Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Files not visible and ping/jitter like a roller coaster


  • This topic is locked This topic is locked
8 replies to this topic

#1 krwynn

krwynn

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:06:36 PM

Posted 17 September 2013 - 06:11 PM

Hi all,

 

I've been trying to figure this out myself to no avail for a couple weeks now. This problem has me at my wits end and any help would be greatly appreciated.

 

System: i7 2600k, 8mg ram, Windows 7 home 64bit

 

Network card: Realtek PCIe GBE Family Controller, Driver 7.73.618.2013

Modem (Suddenlink): Arris CM820

Router (wireless): Linksys EA6300

 

I started having problems a few months ago and have had suddenlink here several times. The issue started with a squirrel chewing on my drop line. They repaired that and ended up back a few times as water had gotten in the line and they had to replace the drop line and connections too.

 

My ping/jitter is all over the place as you can see below. There is no pattern of when it happens. I thought the line was bad again but I checked it with a laptop I have and it does not have any ping/jitter related issues that I can tell. It is running on xp so that may be why.

 

I have ran Malwarebytes, Spybot and whatever else I can get my hands on and none of these have turned up anything. My virus protector is Microsoft Security Essentials. I have Windows Defender disabled since day one of this build.

 

This problem occurs if I am running through the router or directly to the modem. I have a 20ft Cat5e cable running from the router to the desktop. Wireless works fine. I actually just replaced the old router I had with the one mentioned above today just to eliminate that as the issue.

 

The strange part of this is that when my ping/jitter is great I will notice that when I use an application that opens a window to choose a file, the files aren't showing up. On the left is the opening file window and on the right windows explorer clearly showing files are in the folder. Example below.

 

If I run AdwCleaner, it never finds anything other than whats listed below. If I chose to clean and reboot. My files show back up but then my ping/jitter go through the roof again.

 

# AdwCleaner v3.004 - Report created 17/09/2013 at 19:03:26
# Updated 15/09/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Kevin - SANDYBRIDGE
# Running from : C:\Users\Kevin\Desktop\AdwCleaner.exe
# Option : Scan

***** [ Services ] *****


***** [ Files / Folders ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Found : HKCU\Software\Headlight
Key Found : [x64] HKCU\Software\Headlight

***** [ Browsers ] *****

-\\ Internet Explorer v10.0.9200.16660


-\\ Mozilla Firefox v23.0.1 (en-US)

[ File : C:\Users\Kevin\AppData\Roaming\Mozilla\Firefox\Profiles\pk7qubik.default\prefs.js ]


-\\ Google Chrome v21.0.1180.89

[ File : C:\Users\Kevin\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [1791 octets] - [02/09/2013 00:29:42]
AdwCleaner[R10].txt - [898 octets] - [17/09/2013 19:03:26]
AdwCleaner[R1].txt - [1020 octets] - [02/09/2013 10:02:27]
AdwCleaner[R2].txt - [1081 octets] - [02/09/2013 15:15:11]
AdwCleaner[R3].txt - [1201 octets] - [02/09/2013 15:23:07]
AdwCleaner[R4].txt - [1262 octets] - [06/09/2013 20:29:53]
AdwCleaner[R5].txt - [1571 octets] - [15/09/2013 11:31:44]
AdwCleaner[R6].txt - [1582 octets] - [16/09/2013 19:31:03]
AdwCleaner[R7].txt - [1702 octets] - [17/09/2013 16:45:23]
AdwCleaner[R8].txt - [1742 octets] - [17/09/2013 17:32:06]
AdwCleaner[R9].txt - [1802 octets] - [17/09/2013 18:01:17]
AdwCleaner[S0].txt - [1792 octets] - [02/09/2013 00:33:46]
AdwCleaner[S1].txt - [1143 octets] - [02/09/2013 15:17:50]
AdwCleaner[S2].txt - [1323 octets] - [06/09/2013 20:30:17]
AdwCleaner[S3].txt - [1593 octets] - [15/09/2013 11:33:14]
AdwCleaner[S4].txt - [1602 octets] - [16/09/2013 19:31:28]
AdwCleaner[S5].txt - [1722 octets] - [17/09/2013 16:45:37]
AdwCleaner[S6].txt - [1863 octets] - [17/09/2013 18:01:37]

########## EOF - C:\AdwCleaner\AdwCleaner[R10].txt - [1918 octets] ##########
 

These files always return no matter how many times I let AdwCleaner do its thing.

 

Here are the screenshots:

 

ping_zpsa66a1d19.jpg

 

nofilesshowing_zpsd5c83770.jpg

 

Any help would be gretly appreciated. I've tried to battle this on my own but I can feel I'm about to get in over my head and maybe mess something up beyond repair. Hopefully someone here can help.

I'm trying to eliminate the posibility that I have a virus or bug before I start digging into hardware/sotware tweaks.

 

 

Many thanks,

Kevin


Edited by krwynn, 17 September 2013 - 06:56 PM.


BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,035 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:06:36 PM

Posted 20 September 2013 - 10:14 PM

Hello, lets look at these.

Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
Note: When using "Reset FF Proxy Settings" option Firefox should be closed.



Download TDSSKiller and save it to your desktop.
  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.
.
.
  • Last run ESET.
    • Hold down Control and click on this link to open ESET OnlineScan in a new window.
    • Click the esetonlinebtn.png button.
    • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the esetsmartinstaller_enu.png icon on your desktop.
    • Check "YES, I accept the Terms of Use."
    • Click the Start button.
    • Accept any security warnings from your browser.
    • Under scan settings, check "Scan Archives" and "Remove found threats"
    • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
    • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
    • When the scan completes, click List Threats
    • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
    • Click the Back button.
    • Click the Finish button.
    • NOTE:Sometimes if ESET finds no infections it will not create a log.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 krwynn

krwynn
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:06:36 PM

Posted 21 September 2013 - 08:58 AM

Thank you boopme and hello. When trying to post the logs it's telling me I don't have permission for that action (post?)


Edited by krwynn, 21 September 2013 - 09:10 AM.


#4 krwynn

krwynn
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:06:36 PM

Posted 22 September 2013 - 01:54 PM

09:52:00.0238 0x0e88  TDSS rootkit removing tool 2.9.2.0 Aug 15 2013 16:44:29
09:52:00.0638 0x0e88  ============================================================
09:52:00.0638 0x0e88  Current date / time: 2013/09/21 09:52:00.0638
09:52:00.0638 0x0e88  SystemInfo:
09:52:00.0638 0x0e88 
09:52:00.0638 0x0e88  OS Version: 6.1.7601 ServicePack: 1.0
09:52:00.0638 0x0e88  Product type: Workstation
09:52:00.0638 0x0e88  ComputerName: SANDYBRIDGE
09:52:00.0638 0x0e88  UserName: Kevin
09:52:00.0638 0x0e88  Windows directory: C:\Windows
09:52:00.0638 0x0e88  System windows directory: C:\Windows
09:52:00.0638 0x0e88  Running under WOW64
09:52:00.0638 0x0e88  Processor architecture: Intel x64
09:52:00.0638 0x0e88  Number of processors: 4
09:52:00.0638 0x0e88  Page size: 0x1000
09:52:00.0638 0x0e88  Boot type: Normal boot
09:52:00.0638 0x0e88  ============================================================
09:52:00.0868 0x0e88  Drive \Device\Harddisk0\DR0 - Size: 0x1DCFE00000 (119.25 Gb), SectorSize: 0x200, Cylinders: 0x3CCE, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
09:52:00.0878 0x0e88  Drive \Device\Harddisk1\DR1 - Size: 0x1D1C1600000 (1863.02 Gb), SectorSize: 0x200, Cylinders: 0x3B601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
09:52:00.0878 0x0e88  ============================================================
09:52:00.0878 0x0e88  \Device\Harddisk0\DR0:
09:52:00.0878 0x0e88  MBR partitions:
09:52:00.0878 0x0e88  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
09:52:00.0878 0x0e88  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0xEE4C000
09:52:00.0878 0x0e88  \Device\Harddisk1\DR1:
09:52:00.0878 0x0e88  MBR partitions:
09:52:00.0878 0x0e88  \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xE8E09800
09:52:00.0878 0x0e88  ============================================================
09:52:00.0878 0x0e88  C: <-> \Device\Harddisk0\DR0\Partition2
09:52:00.0958 0x0e88  E: <-> \Device\Harddisk1\DR1\Partition1
09:52:00.0958 0x0e88  ============================================================
09:52:00.0958 0x0e88  Initialize success
09:52:00.0958 0x0e88  ============================================================
09:52:07.0718 0x12e8  ============================================================
09:52:07.0718 0x12e8  Scan started
09:52:07.0718 0x12e8  Mode: Manual;
09:52:07.0718 0x12e8  ============================================================
09:52:07.0758 0x12e8  ================ Scan system memory ========================
09:52:07.0758 0x12e8  System memory - ok
09:52:07.0758 0x12e8  ================ Scan services =============================
09:52:07.0758 0x12e8  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\Windows\system32\DRIVERS\1394ohci.sys
09:52:07.0768 0x12e8  1394ohci - ok
09:52:07.0768 0x12e8  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
09:52:07.0768 0x12e8  ACPI - ok
09:52:07.0768 0x12e8  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
09:52:07.0768 0x12e8  AcpiPmi - ok
09:52:07.0768 0x12e8  [ ADDA5E1951B90D3D23C56D3CF0622ADC ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
09:52:07.0768 0x12e8  AdobeARMservice - ok
09:52:07.0778 0x12e8  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
09:52:07.0778 0x12e8  adp94xx - ok
09:52:07.0778 0x12e8  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
09:52:07.0788 0x12e8  adpahci - ok
09:52:07.0788 0x12e8  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
09:52:07.0788 0x12e8  adpu320 - ok
09:52:07.0788 0x12e8  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
09:52:07.0788 0x12e8  AeLookupSvc - ok
09:52:07.0798 0x12e8  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD             C:\Windows\system32\drivers\afd.sys
09:52:07.0798 0x12e8  AFD - ok
09:52:07.0798 0x12e8  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\drivers\agp440.sys
09:52:07.0798 0x12e8  agp440 - ok
09:52:07.0798 0x12e8  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
09:52:07.0798 0x12e8  ALG - ok
09:52:07.0798 0x12e8  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\drivers\aliide.sys
09:52:07.0798 0x12e8  aliide - ok
09:52:07.0808 0x12e8  [ 13AE8D986A8D61FBAFAF5CD3F8B3B89C ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
09:52:07.0818 0x12e8  AMD External Events Utility - ok
09:52:07.0818 0x12e8  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\drivers\amdide.sys
09:52:07.0818 0x12e8  amdide - ok
09:52:07.0818 0x12e8  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
09:52:07.0818 0x12e8  AmdK8 - ok
09:52:07.0878 0x12e8  [ 1BF58E56CA271FEF678DC3A9996FAB0A ] amdkmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
09:52:07.0918 0x12e8  amdkmdag - ok
09:52:07.0918 0x12e8  [ 4DD3339D3818356145A4945C1B4CB4C5 ] amdkmdap        C:\Windows\system32\DRIVERS\atikmpag.sys
09:52:07.0928 0x12e8  amdkmdap - ok
09:52:07.0928 0x12e8  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
09:52:07.0928 0x12e8  AmdPPM - ok
09:52:07.0928 0x12e8  [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
09:52:07.0928 0x12e8  amdsata - ok
09:52:07.0938 0x12e8  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
09:52:07.0938 0x12e8  amdsbs - ok
09:52:07.0938 0x12e8  [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
09:52:07.0938 0x12e8  amdxata - ok
09:52:07.0938 0x12e8  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\Windows\system32\drivers\appid.sys
09:52:07.0938 0x12e8  AppID - ok
09:52:07.0938 0x12e8  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
09:52:07.0938 0x12e8  AppIDSvc - ok
09:52:07.0948 0x12e8  [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo         C:\Windows\System32\appinfo.dll
09:52:07.0948 0x12e8  Appinfo - ok
09:52:07.0948 0x12e8  [ 3DEBBECF665DCDDE3A95D9B902010817 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
09:52:07.0948 0x12e8  Apple Mobile Device - ok
09:52:07.0948 0x12e8  [ 6BE11AD81D4527D299F0CB5F3731AABC ] AppleCharger    C:\Windows\system32\DRIVERS\AppleCharger.sys
09:52:07.0958 0x12e8  AppleCharger - ok
09:52:07.0958 0x12e8  [ 95EF7247C50C7241FDAE39A9B3AFF4AE ] AppleChargerSrv C:\Windows\system32\AppleChargerSrv.exe
09:52:07.0968 0x12e8  AppleChargerSrv - ok
09:52:07.0968 0x12e8  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\DRIVERS\arc.sys
09:52:07.0968 0x12e8  arc - ok
09:52:07.0968 0x12e8  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
09:52:07.0968 0x12e8  arcsas - ok
09:52:07.0978 0x12e8  [ 108FB6DDB69E537A2EA53F425363FAE5 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
09:52:07.0978 0x12e8  aspnet_state - ok
09:52:07.0978 0x12e8  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
09:52:07.0978 0x12e8  AsyncMac - ok
09:52:07.0978 0x12e8  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\drivers\atapi.sys
09:52:07.0978 0x12e8  atapi - ok
09:52:07.0988 0x12e8  [ 37CB595C0AB20ECBFA5170D3185690DB ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
09:52:07.0988 0x12e8  AtiHDAudioService - ok
09:52:08.0028 0x12e8  [ 26D973D6D9A0D133DFDA7D8C1ADC04B7 ] atillk64        E:\Programs\ATIWinFlash\atillk64.sys
09:52:08.0038 0x12e8  atillk64 - ok
09:52:08.0038 0x12e8  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
09:52:08.0038 0x12e8  AudioEndpointBuilder - ok
09:52:08.0048 0x12e8  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
09:52:08.0048 0x12e8  AudioSrv - ok
09:52:08.0048 0x12e8  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\Windows\System32\AxInstSV.dll
09:52:08.0048 0x12e8  AxInstSV - ok
09:52:08.0048 0x12e8  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
09:52:08.0058 0x12e8  b06bdrv - ok
09:52:08.0058 0x12e8  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
09:52:08.0058 0x12e8  b57nd60a - ok
09:52:08.0058 0x12e8  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
09:52:08.0058 0x12e8  BDESVC - ok
09:52:08.0068 0x12e8  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
09:52:08.0068 0x12e8  Beep - ok
09:52:08.0068 0x12e8  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE             C:\Windows\System32\bfe.dll
09:52:08.0068 0x12e8  BFE - ok
09:52:08.0078 0x12e8  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\Windows\System32\qmgr.dll
09:52:08.0078 0x12e8  BITS - ok
09:52:08.0078 0x12e8  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
09:52:08.0078 0x12e8  blbdrive - ok
09:52:08.0088 0x12e8  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
09:52:08.0088 0x12e8  Bonjour Service - ok
09:52:08.0088 0x12e8  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
09:52:08.0088 0x12e8  bowser - ok
09:52:08.0088 0x12e8  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
09:52:08.0098 0x12e8  BrFiltLo - ok
09:52:08.0098 0x12e8  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
09:52:08.0098 0x12e8  BrFiltUp - ok
09:52:08.0098 0x12e8  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\Windows\System32\browser.dll
09:52:08.0098 0x12e8  Browser - ok
09:52:08.0098 0x12e8  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
09:52:08.0098 0x12e8  Brserid - ok
09:52:08.0098 0x12e8  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
09:52:08.0108 0x12e8  BrSerWdm - ok
09:52:08.0108 0x12e8  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
09:52:08.0108 0x12e8  BrUsbMdm - ok
09:52:08.0108 0x12e8  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
09:52:08.0108 0x12e8  BrUsbSer - ok
09:52:08.0108 0x12e8  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
09:52:08.0108 0x12e8  BTHMODEM - ok
09:52:08.0108 0x12e8  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
09:52:08.0108 0x12e8  bthserv - ok
09:52:08.0118 0x12e8  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
09:52:08.0118 0x12e8  cdfs - ok
09:52:08.0118 0x12e8  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
09:52:08.0118 0x12e8  cdrom - ok
09:52:08.0118 0x12e8  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\Windows\System32\certprop.dll
09:52:08.0118 0x12e8  CertPropSvc - ok
09:52:08.0118 0x12e8  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
09:52:08.0118 0x12e8  circlass - ok
09:52:08.0128 0x12e8  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
09:52:08.0128 0x12e8  CLFS - ok
09:52:08.0218 0x12e8  [ DB26C2BA2AC0AB6BE1CFA59F61CE22DA ] CLHNServiceForPowerDVD E:\Program Files (x86)\CyberLink\PowerDVD11\PowerDVD11\Kernel\DMP\CLHNServiceForPowerDVD.exe
09:52:08.0238 0x12e8  CLHNServiceForPowerDVD - ok
09:52:08.0238 0x12e8  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
09:52:08.0238 0x12e8  clr_optimization_v2.0.50727_32 - ok
09:52:08.0238 0x12e8  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
09:52:08.0238 0x12e8  clr_optimization_v2.0.50727_64 - ok
09:52:08.0248 0x12e8  [ 6D7C8A951AF6AD6835C029B3CB88D333 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
09:52:08.0248 0x12e8  clr_optimization_v4.0.30319_32 - ok
09:52:08.0248 0x12e8  [ 86329C35FF23CFEF0FB6C0023BA06BCE ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
09:52:08.0248 0x12e8  clr_optimization_v4.0.30319_64 - ok
09:52:08.0248 0x12e8  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
09:52:08.0248 0x12e8  CmBatt - ok
09:52:08.0258 0x12e8  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\drivers\cmdide.sys
09:52:08.0258 0x12e8  cmdide - ok
09:52:08.0258 0x12e8  [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG             C:\Windows\system32\Drivers\cng.sys
09:52:08.0258 0x12e8  CNG - ok
09:52:08.0258 0x12e8  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
09:52:08.0258 0x12e8  Compbatt - ok
09:52:08.0258 0x12e8  [ 59D203C3F46F3CA536ECAC0E084CD887 ] CompFilter64    C:\Windows\system32\DRIVERS\lvbflt64.sys
09:52:08.0258 0x12e8  CompFilter64 - ok
09:52:08.0268 0x12e8  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
09:52:08.0268 0x12e8  CompositeBus - ok
09:52:08.0268 0x12e8  COMSysApp - ok
09:52:08.0268 0x12e8  [ 3CA734CE373E5675FBC15CA2C45228E5 ] cpudrv64        C:\Program Files (x86)\SystemRequirementsLab\cpudrv64.sys
09:52:08.0268 0x12e8  cpudrv64 - ok
09:52:08.0268 0x12e8  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
09:52:08.0268 0x12e8  crcdisk - ok
09:52:08.0268 0x12e8  [ 6B400F211BEE880A37A1ED0368776BF4 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
09:52:08.0278 0x12e8  CryptSvc - ok
09:52:08.0318 0x12e8  [ A5809B65F018A42AFE8847135C124B0D ] CyberLink PowerDVD 11.0 Monitor Service E:\Program Files (x86)\CyberLink\PowerDVD11\PowerDVD11\Common\MediaServer\CLMSMonitorService.exe
09:52:08.0938 0x12e8  CyberLink PowerDVD 11.0 Monitor Service - ok
09:52:08.0968 0x12e8  [ 1E3BF6BCECD39809546F3C161E293DA2 ] CyberLink PowerDVD 11.0 Service E:\Program Files (x86)\CyberLink\PowerDVD11\PowerDVD11\Common\MediaServer\CLMSServerForPDVD11.exe
09:52:08.0998 0x12e8  CyberLink PowerDVD 11.0 Service - ok
09:52:09.0008 0x12e8  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\Windows\system32\rpcss.dll
09:52:09.0008 0x12e8  DcomLaunch - ok
09:52:09.0008 0x12e8  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
09:52:09.0008 0x12e8  defragsvc - ok
09:52:09.0018 0x12e8  [ FDC0C5ADDE1CDE6EDB0BEF78F0699AF3 ] DES2 Service    C:\Program Files (x86)\GIGABYTE\EnergySaver2\des2svr.exe
09:52:09.0028 0x12e8  DES2 Service - ok
09:52:09.0028 0x12e8  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
09:52:09.0028 0x12e8  DfsC - ok
09:52:09.0038 0x12e8  [ 0B3F6C8F93C5C25977EA5A8B2E656357 ] dg_ssudbus      C:\Windows\system32\DRIVERS\ssudbus.sys
09:52:09.0038 0x12e8  dg_ssudbus - ok
09:52:09.0038 0x12e8  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\Windows\system32\dhcpcore.dll
09:52:09.0038 0x12e8  Dhcp - ok
09:52:09.0038 0x12e8  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
09:52:09.0038 0x12e8  discache - ok
09:52:09.0048 0x12e8  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\DRIVERS\disk.sys
09:52:09.0048 0x12e8  Disk - ok
09:52:09.0048 0x12e8  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
09:52:09.0048 0x12e8  Dnscache - ok
09:52:09.0048 0x12e8  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\Windows\System32\dot3svc.dll
09:52:09.0048 0x12e8  dot3svc - ok
09:52:09.0058 0x12e8  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\Windows\system32\dps.dll
09:52:09.0058 0x12e8  DPS - ok
09:52:09.0058 0x12e8  [ EFB3C21BD2CB810B1DD7AF1C01DF0233 ] DRIVER_B        C:\Windows\system32\Drivers\DRIVER_BIN64
09:52:09.0058 0x12e8  Suspicious file (Forged): C:\Windows\system32\Drivers\DRIVER_BIN64. Real md5: EFB3C21BD2CB810B1DD7AF1C01DF0233, Fake md5: DE3CDAD1E847546111D2F3FA9944C831
09:52:09.0058 0x12e8  DRIVER_B ( ForgedFile.Multi.Generic ) - warning
09:52:09.0058 0x12e8  DRIVER_B - detected ForgedFile.Multi.Generic (1)
09:52:09.0058 0x12e8  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
09:52:09.0068 0x12e8  drmkaud - ok
09:52:09.0078 0x12e8  [ 1ED08A6264C5C92099D6D1DAE5E8F530 ] DrvAgent64      C:\Windows\SysWOW64\Drivers\DrvAgent64.SYS
09:52:09.0088 0x12e8  DrvAgent64 - ok
09:52:09.0088 0x12e8  [ 716FCDFED2640B480B747CCFD2684C47 ] DTSRVC          C:\Program Files (x86)\Common Files\Portrait Displays\Shared\dtsrvc.exe
09:52:09.0088 0x12e8  DTSRVC - ok
09:52:09.0098 0x12e8  [ AF2E16242AA723F68F461B6EAE2EAD3D ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
09:52:09.0098 0x12e8  DXGKrnl - ok
09:52:09.0098 0x12e8  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
09:52:09.0098 0x12e8  EapHost - ok
09:52:09.0118 0x12e8  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
09:52:09.0128 0x12e8  ebdrv - ok
09:52:09.0128 0x12e8  [ C118A82CD78818C29AB228366EBF81C3 ] EFS             C:\Windows\System32\lsass.exe
09:52:09.0128 0x12e8  EFS - ok
09:52:09.0138 0x12e8  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
09:52:09.0138 0x12e8  ehRecvr - ok
09:52:09.0138 0x12e8  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
09:52:09.0148 0x12e8  ehSched - ok
09:52:09.0148 0x12e8  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
09:52:09.0148 0x12e8  elxstor - ok
09:52:09.0148 0x12e8  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\drivers\errdev.sys
09:52:09.0148 0x12e8  ErrDev - ok
09:52:09.0148 0x12e8  [ 84486624268E078255BC7AA47F0960BC ] etdrv           C:\Windows\etdrv.sys
09:52:09.0158 0x12e8  etdrv - ok
09:52:09.0158 0x12e8  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
09:52:09.0168 0x12e8  EventSystem - ok
09:52:09.0168 0x12e8  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
09:52:09.0168 0x12e8  exfat - ok
09:52:09.0168 0x12e8  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
09:52:09.0168 0x12e8  fastfat - ok
09:52:09.0168 0x12e8  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
09:52:09.0168 0x12e8  fdc - ok
09:52:09.0168 0x12e8  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
09:52:09.0168 0x12e8  fdPHost - ok
09:52:09.0178 0x12e8  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
09:52:09.0178 0x12e8  FDResPub - ok
09:52:09.0178 0x12e8  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
09:52:09.0178 0x12e8  FileInfo - ok
09:52:09.0178 0x12e8  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
09:52:09.0178 0x12e8  Filetrace - ok
09:52:09.0178 0x12e8  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
09:52:09.0178 0x12e8  flpydisk - ok
09:52:09.0178 0x12e8  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
09:52:09.0178 0x12e8  FltMgr - ok
09:52:09.0188 0x12e8  [ C4C183E6551084039EC862DA1C945E3D ] FontCache       C:\Windows\system32\FntCache.dll
09:52:09.0198 0x12e8  FontCache - ok
09:52:09.0198 0x12e8  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
09:52:09.0198 0x12e8  FontCache3.0.0.0 - ok
09:52:09.0198 0x12e8  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
09:52:09.0198 0x12e8  FsDepends - ok
09:52:09.0198 0x12e8  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
09:52:09.0198 0x12e8  Fs_Rec - ok
09:52:09.0198 0x12e8  [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
09:52:09.0208 0x12e8  fvevol - ok
09:52:09.0208 0x12e8  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
09:52:09.0208 0x12e8  gagp30kx - ok
09:52:09.0208 0x12e8  [ 7907E14F9BCF3A4689C9A74A1A873CB6 ] gdrv            C:\Windows\gdrv.sys
09:52:09.0208 0x12e8  gdrv - ok
09:52:09.0218 0x12e8  [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
09:52:09.0218 0x12e8  GEARAspiWDM - ok
09:52:09.0218 0x12e8  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\Windows\System32\gpsvc.dll
09:52:09.0218 0x12e8  gpsvc - ok
09:52:09.0228 0x12e8  [ F02A533F517EB38333CB12A9E8963773 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
09:52:09.0228 0x12e8  gupdate - ok
09:52:09.0228 0x12e8  [ F02A533F517EB38333CB12A9E8963773 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
09:52:09.0228 0x12e8  gupdatem - ok
09:52:09.0228 0x12e8  [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc           C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
09:52:09.0228 0x12e8  gusvc - ok
09:52:09.0238 0x12e8  [ 8126331FBD4ED29EB3B356F9C905064D ] GVTDrv64        C:\Windows\GVTDrv64.sys
09:52:09.0238 0x12e8  GVTDrv64 - ok
09:52:09.0238 0x12e8  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
09:52:09.0238 0x12e8  hcw85cir - ok
09:52:09.0248 0x12e8  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
09:52:09.0248 0x12e8  HdAudAddService - ok
09:52:09.0248 0x12e8  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
09:52:09.0248 0x12e8  HDAudBus - ok
09:52:09.0248 0x12e8  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
09:52:09.0248 0x12e8  HidBatt - ok
09:52:09.0248 0x12e8  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
09:52:09.0248 0x12e8  HidBth - ok
09:52:09.0258 0x12e8  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
09:52:09.0258 0x12e8  HidIr - ok
09:52:09.0258 0x12e8  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\system32\hidserv.dll
09:52:09.0258 0x12e8  hidserv - ok
09:52:09.0258 0x12e8  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
09:52:09.0258 0x12e8  HidUsb - ok
09:52:09.0258 0x12e8  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\Windows\system32\kmsvc.dll
09:52:09.0258 0x12e8  hkmsvc - ok
09:52:09.0268 0x12e8  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
09:52:09.0268 0x12e8  HomeGroupListener - ok
09:52:09.0268 0x12e8  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
09:52:09.0268 0x12e8  HomeGroupProvider - ok
09:52:09.0268 0x12e8  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
09:52:09.0268 0x12e8  HpSAMD - ok
09:52:09.0278 0x12e8  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
09:52:09.0278 0x12e8  HTTP - ok
09:52:09.0328 0x12e8  [ F78FF50C486D530504B7D2BB36B1ED22 ] HWiNFO32        E:\Programs\HWiNfo64\HWiNFO64A.SYS
09:52:09.0328 0x12e8  HWiNFO32 - ok
09:52:09.0328 0x12e8  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
09:52:09.0328 0x12e8  hwpolicy - ok
09:52:09.0338 0x12e8  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
09:52:09.0338 0x12e8  i8042prt - ok
09:52:09.0338 0x12e8  [ 2FDAEC4B02729C48C0FD1B0B4695995B ] iaStor          C:\Windows\system32\DRIVERS\iaStor.sys
09:52:09.0338 0x12e8  iaStor - ok
09:52:09.0348 0x12e8  [ 6C91E425ACE29594BD574DE38AC9B76D ] iaStorA         C:\Windows\system32\DRIVERS\iaStorA.sys
09:52:09.0348 0x12e8  iaStorA - ok
09:52:09.0348 0x12e8  [ 0AB254994A460550258446950BB58311 ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
09:52:09.0348 0x12e8  IAStorDataMgrSvc - ok
09:52:09.0348 0x12e8  [ 2B38F13E18E272459CD2CE83E6722C12 ] iaStorF         C:\Windows\system32\DRIVERS\iaStorF.sys
09:52:09.0348 0x12e8  iaStorF - ok
09:52:09.0358 0x12e8  [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
09:52:09.0358 0x12e8  iaStorV - ok
09:52:09.0358 0x12e8  [ C1010ADD3DDAE1196ED21057AF7B2AAE ] ICCWDT          C:\Windows\system32\DRIVERS\ICCWDT.sys
09:52:09.0358 0x12e8  ICCWDT - ok
09:52:09.0358 0x12e8  [ 0F363350230217FBF282657BA229FBE8 ] ICTDrv          C:\Windows\system32\DRIVERS\ICTDrv.sys
09:52:09.0358 0x12e8  ICTDrv - ok
09:52:09.0358 0x12e8  [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT        C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
09:52:09.0358 0x12e8  IDriverT - ok
09:52:09.0368 0x12e8  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
09:52:09.0368 0x12e8  idsvc - ok
09:52:09.0368 0x12e8  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
09:52:09.0368 0x12e8  iirsp - ok
09:52:09.0378 0x12e8  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\Windows\System32\ikeext.dll
09:52:09.0378 0x12e8  IKEEXT - ok
09:52:09.0398 0x12e8  [ C2F868881D48A568B525255F084EF063 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
09:52:09.0408 0x12e8  IntcAzAudAddService - ok
09:52:09.0418 0x12e8  [ C99F8E90DE4B8F0C7FE15BB1CBCD29DC ] Intel® Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
09:52:09.0888 0x12e8  Intel® Capability Licensing Service Interface - ok
09:52:09.0888 0x12e8  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\drivers\intelide.sys
09:52:09.0898 0x12e8  intelide - ok
09:52:09.0898 0x12e8  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
09:52:09.0898 0x12e8  intelppm - ok
09:52:09.0898 0x12e8  [ 9160D7B5CFA88697179C039BC852A945 ] IOCBIOS         C:\ProgramData\Intel\Extreme Tuning Utility\IOCbios\64bit\IOCBIOS.sys
09:52:09.0898 0x12e8  IOCBIOS - ok
09:52:09.0898 0x12e8  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
09:52:09.0898 0x12e8  IPBusEnum - ok
09:52:09.0898 0x12e8  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
09:52:09.0898 0x12e8  IpFilterDriver - ok
09:52:09.0908 0x12e8  [ 08C2957BB30058E663720C5606885653 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
09:52:09.0908 0x12e8  iphlpsvc - ok
09:52:09.0908 0x12e8  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
09:52:09.0908 0x12e8  IPMIDRV - ok
09:52:09.0908 0x12e8  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
09:52:09.0918 0x12e8  IPNAT - ok
09:52:09.0918 0x12e8  [ EE4C2A137C7088911A8919EFFC9812E7 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
09:52:09.0928 0x12e8  iPod Service - ok
09:52:09.0928 0x12e8  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
09:52:09.0928 0x12e8  IRENUM - ok
09:52:09.0928 0x12e8  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
09:52:09.0928 0x12e8  isapnp - ok
09:52:09.0928 0x12e8  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
09:52:09.0928 0x12e8  iScsiPrt - ok
09:52:09.0928 0x12e8  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
09:52:09.0928 0x12e8  kbdclass - ok
09:52:09.0938 0x12e8  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
09:52:09.0938 0x12e8  kbdhid - ok
09:52:09.0938 0x12e8  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\Windows\system32\lsass.exe
09:52:09.0938 0x12e8  KeyIso - ok
09:52:09.0938 0x12e8  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
09:52:09.0938 0x12e8  KSecDD - ok
09:52:09.0938 0x12e8  [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
09:52:09.0938 0x12e8  KSecPkg - ok
09:52:09.0938 0x12e8  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
09:52:09.0938 0x12e8  ksthunk - ok
09:52:09.0948 0x12e8  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
09:52:09.0948 0x12e8  KtmRm - ok
09:52:09.0948 0x12e8  [ DF6B07438C9709336B32481FEB57DD21 ] L8042Kbd        C:\Windows\system32\DRIVERS\L8042Kbd.sys
09:52:09.0948 0x12e8  L8042Kbd - ok
09:52:09.0948 0x12e8  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\Windows\system32\srvsvc.dll
09:52:09.0958 0x12e8  LanmanServer - ok
09:52:09.0958 0x12e8  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
09:52:09.0958 0x12e8  LanmanWorkstation - ok
09:52:09.0958 0x12e8  [ 7772DFAB22611050B79504E671B06E6E ] LBTServ         C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
09:52:09.0968 0x12e8  LBTServ - ok
09:52:09.0968 0x12e8  [ 241F2648ADF090E2A10095BD6D6F5DCB ] LHidFilt        C:\Windows\system32\DRIVERS\LHidFilt.Sys
09:52:09.0968 0x12e8  LHidFilt - ok
09:52:09.0968 0x12e8  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
09:52:09.0968 0x12e8  lltdio - ok
09:52:09.0968 0x12e8  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
09:52:09.0978 0x12e8  lltdsvc - ok
09:52:09.0978 0x12e8  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
09:52:09.0978 0x12e8  lmhosts - ok
09:52:09.0978 0x12e8  [ 342ED5A4B3326014438F36D22D803737 ] LMouFilt        C:\Windows\system32\DRIVERS\LMouFilt.Sys
09:52:09.0978 0x12e8  LMouFilt - ok
09:52:09.0978 0x12e8  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
09:52:09.0978 0x12e8  LSI_FC - ok
09:52:09.0978 0x12e8  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
09:52:09.0978 0x12e8  LSI_SAS - ok
09:52:09.0988 0x12e8  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
09:52:09.0988 0x12e8  LSI_SAS2 - ok
09:52:09.0988 0x12e8  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
09:52:09.0988 0x12e8  LSI_SCSI - ok
09:52:09.0988 0x12e8  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
09:52:09.0988 0x12e8  luafv - ok
09:52:09.0988 0x12e8  [ 29C733E1DE824670DC9315CFC9BDBCD3 ] LUsbFilt        C:\Windows\system32\Drivers\LUsbFilt.Sys
09:52:09.0988 0x12e8  LUsbFilt - ok
09:52:09.0998 0x12e8  [ 0C85B2B6FB74B36A251792D45E0EF860 ] LVRS64          C:\Windows\system32\DRIVERS\lvrs64.sys
09:52:09.0998 0x12e8  LVRS64 - ok
09:52:10.0018 0x12e8  [ FF3A488924B0032B1A9CA6948C1FA9E8 ] LVUVC64         C:\Windows\system32\DRIVERS\lvuvc64.sys
09:52:10.0028 0x12e8  LVUVC64 - ok
09:52:10.0038 0x12e8  [ 162654EDAAA2FB6C58E4082C448114DD ] Marvell Storage Management C:\Program Files (x86)\Marvell\storage\svc\mvraidsvc.exe
09:52:10.0068 0x12e8  Marvell Storage Management - ok
09:52:10.0068 0x12e8  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
09:52:10.0068 0x12e8  Mcx2Svc - ok
09:52:10.0068 0x12e8  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
09:52:10.0068 0x12e8  megasas - ok
09:52:10.0078 0x12e8  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
09:52:10.0078 0x12e8  MegaSR - ok
09:52:10.0078 0x12e8  [ 772A1DEEDFDBC244183B5C805D1B7D85 ] MEIx64          C:\Windows\system32\DRIVERS\HECIx64.sys
09:52:10.0078 0x12e8  MEIx64 - ok
09:52:10.0078 0x12e8  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
09:52:10.0078 0x12e8  MMCSS - ok
09:52:10.0078 0x12e8  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
09:52:10.0078 0x12e8  Modem - ok
09:52:10.0088 0x12e8  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
09:52:10.0088 0x12e8  monitor - ok
09:52:10.0088 0x12e8  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
09:52:10.0088 0x12e8  mouclass - ok
09:52:10.0088 0x12e8  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
09:52:10.0088 0x12e8  mouhid - ok
09:52:10.0088 0x12e8  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
09:52:10.0088 0x12e8  mountmgr - ok
09:52:10.0088 0x12e8  [ A35576A433F4AEB0D48976A004657CB6 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
09:52:10.0088 0x12e8  MozillaMaintenance - ok
09:52:10.0098 0x12e8  [ FC1D590039EF06A381768710E6C07E75 ] MpFilter        C:\Windows\system32\DRIVERS\MpFilter.sys
09:52:10.0098 0x12e8  MpFilter - ok
09:52:10.0098 0x12e8  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\Windows\system32\drivers\mpio.sys
09:52:10.0098 0x12e8  mpio - ok
09:52:10.0098 0x12e8  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
09:52:10.0098 0x12e8  mpsdrv - ok
09:52:10.0108 0x12e8  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc          C:\Windows\system32\mpssvc.dll
09:52:10.0108 0x12e8  MpsSvc - ok
09:52:10.0118 0x12e8  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
09:52:10.0118 0x12e8  MRxDAV - ok
09:52:10.0118 0x12e8  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
09:52:10.0118 0x12e8  mrxsmb - ok
09:52:10.0118 0x12e8  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
09:52:10.0118 0x12e8  mrxsmb10 - ok
09:52:10.0118 0x12e8  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
09:52:10.0128 0x12e8  mrxsmb20 - ok
09:52:10.0128 0x12e8  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\Windows\system32\drivers\msahci.sys
09:52:10.0128 0x12e8  msahci - ok
09:52:10.0128 0x12e8  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
09:52:10.0128 0x12e8  msdsm - ok
09:52:10.0128 0x12e8  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
09:52:10.0128 0x12e8  MSDTC - ok
09:52:10.0138 0x12e8  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
09:52:10.0138 0x12e8  Msfs - ok
09:52:10.0138 0x12e8  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
09:52:10.0138 0x12e8  mshidkmdf - ok
09:52:10.0138 0x12e8  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
09:52:10.0138 0x12e8  msisadrv - ok
09:52:10.0138 0x12e8  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
09:52:10.0138 0x12e8  MSiSCSI - ok
09:52:10.0138 0x12e8  msiserver - ok
09:52:10.0148 0x12e8  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
09:52:10.0148 0x12e8  MSKSSRV - ok
09:52:10.0148 0x12e8  [ 66238063B53E51ADDA16764BAB9A3F7C ] MsMpSvc         C:\Program Files\Microsoft Security Client\MsMpEng.exe
09:52:10.0148 0x12e8  MsMpSvc - ok
09:52:10.0148 0x12e8  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
09:52:10.0148 0x12e8  MSPCLOCK - ok
09:52:10.0148 0x12e8  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
09:52:10.0148 0x12e8  MSPQM - ok
09:52:10.0148 0x12e8  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
09:52:10.0158 0x12e8  MsRPC - ok
09:52:10.0158 0x12e8  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
09:52:10.0158 0x12e8  mssmbios - ok
09:52:10.0158 0x12e8  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
09:52:10.0158 0x12e8  MSTEE - ok
09:52:10.0158 0x12e8  [ 5334D3450B55FC929D50143F530597F0 ] MSUWebService   C:\Program Files (x86)\Marvell\storage\Apache2\bin\httpd.exe
09:52:10.0158 0x12e8  MSUWebService - ok
09:52:10.0158 0x12e8  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
09:52:10.0158 0x12e8  MTConfig - ok
09:52:10.0168 0x12e8  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
09:52:10.0168 0x12e8  Mup - ok
09:52:10.0168 0x12e8  [ 9F603A438788B2300951B11FE3800801 ] Mv_Process      c:\windows\syswow64\mv_process.sys
09:52:10.0178 0x12e8  Mv_Process - ok
09:52:10.0178 0x12e8  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\Windows\system32\qagentRT.dll
09:52:10.0178 0x12e8  napagent - ok
09:52:10.0188 0x12e8  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
09:52:10.0188 0x12e8  NativeWifiP - ok
09:52:10.0188 0x12e8  [ 760E38053BF56E501D562B70AD796B88 ] NDIS            C:\Windows\system32\drivers\ndis.sys
09:52:10.0198 0x12e8  NDIS - ok
09:52:10.0198 0x12e8  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
09:52:10.0198 0x12e8  NdisCap - ok
09:52:10.0198 0x12e8  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
09:52:10.0198 0x12e8  NdisTapi - ok
09:52:10.0198 0x12e8  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
09:52:10.0198 0x12e8  Ndisuio - ok
09:52:10.0198 0x12e8  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
09:52:10.0198 0x12e8  NdisWan - ok
09:52:10.0208 0x12e8  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
09:52:10.0208 0x12e8  NDProxy - ok
09:52:10.0208 0x12e8  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
09:52:10.0208 0x12e8  NetBIOS - ok
09:52:10.0208 0x12e8  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
09:52:10.0208 0x12e8  NetBT - ok
09:52:10.0208 0x12e8  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\Windows\system32\lsass.exe
09:52:10.0208 0x12e8  Netlogon - ok
09:52:10.0218 0x12e8  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
09:52:10.0218 0x12e8  Netman - ok
09:52:10.0218 0x12e8  [ 5243CFC2E7161C91C2B355240035B9E4 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
09:52:10.0218 0x12e8  NetMsmqActivator - ok
09:52:10.0228 0x12e8  [ 5243CFC2E7161C91C2B355240035B9E4 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
09:52:10.0228 0x12e8  NetPipeActivator - ok
09:52:10.0228 0x12e8  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
09:52:10.0228 0x12e8  netprofm - ok
09:52:10.0228 0x12e8  [ 5243CFC2E7161C91C2B355240035B9E4 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
09:52:10.0228 0x12e8  NetTcpActivator - ok
09:52:10.0238 0x12e8  [ 5243CFC2E7161C91C2B355240035B9E4 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
09:52:10.0238 0x12e8  NetTcpPortSharing - ok
09:52:10.0238 0x12e8  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
09:52:10.0238 0x12e8  nfrd960 - ok
09:52:10.0238 0x12e8  [ 8FB3C853E886E1E4D57271672486111C ] NisDrv          C:\Windows\system32\DRIVERS\NisDrvWFP.sys
09:52:10.0238 0x12e8  NisDrv - ok
09:52:10.0238 0x12e8  [ 869A808253726EA11939EC4FE76346A4 ] NisSrv          C:\Program Files\Microsoft Security Client\NisSrv.exe
09:52:10.0248 0x12e8  NisSrv - ok
09:52:10.0248 0x12e8  [ 8AD77806D336673F270DB31645267293 ] NlaSvc          C:\Windows\System32\nlasvc.dll
09:52:10.0248 0x12e8  NlaSvc - ok
09:52:10.0248 0x12e8  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
09:52:10.0248 0x12e8  Npfs - ok
09:52:10.0248 0x12e8  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
09:52:10.0258 0x12e8  nsi - ok
09:52:10.0258 0x12e8  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
09:52:10.0258 0x12e8  nsiproxy - ok
09:52:10.0268 0x12e8  [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
09:52:10.0268 0x12e8  Ntfs - ok
09:52:10.0308 0x12e8  [ 7420B2E1F65642129B6E23BD42F752AA ] ntk_PowerDVD    E:\Program Files (x86)\CyberLink\PowerDVD11\PowerDVD11\Kernel\DMP\ntk_PowerDVD_64.sys
09:52:10.0308 0x12e8  ntk_PowerDVD - ok
09:52:10.0318 0x12e8  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
09:52:10.0318 0x12e8  Null - ok
09:52:10.0318 0x12e8  [ A7127E86F9FFE2A53E271B56B2C4CEDF ] nusb3hub        C:\Windows\system32\DRIVERS\nusb3hub.sys
09:52:10.0318 0x12e8  nusb3hub - ok
09:52:10.0318 0x12e8  [ 49BBEC6F48D5F9284B03ABF3A959B19B ] nusb3xhc        C:\Windows\system32\DRIVERS\nusb3xhc.sys
09:52:10.0318 0x12e8  nusb3xhc - ok
09:52:10.0328 0x12e8  [ 0A92CB65770442ED0DC44834632F66AD ] nvraid          C:\Windows\system32\drivers\nvraid.sys
09:52:10.0328 0x12e8  nvraid - ok
09:52:10.0328 0x12e8  [ DAB0E87525C10052BF65F06152F37E4A ] nvstor          C:\Windows\system32\drivers\nvstor.sys
09:52:10.0328 0x12e8  nvstor - ok
09:52:10.0328 0x12e8  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
09:52:10.0328 0x12e8  nv_agp - ok
09:52:10.0328 0x12e8  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
09:52:10.0338 0x12e8  ohci1394 - ok
09:52:10.0338 0x12e8  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
09:52:10.0338 0x12e8  p2pimsvc - ok
09:52:10.0338 0x12e8  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
09:52:10.0348 0x12e8  p2psvc - ok
09:52:10.0348 0x12e8  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
09:52:10.0348 0x12e8  Parport - ok
09:52:10.0348 0x12e8  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\Windows\system32\drivers\partmgr.sys
09:52:10.0348 0x12e8  partmgr - ok
09:52:10.0348 0x12e8  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
09:52:10.0348 0x12e8  PcaSvc - ok
09:52:10.0358 0x12e8  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\Windows\system32\drivers\pci.sys
09:52:10.0358 0x12e8  pci - ok
09:52:10.0358 0x12e8  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\drivers\pciide.sys
09:52:10.0358 0x12e8  pciide - ok
09:52:10.0358 0x12e8  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
09:52:10.0358 0x12e8  pcmcia - ok
09:52:10.0358 0x12e8  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
09:52:10.0358 0x12e8  pcw - ok
09:52:10.0368 0x12e8  [ E70DA663558CFABE378A412C7748347D ] PdiPorts        C:\Windows\system32\DRIVERS\PdiPorts.sys
09:52:10.0368 0x12e8  PdiPorts - ok
09:52:10.0368 0x12e8  [ CD7C3234BBE062AB5A9127D831298491 ] PdiService      C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe
09:52:10.0388 0x12e8  PdiService - ok
09:52:10.0388 0x12e8  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
09:52:10.0398 0x12e8  PEAUTH - ok
09:52:10.0398 0x12e8  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
09:52:10.0398 0x12e8  PerfHost - ok
09:52:10.0408 0x12e8  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\Windows\system32\pla.dll
09:52:10.0408 0x12e8  pla - ok
09:52:10.0418 0x12e8  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
09:52:10.0418 0x12e8  PlugPlay - ok
09:52:10.0418 0x12e8  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
09:52:10.0418 0x12e8  PNRPAutoReg - ok
09:52:10.0428 0x12e8  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
09:52:10.0428 0x12e8  PNRPsvc - ok
09:52:10.0428 0x12e8  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
09:52:10.0428 0x12e8  PolicyAgent - ok
09:52:10.0428 0x12e8  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
09:52:10.0438 0x12e8  Power - ok
09:52:10.0438 0x12e8  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
09:52:10.0438 0x12e8  PptpMiniport - ok
09:52:10.0438 0x12e8  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\DRIVERS\processr.sys
09:52:10.0438 0x12e8  Processor - ok
09:52:10.0438 0x12e8  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc         C:\Windows\system32\profsvc.dll
09:52:10.0448 0x12e8  ProfSvc - ok
09:52:10.0448 0x12e8  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
09:52:10.0448 0x12e8  ProtectedStorage - ok
09:52:10.0448 0x12e8  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
09:52:10.0448 0x12e8  Psched - ok
09:52:10.0458 0x12e8  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
09:52:10.0458 0x12e8  ql2300 - ok
09:52:10.0468 0x12e8  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
09:52:10.0468 0x12e8  ql40xx - ok
09:52:10.0468 0x12e8  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
09:52:10.0468 0x12e8  QWAVE - ok
09:52:10.0468 0x12e8  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
09:52:10.0468 0x12e8  QWAVEdrv - ok
09:52:10.0468 0x12e8  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
09:52:10.0468 0x12e8  RasAcd - ok
09:52:10.0478 0x12e8  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
09:52:10.0478 0x12e8  RasAgileVpn - ok
09:52:10.0478 0x12e8  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
09:52:10.0478 0x12e8  RasAuto - ok
09:52:10.0478 0x12e8  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
09:52:10.0478 0x12e8  Rasl2tp - ok
09:52:10.0478 0x12e8  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\Windows\System32\rasmans.dll
09:52:10.0488 0x12e8  RasMan - ok
09:52:10.0488 0x12e8  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
09:52:10.0488 0x12e8  RasPppoe - ok
09:52:10.0488 0x12e8  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
09:52:10.0488 0x12e8  RasSstp - ok
09:52:10.0488 0x12e8  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
09:52:10.0488 0x12e8  rdbss - ok
09:52:10.0498 0x12e8  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
09:52:10.0498 0x12e8  rdpbus - ok
09:52:10.0498 0x12e8  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
09:52:10.0498 0x12e8  RDPCDD - ok
09:52:10.0498 0x12e8  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
09:52:10.0498 0x12e8  RDPENCDD - ok
09:52:10.0498 0x12e8  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
09:52:10.0498 0x12e8  RDPREFMP - ok
09:52:10.0498 0x12e8  [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
09:52:10.0508 0x12e8  RdpVideoMiniport - ok
09:52:10.0508 0x12e8  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
09:52:10.0508 0x12e8  RDPWD - ok
09:52:10.0508 0x12e8  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
09:52:10.0508 0x12e8  rdyboost - ok
09:52:10.0508 0x12e8  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
09:52:10.0508 0x12e8  RemoteAccess - ok
09:52:10.0518 0x12e8  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
09:52:10.0518 0x12e8  RemoteRegistry - ok
09:52:10.0518 0x12e8  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
09:52:10.0518 0x12e8  RpcEptMapper - ok
09:52:10.0518 0x12e8  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
09:52:10.0518 0x12e8  RpcLocator - ok
09:52:10.0528 0x12e8  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\Windows\system32\rpcss.dll
09:52:10.0528 0x12e8  RpcSs - ok
09:52:10.0528 0x12e8  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
09:52:10.0528 0x12e8  rspndr - ok
09:52:10.0588 0x12e8  [ 6FA271B6816AFFAEF640808FC51AC8AF ] RTCore64        E:\Program Files (x86)\MSI Afterburner\RTCore64.sys
09:52:10.0588 0x12e8  RTCore64 - ok
09:52:10.0588 0x12e8  [ C20F64FCD5E2B40310A1774495877ACD ] RTHDMIAzAudService C:\Windows\system32\drivers\RtHDMIVX.sys
09:52:10.0588 0x12e8  RTHDMIAzAudService - ok
09:52:10.0598 0x12e8  [ 1BE36AB59242A109697870F16A8E0EF8 ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
09:52:10.0598 0x12e8  RTL8167 - ok
09:52:10.0598 0x12e8  [ 2B38C905492F36FE42B59DA52D6B4EB7 ] RtNdPt60        C:\Windows\system32\DRIVERS\RtNdPt60.sys
09:52:10.0598 0x12e8  RtNdPt60 - ok
09:52:10.0608 0x12e8  [ 8DF706A5A12A4832A3291A1FF26A7CC1 ] RTTEAMPT        C:\Windows\system32\DRIVERS\RtTeam60.sys
09:52:10.0608 0x12e8  RTTEAMPT - ok
09:52:10.0608 0x12e8  [ ED0624ED83121E1BC141F49B1316CAA0 ] RTVLANPT        C:\Windows\system32\DRIVERS\RtVlan620.sys
09:52:10.0608 0x12e8  RTVLANPT - ok
09:52:10.0608 0x12e8  [ 248ABD858FF7DCC966E5A54529DDD225 ] SaiH075C        C:\Windows\system32\DRIVERS\SaiH075C.sys
09:52:10.0618 0x12e8  SaiH075C - ok
09:52:10.0618 0x12e8  [ 296D0CC623EEB6D2B9800AD421F9116A ] SaiMini         C:\Windows\system32\DRIVERS\SaiMini.sys
09:52:10.0628 0x12e8  SaiMini - ok
09:52:10.0628 0x12e8  [ 6A77D63B566DF14DA0E7DD0D2C594EF7 ] SaiNtBus        C:\Windows\system32\drivers\SaiBus.sys
09:52:10.0628 0x12e8  SaiNtBus - ok
09:52:10.0628 0x12e8  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs           C:\Windows\system32\lsass.exe
09:52:10.0638 0x12e8  SamSs - ok
09:52:10.0638 0x12e8  SANDRA - ok
09:52:10.0638 0x12e8  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
09:52:10.0638 0x12e8  sbp2port - ok
09:52:10.0638 0x12e8  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
09:52:10.0638 0x12e8  SCardSvr - ok
09:52:10.0648 0x12e8  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
09:52:10.0648 0x12e8  scfilter - ok
09:52:10.0648 0x12e8  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\Windows\system32\schedsvc.dll
09:52:10.0658 0x12e8  Schedule - ok
09:52:10.0658 0x12e8  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\Windows\System32\certprop.dll
09:52:10.0658 0x12e8  SCPolicySvc - ok
09:52:10.0658 0x12e8  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
09:52:10.0658 0x12e8  SDRSVC - ok
09:52:10.0668 0x12e8  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
09:52:10.0668 0x12e8  secdrv - ok
09:52:10.0668 0x12e8  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\Windows\system32\seclogon.dll
09:52:10.0668 0x12e8  seclogon - ok
09:52:10.0668 0x12e8  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\System32\sens.dll
09:52:10.0668 0x12e8  SENS - ok
09:52:10.0668 0x12e8  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
09:52:10.0668 0x12e8  SensrSvc - ok
09:52:10.0668 0x12e8  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
09:52:10.0678 0x12e8  Serenum - ok
09:52:10.0678 0x12e8  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\DRIVERS\serial.sys
09:52:10.0678 0x12e8  Serial - ok
09:52:10.0678 0x12e8  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
09:52:10.0678 0x12e8  sermouse - ok
09:52:10.0678 0x12e8  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\Windows\system32\sessenv.dll
09:52:10.0678 0x12e8  SessionEnv - ok
09:52:10.0688 0x12e8  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
09:52:10.0688 0x12e8  sffdisk - ok
09:52:10.0688 0x12e8  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
09:52:10.0688 0x12e8  sffp_mmc - ok
09:52:10.0688 0x12e8  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
09:52:10.0688 0x12e8  sffp_sd - ok
09:52:10.0688 0x12e8  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
09:52:10.0688 0x12e8  sfloppy - ok
09:52:10.0688 0x12e8  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll
09:52:10.0698 0x12e8  SharedAccess - ok
09:52:10.0698 0x12e8  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
09:52:10.0698 0x12e8  ShellHWDetection - ok
09:52:10.0698 0x12e8  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
09:52:10.0698 0x12e8  SiSRaid2 - ok
09:52:10.0708 0x12e8  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
09:52:10.0708 0x12e8  SiSRaid4 - ok
09:52:10.0708 0x12e8  [ C9AF4C01DE16090C849C5BECDB7FCCEE ] SIVDRIVER       C:\Windows\system32\Drivers\SIVX64.sys
09:52:10.0718 0x12e8  SIVDRIVER - ok
09:52:10.0718 0x12e8  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
09:52:10.0718 0x12e8  Smb - ok
09:52:10.0718 0x12e8  [ 3DA591BBAB178A3152B8685DC43B20CD ] smbusp          C:\Windows\system32\DRIVERS\intelsmb.sys
09:52:10.0718 0x12e8  smbusp - ok
09:52:10.0728 0x12e8  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
09:52:10.0728 0x12e8  SNMPTRAP - ok
09:52:10.0728 0x12e8  [ 12583AF6CBE0050651EAF2723B3AD7B3 ] speedfan        C:\Windows\syswow64\speedfan.sys
09:52:10.0728 0x12e8  speedfan - ok
09:52:10.0738 0x12e8  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
09:52:10.0738 0x12e8  spldr - ok
09:52:10.0738 0x12e8  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler         C:\Windows\System32\spoolsv.exe
09:52:10.0738 0x12e8  Spooler - ok
09:52:10.0758 0x12e8  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\Windows\system32\sppsvc.exe
09:52:10.0768 0x12e8  sppsvc - ok
09:52:10.0778 0x12e8  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
09:52:10.0778 0x12e8  sppuinotify - ok
09:52:10.0778 0x12e8  [ 51DE15CA5C05BCA46D8B110CD00A02FB ] sptd            C:\Windows\system32\Drivers\sptd.sys
09:52:10.0778 0x12e8  Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: 51DE15CA5C05BCA46D8B110CD00A02FB
09:52:10.0778 0x12e8  sptd ( LockedFile.Multi.Generic ) - warning
09:52:10.0778 0x12e8  sptd - detected LockedFile.Multi.Generic (1)
09:52:10.0788 0x12e8  [ 3F1292E8ABF33070BF5A3838D85DF121 ] SQLWriter       C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
09:52:10.0788 0x12e8  SQLWriter - ok
09:52:10.0788 0x12e8  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\Windows\system32\DRIVERS\srv.sys
09:52:10.0788 0x12e8  srv - ok
09:52:10.0798 0x12e8  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
09:52:10.0798 0x12e8  srv2 - ok
09:52:10.0798 0x12e8  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
09:52:10.0798 0x12e8  srvnet - ok
09:52:10.0798 0x12e8  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
09:52:10.0808 0x12e8  SSDPSRV - ok
09:52:10.0808 0x12e8  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
09:52:10.0808 0x12e8  SstpSvc - ok
09:52:10.0808 0x12e8  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
09:52:10.0808 0x12e8  stexstor - ok
09:52:10.0808 0x12e8  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\Windows\System32\wiaservc.dll
09:52:10.0818 0x12e8  stisvc - ok
09:52:10.0818 0x12e8  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\drivers\swenum.sys
09:52:10.0818 0x12e8  swenum - ok
09:52:10.0818 0x12e8  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
09:52:10.0818 0x12e8  swprv - ok
09:52:10.0838 0x12e8  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\Windows\system32\sysmain.dll
09:52:10.0838 0x12e8  SysMain - ok
09:52:10.0838 0x12e8  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
09:52:10.0838 0x12e8  TabletInputService - ok
09:52:10.0848 0x12e8  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\Windows\System32\tapisrv.dll
09:52:10.0848 0x12e8  TapiSrv - ok
09:52:10.0848 0x12e8  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
09:52:10.0848 0x12e8  TBS - ok
09:52:10.0858 0x12e8  [ DB74544B75566C974815E79A62433F29 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
09:52:10.0868 0x12e8  Tcpip - ok
09:52:10.0878 0x12e8  [ DB74544B75566C974815E79A62433F29 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
09:52:10.0878 0x12e8  TCPIP6 - ok
09:52:10.0878 0x12e8  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
09:52:10.0878 0x12e8  tcpipreg - ok
09:52:10.0888 0x12e8  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
09:52:10.0888 0x12e8  TDPIPE - ok
09:52:10.0888 0x12e8  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
09:52:10.0888 0x12e8  TDTCP - ok
09:52:10.0888 0x12e8  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
09:52:10.0888 0x12e8  tdx - ok
09:52:10.0888 0x12e8  [ 8DF706A5A12A4832A3291A1FF26A7CC1 ] TEAM            C:\Windows\system32\DRIVERS\RtTeam60.sys
09:52:10.0888 0x12e8  TEAM - ok
09:52:10.0888 0x12e8  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\Windows\system32\drivers\termdd.sys
09:52:10.0888 0x12e8  TermDD - ok
09:52:10.0898 0x12e8  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\Windows\System32\termsrv.dll
09:52:10.0898 0x12e8  TermService - ok
09:52:10.0898 0x12e8  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
09:52:10.0898 0x12e8  Themes - ok
09:52:10.0908 0x12e8  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
09:52:10.0908 0x12e8  THREADORDER - ok
09:52:10.0908 0x12e8  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
09:52:10.0908 0x12e8  TrkWks - ok
09:52:10.0908 0x12e8  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
09:52:10.0908 0x12e8  TrustedInstaller - ok
09:52:10.0918 0x12e8  [ 4CE278FC9671BA81A138D70823FCAA09 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
09:52:10.0918 0x12e8  tssecsrv - ok
09:52:10.0918 0x12e8  [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
09:52:10.0918 0x12e8  TsUsbFlt - ok
09:52:10.0918 0x12e8  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
09:52:10.0918 0x12e8  tunnel - ok
09:52:10.0918 0x12e8  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
09:52:10.0918 0x12e8  uagp35 - ok
09:52:10.0928 0x12e8  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
09:52:10.0928 0x12e8  udfs - ok
09:52:10.0928 0x12e8  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
09:52:10.0928 0x12e8  UI0Detect - ok
09:52:10.0928 0x12e8  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
09:52:10.0938 0x12e8  uliagpkx - ok
09:52:10.0938 0x12e8  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
09:52:10.0938 0x12e8  umbus - ok
09:52:10.0938 0x12e8  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
09:52:10.0938 0x12e8  UmPass - ok
09:52:10.0938 0x12e8  [ 67A95B9D129ED5399E7965CD09CF30E7 ] UMVPFSrv        C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
09:52:10.0948 0x12e8  UMVPFSrv - ok
09:52:10.0948 0x12e8  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
09:52:10.0948 0x12e8  upnphost - ok
09:52:10.0948 0x12e8  [ AA33FC47ED58C34E6E9261E4F850B7EB ] USBAAPL64       C:\Windows\system32\Drivers\usbaapl64.sys
09:52:10.0948 0x12e8  USBAAPL64 - ok
09:52:10.0958 0x12e8  [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
09:52:10.0958 0x12e8  usbaudio - ok
09:52:10.0958 0x12e8  [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
09:52:10.0958 0x12e8  usbccgp - ok
09:52:10.0958 0x12e8  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
09:52:10.0958 0x12e8  usbcir - ok
09:52:10.0958 0x12e8  [ C025055FE7B87701EB042095DF1A2D7B ] usbehci         C:\Windows\system32\drivers\usbehci.sys
09:52:10.0958 0x12e8  usbehci - ok
09:52:10.0968 0x12e8  [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
09:52:10.0968 0x12e8  usbhub - ok
09:52:10.0968 0x12e8  [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
09:52:10.0968 0x12e8  usbohci - ok
09:52:10.0968 0x12e8  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
09:52:10.0968 0x12e8  usbprint - ok
09:52:10.0978 0x12e8  [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
09:52:10.0978 0x12e8  USBSTOR - ok
09:52:10.0978 0x12e8  [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
09:52:10.0978 0x12e8  usbuhci - ok
09:52:10.0978 0x12e8  [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo        C:\Windows\system32\Drivers\usbvideo.sys
09:52:10.0978 0x12e8  usbvideo - ok
09:52:10.0988 0x12e8  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
09:52:10.0988 0x12e8  UxSms - ok
09:52:10.0988 0x12e8  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\Windows\system32\lsass.exe
09:52:10.0988 0x12e8  VaultSvc - ok
09:52:10.0988 0x12e8  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
09:52:10.0988 0x12e8  vdrvroot - ok
09:52:10.0988 0x12e8  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\Windows\System32\vds.exe
09:52:10.0998 0x12e8  vds - ok
09:52:10.0998 0x12e8  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
09:52:10.0998 0x12e8  vga - ok
09:52:10.0998 0x12e8  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
09:52:10.0998 0x12e8  VgaSave - ok
09:52:10.0998 0x12e8  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
09:52:10.0998 0x12e8  vhdmp - ok
09:52:11.0008 0x12e8  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\drivers\viaide.sys
09:52:11.0008 0x12e8  viaide - ok
09:52:11.0008 0x12e8  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
09:52:11.0008 0x12e8  volmgr - ok
09:52:11.0008 0x12e8  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
09:52:11.0008 0x12e8  volmgrx - ok
09:52:11.0018 0x12e8  [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
09:52:11.0018 0x12e8  volsnap - ok
09:52:11.0018 0x12e8  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
09:52:11.0018 0x12e8  vsmraid - ok
09:52:11.0028 0x12e8  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\Windows\system32\vssvc.exe
09:52:11.0038 0x12e8  VSS - ok
09:52:11.0038 0x12e8  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
09:52:11.0038 0x12e8  vwifibus - ok
09:52:11.0038 0x12e8  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
09:52:11.0038 0x12e8  W32Time - ok
09:52:11.0038 0x12e8  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
09:52:11.0048 0x12e8  WacomPen - ok
09:52:11.0048 0x12e8  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
09:52:11.0048 0x12e8  WANARP - ok
09:52:11.0048 0x12e8  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
09:52:11.0048 0x12e8  Wanarpv6 - ok
09:52:11.0058 0x12e8  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
09:52:11.0058 0x12e8  WatAdminSvc - ok
09:52:11.0068 0x12e8  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\Windows\system32\wbengine.exe
09:52:11.0078 0x12e8  wbengine - ok
09:52:11.0078 0x12e8  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
09:52:11.0078 0x12e8  WbioSrvc - ok
09:52:11.0078 0x12e8  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\Windows\System32\wcncsvc.dll
09:52:11.0088 0x12e8  wcncsvc - ok
09:52:11.0088 0x12e8  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
09:52:11.0088 0x12e8  WcsPlugInService - ok
09:52:11.0088 0x12e8  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\DRIVERS\wd.sys
09:52:11.0088 0x12e8  Wd - ok
09:52:11.0098 0x12e8  [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
09:52:11.0098 0x12e8  Wdf01000 - ok
09:52:11.0098 0x12e8  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
09:52:11.0098 0x12e8  WdiServiceHost - ok
09:52:11.0098 0x12e8  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
09:52:11.0098 0x12e8  WdiSystemHost - ok
09:52:11.0108 0x12e8  [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient       C:\Windows\System32\webclnt.dll
09:52:11.0108 0x12e8  WebClient - ok
09:52:11.0108 0x12e8  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
09:52:11.0108 0x12e8  Wecsvc - ok
09:52:11.0108 0x12e8  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
09:52:11.0108 0x12e8  wercplsupport - ok
09:52:11.0118 0x12e8  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
09:52:11.0118 0x12e8  WerSvc - ok
09:52:11.0118 0x12e8  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
09:52:11.0118 0x12e8  WfpLwf - ok
09:52:11.0118 0x12e8  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
09:52:11.0118 0x12e8  WIMMount - ok
09:52:11.0118 0x12e8  WinDefend - ok
09:52:11.0118 0x12e8  WinHttpAutoProxySvc - ok
09:52:11.0128 0x12e8  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
09:52:11.0128 0x12e8  Winmgmt - ok
09:52:11.0138 0x12e8  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\Windows\system32\WsmSvc.dll
09:52:11.0148 0x12e8  WinRM - ok
09:52:11.0148 0x12e8  [ FE88B288356E7B47B74B13372ADD906D ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
09:52:11.0158 0x12e8  WinUsb - ok
09:52:11.0158 0x12e8  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
09:52:11.0158 0x12e8  Wlansvc - ok
09:52:11.0178 0x12e8  [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
09:52:11.0188 0x12e8  wlidsvc - ok
09:52:11.0188 0x12e8  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
09:52:11.0188 0x12e8  WmiAcpi - ok
09:52:11.0188 0x12e8  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
09:52:11.0188 0x12e8  wmiApSrv - ok
09:52:11.0188 0x12e8  WMPNetworkSvc - ok
09:52:11.0188 0x12e8  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
09:52:11.0198 0x12e8  WPCSvc - ok
09:52:11.0198 0x12e8  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
09:52:11.0198 0x12e8  WPDBusEnum - ok
09:52:11.0198 0x12e8  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
09:52:11.0198 0x12e8  ws2ifsl - ok
09:52:11.0198 0x12e8  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\Windows\System32\wscsvc.dll
09:52:11.0198 0x12e8  wscsvc - ok
09:52:11.0198 0x12e8  WSearch - ok
09:52:11.0218 0x12e8  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
09:52:11.0228 0x12e8  wuauserv - ok
09:52:11.0228 0x12e8  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
09:52:11.0228 0x12e8  WudfPf - ok
09:52:11.0228 0x12e8  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
09:52:11.0228 0x12e8  WUDFRd - ok
09:52:11.0238 0x12e8  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
09:52:11.0238 0x12e8  wudfsvc - ok
09:52:11.0238 0x12e8  [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc         C:\Windows\System32\wwansvc.dll
09:52:11.0238 0x12e8  WwanSvc - ok
09:52:11.0238 0x12e8  [ 876F0C41035C04BA7A44EC0418408F69 ] XTUService      C:\Program Files (x86)\Common Files\Intel\Intel Extreme Tuning Utility\PerfTuneService.exe
09:52:11.0238 0x12e8  XTUService - ok
09:52:11.0298 0x12e8  [ 1870A74EE2901CA09FFBFE79A5EE0E94 ] {329F96B6-DF1E-4328-BFDA-39EA953C1312} E:\Program Files (x86)\CyberLink\PowerDVD11\PowerDVD11\Common\NavFilter\000.fcl
09:52:11.0378 0x12e8  {329F96B6-DF1E-4328-BFDA-39EA953C1312} - ok
09:52:11.0378 0x12e8  ================ Scan global ===============================
09:52:11.0378 0x12e8  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
09:52:11.0388 0x12e8  [ 88EDD0B34EED542745931E581AD21A32 ] C:\Windows\system32\winsrv.dll
09:52:11.0388 0x12e8  [ 88EDD0B34EED542745931E581AD21A32 ] C:\Windows\system32\winsrv.dll
09:52:11.0388 0x12e8  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
09:52:11.0388 0x12e8  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
09:52:11.0388 0x12e8  [Global] - ok
09:52:11.0398 0x12e8  ================ Scan MBR ==================================
09:52:11.0398 0x12e8  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
09:52:11.0408 0x12e8  \Device\Harddisk0\DR0 - ok
09:52:11.0408 0x12e8  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
09:52:11.0418 0x12e8  \Device\Harddisk1\DR1 - ok
09:52:11.0418 0x12e8  ================ Scan VBR ==================================
09:52:11.0418 0x12e8  [ B897D13EA4A252D21E9F894A9F50D1A7 ] \Device\Harddisk0\DR0\Partition1
09:52:11.0418 0x12e8  \Device\Harddisk0\DR0\Partition1 - ok
09:52:11.0418 0x12e8  [ BF49E25F90D1F763036AC821603A31CC ] \Device\Harddisk0\DR0\Partition2
09:52:11.0418 0x12e8  \Device\Harddisk0\DR0\Partition2 - ok
09:52:11.0418 0x12e8  [ 794FDAA0E618DC1386BC94F5A64EDFC2 ] \Device\Harddisk1\DR1\Partition1
09:52:11.0418 0x12e8  \Device\Harddisk1\DR1\Partition1 - ok
09:52:11.0418 0x12e8  ============================================================
09:52:11.0418 0x12e8  Scan finished
09:52:11.0418 0x12e8  ============================================================
09:52:11.0418 0x03a8  Detected object count: 2
09:52:11.0418 0x03a8  Actual detected object count: 2
09:52:24.0498 0x03a8  DRIVER_B ( ForgedFile.Multi.Generic ) - skipped by user
09:52:24.0498 0x03a8  DRIVER_B ( ForgedFile.Multi.Generic ) - User select action: Skip
09:52:24.0498 0x03a8  sptd ( LockedFile.Multi.Generic ) - skipped by user
09:52:24.0498 0x03a8  sptd ( LockedFile.Multi.Generic ) - User select action: Skip



#5 krwynn

krwynn
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:06:36 PM

Posted 22 September 2013 - 01:57 PM

Won't let me post the minitoolbox log. Running ESET now.



#6 krwynn

krwynn
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:06:36 PM

Posted 22 September 2013 - 07:18 PM

ESET. No long was generated.

 

ESET_zps94374384.jpg



#7 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,035 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:06:36 PM

Posted 22 September 2013 - 08:15 PM

Judging from your posting difficulties and your issue I think we need to get a deeper look for this malware as the tools we use in this section are not strong enough. Please follow this Preparation Guide, doing steps 6,7 and 8, and post in a new topic.
Let me know if all went well.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#8 krwynn

krwynn
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:06:36 PM

Posted 22 September 2013 - 10:40 PM

Judging from your posting difficulties and your issue I think we need to get a deeper look for this malware as the tools we use in this section are not strong enough. Please follow this Preparation Guide, doing steps 6,7 and 8, and post in a new topic.
Let me know if all went well.

 

Thank you. Follow up posted here:

http://www.bleepingcomputer.com/forums/t/508668/might-be-infected-dds-logs-inside/



#9 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,035 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:06:36 PM

Posted 23 September 2013 - 01:49 PM

Thank You!
 
Now that your log is properly posted, you should NOT make further changes to your computer (install/uninstall programs, use special fix tools, delete files, edit the registry, etc) unless advised by a Malware Removal Team member, nor should you continue to ask for help elsewhere. Doing so can result in system changes which may not show it the log you already posted. Further, any modifications you make on your own may cause confusion for the helper assisting you and could complicate the malware removal process which would extend the time it takes to clean your computer.
From this point on the Malware Removal Team should be the only members that you take advice from, until they have verified your log as clean.
Please be patient. It may take a while to get a response because the Malware Removal Team members are very busy working logs posted before yours. They are volunteers who will help you out as soon as possible. Once you have made your post and are waiting, please DO NOT make another reply until it has been responded to by a member of the Malware Removal Team. Generally the staff checks the forum for postings that have 0 replies as this makes it easier for them to identify those who have not been helped. If you post another response there will be 1 reply. A team member, looking for a new log to work may assume another MRL Team member is already assisting you and not open the thread to respond.
The current wait time is 1 - 2 days and ALL logs are answered.
If HelpBot replies to your topic, PLEASE follow Step One so it will report your topic to the team members.
To avoid confusion, I am closing this topic.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users