304 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
13:41:58.0618 2304 Parport - ok
13:41:58.0680 2304 [ 90061B1ACFE8CCAA5345750FFE08D8B8 ] partmgr C:\Windows\system32\drivers\partmgr.sys
13:41:58.0682 2304 partmgr - ok
13:41:58.0727 2304 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
13:41:58.0741 2304 PcaSvc - ok
13:41:58.0993 2304 [ F36F6504009F2FB0DFD1B17A116AD74B ] pci C:\Windows\system32\DRIVERS\pci.sys
13:41:58.0998 2304 pci - ok
13:41:59.0073 2304 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\DRIVERS\pciide.sys
13:41:59.0075 2304 pciide - ok
13:41:59.0161 2304 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
13:41:59.0164 2304 pcmcia - ok
13:41:59.0197 2304 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
13:41:59.0199 2304 pcw - ok
13:41:59.0369 2304 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
13:41:59.0407 2304 PEAUTH - ok
13:42:00.0251 2304 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
13:42:00.0254 2304 PerfHost - ok
13:42:00.0558 2304 [ 557E9A86F65F0DE18C9B6751DFE9D3F1 ] pla C:\Windows\system32\pla.dll
13:42:00.0580 2304 pla - ok
13:42:00.0730 2304 [ 98B1721B8718164293B9701B98C52D77 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
13:42:00.0739 2304 PlugPlay - ok
13:42:00.0766 2304 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
13:42:00.0770 2304 PNRPAutoReg - ok
13:42:00.0893 2304 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
13:42:00.0901 2304 PNRPsvc - ok
13:42:01.0028 2304 [ 166EB40D1F5B47E615DE3D0FFFE5F243 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
13:42:01.0038 2304 PolicyAgent - ok
13:42:01.0141 2304 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
13:42:01.0147 2304 Power - ok
13:42:01.0229 2304 [ 27CC19E81BA5E3403C48302127BDA717 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
13:42:01.0233 2304 PptpMiniport - ok
13:42:01.0277 2304 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
13:42:01.0279 2304 Processor - ok
13:42:01.0344 2304 [ 97293447431311C06703368AD0F6C4BE ] ProfSvc C:\Windows\system32\profsvc.dll
13:42:01.0350 2304 ProfSvc - ok
13:42:01.0369 2304 [ 156F6159457D0AA7E59B62681B56EB90 ] ProtectedStorage C:\Windows\system32\lsass.exe
13:42:01.0372 2304 ProtectedStorage - ok
13:42:01.0430 2304 [ EE992183BD8EAEFD9973F352E587A299 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
13:42:01.0433 2304 Psched - ok
13:42:01.0768 2304 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
13:42:01.0795 2304 ql2300 - ok
13:42:01.0854 2304 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
13:42:01.0857 2304 ql40xx - ok
13:42:01.0926 2304 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
13:42:01.0933 2304 QWAVE - ok
13:42:01.0961 2304 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
13:42:01.0963 2304 QWAVEdrv - ok
13:42:01.0991 2304 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
13:42:01.0993 2304 RasAcd - ok
13:42:02.0083 2304 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
13:42:02.0086 2304 RasAgileVpn - ok
13:42:02.0145 2304 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
13:42:02.0149 2304 RasAuto - ok
13:42:02.0206 2304 [ 87A6E852A22991580D6D39ADC4790463 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
13:42:02.0209 2304 Rasl2tp - ok
13:42:02.0310 2304 [ 47394ED3D16D053F5906EFE5AB51CC83 ] RasMan C:\Windows\System32\rasmans.dll
13:42:02.0319 2304 RasMan - ok
13:42:02.0366 2304 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
13:42:02.0370 2304 RasPppoe - ok
13:42:02.0423 2304 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
13:42:02.0426 2304 RasSstp - ok
13:42:02.0503 2304 [ 3BAC8142102C15D59A87757C1D41DCE5 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
13:42:02.0509 2304 rdbss - ok
13:42:02.0532 2304 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
13:42:02.0534 2304 rdpbus - ok
13:42:02.0576 2304 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
13:42:02.0577 2304 RDPCDD - ok
13:42:02.0637 2304 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
13:42:02.0638 2304 RDPENCDD - ok
13:42:02.0666 2304 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
13:42:02.0667 2304 RDPREFMP - ok
13:42:02.0748 2304 [ 447DE7E3DEA39D422C1504F245B668B1 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
13:42:02.0779 2304 RDPWD - ok
13:42:02.0878 2304 [ 634B9A2181D98F15941236886164EC8B ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
13:42:02.0881 2304 rdyboost - ok
13:42:02.0997 2304 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
13:42:03.0001 2304 RemoteAccess - ok
13:42:03.0051 2304 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
13:42:03.0057 2304 RemoteRegistry - ok
13:42:03.0173 2304 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
13:42:03.0177 2304 RFCOMM - ok
13:42:03.0255 2304 [ CB7C996F3878E936BFDD9CDFE6A3A987 ] rimmptsk C:\Windows\system32\DRIVERS\rimmpx64.sys
13:42:03.0259 2304 rimmptsk - ok
13:42:03.0344 2304 [ 2C543F0E04B5F6FD5C17509D0ECE6D1D ] rimsptsk C:\Windows\system32\DRIVERS\rimspx64.sys
13:42:03.0347 2304 rimsptsk - ok
13:42:03.0440 2304 [ 481C3FDEACAAE04B74C58288DBC91DF9 ] rismxdp C:\Windows\system32\DRIVERS\rixdpx64.sys
13:42:03.0443 2304 rismxdp - ok
13:42:03.0467 2304 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
13:42:03.0471 2304 RpcEptMapper - ok
13:42:03.0517 2304 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
13:42:03.0520 2304 RpcLocator - ok
13:42:03.0627 2304 [ 7266972E86890E2B30C0C322E906B027 ] RpcSs C:\Windows\system32\rpcss.dll
13:42:03.0637 2304 RpcSs - ok
13:42:03.0710 2304 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
13:42:03.0713 2304 rspndr - ok
13:42:03.0744 2304 [ 156F6159457D0AA7E59B62681B56EB90 ] SamSs C:\Windows\system32\lsass.exe
13:42:03.0746 2304 SamSs - ok
13:42:03.0771 2304 [ E3BBB89983DAF5622C1D50CF49F28227 ] sbp2port C:\Windows\system32\DRIVERS\sbp2port.sys
13:42:03.0773 2304 sbp2port - ok
13:42:03.0825 2304 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
13:42:03.0831 2304 SCardSvr - ok
13:42:03.0852 2304 [ C94DA20C7E3BA1DCA269BC8460D98387 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
13:42:03.0854 2304 scfilter - ok
13:42:04.0163 2304 [ 624D0F5FF99428BB90A5B8A4123E918E ] Schedule C:\Windows\system32\schedsvc.dll
13:42:04.0178 2304 Schedule - ok
13:42:04.0219 2304 [ 312E2F82AF11E79906898AC3E3D58A1F ] SCPolicySvc C:\Windows\System32\certprop.dll
13:42:04.0220 2304 SCPolicySvc - ok
13:42:04.0278 2304 [ 84E00908975FAF79E91282ED8FB88C2F ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
13:42:04.0280 2304 sdbus - ok
13:42:04.0335 2304 [ 765A27C3279CE11D14CB9E4F5869FCA5 ] SDRSVC C:\Windows\System32\SDRSVC.dll
13:42:04.0338 2304 SDRSVC - ok
13:42:04.0402 2304 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
13:42:04.0404 2304 secdrv - ok
13:42:04.0429 2304 [ 463B386EBC70F98DA5DFF85F7E654346 ] seclogon C:\Windows\system32\seclogon.dll
13:42:04.0432 2304 seclogon - ok
13:42:04.0500 2304 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
13:42:04.0504 2304 SENS - ok
13:42:04.0533 2304 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
13:42:04.0537 2304 SensrSvc - ok
13:42:04.0598 2304 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
13:42:04.0600 2304 Serenum - ok
13:42:04.0651 2304 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
13:42:04.0655 2304 Serial - ok
13:42:04.0739 2304 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
13:42:04.0742 2304 sermouse - ok
13:42:04.0781 2304 [ C3BC61CE47FF6F4E88AB8A3B429A36AF ] SessionEnv C:\Windows\system32\sessenv.dll
13:42:04.0784 2304 SessionEnv - ok
13:42:04.0808 2304 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
13:42:04.0810 2304 sffdisk - ok
13:42:04.0834 2304 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\DRIVERS\sffp_mmc.sys
13:42:04.0836 2304 sffp_mmc - ok
13:42:04.0865 2304 [ 178298F767FE638C9FEDCBDEF58BB5E4 ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
13:42:04.0867 2304 sffp_sd - ok
13:42:04.0921 2304 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
13:42:04.0923 2304 sfloppy - ok
13:42:05.0617 2304 [ 38F88F0DF46C4D42125EF721ABD7F6B9 ] SftService C:\Program Files (x86)\AlienRespawn\sftservice.EXE
13:42:05.0629 2304 SftService - ok
13:42:05.0752 2304 [ 0298AC45D0EFFFB2DB4BAA7DD186E7BF ] ShellHWDetection C:\Windows\System32\shsvcs.dll
13:42:05.0759 2304 ShellHWDetection - ok
13:42:05.0773 2304 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
13:42:05.0775 2304 SiSRaid2 - ok
13:42:05.0820 2304 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
13:42:05.0823 2304 SiSRaid4 - ok
13:42:06.0005 2304 [ 579BA0A911FF5EA70CB604CD3B744B0A ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
13:42:06.0010 2304 SkypeUpdate - ok
13:42:06.0033 2304 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
13:42:06.0036 2304 Smb - ok
13:42:06.0112 2304 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
13:42:06.0116 2304 SNMPTRAP - ok
13:42:06.0159 2304 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
13:42:06.0162 2304 spldr - ok
13:42:06.0326 2304 [ F8E1FA03CB70D54A9892AC88B91D1E7B ] Spooler C:\Windows\System32\spoolsv.exe
13:42:06.0338 2304 Spooler - ok
13:42:07.0046 2304 [ 913D843498553A1BC8F8DBAD6358E49F ] sppsvc C:\Windows\system32\sppsvc.exe
13:42:07.0089 2304 sppsvc - ok
13:42:07.0135 2304 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
13:42:07.0140 2304 sppuinotify - ok
13:42:07.0271 2304 [ 2408C0366D96BCDF63E8F1C78E4A29C5 ] srv C:\Windows\system32\DRIVERS\srv.sys
13:42:07.0306 2304 srv - ok
13:42:07.0429 2304 [ 76548F7B818881B47D8D1AE1BE9C11F8 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
13:42:07.0436 2304 srv2 - ok
13:42:07.0507 2304 [ 0AF6E19D39C70844C5CAA8FB0183C36E ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
13:42:07.0511 2304 srvnet - ok
13:42:07.0622 2304 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
13:42:07.0627 2304 SSDPSRV - ok
13:42:07.0676 2304 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
13:42:07.0678 2304 SstpSvc - ok
13:42:09.0124 2304 [ 1FCAF9C8A17985A28507338F36200320 ] STacSV C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_056607ee0106e5e8\STacSV64.exe
13:42:09.0127 2304 STacSV - ok
13:42:09.0182 2304 Steam Client Service - ok
13:42:09.0229 2304 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
13:42:09.0231 2304 stexstor - ok
13:42:09.0415 2304 [ 3C400155894B9CAF176EB4F64737050B ] STHDA C:\Windows\system32\DRIVERS\stwrt64.sys
13:42:09.0420 2304 STHDA - ok
13:42:09.0585 2304 [ 52D0E33B681BD0F33FDC08812FEE4F7D ] stisvc C:\Windows\System32\wiaservc.dll
13:42:09.0593 2304 stisvc - ok
13:42:09.0645 2304 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
13:42:09.0646 2304 swenum - ok
13:42:09.0798 2304 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
13:42:09.0809 2304 swprv - ok
13:42:09.0908 2304 [ 52EB25BD8AB4E331028C48B178441B36 ] sxuptp C:\Windows\system32\DRIVERS\sxuptp.sys
13:42:09.0931 2304 sxuptp - ok
13:42:10.0078 2304 [ ECB9097C86DB32BF3940590E0E1792C3 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
13:42:10.0085 2304 SynTP - ok
13:42:10.0455 2304 [ 3C1284516A62078FB68F768DE4F1A7BE ] SysMain C:\Windows\system32\sysmain.dll
13:42:10.0478 2304 SysMain - ok
13:42:10.0519 2304 [ 238935C3CF2854886DC7CBB2A0E2CC66 ] TabletInputService C:\Windows\System32\TabSvc.dll
13:42:10.0522 2304 TabletInputService - ok
13:42:10.0628 2304 [ 884264AC597B690C5707C89723BB8E7B ] TapiSrv C:\Windows\System32\tapisrv.dll
13:42:10.0634 2304 TapiSrv - ok
13:42:10.0681 2304 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
13:42:10.0684 2304 TBS - ok
13:42:11.0136 2304 [ 624C5B3AA4C99B3184BB922D9ECE3FF0 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
13:42:11.0164 2304 Tcpip - ok
13:42:11.0190 2304 [ 624C5B3AA4C99B3184BB922D9ECE3FF0 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
13:42:11.0203 2304 TCPIP6 - ok
13:42:11.0252 2304 [ 76D078AF6F587B162D50210F761EB9ED ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
13:42:11.0253 2304 tcpipreg - ok
13:42:11.0278 2304 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
13:42:11.0280 2304 TDPIPE - ok
13:42:11.0334 2304 [ 7518F7BCFD4B308ABC9192BACAF6C970 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
13:42:11.0336 2304 TDTCP - ok
13:42:11.0361 2304 [ 079125C4B17B01FCAEEBCE0BCB290C0F ] tdx C:\Windows\system32\DRIVERS\tdx.sys
13:42:11.0364 2304 tdx - ok
13:42:11.0409 2304 [ C448651339196C0E869A355171875522 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
13:42:11.0411 2304 TermDD - ok
13:42:11.0629 2304 [ 0F05EC2887BFE197AD82A13287D2F404 ] TermService C:\Windows\System32\termsrv.dll
13:42:11.0641 2304 TermService - ok
13:42:11.0680 2304 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
13:42:11.0683 2304 Themes - ok
13:42:11.0732 2304 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
13:42:11.0736 2304 THREADORDER - ok
13:42:11.0777 2304 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
13:42:11.0781 2304 TrkWks - ok
13:42:11.0910 2304 [ 840F7FB849F5887A49BA18C13B2DA920 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
13:42:11.0914 2304 TrustedInstaller - ok
13:42:11.0939 2304 [ 61B96C26131E37B24E93327A0BD1FB95 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
13:42:11.0941 2304 tssecsrv - ok
13:42:12.0016 2304 [ 3836171A2CDF3AF8EF10856DB9835A70 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
13:42:12.0020 2304 tunnel - ok
13:42:12.0044 2304 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
13:42:12.0047 2304 uagp35 - ok
13:42:12.0163 2304 [ 31BA4A33AFAB6A69EA092B18017F737F ] udfs C:\Windows\system32\DRIVERS\udfs.sys
13:42:12.0195 2304 udfs - ok
13:42:12.0229 2304 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
13:42:12.0233 2304 UI0Detect - ok
13:42:12.0293 2304 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\DRIVERS\uliagpkx.sys
13:42:12.0297 2304 uliagpkx - ok
13:42:12.0409 2304 [ EAB6C35E62B1B0DB0D1B48B671D3A117 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
13:42:12.0412 2304 umbus - ok
13:42:12.0460 2304 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
13:42:12.0462 2304 UmPass - ok
13:42:12.0743 2304 [ 70E845EE94900E1CC867EDA6D3F11E2D ] UPDATESRV_ANTITHEFT C:\Program Files\Bitdefender\Bitdefender Anti-Theft\updatesrv.exe
13:42:12.0768 2304 UPDATESRV_ANTITHEFT - ok
13:42:12.0829 2304 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
13:42:12.0838 2304 upnphost - ok
13:42:12.0937 2304 [ 54D4B48D443E7228BF64CF7CDC3118AC ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
13:42:12.0940 2304 USBAAPL64 - ok
13:42:12.0990 2304 [ 537A4E03D7103C12D42DFD8FFDB5BDC9 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
13:42:12.0994 2304 usbccgp - ok
13:42:13.0069 2304 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\DRIVERS\usbcir.sys
13:42:13.0073 2304 usbcir - ok
13:42:13.0104 2304 [ FBB21EBE49F6D560DB37AC25FBC68E66 ] usbehci C:\Windows\system32\drivers\usbehci.sys
13:42:13.0107 2304 usbehci - ok
13:42:13.0243 2304 [ 6B7A8A99C4A459E73C286A6763EA24CC ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
13:42:13.0250 2304 usbhub - ok
13:42:13.0292 2304 [ 8C88AA7617B4CBC2E4BED61D26B33A27 ] usbohci C:\Windows\system32\drivers\usbohci.sys
13:42:13.0295 2304 usbohci - ok
13:42:13.0351 2304 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
13:42:13.0353 2304 usbprint - ok
13:42:13.0434 2304 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
13:42:13.0460 2304 usbscan - ok
13:42:13.0514 2304 [ F39983647BC1F3E6100778DDFE9DCE29 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
13:42:13.0517 2304 USBSTOR - ok
13:42:13.0542 2304 [ 0B5B3B2DF3FD1709618ACFA50B8392B0 ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
13:42:13.0545 2304 usbuhci - ok
13:42:13.0648 2304 [ 7CB8C573C6E4A2714402CC0A36EAB4FE ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
13:42:13.0653 2304 usbvideo - ok
13:42:13.0701 2304 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
13:42:13.0705 2304 UxSms - ok
13:42:13.0727 2304 [ 156F6159457D0AA7E59B62681B56EB90 ] VaultSvc C:\Windows\system32\lsass.exe
13:42:13.0730 2304 VaultSvc - ok
13:42:13.0789 2304 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\DRIVERS\vdrvroot.sys
13:42:13.0792 2304 vdrvroot - ok
13:42:13.0976 2304 [ 44D73E0BBC1D3C8981304BA15135C2F2 ] vds C:\Windows\System32\vds.exe
13:42:13.0987 2304 vds - ok
13:42:14.0026 2304 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
13:42:14.0029 2304 vga - ok
13:42:14.0062 2304 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
13:42:14.0064 2304 VgaSave - ok
13:42:14.0111 2304 [ C82E748660F62A242B2DFAC1442F22A4 ] vhdmp C:\Windows\system32\DRIVERS\vhdmp.sys
13:42:14.0116 2304 vhdmp - ok
13:42:14.0175 2304 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\DRIVERS\viaide.sys
13:42:14.0177 2304 viaide - ok
13:42:14.0233 2304 [ 2B1A3DAE2B4E70DBBA822B7A03FBD4A3 ] volmgr C:\Windows\system32\DRIVERS\volmgr.sys
13:42:14.0236 2304 volmgr - ok
13:42:14.0336 2304 [ 99B0CBB569CA79ACAED8C91461D765FB ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
13:42:14.0342 2304 volmgrx - ok
13:42:14.0415 2304 [ 58F82EED8CA24B461441F9C3E4F0BF5C ] volsnap C:\Windows\system32\DRIVERS\volsnap.sys
13:42:14.0422 2304 volsnap - ok
13:42:14.0489 2304 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
13:42:14.0491 2304 vsmraid - ok
13:42:14.0945 2304 [ 787898BF9FB6D7BD87A36E2D95C899BA ] VSS C:\Windows\system32\vssvc.exe
13:42:14.0970 2304 VSS - ok
13:42:15.0299 2304 [ 40DBA03782BCC10685A8C200C5EBDCD0 ] vToolbarUpdater12.2.6 C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\12.2.6\ToolbarUpdater.exe
13:42:15.0311 2304 vToolbarUpdater12.2.6 - ok
13:42:15.0363 2304 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
13:42:15.0365 2304 vwifibus - ok
13:42:15.0408 2304 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
13:42:15.0410 2304 vwififlt - ok
13:42:15.0536 2304 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
13:42:15.0545 2304 W32Time - ok
13:42:15.0591 2304 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
13:42:15.0593 2304 WacomPen - ok
13:42:15.0637 2304 [ 47CA49400643EFFD3F1C9A27E1D69324 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
13:42:15.0640 2304 WANARP - ok
13:42:15.0666 2304 [ 47CA49400643EFFD3F1C9A27E1D69324 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
13:42:15.0667 2304 Wanarpv6 - ok
13:42:15.0856 2304 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
13:42:15.0872 2304 WatAdminSvc - ok
13:42:16.0378 2304 [ 5AB1BB85BD8B5089CC5D64200DEDAE68 ] wbengine C:\Windows\system32\wbengine.exe
13:42:16.0406 2304 wbengine - ok
13:42:16.0506 2304 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
13:42:16.0513 2304 WbioSrvc - ok
13:42:16.0682 2304 [ DD1BAE8EBFC653824D29CCF8C9054D68 ] wcncsvc C:\Windows\System32\wcncsvc.dll
13:42:16.0765 2304 wcncsvc - ok
13:42:16.0839 2304 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
13:42:16.0895 2304 WcsPlugInService - ok
13:42:16.0982 2304 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
13:42:16.0985 2304 Wd - ok
13:42:17.0203 2304 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
13:42:17.0215 2304 Wdf01000 - ok
13:42:17.0256 2304 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
13:42:17.0260 2304 WdiServiceHost - ok
13:42:17.0264 2304 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
13:42:17.0266 2304 WdiSystemHost - ok
13:42:17.0368 2304 [ 733006127F235BE7C35354EBEE7B9A7B ] WebClient C:\Windows\System32\webclnt.dll
13:42:17.0376 2304 WebClient - ok
13:42:17.0528 2304 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
13:42:17.0535 2304 Wecsvc - ok
13:42:17.0622 2304 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
13:42:17.0626 2304 wercplsupport - ok
13:42:17.0736 2304 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
13:42:17.0741 2304 WerSvc - ok
13:42:17.0868 2304 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
13:42:17.0871 2304 WfpLwf - ok
13:42:17.0995 2304 [ B14EF15BD757FA488F9C970EEE9C0D35 ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys
13:42:18.0044 2304 WimFltr - ok
13:42:18.0115 2304 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
13:42:18.0117 2304 WIMMount - ok
13:42:18.0542 2304 [ 8258726D076C8FFF994F468712DDFBAB ] WindowBlinds C:\Program Files (x86)\Stardock\MyColors\VistaSrv.exe
13:42:18.0548 2304 WindowBlinds - ok
13:42:18.0556 2304 WinHttpAutoProxySvc - ok
13:42:18.0804 2304 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
13:42:18.0809 2304 Winmgmt - ok
13:42:18.0983 2304 [ 0C0195C48B6B8582FA6F6373032118DA ] WinRing0_1_2_0 C:\Program Files (x86)\OSD\WinRing0x64.sys
13:42:18.0985 2304 WinRing0_1_2_0 - ok
13:42:19.0629 2304 [ 41FBB751936B387F9179E7F03A74FE29 ] WinRM C:\Windows\system32\WsmSvc.dll
13:42:19.0678 2304 WinRM - ok
13:42:20.0183 2304 [ 4D52C872018AF7E18D078978DCC3F6F2 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
13:42:20.0242 2304 WinUsb - ok
13:42:20.0618 2304 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
13:42:20.0636 2304 Wlansvc - ok
13:42:20.0885 2304 [ A96D6C0613DCF84F2D07FAEB75663072 ] wltrysvc C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE
13:42:20.0887 2304 wltrysvc - ok
13:42:20.0974 2304 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
13:42:20.0976 2304 WmiAcpi - ok
13:42:21.0080 2304 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
13:42:21.0085 2304 wmiApSrv - ok
13:42:21.0134 2304 WMPNetworkSvc - ok
13:42:21.0262 2304 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
13:42:21.0266 2304 WPCSvc - ok
13:42:21.0323 2304 [ 2E57DDF2880A7E52E76F41C7E96D327B ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
13:42:21.0328 2304 WPDBusEnum - ok
13:42:21.0402 2304 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
13:42:21.0406 2304 ws2ifsl - ok
13:42:21.0411 2304 WSearch - ok
13:42:21.0506 2304 [ C63907207B837A5C05CF6D1606AA0008 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
13:42:21.0510 2304 WudfPf - ok
13:42:21.0676 2304 [ D885A873D733020F8B9B9FF4B1666158 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
13:42:21.0680 2304 WUDFRd - ok
13:42:21.0721 2304 [ 27B9BEE5AAC00139E3A3AF5D6227A0DC ] wudfsvc C:\Windows\System32\WUDFSvc.dll
13:42:21.0726 2304 wudfsvc - ok
13:42:21.0809 2304 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
13:42:21.0817 2304 WwanSvc - ok
13:42:21.0919 2304 ================ Scan global ===============================
13:42:21.0997 2304 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
13:42:22.0104 2304 [ 0CB6EBF4B461A6043353C570BD72A1E1 ] C:\Windows\system32\winsrv.dll
13:42:22.0117 2304 [ 0CB6EBF4B461A6043353C570BD72A1E1 ] C:\Windows\system32\winsrv.dll
13:42:22.0192 2304 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
13:42:22.0372 2304 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
13:42:22.0381 2304 [Global] - ok
13:42:22.0381 2304 ================ Scan MBR ==================================
13:42:22.0416 2304 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
13:42:31.0523 2304 \Device\Harddisk0\DR0 - ok
13:42:31.0530 2304 [ 671B81004FDD1588FA9ED1331C9CECA9 ] \Device\Harddisk1\DR1
13:42:39.0006 2304 \Device\Harddisk1\DR1 - ok
13:42:39.0007 2304 ================ Scan VBR ==================================
13:42:39.0026 2304 [ 44326674B1AC87C07F5B9EED81464DB1 ] \Device\Harddisk0\DR0\Partition1
13:42:39.0029 2304 \Device\Harddisk0\DR0\Partition1 - ok
13:42:39.0072 2304 [ 51A69E276DFB692E3A0380BE1611776F ] \Device\Harddisk0\DR0\Partition2
13:42:39.0075 2304 \Device\Harddisk0\DR0\Partition2 - ok
13:42:39.0080 2304 [ 3E70DC9715311EEAF6F96BC26725DEAE ] \Device\Harddisk1\DR1\Partition1
13:42:39.0081 2304 \Device\Harddisk1\DR1\Partition1 - ok
13:42:39.0081 2304 ============================================================
13:42:39.0081 2304 Scan finished
13:42:39.0081 2304 ============================================================
13:42:39.0091 9940 Detected object count: 0
13:42:39.0092 9940 Actual detected object count: 0

Edited by kriist, 11 October 2012 - 12:43 PM.


#4 kriist

kriist
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:02:02 PM

Posted 11 October 2012 - 09:10 AM

aswMBR log:

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-10-11 10:01:46
-----------------------------
10:01:46.244 OS Version: Windows x64 6.1.7600
10:01:46.244 Number of processors: 8 586 0x1E05
10:01:46.245 ComputerName: SAM UserName:
10:01:50.592 Initialize success
10:02:00.343 AVAST engine defs: 12101100
10:02:08.875 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
10:02:08.879 Disk 0 Vendor: WDC_WD50 01.0 Size: 476940MB BusType: 3
10:02:08.882 Disk 1 \Device\Harddisk1\DR1 -> \Device\00000094
10:02:08.886 Disk 1 Vendor: Size: 476940MB BusType: 0
10:02:08.956 Disk 0 MBR read successfully
10:02:08.961 Disk 0 MBR scan
10:02:08.976 Disk 0 Windows VISTA default MBR code
10:02:09.015 Disk 0 Partition 1 00 DE Dell Utility Dell 8.0 39 MB offset 63
10:02:09.060 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 15000 MB offset 80325
10:02:09.115 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 461899 MB offset 30800325
10:02:09.267 Disk 0 scanning C:\Windows\system32\drivers
10:02:38.594 Service scanning
10:03:04.899 Modules scanning
10:03:04.915 Disk 0 trace - called modules:
10:03:04.935 ntoskrnl.exe CLASSPNP.SYS disk.sys iaStor.sys hal.dll
10:03:04.944 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8004ca0060]
10:03:04.951 3 CLASSPNP.SYS[fffff8800100143f] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8004985050]
10:03:07.387 AVAST engine scan C:\Windows
10:03:11.481 AVAST engine scan C:\Windows\system32
10:06:01.142 AVAST engine scan C:\Windows\system32\drivers
10:06:21.489 AVAST engine scan C:\Users\Kriist
10:09:13.639 Disk 0 MBR has been saved successfully to "C:\Program Files (x86)\Mozilla Firefox\MBR.dat"
10:09:13.639 The log file has been saved successfully to "C:\Program Files (x86)\Mozilla Firefox\aswMBR.txt"

Edited by kriist, 11 October 2012 - 09:11 AM.


#5 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:02 PM

Posted 11 October 2012 - 09:18 AM

TDSSKiller log is incomplete

#6 kriist

kriist
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:02:02 PM

Posted 11 October 2012 - 12:44 PM

sorry for that, tdsskiller is saying im clean, however, the ESET is almost done and is reporting a few threats.

#7 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:02 PM

Posted 11 October 2012 - 12:48 PM

Post the logs

#8 kriist

kriist
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:02:02 PM

Posted 11 October 2012 - 02:36 PM

it's been going for 4.5 hours, is that normal?

#9 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:02 PM

Posted 11 October 2012 - 02:40 PM

yes

#10 kriist

kriist
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:02:02 PM

Posted 12 October 2012 - 01:01 PM

took all night but here it is.
ESET log:


C:\Program Files (x86)\AlienRespawn\hstart.exe a variant of Win32/HiddenStart.A application cleaned by deleting - quarantined
C:\Program Files (x86)\AlienRespawn\Components\DSUpdate\hstart.exe a variant of Win32/HiddenStart.A application cleaned by deleting - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\37824-2CA0SMH25.js HTML/ScrInject.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\akoCA05S2IR.js HTML/ScrInject.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\akoCAMW22CA.js HTML/ScrInject.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\akoCAP4FGHA.js HTML/ScrInject.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\akoCATX0BXY.js HTML/ScrInject.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\akoCAWU1VEO.js HTML/ScrInject.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\favorites[2].htm HTML/ScrInject.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\fpiCA53ULA2.htm HTML/ScrInject.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\fpiCAJJD76T.htm HTML/ScrInject.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\impCA2NBL0T.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\impCA30S4TO.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\impCA4NHYGJ.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\impCA5C1N4D.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\impCA6U8W5K.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\impCA93KBF2.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\impCAA2906Q.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\impCAA5HZOG.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\impCAAVKC5O.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\impCAB4ZS3K.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\impCAB5HVBV.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\impCABJLDNC.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\impCAD1TZ3H.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\impCADGI3B4.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\impCAF78JE2.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\impCAGL87RO.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\impCAKBYOUM.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\impCAKL0CPG.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\impCAONPWZO.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\impCAP7CW2A.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\impCAQP6XKZ.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\impCAQS2JKY.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\impCAS5Q1DC.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\impCATHXZCT.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\impCAUC7HYD.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\impCAUM6TE2.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\impCAV63MLQ.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\impCAVS7IQI.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\impCAWGE2E9.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\impCAXK5VSO.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\impCAXS7U14.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\impCAYEVE2X.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\impCAYRUP86.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\kitten-vs-bathtub[1].htm HTML/ScrInject.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\sleepy-kitten-licks-away[1].htm HTML/ScrInject.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\ttjCA0PEGVE.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\ttjCA25K9D1.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\ttjCA32993M.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\ttjCA3EYL0G.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\ttjCA429H0D.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\ttjCA4MUA2W.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\ttjCA4ZQAP5.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\ttjCA5EVMFH.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\ttjCA65M723.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\ttjCA69M3AY.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\ttjCA7WEL1H.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\ttjCA89SIIM.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\ttjCA8JII25.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\ttjCA8Q4I8A.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\ttjCA9E6Y7E.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\ttjCAA8AHRF.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\ttjCAAPRA8R.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\ttjCAB2PFDG.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\ttjCAB5NDZ1.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\ttjCACJUGXL.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\ttjCADY8T1G.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\ttjCAE9KCU9.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\ttjCAETMCMU.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\ttjCAFU8P9B.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\ttjCAGHYKJQ.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\ttjCAHFU4TS.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\ttjCAJH20E4.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\ttjCAJO8KJ5.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\ttjCAKP2LAT.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\ttjCAKTW3T8.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\ttjCAL1PSGF.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\ttjCALAU3NS.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\ttjCALWAYFR.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\ttjCAM9ZK3N.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\ttjCAMRC7D1.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\ttjCAON3N7P.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\ttjCAORY5O6.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\ttjCAOVKU33.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\ttjCAPKRCMX.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\ttjCAQJ3WWV.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\ttjCAQMQ5AN.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\ttjCAQZJ9YV.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\ttjCAR0USXI.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\ttjCASA9HY6.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\ttjCAU60BHM.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\ttjCAUAVSX1.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\ttjCAUTP5UE.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\ttjCAV4D6UH.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\ttjCAW2FS2E.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\ttjCAWLZMXP.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\ttjCAWUNYOZ.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\ttjCAYPVPH0.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4SDQDWCI\ttjCAZ4H9I2.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FZG8CKJ5\37822-15CACF5R92.js HTML/ScrInject.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FZG8CKJ5\37822-15CANW39M1.js HTML/ScrInject.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FZG8CKJ5\37822-2CA1QLD10.js HTML/ScrInject.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FZG8CKJ5\37822-2CAPJLZOG.js HTML/ScrInject.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FZG8CKJ5\37822-2[9].js HTML/ScrInject.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FZG8CKJ5\37824-2[8].js HTML/ScrInject.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FZG8CKJ5\impCA19CTXI.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FZG8CKJ5\impCACD11ZH.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FZG8CKJ5\impCAQKSOEL.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FZG8CKJ5\ttjCA2ANPDC.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FZG8CKJ5\ttjCA90DFIW.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FZG8CKJ5\ttjCAYLZTVS.js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HTW5LXJA\37824-2[5].js HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HTW5LXJA\akoCABIEF53.js HTML/ScrInject.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HTW5LXJA\akoCAKH90Z4.js HTML/ScrInject.B.Gen virus deleted - quarantined

#11 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:02 PM

Posted 12 October 2012 - 01:02 PM

Download

Malwarebytes

Install,update and run a full scan

Click on Show results.Right click on the list ,select all and remove them.

Post the generated log here

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size
List restore points

Click Go and post the result.

Download

Farbar service scanner

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.

Download

adware cleaner

Launch it click on Delete

A log should be generated after scan ,post it here

Download

Junkware removal tool

For vista and windows 7 right click on the tool and select run as administrator

After scan gets completed,post the generated log here.

#12 kriist

kriist
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:02:02 PM

Posted 12 October 2012 - 02:27 PM

Is it alright for me to run these simultaneously? I've been doing them consecutively.

#13 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:02 PM

Posted 12 October 2012 - 02:38 PM

Do not run them simultaneously.

#14 kriist

kriist
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:02:02 PM

Posted 13 October 2012 - 09:25 PM

Mbam Logs:

Malwarebytes Anti-Malware 1.65.0.1400
www.malwarebytes.org

Database version: v2012.10.11.07

Windows 7 x64 NTFS
Internet Explorer 9.0.8112.16421
Kriist :: SAM [administrator]

10/12/2012 4:54:02 PM
mbam-log-2012-10-12 (16-54-02).txt

Scan type: Full scan (C:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 4020748
Time elapsed: 1 day(s), 38 minute(s), 27 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

#15 kriist

kriist
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:02:02 PM

Posted 13 October 2012 - 09:28 PM

minitoolbar log:

MiniToolBox by Farbar Version: 23-07-2012
Ran by Kriist (administrator) on 13-10-2012 at 22:26:37
Microsoft Windows 7 Home Premium (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================



========================= IP Configuration: ================================

Intel® 82577LC Gigabit Network Connection = Local Area Connection (Connected)
DW1520 Wireless-N WLAN Half-Mini Card = Wireless Network Connection (Connected)
Bluetooth Device (Personal Area Network) = Bluetooth Network Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : SAm
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Mixed
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : Belkin

Ethernet adapter Bluetooth Network Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Bluetooth Device (Personal Area Network)
Physical Address. . . . . . . . . : C4-46-19-F7-29-BB
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . : Belkin
Description . . . . . . . . . . . : DW1520 Wireless-N WLAN Half-Mini Card
Physical Address. . . . . . . . . : C0-CB-38-42-A7-D4
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::bd7b:d843:68b2:ef8a%13(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.2.3(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Thursday, October 11, 2012 7:21:11 AM
Lease Expires . . . . . . . . . . : Wednesday, November 20, 2148 4:55:04 AM
Default Gateway . . . . . . . . . : 192.168.2.1
DHCP Server . . . . . . . . . . . : 192.168.2.1
DHCPv6 IAID . . . . . . . . . . . : 247515960
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-14-53-A6-F5-00-26-B9-FF-7E-DC
DNS Servers . . . . . . . . . . . : 192.168.2.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . : Belkin
Description . . . . . . . . . . . : Intel® 82577LC Gigabit Network Connection
Physical Address. . . . . . . . . : 00-26-B9-FF-7E-DC
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::94e9:7ba5:8537:4ae4%11(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.2.4(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Thursday, October 11, 2012 7:20:59 AM
Lease Expires . . . . . . . . . . : Wednesday, November 20, 2148 4:55:04 AM
Default Gateway . . . . . . . . . : 192.168.2.1
DHCP Server . . . . . . . . . . . : 192.168.2.1
DHCPv6 IAID . . . . . . . . . . . : 234890937
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-14-53-A6-F5-00-26-B9-FF-7E-DC
DNS Servers . . . . . . . . . . . : 192.168.2.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.hsd1.mn.comcast.net.:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{2507E935-94D0-4C5E-B2DB-80061FCEAFAB}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.hsd1.fl.comcast.net.:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: router.belkin
Address: 192.168.2.1

Name: google.com
Addresses: 2607:f8b0:4009:800::1007
74.125.225.103
74.125.225.96
74.125.225.105
74.125.225.98
74.125.225.99
74.125.225.102
74.125.225.110
74.125.225.101
74.125.225.97
74.125.225.104
74.125.225.100


Pinging google.com [74.125.225.100] with 32 bytes of data:
Reply from 74.125.225.100: bytes=32 time=34ms TTL=54
Reply from 74.125.225.100: bytes=32 time=46ms TTL=54

Ping statistics for 74.125.225.100:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 34ms, Maximum = 46ms, Average = 40ms
Server: router.belkin
Address: 192.168.2.1

Name: yahoo.com
Addresses: 98.139.183.24
72.30.38.140
98.138.253.109


Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
Reply from 98.138.253.109: bytes=32 time=91ms TTL=50
Reply from 98.138.253.109: bytes=32 time=79ms TTL=50

Ping statistics for 98.138.253.109:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 79ms, Maximum = 91ms, Average = 85ms
Server: router.belkin
Address: 192.168.2.1

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
14...c4 46 19 f7 29 bb ......Bluetooth Device (Personal Area Network)
13...c0 cb 38 42 a7 d4 ......DW1520 Wireless-N WLAN Half-Mini Card
11...00 26 b9 ff 7e dc ......Intel® 82577LC Gigabit Network Connection
1...........................Software Loopback Interface 1
18...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
19...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
20...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
16...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.2.1 192.168.2.4 20
0.0.0.0 0.0.0.0 192.168.2.1 192.168.2.3 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.2.0 255.255.255.0 On-link 192.168.2.4 276
192.168.2.0 255.255.255.0 On-link 192.168.2.3 281
192.168.2.3 255.255.255.255 On-link 192.168.2.3 281
192.168.2.4 255.255.255.255 On-link 192.168.2.4 276
192.168.2.255 255.255.255.255 On-link 192.168.2.4 276
192.168.2.255 255.255.255.255 On-link 192.168.2.3 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.2.4 276
224.0.0.0 240.0.0.0 On-link 192.168.2.3 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.2.4 276
255.255.255.255 255.255.255.255 On-link 192.168.2.3 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
11 276 fe80::/64 On-link
13 281 fe80::/64 On-link
11 276 fe80::94e9:7ba5:8537:4ae4/128
On-link
13 281 fe80::bd7b:d843:68b2:ef8a/128
On-link
1 306 ff00::/8 On-link
11 276 ff00::/8 On-link
13 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

Catalog5 02 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"

Catalog5 03 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 07 C:\Windows\SysWOW64\wshbth.dll [35840] (Microsoft Corporation)
Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [152864] (Apple Inc.)
Catalog9 01 mswsock.dll [File Not found] ()
Catalog9 02 mswsock.dll [File Not found] ()
Catalog9 03 mswsock.dll [File Not found] ()
Catalog9 04 mswsock.dll [File Not found] ()
Catalog9 05 mswsock.dll [File Not found] ()
Catalog9 06 mswsock.dll [File Not found] ()
Catalog9 07 mswsock.dll [File Not found] ()
Catalog9 08 mswsock.dll [File Not found] ()
Catalog9 09 mswsock.dll [File Not found] ()
Catalog9 10 mswsock.dll [File Not found] ()
Catalog9 11 mswsock.dll [File Not found] ()
x64-Catalog5 01 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"

x64-Catalog5 02 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"

x64-Catalog5 03 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\wshbth.dll [46592] (Microsoft Corporation)
x64-Catalog5 08 C:\Program Files\Bonjour\mdnsNSP.dll [193824] (Apple Inc.)
x64-Catalog9 01 mswsock.dll [File Not found] ()
x64-Catalog9 02 mswsock.dll [File Not found] ()
x64-Catalog9 03 mswsock.dll [File Not found] ()
x64-Catalog9 04 mswsock.dll [File Not found] ()
x64-Catalog9 05 mswsock.dll [File Not found] ()
x64-Catalog9 06 mswsock.dll [File Not found] ()
x64-Catalog9 07 mswsock.dll [File Not found] ()
x64-Catalog9 08 mswsock.dll [File Not found] ()
x64-Catalog9 09 mswsock.dll [File Not found] ()
x64-Catalog9 10 mswsock.dll [File Not found] ()
x64-Catalog9 11 mswsock.dll [File Not found] ()

========================= Event log errors: ===============================

Application errors:
==================
Error: (10/13/2012 10:26:10 PM) (Source: Application Hang) (User: )
Description: The program mbam.exe version 1.62.0.140 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 241c

Start Time: 01cda8bbb0184cfc

Termination Time: 478

Application Path: C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe

Report Id: 7b45e6a4-15a6-11e2-a487-0026b9ff7edc

Error: (10/13/2012 09:54:33 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest.

Error: (10/13/2012 01:24:38 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 14196

Error: (10/13/2012 01:24:38 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 14196

Error: (10/13/2012 01:24:38 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (10/13/2012 01:24:37 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 13198

Error: (10/13/2012 01:24:37 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 13198

Error: (10/13/2012 01:24:37 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (10/13/2012 01:24:36 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 12200

Error: (10/13/2012 01:24:36 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 12200


System errors:
=============
Error: (10/13/2012 10:10:35 PM) (Source: Service Control Manager) (User: )
Description: The AVGIDSAgent service failed to start due to the following error:
%%1053

Error: (10/13/2012 10:10:35 PM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the AVGIDSAgent service to connect.

Error: (10/13/2012 01:49:31 PM) (Source: Service Control Manager) (User: )
Description: The AVGIDSAgent service failed to start due to the following error:
%%1053

Error: (10/13/2012 01:49:31 PM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the AVGIDSAgent service to connect.

Error: (10/13/2012 01:44:48 PM) (Source: Service Control Manager) (User: )
Description: The HomeGroup Provider service depends on the Function Discovery Resource Publication service which failed to start because of the following error:
%%-2147024891

Error: (10/13/2012 01:44:48 PM) (Source: Service Control Manager) (User: )
Description: The Function Discovery Resource Publication service terminated with the following error:
%%-2147024891

Error: (10/13/2012 01:44:48 PM) (Source: Service Control Manager) (User: )
Description: The Function Discovery Resource Publication service terminated with the following error:
%%-2147024891

Error: (10/13/2012 01:44:48 PM) (Source: Service Control Manager) (User: )
Description: The HomeGroup Provider service depends on the Function Discovery Resource Publication service which failed to start because of the following error:
%%-2147024891

Error: (10/13/2012 01:44:43 PM) (Source: BTHUSB) (User: )
Description: The local Bluetooth adapter has failed in an undetermined manner and will not be used. The driver has been unloaded.

Error: (10/13/2012 01:24:10 PM) (Source: Service Control Manager) (User: )
Description: The HomeGroup Provider service depends on the Function Discovery Resource Publication service which failed to start because of the following error:
%%-2147024891


Microsoft Office Sessions:
=========================
Error: (10/13/2012 10:26:10 PM) (Source: Application Hang)(User: )
Description: mbam.exe1.62.0.140241c01cda8bbb0184cfc478C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe7b45e6a4-15a6-11e2-a487-0026b9ff7edc

Error: (10/13/2012 09:54:33 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifestc:\program files (x86)\ESET\eset online scanner\ESETSmartInstaller.exe

Error: (10/13/2012 01:24:38 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 14196

Error: (10/13/2012 01:24:38 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 14196

Error: (10/13/2012 01:24:38 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (10/13/2012 01:24:37 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 13198

Error: (10/13/2012 01:24:37 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 13198

Error: (10/13/2012 01:24:37 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (10/13/2012 01:24:36 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 12200

Error: (10/13/2012 01:24:36 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 12200


=========================== Installed Programs ============================

µTorrent (Version: 2.2.1)
Adobe Flash Player 11 ActiveX (Version: 11.4.402.287)
Adobe Flash Player 11 Plugin (Version: 11.4.402.287)
Adobe Reader 9.2 (Version: 9.2.0)
Advertising Center (Version: 0.0.0.2)
AlienRespawn - Support Software
AlienRespawn (Version: 9.4.51)
Apple Application Support (Version: 1.5.0)
Apple Mobile Device Support (Version: 3.4.0.25)
Apple Software Update (Version: 2.1.2.120)
ATI Catalyst Install Manager (Version: 3.0.754.0)
AVG 2013 (Version: 13.0.2601)
AVG 2013 (Version: 13.0.2740)
AVG 2013 (Version: 2013.0.2740)
Banctec Service Agreement (Version: 2.0.0)
Belkin Setup and Router Monitor
Belkin USB Print and Storage Center (Version: 1.1.4)
Bitdefender Anti-Theft (Version: 1.0.6.256)
Boingo Wi-Fi (Version: 1.7.0020)
Bonjour (Version: 2.0.4.0)
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center Core Implementation (Version: 2009.1217.1710.30775)
Catalyst Control Center Graphics Full Existing (Version: 2009.1217.1710.30775)
Catalyst Control Center Graphics Full New (Version: 2009.1217.1710.30775)
Catalyst Control Center Graphics Light (Version: 2009.1217.1710.30775)
Catalyst Control Center Graphics Previews Common (Version: 2009.1217.1710.30775)
Catalyst Control Center Graphics Previews Vista (Version: 2009.1217.1710.30775)
Catalyst Control Center InstallProxy (Version: 2009.1217.1710.30775)
Catalyst Control Center Localization All (Version: 2009.1217.1710.30775)
ccc-core-static (Version: 2009.1217.1710.30775)
ccc-utility64 (Version: 2009.1217.1710.30775)
CCC Help Chinese Standard (Version: 2009.1217.1709.30775)
CCC Help Chinese Traditional (Version: 2009.1217.1709.30775)
CCC Help Danish (Version: 2009.1217.1709.30775)
CCC Help Dutch (Version: 2009.1217.1709.30775)
CCC Help English (Version: 2009.1217.1709.30775)
CCC Help Finnish (Version: 2009.1217.1709.30775)
CCC Help French (Version: 2009.1217.1709.30775)
CCC Help German (Version: 2009.1217.1709.30775)
CCC Help Italian (Version: 2009.1217.1709.30775)
CCC Help Japanese (Version: 2009.1217.1709.30775)
CCC Help Korean (Version: 2009.1217.1709.30775)
CCC Help Norwegian (Version: 2009.1217.1709.30775)
CCC Help Portuguese (Version: 2009.1217.1709.30775)
CCC Help Russian (Version: 2009.1217.1709.30775)
CCC Help Spanish (Version: 2009.1217.1709.30775)
CCC Help Swedish (Version: 2009.1217.1709.30775)
Cisco EAP-FAST Module (Version: 2.2.14)
Cisco LEAP Module (Version: 1.0.19)
Cisco PEAP Module (Version: 1.1.6)
Cockatrice
Command Center (Version: 2.5.54.0)
Curse Client (Version: 4.0.1.286)
CyberLink YouCam (Version: 2.0.3131)
Diablo III (Version: 1.0.4.11327)
Dropbox (Version: 1.4.17)
DW WLAN Card Utility (Version: 5.60.48.18)
ESET Online Scanner v3
Hi-Rez Studios Authenticate and Update Service (Version: 3.0.0.0)
ImagXpress (Version: 7.0.74.0)
Intel® Control Center (Version: 1.2.1.1007)
Intel® Network Connections 14.8.43.0 (Version: 14.8.43.0)
Intel® Rapid Storage Technology (Version: 9.6.0.1014)
iTunes (Version: 10.2.1.1)
Java Auto Updater (Version: 2.0.2.1)
Java™ 6 Update 20 (64-bit) (Version: 6.0.200)
Java™ 6 Update 20 (Version: 6.0.200)
jZip
League of Legends (Version: 1.3)
Magic Online (Version: 3.00.0000)
Malwarebytes Anti-Malware version 1.65.0.1400 (Version: 1.65.0.1400)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.58299)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (Version: 8.0.51011)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Mozilla Firefox 13.0.1 (x86 en-US) (Version: 13.0.1)
Mozilla Maintenance Service (Version: 13.0.1)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Nero 9 Essentials
Nero BurnRights (Version: 3.4.13.100)
Nero BurnRights Help (Version: 3.4.4.100)
Nero ControlCenter (Version: 9.0.0.1)
Nero CoverDesigner (Version: 4.4.12.100)
Nero CoverDesigner Help (Version: 4.4.9.100)
Nero Disc Copy Gadget (Version: 2.4.34.0)
Nero Disc Copy Gadget Help (Version: 2.4.34.0)
Nero DiscSpeed (Version: 5.4.13.100)
Nero DiscSpeed Help (Version: 5.4.4.100)
Nero DriveSpeed (Version: 4.4.12.100)
Nero DriveSpeed Help (Version: 4.4.4.100)
Nero Express Help (Version: 9.4.26.100)
Nero InfoTool (Version: 6.4.12.100)
Nero InfoTool Help (Version: 6.4.4.100)
Nero Installer (Version: 4.4.9.0)
Nero Online Upgrade (Version: 1.3.0.0)
Nero Rescue Agent (Version: 2.4.14.100)
Nero RescueAgent Help (Version: 2.4.4.100)
Nero StartSmart (Version: 9.4.19.100)
Nero StartSmart Help (Version: 9.4.19.100)
NeroExpress (Version: 9.4.26.100)
neroxml (Version: 1.0.0)
OSD Setup (Version: 1.1.1)
Pando Media Booster (Version: 2.6.0.1)
QuickTime (Version: 7.69.80.9)
RICOH R5C83x/84x Flash Media Controller Driver Ver.3.57.01 (Version: 3.57.01)
Skype™ 5.9 (Version: 5.9.115)
Smite Closed Beta (Version: 0.1.976.1)
Spelling Dictionaries Support For Adobe Reader 9 (Version: 9.0.0)
Stardock MyColors (Version: 2.7.500)
Steam (Version: 1.0.0.0)
Synaptics Pointing Device Driver (Version: 14.0.12.0)
TeamSpeak 3 Client (Version: 3.0.6)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Ventrilo Client (Version: 3.0.5)
Video Mover
Visual Studio 2010 x64 Redistributables (Version: 13.0.0.1)
VLC media player 0.9.2 (Version: 0.9.2)
WIDCOMM Bluetooth Software (Version: 6.2.0.9603)
World of Warcraft (Version: 4.3.4.15595)

========================= Memory info: ===================================

Percentage of memory in use: 49%
Total physical RAM: 4084.5 MB
Available physical RAM: 2065.84 MB
Total Pagefile: 8167.15 MB
Available Pagefile: 4823.66 MB
Total Virtual: 4095.88 MB
Available Virtual: 3948.74 MB

========================= Partitions: =====================================

1 Drive c: (OS) (Fixed) (Total:451.07 GB) (Free:256.53 GB) NTFS
3 Drive e: (SAAMANTHA) (Removable) (Total:148.79 GB) (Free:89.45 GB) FAT32

========================= Users: ========================================

User accounts for \\SAM

Administrator Guest Kriist
stuff

========================= Restore Points ==================================

11-10-2012 05:28:18 Scheduled Checkpoint

**** End of log ****




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users