Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

PLEASE HELP ME REMOVE STUBBORN VIRUS


  • Please log in to reply
11 replies to this topic

#1 nellanitsuj

nellanitsuj

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:01:11 PM

Posted 30 October 2012 - 04:56 AM

Hey guys,

Forgive me if posted in the wrong section, I am a complete noob.

I got a virus from a website, scanned using Avira. It picked one up and I removed it, but every time I reboot windows it keeps coming back.

Any help in removing this virus would be greatly appreciated.

Edited by hamluis, 30 October 2012 - 06:16 AM.
Moved from Win 7 to Am I Infected - Hamluis.


BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:11 PM

Posted 30 October 2012 - 09:00 AM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here.If you get crashes in normal mode,run it in safemode with networking

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 nellanitsuj

nellanitsuj
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:01:11 PM

Posted 31 October 2012 - 05:31 AM

Hi again and thank you for your prompt reply.

I downloaded the TDSSkiller first and ran that in 'Normal' boot mode.
Here are the Logs;

20:37:03.0470 1244 TDSS rootkit removing tool 2.8.13.0 Oct 12 2012 17:26:47
20:37:05.0217 1244 ============================================================
20:37:05.0217 1244 Current date / time: 2012/10/31 20:37:05.0217
20:37:05.0217 1244 SystemInfo:
20:37:05.0217 1244
20:37:05.0217 1244 OS Version: 6.1.7601 ServicePack: 1.0
20:37:05.0217 1244 Product type: Workstation
20:37:05.0217 1244 ComputerName: JUSTIN
20:37:05.0217 1244 UserName: just1ns_3bay_5ales
20:37:05.0217 1244 Windows directory: C:\windows
20:37:05.0217 1244 System windows directory: C:\windows
20:37:05.0217 1244 Running under WOW64
20:37:05.0217 1244 Processor architecture: Intel x64
20:37:05.0217 1244 Number of processors: 8
20:37:05.0217 1244 Page size: 0x1000
20:37:05.0217 1244 Boot type: Safe boot with network
20:37:05.0217 1244 ============================================================
20:37:05.0825 1244 Drive \Device\Harddisk0\DR0 - Size: 0xAEA8CDE000 (698.64 Gb), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
20:37:05.0825 1244 Drive \Device\Harddisk1\DR1 - Size: 0xE8E0B00000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB00, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
20:37:05.0856 1244 ============================================================
20:37:05.0856 1244 \Device\Harddisk0\DR0:
20:37:05.0872 1244 MBR partitions:
20:37:05.0872 1244 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x64000
20:37:05.0872 1244 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x64800, BlocksNum 0x519FF000
20:37:05.0888 1244 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x51A64000, BlocksNum 0x3D60000
20:37:05.0888 1244 \Device\Harddisk1\DR1:
20:37:05.0888 1244 MBR partitions:
20:37:05.0888 1244 \Device\Harddisk1\DR1\Partition1: MBR, Type 0xB, StartLBA 0x800, BlocksNum 0x74705000
20:37:05.0888 1244 ============================================================
20:37:05.0934 1244 C: <-> \Device\Harddisk0\DR0\Partition2
20:37:05.0981 1244 D: <-> \Device\Harddisk0\DR0\Partition3
20:37:05.0981 1244 H: <-> \Device\Harddisk1\DR1\Partition1
20:37:05.0981 1244 ============================================================
20:37:05.0981 1244 Initialize success
20:37:05.0981 1244 ============================================================
20:37:29.0787 1716 ============================================================
20:37:29.0787 1716 Scan started
20:37:29.0787 1716 Mode: Manual; TDLFS;
20:37:29.0787 1716 ============================================================
20:37:29.0896 1716 ================ Scan system memory ========================
20:37:29.0896 1716 System memory - ok
20:37:29.0896 1716 ================ Scan services =============================
20:37:30.0177 1716 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\windows\system32\drivers\1394ohci.sys
20:37:30.0177 1716 1394ohci - ok
20:37:30.0208 1716 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\windows\system32\drivers\ACPI.sys
20:37:30.0208 1716 ACPI - ok
20:37:30.0239 1716 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\windows\system32\drivers\acpipmi.sys
20:37:30.0239 1716 AcpiPmi - ok
20:37:30.0286 1716 [ DC201246A14CB3B274DF59FAF539AB07 ] ACPIVPC C:\windows\system32\DRIVERS\AcpiVpc.sys
20:37:30.0286 1716 ACPIVPC - ok
20:37:30.0395 1716 [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
20:37:30.0411 1716 AdobeFlashPlayerUpdateSvc - ok
20:37:30.0458 1716 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\windows\system32\DRIVERS\adp94xx.sys
20:37:30.0458 1716 adp94xx - ok
20:37:30.0489 1716 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\windows\system32\DRIVERS\adpahci.sys
20:37:30.0504 1716 adpahci - ok
20:37:30.0504 1716 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\windows\system32\DRIVERS\adpu320.sys
20:37:30.0504 1716 adpu320 - ok
20:37:30.0536 1716 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\windows\System32\aelupsvc.dll
20:37:30.0536 1716 AeLookupSvc - ok
20:37:30.0582 1716 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\windows\system32\drivers\afd.sys
20:37:30.0582 1716 AFD - ok
20:37:30.0629 1716 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\windows\system32\drivers\agp440.sys
20:37:30.0629 1716 agp440 - ok
20:37:30.0645 1716 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\windows\System32\alg.exe
20:37:30.0645 1716 ALG - ok
20:37:30.0660 1716 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\windows\system32\drivers\aliide.sys
20:37:30.0660 1716 aliide - ok
20:37:30.0707 1716 [ 8FB0FE84496291F35090DA6352889472 ] AMD External Events Utility C:\windows\system32\atiesrxx.exe
20:37:30.0723 1716 AMD External Events Utility - ok
20:37:30.0738 1716 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\windows\system32\drivers\amdide.sys
20:37:30.0738 1716 amdide - ok
20:37:30.0754 1716 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\windows\system32\DRIVERS\amdk8.sys
20:37:30.0754 1716 AmdK8 - ok
20:37:30.0910 1716 [ 0D8BA29B572C916669F267706ED498CD ] amdkmdag C:\windows\system32\DRIVERS\atikmdag.sys
20:37:31.0050 1716 amdkmdag - ok
20:37:31.0082 1716 [ 5D06AB33F2C1F2265D57C8975514D9D7 ] amdkmdap C:\windows\system32\DRIVERS\atikmpag.sys
20:37:31.0082 1716 amdkmdap - ok
20:37:31.0082 1716 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\windows\system32\DRIVERS\amdppm.sys
20:37:31.0082 1716 AmdPPM - ok
20:37:31.0097 1716 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\windows\system32\drivers\amdsata.sys
20:37:31.0097 1716 amdsata - ok
20:37:31.0128 1716 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\windows\system32\DRIVERS\amdsbs.sys
20:37:31.0128 1716 amdsbs - ok
20:37:31.0144 1716 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\windows\system32\drivers\amdxata.sys
20:37:31.0144 1716 amdxata - ok
20:37:31.0362 1716 [ 548DFB36A6B1A8123BBA4DCFE0BEAD83 ] AntiVirSchedulerService C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
20:37:31.0456 1716 AntiVirSchedulerService - ok
20:37:31.0487 1716 [ 2FC40C57EECC7C7E400654605E76A0B3 ] AntiVirService C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
20:37:31.0487 1716 AntiVirService - ok
20:37:31.0534 1716 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\windows\system32\drivers\appid.sys
20:37:31.0534 1716 AppID - ok
20:37:31.0550 1716 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\windows\System32\appidsvc.dll
20:37:31.0550 1716 AppIDSvc - ok
20:37:31.0581 1716 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\windows\System32\appinfo.dll
20:37:31.0581 1716 Appinfo - ok
20:37:31.0612 1716 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\windows\system32\DRIVERS\arc.sys
20:37:31.0612 1716 arc - ok
20:37:31.0612 1716 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\windows\system32\DRIVERS\arcsas.sys
20:37:31.0628 1716 arcsas - ok
20:37:31.0721 1716 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
20:37:31.0752 1716 aspnet_state - ok
20:37:31.0768 1716 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\windows\system32\DRIVERS\asyncmac.sys
20:37:31.0768 1716 AsyncMac - ok
20:37:31.0815 1716 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\windows\system32\drivers\atapi.sys
20:37:31.0815 1716 atapi - ok
20:37:31.0877 1716 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\windows\System32\Audiosrv.dll
20:37:31.0877 1716 AudioEndpointBuilder - ok
20:37:31.0893 1716 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\windows\System32\Audiosrv.dll
20:37:31.0893 1716 AudioSrv - ok
20:37:31.0940 1716 [ 25B63A3C24A5E0223A35DE2F0D9E0FAF ] avgntflt C:\windows\system32\DRIVERS\avgntflt.sys
20:37:31.0940 1716 avgntflt - ok
20:37:31.0971 1716 [ A83691240C1568E6A3EAA5C86D9F8AE3 ] avipbb C:\windows\system32\DRIVERS\avipbb.sys
20:37:31.0971 1716 avipbb - ok
20:37:32.0018 1716 [ CD0E732347BF09717E0BDDC0C66699AB ] avkmgr C:\windows\system32\DRIVERS\avkmgr.sys
20:37:32.0018 1716 avkmgr - ok
20:37:32.0064 1716 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\windows\System32\AxInstSV.dll
20:37:32.0064 1716 AxInstSV - ok
20:37:32.0096 1716 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\windows\system32\DRIVERS\bxvbda.sys
20:37:32.0096 1716 b06bdrv - ok
20:37:32.0111 1716 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\windows\system32\DRIVERS\b57nd60a.sys
20:37:32.0111 1716 b57nd60a - ok
20:37:32.0158 1716 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\windows\System32\bdesvc.dll
20:37:32.0158 1716 BDESVC - ok
20:37:32.0174 1716 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\windows\system32\drivers\Beep.sys
20:37:32.0174 1716 Beep - ok
20:37:32.0252 1716 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\windows\System32\bfe.dll
20:37:32.0267 1716 BFE - ok
20:37:32.0298 1716 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\windows\system32\qmgr.dll
20:37:32.0345 1716 BITS - ok
20:37:32.0361 1716 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\windows\system32\DRIVERS\blbdrive.sys
20:37:32.0376 1716 blbdrive - ok
20:37:32.0392 1716 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\windows\system32\DRIVERS\bowser.sys
20:37:32.0392 1716 bowser - ok
20:37:32.0408 1716 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\windows\system32\DRIVERS\BrFiltLo.sys
20:37:32.0423 1716 BrFiltLo - ok
20:37:32.0423 1716 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\windows\system32\DRIVERS\BrFiltUp.sys
20:37:32.0423 1716 BrFiltUp - ok
20:37:32.0439 1716 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\windows\system32\DRIVERS\bridge.sys
20:37:32.0439 1716 BridgeMP - ok
20:37:32.0470 1716 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\windows\System32\browser.dll
20:37:32.0486 1716 Browser - ok
20:37:32.0486 1716 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\windows\System32\Drivers\Brserid.sys
20:37:32.0501 1716 Brserid - ok
20:37:32.0501 1716 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\windows\System32\Drivers\BrSerWdm.sys
20:37:32.0501 1716 BrSerWdm - ok
20:37:32.0501 1716 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\windows\System32\Drivers\BrUsbMdm.sys
20:37:32.0501 1716 BrUsbMdm - ok
20:37:32.0501 1716 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\windows\System32\Drivers\BrUsbSer.sys
20:37:32.0501 1716 BrUsbSer - ok
20:37:32.0548 1716 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\windows\system32\drivers\BthEnum.sys
20:37:32.0548 1716 BthEnum - ok
20:37:32.0548 1716 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\windows\system32\DRIVERS\bthmodem.sys
20:37:32.0548 1716 BTHMODEM - ok
20:37:32.0564 1716 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\windows\system32\DRIVERS\bthpan.sys
20:37:32.0579 1716 BthPan - ok
20:37:32.0626 1716 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT C:\windows\system32\Drivers\BTHport.sys
20:37:32.0626 1716 BTHPORT - ok
20:37:32.0657 1716 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\windows\system32\bthserv.dll
20:37:32.0657 1716 bthserv - ok
20:37:32.0688 1716 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\windows\system32\Drivers\BTHUSB.sys
20:37:32.0688 1716 BTHUSB - ok
20:37:32.0720 1716 [ 2641A3FE3D7B0646308F33B67F3B5300 ] btusbflt C:\windows\system32\drivers\btusbflt.sys
20:37:32.0720 1716 btusbflt - ok
20:37:32.0782 1716 [ F8CFAFBD5BF8B3DDB0D3C2943A5AF8CE ] BTWAMPFL C:\windows\system32\DRIVERS\btwampfl.sys
20:37:32.0782 1716 BTWAMPFL - ok
20:37:32.0813 1716 [ 44770A3C07EBD5D6D7CD7DBA915B49BC ] btwaudio C:\windows\system32\drivers\btwaudio.sys
20:37:32.0829 1716 btwaudio - ok
20:37:32.0844 1716 [ 75B59923087AE6EB064D13D8F58A02B6 ] btwavdt C:\windows\system32\DRIVERS\btwavdt.sys
20:37:32.0860 1716 btwavdt - ok
20:37:32.0938 1716 [ E1C1BCC8211E3AE2B524DEEF071FAF2A ] btwdins C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe
20:37:32.0954 1716 btwdins - ok
20:37:32.0969 1716 [ E06FE51893B481A200214760C0DE2621 ] BTWDPAN C:\windows\system32\DRIVERS\btwdpan.sys
20:37:32.0969 1716 BTWDPAN - ok
20:37:32.0985 1716 [ B9354F9F111C64F2495B60F1E24CB453 ] btwl2cap C:\windows\system32\DRIVERS\btwl2cap.sys
20:37:32.0985 1716 btwl2cap - ok
20:37:33.0000 1716 [ 9555E15F828760341751E9183BD34E60 ] btwrchid C:\windows\system32\DRIVERS\btwrchid.sys
20:37:33.0000 1716 btwrchid - ok
20:37:33.0016 1716 catchme - ok
20:37:33.0047 1716 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\windows\system32\DRIVERS\cdfs.sys
20:37:33.0047 1716 cdfs - ok
20:37:33.0094 1716 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\windows\system32\DRIVERS\cdrom.sys
20:37:33.0094 1716 cdrom - ok
20:37:33.0125 1716 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\windows\System32\certprop.dll
20:37:33.0125 1716 CertPropSvc - ok
20:37:33.0141 1716 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\windows\system32\DRIVERS\circlass.sys
20:37:33.0141 1716 circlass - ok
20:37:33.0172 1716 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\windows\system32\CLFS.sys
20:37:33.0172 1716 CLFS - ok
20:37:33.0234 1716 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
20:37:33.0234 1716 clr_optimization_v2.0.50727_32 - ok
20:37:33.0266 1716 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
20:37:33.0266 1716 clr_optimization_v2.0.50727_64 - ok
20:37:33.0344 1716 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
20:37:33.0422 1716 clr_optimization_v4.0.30319_32 - ok
20:37:33.0437 1716 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
20:37:33.0500 1716 clr_optimization_v4.0.30319_64 - ok
20:37:33.0531 1716 [ 50F92C943F18B070F166D019DFAB3D9A ] clwvd C:\windows\system32\DRIVERS\clwvd.sys
20:37:33.0531 1716 clwvd - ok
20:37:33.0562 1716 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\windows\system32\DRIVERS\CmBatt.sys
20:37:33.0562 1716 CmBatt - ok
20:37:33.0593 1716 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\windows\system32\drivers\cmdide.sys
20:37:33.0593 1716 cmdide - ok
20:37:33.0624 1716 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\windows\system32\Drivers\cng.sys
20:37:33.0640 1716 CNG - ok
20:37:33.0671 1716 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\windows\system32\DRIVERS\compbatt.sys
20:37:33.0671 1716 Compbatt - ok
20:37:33.0718 1716 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\windows\system32\drivers\CompositeBus.sys
20:37:33.0718 1716 CompositeBus - ok
20:37:33.0718 1716 COMSysApp - ok
20:37:33.0749 1716 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\windows\system32\DRIVERS\crcdisk.sys
20:37:33.0749 1716 crcdisk - ok
20:37:33.0796 1716 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\windows\system32\cryptsvc.dll
20:37:33.0796 1716 CryptSvc - ok
20:37:33.0827 1716 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\windows\system32\rpcss.dll
20:37:33.0843 1716 DcomLaunch - ok
20:37:33.0874 1716 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\windows\System32\defragsvc.dll
20:37:33.0890 1716 defragsvc - ok
20:37:33.0921 1716 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\windows\system32\Drivers\dfsc.sys
20:37:33.0921 1716 DfsC - ok
20:37:33.0952 1716 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\windows\system32\dhcpcore.dll
20:37:33.0952 1716 Dhcp - ok
20:37:33.0968 1716 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\windows\system32\drivers\discache.sys
20:37:33.0968 1716 discache - ok
20:37:33.0999 1716 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\windows\system32\DRIVERS\disk.sys
20:37:33.0999 1716 Disk - ok
20:37:34.0030 1716 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\windows\System32\dnsrslvr.dll
20:37:34.0030 1716 Dnscache - ok
20:37:34.0061 1716 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\windows\System32\dot3svc.dll
20:37:34.0077 1716 dot3svc - ok
20:37:34.0092 1716 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\windows\system32\dps.dll
20:37:34.0092 1716 DPS - ok
20:37:34.0108 1716 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\windows\system32\drivers\drmkaud.sys
20:37:34.0108 1716 drmkaud - ok
20:37:34.0139 1716 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\windows\System32\drivers\dxgkrnl.sys
20:37:34.0155 1716 DXGKrnl - ok
20:37:34.0170 1716 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\windows\System32\eapsvc.dll
20:37:34.0170 1716 EapHost - ok
20:37:34.0248 1716 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\windows\system32\DRIVERS\evbda.sys
20:37:34.0295 1716 ebdrv - ok
20:37:34.0326 1716 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\windows\System32\lsass.exe
20:37:34.0326 1716 EFS - ok
20:37:34.0373 1716 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\windows\ehome\ehRecvr.exe
20:37:34.0373 1716 ehRecvr - ok
20:37:34.0404 1716 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\windows\ehome\ehsched.exe
20:37:34.0404 1716 ehSched - ok
20:37:34.0436 1716 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\windows\system32\DRIVERS\elxstor.sys
20:37:34.0451 1716 elxstor - ok
20:37:34.0467 1716 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\windows\system32\drivers\errdev.sys
20:37:34.0467 1716 ErrDev - ok
20:37:34.0514 1716 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\windows\system32\es.dll
20:37:34.0514 1716 EventSystem - ok
20:37:34.0607 1716 [ 532B8FF8E07F3772B086620377654F95 ] EvtEng C:\Program Files\Intel\WiFi\bin\EvtEng.exe
20:37:34.0638 1716 EvtEng - ok
20:37:34.0685 1716 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\windows\system32\drivers\exfat.sys
20:37:34.0685 1716 exfat - ok
20:37:34.0701 1716 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\windows\system32\drivers\fastfat.sys
20:37:34.0701 1716 fastfat - ok
20:37:34.0748 1716 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\windows\system32\fxssvc.exe
20:37:34.0763 1716 Fax - ok
20:37:34.0779 1716 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\windows\system32\DRIVERS\fdc.sys
20:37:34.0779 1716 fdc - ok
20:37:34.0794 1716 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\windows\system32\fdPHost.dll
20:37:34.0794 1716 fdPHost - ok
20:37:34.0826 1716 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\windows\system32\fdrespub.dll
20:37:34.0826 1716 FDResPub - ok
20:37:34.0826 1716 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\windows\system32\drivers\fileinfo.sys
20:37:34.0826 1716 FileInfo - ok
20:37:34.0841 1716 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\windows\system32\drivers\filetrace.sys
20:37:34.0841 1716 Filetrace - ok
20:37:34.0857 1716 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\windows\system32\DRIVERS\flpydisk.sys
20:37:34.0857 1716 flpydisk - ok
20:37:34.0872 1716 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\windows\system32\drivers\fltmgr.sys
20:37:34.0872 1716 FltMgr - ok
20:37:34.0919 1716 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\windows\system32\FntCache.dll
20:37:34.0935 1716 FontCache - ok
20:37:34.0997 1716 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
20:37:34.0997 1716 FontCache3.0.0.0 - ok
20:37:34.0997 1716 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\windows\system32\drivers\FsDepends.sys
20:37:34.0997 1716 FsDepends - ok
20:37:35.0028 1716 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\windows\system32\drivers\Fs_Rec.sys
20:37:35.0028 1716 Fs_Rec - ok
20:37:35.0075 1716 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\windows\system32\DRIVERS\fvevol.sys
20:37:35.0075 1716 fvevol - ok
20:37:35.0106 1716 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\windows\system32\DRIVERS\gagp30kx.sys
20:37:35.0106 1716 gagp30kx - ok
20:37:35.0138 1716 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\windows\System32\gpsvc.dll
20:37:35.0138 1716 gpsvc - ok
20:37:35.0216 1716 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
20:37:35.0216 1716 gupdate - ok
20:37:35.0231 1716 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
20:37:35.0231 1716 gupdatem - ok
20:37:35.0247 1716 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\windows\system32\drivers\hcw85cir.sys
20:37:35.0247 1716 hcw85cir - ok
20:37:35.0278 1716 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys
20:37:35.0294 1716 HdAudAddService - ok
20:37:35.0356 1716 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\windows\system32\DRIVERS\HDAudBus.sys
20:37:35.0356 1716 HDAudBus - ok
20:37:35.0372 1716 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\windows\system32\DRIVERS\HidBatt.sys
20:37:35.0372 1716 HidBatt - ok
20:37:35.0372 1716 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\windows\system32\DRIVERS\hidbth.sys
20:37:35.0372 1716 HidBth - ok
20:37:35.0387 1716 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\windows\system32\DRIVERS\hidir.sys
20:37:35.0387 1716 HidIr - ok
20:37:35.0403 1716 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\windows\System32\hidserv.dll
20:37:35.0403 1716 hidserv - ok
20:37:35.0434 1716 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\windows\system32\drivers\hidusb.sys
20:37:35.0434 1716 HidUsb - ok
20:37:35.0450 1716 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\windows\system32\kmsvc.dll
20:37:35.0465 1716 hkmsvc - ok
20:37:35.0496 1716 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\windows\system32\ListSvc.dll
20:37:35.0496 1716 HomeGroupListener - ok
20:37:35.0528 1716 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\windows\system32\provsvc.dll
20:37:35.0528 1716 HomeGroupProvider - ok
20:37:35.0559 1716 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\windows\system32\drivers\HpSAMD.sys
20:37:35.0559 1716 HpSAMD - ok
20:37:35.0606 1716 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\windows\system32\drivers\HTTP.sys
20:37:35.0606 1716 HTTP - ok
20:37:35.0621 1716 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\windows\system32\drivers\hwpolicy.sys
20:37:35.0621 1716 hwpolicy - ok
20:37:35.0684 1716 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\windows\system32\drivers\i8042prt.sys
20:37:35.0684 1716 i8042prt - ok
20:37:35.0715 1716 [ 26CF4275034214ECEDD8EC17B0A18A99 ] iaStor C:\windows\system32\DRIVERS\iaStor.sys
20:37:35.0730 1716 iaStor - ok
20:37:35.0793 1716 [ E79A8E33BD136D14BAE1FA20EB2EF124 ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
20:37:35.0793 1716 IAStorDataMgrSvc - ok
20:37:35.0824 1716 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\windows\system32\drivers\iaStorV.sys
20:37:35.0840 1716 iaStorV - ok
20:37:35.0871 1716 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
20:37:35.0886 1716 idsvc - ok
20:37:36.0011 1716 [ A87261EF1546325B559374F5689CF5BC ] igfx C:\windows\system32\DRIVERS\igdkmd64.sys
20:37:36.0167 1716 igfx - ok
20:37:36.0183 1716 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\windows\system32\DRIVERS\iirsp.sys
20:37:36.0183 1716 iirsp - ok
20:37:36.0214 1716 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\windows\System32\ikeext.dll
20:37:36.0214 1716 IKEEXT - ok
20:37:36.0339 1716 [ C2F868881D48A568B525255F084EF063 ] IntcAzAudAddService C:\windows\system32\drivers\RTKVHD64.sys
20:37:36.0417 1716 IntcAzAudAddService - ok
20:37:36.0432 1716 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\windows\system32\drivers\intelide.sys
20:37:36.0432 1716 intelide - ok
20:37:36.0464 1716 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\windows\system32\DRIVERS\intelppm.sys
20:37:36.0464 1716 intelppm - ok
20:37:36.0495 1716 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\windows\system32\ipbusenum.dll
20:37:36.0495 1716 IPBusEnum - ok
20:37:36.0526 1716 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\windows\system32\DRIVERS\ipfltdrv.sys
20:37:36.0526 1716 IpFilterDriver - ok
20:37:36.0604 1716 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\windows\System32\iphlpsvc.dll
20:37:36.0604 1716 iphlpsvc - ok
20:37:36.0651 1716 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\windows\system32\drivers\IPMIDrv.sys
20:37:36.0651 1716 IPMIDRV - ok
20:37:36.0666 1716 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\windows\system32\drivers\ipnat.sys
20:37:36.0666 1716 IPNAT - ok
20:37:36.0698 1716 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\windows\system32\drivers\irenum.sys
20:37:36.0698 1716 IRENUM - ok
20:37:36.0713 1716 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\windows\system32\drivers\isapnp.sys
20:37:36.0713 1716 isapnp - ok
20:37:36.0744 1716 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\windows\system32\drivers\msiscsi.sys
20:37:36.0744 1716 iScsiPrt - ok
20:37:36.0807 1716 [ 56C59F5725CA184D6244ADF07D1D7497 ] JMCR C:\windows\system32\DRIVERS\jmcr.sys
20:37:36.0807 1716 JMCR - ok
20:37:36.0838 1716 [ CEE38AB6627CB2F8A97DD7D5A8449944 ] JmUsbCcgp C:\windows\system32\DRIVERS\jmccgp.sys
20:37:36.0838 1716 JmUsbCcgp - ok
20:37:36.0869 1716 [ C21332D7A3C4A9AC93A531F0530ADAE4 ] JmUsbVideo C:\windows\system32\Drivers\jmcam.sys
20:37:36.0869 1716 JmUsbVideo - ok
20:37:36.0885 1716 [ 02CFB0C078551F61AE7417CA793A0021 ] JmUsbVideo2 C:\windows\system32\Drivers\jmcam_lo.sys
20:37:36.0885 1716 JmUsbVideo2 - ok
20:37:36.0916 1716 [ 455B75C19BF3F1F2EE3AC10E1169826C ] k57nd60a C:\windows\system32\DRIVERS\k57nd60a.sys
20:37:36.0916 1716 k57nd60a - ok
20:37:36.0947 1716 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\windows\system32\drivers\kbdclass.sys
20:37:36.0947 1716 kbdclass - ok
20:37:36.0963 1716 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\windows\system32\drivers\kbdhid.sys
20:37:36.0963 1716 kbdhid - ok
20:37:36.0978 1716 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\windows\system32\lsass.exe
20:37:36.0978 1716 KeyIso - ok
20:37:37.0010 1716 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\windows\system32\Drivers\ksecdd.sys
20:37:37.0010 1716 KSecDD - ok
20:37:37.0041 1716 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\windows\system32\Drivers\ksecpkg.sys
20:37:37.0041 1716 KSecPkg - ok
20:37:37.0056 1716 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\windows\system32\drivers\ksthunk.sys
20:37:37.0056 1716 ksthunk - ok
20:37:37.0088 1716 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\windows\system32\msdtckrm.dll
20:37:37.0103 1716 KtmRm - ok
20:37:37.0134 1716 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\windows\System32\srvsvc.dll
20:37:37.0134 1716 LanmanServer - ok
20:37:37.0166 1716 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\windows\System32\wkssvc.dll
20:37:37.0166 1716 LanmanWorkstation - ok
20:37:37.0212 1716 [ BE166935083F9C38EDFDC21B9A7A679B ] LHDmgr C:\windows\system32\DRIVERS\LhdX64.sys
20:37:37.0212 1716 LHDmgr - ok
20:37:37.0228 1716 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\windows\system32\DRIVERS\lltdio.sys
20:37:37.0228 1716 lltdio - ok
20:37:37.0259 1716 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\windows\System32\lltdsvc.dll
20:37:37.0259 1716 lltdsvc - ok
20:37:37.0275 1716 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\windows\System32\lmhsvc.dll
20:37:37.0275 1716 lmhosts - ok
20:37:37.0306 1716 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\windows\system32\DRIVERS\lsi_fc.sys
20:37:37.0306 1716 LSI_FC - ok
20:37:37.0306 1716 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\windows\system32\DRIVERS\lsi_sas.sys
20:37:37.0306 1716 LSI_SAS - ok
20:37:37.0322 1716 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\windows\system32\DRIVERS\lsi_sas2.sys
20:37:37.0322 1716 LSI_SAS2 - ok
20:37:37.0337 1716 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\windows\system32\DRIVERS\lsi_scsi.sys
20:37:37.0337 1716 LSI_SCSI - ok
20:37:37.0337 1716 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\windows\system32\drivers\luafv.sys
20:37:37.0353 1716 luafv - ok
20:37:37.0368 1716 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\windows\system32\Mcx2Svc.dll
20:37:37.0384 1716 Mcx2Svc - ok
20:37:37.0384 1716 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\windows\system32\DRIVERS\megasas.sys
20:37:37.0384 1716 megasas - ok
20:37:37.0384 1716 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\windows\system32\DRIVERS\MegaSR.sys
20:37:37.0384 1716 MegaSR - ok
20:37:37.0446 1716 [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64 C:\windows\system32\DRIVERS\HECIx64.sys
20:37:37.0446 1716 MEIx64 - ok
20:37:37.0509 1716 Micorsoft Windows Service - ok
20:37:37.0524 1716 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\windows\system32\mmcss.dll
20:37:37.0524 1716 MMCSS - ok
20:37:37.0540 1716 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\windows\system32\drivers\modem.sys
20:37:37.0540 1716 Modem - ok
20:37:37.0556 1716 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\windows\system32\DRIVERS\monitor.sys
20:37:37.0556 1716 monitor - ok
20:37:37.0587 1716 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\windows\system32\drivers\mouclass.sys
20:37:37.0587 1716 mouclass - ok
20:37:37.0618 1716 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\windows\system32\DRIVERS\mouhid.sys
20:37:37.0618 1716 mouhid - ok
20:37:37.0634 1716 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\windows\system32\drivers\mountmgr.sys
20:37:37.0634 1716 mountmgr - ok
20:37:37.0665 1716 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\windows\system32\drivers\mpio.sys
20:37:37.0665 1716 mpio - ok
20:37:37.0680 1716 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\windows\system32\drivers\mpsdrv.sys
20:37:37.0680 1716 mpsdrv - ok
20:37:37.0758 1716 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\windows\system32\mpssvc.dll
20:37:37.0758 1716 MpsSvc - ok
20:37:37.0790 1716 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\windows\system32\drivers\mrxdav.sys
20:37:37.0790 1716 MRxDAV - ok
20:37:37.0821 1716 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\windows\system32\DRIVERS\mrxsmb.sys
20:37:37.0821 1716 mrxsmb - ok
20:37:37.0836 1716 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\windows\system32\DRIVERS\mrxsmb10.sys
20:37:37.0836 1716 mrxsmb10 - ok
20:37:37.0852 1716 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\windows\system32\DRIVERS\mrxsmb20.sys
20:37:37.0852 1716 mrxsmb20 - ok
20:37:37.0852 1716 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\windows\system32\drivers\msahci.sys
20:37:37.0852 1716 msahci - ok
20:37:37.0868 1716 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\windows\system32\drivers\msdsm.sys
20:37:37.0868 1716 msdsm - ok
20:37:37.0883 1716 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\windows\System32\msdtc.exe
20:37:37.0883 1716 MSDTC - ok
20:37:37.0914 1716 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\windows\system32\drivers\Msfs.sys
20:37:37.0914 1716 Msfs - ok
20:37:37.0930 1716 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\windows\System32\drivers\mshidkmdf.sys
20:37:37.0930 1716 mshidkmdf - ok
20:37:37.0946 1716 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\windows\system32\drivers\msisadrv.sys
20:37:37.0946 1716 msisadrv - ok
20:37:37.0977 1716 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\windows\system32\iscsiexe.dll
20:37:37.0977 1716 MSiSCSI - ok
20:37:37.0977 1716 msiserver - ok
20:37:38.0008 1716 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\windows\system32\drivers\MSKSSRV.sys
20:37:38.0008 1716 MSKSSRV - ok
20:37:38.0039 1716 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\windows\system32\drivers\MSPCLOCK.sys
20:37:38.0039 1716 MSPCLOCK - ok
20:37:38.0039 1716 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\windows\system32\drivers\MSPQM.sys
20:37:38.0039 1716 MSPQM - ok
20:37:38.0086 1716 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\windows\system32\drivers\MsRPC.sys
20:37:38.0086 1716 MsRPC - ok
20:37:38.0102 1716 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\windows\system32\drivers\mssmbios.sys
20:37:38.0102 1716 mssmbios - ok
20:37:38.0102 1716 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\windows\system32\drivers\MSTEE.sys
20:37:38.0102 1716 MSTEE - ok
20:37:38.0102 1716 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\windows\system32\DRIVERS\MTConfig.sys
20:37:38.0117 1716 MTConfig - ok
20:37:38.0133 1716 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\windows\system32\Drivers\mup.sys
20:37:38.0133 1716 Mup - ok
20:37:38.0180 1716 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\windows\system32\qagentRT.dll
20:37:38.0180 1716 napagent - ok
20:37:38.0211 1716 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\windows\system32\DRIVERS\nwifi.sys
20:37:38.0211 1716 NativeWifiP - ok
20:37:38.0273 1716 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\windows\system32\drivers\ndis.sys
20:37:38.0289 1716 NDIS - ok
20:37:38.0304 1716 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\windows\system32\DRIVERS\ndiscap.sys
20:37:38.0320 1716 NdisCap - ok
20:37:38.0336 1716 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\windows\system32\DRIVERS\ndistapi.sys
20:37:38.0336 1716 NdisTapi - ok
20:37:38.0351 1716 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\windows\system32\DRIVERS\ndisuio.sys
20:37:38.0351 1716 Ndisuio - ok
20:37:38.0398 1716 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\windows\system32\DRIVERS\ndiswan.sys
20:37:38.0398 1716 NdisWan - ok
20:37:38.0429 1716 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\windows\system32\drivers\NDProxy.sys
20:37:38.0429 1716 NDProxy - ok
20:37:38.0429 1716 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\windows\system32\DRIVERS\netbios.sys
20:37:38.0429 1716 NetBIOS - ok
20:37:38.0445 1716 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\windows\system32\DRIVERS\netbt.sys
20:37:38.0445 1716 NetBT - ok
20:37:38.0460 1716 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\windows\system32\lsass.exe
20:37:38.0460 1716 Netlogon - ok
20:37:38.0507 1716 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\windows\System32\netman.dll
20:37:38.0507 1716 Netman - ok
20:37:38.0554 1716 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:37:38.0585 1716 NetMsmqActivator - ok
20:37:38.0585 1716 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:37:38.0585 1716 NetPipeActivator - ok
20:37:38.0601 1716 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\windows\System32\netprofm.dll
20:37:38.0616 1716 netprofm - ok
20:37:38.0616 1716 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:37:38.0616 1716 NetTcpActivator - ok
20:37:38.0616 1716 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:37:38.0616 1716 NetTcpPortSharing - ok
20:37:38.0741 1716 [ 64428DFDAF6E88366CB51F45A79C5F69 ] netw5v64 C:\windows\system32\DRIVERS\netw5v64.sys
20:37:38.0835 1716 netw5v64 - ok
20:37:39.0022 1716 [ 774C9ECCEF83AB8A3D1466F19809C95F ] NETwNs64 C:\windows\system32\DRIVERS\NETwNs64.sys
20:37:39.0162 1716 NETwNs64 - ok
20:37:39.0209 1716 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\windows\system32\DRIVERS\nfrd960.sys
20:37:39.0209 1716 nfrd960 - ok
20:37:39.0240 1716 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\windows\System32\nlasvc.dll
20:37:39.0240 1716 NlaSvc - ok
20:37:39.0256 1716 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\windows\system32\drivers\Npfs.sys
20:37:39.0256 1716 Npfs - ok
20:37:39.0256 1716 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\windows\system32\nsisvc.dll
20:37:39.0272 1716 nsi - ok
20:37:39.0287 1716 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\windows\system32\drivers\nsiproxy.sys
20:37:39.0287 1716 nsiproxy - ok
20:37:39.0350 1716 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\windows\system32\drivers\Ntfs.sys
20:37:39.0381 1716 Ntfs - ok
20:37:39.0396 1716 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\windows\system32\drivers\Null.sys
20:37:39.0396 1716 Null - ok
20:37:39.0443 1716 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\windows\system32\drivers\nvraid.sys
20:37:39.0443 1716 nvraid - ok
20:37:39.0459 1716 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\windows\system32\drivers\nvstor.sys
20:37:39.0459 1716 nvstor - ok
20:37:39.0490 1716 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\windows\system32\drivers\nv_agp.sys
20:37:39.0490 1716 nv_agp - ok
20:37:39.0521 1716 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\windows\system32\drivers\ohci1394.sys
20:37:39.0521 1716 ohci1394 - ok
20:37:39.0568 1716 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\windows\system32\pnrpsvc.dll
20:37:39.0584 1716 p2pimsvc - ok
20:37:39.0599 1716 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\windows\system32\p2psvc.dll
20:37:39.0599 1716 p2psvc - ok
20:37:39.0615 1716 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\windows\system32\DRIVERS\parport.sys
20:37:39.0615 1716 Parport - ok
20:37:39.0630 1716 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\windows\system32\drivers\partmgr.sys
20:37:39.0630 1716 partmgr - ok
20:37:39.0646 1716 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\windows\System32\pcasvc.dll
20:37:39.0646 1716 PcaSvc - ok
20:37:39.0677 1716 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\windows\system32\drivers\pci.sys
20:37:39.0677 1716 pci - ok
20:37:39.0693 1716 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\windows\system32\drivers\pciide.sys
20:37:39.0693 1716 pciide - ok
20:37:39.0708 1716 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\windows\system32\DRIVERS\pcmcia.sys
20:37:39.0708 1716 pcmcia - ok
20:37:39.0724 1716 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\windows\system32\drivers\pcw.sys
20:37:39.0724 1716 pcw - ok
20:37:39.0755 1716 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\windows\system32\drivers\peauth.sys
20:37:39.0755 1716 PEAUTH - ok
20:37:39.0833 1716 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\windows\SysWow64\perfhost.exe
20:37:39.0880 1716 PerfHost - ok
20:37:39.0927 1716 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\windows\system32\pla.dll
20:37:39.0958 1716 pla - ok
20:37:39.0989 1716 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\windows\system32\umpnpmgr.dll
20:37:39.0989 1716 PlugPlay - ok
20:37:40.0005 1716 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\windows\system32\pnrpauto.dll
20:37:40.0005 1716 PNRPAutoReg - ok
20:37:40.0005 1716 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\windows\system32\pnrpsvc.dll
20:37:40.0020 1716 PNRPsvc - ok
20:37:40.0036 1716 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\windows\System32\ipsecsvc.dll
20:37:40.0036 1716 PolicyAgent - ok
20:37:40.0052 1716 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\windows\system32\umpo.dll
20:37:40.0067 1716 Power - ok
20:37:40.0098 1716 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\windows\system32\DRIVERS\raspptp.sys
20:37:40.0098 1716 PptpMiniport - ok
20:37:40.0114 1716 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\windows\system32\DRIVERS\processr.sys
20:37:40.0114 1716 Processor - ok
20:37:40.0130 1716 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\windows\system32\profsvc.dll
20:37:40.0130 1716 ProfSvc - ok
20:37:40.0130 1716 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\windows\system32\lsass.exe
20:37:40.0130 1716 ProtectedStorage - ok
20:37:40.0176 1716 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\windows\system32\DRIVERS\pacer.sys
20:37:40.0176 1716 Psched - ok
20:37:40.0223 1716 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\windows\system32\DRIVERS\ql2300.sys
20:37:40.0239 1716 ql2300 - ok
20:37:40.0254 1716 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\windows\system32\DRIVERS\ql40xx.sys
20:37:40.0254 1716 ql40xx - ok
20:37:40.0270 1716 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\windows\system32\qwave.dll
20:37:40.0270 1716 QWAVE - ok
20:37:40.0286 1716 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\windows\system32\drivers\qwavedrv.sys
20:37:40.0286 1716 QWAVEdrv - ok
20:37:40.0286 1716 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\windows\system32\DRIVERS\rasacd.sys
20:37:40.0286 1716 RasAcd - ok
20:37:40.0317 1716 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\windows\system32\DRIVERS\AgileVpn.sys
20:37:40.0317 1716 RasAgileVpn - ok
20:37:40.0332 1716 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\windows\System32\rasauto.dll
20:37:40.0332 1716 RasAuto - ok
20:37:40.0348 1716 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\windows\system32\DRIVERS\rasl2tp.sys
20:37:40.0348 1716 Rasl2tp - ok
20:37:40.0379 1716 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\windows\System32\rasmans.dll
20:37:40.0379 1716 RasMan - ok
20:37:40.0395 1716 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\windows\system32\DRIVERS\raspppoe.sys
20:37:40.0395 1716 RasPppoe - ok
20:37:40.0395 1716 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\windows\system32\DRIVERS\rassstp.sys
20:37:40.0395 1716 RasSstp - ok
20:37:40.0426 1716 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\windows\system32\DRIVERS\rdbss.sys
20:37:40.0426 1716 rdbss - ok
20:37:40.0442 1716 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\windows\system32\DRIVERS\rdpbus.sys
20:37:40.0442 1716 rdpbus - ok
20:37:40.0457 1716 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\windows\system32\DRIVERS\RDPCDD.sys
20:37:40.0457 1716 RDPCDD - ok
20:37:40.0473 1716 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\windows\system32\drivers\rdpencdd.sys
20:37:40.0473 1716 RDPENCDD - ok
20:37:40.0504 1716 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\windows\system32\drivers\rdprefmp.sys
20:37:40.0504 1716 RDPREFMP - ok
20:37:40.0535 1716 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\windows\system32\drivers\RDPWD.sys
20:37:40.0535 1716 RDPWD - ok
20:37:40.0566 1716 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\windows\system32\drivers\rdyboost.sys
20:37:40.0566 1716 rdyboost - ok
20:37:40.0660 1716 [ 7196BE857E29007470FF9B689C7F29A7 ] RegSrvc C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
20:37:40.0676 1716 RegSrvc - ok
20:37:40.0722 1716 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\windows\System32\mprdim.dll
20:37:40.0738 1716 RemoteAccess - ok
20:37:40.0754 1716 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\windows\system32\regsvc.dll
20:37:40.0769 1716 RemoteRegistry - ok
20:37:40.0785 1716 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\windows\system32\DRIVERS\rfcomm.sys
20:37:40.0785 1716 RFCOMM - ok
20:37:40.0800 1716 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\windows\System32\RpcEpMap.dll
20:37:40.0800 1716 RpcEptMapper - ok
20:37:40.0816 1716 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\windows\system32\locator.exe
20:37:40.0832 1716 RpcLocator - ok
20:37:40.0847 1716 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\windows\system32\rpcss.dll
20:37:40.0847 1716 RpcSs - ok
20:37:40.0847 1716 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\windows\system32\DRIVERS\rspndr.sys
20:37:40.0847 1716 rspndr - ok
20:37:40.0894 1716 [ 116D03E901246AC7AF006121E1E22842 ] RTHDMIAzAudService C:\windows\system32\drivers\RtHDMIVX.sys
20:37:40.0894 1716 RTHDMIAzAudService - ok
20:37:40.0910 1716 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\windows\system32\lsass.exe
20:37:40.0910 1716 SamSs - ok
20:37:40.0956 1716 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\windows\system32\drivers\sbp2port.sys
20:37:40.0956 1716 sbp2port - ok
20:37:41.0066 1716 [ 794D4B48DFB6E999537C7C3947863463 ] SBSDWSCService C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
20:37:41.0097 1716 SBSDWSCService - ok
20:37:41.0112 1716 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\windows\System32\SCardSvr.dll
20:37:41.0112 1716 SCardSvr - ok
20:37:41.0144 1716 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\windows\system32\DRIVERS\scfilter.sys
20:37:41.0144 1716 scfilter - ok
20:37:41.0190 1716 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\windows\system32\schedsvc.dll
20:37:41.0206 1716 Schedule - ok
20:37:41.0237 1716 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\windows\System32\certprop.dll
20:37:41.0237 1716 SCPolicySvc - ok
20:37:41.0268 1716 [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus C:\windows\system32\drivers\sdbus.sys
20:37:41.0284 1716 sdbus - ok
20:37:41.0315 1716 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\windows\System32\SDRSVC.dll
20:37:41.0315 1716 SDRSVC - ok
20:37:41.0346 1716 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\windows\system32\drivers\secdrv.sys
20:37:41.0346 1716 secdrv - ok
20:37:41.0378 1716 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\windows\system32\seclogon.dll
20:37:41.0378 1716 seclogon - ok
20:37:41.0378 1716 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\windows\system32\sens.dll
20:37:41.0378 1716 SENS - ok
20:37:41.0409 1716 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\windows\system32\sensrsvc.dll
20:37:41.0409 1716 SensrSvc - ok
20:37:41.0440 1716 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\windows\system32\DRIVERS\serenum.sys
20:37:41.0440 1716 Serenum - ok
20:37:41.0440 1716 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\windows\system32\DRIVERS\serial.sys
20:37:41.0440 1716 Serial - ok
20:37:41.0471 1716 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\windows\system32\DRIVERS\sermouse.sys
20:37:41.0471 1716 sermouse - ok
20:37:41.0502 1716 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\windows\system32\sessenv.dll
20:37:41.0502 1716 SessionEnv - ok
20:37:41.0518 1716 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\windows\system32\drivers\sffdisk.sys
20:37:41.0518 1716 sffdisk - ok
20:37:41.0534 1716 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\windows\system32\drivers\sffp_mmc.sys
20:37:41.0534 1716 sffp_mmc - ok
20:37:41.0549 1716 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\windows\system32\drivers\sffp_sd.sys
20:37:41.0549 1716 sffp_sd - ok
20:37:41.0549 1716 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\windows\system32\DRIVERS\sfloppy.sys
20:37:41.0549 1716 sfloppy - ok
20:37:41.0596 1716 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\windows\System32\ipnathlp.dll
20:37:41.0596 1716 SharedAccess - ok
20:37:41.0643 1716 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\windows\System32\shsvcs.dll
20:37:41.0643 1716 ShellHWDetection - ok
20:37:41.0658 1716 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\windows\system32\DRIVERS\SiSRaid2.sys
20:37:41.0658 1716 SiSRaid2 - ok
20:37:41.0658 1716 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\windows\system32\DRIVERS\sisraid4.sys
20:37:41.0658 1716 SiSRaid4 - ok
20:37:41.0752 1716 [ AD2FA5CB9E9EBF668786CCDAE5CFE458 ] Slidebar Notifier Service C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\SlidebarNotifier.exe
20:37:41.0752 1716 Slidebar Notifier Service - ok
20:37:41.0768 1716 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\windows\system32\DRIVERS\smb.sys
20:37:41.0768 1716 Smb - ok
20:37:41.0783 1716 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\windows\System32\snmptrap.exe
20:37:41.0783 1716 SNMPTRAP - ok
20:37:41.0799 1716 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\windows\system32\drivers\spldr.sys
20:37:41.0799 1716 spldr - ok
20:37:41.0830 1716 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\windows\System32\spoolsv.exe
20:37:41.0846 1716 Spooler - ok
20:37:41.0924 1716 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\windows\system32\sppsvc.exe
20:37:42.0002 1716 sppsvc - ok
20:37:42.0017 1716 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\windows\system32\sppuinotify.dll
20:37:42.0017 1716 sppuinotify - ok
20:37:42.0048 1716 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\windows\system32\DRIVERS\srv.sys
20:37:42.0064 1716 srv - ok
20:37:42.0064 1716 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\windows\system32\DRIVERS\srv2.sys
20:37:42.0080 1716 srv2 - ok
20:37:42.0095 1716 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\windows\system32\DRIVERS\srvnet.sys
20:37:42.0095 1716 srvnet - ok
20:37:42.0111 1716 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\windows\System32\ssdpsrv.dll
20:37:42.0111 1716 SSDPSRV - ok
20:37:42.0111 1716 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\windows\system32\sstpsvc.dll
20:37:42.0126 1716 SstpSvc - ok
20:37:42.0126 1716 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\windows\system32\DRIVERS\stexstor.sys
20:37:42.0126 1716 stexstor - ok
20:37:42.0158 1716 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\windows\System32\wiaservc.dll
20:37:42.0173 1716 stisvc - ok
20:37:42.0189 1716 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\windows\system32\drivers\swenum.sys
20:37:42.0189 1716 swenum - ok
20:37:42.0204 1716 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\windows\System32\swprv.dll
20:37:42.0204 1716 swprv - ok
20:37:42.0267 1716 [ 4A89869318F1BBE4448EC8A4471E972F ] SynTP C:\windows\system32\DRIVERS\SynTP.sys
20:37:42.0282 1716 SynTP - ok
20:37:42.0345 1716 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\windows\system32\sysmain.dll
20:37:42.0376 1716 SysMain - ok
20:37:42.0392 1716 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\windows\System32\TabSvc.dll
20:37:42.0392 1716 TabletInputService - ok
20:37:42.0407 1716 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\windows\System32\tapisrv.dll
20:37:42.0423 1716 TapiSrv - ok
20:37:42.0423 1716 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\windows\System32\tbssvc.dll
20:37:42.0423 1716 TBS - ok
20:37:42.0485 1716 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] Tcpip C:\windows\system32\drivers\tcpip.sys
20:37:42.0516 1716 Tcpip - ok
20:37:42.0594 1716 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] TCPIP6 C:\windows\system32\DRIVERS\tcpip.sys
20:37:42.0610 1716 TCPIP6 - ok
20:37:42.0626 1716 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\windows\system32\drivers\tcpipreg.sys
20:37:42.0626 1716 tcpipreg - ok
20:37:42.0657 1716 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\windows\system32\drivers\tdpipe.sys
20:37:42.0657 1716 TDPIPE - ok
20:37:42.0672 1716 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\windows\system32\drivers\tdtcp.sys
20:37:42.0672 1716 TDTCP - ok
20:37:42.0704 1716 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\windows\system32\DRIVERS\tdx.sys
20:37:42.0704 1716 tdx - ok
20:37:42.0719 1716 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\windows\system32\drivers\termdd.sys
20:37:42.0719 1716 TermDD - ok
20:37:42.0735 1716 [ 2E648163254233755035B46DD7B89123 ] TermService C:\windows\System32\termsrv.dll
20:37:42.0750 1716 TermService - ok
20:37:42.0750 1716 [ F0344071948D1A1FA732231785A0664C ] Themes C:\windows\system32\themeservice.dll
20:37:42.0766 1716 Themes - ok
20:37:42.0782 1716 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\windows\system32\mmcss.dll
20:37:42.0782 1716 THREADORDER - ok
20:37:42.0782 1716 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\windows\System32\trkwks.dll
20:37:42.0782 1716 TrkWks - ok
20:37:42.0844 1716 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe
20:37:42.0844 1716 TrustedInstaller - ok
20:37:42.0875 1716 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\windows\system32\DRIVERS\tssecsrv.sys
20:37:42.0875 1716 tssecsrv - ok
20:37:42.0906 1716 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\windows\system32\drivers\tsusbflt.sys
20:37:42.0906 1716 TsUsbFlt - ok
20:37:42.0953 1716 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\windows\system32\DRIVERS\tunnel.sys
20:37:42.0953 1716 tunnel - ok
20:37:42.0984 1716 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\windows\system32\DRIVERS\uagp35.sys
20:37:42.0984 1716 uagp35 - ok
20:37:43.0000 1716 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\windows\system32\DRIVERS\udfs.sys
20:37:43.0000 1716 udfs - ok
20:37:43.0031 1716 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\windows\system32\UI0Detect.exe
20:37:43.0031 1716 UI0Detect - ok
20:37:43.0047 1716 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\windows\system32\drivers\uliagpkx.sys
20:37:43.0047 1716 uliagpkx - ok
20:37:43.0094 1716 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\windows\system32\DRIVERS\umbus.sys
20:37:43.0094 1716 umbus - ok
20:37:43.0109 1716 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\windows\system32\DRIVERS\umpass.sys
20:37:43.0109 1716 UmPass - ok
20:37:43.0125 1716 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\windows\System32\upnphost.dll
20:37:43.0140 1716 upnphost - ok
20:37:43.0156 1716 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\windows\system32\DRIVERS\usbccgp.sys
20:37:43.0156 1716 usbccgp - ok
20:37:43.0203 1716 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\windows\system32\drivers\usbcir.sys
20:37:43.0203 1716 usbcir - ok
20:37:43.0218 1716 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\windows\system32\drivers\usbehci.sys
20:37:43.0218 1716 usbehci - ok
20:37:43.0250 1716 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\windows\system32\DRIVERS\usbhub.sys
20:37:43.0250 1716 usbhub - ok
20:37:43.0265 1716 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\windows\system32\drivers\usbohci.sys
20:37:43.0265 1716 usbohci - ok
20:37:43.0296 1716 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\windows\system32\DRIVERS\usbprint.sys
20:37:43.0296 1716 usbprint - ok
20:37:43.0328 1716 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\windows\system32\DRIVERS\USBSTOR.SYS
20:37:43.0328 1716 USBSTOR - ok
20:37:43.0343 1716 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\windows\system32\drivers\usbuhci.sys
20:37:43.0343 1716 usbuhci - ok
20:37:43.0359 1716 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\windows\System32\Drivers\usbvideo.sys
20:37:43.0359 1716 usbvideo - ok
20:37:43.0374 1716 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\windows\System32\uxsms.dll
20:37:43.0374 1716 UxSms - ok
20:37:43.0390 1716 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\windows\system32\lsass.exe
20:37:43.0390 1716 VaultSvc - ok
20:37:43.0390 1716 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\windows\system32\drivers\vdrvroot.sys
20:37:43.0390 1716 vdrvroot - ok
20:37:43.0421 1716 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\windows\System32\vds.exe
20:37:43.0437 1716 vds - ok
20:37:43.0452 1716 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\windows\system32\DRIVERS\vgapnp.sys
20:37:43.0452 1716 vga - ok
20:37:43.0468 1716 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\windows\System32\drivers\vga.sys
20:37:43.0468 1716 VgaSave - ok
20:37:43.0484 1716 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\windows\system32\drivers\vhdmp.sys
20:37:43.0499 1716 vhdmp - ok
20:37:43.0530 1716 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\windows\system32\drivers\viaide.sys
20:37:43.0530 1716 viaide - ok
20:37:43.0546 1716 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\windows\system32\drivers\volmgr.sys
20:37:43.0546 1716 volmgr - ok
20:37:43.0577 1716 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\windows\system32\drivers\volmgrx.sys
20:37:43.0593 1716 volmgrx - ok
20:37:43.0608 1716 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\windows\system32\drivers\volsnap.sys
20:37:43.0608 1716 volsnap - ok
20:37:43.0640 1716 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\windows\system32\DRIVERS\vsmraid.sys
20:37:43.0640 1716 vsmraid - ok
20:37:43.0702 1716 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\windows\system32\vssvc.exe
20:37:43.0733 1716 VSS - ok
20:37:43.0749 1716 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\windows\system32\DRIVERS\vwifibus.sys
20:37:43.0749 1716 vwifibus - ok
20:37:43.0764 1716 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\windows\system32\DRIVERS\vwififlt.sys
20:37:43.0764 1716 vwififlt - ok
20:37:43.0780 1716 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\windows\system32\DRIVERS\vwifimp.sys
20:37:43.0780 1716 vwifimp - ok
20:37:43.0827 1716 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\windows\system32\w32time.dll
20:37:43.0827 1716 W32Time - ok
20:37:43.0827 1716 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\windows\system32\DRIVERS\wacompen.sys
20:37:43.0842 1716 WacomPen - ok
20:37:43.0858 1716 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\windows\system32\DRIVERS\wanarp.sys
20:37:43.0874 1716 WANARP - ok
20:37:43.0874 1716 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\windows\system32\DRIVERS\wanarp.sys
20:37:43.0874 1716 Wanarpv6 - ok
20:37:43.0936 1716 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\windows\system32\Wat\WatAdminSvc.exe
20:37:43.0967 1716 WatAdminSvc - ok
20:37:44.0014 1716 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\windows\system32\wbengine.exe
20:37:44.0045 1716 wbengine - ok
20:37:44.0061 1716 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\windows\System32\wbiosrvc.dll
20:37:44.0061 1716 WbioSrvc - ok
20:37:44.0092 1716 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\windows\System32\wcncsvc.dll
20:37:44.0108 1716 wcncsvc - ok
20:37:44.0123 1716 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll
20:37:44.0123 1716 WcsPlugInService - ok
20:37:44.0123 1716 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\windows\system32\DRIVERS\wd.sys
20:37:44.0123 1716 Wd - ok
20:37:44.0154 1716 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\windows\system32\drivers\Wdf01000.sys
20:37:44.0154 1716 Wdf01000 - ok
20:37:44.0154 1716 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\windows\system32\wdi.dll
20:37:44.0154 1716 WdiServiceHost - ok
20:37:44.0170 1716 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\windows\system32\wdi.dll
20:37:44.0170 1716 WdiSystemHost - ok
20:37:44.0186 1716 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\windows\System32\webclnt.dll
20:37:44.0186 1716 WebClient - ok
20:37:44.0201 1716 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\windows\system32\wecsvc.dll
20:37:44.0201 1716 Wecsvc - ok
20:37:44.0217 1716 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\windows\System32\wercplsupport.dll
20:37:44.0217 1716 wercplsupport - ok
20:37:44.0232 1716 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\windows\System32\WerSvc.dll
20:37:44.0232 1716 WerSvc - ok
20:37:44.0248 1716 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\windows\system32\DRIVERS\wfplwf.sys
20:37:44.0248 1716 WfpLwf - ok
20:37:44.0295 1716 [ B14EF15BD757FA488F9C970EEE9C0D35 ] WimFltr C:\windows\system32\DRIVERS\wimfltr.sys
20:37:44.0310 1716 WimFltr - ok
20:37:44.0326 1716 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\windows\system32\drivers\wimmount.sys
20:37:44.0326 1716 WIMMount - ok
20:37:44.0373 1716 WinDefend - ok
20:37:44.0373 1716 WinHttpAutoProxySvc - ok
20:37:44.0435 1716 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\windows\system32\wbem\WMIsvc.dll
20:37:44.0435 1716 Winmgmt - ok
20:37:44.0498 1716 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\windows\system32\WsmSvc.dll
20:37:44.0544 1716 WinRM - ok
20:37:44.0591 1716 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\windows\System32\wlansvc.dll
20:37:44.0607 1716 Wlansvc - ok
20:37:44.0669 1716 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
20:37:44.0669 1716 wlcrasvc - ok
20:37:44.0778 1716 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
20:37:44.0825 1716 wlidsvc - ok
20:37:44.0841 1716 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\windows\system32\drivers\wmiacpi.sys
20:37:44.0841 1716 WmiAcpi - ok
20:37:44.0856 1716 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\windows\system32\wbem\WmiApSrv.exe
20:37:44.0856 1716 wmiApSrv - ok
20:37:44.0872 1716 WMPNetworkSvc - ok
20:37:44.0888 1716 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\windows\System32\wpcsvc.dll
20:37:44.0888 1716 WPCSvc - ok
20:37:44.0934 1716 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\windows\system32\wpdbusenum.dll
20:37:44.0934 1716 WPDBusEnum - ok
20:37:44.0966 1716 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\windows\system32\drivers\ws2ifsl.sys
20:37:44.0966 1716 ws2ifsl - ok
20:37:44.0997 1716 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\windows\system32\wscsvc.dll
20:37:45.0012 1716 wscsvc - ok
20:37:45.0012 1716 WSearch - ok
20:37:45.0044 1716 [ 83575C43B2BFE9AB0661A7F957E843C0 ] wsvd C:\windows\system32\DRIVERS\wsvd.sys
20:37:45.0044 1716 wsvd - ok
20:37:45.0106 1716 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\windows\system32\wuaueng.dll
20:37:45.0153 1716 wuauserv - ok
20:37:45.0168 1716 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\windows\system32\drivers\WudfPf.sys
20:37:45.0168 1716 WudfPf - ok
20:37:45.0200 1716 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\windows\system32\DRIVERS\WUDFRd.sys
20:37:45.0200 1716 WUDFRd - ok
20:37:45.0231 1716 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\windows\System32\WUDFSvc.dll
20:37:45.0231 1716 wudfsvc - ok
20:37:45.0246 1716 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\windows\System32\wwansvc.dll
20:37:45.0246 1716 WwanSvc - ok
20:37:45.0293 1716 ================ Scan global ===============================
20:37:45.0324 1716 [ BA0CD8C393E8C9F83354106093832C7B ] C:\windows\system32\basesrv.dll
20:37:45.0371 1716 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\windows\system32\winsrv.dll
20:37:45.0387 1716 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\windows\system32\winsrv.dll
20:37:45.0418 1716 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\windows\system32\sxssrv.dll
20:37:45.0449 1716 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\windows\system32\services.exe
20:37:45.0449 1716 [Global] - ok
20:37:45.0449 1716 ================ Scan MBR ==================================
20:37:45.0480 1716 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
20:37:45.0792 1716 \Device\Harddisk0\DR0 - ok
20:37:51.0565 1716 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk1\DR1
20:37:54.0185 1716 \Device\Harddisk1\DR1 - ok
20:37:54.0185 1716 ================ Scan VBR ==================================
20:37:54.0185 1716 [ 9992BA8ACB57E1FEF97A3E46C1C5151D ] \Device\Harddisk0\DR0\Partition1
20:37:54.0185 1716 \Device\Harddisk0\DR0\Partition1 - ok
20:37:54.0232 1716 [ C1AD1C161A0C8F11E23D68A2E18D4A48 ] \Device\Harddisk0\DR0\Partition2
20:37:54.0232 1716 \Device\Harddisk0\DR0\Partition2 - ok
20:37:54.0263 1716 [ 1CD73F82063D8BA74345FF09D29DE136 ] \Device\Harddisk0\DR0\Partition3
20:37:54.0263 1716 \Device\Harddisk0\DR0\Partition3 - ok
20:37:54.0279 1716 [ A1CBD96FD32863C0C084E74BC8D92703 ] \Device\Harddisk1\DR1\Partition1
20:37:54.0279 1716 \Device\Harddisk1\DR1\Partition1 - ok
20:37:54.0279 1716 ============================================================
20:37:54.0279 1716 Scan finished
20:37:54.0279 1716 ============================================================
20:37:54.0279 1324 Detected object count: 0
20:37:54.0279 1324 Actual detected object count: 0
20:38:02.0578 0684 Deinitialize success

NEXT LOG

20:38:21.0829 1740 TDSS rootkit removing tool 2.8.13.0 Oct 12 2012 17:26:47
20:38:23.0529 1740 ============================================================
20:38:23.0529 1740 Current date / time: 2012/10/31 20:38:23.0529
20:38:23.0529 1740 SystemInfo:
20:38:23.0529 1740
20:38:23.0529 1740 OS Version: 6.1.7601 ServicePack: 1.0
20:38:23.0529 1740 Product type: Workstation
20:38:23.0529 1740 ComputerName: JUSTIN
20:38:23.0529 1740 UserName: just1ns_3bay_5ales
20:38:23.0529 1740 Windows directory: C:\windows
20:38:23.0529 1740 System windows directory: C:\windows
20:38:23.0529 1740 Running under WOW64
20:38:23.0529 1740 Processor architecture: Intel x64
20:38:23.0529 1740 Number of processors: 8
20:38:23.0529 1740 Page size: 0x1000
20:38:23.0529 1740 Boot type: Safe boot with network
20:38:23.0529 1740 ============================================================
20:38:23.0919 1740 Drive \Device\Harddisk0\DR0 - Size: 0xAEA8CDE000 (698.64 Gb), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
20:38:23.0919 1740 Drive \Device\Harddisk1\DR1 - Size: 0xE8E0B00000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB00, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
20:38:29.0722 1740 ============================================================
20:38:29.0722 1740 \Device\Harddisk0\DR0:
20:38:29.0722 1740 MBR partitions:
20:38:29.0722 1740 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x64000
20:38:29.0722 1740 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x64800, BlocksNum 0x519FF000
20:38:29.0722 1740 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x51A64000, BlocksNum 0x3D60000
20:38:29.0722 1740 \Device\Harddisk1\DR1:
20:38:29.0753 1740 MBR partitions:
20:38:29.0753 1740 \Device\Harddisk1\DR1\Partition1: MBR, Type 0xB, StartLBA 0x800, BlocksNum 0x74705000
20:38:29.0753 1740 ============================================================
20:38:29.0816 1740 C: <-> \Device\Harddisk0\DR0\Partition2
20:38:29.0847 1740 D: <-> \Device\Harddisk0\DR0\Partition3
20:38:29.0847 1740 H: <-> \Device\Harddisk1\DR1\Partition1
20:38:29.0847 1740 ============================================================
20:38:29.0847 1740 Initialize success
20:38:29.0847 1740 ============================================================

NEXT LOG

20:41:18.0814 0640 TDSS rootkit removing tool 2.8.13.0 Oct 12 2012 17:26:47
20:41:20.0827 0640 ============================================================
20:41:20.0827 0640 Current date / time: 2012/10/31 20:41:20.0827
20:41:20.0827 0640 SystemInfo:
20:41:20.0827 0640
20:41:20.0827 0640 OS Version: 6.1.7601 ServicePack: 1.0
20:41:20.0827 0640 Product type: Workstation
20:41:20.0827 0640 ComputerName: JUSTIN
20:41:20.0827 0640 UserName: just1ns_3bay_5ales
20:41:20.0827 0640 Windows directory: C:\windows
20:41:20.0827 0640 System windows directory: C:\windows
20:41:20.0827 0640 Running under WOW64
20:41:20.0827 0640 Processor architecture: Intel x64
20:41:20.0827 0640 Number of processors: 8
20:41:20.0827 0640 Page size: 0x1000
20:41:20.0827 0640 Boot type: Normal boot
20:41:20.0827 0640 ============================================================
20:41:26.0770 0640 Drive \Device\Harddisk0\DR0 - Size: 0xAEA8CDE000 (698.64 Gb), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
20:41:26.0770 0640 Drive \Device\Harddisk1\DR1 - Size: 0xE8E0B00000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB00, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
20:41:28.0486 0640 ============================================================
20:41:28.0486 0640 \Device\Harddisk0\DR0:
20:41:28.0533 0640 MBR partitions:
20:41:28.0533 0640 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x64000
20:41:28.0533 0640 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x64800, BlocksNum 0x519FF000
20:41:28.0595 0640 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x51A64000, BlocksNum 0x3D60000
20:41:28.0595 0640 \Device\Harddisk1\DR1:
20:41:28.0595 0640 MBR partitions:
20:41:28.0595 0640 \Device\Harddisk1\DR1\Partition1: MBR, Type 0xB, StartLBA 0x800, BlocksNum 0x74705000
20:41:28.0595 0640 ============================================================
20:41:28.0689 0640 C: <-> \Device\Harddisk0\DR0\Partition2
20:41:29.0297 0640 D: <-> \Device\Harddisk0\DR0\Partition3
20:41:29.0297 0640 H: <-> \Device\Harddisk1\DR1\Partition1
20:41:29.0297 0640 ============================================================
20:41:29.0297 0640 Initialize success
20:41:29.0297 0640 ============================================================
20:41:45.0615 4876 ============================================================
20:41:45.0615 4876 Scan started
20:41:45.0615 4876 Mode: Manual; TDLFS;
20:41:45.0615 4876 ============================================================
20:41:46.0754 4876 ================ Scan system memory ========================
20:41:46.0754 4876 System memory - ok
20:41:46.0754 4876 ================ Scan services =============================
20:41:47.0534 4876 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\windows\system32\drivers\1394ohci.sys
20:41:47.0549 4876 1394ohci - ok
20:41:47.0612 4876 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\windows\system32\drivers\ACPI.sys
20:41:47.0643 4876 ACPI - ok
20:41:47.0721 4876 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\windows\system32\drivers\acpipmi.sys
20:41:47.0721 4876 AcpiPmi - ok
20:41:47.0815 4876 [ DC201246A14CB3B274DF59FAF539AB07 ] ACPIVPC C:\windows\system32\DRIVERS\AcpiVpc.sys
20:41:47.0815 4876 ACPIVPC - ok
20:41:48.0111 4876 [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
20:41:48.0142 4876 AdobeFlashPlayerUpdateSvc - ok
20:41:48.0220 4876 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\windows\system32\DRIVERS\adp94xx.sys
20:41:48.0251 4876 adp94xx - ok
20:41:48.0298 4876 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\windows\system32\DRIVERS\adpahci.sys
20:41:48.0314 4876 adpahci - ok
20:41:48.0345 4876 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\windows\system32\DRIVERS\adpu320.sys
20:41:48.0361 4876 adpu320 - ok
20:41:48.0392 4876 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\windows\System32\aelupsvc.dll
20:41:48.0407 4876 AeLookupSvc - ok
20:41:48.0517 4876 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\windows\system32\drivers\afd.sys
20:41:48.0548 4876 AFD - ok
20:41:48.0610 4876 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\windows\system32\drivers\agp440.sys
20:41:48.0626 4876 agp440 - ok
20:41:48.0641 4876 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\windows\System32\alg.exe
20:41:48.0657 4876 ALG - ok
20:41:48.0688 4876 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\windows\system32\drivers\aliide.sys
20:41:48.0688 4876 aliide - ok
20:41:48.0782 4876 [ 8FB0FE84496291F35090DA6352889472 ] AMD External Events Utility C:\windows\system32\atiesrxx.exe
20:41:48.0797 4876 AMD External Events Utility - ok
20:41:48.0829 4876 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\windows\system32\drivers\amdide.sys
20:41:48.0844 4876 amdide - ok
20:41:48.0891 4876 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\windows\system32\DRIVERS\amdk8.sys
20:41:48.0907 4876 AmdK8 - ok
20:41:49.0780 4876 [ 0D8BA29B572C916669F267706ED498CD ] amdkmdag C:\windows\system32\DRIVERS\atikmdag.sys
20:41:51.0028 4876 amdkmdag - ok
20:41:51.0075 4876 [ 5D06AB33F2C1F2265D57C8975514D9D7 ] amdkmdap C:\windows\system32\DRIVERS\atikmpag.sys
20:41:51.0075 4876 amdkmdap - ok
20:41:51.0106 4876 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\windows\system32\DRIVERS\amdppm.sys
20:41:51.0122 4876 AmdPPM - ok
20:41:51.0184 4876 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\windows\system32\drivers\amdsata.sys
20:41:51.0184 4876 amdsata - ok
20:41:51.0278 4876 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\windows\system32\DRIVERS\amdsbs.sys
20:41:51.0293 4876 amdsbs - ok
20:41:51.0309 4876 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\windows\system32\drivers\amdxata.sys
20:41:51.0325 4876 amdxata - ok
20:41:51.0730 4876 [ 548DFB36A6B1A8123BBA4DCFE0BEAD83 ] AntiVirSchedulerService C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
20:41:51.0746 4876 AntiVirSchedulerService - ok
20:41:51.0808 4876 [ 2FC40C57EECC7C7E400654605E76A0B3 ] AntiVirService C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
20:41:51.0824 4876 AntiVirService - ok
20:41:51.0917 4876 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\windows\system32\drivers\appid.sys
20:41:51.0933 4876 AppID - ok
20:41:52.0011 4876 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\windows\System32\appidsvc.dll
20:41:52.0027 4876 AppIDSvc - ok
20:41:52.0136 4876 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\windows\System32\appinfo.dll
20:41:52.0151 4876 Appinfo - ok
20:41:52.0307 4876 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\windows\system32\DRIVERS\arc.sys
20:41:52.0323 4876 arc - ok
20:41:52.0417 4876 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\windows\system32\DRIVERS\arcsas.sys
20:41:52.0417 4876 arcsas - ok
20:41:52.0588 4876 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
20:41:52.0604 4876 aspnet_state - ok
20:41:52.0666 4876 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\windows\system32\DRIVERS\asyncmac.sys
20:41:52.0682 4876 AsyncMac - ok
20:41:52.0775 4876 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\windows\system32\drivers\atapi.sys
20:41:52.0775 4876 atapi - ok
20:41:53.0009 4876 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\windows\System32\Audiosrv.dll
20:41:53.0056 4876 AudioEndpointBuilder - ok
20:41:53.0072 4876 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\windows\System32\Audiosrv.dll
20:41:53.0087 4876 AudioSrv - ok
20:41:53.0228 4876 [ 25B63A3C24A5E0223A35DE2F0D9E0FAF ] avgntflt C:\windows\system32\DRIVERS\avgntflt.sys
20:41:53.0243 4876 avgntflt - ok
20:41:53.0306 4876 [ A83691240C1568E6A3EAA5C86D9F8AE3 ] avipbb C:\windows\system32\DRIVERS\avipbb.sys
20:41:53.0321 4876 avipbb - ok
20:41:53.0368 4876 [ CD0E732347BF09717E0BDDC0C66699AB ] avkmgr C:\windows\system32\DRIVERS\avkmgr.sys
20:41:53.0384 4876 avkmgr - ok
20:41:53.0462 4876 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\windows\System32\AxInstSV.dll
20:41:53.0555 4876 AxInstSV - ok
20:41:53.0696 4876 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\windows\system32\DRIVERS\bxvbda.sys
20:41:53.0711 4876 b06bdrv - ok
20:41:53.0758 4876 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\windows\system32\DRIVERS\b57nd60a.sys
20:41:53.0774 4876 b57nd60a - ok
20:41:53.0977 4876 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\windows\System32\bdesvc.dll
20:41:53.0992 4876 BDESVC - ok
20:41:54.0055 4876 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\windows\system32\drivers\Beep.sys
20:41:54.0055 4876 Beep - ok
20:41:54.0476 4876 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\windows\System32\bfe.dll
20:41:54.0507 4876 BFE - ok
20:41:54.0725 4876 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\windows\system32\qmgr.dll
20:41:54.0757 4876 BITS - ok
20:41:54.0850 4876 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\windows\system32\DRIVERS\blbdrive.sys
20:41:54.0866 4876 blbdrive - ok
20:41:54.0944 4876 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\windows\system32\DRIVERS\bowser.sys
20:41:54.0959 4876 bowser - ok
20:41:55.0115 4876 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\windows\system32\DRIVERS\BrFiltLo.sys
20:41:55.0240 4876 BrFiltLo - ok
20:41:55.0240 4876 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\windows\system32\DRIVERS\BrFiltUp.sys
20:41:55.0334 4876 BrFiltUp - ok
20:41:55.0490 4876 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\windows\system32\DRIVERS\bridge.sys
20:41:55.0505 4876 BridgeMP - ok
20:41:55.0646 4876 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\windows\System32\browser.dll
20:41:55.0661 4876 Browser - ok
20:41:55.0771 4876 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\windows\System32\Drivers\Brserid.sys
20:41:55.0895 4876 Brserid - ok
20:41:55.0927 4876 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\windows\System32\Drivers\BrSerWdm.sys
20:41:56.0098 4876 BrSerWdm - ok
20:41:56.0145 4876 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\windows\System32\Drivers\BrUsbMdm.sys
20:41:56.0145 4876 BrUsbMdm - ok
20:41:56.0161 4876 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\windows\System32\Drivers\BrUsbSer.sys
20:41:56.0301 4876 BrUsbSer - ok
20:41:56.0441 4876 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\windows\system32\drivers\BthEnum.sys
20:41:56.0519 4876 BthEnum - ok
20:41:56.0582 4876 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\windows\system32\DRIVERS\bthmodem.sys
20:41:56.0613 4876 BTHMODEM - ok
20:41:56.0675 4876 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\windows\system32\DRIVERS\bthpan.sys
20:41:56.0691 4876 BthPan - ok
20:41:56.0785 4876 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT C:\windows\system32\Drivers\BTHport.sys
20:41:56.0847 4876 BTHPORT - ok
20:41:56.0972 4876 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\windows\system32\bthserv.dll
20:41:57.0003 4876 bthserv - ok
20:41:57.0050 4876 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\windows\system32\Drivers\BTHUSB.sys
20:41:57.0097 4876 BTHUSB - ok
20:41:57.0175 4876 [ 2641A3FE3D7B0646308F33B67F3B5300 ] btusbflt C:\windows\system32\drivers\btusbflt.sys
20:41:57.0268 4876 btusbflt - ok
20:41:57.0409 4876 [ F8CFAFBD5BF8B3DDB0D3C2943A5AF8CE ] BTWAMPFL C:\windows\system32\DRIVERS\btwampfl.sys
20:41:57.0767 4876 BTWAMPFL - ok
20:41:57.0830 4876 [ 44770A3C07EBD5D6D7CD7DBA915B49BC ] btwaudio C:\windows\system32\drivers\btwaudio.sys
20:41:57.0970 4876 btwaudio - ok
20:41:58.0079 4876 [ 75B59923087AE6EB064D13D8F58A02B6 ] btwavdt C:\windows\system32\DRIVERS\btwavdt.sys
20:41:58.0173 4876 btwavdt - ok
20:41:58.0501 4876 [ E1C1BCC8211E3AE2B524DEEF071FAF2A ] btwdins C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe
20:41:58.0532 4876 btwdins - ok
20:41:58.0532 4876 [ E06FE51893B481A200214760C0DE2621 ] BTWDPAN C:\windows\system32\DRIVERS\btwdpan.sys
20:41:58.0547 4876 BTWDPAN - ok
20:41:58.0594 4876 [ B9354F9F111C64F2495B60F1E24CB453 ] btwl2cap C:\windows\system32\DRIVERS\btwl2cap.sys
20:41:58.0594 4876 btwl2cap - ok
20:41:58.0672 4876 [ 9555E15F828760341751E9183BD34E60 ] btwrchid C:\windows\system32\DRIVERS\btwrchid.sys
20:41:58.0688 4876 btwrchid - ok
20:41:58.0859 4876 catchme - ok
20:41:58.0922 4876 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\windows\system32\DRIVERS\cdfs.sys
20:41:58.0937 4876 cdfs - ok
20:41:59.0015 4876 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\windows\system32\DRIVERS\cdrom.sys
20:41:59.0031 4876 cdrom - ok
20:41:59.0109 4876 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\windows\System32\certprop.dll
20:41:59.0125 4876 CertPropSvc - ok
20:41:59.0140 4876 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\windows\system32\DRIVERS\circlass.sys
20:41:59.0156 4876 circlass - ok
20:41:59.0234 4876 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\windows\system32\CLFS.sys
20:41:59.0249 4876 CLFS - ok
20:41:59.0405 4876 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
20:41:59.0421 4876 clr_optimization_v2.0.50727_32 - ok
20:41:59.0437 4876 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
20:41:59.0452 4876 clr_optimization_v2.0.50727_64 - ok
20:41:59.0593 4876 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
20:41:59.0608 4876 clr_optimization_v4.0.30319_32 - ok
20:41:59.0655 4876 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
20:41:59.0671 4876 clr_optimization_v4.0.30319_64 - ok
20:41:59.0733 4876 [ 50F92C943F18B070F166D019DFAB3D9A ] clwvd C:\windows\system32\DRIVERS\clwvd.sys
20:41:59.0733 4876 clwvd - ok
20:41:59.0780 4876 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\windows\system32\DRIVERS\CmBatt.sys
20:41:59.0780 4876 CmBatt - ok
20:41:59.0827 4876 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\windows\system32\drivers\cmdide.sys
20:41:59.0827 4876 cmdide - ok
20:41:59.0983 4876 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\windows\system32\Drivers\cng.sys
20:41:59.0998 4876 CNG - ok
20:42:00.0123 4876 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\windows\system32\DRIVERS\compbatt.sys
20:42:00.0185 4876 Compbatt - ok
20:42:00.0263 4876 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\windows\system32\drivers\CompositeBus.sys
20:42:00.0263 4876 CompositeBus - ok
20:42:00.0310 4876 COMSysApp - ok
20:42:00.0373 4876 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\windows\system32\DRIVERS\crcdisk.sys
20:42:00.0373 4876 crcdisk - ok
20:42:00.0466 4876 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\windows\system32\cryptsvc.dll
20:42:00.0482 4876 CryptSvc - ok
20:42:00.0560 4876 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\windows\system32\rpcss.dll
20:42:00.0575 4876 DcomLaunch - ok
20:42:00.0669 4876 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\windows\System32\defragsvc.dll
20:42:00.0685 4876 defragsvc - ok
20:42:00.0747 4876 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\windows\system32\Drivers\dfsc.sys
20:42:00.0763 4876 DfsC - ok
20:42:00.0856 4876 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\windows\system32\dhcpcore.dll
20:42:00.0919 4876 Dhcp - ok
20:42:00.0981 4876 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\windows\system32\drivers\discache.sys
20:42:00.0981 4876 discache - ok
20:42:01.0028 4876 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\windows\system32\DRIVERS\disk.sys
20:42:01.0043 4876 Disk - ok
20:42:01.0121 4876 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\windows\System32\dnsrslvr.dll
20:42:01.0137 4876 Dnscache - ok
20:42:01.0184 4876 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\windows\System32\dot3svc.dll
20:42:01.0199 4876 dot3svc - ok
20:42:01.0262 4876 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\windows\system32\dps.dll
20:42:01.0262 4876 DPS - ok
20:42:01.0309 4876 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\windows\system32\drivers\drmkaud.sys
20:42:01.0309 4876 drmkaud - ok
20:42:01.0402 4876 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\windows\System32\drivers\dxgkrnl.sys
20:42:01.0418 4876 DXGKrnl - ok
20:42:01.0465 4876 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\windows\System32\eapsvc.dll
20:42:01.0465 4876 EapHost - ok
20:42:01.0745 4876 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\windows\system32\DRIVERS\evbda.sys
20:42:01.0886 4876 ebdrv - ok
20:42:01.0948 4876 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\windows\System32\lsass.exe
20:42:01.0964 4876 EFS - ok
20:42:02.0073 4876 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\windows\ehome\ehRecvr.exe
20:42:02.0104 4876 ehRecvr - ok
20:42:02.0120 4876 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\windows\ehome\ehsched.exe
20:42:02.0135 4876 ehSched - ok
20:42:02.0182 4876 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\windows\system32\DRIVERS\elxstor.sys
20:42:02.0198 4876 elxstor - ok
20:42:02.0229 4876 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\windows\system32\drivers\errdev.sys
20:42:02.0245 4876 ErrDev - ok
20:42:02.0338 4876 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\windows\system32\es.dll
20:42:02.0354 4876 EventSystem - ok
20:42:02.0619 4876 [ 532B8FF8E07F3772B086620377654F95 ] EvtEng C:\Program Files\Intel\WiFi\bin\EvtEng.exe
20:42:02.0650 4876 EvtEng - ok
20:42:02.0681 4876 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\windows\system32\drivers\exfat.sys
20:42:02.0697 4876 exfat - ok
20:42:02.0713 4876 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\windows\system32\drivers\fastfat.sys
20:42:02.0728 4876 fastfat - ok
20:42:02.0884 4876 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\windows\system32\fxssvc.exe
20:42:02.0915 4876 Fax - ok
20:42:02.0962 4876 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\windows\system32\DRIVERS\fdc.sys
20:42:02.0978 4876 fdc - ok
20:42:03.0009 4876 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\windows\system32\fdPHost.dll
20:42:03.0009 4876 fdPHost - ok
20:42:03.0056 4876 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\windows\system32\fdrespub.dll
20:42:03.0056 4876 FDResPub - ok
20:42:03.0103 4876 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\windows\system32\drivers\fileinfo.sys
20:42:03.0118 4876 FileInfo - ok
20:42:03.0149 4876 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\windows\system32\drivers\filetrace.sys
20:42:03.0149 4876 Filetrace - ok
20:42:03.0165 4876 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\windows\system32\DRIVERS\flpydisk.sys
20:42:03.0181 4876 flpydisk - ok
20:42:03.0243 4876 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\windows\system32\drivers\fltmgr.sys
20:42:03.0259 4876 FltMgr - ok
20:42:03.0477 4876 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\windows\system32\FntCache.dll
20:42:03.0524 4876 FontCache - ok
20:42:03.0602 4876 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
20:42:03.0602 4876 FontCache3.0.0.0 - ok
20:42:03.0633 4876 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\windows\system32\drivers\FsDepends.sys
20:42:03.0649 4876 FsDepends - ok
20:42:03.0695 4876 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\windows\system32\drivers\Fs_Rec.sys
20:42:03.0695 4876 Fs_Rec - ok
20:42:03.0758 4876 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\windows\system32\DRIVERS\fvevol.sys
20:42:03.0789 4876 fvevol - ok
20:42:04.0148 4876 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\windows\system32\DRIVERS\gagp30kx.sys
20:42:04.0163 4876 gagp30kx - ok
20:42:04.0382 4876 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\windows\System32\gpsvc.dll
20:42:04.0413 4876 gpsvc - ok
20:42:04.0631 4876 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
20:42:04.0647 4876 gupdate - ok
20:42:04.0756 4876 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
20:42:04.0756 4876 gupdatem - ok
20:42:04.0850 4876 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\windows\system32\drivers\hcw85cir.sys
20:42:04.0865 4876 hcw85cir - ok
20:42:04.0959 4876 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys
20:42:04.0975 4876 HdAudAddService - ok
20:42:05.0068 4876 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\windows\system32\DRIVERS\HDAudBus.sys
20:42:05.0084 4876 HDAudBus - ok
20:42:05.0115 4876 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\windows\system32\DRIVERS\HidBatt.sys
20:42:05.0115 4876 HidBatt - ok
20:42:05.0115 4876 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\windows\system32\DRIVERS\hidbth.sys
20:42:05.0224 4876 HidBth - ok
20:42:05.0271 4876 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\windows\system32\DRIVERS\hidir.sys
20:42:05.0349 4876 HidIr - ok
20:42:05.0458 4876 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\windows\System32\hidserv.dll
20:42:05.0489 4876 hidserv - ok
20:42:05.0567 4876 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\windows\system32\drivers\hidusb.sys
20:42:06.0067 4876 HidUsb - ok
20:42:06.0113 4876 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\windows\system32\kmsvc.dll
20:42:06.0129 4876 hkmsvc - ok
20:42:06.0207 4876 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\windows\system32\ListSvc.dll
20:42:06.0223 4876 HomeGroupListener - ok
20:42:06.0285 4876 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\windows\system32\provsvc.dll
20:42:06.0316 4876 HomeGroupProvider - ok
20:42:06.0363 4876 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\windows\system32\drivers\HpSAMD.sys
20:42:06.0379 4876 HpSAMD - ok
20:42:06.0457 4876 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\windows\system32\drivers\HTTP.sys
20:42:06.0472 4876 HTTP - ok
20:42:06.0503 4876 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\windows\system32\drivers\hwpolicy.sys
20:42:06.0519 4876 hwpolicy - ok
20:42:06.0581 4876 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\windows\system32\drivers\i8042prt.sys
20:42:06.0597 4876 i8042prt - ok
20:42:06.0675 4876 [ 26CF4275034214ECEDD8EC17B0A18A99 ] iaStor C:\windows\system32\DRIVERS\iaStor.sys
20:42:06.0675 4876 iaStor - ok
20:42:06.0800 4876 [ E79A8E33BD136D14BAE1FA20EB2EF124 ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
20:42:06.0815 4876 IAStorDataMgrSvc - ok
20:42:06.0956 4876 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\windows\system32\drivers\iaStorV.sys
20:42:06.0987 4876 iaStorV - ok
20:42:07.0174 4876 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
20:42:07.0221 4876 idsvc - ok
20:42:07.0393 4876 [ A87261EF1546325B559374F5689CF5BC ] igfx C:\windows\system32\DRIVERS\igdkmd64.sys
20:42:07.0611 4876 igfx - ok
20:42:07.0689 4876 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\windows\system32\DRIVERS\iirsp.sys
20:42:07.0705 4876 iirsp - ok
20:42:07.0861 4876 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\windows\System32\ikeext.dll
20:42:07.0907 4876 IKEEXT - ok
20:42:08.0672 4876 [ C2F868881D48A568B525255F084EF063 ] IntcAzAudAddService C:\windows\system32\drivers\RTKVHD64.sys
20:42:08.0703 4876 IntcAzAudAddService - ok
20:42:08.0734 4876 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\windows\system32\drivers\intelide.sys
20:42:08.0734 4876 intelide - ok
20:42:08.0797 4876 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\windows\system32\DRIVERS\intelppm.sys
20:42:08.0812 4876 intelppm - ok
20:42:08.0859 4876 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\windows\system32\ipbusenum.dll
20:42:08.0875 4876 IPBusEnum - ok
20:42:08.0906 4876 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\windows\system32\DRIVERS\ipfltdrv.sys
20:42:08.0921 4876 IpFilterDriver - ok
20:42:09.0155 4876 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\windows\System32\iphlpsvc.dll
20:42:09.0155 4876 iphlpsvc - ok
20:42:09.0218 4876 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\windows\system32\drivers\IPMIDrv.sys
20:42:09.0233 4876 IPMIDRV - ok
20:42:09.0265 4876 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\windows\system32\drivers\ipnat.sys
20:42:09.0280 4876 IPNAT - ok
20:42:09.0311 4876 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\windows\system32\drivers\irenum.sys
20:42:09.0327 4876 IRENUM - ok
20:42:09.0358 4876 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\windows\system32\drivers\isapnp.sys
20:42:09.0374 4876 isapnp - ok
20:42:09.0436 4876 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\windows\system32\drivers\msiscsi.sys
20:42:09.0467 4876 iScsiPrt - ok
20:42:09.0623 4876 [ 56C59F5725CA184D6244ADF07D1D7497 ] JMCR C:\windows\system32\DRIVERS\jmcr.sys
20:42:09.0639 4876 JMCR - ok
20:42:09.0686 4876 [ CEE38AB6627CB2F8A97DD7D5A8449944 ] JmUsbCcgp C:\windows\system32\DRIVERS\jmccgp.sys
20:42:09.0701 4876 JmUsbCcgp - ok
20:42:09.0748 4876 [ C21332D7A3C4A9AC93A531F0530ADAE4 ] JmUsbVideo C:\windows\system32\Drivers\jmcam.sys
20:42:09.0764 4876 JmUsbVideo - ok
20:42:09.0779 4876 [ 02CFB0C078551F61AE7417CA793A0021 ] JmUsbVideo2 C:\windows\system32\Drivers\jmcam_lo.sys
20:42:09.0795 4876 JmUsbVideo2 - ok
20:42:09.0935 4876 [ 455B75C19BF3F1F2EE3AC10E1169826C ] k57nd60a C:\windows\system32\DRIVERS\k57nd60a.sys
20:42:09.0951 4876 k57nd60a - ok
20:42:10.0029 4876 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\windows\system32\drivers\kbdclass.sys
20:42:10.0029 4876 kbdclass - ok
20:42:10.0060 4876 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\windows\system32\drivers\kbdhid.sys
20:42:10.0076 4876 kbdhid - ok
20:42:10.0107 4876 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\windows\system32\lsass.exe
20:42:10.0107 4876 KeyIso - ok
20:42:10.0169 4876 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\windows\system32\Drivers\ksecdd.sys
20:42:10.0169 4876 KSecDD - ok
20:42:10.0216 4876 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\windows\system32\Drivers\ksecpkg.sys
20:42:10.0232 4876 KSecPkg - ok
20:42:10.0279 4876 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\windows\system32\drivers\ksthunk.sys
20:42:10.0294 4876 ksthunk - ok
20:42:10.0388 4876 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\windows\system32\msdtckrm.dll
20:42:10.0419 4876 KtmRm - ok
20:42:10.0466 4876 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\windows\System32\srvsvc.dll
20:42:10.0497 4876 LanmanServer - ok
20:42:10.0559 4876 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\windows\System32\wkssvc.dll
20:42:10.0575 4876 LanmanWorkstation - ok
20:42:10.0653 4876 [ BE166935083F9C38EDFDC21B9A7A679B ] LHDmgr C:\windows\system32\DRIVERS\LhdX64.sys
20:42:10.0653 4876 LHDmgr - ok
20:42:10.0731 4876 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\windows\system32\DRIVERS\lltdio.sys
20:42:10.0747 4876 lltdio - ok
20:42:10.0809 4876 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\windows\System32\lltdsvc.dll
20:42:10.0825 4876 lltdsvc - ok
20:42:10.0887 4876 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\windows\System32\lmhsvc.dll
20:42:10.0887 4876 lmhosts - ok
20:42:10.0949 4876 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\windows\system32\DRIVERS\lsi_fc.sys
20:42:10.0965 4876 LSI_FC - ok
20:42:10.0996 4876 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\windows\system32\DRIVERS\lsi_sas.sys
20:42:11.0012 4876 LSI_SAS - ok
20:42:11.0012 4876 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\windows\system32\DRIVERS\lsi_sas2.sys
20:42:11.0027 4876 LSI_SAS2 - ok
20:42:11.0043 4876 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\windows\system32\DRIVERS\lsi_scsi.sys
20:42:11.0059 4876 LSI_SCSI - ok
20:42:11.0074 4876 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\windows\system32\drivers\luafv.sys
20:42:11.0090 4876 luafv - ok
20:42:11.0152 4876 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\windows\system32\Mcx2Svc.dll
20:42:11.0168 4876 Mcx2Svc - ok
20:42:11.0183 4876 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\windows\system32\DRIVERS\megasas.sys
20:42:11.0183 4876 megasas - ok
20:42:11.0261 4876 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\windows\system32\DRIVERS\MegaSR.sys
20:42:11.0277 4876 MegaSR - ok
20:42:11.0355 4876 [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64 C:\windows\system32\DRIVERS\HECIx64.sys
20:42:11.0355 4876 MEIx64 - ok
20:42:11.0620 4876 Micorsoft Windows Service - ok
20:42:11.0651 4876 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\windows\system32\mmcss.dll
20:42:11.0651 4876 MMCSS - ok
20:42:11.0683 4876 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\windows\system32\drivers\modem.sys
20:42:11.0683 4876 Modem - ok
20:42:11.0714 4876 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\windows\system32\DRIVERS\monitor.sys
20:42:11.0714 4876 monitor - ok
20:42:11.0792 4876 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\windows\system32\drivers\mouclass.sys
20:42:11.0807 4876 mouclass - ok
20:42:11.0839 4876 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\windows\system32\DRIVERS\mouhid.sys
20:42:11.0839 4876 mouhid - ok
20:42:11.0901 4876 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\windows\system32\drivers\mountmgr.sys
20:42:11.0917 4876 mountmgr - ok
20:42:11.0979 4876 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\windows\system32\drivers\mpio.sys
20:42:11.0995 4876 mpio - ok
20:42:12.0026 4876 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\windows\system32\drivers\mpsdrv.sys
20:42:12.0041 4876 mpsdrv - ok
20:42:12.0229 4876 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\windows\system32\mpssvc.dll
20:42:12.0275 4876 MpsSvc - ok
20:42:12.0307 4876 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\windows\system32\drivers\mrxdav.sys
20:42:12.0322 4876 MRxDAV - ok
20:42:12.0385 4876 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\windows\system32\DRIVERS\mrxsmb.sys
20:42:12.0400 4876 mrxsmb - ok
20:42:12.0447 4876 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\windows\system32\DRIVERS\mrxsmb10.sys
20:42:12.0463 4876 mrxsmb10 - ok
20:42:12.0478 4876 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\windows\system32\DRIVERS\mrxsmb20.sys
20:42:12.0494 4876 mrxsmb20 - ok
20:42:12.0541 4876 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\windows\system32\drivers\msahci.sys
20:42:12.0541 4876 msahci - ok
20:42:12.0603 4876 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\windows\system32\drivers\msdsm.sys
20:42:12.0619 4876 msdsm - ok
20:42:12.0634 4876 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\windows\System32\msdtc.exe
20:42:12.0665 4876 MSDTC - ok
20:42:12.0712 4876 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\windows\system32\drivers\Msfs.sys
20:42:12.0712 4876 Msfs - ok
20:42:12.0775 4876 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\windows\System32\drivers\mshidkmdf.sys
20:42:12.0775 4876 mshidkmdf - ok
20:42:12.0821 4876 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\windows\system32\drivers\msisadrv.sys
20:42:12.0821 4876 msisadrv - ok
20:42:12.0868 4876 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\windows\system32\iscsiexe.dll
20:42:12.0884 4876 MSiSCSI - ok
20:42:12.0884 4876 msiserver - ok
20:42:12.0931 4876 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\windows\system32\drivers\MSKSSRV.sys
20:42:12.0946 4876 MSKSSRV - ok
20:42:12.0977 4876 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\windows\system32\drivers\MSPCLOCK.sys
20:42:12.0977 4876 MSPCLOCK - ok
20:42:12.0993 4876 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\windows\system32\drivers\MSPQM.sys
20:42:12.0993 4876 MSPQM - ok
20:42:13.0040 4876 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\windows\system32\drivers\MsRPC.sys
20:42:13.0055 4876 MsRPC - ok
20:42:13.0102 4876 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\windows\system32\drivers\mssmbios.sys
20:42:13.0102 4876 mssmbios - ok
20:42:13.0180 4876 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\windows\system32\drivers\MSTEE.sys
20:42:13.0180 4876 MSTEE - ok
20:42:13.0196 4876 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\windows\system32\DRIVERS\MTConfig.sys
20:42:13.0196 4876 MTConfig - ok
20:42:13.0227 4876 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\windows\system32\Drivers\mup.sys
20:42:13.0243 4876 Mup - ok
20:42:13.0305 4876 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\windows\system32\qagentRT.dll
20:42:13.0321 4876 napagent - ok
20:42:13.0414 4876 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\windows\system32\DRIVERS\nwifi.sys
20:42:13.0430 4876 NativeWifiP - ok
20:42:13.0820 4876 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\windows\system32\drivers\ndis.sys
20:42:13.0835 4876 NDIS - ok
20:42:13.0867 4876 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\windows\system32\DRIVERS\ndiscap.sys
20:42:13.0882 4876 NdisCap - ok
20:42:13.0913 4876 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\windows\system32\DRIVERS\ndistapi.sys
20:42:13.0929 4876 NdisTapi - ok
20:42:13.0960 4876 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\windows\system32\DRIVERS\ndisuio.sys
20:42:13.0960 4876 Ndisuio - ok
20:42:14.0023 4876 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\windows\system32\DRIVERS\ndiswan.sys
20:42:14.0038 4876 NdisWan - ok
20:42:14.0085 4876 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\windows\system32\drivers\NDProxy.sys
20:42:14.0085 4876 NDProxy - ok
20:42:14.0116 4876 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\windows\system32\DRIVERS\netbios.sys
20:42:14.0116 4876 NetBIOS - ok
20:42:14.0163 4876 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\windows\system32\DRIVERS\netbt.sys
20:42:14.0194 4876 NetBT - ok
20:42:14.0241 4876 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\windows\system32\lsass.exe
20:42:14.0241 4876 Netlogon - ok
20:42:14.0303 4876 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\windows\System32\netman.dll
20:42:14.0335 4876 Netman - ok
20:42:14.0413 4876 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:42:14.0428 4876 NetMsmqActivator - ok
20:42:14.0444 4876 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:42:14.0444 4876 NetPipeActivator - ok
20:42:14.0506 4876 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\windows\System32\netprofm.dll
20:42:14.0537 4876 netprofm - ok
20:42:14.0537 4876 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:42:14.0553 4876 NetTcpActivator - ok
20:42:14.0553 4876 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:42:14.0553 4876 NetTcpPortSharing - ok
20:42:14.0881 4876 [ 64428DFDAF6E88366CB51F45A79C5F69 ] netw5v64 C:\windows\system32\DRIVERS\netw5v64.sys
20:42:15.0021 4876 netw5v64 - ok
20:42:15.0333 4876 [ 774C9ECCEF83AB8A3D1466F19809C95F ] NETwNs64 C:\windows\system32\DRIVERS\NETwNs64.sys
20:42:15.0598 4876 NETwNs64 - ok
20:42:15.0707 4876 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\windows\system32\DRIVERS\nfrd960.sys
20:42:15.0723 4876 nfrd960 - ok
20:42:15.0848 4876 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\windows\System32\nlasvc.dll
20:42:15.0848 4876 NlaSvc - ok
20:42:15.0879 4876 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\windows\system32\drivers\Npfs.sys
20:42:15.0895 4876 Npfs - ok
20:42:15.0926 4876 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\windows\system32\nsisvc.dll
20:42:15.0941 4876 nsi - ok
20:42:16.0035 4876 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\windows\system32\drivers\nsiproxy.sys
20:42:16.0035 4876 nsiproxy - ok
20:42:16.0394 4876 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\windows\system32\drivers\Ntfs.sys
20:42:16.0441 4876 Ntfs - ok
20:42:16.0472 4876 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\windows\system32\drivers\Null.sys
20:42:16.0472 4876 Null - ok
20:42:16.0550 4876 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\windows\system32\drivers\nvraid.sys
20:42:16.0565 4876 nvraid - ok
20:42:16.0612 4876 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\windows\system32\drivers\nvstor.sys
20:42:16.0628 4876 nvstor - ok
20:42:16.0675 4876 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\windows\system32\drivers\nv_agp.sys
20:42:16.0690 4876 nv_agp - ok
20:42:16.0721 4876 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\windows\system32\drivers\ohci1394.sys
20:42:16.0737 4876 ohci1394 - ok
20:42:16.0815 4876 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\windows\system32\pnrpsvc.dll
20:42:16.0831 4876 p2pimsvc - ok
20:42:16.0877 4876 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\windows\system32\p2psvc.dll
20:42:16.0909 4876 p2psvc - ok
20:42:16.0955 4876 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\windows\system32\DRIVERS\parport.sys
20:42:16.0971 4876 Parport - ok
20:42:16.0971 4876 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\windows\system32\drivers\partmgr.sys
20:42:16.0987 4876 partmgr - ok
20:42:17.0002 4876 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\windows\System32\pcasvc.dll
20:42:17.0018 4876 PcaSvc - ok
20:42:17.0065 4876 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\windows\system32\drivers\pci.sys
20:42:17.0065 4876 pci - ok
20:42:17.0143 4876 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\windows\system32\drivers\pciide.sys
20:42:17.0143 4876 pciide - ok
20:42:17.0205 4876 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\windows\system32\DRIVERS\pcmcia.sys
20:42:17.0221 4876 pcmcia - ok
20:42:17.0252 4876 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\windows\system32\drivers\pcw.sys
20:42:17.0267 4876 pcw - ok
20:42:17.0299 4876 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\windows\system32\drivers\peauth.sys
20:42:17.0330 4876 PEAUTH - ok
20:42:17.0470 4876 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\windows\SysWow64\perfhost.exe
20:42:17.0486 4876 PerfHost - ok
20:42:17.0595 4876 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\windows\system32\pla.dll
20:42:17.0657 4876 pla - ok
20:42:17.0735 4876 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\windows\system32\umpnpmgr.dll
20:42:17.0767 4876 PlugPlay - ok
20:42:17.0813 4876 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\windows\system32\pnrpauto.dll
20:42:17.0829 4876 PNRPAutoReg - ok
20:42:17.0860 4876 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\windows\system32\pnrpsvc.dll
20:42:17.0876 4876 PNRPsvc - ok
20:42:17.0923 4876 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\windows\System32\ipsecsvc.dll
20:42:17.0954 4876 PolicyAgent - ok
20:42:18.0032 4876 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\windows\system32\umpo.dll
20:42:18.0047 4876 Power - ok
20:42:18.0110 4876 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\windows\system32\DRIVERS\raspptp.sys
20:42:18.0125 4876 PptpMiniport - ok
20:42:18.0157 4876 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\windows\system32\DRIVERS\processr.sys
20:42:18.0157 4876 Processor - ok
20:42:18.0219 4876 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\windows\system32\profsvc.dll
20:42:18.0235 4876 ProfSvc - ok
20:42:18.0250 4876 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\windows\system32\lsass.exe
20:42:18.0250 4876 ProtectedStorage - ok
20:42:18.0328 4876 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\windows\system32\DRIVERS\pacer.sys
20:42:18.0328 4876 Psched - ok
20:42:18.0484 4876 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\windows\system32\DRIVERS\ql2300.sys
20:42:18.0500 4876 ql2300 - ok
20:42:18.0531 4876 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\windows\system32\DRIVERS\ql40xx.sys
20:42:18.0531 4876 ql40xx - ok
20:42:18.0578 4876 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\windows\system32\qwave.dll
20:42:18.0609 4876 QWAVE - ok
20:42:18.0625 4876 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\windows\system32\drivers\qwavedrv.sys
20:42:18.0625 4876 QWAVEdrv - ok
20:42:18.0625 4876 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\windows\system32\DRIVERS\rasacd.sys
20:42:18.0640 4876 RasAcd - ok
20:42:18.0687 4876 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\windows\system32\DRIVERS\AgileVpn.sys
20:42:18.0703 4876 RasAgileVpn - ok
20:42:18.0749 4876 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\windows\System32\rasauto.dll
20:42:18.0765 4876 RasAuto - ok
20:42:18.0827 4876 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\windows\system32\DRIVERS\rasl2tp.sys
20:42:18.0827 4876 Rasl2tp - ok
20:42:18.0905 4876 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\windows\System32\rasmans.dll
20:42:18.0937 4876 RasMan - ok
20:42:18.0999 4876 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\windows\system32\DRIVERS\raspppoe.sys
20:42:19.0015 4876 RasPppoe - ok
20:42:19.0015 4876 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\windows\system32\DRIVERS\rassstp.sys
20:42:19.0030 4876 RasSstp - ok
20:42:19.0061 4876 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\windows\system32\DRIVERS\rdbss.sys
20:42:19.0061 4876 rdbss - ok
20:42:19.0077 4876 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\windows\system32\DRIVERS\rdpbus.sys
20:42:19.0077 4876 rdpbus - ok
20:42:19.0124 4876 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\windows\system32\DRIVERS\RDPCDD.sys
20:42:19.0124 4876 RDPCDD - ok
20:42:19.0171 4876 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\windows\system32\drivers\rdpencdd.sys
20:42:19.0171 4876 RDPENCDD - ok
20:42:19.0202 4876 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\windows\system32\drivers\rdprefmp.sys
20:42:19.0217 4876 RDPREFMP - ok
20:42:19.0280 4876 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\windows\system32\drivers\RDPWD.sys
20:42:19.0295 4876 RDPWD - ok
20:42:19.0358 4876 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\windows\system32\drivers\rdyboost.sys
20:42:19.0389 4876 rdyboost - ok
20:42:19.0623 4876 [ 7196BE857E29007470FF9B689C7F29A7 ] RegSrvc C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
20:42:19.0670 4876 RegSrvc - ok
20:42:19.0717 4876 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\windows\System32\mprdim.dll
20:42:19.0732 4876 RemoteAccess - ok
20:42:19.0795 4876 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\windows\system32\regsvc.dll
20:42:19.0810 4876 RemoteRegistry - ok
20:42:19.0873 4876 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\windows\system32\DRIVERS\rfcomm.sys
20:42:19.0888 4876 RFCOMM - ok
20:42:19.0919 4876 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\windows\System32\RpcEpMap.dll
20:42:19.0935 4876 RpcEptMapper - ok
20:42:19.0966 4876 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\windows\system32\locator.exe
20:42:19.0982 4876 RpcLocator - ok
20:42:20.0060 4876 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\windows\system32\rpcss.dll
20:42:20.0075 4876 RpcSs - ok
20:42:20.0091 4876 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\windows\system32\DRIVERS\rspndr.sys
20:42:20.0107 4876 rspndr - ok
20:42:20.0153 4876 [ 116D03E901246AC7AF006121E1E22842 ] RTHDMIAzAudService C:\windows\system32\drivers\RtHDMIVX.sys
20:42:20.0169 4876 RTHDMIAzAudService - ok
20:42:20.0200 4876 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\windows\system32\lsass.exe
20:42:20.0200 4876 SamSs - ok
20:42:20.0263 4876 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\windows\system32\drivers\sbp2port.sys
20:42:20.0278 4876 sbp2port - ok
20:42:20.0465 4876 [ 794D4B48DFB6E999537C7C3947863463 ] SBSDWSCService C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
20:42:20.0528 4876 SBSDWSCService - ok
20:42:20.0559 4876 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\windows\System32\SCardSvr.dll
20:42:20.0575 4876 SCardSvr - ok
20:42:20.0621 4876 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\windows\system32\DRIVERS\scfilter.sys
20:42:20.0621 4876 scfilter - ok
20:42:20.0731 4876 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\windows\system32\schedsvc.dll
20:42:20.0777 4876 Schedule - ok
20:42:20.0824 4876 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\windows\System32\certprop.dll
20:42:20.0824 4876 SCPolicySvc - ok
20:42:20.0902 4876 [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus C:\windows\system32\drivers\sdbus.sys
20:42:20.0902 4876 sdbus - ok
20:42:21.0027 4876 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\windows\System32\SDRSVC.dll
20:42:21.0043 4876 SDRSVC - ok
20:42:21.0105 4876 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\windows\system32\drivers\secdrv.sys
20:42:21.0105 4876 secdrv - ok
20:42:21.0152 4876 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\windows\system32\seclogon.dll
20:42:21.0167 4876 seclogon - ok
20:42:21.0230 4876 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\windows\system32\sens.dll
20:42:21.0245 4876 SENS - ok
20:42:21.0277 4876 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\windows\system32\sensrsvc.dll
20:42:21.0292 4876 SensrSvc - ok
20:42:21.0323 4876 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\windows\system32\DRIVERS\serenum.sys
20:42:21.0323 4876 Serenum - ok
20:42:21.0386 4876 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\windows\system32\DRIVERS\serial.sys
20:42:21.0386 4876 Serial - ok
20:42:21.0464 4876 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\windows\system32\DRIVERS\sermouse.sys
20:42:21.0479 4876 sermouse - ok
20:42:21.0526 4876 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\windows\system32\sessenv.dll
20:42:21.0542 4876 SessionEnv - ok
20:42:21.0573 4876 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\windows\system32\drivers\sffdisk.sys
20:42:21.0589 4876 sffdisk - ok
20:42:21.0604 4876 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\windows\system32\drivers\sffp_mmc.sys
20:42:21.0604 4876 sffp_mmc - ok
20:42:21.0635 4876 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\windows\system32\drivers\sffp_sd.sys
20:42:21.0635 4876 sffp_sd - ok
20:42:21.0682 4876 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\windows\system32\DRIVERS\sfloppy.sys
20:42:21.0682 4876 sfloppy - ok
20:42:21.0745 4876 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\windows\System32\ipnathlp.dll
20:42:21.0760 4876 SharedAccess - ok
20:42:21.0807 4876 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\windows\System32\shsvcs.dll
20:42:21.0838 4876 ShellHWDetection - ok
20:42:21.0869 4876 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\windows\system32\DRIVERS\SiSRaid2.sys
20:42:21.0885 4876 SiSRaid2 - ok
20:42:21.0916 4876 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\windows\system32\DRIVERS\sisraid4.sys
20:42:21.0932 4876 SiSRaid4 - ok
20:42:22.0166 4876 [ AD2FA5CB9E9EBF668786CCDAE5CFE458 ] Slidebar Notifier Service C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\SlidebarNotifier.exe
20:42:22.0181 4876 Slidebar Notifier Service - ok
20:42:22.0228 4876 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\windows\system32\DRIVERS\smb.sys
20:42:22.0244 4876 Smb - ok
20:42:22.0306 4876 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\windows\System32\snmptrap.exe
20:42:22.0322 4876 SNMPTRAP - ok
20:42:22.0353 4876 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\windows\system32\drivers\spldr.sys
20:42:22.0353 4876 spldr - ok
20:42:22.0447 4876 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\windows\System32\spoolsv.exe
20:42:22.0478 4876 Spooler - ok
20:42:22.0727 4876 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\windows\system32\sppsvc.exe
20:42:22.0883 4876 sppsvc - ok
20:42:22.0930 4876 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\windows\system32\sppuinotify.dll
20:42:22.0946 4876 sppuinotify - ok
20:42:23.0024 4876 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\windows\system32\DRIVERS\srv.sys
20:42:23.0055 4876 srv - ok
20:42:23.0102 4876 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\windows\system32\DRIVERS\srv2.sys
20:42:23.0133 4876 srv2 - ok
20:42:23.0164 4876 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\windows\system32\DRIVERS\srvnet.sys
20:42:23.0180 4876 srvnet - ok
20:42:23.0258 4876 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\windows\System32\ssdpsrv.dll
20:42:23.0289 4876 SSDPSRV - ok
20:42:23.0289 4876 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\windows\system32\sstpsvc.dll
20:42:23.0305 4876 SstpSvc - ok
20:42:23.0320 4876 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\windows\system32\DRIVERS\stexstor.sys
20:42:23.0336 4876 stexstor - ok
20:42:23.0398 4876 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\windows\System32\wiaservc.dll
20:42:23.0429 4876 stisvc - ok
20:42:23.0476 4876 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\windows\system32\drivers\swenum.sys
20:42:23.0476 4876 swenum - ok
20:42:23.0492 4876 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\windows\System32\swprv.dll
20:42:23.0507 4876 swprv - ok
20:42:23.0648 4876 [ 4A89869318F1BBE4448EC8A4471E972F ] SynTP C:\windows\system32\DRIVERS\SynTP.sys
20:42:23.0679 4876 SynTP - ok
20:42:23.0788 4876 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\windows\system32\sysmain.dll
20:42:23.0819 4876 SysMain - ok
20:42:23.0866 4876 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\windows\System32\TabSvc.dll
20:42:23.0882 4876 TabletInputService - ok
20:42:23.0929 4876 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\windows\System32\tapisrv.dll
20:42:23.0944 4876 TapiSrv - ok
20:42:24.0069 4876 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\windows\System32\tbssvc.dll
20:42:24.0069 4876 TBS - ok
20:42:24.0521 4876 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] Tcpip C:\windows\system32\drivers\tcpip.sys
20:42:25.0457 4876 Tcpip - ok
20:42:25.0567 4876 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] TCPIP6 C:\windows\system32\DRIVERS\tcpip.sys
20:42:25.0598 4876 TCPIP6 - ok
20:42:25.0629 4876 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\windows\system32\drivers\tcpipreg.sys
20:42:25.0629 4876 tcpipreg - ok
20:42:25.0723 4876 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\windows\system32\drivers\tdpipe.sys
20:42:25.0723 4876 TDPIPE - ok
20:42:25.0816 4876 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\windows\system32\drivers\tdtcp.sys
20:42:25.0832 4876 TDTCP - ok
20:42:25.0894 4876 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\windows\system32\DRIVERS\tdx.sys
20:42:25.0910 4876 tdx - ok
20:42:25.0941 4876 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\windows\system32\drivers\termdd.sys
20:42:25.0957 4876 TermDD - ok
20:42:26.0035 4876 [ 2E648163254233755035B46DD7B89123 ] TermService C:\windows\System32\termsrv.dll
20:42:26.0066 4876 TermService - ok
20:42:26.0144 4876 [ F0344071948D1A1FA732231785A0664C ] Themes C:\windows\system32\themeservice.dll
20:42:26.0159 4876 Themes - ok
20:42:26.0206 4876 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\windows\system32\mmcss.dll
20:42:26.0206 4876 THREADORDER - ok
20:42:26.0237 4876 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\windows\System32\trkwks.dll
20:42:26.0269 4876 TrkWks - ok
20:42:26.0331 4876 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe
20:42:26.0347 4876 TrustedInstaller - ok
20:42:26.0378 4876 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\windows\system32\DRIVERS\tssecsrv.sys
20:42:26.0393 4876 tssecsrv - ok
20:42:26.0425 4876 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\windows\system32\drivers\tsusbflt.sys
20:42:26.0440 4876 TsUsbFlt - ok
20:42:26.0518 4876 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\windows\system32\DRIVERS\tunnel.sys
20:42:26.0518 4876 tunnel - ok
20:42:26.0565 4876 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\windows\system32\DRIVERS\uagp35.sys
20:42:26.0565 4876 uagp35 - ok
20:42:26.0612 4876 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\windows\system32\DRIVERS\udfs.sys
20:42:26.0627 4876 udfs - ok
20:42:26.0674 4876 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\windows\system32\UI0Detect.exe
20:42:26.0705 4876 UI0Detect - ok
20:42:26.0768 4876 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\windows\system32\drivers\uliagpkx.sys
20:42:26.0768 4876 uliagpkx - ok
20:42:26.0830 4876 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\windows\system32\DRIVERS\umbus.sys
20:42:26.0846 4876 umbus - ok
20:42:26.0893 4876 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\windows\system32\DRIVERS\umpass.sys
20:42:26.0908 4876 UmPass - ok
20:42:26.0971 4876 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\windows\System32\upnphost.dll
20:42:26.0986 4876 upnphost - ok
20:42:27.0033 4876 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\windows\system32\DRIVERS\usbccgp.sys
20:42:27.0033 4876 usbccgp - ok
20:42:27.0080 4876 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\windows\system32\drivers\usbcir.sys
20:42:27.0111 4876 usbcir - ok
20:42:27.0142 4876 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\windows\system32\drivers\usbehci.sys
20:42:27.0158 4876 usbehci - ok
20:42:27.0220 4876 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\windows\system32\DRIVERS\usbhub.sys
20:42:27.0251 4876 usbhub - ok
20:42:27.0283 4876 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\windows\system32\drivers\usbohci.sys
20:42:27.0298 4876 usbohci - ok
20:42:27.0329 4876 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\windows\system32\DRIVERS\usbprint.sys
20:42:27.0345 4876 usbprint - ok
20:42:27.0376 4876 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\windows\system32\DRIVERS\USBSTOR.SYS
20:42:27.0392 4876 USBSTOR - ok
20:42:27.0407 4876 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\windows\system32\drivers\usbuhci.sys
20:42:27.0423 4876 usbuhci - ok
20:42:27.0470 4876 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\windows\System32\Drivers\usbvideo.sys
20:42:27.0485 4876 usbvideo - ok
20:42:27.0517 4876 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\windows\System32\uxsms.dll
20:42:27.0532 4876 UxSms - ok
20:42:27.0563 4876 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\windows\system32\lsass.exe
20:42:27.0563 4876 VaultSvc - ok
20:42:27.0626 4876 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\windows\system32\drivers\vdrvroot.sys
20:42:27.0641 4876 vdrvroot - ok
20:42:27.0719 4876 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\windows\System32\vds.exe
20:42:27.0751 4876 vds - ok
20:42:27.0766 4876 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\windows\system32\DRIVERS\vgapnp.sys
20:42:27.0782 4876 vga - ok
20:42:27.0813 4876 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\windows\System32\drivers\vga.sys
20:42:27.0813 4876 VgaSave - ok
20:42:27.0891 4876 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\windows\system32\drivers\vhdmp.sys
20:42:27.0907 4876 vhdmp - ok
20:42:27.0953 4876 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\windows\system32\drivers\viaide.sys
20:42:27.0953 4876 viaide - ok
20:42:28.0000 4876 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\windows\system32\drivers\volmgr.sys
20:42:28.0000 4876 volmgr - ok
20:42:28.0063 4876 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\windows\system32\drivers\volmgrx.sys
20:42:28.0078 4876 volmgrx - ok
20:42:28.0141 4876 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\windows\system32\drivers\volsnap.sys
20:42:28.0156 4876 volsnap - ok
20:42:28.0219 4876 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\windows\system32\DRIVERS\vsmraid.sys
20:42:28.0219 4876 vsmraid - ok
20:42:28.0390 4876 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\windows\system32\vssvc.exe
20:42:28.0437 4876 VSS - ok
20:42:28.0468 4876 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\windows\system32\DRIVERS\vwifibus.sys
20:42:28.0468 4876 vwifibus - ok
20:42:28.0515 4876 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\windows\system32\DRIVERS\vwififlt.sys
20:42:28.0531 4876 vwififlt - ok
20:42:28.0562 4876 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\windows\system32\DRIVERS\vwifimp.sys
20:42:28.0562 4876 vwifimp - ok
20:42:28.0640 4876 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\windows\system32\w32time.dll
20:42:28.0671 4876 W32Time - ok
20:42:28.0687 4876 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\windows\system32\DRIVERS\wacompen.sys
20:42:28.0687 4876 WacomPen - ok
20:42:28.0733 4876 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\windows\system32\DRIVERS\wanarp.sys
20:42:28.0749 4876 WANARP - ok
20:42:28.0765 4876 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\windows\system32\DRIVERS\wanarp.sys
20:42:28.0765 4876 Wanarpv6 - ok
20:42:28.0921 4876 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\windows\system32\Wat\WatAdminSvc.exe
20:42:28.0967 4876 WatAdminSvc - ok
20:42:29.0139 4876 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\windows\system32\wbengine.exe
20:42:29.0201 4876 wbengine - ok
20:42:29.0248 4876 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\windows\System32\wbiosrvc.dll
20:42:29.0264 4876 WbioSrvc - ok
20:42:29.0357 4876 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\windows\System32\wcncsvc.dll
20:42:29.0373 4876 wcncsvc - ok
20:42:29.0389 4876 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll
20:42:29.0404 4876 WcsPlugInService - ok
20:42:29.0435 4876 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\windows\system32\DRIVERS\wd.sys
20:42:29.0451 4876 Wd - ok
20:42:29.0513 4876 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\windows\system32\drivers\Wdf01000.sys
20:42:29.0529 4876 Wdf01000 - ok
20:42:29.0560 4876 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\windows\system32\wdi.dll
20:42:29.0576 4876 WdiServiceHost - ok
20:42:29.0576 4876 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\windows\system32\wdi.dll
20:42:29.0591 4876 WdiSystemHost - ok
20:42:29.0623 4876 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\windows\System32\webclnt.dll
20:42:29.0669 4876 WebClient - ok
20:42:29.0716 4876 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\windows\system32\wecsvc.dll
20:42:29.0747 4876 Wecsvc - ok
20:42:29.0763 4876 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\windows\System32\wercplsupport.dll
20:42:29.0763 4876 wercplsupport - ok
20:42:29.0779 4876 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\windows\System32\WerSvc.dll
20:42:29.0810 4876 WerSvc - ok
20:42:29.0857 4876 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\windows\system32\DRIVERS\wfplwf.sys
20:42:29.0903 4876 WfpLwf - ok
20:42:29.0981 4876 [ B14EF15BD757FA488F9C970EEE9C0D35 ] WimFltr C:\windows\system32\DRIVERS\wimfltr.sys
20:42:30.0044 4876 WimFltr - ok
20:42:30.0075 4876 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\windows\system32\drivers\wimmount.sys
20:42:30.0091 4876 WIMMount - ok
20:42:30.0169 4876 WinDefend - ok
20:42:30.0184 4876 WinHttpAutoProxySvc - ok
20:42:30.0325 4876 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\windows\system32\wbem\WMIsvc.dll
20:42:30.0371 4876 Winmgmt - ok
20:42:30.0559 4876 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\windows\system32\WsmSvc.dll
20:42:30.0793 4876 WinRM - ok
20:42:30.0995 4876 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\windows\System32\wlansvc.dll
20:42:31.0027 4876 Wlansvc - ok
20:42:31.0183 4876 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
20:42:31.0198 4876 wlcrasvc - ok
20:42:31.0495 4876 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
20:42:31.0526 4876 wlidsvc - ok
20:42:31.0588 4876 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\windows\system32\drivers\wmiacpi.sys
20:42:31.0604 4876 WmiAcpi - ok
20:42:31.0666 4876 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\windows\system32\wbem\WmiApSrv.exe
20:42:31.0697 4876 wmiApSrv - ok
20:42:31.0729 4876 WMPNetworkSvc - ok
20:42:31.0822 4876 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\windows\System32\wpcsvc.dll
20:42:31.0822 4876 WPCSvc - ok
20:42:31.0869 4876 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\windows\system32\wpdbusenum.dll
20:42:31.0885 4876 WPDBusEnum - ok
20:42:31.0931 4876 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\windows\system32\drivers\ws2ifsl.sys
20:42:31.0947 4876 ws2ifsl - ok
20:42:32.0009 4876 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\windows\system32\wscsvc.dll
20:42:32.0041 4876 wscsvc - ok
20:42:32.0041 4876 WSearch - ok
20:42:32.0103 4876 [ 83575C43B2BFE9AB0661A7F957E843C0 ] wsvd C:\windows\system32\DRIVERS\wsvd.sys
20:42:32.0150 4876 wsvd - ok
20:42:32.0446 4876 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\windows\system32\wuaueng.dll
20:42:32.0774 4876 wuauserv - ok
20:42:32.0789 4876 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\windows\system32\drivers\WudfPf.sys
20:42:32.0805 4876 WudfPf - ok
20:42:32.0821 4876 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\windows\system32\DRIVERS\WUDFRd.sys
20:42:32.0836 4876 WUDFRd - ok
20:42:32.0867 4876 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\windows\System32\WUDFSvc.dll
20:42:32.0883 4876 wudfsvc - ok
20:42:32.0930 4876 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\windows\System32\wwansvc.dll
20:42:32.0945 4876 WwanSvc - ok
20:42:33.0023 4876 ================ Scan global ===============================
20:42:33.0055 4876 [ BA0CD8C393E8C9F83354106093832C7B ] C:\windows\system32\basesrv.dll
20:42:33.0164 4876 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\windows\system32\winsrv.dll
20:42:33.0195 4876 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\windows\system32\winsrv.dll
20:42:33.0257 4876 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\windows\system32\sxssrv.dll
20:42:33.0367 4876 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\windows\system32\services.exe
20:42:33.0398 4876 [Global] - ok
20:42:33.0398 4876 ================ Scan MBR ==================================
20:42:33.0413 4876 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
20:42:35.0317 4876 \Device\Harddisk0\DR0 - ok
20:42:40.0699 4876 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk1\DR1
20:42:42.0664 4876 \Device\Harddisk1\DR1 - ok
20:42:42.0664 4876 ================ Scan VBR ==================================
20:42:42.0711 4876 [ 9992BA8ACB57E1FEF97A3E46C1C5151D ] \Device\Harddisk0\DR0\Partition1
20:42:42.0711 4876 \Device\Harddisk0\DR0\Partition1 - ok
20:42:42.0758 4876 [ C1AD1C161A0C8F11E23D68A2E18D4A48 ] \Device\Harddisk0\DR0\Partition2
20:42:42.0758 4876 \Device\Harddisk0\DR0\Partition2 - ok
20:42:42.0851 4876 [ 1CD73F82063D8BA74345FF09D29DE136 ] \Device\Harddisk0\DR0\Partition3
20:42:42.0851 4876 \Device\Harddisk0\DR0\Partition3 - ok
20:42:42.0851 4876 [ A1CBD96FD32863C0C084E74BC8D92703 ] \Device\Harddisk1\DR1\Partition1
20:42:42.0851 4876 \Device\Harddisk1\DR1\Partition1 - ok
20:42:42.0851 4876 ============================================================
20:42:42.0851 4876 Scan finished
20:42:42.0851 4876 ============================================================
20:42:42.0867 4868 Detected object count: 0
20:42:42.0867 4868 Actual detected object count: 0

I tried to run the "aswMBR" scanner and when I went to update it, it came up with error. I think the virus has screwed my wireless connection on the infected computer.
So I will boot it in safe mode with networking and run the scanner and post the log/s below.

#4 nellanitsuj

nellanitsuj
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:01:11 PM

Posted 31 October 2012 - 05:50 AM

Hello again.

I opened, updated and then ran the scan (the quick scan option was selected) (all of this was in 'Safe Mode With Networking').

Here is the log for the "aswMBR" scan results;

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-10-31 21:42:04
-----------------------------
21:42:04.876 OS Version: Windows x64 6.1.7601 Service Pack 1
21:42:04.876 Number of processors: 8 586 0x2A07
21:42:04.877 ComputerName: JUSTIN UserName:
21:42:06.924 Initialize success
21:42:14.381 AVAST engine defs: 12103100
21:42:17.260 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
21:42:17.262 Disk 0 Vendor: WDC_WD75 02.0 Size: 715404MB BusType: 3
21:42:17.302 Disk 0 MBR read successfully
21:42:17.304 Disk 0 MBR scan
21:42:17.307 Disk 0 Windows VISTA default MBR code
21:42:17.310 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 200 MB offset 2048
21:42:17.314 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 668670 MB offset 411648
21:42:17.317 Disk 0 Partition - 00 0F Extended LBA 31425 MB offset 1369847808
21:42:17.348 Disk 0 Partition 3 00 12 Compaq diag NTFS 15108 MB offset 1434206208
21:42:17.382 Disk 0 Partition 4 00 07 HPFS/NTFS NTFS 31424 MB offset 1369849856
21:42:17.389 Disk 0 scanning C:\windows\system32\drivers
21:42:26.383 Service scanning
21:42:43.943 Modules scanning
21:42:43.949 Disk 0 trace - called modules:
21:42:43.968 ntoskrnl.exe CLASSPNP.SYS disk.sys iaStor.sys hal.dll
21:42:43.972 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8008e50790]
21:42:43.977 3 CLASSPNP.SYS[fffff8800140143f] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8007769050]
21:42:45.992 AVAST engine scan C:\windows
21:42:50.825 AVAST engine scan C:\windows\system32
21:45:02.048 AVAST engine scan C:\windows\system32\drivers
21:45:11.671 AVAST engine scan C:\Users\just1ns_3bay_5ales
21:45:16.322 File: C:\Users\just1ns_3bay_5ales\AppData\Local\sgedcxos\bmvsmxxj.exe **INFECTED** Win32:Dropper-LYT [Drp]
21:45:17.764 File: C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120823T095042269366\pci\ven_1002&dev_68c0&subsys_397817aa\amdpcom32.dll **INFECTED** Win32:Ramnit-AR
21:45:17.845 File: C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120823T095042269366\pci\ven_1002&dev_68c0&subsys_397817aa\ati2edxx.dll **INFECTED** Win32:Ramnit-AR
21:45:17.943 File: C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120823T095042269366\pci\ven_1002&dev_68c0&subsys_397817aa\atiadlxy.dll **INFECTED** Win32:Ramnit-AR
21:45:17.982 File: C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120823T095042269366\pci\ven_1002&dev_68c0&subsys_397817aa\atiapfxx.exe **INFECTED** Win32:Ramnit-AR
21:45:18.028 File: C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120823T095042269366\pci\ven_1002&dev_68c0&subsys_397817aa\atibtmon.exe **INFECTED** Win32:Ramnit-AR
21:45:18.070 File: C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120823T095042269366\pci\ven_1002&dev_68c0&subsys_397817aa\aticalcl.dll **INFECTED** Win32:Ramnit-AR
21:45:18.271 File: C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120823T095042269366\pci\ven_1002&dev_68c0&subsys_397817aa\aticalrt.dll **INFECTED** Win32:Ramnit-AR
21:45:18.738 File: C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120823T095042269366\pci\ven_1002&dev_68c0&subsys_397817aa\atidxx32.dll **INFECTED** Win32:Ramnit-AR
21:45:18.932 File: C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120823T095042269366\pci\ven_1002&dev_68c0&subsys_397817aa\atigktxx.dll **INFECTED** Win32:Ramnit-AR
21:45:18.981 File: C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120823T095042269366\pci\ven_1002&dev_68c0&subsys_397817aa\atiglpxx.dll **INFECTED** Win32:Ramnit-AR
21:45:19.127 File: C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120823T095042269366\pci\ven_1002&dev_68c0&subsys_397817aa\atimpc32.dll **INFECTED** Win32:Ramnit-AR
21:45:19.399 File: C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120823T095042269366\pci\ven_1002&dev_68c0&subsys_397817aa\atipdlxx.dll **INFECTED** Win32:Ramnit-AR
21:45:19.487 File: C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120823T095042269366\pci\ven_1002&dev_68c0&subsys_397817aa\atiu9pag.dll **INFECTED** Win32:Ramnit-AR
21:45:20.347 File: C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120823T095042269366\pci\ven_1002&dev_68c0&subsys_397817aa\atiumdag.dll **INFECTED** Win32:Ramnit-AR
21:45:20.665 File: C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120823T095042269366\pci\ven_1002&dev_68c0&subsys_397817aa\atiumdva.dll **INFECTED** Win32:Ramnit-AR
21:45:20.741 File: C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120823T095042269366\pci\ven_1002&dev_68c0&subsys_397817aa\atiuxpag.dll **INFECTED** Win32:Ramnit-AR
21:45:20.912 File: C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120823T095042269366\pci\ven_1002&dev_68c0&subsys_397817aa\Oemdspif.dll **INFECTED** Win32:Ramnit-AR
21:45:24.215 File: C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120915T093532956578\pci\ven_1002&dev_68c0&subsys_397817aa\amdpcom32.dll **INFECTED** Win32:Ramnit-AR
21:45:24.350 File: C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120915T093532956578\pci\ven_1002&dev_68c0&subsys_397817aa\ati2edxx.dll **INFECTED** Win32:Ramnit-AR
21:45:24.589 File: C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120915T093532956578\pci\ven_1002&dev_68c0&subsys_397817aa\atiadlxy.dll **INFECTED** Win32:Ramnit-AR
21:45:24.849 File: C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120915T093532956578\pci\ven_1002&dev_68c0&subsys_397817aa\atiapfxx.exe **INFECTED** Win32:Ramnit-AR
21:45:25.128 File: C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120915T093532956578\pci\ven_1002&dev_68c0&subsys_397817aa\atibtmon.exe **INFECTED** Win32:Ramnit-AR
21:45:25.219 File: C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120915T093532956578\pci\ven_1002&dev_68c0&subsys_397817aa\aticalcl.dll **INFECTED** Win32:Ramnit-AR
21:45:25.333 File: C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120915T093532956578\pci\ven_1002&dev_68c0&subsys_397817aa\aticalrt.dll **INFECTED** Win32:Ramnit-AR
21:45:25.611 File: C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120915T093532956578\pci\ven_1002&dev_68c0&subsys_397817aa\atidxx32.dll **INFECTED** Win32:Ramnit-AR
21:45:25.826 File: C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120915T093532956578\pci\ven_1002&dev_68c0&subsys_397817aa\atigktxx.dll **INFECTED** Win32:Ramnit-AR
21:45:25.857 File: C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120915T093532956578\pci\ven_1002&dev_68c0&subsys_397817aa\atiglpxx.dll **INFECTED** Win32:Ramnit-AR
21:45:25.990 File: C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120915T093532956578\pci\ven_1002&dev_68c0&subsys_397817aa\atimpc32.dll **INFECTED** Win32:Ramnit-AR
21:45:26.225 File: C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120915T093532956578\pci\ven_1002&dev_68c0&subsys_397817aa\atipdlxx.dll **INFECTED** Win32:Ramnit-AR
21:45:26.322 File: C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120915T093532956578\pci\ven_1002&dev_68c0&subsys_397817aa\atiu9pag.dll **INFECTED** Win32:Ramnit-AR
21:45:26.739 File: C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120915T093532956578\pci\ven_1002&dev_68c0&subsys_397817aa\atiumdag.dll **INFECTED** Win32:Ramnit-AR
21:45:26.972 File: C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120915T093532956578\pci\ven_1002&dev_68c0&subsys_397817aa\atiumdva.dll **INFECTED** Win32:Ramnit-AR
21:45:27.036 File: C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120915T093532956578\pci\ven_1002&dev_68c0&subsys_397817aa\atiuxpag.dll **INFECTED** Win32:Ramnit-AR
21:45:27.159 File: C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120915T093532956578\pci\ven_1002&dev_68c0&subsys_397817aa\Oemdspif.dll **INFECTED** Win32:Ramnit-AR
21:45:30.829 File: C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120915T094711414605\pci\ven_1002&dev_68c0&subsys_397817aa\amdpcom32.dll **INFECTED** Win32:Ramnit-AR
21:45:30.921 File: C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120915T094711414605\pci\ven_1002&dev_68c0&subsys_397817aa\ati2edxx.dll **INFECTED** Win32:Ramnit-AR
21:45:31.246 File: C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120915T094711414605\pci\ven_1002&dev_68c0&subsys_397817aa\atiadlxy.dll **INFECTED** Win32:Ramnit-AR
21:45:31.317 File: C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120915T094711414605\pci\ven_1002&dev_68c0&subsys_397817aa\atiapfxx.exe **INFECTED** Win32:Ramnit-AR
21:45:31.359 File: C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120915T094711414605\pci\ven_1002&dev_68c0&subsys_397817aa\atibtmon.exe **INFECTED** Win32:Ramnit-AR
21:45:31.411 File: C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120915T094711414605\pci\ven_1002&dev_68c0&subsys_397817aa\aticalcl.dll **INFECTED** Win32:Ramnit-AR
21:45:31.595 File: C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120915T094711414605\pci\ven_1002&dev_68c0&subsys_397817aa\aticalrt.dll **INFECTED** Win32:Ramnit-AR
21:45:32.644 File: C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120915T094711414605\pci\ven_1002&dev_68c0&subsys_397817aa\atidxx32.dll **INFECTED** Win32:Ramnit-AR
21:45:32.959 File: C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120915T094711414605\pci\ven_1002&dev_68c0&subsys_397817aa\atigktxx.dll **INFECTED** Win32:Ramnit-AR
21:45:33.041 File: C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120915T094711414605\pci\ven_1002&dev_68c0&subsys_397817aa\atiglpxx.dll **INFECTED** Win32:Ramnit-AR
21:45:33.246 File: C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120915T094711414605\pci\ven_1002&dev_68c0&subsys_397817aa\atimpc32.dll **INFECTED** Win32:Ramnit-AR
21:45:33.588 File: C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120915T094711414605\pci\ven_1002&dev_68c0&subsys_397817aa\atipdlxx.dll **INFECTED** Win32:Ramnit-AR
21:45:33.760 File: C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120915T094711414605\pci\ven_1002&dev_68c0&subsys_397817aa\atiu9pag.dll **INFECTED** Win32:Ramnit-AR
21:45:34.938 File: C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120915T094711414605\pci\ven_1002&dev_68c0&subsys_397817aa\atiumdag.dll **INFECTED** Win32:Ramnit-AR
21:45:35.685 File: C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120915T094711414605\pci\ven_1002&dev_68c0&subsys_397817aa\atiumdva.dll **INFECTED** Win32:Ramnit-AR
21:45:35.808 File: C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120915T094711414605\pci\ven_1002&dev_68c0&subsys_397817aa\atiuxpag.dll **INFECTED** Win32:Ramnit-AR
21:45:36.035 File: C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120915T094711414605\pci\ven_1002&dev_68c0&subsys_397817aa\Oemdspif.dll **INFECTED** Win32:Ramnit-AR
21:45:39.181 File: C:\Users\just1ns_3bay_5ales\AppData\Local\Temp\srqnoaas.exe **INFECTED** Win32:Dropper-LYT [Drp]
21:45:43.036 File: C:\Users\just1ns_3bay_5ales\AppData\Roaming\Azureus\plugins\azutp\win32\utp.dll **INFECTED** Win32:MalOb-IK [Cryp]
21:45:45.074 File: C:\Users\just1ns_3bay_5ales\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\bmvsmxxj.exe **INFECTED** Win32:Dropper-LYT [Drp]
21:45:49.140 File: C:\Users\just1ns_3bay_5ales\Downloads\WM 9 Visualisation.exe **INFECTED** Win32:Ramnit-AR
21:45:55.315 AVAST engine scan C:\ProgramData
21:46:23.429 File: C:\ProgramData\Temp\{01FB4998-33C4-4431-85ED-079E3EEFE75D}\PostBuild.exe **INFECTED** Win32:Ramnit-AR
21:46:23.556 File: C:\ProgramData\Temp\{46F4D124-20E5-4D12-BE52-EC177A7A4B42}\PostBuild.exe **INFECTED** Win32:Ramnit-AR
21:46:23.629 Scan finished successfully
21:47:04.503 Disk 0 MBR has been saved successfully to "H:\MBR.dat"
21:47:04.592 The log file has been saved successfully to "H:\aswMBR.txt"


I will reply below with the next program scan results

#5 nellanitsuj

nellanitsuj
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:01:11 PM

Posted 31 October 2012 - 07:01 AM

Once again, hello.

I did the "ESET online scanner". It installed, updated and scanned.
Here is the log report thing;

C:\DRIVERS\WIN\WLANINT\Vista\v32\Drivers\NETwLc32.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\Vista\v32\Drivers\NETwNc32.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\Vista\v32\Install\KillAc.exe a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\Vista\v32\Install\Lang\setupARA.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\Vista\v32\Install\Lang\setupCHS.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\Vista\v32\Install\Lang\setupCHT.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\Vista\v32\Install\Lang\setupCSY.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\Vista\v32\Install\Lang\setupDAN.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\Vista\v32\Install\Lang\setupDEU.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\Vista\v32\Install\Lang\setupELL.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\Vista\v32\Install\Lang\setupENU.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\Vista\v32\Install\Lang\setupESN.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\Vista\v32\Install\Lang\setupFIN.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\Vista\v32\Install\Lang\setupFRA.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\Vista\v32\Install\Lang\setupHEB.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\Vista\v32\Install\Lang\setupHUN.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\Vista\v32\Install\Lang\setupITA.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\Vista\v32\Install\Lang\setupJPN.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\Vista\v32\Install\Lang\setupKOR.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\Vista\v32\Install\Lang\setupNLD.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\Vista\v32\Install\Lang\setupNOR.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\Vista\v32\Install\Lang\setupPLK.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\Vista\v32\Install\Lang\setupPTB.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\Vista\v32\Install\Lang\setupPTG.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\Vista\v32\Install\Lang\setupRUS.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\Vista\v32\Install\Lang\setupSVE.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\Vista\v32\Install\Lang\setupTHA.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\Vista\v32\Install\Lang\setupTRK.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\Vista\v64\Install\KillAc.exe a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\Win7\S32\Drivers\NETwLc32.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\Win7\S32\Drivers\NETwNc32.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\Win7\S32\Install\KillAc.exe a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\Win7\S32\Install\Lang\setupARA.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\Win7\S32\Install\Lang\setupCHS.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\Win7\S32\Install\Lang\setupCHT.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\Win7\S32\Install\Lang\setupCSY.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\Win7\S32\Install\Lang\setupDAN.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\Win7\S32\Install\Lang\setupDEU.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\Win7\S32\Install\Lang\setupELL.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\Win7\S32\Install\Lang\setupENU.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\Win7\S32\Install\Lang\setupESN.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\Win7\S32\Install\Lang\setupFIN.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\Win7\S32\Install\Lang\setupFRA.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\Win7\S32\Install\Lang\setupHEB.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\Win7\S32\Install\Lang\setupHUN.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\Win7\S32\Install\Lang\setupITA.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\Win7\S32\Install\Lang\setupJPN.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\Win7\S32\Install\Lang\setupKOR.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\Win7\S32\Install\Lang\setupNLD.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\Win7\S32\Install\Lang\setupNOR.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\Win7\S32\Install\Lang\setupPLK.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\Win7\S32\Install\Lang\setupPTB.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\Win7\S32\Install\Lang\setupPTG.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\Win7\S32\Install\Lang\setupRUS.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\Win7\S32\Install\Lang\setupSVE.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\Win7\S32\Install\Lang\setupTHA.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\Win7\S32\Install\Lang\setupTRK.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\Win7\S64\Install\KillAc.exe a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\XP\x32\Drivers\NETwLc32.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\XP\x32\Drivers\NETwNc32.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\XP\x32\Install\KillAc.exe a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\XP\x32\Install\Lang\setupARA.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\XP\x32\Install\Lang\setupCHS.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\XP\x32\Install\Lang\setupCHT.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\XP\x32\Install\Lang\setupCSY.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\XP\x32\Install\Lang\setupDAN.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\XP\x32\Install\Lang\setupDEU.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\XP\x32\Install\Lang\setupELL.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\XP\x32\Install\Lang\setupENU.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\XP\x32\Install\Lang\setupESN.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\XP\x32\Install\Lang\setupFIN.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\XP\x32\Install\Lang\setupFRA.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\XP\x32\Install\Lang\setupHEB.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\XP\x32\Install\Lang\setupHUN.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\XP\x32\Install\Lang\setupITA.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\XP\x32\Install\Lang\setupJPN.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\XP\x32\Install\Lang\setupKOR.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\XP\x32\Install\Lang\setupNLD.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\XP\x32\Install\Lang\setupNOR.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\XP\x32\Install\Lang\setupPLK.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\XP\x32\Install\Lang\setupPTB.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\XP\x32\Install\Lang\setupPTG.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\XP\x32\Install\Lang\setupRUS.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\XP\x32\Install\Lang\setupSVE.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\XP\x32\Install\Lang\setupTHA.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\XP\x32\Install\Lang\setupTRK.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\DRIVERS\WIN\WLANINT\XP\x64\Install\KillAc.exe a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\desktop\ChangeDesktop.exe a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\Lenovo SlideNav\Installation\Installationbrazil.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\Lenovo SlideNav\Installation\Installationchinese.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\Lenovo SlideNav\Installation\Installationczech.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\Lenovo SlideNav\Installation\Installationdansk.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\Lenovo SlideNav\Installation\Installationdutch.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\Lenovo SlideNav\Installation\Installationenglish.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\Lenovo SlideNav\Installation\Installationfinn.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\Lenovo SlideNav\Installation\Installationfrench.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\Lenovo SlideNav\Installation\Installationgerman.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\Lenovo SlideNav\Installation\Installationgreek.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\Lenovo SlideNav\Installation\Installationhungary.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\Lenovo SlideNav\Installation\Installationitalian.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\Lenovo SlideNav\Installation\Installationjapanese.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\Lenovo SlideNav\Installation\Installationkorean.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\Lenovo SlideNav\Installation\Installationnorway.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\Lenovo SlideNav\Installation\Installationpolish.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\Lenovo SlideNav\Installation\Installationportuguese.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\Lenovo SlideNav\Installation\Installationrussian.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\Lenovo SlideNav\Installation\Installationspanish.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\Lenovo SlideNav\Installation\Installationsweden.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\Lenovo SlideNav\Installation\Installationtradinitionalchinese.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\Lenovo SlideNav\Installation\Installationturk.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\atl80.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\Brazil.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\Chinese.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\Czech.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\DAN.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\Dutch.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\English.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\Finn.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\French.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\German.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\Greek.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\HOOKDLL.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\Hungary.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\Italian.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\Japanese.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\Korean.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\mfc80.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\mfc80u.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\mfcm80.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\mfcm80u.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\msvcm80.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\msvcp80.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\msvcr80.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\Norway.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\Polish.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\Portuguese.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\Russian.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\SlidebarCommonDll.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\Spanish.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\Sweden.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\TradinitionalChinese.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\Turk.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\Lenovo SlideNav\SlidebarNavigator\vcomp.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\OneKey App\OneKey Recovery\msxml6.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\OneKey App\OneKey Recovery\test.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MakeWinPEISO\winpe_x86\ISO\Servicing\Apds.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MakeWinPEISO\winpe_x86\ISO\Servicing\Apircl.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MakeWinPEISO\winpe_x86\ISO\Servicing\Apss.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MakeWinPEISO\winpe_x86\ISO\Servicing\CbsCore.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MakeWinPEISO\winpe_x86\ISO\Servicing\CbsMsg.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MakeWinPEISO\winpe_x86\ISO\Servicing\Cmiadapter.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MakeWinPEISO\winpe_x86\ISO\Servicing\CmiTrust.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MakeWinPEISO\winpe_x86\ISO\Servicing\CMIv2.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MakeWinPEISO\winpe_x86\ISO\Servicing\CntrTextInstaller.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MakeWinPEISO\winpe_x86\ISO\Servicing\Dpx.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MakeWinPEISO\winpe_x86\ISO\Servicing\drupdate.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MakeWinPEISO\winpe_x86\ISO\Servicing\drvstore.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MakeWinPEISO\winpe_x86\ISO\Servicing\Esscli.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MakeWinPEISO\winpe_x86\ISO\Servicing\FastProx.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MakeWinPEISO\winpe_x86\ISO\Servicing\HelpCins.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MakeWinPEISO\winpe_x86\ISO\Servicing\locdrv.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MakeWinPEISO\winpe_x86\ISO\Servicing\Mofd.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MakeWinPEISO\winpe_x86\ISO\Servicing\MofInstall.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MakeWinPEISO\winpe_x86\ISO\Servicing\msdelta.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MakeWinPEISO\winpe_x86\ISO\Servicing\mspatcha.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MakeWinPEISO\winpe_x86\ISO\Servicing\msxml6.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MakeWinPEISO\winpe_x86\ISO\Servicing\OEMHelpins.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MakeWinPEISO\winpe_x86\ISO\Servicing\RepDrvfs.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MakeWinPEISO\winpe_x86\ISO\Servicing\ResCInst.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MakeWinPEISO\winpe_x86\ISO\Servicing\SmiEngine.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MakeWinPEISO\winpe_x86\ISO\Servicing\SmiInstaller.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MakeWinPEISO\winpe_x86\ISO\Servicing\smipi.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MakeWinPEISO\winpe_x86\ISO\Servicing\Wbemcomn.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MakeWinPEISO\winpe_x86\ISO\Servicing\Wbemcore.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MakeWinPEISO\winpe_x86\ISO\Servicing\Wbemprox.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MakeWinPEISO\winpe_x86\ISO\Servicing\Wcp.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MakeWinPEISO\winpe_x86\ISO\Servicing\wdscore.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MakeWinPEISO\winpe_x86\ISO\Servicing\Wmiutils.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MakeWinPEISO\winpe_x86\ISO\Servicing\xmllite.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\ACE.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Acrofx32.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AdobeLinguistic.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AdobeXMP.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AGM.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\ahclient.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\authplay.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AXE8SharedExpat.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AXSLE.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\BIB.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\BIBUtils.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\ccme_base.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\CoolType.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\cryptocme2.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\icucnv36.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\JP2KLib.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\logsession.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\LogTransport2.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\LogTransport2.exe a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Onix32.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\pe.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\sqlite.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\vdk150.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacmxx.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiamaxx.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atishlx.exe a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\DXStress.exe a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\installShell.exe a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MMLoadDrv.exe a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\msvcm80.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\msvcp80.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\msvcr80.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\32\wbhelp2.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Graphics-Previews-Common\CCCDsPreview.exe a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Graphics-Previews-Common\MMACEFilters.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Graphics-Previews-Common\MMACEPrev.exe a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Graphics-Previews-Common\msvcm80.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Graphics-Previews-Common\msvcp80.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Graphics-Previews-Common\msvcr80.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Graphics-Previews-Vista\cccprev.exe a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files (x86)\Audacity 1.3 Beta (Unicode)\audacity.exe a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files (x86)\Audacity 1.3 Beta (Unicode)\wxbase28u_net_vc_custom.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files (x86)\Audacity 1.3 Beta (Unicode)\wxbase28u_vc_custom.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files (x86)\Audacity 1.3 Beta (Unicode)\wxmsw28u_adv_vc_custom.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files (x86)\Audacity 1.3 Beta (Unicode)\wxmsw28u_core_vc_custom.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files (x86)\Audacity 1.3 Beta (Unicode)\wxmsw28u_html_vc_custom.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files (x86)\Audacity 1.3 Beta (Unicode)\Modules\mod-script-pipe.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files (x86)\Audacity 1.3 Beta (Unicode)\Plug-Ins\gverb_1216.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files (x86)\Audacity 1.3 Beta (Unicode)\Plug-Ins\hard_limiter_1413.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files (x86)\Audacity 1.3 Beta (Unicode)\Plug-Ins\sc4_1882.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files (x86)\Common Files\DivX Shared\Qt4.5\phonon4.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files (x86)\Common Files\DivX Shared\Qt4.5\QtCore4.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files (x86)\Common Files\DivX Shared\Qt4.5\QtGui4.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files (x86)\Common Files\DivX Shared\Qt4.5\QtNetwork4.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files (x86)\Common Files\DivX Shared\Qt4.5\QtSql4.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files (x86)\Common Files\DivX Shared\Qt4.5\QtWebKit4.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files (x86)\Common Files\DivX Shared\Qt4.5\QtXml4.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files (x86)\Common Files\DivX Shared\Qt4.5\Plugins\accessible\qtaccessiblewidgets4.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files (x86)\Common Files\DivX Shared\Qt4.5\Plugins\codecs\qcncodecs4.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files (x86)\Common Files\DivX Shared\Qt4.5\Plugins\codecs\qjpcodecs4.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files (x86)\Common Files\DivX Shared\Qt4.5\Plugins\codecs\qkrcodecs4.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files (x86)\Common Files\DivX Shared\Qt4.5\Plugins\codecs\qtwcodecs4.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files (x86)\Common Files\DivX Shared\Qt4.5\Plugins\imageformats\qgif4.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files (x86)\Common Files\DivX Shared\Qt4.5\Plugins\imageformats\qico4.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files (x86)\Common Files\DivX Shared\Qt4.5\Plugins\imageformats\qjpeg4.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files (x86)\Common Files\DivX Shared\Qt4.5\Plugins\imageformats\qsvg4.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files (x86)\Common Files\DivX Shared\Qt4.5\Plugins\imageformats\qtiff4.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files (x86)\Common Files\DivX Shared\Qt4.5\Plugins\sqldrivers\qsqlite4.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files (x86)\Common Files\InstallShield\Engine\6\Intel 32\ctor.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files (x86)\Common Files\InstallShield\Engine\6\Intel 32\iuser.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files (x86)\Common Files\InstallShield\IScript\iscript.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\iKernel.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\iscript.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\iuser.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Program Files (x86)\Common Files\microsoft shared\VC\msdia80.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\ProgramData\Temp\{01FB4998-33C4-4431-85ED-079E3EEFE75D}\PostBuild.exe a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\ProgramData\Temp\{46F4D124-20E5-4D12-BE52-EC177A7A4B42}\PostBuild.exe a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\ProgramData\YouTube Downloader\ytd_installer.exe a variant of Win32/Toolbar.Widgi application cleaned by deleting - quarantined
C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120823T095042269366\pci\ven_1002&dev_68c0&subsys_397817aa\amdpcom32.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120823T095042269366\pci\ven_1002&dev_68c0&subsys_397817aa\ati2edxx.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120823T095042269366\pci\ven_1002&dev_68c0&subsys_397817aa\atiadlxy.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120823T095042269366\pci\ven_1002&dev_68c0&subsys_397817aa\atiapfxx.exe a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120823T095042269366\pci\ven_1002&dev_68c0&subsys_397817aa\atibtmon.exe a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120823T095042269366\pci\ven_1002&dev_68c0&subsys_397817aa\aticalcl.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120823T095042269366\pci\ven_1002&dev_68c0&subsys_397817aa\aticaldd.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120823T095042269366\pci\ven_1002&dev_68c0&subsys_397817aa\aticalrt.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120823T095042269366\pci\ven_1002&dev_68c0&subsys_397817aa\atidxx32.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120823T095042269366\pci\ven_1002&dev_68c0&subsys_397817aa\atigktxx.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120823T095042269366\pci\ven_1002&dev_68c0&subsys_397817aa\atiglpxx.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120823T095042269366\pci\ven_1002&dev_68c0&subsys_397817aa\atimpc32.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120823T095042269366\pci\ven_1002&dev_68c0&subsys_397817aa\atioglxx.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120823T095042269366\pci\ven_1002&dev_68c0&subsys_397817aa\atipdlxx.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120823T095042269366\pci\ven_1002&dev_68c0&subsys_397817aa\atiu9pag.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120823T095042269366\pci\ven_1002&dev_68c0&subsys_397817aa\atiumdag.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120823T095042269366\pci\ven_1002&dev_68c0&subsys_397817aa\atiumdva.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120823T095042269366\pci\ven_1002&dev_68c0&subsys_397817aa\atiuxpag.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120823T095042269366\pci\ven_1002&dev_68c0&subsys_397817aa\Oemdspif.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120915T093532956578\pci\ven_1002&dev_68c0&subsys_397817aa\amdpcom32.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120915T093532956578\pci\ven_1002&dev_68c0&subsys_397817aa\ati2edxx.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120915T093532956578\pci\ven_1002&dev_68c0&subsys_397817aa\atiadlxy.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120915T093532956578\pci\ven_1002&dev_68c0&subsys_397817aa\atiapfxx.exe a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120915T093532956578\pci\ven_1002&dev_68c0&subsys_397817aa\atibtmon.exe a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120915T093532956578\pci\ven_1002&dev_68c0&subsys_397817aa\aticalcl.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120915T093532956578\pci\ven_1002&dev_68c0&subsys_397817aa\aticaldd.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120915T093532956578\pci\ven_1002&dev_68c0&subsys_397817aa\aticalrt.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120915T093532956578\pci\ven_1002&dev_68c0&subsys_397817aa\atidxx32.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120915T093532956578\pci\ven_1002&dev_68c0&subsys_397817aa\atigktxx.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120915T093532956578\pci\ven_1002&dev_68c0&subsys_397817aa\atiglpxx.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120915T093532956578\pci\ven_1002&dev_68c0&subsys_397817aa\atimpc32.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120915T093532956578\pci\ven_1002&dev_68c0&subsys_397817aa\atioglxx.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120915T093532956578\pci\ven_1002&dev_68c0&subsys_397817aa\atipdlxx.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120915T093532956578\pci\ven_1002&dev_68c0&subsys_397817aa\atiu9pag.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120915T093532956578\pci\ven_1002&dev_68c0&subsys_397817aa\atiumdag.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120915T093532956578\pci\ven_1002&dev_68c0&subsys_397817aa\atiumdva.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120915T093532956578\pci\ven_1002&dev_68c0&subsys_397817aa\atiuxpag.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120915T093532956578\pci\ven_1002&dev_68c0&subsys_397817aa\Oemdspif.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120915T094711414605\pci\ven_1002&dev_68c0&subsys_397817aa\amdpcom32.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120915T094711414605\pci\ven_1002&dev_68c0&subsys_397817aa\ati2edxx.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120915T094711414605\pci\ven_1002&dev_68c0&subsys_397817aa\atiadlxy.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120915T094711414605\pci\ven_1002&dev_68c0&subsys_397817aa\atiapfxx.exe a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120915T094711414605\pci\ven_1002&dev_68c0&subsys_397817aa\atibtmon.exe a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120915T094711414605\pci\ven_1002&dev_68c0&subsys_397817aa\aticalcl.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120915T094711414605\pci\ven_1002&dev_68c0&subsys_397817aa\aticaldd.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120915T094711414605\pci\ven_1002&dev_68c0&subsys_397817aa\aticalrt.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120915T094711414605\pci\ven_1002&dev_68c0&subsys_397817aa\atidxx32.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120915T094711414605\pci\ven_1002&dev_68c0&subsys_397817aa\atigktxx.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120915T094711414605\pci\ven_1002&dev_68c0&subsys_397817aa\atiglpxx.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120915T094711414605\pci\ven_1002&dev_68c0&subsys_397817aa\atimpc32.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120915T094711414605\pci\ven_1002&dev_68c0&subsys_397817aa\atioglxx.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120915T094711414605\pci\ven_1002&dev_68c0&subsys_397817aa\atipdlxx.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120915T094711414605\pci\ven_1002&dev_68c0&subsys_397817aa\atiu9pag.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120915T094711414605\pci\ven_1002&dev_68c0&subsys_397817aa\atiumdag.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120915T094711414605\pci\ven_1002&dev_68c0&subsys_397817aa\atiumdva.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120915T094711414605\pci\ven_1002&dev_68c0&subsys_397817aa\atiuxpag.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Users\just1ns_3bay_5ales\AppData\Local\SlimWare Utilities Inc\SlimDrivers\Backups\20120915T094711414605\pci\ven_1002&dev_68c0&subsys_397817aa\Oemdspif.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Users\just1ns_3bay_5ales\AppData\Roaming\Azureus\plugins\azutp\win32\utp.dll a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Users\just1ns_3bay_5ales\Downloads\WM 9 Visualisation.exe a variant of Win32/Ramnit.AM virus deleted - quarantined
C:\Users\just1ns_3bay_5ales\Downloads\You Tube Downloader.exe a variant of Win32/Toolbar.Widgi application cleaned by deleting - quarantined

Please let me know what I should do know.
Thanking you again.

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:11 PM

Posted 31 October 2012 - 10:23 PM

You're infected by RAMINIT.This is very stubborn infection to remove.

I would suggest you to backup your important datas except for files that has EXE,DLL or HTML extensions and perform a clean install.No files belonging to EXE,DLL or HTML extensions should be saved to backup.That may lead to reinfecting the PC.

Let me know how it goes.

Edited by narenxp, 31 October 2012 - 10:27 PM.


#7 nellanitsuj

nellanitsuj
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:01:11 PM

Posted 31 October 2012 - 11:25 PM

Could you please tell me how I would do a 'Clean Install'?

#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:11 PM

Posted 01 November 2012 - 12:59 AM

Follow the instructions given here

http://www.sevenforums.com/tutorials/1649-clean-install-windows-7-a.html

#9 nellanitsuj

nellanitsuj
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:01:11 PM

Posted 01 November 2012 - 02:10 AM

Thanks for your reply.

I do not have an installation CD/DVD.

As such, I tried to remove the virus myself.

This is what I did:

I started the computer in safe mode with networking.
Then I found the virus start up process.
I deleted it using 'CCleaner' (I tried in normal boot mode but it would not allow me).
I then restarted in normal boot mode.
I scanned my computer with Avira.
I fixed the trheats that were found. (2 of them)
Windows defender would not open so I used SpyBot to find and fix the process which was not allowing WIndows defender to work.
I then scanned using Windows defender and nothing came up.

How can I be 99% sure that the virus/trojan has been removed?

#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:11 PM

Posted 01 November 2012 - 03:27 AM

You are not listening to my advice.If you still want to remove the infection

Read the guide here

http://www.bleepingcomputer.com/forums/topic34773.html

and create a topic here with logs

http://www.bleepingcomputer.com/forums/forum22.html

Good luck

#11 nellanitsuj

nellanitsuj
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:01:11 PM

Posted 01 November 2012 - 04:46 AM

Forgive me if I came across as rude, it's just that I did not think I was able to do a clean install as I do not have a Windows CD (which the link tht you gave me said I would need)

#12 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:11 PM

Posted 01 November 2012 - 08:16 AM

No issues.Create a topic as instructed in the other forum.Someone should help you

good luck




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users