Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Infected HP laptop


  • Please log in to reply
5 replies to this topic

#1 thibauld

thibauld

  • Members
  • 64 posts
  • OFFLINE
  •  
  • Local time:06:29 PM

Posted 04 July 2013 - 02:13 PM

Hi,

 

Today I ran a normal virus scan on my mother's laptop and for some reason decided to run TDSSkiller scan as well, and found 13 possible threats. A lot of the threats have something with HP in its name so im not sure if its a problem.

 

The laptop is a HP pavillion dv6 notebook pc with windows 7, 32-bit.

 

This is the TDSS log:

 

21:00:48.0923 4872  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
21:00:49.0136 4872  ============================================================
21:00:49.0136 4872  Current date / time: 2013/07/04 21:00:49.0136
21:00:49.0136 4872  SystemInfo:
21:00:49.0137 4872  
21:00:49.0137 4872  OS Version: 6.0.6001 ServicePack: 1.0
21:00:49.0137 4872  Product type: Workstation
21:00:49.0137 4872  ComputerName: PC_VAN_DINI
21:00:49.0137 4872  UserName: Dini
21:00:49.0137 4872  Windows directory: C:\Windows
21:00:49.0137 4872  System windows directory: C:\Windows
21:00:49.0137 4872  Processor architecture: Intel x86
21:00:49.0137 4872  Number of processors: 2
21:00:49.0137 4872  Page size: 0x1000
21:00:49.0137 4872  Boot type: Normal boot
21:00:49.0137 4872  ============================================================
21:00:51.0029 4872  Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
21:00:51.0033 4872  ============================================================
21:00:51.0033 4872  \Device\Harddisk0\DR0:
21:00:51.0034 4872  MBR partitions:
21:00:51.0034 4872  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x1BC9B800
21:00:51.0034 4872  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1BC9C000, BlocksNum 0x1528000
21:00:51.0034 4872  ============================================================
21:00:51.0050 4872  C: <-> \Device\Harddisk0\DR0\Partition1
21:00:51.0108 4872  D: <-> \Device\Harddisk0\DR0\Partition2
21:00:51.0109 4872  ============================================================
21:00:51.0109 4872  Initialize success
21:00:51.0109 4872  ============================================================
21:00:56.0901 4240  ============================================================
21:00:56.0901 4240  Scan started
21:00:56.0901 4240  Mode: Manual; SigCheck; TDLFS;
21:00:56.0901 4240  ============================================================
21:00:57.0874 4240  ================ Scan system memory ========================
21:00:57.0874 4240  System memory - ok
21:00:57.0877 4240  ================ Scan services =============================
21:00:58.0171 4240  [ 3B10711AD8656C097E0D16A41B29C54C ] Accelerometer   C:\Windows\system32\DRIVERS\Accelerometer.sys
21:00:58.0390 4240  Accelerometer - ok
21:00:58.0468 4240  [ FCB8C7210F0135E24C6580F7F649C73C ] ACPI            C:\Windows\system32\drivers\acpi.sys
21:00:58.0495 4240  ACPI - ok
21:00:58.0579 4240  [ 9915504F602D277EE47FD843A677FD15 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
21:00:58.0600 4240  AdobeFlashPlayerUpdateSvc - ok
21:00:58.0623 4240  [ 04F0FCAC69C7C71A3AC4EB97FAFC8303 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
21:00:58.0653 4240  adp94xx - ok
21:00:58.0682 4240  [ 60505E0041F7751BDBB80F88BF45C2CE ] adpahci         C:\Windows\system32\drivers\adpahci.sys
21:00:58.0712 4240  adpahci - ok
21:00:58.0727 4240  [ 8A42779B02AEC986EAB64ECFC98F8BD7 ] adpu160m        C:\Windows\system32\drivers\adpu160m.sys
21:00:58.0746 4240  adpu160m - ok
21:00:58.0763 4240  [ 241C9E37F8CE45EF51C3DE27515CA4E5 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
21:00:58.0782 4240  adpu320 - ok
21:00:58.0810 4240  [ 9D1FDA9E086BA64E3C93C9DE32461BCF ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
21:00:58.0962 4240  AeLookupSvc - ok
21:00:59.0143 4240  [ 3B1B2EE9DF189F6BBB080BF393D1B2EE ] AESTFilters     C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_52c73ccb\aestsrv.exe
21:00:59.0235 4240  AESTFilters - ok
21:00:59.0300 4240  [ 48EB99503533C27AC6135648E5474457 ] AFD             C:\Windows\system32\drivers\afd.sys
21:00:59.0402 4240  AFD - ok
21:00:59.0443 4240  [ 13F9E33747E6B41A3FF305C37DB0D360 ] agp440          C:\Windows\system32\drivers\agp440.sys
21:00:59.0462 4240  agp440 - ok
21:00:59.0490 4240  [ AE1FDF7BF7BB6C6A70F67699D880592A ] aic78xx         C:\Windows\system32\drivers\djsvs.sys
21:00:59.0507 4240  aic78xx - ok
21:00:59.0537 4240  [ A1545B731579895D8CC44FC0481C1192 ] ALG             C:\Windows\System32\alg.exe
21:00:59.0707 4240  ALG - ok
21:00:59.0736 4240  [ 3D76FDA1A10ACC3DC84728F55C29B6D4 ] aliide          C:\Windows\system32\drivers\aliide.sys
21:00:59.0752 4240  aliide - ok
21:00:59.0790 4240  [ C47344BC706E5F0B9DCE369516661578 ] amdagp          C:\Windows\system32\drivers\amdagp.sys
21:00:59.0825 4240  amdagp - ok
21:00:59.0850 4240  [ 5B92E7839F5A1FBC1B39DE67758AD6F8 ] amdide          C:\Windows\system32\drivers\amdide.sys
21:00:59.0867 4240  amdide - ok
21:00:59.0892 4240  [ 18F29B49AD23ECEE3D2A826C725C8D48 ] AmdK7           C:\Windows\system32\drivers\amdk7.sys
21:00:59.0969 4240  AmdK7 - ok
21:01:00.0001 4240  [ 93AE7F7DD54AB986A6F1A1B37BE7442D ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
21:01:00.0094 4240  AmdK8 - ok
21:01:00.0160 4240  [ C6D704C7F0434DC791AAC37CAC4B6E14 ] Appinfo         C:\Windows\System32\appinfo.dll
21:01:00.0225 4240  Appinfo - ok
21:01:00.0376 4240  [ 7EF47644B74EBE721CC32211D3C35E76 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
21:01:00.0391 4240  Apple Mobile Device - ok
21:01:00.0426 4240  [ 5D2888182FB46632511ACEE92FDAD522 ] arc             C:\Windows\system32\drivers\arc.sys
21:01:00.0442 4240  arc - ok
21:01:00.0475 4240  [ 5E2A321BD7C8B3624E41FDEC3E244945 ] arcsas          C:\Windows\system32\drivers\arcsas.sys
21:01:00.0492 4240  arcsas - ok
21:01:00.0560 4240  [ 7B44F870FC2DA172C5367D9E3F96F553 ] ASKService      C:\Program Files\AskBarDis\bar\bin\AskService.exe
21:01:00.0591 4240  ASKService - ok
21:01:00.0613 4240  [ 367621CB272A8D9E7D910388916D5737 ] ASKUpgrade      C:\Program Files\AskBarDis\bar\bin\ASKUpgrade.exe
21:01:00.0632 4240  ASKUpgrade - ok
21:01:00.0659 4240  [ 53B202ABEE6455406254444303E87BE1 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
21:01:00.0736 4240  AsyncMac - ok
21:01:00.0759 4240  [ 9C0E70031905ADBF94EDB9EA14AF943B ] atapi           C:\Windows\system32\drivers\atapi.sys
21:01:00.0773 4240  atapi - ok
21:01:00.0820 4240  [ ECEA2C66EBA281E9D5A5F8EA54D0630C ] Ati External Event Utility C:\Windows\system32\Ati2evxx.exe
21:01:00.0956 4240  Ati External Event Utility - ok
21:01:01.0105 4240  [ 96F5EEA88F9146F5F803AD20C4264565 ] atikmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
21:01:01.0441 4240  atikmdag - ok
21:01:01.0496 4240  [ 42076E29AAFA0830A2C5D4E310F58DD1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
21:01:01.0560 4240  AudioEndpointBuilder - ok
21:01:01.0571 4240  [ 42076E29AAFA0830A2C5D4E310F58DD1 ] Audiosrv        C:\Windows\System32\Audiosrv.dll
21:01:01.0615 4240  Audiosrv - ok
21:01:01.0691 4240  [ DB338A6BD3976904EB0F8343F51E64EB ] avg8wd          C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
21:01:01.0743 4240  avg8wd - ok
21:01:01.0778 4240  [ BC12F2404BB6F2B6B2FF3C4C246CB752 ] AvgLdx86        C:\Windows\System32\Drivers\avgldx86.sys
21:01:01.0825 4240  AvgLdx86 - ok
21:01:01.0839 4240  [ 5903D729D4F0C5BCA74123C96A1B29E0 ] AvgMfx86        C:\Windows\System32\Drivers\avgmfx86.sys
21:01:01.0849 4240  AvgMfx86 - ok
21:01:01.0874 4240  [ 92D8E1E8502E649B60E70074EB29C380 ] AvgTdiX         C:\Windows\System32\Drivers\avgtdix.sys
21:01:01.0908 4240  AvgTdiX - ok
21:01:01.0973 4240  [ 8DCD8B53E5935D9AF52CB62FD2B965B5 ] avgtp           C:\Windows\system32\drivers\avgtpx86.sys
21:01:02.0004 4240  avgtp - ok
21:01:02.0073 4240  [ B9DCE12EA5D337975C444787B66BBFDE ] BCM43XX         C:\Windows\system32\DRIVERS\bcmwl6.sys
21:01:02.0141 4240  BCM43XX - ok
21:01:02.0183 4240  [ 67E506B75BD5326A3EC7B70BD014DFB6 ] Beep            C:\Windows\system32\drivers\Beep.sys
21:01:02.0261 4240  Beep - ok
21:01:02.0310 4240  [ 8582E233C346AEFE759833E8A30DD697 ] BFE             C:\Windows\System32\bfe.dll
21:01:02.0382 4240  BFE - ok
21:01:02.0480 4240  [ 02ED7B4DBC2A3232A389106DA7515C3D ] BITS            C:\Windows\System32\qmgr.dll
21:01:02.0622 4240  BITS - ok
21:01:02.0669 4240  [ D4DF28447741FD3D953526E33A617397 ] blbdrive        C:\Windows\system32\drivers\blbdrive.sys
21:01:02.0743 4240  blbdrive - ok
21:01:02.0859 4240  [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
21:01:02.0927 4240  Bonjour Service - ok
21:01:02.0975 4240  [ 8153396D5551276227FA146900F734E6 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
21:01:03.0043 4240  bowser - ok
21:01:03.0092 4240  [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo        C:\Windows\system32\drivers\brfiltlo.sys
21:01:03.0155 4240  BrFiltLo - ok
21:01:03.0180 4240  [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp        C:\Windows\system32\drivers\brfiltup.sys
21:01:03.0272 4240  BrFiltUp - ok
21:01:03.0337 4240  [ A3629A0C4226F9E9C72FAAEEBC3AD33C ] Browser         C:\Windows\System32\browser.dll
21:01:03.0422 4240  Browser - ok
21:01:03.0474 4240  [ B304E75CFF293029EDDF094246747113 ] Brserid         C:\Windows\system32\drivers\brserid.sys
21:01:03.0666 4240  Brserid - ok
21:01:03.0688 4240  [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm        C:\Windows\system32\drivers\brserwdm.sys
21:01:03.0790 4240  BrSerWdm - ok
21:01:03.0841 4240  [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm        C:\Windows\system32\drivers\brusbmdm.sys
21:01:03.0967 4240  BrUsbMdm - ok
21:01:03.0983 4240  [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer        C:\Windows\system32\drivers\brusbser.sys
21:01:04.0094 4240  BrUsbSer - ok
21:01:04.0158 4240  [ AE19CFBBBA41800F3D5343E21D2CA09F ] BthEnum         C:\Windows\system32\DRIVERS\BthEnum.sys
21:01:04.0244 4240  BthEnum - ok
21:01:04.0281 4240  [ 5FFA6988FF9597986FF2ADA736CC90C0 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
21:01:04.0339 4240  BTHMODEM - ok
21:01:04.0397 4240  [ 5904EFA25F829BF84EA6FB045134A1D8 ] BthPan          C:\Windows\system32\DRIVERS\bthpan.sys
21:01:04.0453 4240  BthPan - ok
21:01:04.0532 4240  [ 75F19DF0BC62992D05FDD8A32D968531 ] BTHPORT         C:\Windows\system32\Drivers\BTHport.sys
21:01:04.0676 4240  BTHPORT - ok
21:01:04.0710 4240  [ FC930B47A83F5F61DFADC64A0719DE43 ] BthServ         C:\Windows\System32\bthserv.dll
21:01:04.0770 4240  BthServ - ok
21:01:04.0790 4240  [ 4CE2A25C5936BC515357D60FEE73F221 ] BTHUSB          C:\Windows\system32\Drivers\BTHUSB.sys
21:01:04.0823 4240  BTHUSB - ok
21:01:04.0858 4240  [ 7ADD03E75BEB9E6DD102C3081D29840A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
21:01:04.0920 4240  cdfs - ok
21:01:04.0959 4240  [ 1EC25CEA0DE6AC4718BF89F9E1778B57 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
21:01:05.0016 4240  cdrom - ok
21:01:05.0046 4240  [ 87C2D0377B23E2D8A41093C2F5FB1A5B ] CertPropSvc     C:\Windows\System32\certprop.dll
21:01:05.0114 4240  CertPropSvc - ok
21:01:05.0142 4240  [ E5D4133F37219DBCFE102BC61072589D ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
21:01:05.0205 4240  circlass - ok
21:01:05.0236 4240  [ 0703B9DEE7EEC6D6370EDEBD43D0F5C2 ] CLFS            C:\Windows\system32\CLFS.sys
21:01:05.0258 4240  CLFS - ok
21:01:05.0334 4240  [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:01:05.0374 4240  clr_optimization_v2.0.50727_32 - ok
21:01:05.0514 4240  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
21:01:05.0584 4240  clr_optimization_v4.0.30319_32 - ok
21:01:05.0606 4240  [ 99AFC3795B58CC478FBBBCDC658FCB56 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
21:01:05.0679 4240  CmBatt - ok
21:01:05.0700 4240  [ D36372A6EA6805EFBE8884D10772313F ] cmdide          C:\Windows\system32\drivers\cmdide.sys
21:01:05.0715 4240  cmdide - ok
21:01:05.0780 4240  [ 12E94E225BD7B05A2BCCD5C0B841E921 ] Com4QLBEx       C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
21:01:05.0799 4240  Com4QLBEx - ok
21:01:05.0806 4240  [ 6AFEF0B60FA25DE07C0968983EE4F60A ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
21:01:05.0821 4240  Compbatt - ok
21:01:05.0828 4240  COMSysApp - ok
21:01:05.0844 4240  [ 741E9DFF4F42D2D8477D0FC1DC0DF871 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
21:01:05.0859 4240  crcdisk - ok
21:01:05.0888 4240  [ 1F07BECDCA750766A96CDA811BA86410 ] Crusoe          C:\Windows\system32\drivers\crusoe.sys
21:01:05.0961 4240  Crusoe - ok
21:01:06.0020 4240  [ 6DE363F9F99334514C46AEC02D3E3678 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
21:01:06.0087 4240  CryptSvc - ok
21:01:06.0142 4240  [ 301AE00E12408650BADDC04DBC832830 ] DcomLaunch      C:\Windows\system32\rpcss.dll
21:01:06.0189 4240  DcomLaunch - ok
21:01:06.0213 4240  [ A3E9FA213F443AC77C7746119D13FEEC ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
21:01:06.0261 4240  DfsC - ok
21:01:06.0373 4240  [ FA3463F25F9CC9C3BCF1E7912FEFF099 ] DFSR            C:\Windows\system32\DFSR.exe
21:01:06.0589 4240  DFSR - ok
21:01:06.0636 4240  [ 43A988A9C10333476CB5FB667CBD629D ] Dhcp            C:\Windows\System32\dhcpcsvc.dll
21:01:06.0695 4240  Dhcp - ok
21:01:06.0750 4240  [ 64109E623ABD6955C8FB110B592E68B7 ] disk            C:\Windows\system32\drivers\disk.sys
21:01:06.0766 4240  disk - ok
21:01:06.0820 4240  [ 4805D9A6D281C7A7DEFD9094DEC6AF7D ] Dnscache        C:\Windows\System32\dnsrslvr.dll
21:01:06.0887 4240  Dnscache - ok
21:01:06.0904 4240  [ 5AF620A08C614E24206B79E8153CF1A8 ] dot3svc         C:\Windows\System32\dot3svc.dll
21:01:06.0964 4240  dot3svc - ok
21:01:07.0011 4240  [ A622E888F8AA2F6B49E9BC466F0E5DEF ] DPS             C:\Windows\system32\dps.dll
21:01:07.0069 4240  DPS - ok
21:01:07.0109 4240  [ A261867E0862BE565BC1F86D387C0805 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
21:01:07.0175 4240  drmkaud - ok
21:01:07.0222 4240  [ 85F33880B8CFB554BD3D9CCDB486845A ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
21:01:07.0344 4240  DXGKrnl - ok
21:01:07.0396 4240  [ 5425F74AC0C1DBD96A1E04F17D63F94C ] E1G60           C:\Windows\system32\DRIVERS\E1G60I32.sys
21:01:07.0477 4240  E1G60 - ok
21:01:07.0522 4240  [ C0B95E40D85CD807D614E264248A45B9 ] EapHost         C:\Windows\System32\eapsvc.dll
21:01:07.0565 4240  EapHost - ok
21:01:07.0606 4240  [ DD2CD259D83D8B72C02C5F2331FF9D68 ] Ecache          C:\Windows\system32\drivers\ecache.sys
21:01:07.0623 4240  Ecache - ok
21:01:07.0671 4240  [ 9BE3744D295A7701EB425332014F0797 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
21:01:07.0727 4240  ehRecvr - ok
21:01:07.0753 4240  [ AD1870C8E5D6DD340C829E6074BF3C3F ] ehSched         C:\Windows\ehome\ehsched.exe
21:01:07.0812 4240  ehSched - ok
21:01:07.0828 4240  [ C27C4EE8926E74AA72EFCAB24C5242C3 ] ehstart         C:\Windows\ehome\ehstart.dll
21:01:07.0865 4240  ehstart - ok
21:01:07.0917 4240  [ 23B62471681A124889978F6295B3F4C6 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
21:01:07.0943 4240  elxstor - ok
21:01:07.0983 4240  [ 70B1A86DF0C8EAD17D2BC332EDAE2C7C ] EMDMgmt         C:\Windows\system32\emdmgmt.dll
21:01:08.0097 4240  EMDMgmt - ok
21:01:08.0149 4240  [ 004B2EA6CC2598EC5F0552E43CE29CEF ] enecir          C:\Windows\system32\DRIVERS\enecir.sys
21:01:08.0222 4240  enecir - ok
21:01:08.0243 4240  [ 3DB974F3935483555D7148663F726C61 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
21:01:08.0315 4240  ErrDev - ok
21:01:08.0368 4240  [ 3CB3343D720168B575133A0A20DC2465 ] EventSystem     C:\Windows\system32\es.dll
21:01:08.0409 4240  EventSystem - ok
21:01:08.0456 4240  [ 0D858EB20589A34EFB25695ACAA6AA2D ] exfat           C:\Windows\system32\drivers\exfat.sys
21:01:08.0519 4240  exfat - ok
21:01:08.0564 4240  [ 42F721C52EEF2D6DF9372A53813A83EF ] ezSharedSvc     C:\Windows\System32\ezsvc7.dll
21:01:08.0599 4240  ezSharedSvc ( UnsignedFile.Multi.Generic ) - warning
21:01:08.0600 4240  ezSharedSvc - detected UnsignedFile.Multi.Generic (1)
21:01:08.0627 4240  [ 3C489390C2E2064563727752AF8EAB9E ] fastfat         C:\Windows\system32\drivers\fastfat.sys
21:01:08.0706 4240  fastfat - ok
21:01:08.0722 4240  [ AFE1E8B9782A0DD7FB46BBD88E43F89A ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
21:01:08.0792 4240  fdc - ok
21:01:08.0824 4240  [ 6629B5F0E98151F4AFDD87567EA32BA3 ] fdPHost         C:\Windows\system32\fdPHost.dll
21:01:08.0898 4240  fdPHost - ok
21:01:08.0918 4240  [ 89ED56DCE8E47AF40892778A5BD31FD2 ] FDResPub        C:\Windows\system32\fdrespub.dll
21:01:09.0013 4240  FDResPub - ok
21:01:09.0050 4240  [ A8C0139A884861E3AAE9CFE73B208A9F ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
21:01:09.0066 4240  FileInfo - ok
21:01:09.0103 4240  [ 0AE429A696AECBC5970E3CF2C62635AE ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
21:01:09.0176 4240  Filetrace - ok
21:01:09.0200 4240  [ 85B7CF99D532820495D68D747FDA9EBD ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
21:01:09.0268 4240  flpydisk - ok
21:01:09.0287 4240  [ 05EA53AFE985443011E36DAB07343B46 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
21:01:09.0307 4240  FltMgr - ok
21:01:09.0347 4240  [ C9BE08664611DDAF98E2331E9288B00B ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
21:01:09.0361 4240  FontCache3.0.0.0 - ok
21:01:09.0426 4240  [ CBE5F69A5E5B918225F420BA748F3742 ] FsUsbExDisk     C:\Windows\system32\FsUsbExDisk.SYS
21:01:09.0449 4240  FsUsbExDisk ( UnsignedFile.Multi.Generic ) - warning
21:01:09.0449 4240  FsUsbExDisk - detected UnsignedFile.Multi.Generic (1)
21:01:09.0489 4240  [ 96633419F4A1E37ACB89B45EBCCFE001 ] FsUsbExService  C:\Windows\system32\FsUsbExService.Exe
21:01:09.0509 4240  FsUsbExService - ok
21:01:09.0529 4240  [ 65EA8B77B5851854F0C55C43FA51A198 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
21:01:09.0573 4240  Fs_Rec - ok
21:01:09.0607 4240  [ 34582A6E6573D54A07ECE5FE24A126B5 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
21:01:09.0639 4240  gagp30kx - ok
21:01:09.0699 4240  [ 617DC2877015270914CA3C03873560D5 ] GameConsoleService C:\Program Files\HP Games\My HP Game Console\GameConsoleService.exe
21:01:09.0783 4240  GameConsoleService - ok
21:01:09.0860 4240  [ 8182FF89C65E4D38B2DE4BB0FB18564E ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
21:01:09.0889 4240  GEARAspiWDM - ok
21:01:09.0929 4240  [ D9F1113D9401185245573350712F92FC ] gpsvc           C:\Windows\System32\gpsvc.dll
21:01:10.0065 4240  gpsvc - ok
21:01:10.0121 4240  [ CB04C744BE0A61B1D648FAED182C3B59 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
21:01:10.0216 4240  HdAudAddService - ok
21:01:10.0239 4240  [ C87B1EE051C0464491C1A7B03FA0BC99 ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
21:01:10.0313 4240  HDAudBus - ok
21:01:10.0335 4240  [ 1338520E78D90154ED6BE8F84DE5FCEB ] HidBth          C:\Windows\system32\drivers\hidbth.sys
21:01:10.0443 4240  HidBth - ok
21:01:10.0470 4240  [ 5A87127718873BD7F3BD7AC42B951D8E ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
21:01:10.0523 4240  HidIr - ok
21:01:10.0553 4240  [ 8FA640195279ACE21BEA91396A0054FC ] hidserv         C:\Windows\system32\hidserv.dll
21:01:10.0644 4240  hidserv - ok
21:01:10.0677 4240  [ E2B5BD48AFCC0F0974FB44641B223250 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
21:01:10.0704 4240  HidUsb - ok
21:01:10.0729 4240  [ D8AD255B37DA92434C26E4876DB7D418 ] hkmsvc          C:\Windows\system32\kmsvc.dll
21:01:10.0786 4240  hkmsvc - ok
21:01:10.0835 4240  [ A19B0BB5A7EB6DF2DD4A0711D36955EE ] HP Health Check Service c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
21:01:10.0844 4240  HP Health Check Service ( UnsignedFile.Multi.Generic ) - warning
21:01:10.0844 4240  HP Health Check Service - detected UnsignedFile.Multi.Generic (1)
21:01:10.0877 4240  [ 16EE7B23A009E00D835CDB79574A91A6 ] HpCISSs         C:\Windows\system32\drivers\hpcisss.sys
21:01:10.0892 4240  HpCISSs - ok
21:01:10.0918 4240  [ 24F3F496C18EFC234777723A67A85F81 ] hpdskflt        C:\Windows\system32\DRIVERS\hpdskflt.sys
21:01:10.0928 4240  hpdskflt - ok
21:01:10.0953 4240  [ 35956140E686D53BF676CF0C778880FC ] HpqKbFiltr      C:\Windows\system32\DRIVERS\HpqKbFiltr.sys
21:01:11.0025 4240  HpqKbFiltr - ok
21:01:11.0062 4240  [ 188FF0ADF66768D53AD94F43972E1E9A ] hpqwmiex        C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
21:01:11.0097 4240  hpqwmiex ( UnsignedFile.Multi.Generic ) - warning
21:01:11.0097 4240  hpqwmiex - detected UnsignedFile.Multi.Generic (1)
21:01:11.0246 4240  [ 14229263AA19C704E0D6D2E7404A8455 ] HPSLPSVC        C:\Program Files\HP\Digital Imaging\bin\HPSLPSVC32.DLL
21:01:11.0295 4240  HPSLPSVC ( UnsignedFile.Multi.Generic ) - warning
21:01:11.0295 4240  HPSLPSVC - detected UnsignedFile.Multi.Generic (1)
21:01:11.0328 4240  [ 6D0AC28C5BD8D8495F83F5929A45E559 ] hpsrv           C:\Windows\system32\Hpservice.exe
21:01:11.0396 4240  hpsrv - ok
21:01:11.0465 4240  [ 96E241624C71211A79C84F50A8E71CAB ] HTTP            C:\Windows\system32\drivers\HTTP.sys
21:01:11.0530 4240  HTTP - ok
21:01:11.0548 4240  [ C6B032D69650985468160FC9937CF5B4 ] i2omp           C:\Windows\system32\drivers\i2omp.sys
21:01:11.0563 4240  i2omp - ok
21:01:11.0602 4240  [ 22D56C8184586B7A1F6FA60BE5F5A2BD ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
21:01:11.0650 4240  i8042prt - ok
21:01:11.0669 4240  [ 54155EA1B0DF185878E0FC9EC3AC3A14 ] iaStorV         C:\Windows\system32\drivers\iastorv.sys
21:01:11.0690 4240  iaStorV - ok
21:01:11.0769 4240  [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT        C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
21:01:11.0804 4240  IDriverT ( UnsignedFile.Multi.Generic ) - warning
21:01:11.0804 4240  IDriverT - detected UnsignedFile.Multi.Generic (1)
21:01:11.0864 4240  [ 7B630ACAED64FEF0C3E1CF255CB56686 ] idsvc           C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
21:01:11.0939 4240  idsvc - ok
21:01:11.0973 4240  [ 2D077BF86E843F901D8DB709C95B49A5 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
21:01:11.0987 4240  iirsp - ok
21:01:12.0028 4240  [ A3BC480A2BF8AA8E4DABD2D5DCE0AFAC ] IKEEXT          C:\Windows\System32\ikeext.dll
21:01:12.0103 4240  IKEEXT - ok
21:01:12.0166 4240  [ DD512A049BD7B4BCE8A83554C5EFF2C1 ] intelide        C:\Windows\system32\drivers\intelide.sys
21:01:12.0181 4240  intelide - ok
21:01:12.0216 4240  [ 224191001E78C89DFA78924C3EA595FF ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
21:01:12.0274 4240  intelppm - ok
21:01:12.0289 4240  [ 9AC218C6E6105477484C6FDBE7D409A4 ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
21:01:12.0350 4240  IPBusEnum - ok
21:01:12.0393 4240  [ 62C265C38769B864CB25B4BCF62DF6C3 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:01:12.0487 4240  IpFilterDriver - ok
21:01:12.0535 4240  [ 6A35D233693EDC29A12742049BC5E37F ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
21:01:12.0586 4240  iphlpsvc - ok
21:01:12.0592 4240  IpInIp - ok
21:01:12.0615 4240  [ B25AAF203552B7B3491139D582B39AD1 ] IPMIDRV         C:\Windows\system32\drivers\ipmidrv.sys
21:01:12.0685 4240  IPMIDRV - ok
21:01:12.0695 4240  [ 8793643A67B42CEC66490B2A0CF92D68 ] IPNAT           C:\Windows\system32\DRIVERS\ipnat.sys
21:01:12.0753 4240  IPNAT - ok
21:01:12.0824 4240  [ 57EDB35EA2FECA88F8B17C0C095C9A56 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
21:01:12.0904 4240  iPod Service - ok
21:01:12.0928 4240  [ 109C0DFB82C3632FBD11949B73AEEAC9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
21:01:13.0009 4240  IRENUM - ok
21:01:13.0041 4240  [ 6C70698A3E5C4376C6AB5C7C17FB0614 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
21:01:13.0056 4240  isapnp - ok
21:01:13.0092 4240  [ F247EEC28317F6C739C16DE420097301 ] iScsiPrt        C:\Windows\system32\DRIVERS\msiscsi.sys
21:01:13.0130 4240  iScsiPrt - ok
21:01:13.0142 4240  [ BCED60D16156E428F8DF8CF27B0DF150 ] iteatapi        C:\Windows\system32\drivers\iteatapi.sys
21:01:13.0158 4240  iteatapi - ok
21:01:13.0165 4240  [ 06FA654504A498C30ADCA8BEC4E87E7E ] iteraid         C:\Windows\system32\drivers\iteraid.sys
21:01:13.0180 4240  iteraid - ok
21:01:13.0203 4240  [ AB772E9CC29C29F59CB4B75F9D6F3F96 ] JMCR            C:\Windows\system32\DRIVERS\jmcr.sys
21:01:13.0287 4240  JMCR - ok
21:01:13.0306 4240  [ 37605E0A8CF00CBBA538E753E4344C6E ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
21:01:13.0338 4240  kbdclass - ok
21:01:13.0350 4240  [ 18247836959BA67E3511B62846B9C2E0 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
21:01:13.0417 4240  kbdhid - ok
21:01:13.0458 4240  [ A911ECAC81F94ADEAFBE8E3F7873EDB0 ] KeyIso          C:\Windows\system32\lsass.exe
21:01:13.0514 4240  KeyIso - ok
21:01:13.0543 4240  [ 7A0CF7908B6824D6A2A1D313E5AE3DCA ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
21:01:13.0573 4240  KSecDD - ok
21:01:13.0633 4240  [ 8078F8F8F7A79E2E6B494523A828C585 ] KtmRm           C:\Windows\system32\msdtckrm.dll
21:01:13.0700 4240  KtmRm - ok
21:01:13.0727 4240  [ 05CE901A4472B3FBF9407C94AD1DB693 ] LanmanServer    C:\Windows\system32\srvsvc.dll
21:01:13.0790 4240  LanmanServer - ok
21:01:13.0838 4240  [ 2AE2E1628C5D3F1C0A46A67C9FA1DF15 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
21:01:13.0891 4240  LanmanWorkstation - ok
21:01:13.0952 4240  [ ABF90FC5A127F481219B873C1B8DFC1C ] LightScribeService C:\Program Files\Common Files\LightScribe\LSSrvc.exe
21:01:13.0978 4240  LightScribeService ( UnsignedFile.Multi.Generic ) - warning
21:01:13.0978 4240  LightScribeService - detected UnsignedFile.Multi.Generic (1)
21:01:14.0003 4240  [ D1C5883087A0C3F1344D9D55A44901F6 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
21:01:14.0063 4240  lltdio - ok
21:01:14.0107 4240  [ 2D5A428872F1442631D0959A34ABFF63 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
21:01:14.0180 4240  lltdsvc - ok
21:01:14.0203 4240  [ 35D40113E4A5B961B6CE5C5857702518 ] lmhosts         C:\Windows\System32\lmhsvc.dll
21:01:14.0296 4240  lmhosts - ok
21:01:14.0332 4240  [ C7E15E82879BF3235B559563D4185365 ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
21:01:14.0348 4240  LSI_FC - ok
21:01:14.0362 4240  [ EE01EBAE8C9BF0FA072E0FF68718920A ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
21:01:14.0379 4240  LSI_SAS - ok
21:01:14.0388 4240  [ 912A04696E9CA30146A62AFA1463DD5C ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
21:01:14.0404 4240  LSI_SCSI - ok
21:01:14.0435 4240  [ 8F5C7426567798E62A3B3614965D62CC ] luafv           C:\Windows\system32\drivers\luafv.sys
21:01:14.0475 4240  luafv - ok
21:01:14.0494 4240  [ AEF9BABB8A506BC4CE0451A64AADED46 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
21:01:14.0552 4240  Mcx2Svc - ok
21:01:14.0583 4240  [ 0001CE609D66632FA17B84705F658879 ] megasas         C:\Windows\system32\drivers\megasas.sys
21:01:14.0598 4240  megasas - ok
21:01:14.0622 4240  [ C252F32CD9A49DBFC25ECF26EBD51A99 ] MegaSR          C:\Windows\system32\drivers\megasr.sys
21:01:14.0671 4240  MegaSR - ok
21:01:14.0713 4240  [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] MMCSS           C:\Windows\system32\mmcss.dll
21:01:14.0773 4240  MMCSS - ok
21:01:14.0792 4240  [ E13B5EA0F51BA5B1512EC671393D09BA ] Modem           C:\Windows\system32\drivers\modem.sys
21:01:14.0858 4240  Modem - ok
21:01:14.0898 4240  [ 0A9BB33B56E294F686ABB7C1E4E2D8A8 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
21:01:14.0962 4240  monitor - ok
21:01:14.0983 4240  [ 5BF6A1326A335C5298477754A506D263 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
21:01:15.0014 4240  mouclass - ok
21:01:15.0029 4240  [ 93B8D4869E12CFBE663915502900876F ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
21:01:15.0103 4240  mouhid - ok
21:01:15.0126 4240  [ BDAFC88AA6B92F7842416EA6A48E1600 ] MountMgr        C:\Windows\system32\drivers\mountmgr.sys
21:01:15.0141 4240  MountMgr - ok
21:01:15.0208 4240  [ 528A5C2570F468155A1B3CF0A2FF5EBD ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
21:01:15.0257 4240  MozillaMaintenance - ok
21:01:15.0286 4240  [ 511D011289755DD9F9A7579FB0B064E6 ] mpio            C:\Windows\system32\drivers\mpio.sys
21:01:15.0303 4240  mpio - ok
21:01:15.0323 4240  [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
21:01:15.0366 4240  mpsdrv - ok
21:01:15.0394 4240  [ D1639BA315B0D79DEC49A4B0E1FB929B ] MpsSvc          C:\Windows\system32\mpssvc.dll
21:01:15.0466 4240  MpsSvc - ok
21:01:15.0491 4240  [ 4FBBB70D30FD20EC51F80061703B001E ] Mraid35x        C:\Windows\system32\drivers\mraid35x.sys
21:01:15.0505 4240  Mraid35x - ok
21:01:15.0534 4240  [ AE3DE84536B6799D2267443CEC8EDBB9 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
21:01:15.0598 4240  MRxDAV - ok
21:01:15.0629 4240  [ 5734A0F2BE7E495F7D3ED6EFD4B9F5A1 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
21:01:15.0658 4240  mrxsmb - ok
21:01:15.0693 4240  [ 6B5FA5ADFACAC9DBBE0991F4566D7D55 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:01:15.0751 4240  mrxsmb10 - ok
21:01:15.0785 4240  [ 5C80D8159181C7ABF1B14BA703B01E0B ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:01:15.0823 4240  mrxsmb20 - ok
21:01:15.0866 4240  [ AA305CFF241DA187BD5077DE4A2A043D ] msahci          C:\Windows\system32\drivers\msahci.sys
21:01:15.0880 4240  msahci - ok
21:01:15.0892 4240  [ 4468B0F385A86ECDDAF8D3CA662EC0E7 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
21:01:15.0911 4240  msdsm - ok
21:01:15.0950 4240  [ FD7520CC3A80C5FC8C48852BB24C6DED ] MSDTC           C:\Windows\System32\msdtc.exe
21:01:16.0033 4240  MSDTC - ok
21:01:16.0068 4240  [ A9927F4A46B816C92F461ACB90CF8515 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
21:01:16.0119 4240  Msfs - ok
21:01:16.0152 4240  [ 0F400E306F385C56317357D6DEA56F62 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
21:01:16.0166 4240  msisadrv - ok
21:01:16.0201 4240  [ 85466C0757A23D9A9AECDC0755203CB2 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
21:01:16.0270 4240  MSiSCSI - ok
21:01:16.0276 4240  msiserver - ok
21:01:16.0301 4240  [ D8C63D34D9C9E56C059E24EC7185CC07 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
21:01:16.0387 4240  MSKSSRV - ok
21:01:16.0430 4240  [ 1D373C90D62DDB641D50E55B9E78D65E ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
21:01:16.0507 4240  MSPCLOCK - ok
21:01:16.0529 4240  [ B572DA05BF4E098D4BBA3A4734FB505B ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
21:01:16.0605 4240  MSPQM - ok
21:01:16.0635 4240  [ B5614AECB05A9340AA0FB55BF561CC63 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
21:01:16.0653 4240  MsRPC - ok
21:01:16.0674 4240  [ E384487CB84BE41D09711C30CA79646C ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
21:01:16.0706 4240  mssmbios - ok
21:01:16.0721 4240  [ 7199C1EEC1E4993CAF96B8C0A26BD58A ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
21:01:16.0775 4240  MSTEE - ok
21:01:16.0798 4240  [ 6DFD1D322DE55B0B7DB7D21B90BEC49C ] Mup             C:\Windows\system32\Drivers\mup.sys
21:01:16.0815 4240  Mup - ok
21:01:16.0901 4240  [ DD2048CFC1B1F99D8F5971DDAE7D2181 ] Nakido          C:\Program Files\Nakido\nakido.exe
21:01:16.0944 4240  Nakido ( UnsignedFile.Multi.Generic ) - warning
21:01:16.0944 4240  Nakido - detected UnsignedFile.Multi.Generic (1)
21:01:16.0982 4240  [ C43B25863FBD65B6D2A142AF3AE320CA ] napagent        C:\Windows\system32\qagentRT.dll
21:01:17.0034 4240  napagent - ok
21:01:17.0103 4240  [ 3C21CE48FF529BB73DADB98770B54025 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
21:01:17.0154 4240  NativeWifiP - ok
21:01:17.0192 4240  NAVENG - ok
21:01:17.0198 4240  NAVEX15 - ok
21:01:17.0242 4240  [ 9BDC71790FA08F0A0B5F10462B1BD0B1 ] NDIS            C:\Windows\system32\drivers\ndis.sys
21:01:17.0296 4240  NDIS - ok
21:01:17.0322 4240  [ 0E186E90404980569FB449BA7519AE61 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
21:01:17.0391 4240  NdisTapi - ok
21:01:17.0421 4240  [ D6973AA34C4D5D76C0430B181C3CD389 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
21:01:17.0477 4240  Ndisuio - ok
21:01:17.0504 4240  [ 3D14C3B3496F88890D431E8AA022A411 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
21:01:17.0582 4240  NdisWan - ok
21:01:17.0610 4240  [ 71DAB552B41936358F3B541AE5997FB3 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
21:01:17.0657 4240  NDProxy - ok
21:01:17.0695 4240  [ 2969D26EEE289BE7422AA46FC55F4E38 ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
21:01:17.0739 4240  Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
21:01:17.0739 4240  Net Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
21:01:17.0776 4240  [ BCD093A5A6777CF626434568DC7DBA78 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
21:01:17.0817 4240  NetBIOS - ok
21:01:17.0840 4240  [ 7C5FEE5B1C5728507CD96FB4A13E7A02 ] netbt           C:\Windows\system32\DRIVERS\netbt.sys
21:01:17.0922 4240  netbt - ok
21:01:17.0947 4240  [ A911ECAC81F94ADEAFBE8E3F7873EDB0 ] Netlogon        C:\Windows\system32\lsass.exe
21:01:17.0968 4240  Netlogon - ok
21:01:18.0000 4240  [ C8052711DAECC48B982434C5116CA401 ] Netman          C:\Windows\System32\netman.dll
21:01:18.0073 4240  Netman - ok
21:01:18.0102 4240  [ 2EF3BBE22E5A5ACD1428EE387A0D0172 ] netprofm        C:\Windows\System32\netprofm.dll
21:01:18.0167 4240  netprofm - ok
21:01:18.0205 4240  [ 0AD5876EF4E9EB77C8F93EB5B2FFF386 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
21:01:18.0241 4240  NetTcpPortSharing - ok
21:01:18.0333 4240  [ 35D5458D9A1B26B2005ABFFBF4C1C5E7 ] NETw3v32        C:\Windows\system32\DRIVERS\NETw3v32.sys
21:01:18.0509 4240  NETw3v32 - ok
21:01:18.0523 4240  [ 2E7FB731D4790A1BC6270ACCEFACB36E ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
21:01:18.0538 4240  nfrd960 - ok
21:01:18.0566 4240  [ 2997B15415F9BBE05B5A4C1C85E0C6A2 ] NlaSvc          C:\Windows\System32\nlasvc.dll
21:01:18.0633 4240  NlaSvc - ok
21:01:18.0638 4240  Norton Internet Security - ok
21:01:18.0671 4240  [ ECB5003F484F9ED6C608D6D6C7886CBB ] Npfs            C:\Windows\system32\drivers\Npfs.sys
21:01:18.0722 4240  Npfs - ok
21:01:18.0730 4240  [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD ] nsi             C:\Windows\system32\nsisvc.dll
21:01:18.0790 4240  nsi - ok
21:01:18.0812 4240  [ 609773E344A97410CE4EBF74A8914FCF ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
21:01:18.0863 4240  nsiproxy - ok
21:01:18.0907 4240  [ B4EFFE29EB4F15538FD8A9681108492D ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
21:01:19.0003 4240  Ntfs - ok
21:01:19.0042 4240  [ E875C093AEC0C978A90F30C9E0DFBB72 ] ntrigdigi       C:\Windows\system32\drivers\ntrigdigi.sys
21:01:19.0131 4240  ntrigdigi - ok
21:01:19.0151 4240  [ C5DBBCDA07D780BDA9B685DF333BB41E ] Null            C:\Windows\system32\drivers\Null.sys
21:01:19.0226 4240  Null - ok
21:01:19.0256 4240  [ 2EDF9E7751554B42CBB60116DE727101 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
21:01:19.0273 4240  nvraid - ok
21:01:19.0284 4240  [ ABED0C09758D1D97DB0042DBB2688177 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
21:01:19.0299 4240  nvstor - ok
21:01:19.0319 4240  [ 18BBDF913916B71BD54575BDB6EEAC0B ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
21:01:19.0354 4240  nv_agp - ok
21:01:19.0361 4240  NwlnkFlt - ok
21:01:19.0369 4240  NwlnkFwd - ok
21:01:19.0413 4240  [ 790E27C3DB53410B40FF9EF2FD10A1D9 ] ohci1394        C:\Windows\system32\DRIVERS\ohci1394.sys
21:01:19.0482 4240  ohci1394 - ok
21:01:19.0534 4240  [ 5A432A042DAE460ABE7199B758E8606C ] ose             C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:01:19.0597 4240  ose - ok
21:01:19.0647 4240  [ 5DE1A3972FD3112C75EB17BDCF454169 ] p2pimsvc        C:\Windows\system32\p2psvc.dll
21:01:19.0738 4240  p2pimsvc - ok
21:01:19.0754 4240  [ 5DE1A3972FD3112C75EB17BDCF454169 ] p2psvc          C:\Windows\system32\p2psvc.dll
21:01:19.0790 4240  p2psvc - ok
21:01:19.0827 4240  [ 0FA9B5055484649D63C303FE404E5F4D ] Parport         C:\Windows\system32\drivers\parport.sys
21:01:19.0936 4240  Parport - ok
21:01:19.0958 4240  [ 3B38467E7C3DAED009DFE359E17F139F ] partmgr         C:\Windows\system32\drivers\partmgr.sys
21:01:19.0973 4240  partmgr - ok
21:01:19.0995 4240  [ 4F9A6A8A31413180D0FCB279AD5D8112 ] Parvdm          C:\Windows\system32\drivers\parvdm.sys
21:01:20.0090 4240  Parvdm - ok
21:01:20.0115 4240  [ C6276AD11F4BB49B58AA1ED88537F14A ] PcaSvc          C:\Windows\System32\pcasvc.dll
21:01:20.0160 4240  PcaSvc - ok
21:01:20.0185 4240  [ 01B94418DEB235DFF777CC80076354B4 ] pci             C:\Windows\system32\drivers\pci.sys
21:01:20.0203 4240  pci - ok
21:01:20.0220 4240  [ 1D8B3D8DF8EB7FCF2F0AC02F9F947802 ] pciide          C:\Windows\system32\drivers\pciide.sys
21:01:20.0242 4240  pciide - ok
21:01:20.0272 4240  [ E6F3FB1B86AA519E7698AD05E58B04E5 ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
21:01:20.0310 4240  pcmcia - ok
21:01:20.0351 4240  [ 6349F6ED9C623B44B52EA3C63C831A92 ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
21:01:20.0468 4240  PEAUTH - ok
21:01:20.0556 4240  [ B1689DF169143F57053F795390C99DB3 ] pla             C:\Windows\system32\pla.dll
21:01:20.0755 4240  pla - ok
21:01:20.0794 4240  [ 78F975CB6D18265BE6F492EDB2D7BC7B ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
21:01:20.0856 4240  PlugPlay - ok
21:01:20.0890 4240  [ BAFC9706BDF425A02B66468AB2605C59 ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
21:01:20.0919 4240  Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
21:01:20.0919 4240  Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
21:01:20.0978 4240  [ 831883B107684301F48ACE752C963984 ] PnkBstrA        C:\Windows\system32\PnkBstrA.exe
21:01:20.0995 4240  PnkBstrA - ok
21:01:21.0024 4240  [ 5DE1A3972FD3112C75EB17BDCF454169 ] PNRPAutoReg     C:\Windows\system32\p2psvc.dll
21:01:21.0062 4240  PNRPAutoReg - ok
21:01:21.0079 4240  [ 5DE1A3972FD3112C75EB17BDCF454169 ] PNRPsvc         C:\Windows\system32\p2psvc.dll
21:01:21.0115 4240  PNRPsvc - ok
21:01:21.0157 4240  [ 47B8F37AA18B74D8C2E1BC1A7A2C8F8A ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
21:01:21.0224 4240  PolicyAgent - ok
21:01:21.0250 4240  [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
21:01:21.0328 4240  PptpMiniport - ok
21:01:21.0353 4240  [ 2027293619DD0F047C584CF2E7DF4FFD ] Processor       C:\Windows\system32\drivers\processr.sys
21:01:21.0437 4240  Processor - ok
21:01:21.0476 4240  [ B627E4FC8585E8843C5905D4D3587A90 ] ProfSvc         C:\Windows\system32\profsvc.dll
21:01:21.0523 4240  ProfSvc - ok
21:01:21.0537 4240  [ A911ECAC81F94ADEAFBE8E3F7873EDB0 ] ProtectedStorage C:\Windows\system32\lsass.exe
21:01:21.0558 4240  ProtectedStorage - ok
21:01:21.0585 4240  [ BFEF604508A0ED1EAE2A73E872555FFB ] PSched          C:\Windows\system32\DRIVERS\pacer.sys
21:01:21.0616 4240  PSched - ok
21:01:21.0677 4240  [ 0A6DB55AFB7820C99AA1F3A1D270F4F6 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
21:01:21.0808 4240  ql2300 - ok
21:01:21.0871 4240  [ 81A7E5C076E59995D54BC1ED3A16E60B ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
21:01:21.0887 4240  ql40xx - ok
21:01:21.0911 4240  [ E9ECAE663F47E6CB43962D18AB18890F ] QWAVE           C:\Windows\system32\qwave.dll
21:01:21.0958 4240  QWAVE - ok
21:01:21.0980 4240  [ 9F5E0E1926014D17486901C88ECA2DB7 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
21:01:22.0025 4240  QWAVEdrv - ok
21:01:22.0045 4240  [ 147D7F9C556D259924351FEB0DE606C3 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
21:01:22.0130 4240  RasAcd - ok
21:01:22.0153 4240  [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F ] RasAuto         C:\Windows\System32\rasauto.dll
21:01:22.0212 4240  RasAuto - ok
21:01:22.0243 4240  [ A214ADBAF4CB47DD2728859EF31F26B0 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
21:01:22.0301 4240  Rasl2tp - ok
21:01:22.0339 4240  [ AFB474438762F0418060653F7294D92C ] RasMan          C:\Windows\System32\rasmans.dll
21:01:22.0380 4240  RasMan - ok
21:01:22.0403 4240  [ 3E9D9B048107B40D87B97DF2E48E0744 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
21:01:22.0477 4240  RasPppoe - ok
21:01:22.0509 4240  [ A7D141684E9500AC928A772ED8E6B671 ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
21:01:22.0565 4240  RasSstp - ok
21:01:22.0599 4240  [ 6E1C5D0457622F9EE35F683110E93D14 ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
21:01:22.0660 4240  rdbss - ok
21:01:22.0686 4240  [ 89E59BE9A564262A3FB6C4F4F1CD9899 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
21:01:22.0735 4240  RDPCDD - ok
21:01:22.0763 4240  [ FBC0BACD9C3D7F6956853F64A66E252D ] rdpdr           C:\Windows\system32\drivers\rdpdr.sys
21:01:22.0828 4240  rdpdr - ok
21:01:22.0836 4240  [ 9D91FE5286F748862ECFFA05F8A0710C ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
21:01:22.0908 4240  RDPENCDD - ok
21:01:22.0935 4240  [ E1C18F4097A5ABCEC941DC4B2F99DB7E ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
21:01:22.0994 4240  RDPWD - ok
21:01:23.0038 4240  [ BC0A4D47472B042537F4E57B950415FA ] Recovery Service for Windows C:\Program Files\SMINST\BLService.exe
21:01:23.0112 4240  Recovery Service for Windows - ok
21:01:23.0155 4240  [ BCDD6B4804D06B1F7EBF29E53A57ECE9 ] RemoteAccess    C:\Windows\System32\mprdim.dll
21:01:23.0217 4240  RemoteAccess - ok
21:01:23.0253 4240  [ CC4E32400F3C7253400CF8F3F3A0B676 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
21:01:23.0298 4240  RemoteRegistry - ok
21:01:23.0348 4240  [ 23F486726DA7A9B2F3EC7326421A9C36 ] RFCOMM          C:\Windows\system32\DRIVERS\rfcomm.sys
21:01:23.0411 4240  RFCOMM - ok
21:01:23.0499 4240  [ 805AE1F90C64758D19AAA001CF8CBA12 ] RichVideo       C:\Program Files\CyberLink\Shared files\RichVideo.exe
21:01:23.0533 4240  RichVideo ( UnsignedFile.Multi.Generic ) - warning
21:01:23.0534 4240  RichVideo - detected UnsignedFile.Multi.Generic (1)
21:01:23.0570 4240  [ 5123F83CBC4349D065534EEB6BBDC42B ] RpcLocator      C:\Windows\system32\locator.exe
21:01:23.0629 4240  RpcLocator - ok
21:01:23.0666 4240  [ 301AE00E12408650BADDC04DBC832830 ] RpcSs           C:\Windows\system32\rpcss.dll
21:01:23.0700 4240  RpcSs - ok
21:01:23.0725 4240  [ 9C508F4074A39E8B4B31D27198146FAD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
21:01:23.0790 4240  rspndr - ok
21:01:23.0831 4240  [ 174B9514CD1A0C33CE4BBC02A3C81A62 ] RTL8169         C:\Windows\system32\DRIVERS\Rtlh86.sys
21:01:23.0917 4240  RTL8169 - ok
21:01:23.0937 4240  [ A911ECAC81F94ADEAFBE8E3F7873EDB0 ] SamSs           C:\Windows\system32\lsass.exe
21:01:23.0959 4240  SamSs - ok
21:01:23.0981 4240  [ 3CE8F073A557E172B330109436984E30 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
21:01:23.0996 4240  sbp2port - ok
21:01:24.0011 4240  [ 11387E32642269C7E62E8B52C060B3C6 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
21:01:24.0071 4240  SCardSvr - ok
21:01:24.0134 4240  [ 7B587B8A6D4A99F79D2902D0385F29BD ] Schedule        C:\Windows\system32\schedsvc.dll
21:01:24.0215 4240  Schedule - ok
21:01:24.0248 4240  [ 87C2D0377B23E2D8A41093C2F5FB1A5B ] SCPolicySvc     C:\Windows\System32\certprop.dll
21:01:24.0294 4240  SCPolicySvc - ok
21:01:24.0313 4240  [ 126EA89BCC413EE45E3004FB0764888F ] sdbus           C:\Windows\system32\DRIVERS\sdbus.sys
21:01:24.0382 4240  sdbus - ok
21:01:24.0415 4240  [ 716313D9F6B0529D03F726D5AAF6F191 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
21:01:24.0481 4240  SDRSVC - ok
21:01:24.0494 4240  [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
21:01:24.0567 4240  secdrv - ok
21:01:24.0587 4240  [ FD5199D4D8A521005E4B5EE7FE00FA9B ] seclogon        C:\Windows\system32\seclogon.dll
21:01:24.0649 4240  seclogon - ok
21:01:24.0678 4240  [ A9BBAB5759771E523F55563D6CBE140F ] SENS            C:\Windows\System32\sens.dll
21:01:24.0720 4240  SENS - ok
21:01:24.0746 4240  [ 68E44E331D46F0FB38F0863A84CD1A31 ] Serenum         C:\Windows\system32\drivers\serenum.sys
21:01:24.0851 4240  Serenum - ok
21:01:24.0877 4240  [ C70D69A918B178D3C3B06339B40C2E1B ] Serial          C:\Windows\system32\drivers\serial.sys
21:01:24.0996 4240  Serial - ok
21:01:25.0018 4240  [ 8AF3D28A879BF75DB53A0EE7A4289624 ] sermouse        C:\Windows\system32\drivers\sermouse.sys
21:01:25.0074 4240  sermouse - ok
21:01:25.0110 4240  [ D2193326F729B163125610DBF3E17D57 ] SessionEnv      C:\Windows\system32\sessenv.dll
21:01:25.0155 4240  SessionEnv - ok
21:01:25.0195 4240  [ 3EFA810BDCA87F6ECC24F9832243FE86 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
21:01:25.0319 4240  sffdisk - ok
21:01:25.0350 4240  [ E95D451F7EA3E583AEC75F3B3EE42DC5 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
21:01:25.0403 4240  sffp_mmc - ok
21:01:25.0418 4240  [ 3D0EA348784B7AC9EA9BD9F317980979 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
21:01:25.0485 4240  sffp_sd - ok
21:01:25.0514 4240  [ 46ED8E91793B2E6F848015445A0AC188 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
21:01:25.0597 4240  sfloppy - ok
21:01:25.0639 4240  [ E1499BD0FF76B1B2FBBF1AF339D91165 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
21:01:25.0684 4240  SharedAccess - ok
21:01:25.0738 4240  [ 1E3FDB80E40A3CE645F229DFBDFB7694 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
21:01:25.0784 4240  ShellHWDetection - ok
21:01:25.0810 4240  [ 1D76624A09A054F682D746B924E2DBC3 ] sisagp          C:\Windows\system32\drivers\sisagp.sys
21:01:25.0842 4240  sisagp - ok
21:01:25.0865 4240  [ 43CB7AA756C7DB280D01DA9B676CFDE2 ] SiSRaid2        C:\Windows\system32\drivers\sisraid2.sys
21:01:25.0880 4240  SiSRaid2 - ok
21:01:25.0894 4240  [ A99C6C8B0BAA970D8AA59DDC50B57F94 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
21:01:25.0910 4240  SiSRaid4 - ok
21:01:25.0984 4240  [ 4E8A4BB5B11D828FF986F6228B1CD3DF ] SkypeUpdate     C:\Program Files\Skype\Updater\Updater.exe
21:01:28.0760 4240  SkypeUpdate - ok
21:01:28.0857 4240  [ 0BA91E1358AD25236863039BB2609A2E ] slsvc           C:\Windows\system32\SLsvc.exe
21:01:29.0077 4240  slsvc - ok
21:01:29.0130 4240  [ 7C6DC44CA0BFA6291629AB764200D1D4 ] SLUINotify      C:\Windows\system32\SLUINotify.dll
21:01:29.0173 4240  SLUINotify - ok
21:01:29.0186 4240  [ 031E6BCD53C9B2B9ACE111EAFEC347B6 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
21:01:29.0254 4240  Smb - ok
21:01:29.0296 4240  [ 2A146A055B4401C16EE62D18B8E2A032 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
21:01:29.0336 4240  SNMPTRAP - ok
21:01:29.0360 4240  [ 7AEBDEEF071FE28B0EEF2CDD69102BFF ] spldr           C:\Windows\system32\drivers\spldr.sys
21:01:29.0377 4240  spldr - ok
21:01:29.0429 4240  [ 3665F79026A3F91FBCA63F2C65A09B19 ] Spooler         C:\Windows\System32\spoolsv.exe
21:01:29.0491 4240  Spooler - ok
21:01:29.0537 4240  [ 7F1B7C4D446CD3F926AF45B8C48BD593 ] sptd            C:\Windows\system32\Drivers\sptd.sys
21:01:29.0538 4240  Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: 7F1B7C4D446CD3F926AF45B8C48BD593
21:01:29.0540 4240  sptd ( LockedFile.Multi.Generic ) - warning
21:01:29.0541 4240  sptd - detected LockedFile.Multi.Generic (1)
21:01:29.0548 4240  SRTSP - ok
21:01:29.0556 4240  SRTSPX - ok
21:01:29.0625 4240  [ 2252AEF839B1093D16761189F45AF885 ] srv             C:\Windows\system32\DRIVERS\srv.sys
21:01:29.0679 4240  srv - ok
21:01:29.0710 4240  [ B7FF59408034119476B00A81BB53D5D1 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
21:01:29.0753 4240  srv2 - ok
21:01:29.0780 4240  [ 2ACCC9B12AF02030F531E6CCA6F8B76E ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
21:01:29.0804 4240  srvnet - ok
21:01:29.0842 4240  [ FFE42941E0326C322F40B0B79A46493C ] sscdbus         C:\Windows\system32\DRIVERS\sscdbus.sys
21:01:29.0877 4240  sscdbus - ok
21:01:29.0925 4240  [ A68E7D87ADFBB8C50D88CD58230C6819 ] sscdmdfl        C:\Windows\system32\DRIVERS\sscdmdfl.sys
21:01:29.0953 4240  sscdmdfl - ok
21:01:29.0986 4240  [ B534B24151281856EC2F69ED3D6D60DD ] sscdmdm         C:\Windows\system32\DRIVERS\sscdmdm.sys
21:01:30.0020 4240  sscdmdm - ok
21:01:30.0053 4240  [ 03D50B37234967433A5EA5BA72BC0B62 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
21:01:30.0115 4240  SSDPSRV - ok
21:01:30.0150 4240  [ 6F1A32E7B7B30F004D9A20AFADB14944 ] SstpSvc         C:\Windows\system32\sstpsvc.dll
21:01:30.0209 4240  SstpSvc - ok
21:01:30.0317 4240  [ 3017DF7A43E5FC7E361C7B161DD9C81A ] STacSV          C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_52c73ccb\STacSV.exe
21:01:30.0341 4240  STacSV - ok
21:01:30.0383 4240  [ 84C78B53838BDEC2B0853ADC782CD5DE ] STHDA           C:\Windows\system32\DRIVERS\stwrt.sys
21:01:30.0434 4240  STHDA - ok
21:01:30.0500 4240  [ EF70B3D22B4BFFDA6EA851ECB063EFAA ] StillCam        C:\Windows\system32\DRIVERS\serscan.sys
21:01:30.0563 4240  StillCam - ok
21:01:30.0603 4240  [ 7DD08A597BC56051F320DA0BAF69E389 ] stisvc          C:\Windows\System32\wiaservc.dll
21:01:30.0717 4240  stisvc - ok
21:01:30.0743 4240  [ 7BA58ECF0C0A9A69D44B3DCA62BECF56 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
21:01:30.0774 4240  swenum - ok
21:01:30.0820 4240  [ B36C7CDB86F7F7A8E884479219766950 ] swprv           C:\Windows\System32\swprv.dll
21:01:30.0867 4240  swprv - ok
21:01:30.0896 4240  [ 192AA3AC01DF071B541094F251DEED10 ] Symc8xx         C:\Windows\system32\drivers\symc8xx.sys
21:01:30.0911 4240  Symc8xx - ok
21:01:30.0930 4240  [ 8C8EB8C76736EBAF3B13B633B2E64125 ] Sym_hi          C:\Windows\system32\drivers\sym_hi.sys
21:01:30.0945 4240  Sym_hi - ok
21:01:30.0953 4240  [ 8072AF52B5FD103BBBA387A1E49F62CB ] Sym_u3          C:\Windows\system32\drivers\sym_u3.sys
21:01:30.0968 4240  Sym_u3 - ok
21:01:31.0011 4240  [ A94629C2C456A6D002556563D6B8AD1A ] SynTP           C:\Windows\system32\DRIVERS\SynTP.sys
21:01:31.0054 4240  SynTP - ok
21:01:31.0085 4240  [ 8710A92D0024B03B5FB9540DF1F71F1D ] SysMain         C:\Windows\system32\sysmain.dll
21:01:31.0162 4240  SysMain - ok
21:01:31.0205 4240  [ 2DCA225EAE15F42C0933E998EE0231C3 ] TabletInputService C:\Windows\System32\TabSvc.dll
21:01:31.0249 4240  TabletInputService - ok
21:01:31.0277 4240  [ 680916BB09EE0F3A6ACA7C274B0D633F ] TapiSrv         C:\Windows\System32\tapisrv.dll
21:01:31.0355 4240  TapiSrv - ok
21:01:31.0387 4240  [ CB05822CD9CC6C688168E113C603DBE7 ] TBS             C:\Windows\System32\tbssvc.dll
21:01:31.0455 4240  TBS - ok
21:01:31.0528 4240  [ 782568AB6A43160A159B6215B70BCCE9 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
21:01:31.0585 4240  Tcpip - ok
21:01:31.0610 4240  [ 782568AB6A43160A159B6215B70BCCE9 ] Tcpip6          C:\Windows\system32\DRIVERS\tcpip.sys
21:01:31.0738 4240  Tcpip6 - ok
21:01:31.0774 4240  [ D4A2E4A4B011F3A883AF77315A5AE76B ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
21:01:31.0850 4240  tcpipreg - ok
21:01:31.0880 4240  [ 5DCF5E267BE67A1AE926F2DF77FBCC56 ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
21:01:31.0949 4240  TDPIPE - ok
21:01:31.0976 4240  [ 389C63E32B3CEFED425B61ED92D3F021 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
21:01:32.0047 4240  TDTCP - ok
21:01:32.0074 4240  [ D09276B1FAB033CE1D40DCBDF303D10F ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
21:01:32.0153 4240  tdx - ok
21:01:32.0179 4240  [ A048056F5E1A96A9BF3071B91741A5AA ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
21:01:32.0218 4240  TermDD - ok
21:01:32.0257 4240  [ D605031E225AACCBCEB5B76A4F1603A6 ] TermService     C:\Windows\System32\termsrv.dll
21:01:32.0315 4240  TermService - ok
21:01:32.0361 4240  [ 1E3FDB80E40A3CE645F229DFBDFB7694 ] Themes          C:\Windows\system32\shsvcs.dll
21:01:32.0388 4240  Themes - ok
21:01:32.0403 4240  [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] THREADORDER     C:\Windows\system32\mmcss.dll
21:01:32.0445 4240  THREADORDER - ok
21:01:32.0460 4240  [ EC74E77D0EB004BD3A809B5F8FB8C2CE ] TrkWks          C:\Windows\System32\trkwks.dll
21:01:32.0505 4240  TrkWks - ok
21:01:32.0539 4240  [ 16613A1BAD034D4ECF957AF18B7C2FF5 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
21:01:32.0596 4240  TrustedInstaller - ok
21:01:32.0614 4240  [ DCF0F056A2E4F52287264F5AB29CF206 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
21:01:32.0682 4240  tssecsrv - ok
21:01:32.0714 4240  [ CAECC0120AC49E3D2F758B9169872D38 ] tunmp           C:\Windows\system32\DRIVERS\tunmp.sys
21:01:32.0799 4240  tunmp - ok
21:01:32.0824 4240  [ 6042505FF6FA9AC1EF7684D0E03B6940 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
21:01:32.0873 4240  tunnel - ok
21:01:32.0951 4240  [ 1C31169DDDC70C1605F703DA701EAEEA ] TVCapSvc        C:\Program Files\Hewlett-Packard\Media\TV\Kernel\TV\TVCapSvc.exe
21:01:32.0972 4240  TVCapSvc - ok
21:01:32.0987 4240  [ 290B8C381DBC15D3DBCBD2BDB6B0BA12 ] TVSched         C:\Program Files\Hewlett-Packard\Media\TV\Kernel\TV\TVSched.exe
21:01:33.0001 4240  TVSched - ok
21:01:33.0032 4240  [ 7D33C4DB2CE363C8518D2DFCF533941F ] uagp35          C:\Windows\system32\drivers\uagp35.sys
21:01:33.0065 4240  uagp35 - ok
21:01:33.0090 4240  [ 8B5088058FA1D1CD897A2113CCFF6C58 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
21:01:33.0134 4240  udfs - ok
21:01:33.0161 4240  [ ECEF404F62863755951E09C802C94AD5 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
21:01:33.0220 4240  UI0Detect - ok
21:01:33.0243 4240  [ B0ACFDC9E4AF279E9116C03E014B2B27 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
21:01:33.0276 4240  uliagpkx - ok
21:01:33.0298 4240  [ 9224BB254F591DE4CA8D572A5F0D635C ] uliahci         C:\Windows\system32\drivers\uliahci.sys
21:01:33.0320 4240  uliahci - ok
21:01:33.0330 4240  [ 8514D0E5CD0534467C5FC61BE94A569F ] UlSata          C:\Windows\system32\drivers\ulsata.sys
21:01:33.0346 4240  UlSata - ok
21:01:33.0355 4240  [ 38C3C6E62B157A6BC46594FADA45C62B ] ulsata2         C:\Windows\system32\drivers\ulsata2.sys
21:01:33.0372 4240  ulsata2 - ok
21:01:33.0383 4240  [ 32CFF9F809AE9AED85464492BF3E32D2 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
21:01:33.0444 4240  umbus - ok
21:01:33.0468 4240  [ 68308183F4AE0BE7BF8ECD07CB297999 ] upnphost        C:\Windows\System32\upnphost.dll
21:01:33.0519 4240  upnphost - ok
21:01:33.0575 4240  [ 83CAFCB53201BBAC04D822F32438E244 ] USBAAPL         C:\Windows\system32\Drivers\usbaapl.sys
21:01:33.0613 4240  USBAAPL ( UnsignedFile.Multi.Generic ) - warning
21:01:33.0613 4240  USBAAPL - detected UnsignedFile.Multi.Generic (1)
21:01:33.0655 4240  [ 292A25BB75A568AE2C67169BA2C6365A ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
21:01:33.0717 4240  usbaudio - ok
21:01:33.0766 4240  [ CAF811AE4C147FFCD5B51750C7F09142 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
21:01:33.0828 4240  usbccgp - ok
21:01:33.0863 4240  [ E9476E6C486E76BC4898074768FB7131 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
21:01:33.0976 4240  usbcir - ok
21:01:34.0020 4240  [ CEBE90821810E76320155BEBA722FCF9 ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
21:01:34.0073 4240  usbehci - ok
21:01:34.0089 4240  [ CC6B28E4CE39951357963119CE47B143 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
21:01:34.0147 4240  usbhub - ok
21:01:34.0164 4240  [ 38DBC7DD6CC5A72011F187425384388B ] usbohci         C:\Windows\system32\drivers\usbohci.sys
21:01:34.0254 4240  usbohci - ok
21:01:34.0296 4240  [ E75C4B5269091D15A2E7DC0B6D35F2F5 ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
21:01:34.0366 4240  usbprint - ok
21:01:34.0409 4240  [ A508C9BD8724980512136B039BBA65E9 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
21:01:34.0458 4240  usbscan - ok
21:01:34.0512 4240  [ 87BA6B83C5D19B69160968D07D6E2982 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
21:01:34.0567 4240  USBSTOR - ok
21:01:34.0587 4240  [ 814D653EFC4D48BE3B04A307ECEFF56F ] usbuhci         C:\Windows\system32\DRIVERS\usbuhci.sys
21:01:34.0639 4240  usbuhci - ok
21:01:34.0671 4240  [ E67998E8F14CB0627A769F6530BCB352 ] usbvideo        C:\Windows\system32\Drivers\usbvideo.sys
21:01:34.0714 4240  usbvideo - ok
21:01:34.0735 4240  [ 032A0ACC3909AE7215D524E29D536797 ] UxSms           C:\Windows\System32\uxsms.dll
21:01:34.0778 4240  UxSms - ok
21:01:34.0800 4240  [ B13BC395B9D6116628F5AF47E0802AC4 ] vds             C:\Windows\System32\vds.exe
21:01:34.0877 4240  vds - ok
21:01:34.0929 4240  [ 87B06E1F30B749A114F74622D013F8D4 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
21:01:34.0992 4240  vga - ok
21:01:35.0005 4240  [ 2E93AC0A1D8C79D019DB6C51F036636C ] VgaSave         C:\Windows\System32\drivers\vga.sys
21:01:35.0058 4240  VgaSave - ok
21:01:35.0079 4240  [ 5D7159DEF58A800D5781BA3A879627BC ] viaagp          C:\Windows\system32\drivers\viaagp.sys
21:01:35.0112 4240  viaagp - ok
21:01:35.0126 4240  [ C4F3A691B5BAD343E6249BD8C2D45DEE ] ViaC7           C:\Windows\system32\drivers\viac7.sys
21:01:35.0185 4240  ViaC7 - ok
21:01:35.0200 4240  [ EA1AA6E3ABB3C194FEBA12A46DE8CF2C ] viaide          C:\Windows\system32\drivers\viaide.sys
21:01:35.0214 4240  viaide - ok
21:01:35.0227 4240  [ 69503668AC66C77C6CD7AF86FBDF8C43 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
21:01:35.0242 4240  volmgr - ok
21:01:35.0265 4240  [ 98F5FFE6316BD74E9E2C97206C190196 ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
21:01:35.0286 4240  volmgrx - ok
21:01:35.0305 4240  [ D8B4A53DD2769F226B3EB374374987C9 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
21:01:35.0325 4240  volsnap - ok
21:01:35.0341 4240  [ 587253E09325E6BF226B299774B728A9 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
21:01:35.0359 4240  vsmraid - ok
21:01:35.0408 4240  [ D5FB73D19C46ADE183F968E13F186B23 ] VSS             C:\Windows\system32\vssvc.exe
21:01:35.0500 4240  VSS - ok
21:01:35.0620 4240  [ 654D358F8DC18167F31A01166B4CA9D6 ] vToolbarUpdater15.3.0 C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\15.3.0\ToolbarUpdater.exe
21:01:35.0747 4240  vToolbarUpdater15.3.0 - ok
21:01:35.0771 4240  [ 1CF9206966A8458CDA9A8B20DF8AB7D3 ] W32Time         C:\Windows\system32\w32time.dll
21:01:35.0840 4240  W32Time - ok
21:01:35.0875 4240  [ 48DFEE8F1AF7C8235D4E626F0C4FE031 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
21:01:35.0979 4240  WacomPen - ok
21:01:36.0012 4240  [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarp          C:\Windows\system32\DRIVERS\wanarp.sys
21:01:36.0065 4240  Wanarp - ok
21:01:36.0071 4240  [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
21:01:36.0105 4240  Wanarpv6 - ok
21:01:36.0137 4240  [ F3A5C2E1A6533192B070D06ECF6BE796 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
21:01:36.0181 4240  wcncsvc - ok
21:01:36.0200 4240  [ 11BCB7AFCDD7AADACB5746F544D3A9C7 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
21:01:36.0250 4240  WcsPlugInService - ok
21:01:36.0274 4240  [ 78FE9542363F297B18C027B2D7E7C07F ] Wd              C:\Windows\system32\drivers\wd.sys
21:01:36.0289 4240  Wd - ok
21:01:36.0315 4240  [ B6F0A7AD6D4BD325FBCD8BAC96CD8D96 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
21:01:36.0344 4240  Wdf01000 - ok
21:01:36.0357 4240  [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiServiceHost  C:\Windows\system32\wdi.dll
21:01:36.0420 4240  WdiServiceHost - ok
21:01:36.0426 4240  [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiSystemHost   C:\Windows\system32\wdi.dll
21:01:36.0470 4240  WdiSystemHost - ok
21:01:36.0498 4240  [ CF9A5F41789B642DB967021DE06A2713 ] WebClient       C:\Windows\System32\webclnt.dll
21:01:36.0547 4240  WebClient - ok
21:01:36.0598 4240  [ AE3736E7E8892241C23E4EBBB7453B60 ] Wecsvc          C:\Windows\system32\wecsvc.dll
21:01:36.0633 4240  Wecsvc - ok
21:01:36.0668 4240  [ 670FF720071ED741206D69BD995EA453 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
21:01:36.0703 4240  wercplsupport - ok
21:01:36.0741 4240  [ FD1965AAA112C6818A30AB02742D0461 ] WerSvc          C:\Windows\System32\WerSvc.dll
21:01:36.0784 4240  WerSvc - ok
21:01:36.0837 4240  [ 4575AA12561C5648483403541D0D7F2B ] WinDefend       C:\Program Files\Windows Defender\mpsvc.dll
21:01:36.0858 4240  WinDefend - ok
21:01:36.0866 4240  WinHttpAutoProxySvc - ok
21:01:36.0933 4240  [ 00B79A7C984678F24CF052E5BEB3A2F5 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
21:01:36.0980 4240  Winmgmt - ok
21:01:37.0057 4240  [ 7CFE68BDC065E55AA5E8421607037511 ] WinRM           C:\Windows\system32\WsmSvc.dll
21:01:37.0147 4240  WinRM - ok
21:01:37.0226 4240  [ 275F4346E569DF56CFB95243BD6F6FF0 ] Wlansvc         C:\Windows\System32\wlansvc.dll
21:01:37.0299 4240  Wlansvc - ok
21:01:37.0321 4240  [ 2E7255D172DF0B8283CDFB7B433B864E ] WmiAcpi         C:\Windows\system32\DRIVERS\wmiacpi.sys
21:01:37.0364 4240  WmiAcpi - ok
21:01:37.0395 4240  [ ABA4CF9F856D9A3A25F4DDD7690A6E9D ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
21:01:37.0444 4240  wmiApSrv - ok
21:01:37.0506 4240  [ 3978704576A121A9204F8CC49A301A9B ] WMPNetworkSvc   C:\Program Files\Windows Media Player\wmpnetwk.exe
21:01:37.0628 4240  WMPNetworkSvc - ok
21:01:37.0688 4240  [ 5D94CD167751294962BA238D82DD1BB8 ] WPCSvc          C:\Windows\System32\wpcsvc.dll
21:01:37.0770 4240  WPCSvc - ok
21:01:37.0794 4240  [ 396D406292B0CD26E3504FFE82784702 ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
21:01:37.0829 4240  WPDBusEnum - ok
21:01:37.0869 4240  [ 0CEC23084B51B8288099EB710224E955 ] WpdUsb          C:\Windows\system32\DRIVERS\wpdusb.sys
21:01:37.0914 4240  WpdUsb - ok
21:01:38.0079 4240  [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
21:01:38.0120 4240  WPFFontCache_v0400 - ok
21:01:38.0157 4240  [ E3A3CB253C0EC2494D4A61F5E43A389C ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
21:01:38.0215 4240  ws2ifsl - ok
21:01:38.0240 4240  [ 683DD16B590372F2C9661D277F35E49C ] wscsvc          C:\Windows\System32\wscsvc.dll
21:01:38.0264 4240  wscsvc - ok
21:01:38.0290 4240  [ 4422AC5ED8D4C2F0DB63E71D4C069DD7 ] WSDPrintDevice  C:\Windows\system32\DRIVERS\WSDPrint.sys
21:01:38.0334 4240  WSDPrintDevice - ok
21:01:38.0340 4240  WSearch - ok
21:01:38.0437 4240  [ 6298277B73C77FA99106B271A7525163 ] wuauserv        C:\Windows\system32\wuaueng.dll
21:01:38.0638 4240  wuauserv - ok
21:01:38.0690 4240  [ AC13CB789D93412106B0FB6C7EB2BCB6 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
21:01:38.0751 4240  WUDFRd - ok
21:01:38.0775 4240  [ 575A4190D989F64732119E4114045A4F ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
21:01:38.0835 4240  wudfsvc - ok
21:01:38.0879 4240  [ 7D1F3B131D503EF43EE594B5A2B9B427 ] yukonwlh        C:\Windows\system32\DRIVERS\yk60x86.sys
21:01:38.0969 4240  yukonwlh - ok
21:01:39.0028 4240  [ 556B5CFE8D21B256ADD7F87D7F4B4123 ] {55662437-DA8C-40c0-AADA-2C816A897A49} C:\Program Files\Hewlett-Packard\Media\DVD\000.fcl
21:01:39.0041 4240  {55662437-DA8C-40c0-AADA-2C816A897A49} - ok
21:01:39.0073 4240  ================ Scan global ===============================
21:01:39.0091 4240  [ F31EEBC1A1C81FD04005489CC3DCDFE7 ] C:\Windows\system32\basesrv.dll
21:01:39.0147 4240  [ F42F8855CB5C22E203C6672B124F17FD ] C:\Windows\system32\winsrv.dll
21:01:39.0165 4240  [ F42F8855CB5C22E203C6672B124F17FD ] C:\Windows\system32\winsrv.dll
21:01:39.0204 4240  [ 2B336AB6286D6C81FA02CBAB914E3C6C ] C:\Windows\system32\services.exe
21:01:39.0210 4240  [Global] - ok
21:01:39.0210 4240  ================ Scan MBR ==================================
21:01:39.0223 4240  [ 5C86ADEC17B739C437E145E3B3FC2E6D ] \Device\Harddisk0\DR0
21:01:39.0718 4240  \Device\Harddisk0\DR0 - ok
21:01:39.0722 4240  ================ Scan VBR ==================================
21:01:39.0728 4240  [ 3321D7F19C3B908928F4EAE1C1FDE9E4 ] \Device\Harddisk0\DR0\Partition1
21:01:39.0730 4240  \Device\Harddisk0\DR0\Partition1 - ok
21:01:39.0740 4240  [ 4E292FA98ECC6827117CB53C67666E2F ] \Device\Harddisk0\DR0\Partition2
21:01:39.0743 4240  \Device\Harddisk0\DR0\Partition2 - ok
21:01:39.0749 4240  ============================================================
21:01:39.0749 4240  Scan finished
21:01:39.0749 4240  ============================================================
21:01:39.0766 8576  Detected object count: 13
21:01:39.0766 8576  Actual detected object count: 13
21:02:15.0998 8576  ezSharedSvc ( UnsignedFile.Multi.Generic ) - skipped by user
21:02:15.0998 8576  ezSharedSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:02:16.0002 8576  FsUsbExDisk ( UnsignedFile.Multi.Generic ) - skipped by user
21:02:16.0002 8576  FsUsbExDisk ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:02:16.0004 8576  HP Health Check Service ( UnsignedFile.Multi.Generic ) - skipped by user
21:02:16.0005 8576  HP Health Check Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:02:16.0008 8576  hpqwmiex ( UnsignedFile.Multi.Generic ) - skipped by user
21:02:16.0008 8576  hpqwmiex ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:02:16.0012 8576  HPSLPSVC ( UnsignedFile.Multi.Generic ) - skipped by user
21:02:16.0012 8576  HPSLPSVC ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:02:16.0015 8576  IDriverT ( UnsignedFile.Multi.Generic ) - skipped by user
21:02:16.0015 8576  IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:02:16.0018 8576  LightScribeService ( UnsignedFile.Multi.Generic ) - skipped by user
21:02:16.0018 8576  LightScribeService ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:02:16.0023 8576  Nakido ( UnsignedFile.Multi.Generic ) - skipped by user
21:02:16.0023 8576  Nakido ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:02:16.0024 8576  Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
21:02:16.0025 8576  Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:02:16.0027 8576  Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
21:02:16.0027 8576  Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:02:16.0030 8576  RichVideo ( UnsignedFile.Multi.Generic ) - skipped by user
21:02:16.0030 8576  RichVideo ( UnsignedFile.Multi.Generic ) - User select action: Skip
21:02:16.0033 8576  sptd ( LockedFile.Multi.Generic ) - skipped by user
21:02:16.0033 8576  sptd ( LockedFile.Multi.Generic ) - User select action: Skip
21:02:16.0035 8576  USBAAPL ( UnsignedFile.Multi.Generic ) - skipped by user
21:02:16.0035 8576  USBAAPL ( UnsignedFile.Multi.Generic ) - User select action: Skip
 

Any help would be appreciated.

 

Thibauld


Edited by thibauld, 04 July 2013 - 02:15 PM.


BC AdBot (Login to Remove)

 


#2 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,707 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:10:29 AM

Posted 04 July 2013 - 09:39 PM

There is nothing malicious there.

 

Are you having any computer issues?


My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 


#3 thibauld

thibauld
  • Topic Starter

  • Members
  • 64 posts
  • OFFLINE
  •  
  • Local time:06:29 PM

Posted 04 July 2013 - 11:27 PM

Our internet connection has been terrible lately, for the entire network (at home). Ziggo ensured us it was nothing on their part and we just got a new router/modem, so my dad asked me to scan all the PC's at home for malware etc, to see if there was something slowing everything down. My PC is being fixed currently but I dont think my PC is causing all the problems. What can I do to check everything?



#4 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,707 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:10:29 AM

Posted 04 July 2013 - 11:57 PM

p22002970.gif Download Security Check from here or here and save it to your Desktop.

  • Double-click SecurityCheck.exe
  • Follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.

NOTE 1. If one of your security applications (e.g., third-party firewall) requests permission to allow DIG.EXE access the Internet, allow it to do so.
NOTE 2 SecurityCheck may produce some false warning(s), so leave the results reading to me.

p22002970.gif Please download Farbar Service Scanner (FSS) and run it on the computer with the issue.
  • Make sure the following options are checked:
    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center/Action Center
    • Windows Update
    • Windows Defender
    • Other Services
  • Press "Scan".
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the log to your reply.


p22002970.gif Please download MiniToolBox and run it.

Checkmark following boxes:
  • Report IE Proxy Settings
  • Report FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Devices (do NOT change any settings here)
  • List Users, Partitions and Memory size

Click Go and post the result.

p22002970.gif Download Malwarebytes' Anti-Malware (aka MBAM): https://www.bleepingcomputer.com/download/malwarebytes-anti-malware/ to your desktop.

* Double-click mbam-setup.exe and follow the prompts to install the program.
* At the end, be sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
* If an update is found, it will download and install the latest version.
* Once the program has loaded, select Perform quick scan, then click Scan.
* When the scan is complete, click OK, then Show Results to view the results.
* Be sure that everything is checked, and click Remove Selected.
* When completed, a log will open in Notepad.
* Post the log back here.

Be sure to restart the computer.

The log can also be found here:
C:\Documents and Settings\Username\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Logs\log-date.txt
Or at C:\Program Files\Malwarebytes' Anti-Malware\Logs\log-date.txt

p22002970.gifDownload Malwarebytes Anti-Rootkit from HERE to your Desktop.
  • Unzip downloaded file.
  • Open the folder where the contents were unzipped and run mbar.exe
  • Follow the instructions in the wizard to update and allow the program to scan your computer for threats.
  • DO NOT click on the Cleanup button. Simply exit the program.
  • When done, please post the two logs produced they will be in the MBAR folder..... mbar-log-xxxxx.txt and system-log.txt


p22002970.gif Please download Rkill (courtesy of BleepingComputer.com) to your desktop.
There are 2 different versions. If one of them won't run then download and try to run the other one.
You only need to get one of these to run, not all of them. You may get warnings from your antivirus about this tool, ignore them or shutdown your antivirus.

rKill.exe: http://www.bleepingcomputer.com/download/rkill/dl/10/
iExplore.exe (renamed rKill.exe): http://www.bleepingcomputer.com/download/rkill/dl/11/

  • Double-click on the Rkill desktop icon to run the tool.
  • If using Vista or Windows 7 right-click on it and choose Run As Administrator.
  • A black DOS box will briefly flash and then disappear. This is normal and indicates the tool ran successfully.
  • If not, delete the file, then download and use the one provided in Link 2.
  • Do not reboot until instructed.
  • If the tool does not run from any of the links provided, please let me know.


If normal mode still doesn't work, run the tool from safe mode.

When the scan is done Notepad will open with rKill log.
Post it in your next reply.

NOTE. rKill.txt log will also be present on your desktop.

NOTE Do NOT wrap your logs in "quote" or "code" brackets.


My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 


#5 thibauld

thibauld
  • Topic Starter

  • Members
  • 64 posts
  • OFFLINE
  •  
  • Local time:06:29 PM

Posted 06 July 2013 - 01:52 PM

Hi, I haven't had much time in the past few days, and I was only able to run 2 scans today.

 

FSS:

 

Farbar Service Scanner Version: 06-07-2013
Ran by Dini (administrator) on 06-07-2013 at 20:35:26
Running from "C:\Users\Dini\Desktop"
Microsoft® Windows Vista™ Home Premium  Service Pack 1 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Security Center:
============


Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============

Other Services:
==============


File Check:
========
C:\Windows\system32\nsisvc.dll => MD5 is legit
C:\Windows\system32\Drivers\nsiproxy.sys => MD5 is legit
C:\Windows\system32\dhcpcsvc.dll => MD5 is legit
C:\Windows\system32\Drivers\afd.sys
[2011-06-16 11:36] - [2011-04-21 15:16] - 0273408 ____A (Microsoft Corporation) 48EB99503533C27AC6135648E5474457

C:\Windows\system32\Drivers\tdx.sys => MD5 is legit
C:\Windows\system32\Drivers\tcpip.sys
[2010-08-12 10:09] - [2010-06-16 17:59] - 0898952 ____A (Microsoft Corporation) 782568AB6A43160A159B6215B70BCCE9

C:\Windows\system32\dnsrslvr.dll
[2011-04-15 10:46] - [2011-03-02 16:49] - 0086528 ____A (Microsoft Corporation) 4805D9A6D281C7A7DEFD9094DEC6AF7D

C:\Windows\system32\mpssvc.dll
[2008-01-21 04:24] - [2008-01-21 04:24] - 0393216 ____A (Microsoft Corporation) D1639BA315B0D79DEC49A4B0E1FB929B

C:\Windows\system32\bfe.dll
[2008-01-21 04:23] - [2008-01-21 04:23] - 0328704 ____A (Microsoft Corporation) 8582E233C346AEFE759833E8A30DD697

C:\Windows\system32\Drivers\mpsdrv.sys => MD5 is legit
C:\Windows\system32\SDRSVC.dll => MD5 is legit
C:\Windows\system32\vssvc.exe
[2008-01-21 04:23] - [2008-01-21 04:23] - 1054720 ____A (Microsoft Corporation) D5FB73D19C46ADE183F968E13F186B23

C:\Windows\system32\wscsvc.dll
[2008-01-21 04:23] - [2008-01-21 04:23] - 0061440 ____A (Microsoft Corporation) 683DD16B590372F2C9661D277F35E49C

C:\Windows\system32\wbem\WMIsvc.dll
[2008-01-21 04:24] - [2008-01-21 04:24] - 0161792 ____A (Microsoft Corporation) 00B79A7C984678F24CF052E5BEB3A2F5

C:\Windows\system32\wuaueng.dll => MD5 is legit
C:\Windows\system32\qmgr.dll
[2008-01-21 04:25] - [2008-01-21 04:25] - 0758272 ____A (Microsoft Corporation) 02ED7B4DBC2A3232A389106DA7515C3D

C:\Windows\system32\es.dll
[2009-02-28 16:45] - [2009-02-28 16:45] - 0269312 ____A (Microsoft Corporation) 3CB3343D720168B575133A0A20DC2465

C:\Windows\system32\cryptsvc.dll
[2008-01-21 04:24] - [2008-01-21 04:24] - 0128000 ____A (Microsoft Corporation) 6DE363F9F99334514C46AEC02D3E3678

C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\system32\ipnathlp.dll => MD5 is legit
C:\Windows\system32\iphlpsvc.dll
[2010-04-15 09:08] - [2010-02-18 16:11] - 0190464 ____A (Microsoft Corporation) 6A35D233693EDC29A12742049BC5E37F

C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\rpcss.dll
[2009-05-06 21:05] - [2009-03-03 06:39] - 0551424 ____A (Microsoft Corporation) 301AE00E12408650BADDC04DBC832830



**** End of log ****

 

Security Check:

 

 Results of screen317's Security Check version 0.99.68  
 Windows Vista Service Pack 1 x86 (UAC is enabled)  
 Out of date service pack!!
 Internet Explorer 8 Out of date!
``````````````Antivirus/Firewall Check:``````````````
AVG Anti-Virus Free   
 Antivirus up to date!   
`````````Anti-malware/Other Utilities Check:`````````
 Java™ 6 Update 34  
 Java™ 6 Update 7  
 Java version out of Date!
 Adobe Flash Player     11.7.700.224  
 Adobe Reader 9 Adobe Reader out of Date!
 Mozilla Firefox (22.0)
 Mozilla Thunderbird (2.0.0 Thunderbird out of Date!  
````````Process Check: objlist.exe by Laurent````````  
 Windows Defender MSASCui.exe
 AVG avgwdsvc.exe
 AVG avgtray.exe
 AVG avgrsx.exe
 AVG avgnsx.exe
 AVG avgemc.exe
 Windows Defender MSASCui.exe   
`````````````````System Health check`````````````````
 Total Fragmentation on Drive C:  %
````````````````````End of Log``````````````````````
 



#6 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,707 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:10:29 AM

Posted 06 July 2013 - 06:17 PM

thumbsup-thumbs-up-approve-ok-smiley-emo


My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users