Jump to content

Search the Community

Showing results for tags 'alureon'.

  • Search By Tags

    Type tags separated by commas.
  • Search By Author

Content Type


Forums

  • Announcements
    • Malwarebytes News
    • Beta Testing Program
  • Malware Removal Help
    • Windows Malware Removal Help & Support
    • Mac Malware Removal Help & Support
    • Mobile Malware Removal Help & Support
    • Malware Removal Self-Help Guides
  • Malwarebytes for Home Support
    • Malwarebytes for Windows Support Forum
    • Malwarebytes for Mac Support Forum
    • Malwarebytes for Android Support Forum
    • Malwarebytes for iOS Support
    • Malwarebytes Privacy
    • Malwarebytes Browser Guard
    • False Positives
    • Comments and Suggestions
  • Malwarebytes for Business Support
    • Malwarebytes Endpoint Protection
    • Malwarebytes Incident Response (includes Breach Remediation)
    • Malwarebytes Endpoint Security
    • Malwarebytes Business Products Comments and Suggestions
  • Malwarebytes Tools and Other Products
    • Malwarebytes AdwCleaner
    • Malwarebytes Junkware Removal Tool Support
    • Malwarebytes Anti-Rootkit BETA Support
    • Malwarebytes Techbench USB (Legacy)
    • Malwarebytes Secure Backup discontinued
    • Other Tools
    • Malwarebytes Tools Comments and Suggestions
  • General Computer Help and Security Updates
    • BSOD, Crashes, Kernel Debugging
    • General Windows PC Help
  • Research Center
    • Newest Rogue-Ransomware Threats
    • Newest Malware Threats
    • Newest Mobile Threats
    • Newest IP or URL Threats
    • Newest Mac Threats
    • Report Scam Phone Numbers
  • General
    • General Chat
    • Forums Announcements & Feedback

Find results in...

Find results that contain...


Date Created

  • Start

    End


Last Updated

  • Start

    End


Filter by number of...

Joined

  • Start

    End


Group


AIM


MSN


Website URL


ICQ


Yahoo


Jabber


Location


Interests

Found 6 results

  1. I've been fighting with this thing the past few days and I know that if I don't do something soon it is probably going to get worse but I don't feel like taking my laptop somewhere unless I have to so any help I can get on here would be awesome! Anyway, I have an Asus G74 that has been clean just until a few days ago when Microsoft Security Essentials picked up Virus:Win64/Alureon.gen!A. It's recommendation was of course to use their windows defender offline but I can't get my laptop to boot from any of the multiple usb's or the cd I made, and I have doubts as to whether it would work or not either. I'm sure it would help if I zipped some log files on here but I don't really have any idea what or from where lol (I'm hardware savvy but not when it comes to software or the inner workings of windows. So I guess I need some help with even the first steps...
  2. Hi everyone, I hope someone can help, my laptop had this Trojan:DOS/alureon.E on it. I had avast installed and it always found the trojan but could never remove it after numerous restart attempts. Eventually my laptop (windows vista) gave up on me but yesterday I had someone come and use a boot disk so I could retrieve all my files and documents onto my external hard drive, which we did, he then factory reset my laptop which I was hoping would eliminate this trojan. My laptop now seems to be working fine. Unfortunately the infected file must still be on my hard drive as now Microsoft Security Essentials is now finding this trojan again. Now I'm in a loop of MSE finding the infected files, removing them, asking me to restart, finding them again etc etc.. I have run the bootrec.exe commands which said they were successful but I would like to know how I could get rid of this completely!! I obviously need to removed the dodgy files from my external hard drive, but how do I get it of my laptop? Any help would be much appreciated and please bear with me as although I know a little about computers, I am nowhere near an expert! Thanks so much
  3. I using the steps in this thread except that I am in safe mode because I will BSOD in normal mode: http://forums.malwarebytes.org/index.php?showtopic=116572 dds.txt attach.txt Here is my TDSS skip log 15:28:17.0947 0924 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35 15:28:19.0959 0924 ============================================================ 15:28:19.0959 0924 Current date / time: 2012/12/09 15:28:19.0959 15:28:19.0959 0924 SystemInfo: 15:28:19.0959 0924 15:28:19.0959 0924 OS Version: 6.1.7601 ServicePack: 1.0 15:28:19.0959 0924 Product type: Workstation 15:28:19.0959 0924 ComputerName: JSOURATHA-PC 15:28:19.0960 0924 UserName: Jsouratha 15:28:19.0960 0924 Windows directory: C:\Windows 15:28:19.0960 0924 System windows directory: C:\Windows 15:28:19.0960 0924 Running under WOW64 15:28:19.0960 0924 Processor architecture: Intel x64 15:28:19.0960 0924 Number of processors: 2 15:28:19.0960 0924 Page size: 0x1000 15:28:19.0960 0924 Boot type: Safe boot with network 15:28:19.0960 0924 ============================================================ 15:28:21.0026 0924 Drive \Device\Harddisk0\DR0 - Size: 0x950B056000 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040 15:28:21.0029 0924 Drive \Device\Harddisk1\DR1 - Size: 0xEF300000 (3.74 Gb), SectorSize: 0x200, Cylinders: 0x1E7, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W' 15:28:21.0040 0924 ============================================================ 15:28:21.0040 0924 \Device\Harddisk0\DR0: 15:28:21.0041 0924 MBR partitions: 15:28:21.0041 0924 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x14000, BlocksNum 0x1D4C000 15:28:21.0041 0924 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1D60000, BlocksNum 0x48AF7AB0 15:28:21.0041 0924 \Device\Harddisk1\DR1: 15:28:21.0041 0924 MBR partitions: 15:28:21.0041 0924 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x20, BlocksNum 0x7797E0 15:28:21.0041 0924 ============================================================ 15:28:21.0147 0924 C: <-> \Device\Harddisk0\DR0\Partition2 15:28:21.0147 0924 ============================================================ 15:28:21.0147 0924 Initialize success 15:28:21.0147 0924 ============================================================ 15:28:22.0971 2044 ============================================================ 15:28:22.0971 2044 Scan started 15:28:22.0971 2044 Mode: Manual; 15:28:22.0971 2044 ============================================================ 15:28:26.0628 2044 ================ Scan system memory ======================== 15:28:26.0628 2044 System memory - ok 15:28:26.0632 2044 ================ Scan services ============================= 15:28:27.0060 2044 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys 15:28:27.0063 2044 1394ohci - ok 15:28:27.0094 2044 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys 15:28:27.0097 2044 ACPI - ok 15:28:27.0142 2044 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys 15:28:27.0143 2044 AcpiPmi - ok 15:28:27.0336 2044 [ 0CB0AA071C7B86A64F361DCFDF357329 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe 15:28:27.0339 2044 AdobeFlashPlayerUpdateSvc - ok 15:28:27.0396 2044 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys 15:28:27.0412 2044 adp94xx - ok 15:28:27.0467 2044 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys 15:28:27.0471 2044 adpahci - ok 15:28:27.0513 2044 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys 15:28:27.0515 2044 adpu320 - ok 15:28:27.0568 2044 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll 15:28:27.0569 2044 AeLookupSvc - ok 15:28:27.0662 2044 [ 3AC22A3DFA8A050E35F0E3CD99D0CDF2 ] AERTFilters C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe 15:28:27.0664 2044 AERTFilters - ok 15:28:27.0723 2044 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys 15:28:27.0742 2044 AFD - ok 15:28:27.0800 2044 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys 15:28:27.0801 2044 agp440 - ok 15:28:27.0814 2044 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe 15:28:27.0816 2044 ALG - ok 15:28:27.0833 2044 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys 15:28:27.0834 2044 aliide - ok 15:28:27.0845 2044 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys 15:28:27.0846 2044 amdide - ok 15:28:27.0875 2044 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys 15:28:27.0877 2044 AmdK8 - ok 15:28:27.0888 2044 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys 15:28:27.0889 2044 AmdPPM - ok 15:28:27.0942 2044 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys 15:28:27.0954 2044 amdsata - ok 15:28:28.0001 2044 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys 15:28:28.0004 2044 amdsbs - ok 15:28:28.0032 2044 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys 15:28:28.0033 2044 amdxata - ok 15:28:28.0073 2044 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys 15:28:28.0074 2044 AppID - ok 15:28:28.0114 2044 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll 15:28:28.0115 2044 AppIDSvc - ok 15:28:28.0145 2044 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll 15:28:28.0147 2044 Appinfo - ok 15:28:28.0167 2044 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys 15:28:28.0168 2044 arc - ok 15:28:28.0188 2044 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys 15:28:28.0189 2044 arcsas - ok 15:28:28.0225 2044 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys 15:28:28.0231 2044 AsyncMac - ok 15:28:28.0297 2044 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys 15:28:28.0297 2044 atapi - ok 15:28:28.0364 2044 [ FC0E8778C000291CAF60EB88C011E931 ] atksgt C:\Windows\system32\DRIVERS\atksgt.sys 15:28:28.0368 2044 atksgt - ok 15:28:28.0407 2044 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll 15:28:28.0424 2044 AudioEndpointBuilder - ok 15:28:28.0447 2044 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll 15:28:28.0453 2044 AudioSrv - ok 15:28:28.0501 2044 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll 15:28:28.0503 2044 AxInstSV - ok 15:28:28.0535 2044 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys 15:28:28.0540 2044 b06bdrv - ok 15:28:28.0591 2044 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys 15:28:28.0595 2044 b57nd60a - ok 15:28:28.0625 2044 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll 15:28:28.0627 2044 BDESVC - ok 15:28:28.0674 2044 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys 15:28:28.0675 2044 Beep - ok 15:28:28.0730 2044 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll 15:28:28.0747 2044 BFE - ok 15:28:28.0781 2044 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll 15:28:28.0798 2044 BITS - ok 15:28:28.0827 2044 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys 15:28:28.0828 2044 blbdrive - ok 15:28:28.0863 2044 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys 15:28:28.0865 2044 bowser - ok 15:28:28.0877 2044 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys 15:28:28.0878 2044 BrFiltLo - ok 15:28:28.0892 2044 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys 15:28:28.0893 2044 BrFiltUp - ok 15:28:28.0926 2044 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll 15:28:28.0928 2044 Browser - ok 15:28:28.0948 2044 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys 15:28:28.0973 2044 Brserid - ok 15:28:28.0996 2044 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys 15:28:28.0996 2044 BrSerWdm - ok 15:28:29.0011 2044 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys 15:28:29.0012 2044 BrUsbMdm - ok 15:28:29.0021 2044 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys 15:28:29.0021 2044 BrUsbSer - ok 15:28:29.0040 2044 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys 15:28:29.0041 2044 BTHMODEM - ok 15:28:29.0059 2044 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll 15:28:29.0060 2044 bthserv - ok 15:28:29.0080 2044 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys 15:28:29.0081 2044 cdfs - ok 15:28:29.0120 2044 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys 15:28:29.0123 2044 cdrom - ok 15:28:29.0147 2044 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll 15:28:29.0164 2044 CertPropSvc - ok 15:28:29.0189 2044 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys 15:28:29.0190 2044 circlass - ok 15:28:29.0213 2044 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys 15:28:29.0217 2044 CLFS - ok 15:28:29.0275 2044 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe 15:28:29.0286 2044 clr_optimization_v2.0.50727_32 - ok 15:28:29.0340 2044 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe 15:28:29.0342 2044 clr_optimization_v2.0.50727_64 - ok 15:28:29.0418 2044 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe 15:28:29.0567 2044 clr_optimization_v4.0.30319_32 - ok 15:28:29.0613 2044 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe 15:28:29.0616 2044 clr_optimization_v4.0.30319_64 - ok 15:28:29.0656 2044 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys 15:28:29.0657 2044 CmBatt - ok 15:28:29.0692 2044 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys 15:28:29.0693 2044 cmdide - ok 15:28:29.0726 2044 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys 15:28:29.0741 2044 CNG - ok 15:28:29.0771 2044 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys 15:28:29.0772 2044 Compbatt - ok 15:28:29.0821 2044 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys 15:28:29.0822 2044 CompositeBus - ok 15:28:29.0853 2044 COMSysApp - ok 15:28:29.0899 2044 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys 15:28:29.0900 2044 crcdisk - ok 15:28:29.0954 2044 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll 15:28:29.0957 2044 CryptSvc - ok 15:28:30.0012 2044 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll 15:28:30.0020 2044 DcomLaunch - ok 15:28:30.0081 2044 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll 15:28:30.0085 2044 defragsvc - ok 15:28:30.0236 2044 [ 2B9A817DC1BDAD9CE5495099B6A7136A ] Desura Install Service C:\Program Files (x86)\Common Files\Desura\desura_service.exe 15:28:30.0238 2044 Desura Install Service - ok 15:28:30.0280 2044 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys 15:28:30.0294 2044 DfsC - ok 15:28:30.0329 2044 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll 15:28:30.0333 2044 Dhcp - ok 15:28:30.0344 2044 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys 15:28:30.0345 2044 discache - ok 15:28:30.0401 2044 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys 15:28:30.0402 2044 Disk - ok 15:28:30.0433 2044 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll 15:28:30.0436 2044 Dnscache - ok 15:28:30.0519 2044 [ 0840ABBBDF438691EE65A20040635CBE ] DockLoginService C:\Program Files\Dell\DellDock\DockLogin.exe 15:28:30.0521 2044 DockLoginService - ok 15:28:30.0563 2044 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll 15:28:30.0566 2044 dot3svc - ok 15:28:30.0606 2044 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll 15:28:30.0609 2044 DPS - ok 15:28:30.0647 2044 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys 15:28:30.0647 2044 drmkaud - ok 15:28:30.0715 2044 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys 15:28:30.0735 2044 DXGKrnl - ok 15:28:30.0773 2044 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll 15:28:30.0775 2044 EapHost - ok 15:28:30.0896 2044 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys 15:28:30.0947 2044 ebdrv - ok 15:28:30.0988 2044 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe 15:28:30.0995 2044 EFS - ok 15:28:31.0100 2044 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe 15:28:31.0118 2044 ehRecvr - ok 15:28:31.0156 2044 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe 15:28:31.0162 2044 ehSched - ok 15:28:31.0212 2044 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys 15:28:31.0228 2044 elxstor - ok 15:28:31.0393 2044 [ 1E345F2A2D95DA3190596E691CDE9342 ] EPSON_PM_RPCV4_01 C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.EXE 15:28:31.0394 2044 EPSON_PM_RPCV4_01 - ok 15:28:31.0529 2044 EraserUtilDrv11220 - ok 15:28:31.0556 2044 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys 15:28:31.0565 2044 ErrDev - ok 15:28:31.0642 2044 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll 15:28:31.0651 2044 EventSystem - ok 15:28:31.0728 2044 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys 15:28:31.0730 2044 exfat - ok 15:28:31.0754 2044 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys 15:28:31.0757 2044 fastfat - ok 15:28:31.0816 2044 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe 15:28:31.0833 2044 Fax - ok 15:28:31.0883 2044 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys 15:28:31.0896 2044 fdc - ok 15:28:31.0916 2044 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll 15:28:31.0917 2044 fdPHost - ok 15:28:31.0930 2044 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll 15:28:31.0931 2044 FDResPub - ok 15:28:31.0939 2044 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys 15:28:31.0940 2044 FileInfo - ok 15:28:31.0948 2044 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys 15:28:31.0949 2044 Filetrace - ok 15:28:31.0964 2044 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys 15:28:31.0976 2044 flpydisk - ok 15:28:32.0040 2044 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys 15:28:32.0055 2044 FltMgr - ok 15:28:32.0183 2044 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll 15:28:32.0209 2044 FontCache - ok 15:28:32.0279 2044 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe 15:28:32.0280 2044 FontCache3.0.0.0 - ok 15:28:32.0307 2044 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys 15:28:32.0308 2044 FsDepends - ok 15:28:32.0376 2044 [ 6C06701BF1DB05405804D7EB610991CE ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys 15:28:32.0377 2044 fssfltr - ok 15:28:32.0544 2044 [ 4CE9DAC1518FF7E77BD213E6394B9D77 ] fsssvc C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe 15:28:32.0573 2044 fsssvc - ok 15:28:32.0608 2044 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys 15:28:32.0609 2044 Fs_Rec - ok 15:28:32.0670 2044 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys 15:28:32.0672 2044 fvevol - ok 15:28:32.0715 2044 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys 15:28:32.0728 2044 gagp30kx - ok 15:28:32.0830 2044 getPlusHelper - ok 15:28:32.0913 2044 [ D3316F6E3C011435F36E3D6E49B3196C ] GoToAssist C:\Program Files (x86)\Citrix\GoToAssist\514\g2aservice.exe 15:28:32.0914 2044 GoToAssist - ok 15:28:33.0009 2044 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll 15:28:33.0018 2044 gpsvc - ok 15:28:33.0150 2044 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe 15:28:33.0151 2044 gupdate - ok 15:28:33.0173 2044 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe 15:28:33.0174 2044 gupdatem - ok 15:28:33.0246 2044 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe 15:28:33.0258 2044 gusvc - ok 15:28:33.0311 2044 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys 15:28:33.0312 2044 hcw85cir - ok 15:28:33.0368 2044 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys 15:28:33.0440 2044 HDAudBus - ok 15:28:33.0461 2044 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys 15:28:33.0472 2044 HidBatt - ok 15:28:33.0520 2044 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys 15:28:33.0533 2044 HidBth - ok 15:28:33.0550 2044 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys 15:28:33.0551 2044 HidIr - ok 15:28:33.0576 2044 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll 15:28:33.0577 2044 hidserv - ok 15:28:33.0622 2044 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys 15:28:33.0623 2044 HidUsb - ok 15:28:33.0663 2044 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll 15:28:33.0665 2044 hkmsvc - ok 15:28:33.0700 2044 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll 15:28:33.0715 2044 HomeGroupListener - ok 15:28:33.0786 2044 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll 15:28:33.0789 2044 HomeGroupProvider - ok 15:28:33.0853 2044 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys 15:28:33.0856 2044 HpSAMD - ok 15:28:33.0951 2044 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys 15:28:33.0966 2044 HTTP - ok 15:28:34.0028 2044 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys 15:28:34.0029 2044 hwpolicy - ok 15:28:34.0094 2044 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys 15:28:34.0096 2044 i8042prt - ok 15:28:34.0155 2044 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys 15:28:34.0159 2044 iaStorV - ok 15:28:34.0274 2044 [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe 15:28:34.0288 2044 IDriverT - ok 15:28:34.0379 2044 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe 15:28:34.0395 2044 idsvc - ok 15:28:34.0543 2044 [ 24CC43ECDEEFD4C19FBBEE4951B647F1 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys 15:28:34.0685 2044 igfx - ok 15:28:34.0735 2044 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys 15:28:34.0736 2044 iirsp - ok 15:28:34.0922 2044 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll 15:28:34.0931 2044 IKEEXT - ok 15:28:35.0119 2044 [ F2B52C7B1C8E6A4FC4C4564F4A421F23 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys 15:28:35.0146 2044 IntcAzAudAddService - ok 15:28:35.0174 2044 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys 15:28:35.0186 2044 intelide - ok 15:28:35.0223 2044 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys 15:28:35.0224 2044 intelppm - ok 15:28:35.0257 2044 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll 15:28:35.0260 2044 IPBusEnum - ok 15:28:35.0310 2044 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys 15:28:35.0311 2044 IpFilterDriver - ok 15:28:35.0377 2044 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll 15:28:35.0394 2044 iphlpsvc - ok 15:28:35.0441 2044 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys 15:28:35.0443 2044 IPMIDRV - ok 15:28:35.0457 2044 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys 15:28:35.0459 2044 IPNAT - ok 15:28:35.0484 2044 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys 15:28:35.0485 2044 IRENUM - ok 15:28:35.0497 2044 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys 15:28:35.0498 2044 isapnp - ok 15:28:35.0541 2044 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys 15:28:35.0544 2044 iScsiPrt - ok 15:28:35.0586 2044 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys 15:28:35.0587 2044 kbdclass - ok 15:28:35.0614 2044 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys 15:28:35.0615 2044 kbdhid - ok 15:28:35.0639 2044 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe 15:28:35.0640 2044 KeyIso - ok 15:28:35.0706 2044 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys 15:28:35.0707 2044 KSecDD - ok 15:28:35.0761 2044 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys 15:28:35.0770 2044 KSecPkg - ok 15:28:35.0802 2044 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys 15:28:35.0802 2044 ksthunk - ok 15:28:35.0846 2044 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll 15:28:35.0851 2044 KtmRm - ok 15:28:35.0904 2044 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll 15:28:35.0907 2044 LanmanServer - ok 15:28:35.0938 2044 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll 15:28:35.0941 2044 LanmanWorkstation - ok 15:28:35.0986 2044 [ 156AB2E56DC3CA0B582E3362E07CDED7 ] lirsgt C:\Windows\system32\DRIVERS\lirsgt.sys 15:28:35.0987 2044 lirsgt - ok 15:28:36.0024 2044 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys 15:28:36.0025 2044 lltdio - ok 15:28:36.0068 2044 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll 15:28:36.0073 2044 lltdsvc - ok 15:28:36.0090 2044 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll 15:28:36.0092 2044 lmhosts - ok 15:28:36.0132 2044 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys 15:28:36.0133 2044 LSI_FC - ok 15:28:36.0150 2044 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys 15:28:36.0151 2044 LSI_SAS - ok 15:28:36.0162 2044 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys 15:28:36.0163 2044 LSI_SAS2 - ok 15:28:36.0179 2044 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys 15:28:36.0180 2044 LSI_SCSI - ok 15:28:36.0196 2044 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys 15:28:36.0198 2044 luafv - ok 15:28:36.0251 2044 [ A8FE8F2783B2929B56F5370A89356CE9 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys 15:28:36.0251 2044 MBAMProtector - ok 15:28:36.0309 2044 [ 85B16A92B117A5A800032ECD904B86DB ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe 15:28:36.0312 2044 MBAMScheduler - ok 15:28:36.0350 2044 [ 20E2469DB709FC675E655CEAA11BE312 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe 15:28:36.0354 2044 MBAMService - ok 15:28:36.0393 2044 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll 15:28:36.0395 2044 Mcx2Svc - ok 15:28:36.0407 2044 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys 15:28:36.0408 2044 megasas - ok 15:28:36.0424 2044 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys 15:28:36.0428 2044 MegaSR - ok 15:28:36.0584 2044 [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe 15:28:36.0586 2044 Microsoft Office Groove Audit Service - ok 15:28:36.0617 2044 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll 15:28:36.0619 2044 MMCSS - ok 15:28:36.0674 2044 [ 64E4A9DE13B50B945992976E319D27E4 ] MobileAdapter C:\Windows\system32\DRIVERS\qscnusb.sys 15:28:36.0676 2044 MobileAdapter - ok 15:28:36.0688 2044 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys 15:28:36.0701 2044 Modem - ok 15:28:36.0745 2044 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys 15:28:36.0746 2044 monitor - ok 15:28:36.0778 2044 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys 15:28:36.0779 2044 mouclass - ok 15:28:36.0793 2044 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys 15:28:36.0794 2044 mouhid - ok 15:28:36.0823 2044 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys 15:28:36.0834 2044 mountmgr - ok 15:28:36.0947 2044 [ 8C7336950F1E69CDFD811CBBD9CF00A2 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe 15:28:36.0949 2044 MozillaMaintenance - ok 15:28:36.0990 2044 [ 05BF204EC0E82CC4A054DB189C8A3D84 ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys 15:28:36.0992 2044 MpFilter - ok 15:28:37.0009 2044 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys 15:28:37.0011 2044 mpio - ok 15:28:37.0151 2044 [ 0EBB390B7AEEC45EC061D9870A34FD42 ] MpKsl644ff5dd c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{B0246CA0-E893-4334-BD32-92E5FD4BA5C1}\MpKsl644ff5dd.sys 15:28:37.0152 2044 MpKsl644ff5dd - ok 15:28:37.0195 2044 [ 0EBB390B7AEEC45EC061D9870A34FD42 ] MpKsl7bffe9ac c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{B0246CA0-E893-4334-BD32-92E5FD4BA5C1}\MpKsl7bffe9ac.sys 15:28:37.0195 2044 MpKsl7bffe9ac - ok 15:28:37.0210 2044 [ 0EBB390B7AEEC45EC061D9870A34FD42 ] MpKsle81b4be7 c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{B0246CA0-E893-4334-BD32-92E5FD4BA5C1}\MpKsle81b4be7.sys 15:28:37.0210 2044 MpKsle81b4be7 - ok 15:28:37.0250 2044 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys 15:28:37.0252 2044 mpsdrv - ok 15:28:37.0291 2044 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll 15:28:37.0309 2044 MpsSvc - ok 15:28:37.0373 2044 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys 15:28:37.0375 2044 MRxDAV - ok 15:28:37.0411 2044 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys 15:28:37.0413 2044 mrxsmb - ok 15:28:37.0451 2044 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys 15:28:37.0454 2044 mrxsmb10 - ok 15:28:37.0465 2044 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys 15:28:37.0466 2044 mrxsmb20 - ok 15:28:37.0507 2044 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys 15:28:37.0508 2044 msahci - ok 15:28:37.0542 2044 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys 15:28:37.0544 2044 msdsm - ok 15:28:37.0557 2044 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe 15:28:37.0559 2044 MSDTC - ok 15:28:37.0595 2044 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys 15:28:37.0595 2044 Msfs - ok 15:28:37.0625 2044 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys 15:28:37.0625 2044 mshidkmdf - ok 15:28:37.0664 2044 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys 15:28:37.0664 2044 msisadrv - ok 15:28:37.0684 2044 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll 15:28:37.0687 2044 MSiSCSI - ok 15:28:37.0692 2044 msiserver - ok 15:28:37.0734 2044 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys 15:28:37.0734 2044 MSKSSRV - ok 15:28:37.0838 2044 [ CC8E4F72F21340A4D3A3D4DB50313EF5 ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe 15:28:37.0850 2044 MsMpSvc - ok 15:28:37.0885 2044 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys 15:28:37.0886 2044 MSPCLOCK - ok 15:28:37.0896 2044 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys 15:28:37.0897 2044 MSPQM - ok 15:28:37.0944 2044 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys 15:28:37.0948 2044 MsRPC - ok 15:28:37.0981 2044 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys 15:28:37.0981 2044 mssmbios - ok 15:28:37.0992 2044 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys 15:28:37.0993 2044 MSTEE - ok 15:28:38.0006 2044 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys 15:28:38.0007 2044 MTConfig - ok 15:28:38.0046 2044 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys 15:28:38.0047 2044 Mup - ok 15:28:38.0088 2044 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll 15:28:38.0104 2044 napagent - ok 15:28:38.0142 2044 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys 15:28:38.0145 2044 NativeWifiP - ok 15:28:38.0202 2044 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys 15:28:38.0220 2044 NDIS - ok 15:28:38.0268 2044 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys 15:28:38.0269 2044 NdisCap - ok 15:28:38.0295 2044 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys 15:28:38.0296 2044 NdisTapi - ok 15:28:38.0341 2044 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys 15:28:38.0342 2044 Ndisuio - ok 15:28:38.0371 2044 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys 15:28:38.0373 2044 NdisWan - ok 15:28:38.0402 2044 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys 15:28:38.0403 2044 NDProxy - ok 15:28:38.0438 2044 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys 15:28:38.0439 2044 NetBIOS - ok 15:28:38.0476 2044 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys 15:28:38.0479 2044 NetBT - ok 15:28:38.0489 2044 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe 15:28:38.0490 2044 Netlogon - ok 15:28:38.0539 2044 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll 15:28:38.0543 2044 Netman - ok 15:28:38.0571 2044 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll 15:28:38.0578 2044 netprofm - ok 15:28:38.0631 2044 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe 15:28:38.0633 2044 NetTcpPortSharing - ok 15:28:38.0672 2044 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys 15:28:38.0672 2044 nfrd960 - ok 15:28:38.0701 2044 [ 5FF89F20317309D28AC1EDEB0CD1BA72 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys 15:28:38.0703 2044 NisDrv - ok 15:28:38.0761 2044 [ 79E80B10FE8F6662E0C9162A68C43444 ] NisSrv c:\Program Files\Microsoft Security Client\NisSrv.exe 15:28:38.0765 2044 NisSrv - ok 15:28:38.0889 2044 [ 0734398D3D99986BB8006E9BB5EAB1E5 ] NitroReaderDriverReadSpool2 C:\Program Files\Common Files\Nitro PDF\Reader\2.0\NitroPDFReaderDriverService2x64.exe 15:28:38.0893 2044 NitroReaderDriverReadSpool2 - ok 15:28:38.0945 2044 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll 15:28:38.0949 2044 NlaSvc - ok 15:28:39.0006 2044 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys 15:28:39.0007 2044 Npfs - ok 15:28:39.0018 2044 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll 15:28:39.0019 2044 nsi - ok 15:28:39.0088 2044 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys 15:28:39.0089 2044 nsiproxy - ok 15:28:39.0151 2044 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys 15:28:39.0182 2044 Ntfs - ok 15:28:39.0222 2044 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys 15:28:39.0222 2044 Null - ok 15:28:39.0268 2044 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys 15:28:39.0270 2044 nvraid - ok 15:28:39.0317 2044 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys 15:28:39.0319 2044 nvstor - ok 15:28:39.0366 2044 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys 15:28:39.0367 2044 nv_agp - ok 15:28:39.0451 2044 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE 15:28:39.0465 2044 odserv - ok 15:28:39.0497 2044 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys 15:28:39.0498 2044 ohci1394 - ok 15:28:39.0542 2044 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE 15:28:39.0544 2044 ose - ok 15:28:39.0571 2044 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll 15:28:39.0575 2044 p2pimsvc - ok 15:28:39.0607 2044 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll 15:28:39.0613 2044 p2psvc - ok 15:28:39.0626 2044 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys 15:28:39.0628 2044 Parport - ok 15:28:39.0656 2044 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys 15:28:39.0657 2044 partmgr - ok 15:28:39.0667 2044 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll 15:28:39.0670 2044 PcaSvc - ok 15:28:39.0677 2044 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys 15:28:39.0681 2044 pci - ok 15:28:39.0693 2044 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys 15:28:39.0694 2044 pciide - ok 15:28:39.0729 2044 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys 15:28:39.0732 2044 pcmcia - ok 15:28:39.0743 2044 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys 15:28:39.0744 2044 pcw - ok 15:28:39.0760 2044 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys 15:28:39.0777 2044 PEAUTH - ok 15:28:39.0867 2044 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe 15:28:39.0876 2044 PerfHost - ok 15:28:39.0940 2044 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll 15:28:39.0973 2044 pla - ok 15:28:40.0029 2044 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll 15:28:40.0045 2044 PlugPlay - ok 15:28:40.0087 2044 PnkBstrA - ok 15:28:40.0110 2044 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll 15:28:40.0112 2044 PNRPAutoReg - ok 15:28:40.0179 2044 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll 15:28:40.0182 2044 PNRPsvc - ok 15:28:40.0306 2044 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll 15:28:40.0320 2044 PolicyAgent - ok 15:28:40.0346 2044 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll 15:28:40.0350 2044 Power - ok 15:28:40.0402 2044 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys 15:28:40.0403 2044 PptpMiniport - ok 15:28:40.0438 2044 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys 15:28:40.0439 2044 Processor - ok 15:28:40.0475 2044 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll 15:28:40.0479 2044 ProfSvc - ok 15:28:40.0488 2044 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe 15:28:40.0490 2044 ProtectedStorage - ok 15:28:40.0523 2044 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys 15:28:40.0525 2044 Psched - ok 15:28:40.0555 2044 [ 4712CC14E720ECCCC0AA16949D18AAF1 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys 15:28:40.0556 2044 PxHlpa64 - ok 15:28:40.0857 2044 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys 15:28:40.0880 2044 ql2300 - ok 15:28:40.0964 2044 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys 15:28:40.0966 2044 ql40xx - ok 15:28:40.0985 2044 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll 15:28:40.0989 2044 QWAVE - ok 15:28:40.0999 2044 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys 15:28:41.0000 2044 QWAVEdrv - ok 15:28:41.0018 2044 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys 15:28:41.0019 2044 RasAcd - ok 15:28:41.0062 2044 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys 15:28:41.0063 2044 RasAgileVpn - ok 15:28:41.0078 2044 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll 15:28:41.0080 2044 RasAuto - ok 15:28:41.0137 2044 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys 15:28:41.0139 2044 Rasl2tp - ok 15:28:41.0187 2044 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll 15:28:41.0193 2044 RasMan - ok 15:28:41.0220 2044 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys 15:28:41.0221 2044 RasPppoe - ok 15:28:41.0280 2044 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys 15:28:41.0281 2044 RasSstp - ok 15:28:41.0315 2044 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys 15:28:41.0318 2044 rdbss - ok 15:28:41.0333 2044 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys 15:28:41.0334 2044 rdpbus - ok 15:28:41.0347 2044 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys 15:28:41.0348 2044 RDPCDD - ok 15:28:41.0406 2044 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys 15:28:41.0406 2044 RDPENCDD - ok 15:28:41.0417 2044 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys 15:28:41.0418 2044 RDPREFMP - ok 15:28:41.0483 2044 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys 15:28:41.0485 2044 RDPWD - ok 15:28:41.0522 2044 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys 15:28:41.0524 2044 rdyboost - ok 15:28:41.0547 2044 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll 15:28:41.0549 2044 RemoteAccess - ok 15:28:41.0569 2044 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll 15:28:41.0572 2044 RemoteRegistry - ok 15:28:41.0586 2044 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll 15:28:41.0588 2044 RpcEptMapper - ok 15:28:41.0609 2044 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe 15:28:41.0610 2044 RpcLocator - ok 15:28:41.0645 2044 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll 15:28:41.0649 2044 RpcSs - ok 15:28:41.0662 2044 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys 15:28:41.0664 2044 rspndr - ok 15:28:41.0719 2044 [ 4B42BC58294E83A6A92EC8B88C14C4A3 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys 15:28:41.0720 2044 RTL8167 - ok 15:28:41.0730 2044 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe 15:28:41.0731 2044 SamSs - ok 15:28:41.0771 2044 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys 15:28:41.0772 2044 sbp2port - ok 15:28:41.0792 2044 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll 15:28:41.0795 2044 SCardSvr - ok 15:28:41.0831 2044 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys 15:28:41.0832 2044 scfilter - ok 15:28:41.0878 2044 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll 15:28:41.0896 2044 Schedule - ok 15:28:41.0955 2044 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll 15:28:41.0956 2044 SCPolicySvc - ok 15:28:41.0993 2044 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll 15:28:41.0996 2044 SDRSVC - ok 15:28:42.0024 2044 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys 15:28:42.0025 2044 secdrv - ok 15:28:42.0058 2044 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll 15:28:42.0060 2044 seclogon - ok 15:28:42.0086 2044 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll 15:28:42.0089 2044 SENS - ok 15:28:42.0099 2044 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll 15:28:42.0101 2044 SensrSvc - ok 15:28:42.0119 2044 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys 15:28:42.0120 2044 Serenum - ok 15:28:42.0159 2044 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys 15:28:42.0161 2044 Serial - ok 15:28:42.0173 2044 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys 15:28:42.0174 2044 sermouse - ok 15:28:42.0225 2044 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll 15:28:42.0228 2044 SessionEnv - ok 15:28:42.0260 2044 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys 15:28:42.0261 2044 sffdisk - ok 15:28:42.0291 2044 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys 15:28:42.0292 2044 sffp_mmc - ok 15:28:42.0302 2044 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys 15:28:42.0303 2044 sffp_sd - ok 15:28:42.0315 2044 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys 15:28:42.0315 2044 sfloppy - ok 15:28:42.0395 2044 [ 7F475425582163602EF1589C0071E521 ] SftService C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE 15:28:42.0412 2044 SftService - ok 15:28:42.0459 2044 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll 15:28:42.0464 2044 SharedAccess - ok 15:28:42.0510 2044 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll 15:28:42.0515 2044 ShellHWDetection - ok 15:28:42.0551 2044 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys 15:28:42.0552 2044 SiSRaid2 - ok 15:28:42.0566 2044 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys 15:28:42.0567 2044 SiSRaid4 - ok 15:28:42.0701 2044 [ 3740B83AEC21D981065D7E819BD7E878 ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe 15:28:42.0770 2044 Skype C2C Service - ok 15:28:42.0832 2044 [ EA396139541706B4B433641D62EA53CE ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe 15:28:42.0834 2044 SkypeUpdate - ok 15:28:42.0852 2044 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys 15:28:42.0853 2044 Smb - ok 15:28:42.0904 2044 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe 15:28:42.0906 2044 SNMPTRAP - ok 15:28:42.0913 2044 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys 15:28:42.0914 2044 spldr - ok 15:28:42.0973 2044 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe 15:28:42.0995 2044 Spooler - ok 15:28:43.0085 2044 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe 15:28:43.0154 2044 sppsvc - ok 15:28:43.0175 2044 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll 15:28:43.0177 2044 sppuinotify - ok 15:28:43.0219 2044 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys 15:28:43.0235 2044 srv - ok 15:28:43.0277 2044 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys 15:28:43.0282 2044 srv2 - ok 15:28:43.0310 2044 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys 15:28:43.0312 2044 srvnet - ok 15:28:43.0352 2044 [ F4F1E1FF6986FE8914525AF751EA3EAC ] sscdbus C:\Windows\system32\DRIVERS\sscdbus.sys 15:28:43.0354 2044 sscdbus - ok 15:28:43.0387 2044 [ 5447690D2CFE1BDE1BE3A5A5A3E2F796 ] sscdmdfl C:\Windows\system32\DRIVERS\sscdmdfl.sys 15:28:43.0389 2044 sscdmdfl - ok 15:28:43.0431 2044 [ BFDA292053AEB76A0C1D63B2279D5138 ] sscdmdm C:\Windows\system32\DRIVERS\sscdmdm.sys 15:28:43.0433 2044 sscdmdm - ok 15:28:43.0466 2044 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll 15:28:43.0469 2044 SSDPSRV - ok 15:28:43.0480 2044 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll 15:28:43.0483 2044 SstpSvc - ok 15:28:43.0527 2044 Steam Client Service - ok 15:28:43.0555 2044 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys 15:28:43.0556 2044 stexstor - ok 15:28:43.0596 2044 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll 15:28:43.0613 2044 stisvc - ok 15:28:43.0657 2044 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys 15:28:43.0658 2044 swenum - ok 15:28:43.0673 2044 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll 15:28:43.0690 2044 swprv - ok 15:28:43.0755 2044 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll 15:28:43.0784 2044 SysMain - ok 15:28:43.0820 2044 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll 15:28:43.0823 2044 TabletInputService - ok 15:28:43.0878 2044 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll 15:28:43.0896 2044 TapiSrv - ok 15:28:43.0918 2044 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll 15:28:43.0920 2044 TBS - ok 15:28:43.0997 2044 [ 37608401DFDB388CAF66917F6B2D6FB0 ] Tcpip C:\Windows\system32\drivers\tcpip.sys 15:28:44.0025 2044 Tcpip - ok 15:28:44.0076 2044 [ 37608401DFDB388CAF66917F6B2D6FB0 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys 15:28:44.0086 2044 TCPIP6 - ok 15:28:44.0127 2044 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys 15:28:44.0128 2044 tcpipreg - ok 15:28:44.0169 2044 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys 15:28:44.0170 2044 TDPIPE - ok 15:28:44.0199 2044 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys 15:28:44.0200 2044 TDTCP - ok 15:28:44.0245 2044 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys 15:28:44.0247 2044 tdx - ok 15:28:44.0275 2044 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys 15:28:44.0275 2044 TermDD - ok 15:28:44.0334 2044 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll 15:28:44.0351 2044 TermService - ok 15:28:44.0425 2044 [ 48D9D00C2E0E72C3D4F52772C80355F6 ] TFsExDisk C:\Windows\System32\Drivers\TFsExDisk.sys 15:28:44.0426 2044 TFsExDisk - ok 15:28:44.0465 2044 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll 15:28:44.0476 2044 Themes - ok 15:28:44.0508 2044 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll 15:28:44.0509 2044 THREADORDER - ok 15:28:44.0565 2044 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll 15:28:44.0568 2044 TrkWks - ok 15:28:44.0667 2044 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe 15:28:44.0670 2044 TrustedInstaller - ok 15:28:44.0721 2044 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys 15:28:44.0722 2044 tssecsrv - ok 15:28:44.0765 2044 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys 15:28:44.0766 2044 TsUsbFlt - ok 15:28:44.0811 2044 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys 15:28:44.0827 2044 tunnel - ok 15:28:44.0844 2044 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys 15:28:44.0845 2044 uagp35 - ok 15:28:44.0868 2044 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys 15:28:44.0873 2044 udfs - ok 15:28:44.0900 2044 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe 15:28:44.0902 2044 UI0Detect - ok 15:28:44.0939 2044 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys 15:28:44.0940 2044 uliagpkx - ok 15:28:44.0980 2044 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys 15:28:44.0991 2044 umbus - ok 15:28:45.0007 2044 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys 15:28:45.0008 2044 UmPass - ok 15:28:45.0033 2044 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll 15:28:45.0047 2044 upnphost - ok 15:28:45.0091 2044 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys 15:28:45.0093 2044 usbaudio - ok 15:28:45.0130 2044 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys 15:28:45.0132 2044 usbccgp - ok 15:28:45.0152 2044 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys 15:28:45.0153 2044 usbcir - ok 15:28:45.0176 2044 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys 15:28:45.0177 2044 usbehci - ok 15:28:45.0222 2044 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys 15:28:45.0226 2044 usbhub - ok 15:28:45.0255 2044 [ 58E546BBAF87664FC57E0F6081E4F609 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys 15:28:45.0256 2044 usbohci - ok 15:28:45.0284 2044 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys 15:28:45.0285 2044 usbprint - ok 15:28:45.0313 2044 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys 15:28:45.0314 2044 usbscan - ok 15:28:45.0365 2044 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS 15:28:45.0366 2044 USBSTOR - ok 15:28:45.0398 2044 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys 15:28:45.0399 2044 usbuhci - ok 15:28:45.0413 2044 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll 15:28:45.0415 2044 UxSms - ok 15:28:45.0421 2044 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe 15:28:45.0422 2044 VaultSvc - ok 15:28:45.0451 2044 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys 15:28:45.0459 2044 vdrvroot - ok 15:28:45.0519 2044 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe 15:28:45.0536 2044 vds - ok 15:28:45.0567 2044 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys 15:28:45.0568 2044 vga - ok 15:28:45.0579 2044 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys 15:28:45.0580 2044 VgaSave - ok 15:28:45.0660 2044 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys 15:28:45.0664 2044 vhdmp - ok 15:28:45.0696 2044 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys 15:28:45.0696 2044 viaide - ok 15:28:45.0717 2044 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys 15:28:45.0718 2044 volmgr - ok 15:28:45.0753 2044 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys 15:28:45.0757 2044 volmgrx - ok 15:28:45.0780 2044 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys 15:28:45.0784 2044 volsnap - ok 15:28:45.0830 2044 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys 15:28:45.0832 2044 vsmraid - ok 15:28:45.0885 2044 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe 15:28:45.0922 2044 VSS - ok 15:28:45.0938 2044 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys 15:28:45.0939 2044 vwifibus - ok 15:28:45.0979 2044 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll 15:28:45.0996 2044 W32Time - ok 15:28:46.0024 2044 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys 15:28:46.0036 2044 WacomPen - ok 15:28:46.0062 2044 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys 15:28:46.0065 2044 WANARP - ok 15:28:46.0076 2044 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys 15:28:46.0077 2044 Wanarpv6 - ok 15:28:46.0287 2044 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe 15:28:46.0318 2044 WatAdminSvc - ok 15:28:46.0450 2044 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe 15:28:46.0484 2044 wbengine - ok 15:28:46.0523 2044 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll 15:28:46.0541 2044 WbioSrvc - ok 15:28:46.0617 2044 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll 15:28:46.0627 2044 wcncsvc - ok 15:28:46.0640 2044 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll 15:28:46.0642 2044 WcsPlugInService - ok 15:28:46.0654 2044 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys 15:28:46.0655 2044 Wd - ok 15:28:46.0698 2044 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys 15:28:46.0717 2044 Wdf01000 - ok 15:28:46.0741 2044 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll 15:28:46.0748 2044 WdiServiceHost - ok 15:28:46.0765 2044 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll 15:28:46.0766 2044 WdiSystemHost - ok 15:28:46.0815 2044 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll 15:28:46.0820 2044 WebClient - ok 15:28:46.0838 2044 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll 15:28:46.0841 2044 Wecsvc - ok 15:28:46.0857 2044 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll 15:28:46.0860 2044 wercplsupport - ok 15:28:46.0898 2044 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll 15:28:46.0911 2044 WerSvc - ok 15:28:46.0932 2044 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys 15:28:46.0933 2044 WfpLwf - ok 15:28:46.0982 2044 [ B14EF15BD757FA488F9C970EEE9C0D35 ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys 15:28:46.0984 2044 WimFltr - ok 15:28:47.0002 2044 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys 15:28:47.0003 2044 WIMMount - ok 15:28:47.0023 2044 WinDefend - ok 15:28:47.0031 2044 WinHttpAutoProxySvc - ok 15:28:47.0080 2044 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll 15:28:47.0083 2044 Winmgmt - ok 15:28:47.0172 2044 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll 15:28:47.0206 2044 WinRM - ok 15:28:47.0264 2044 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys 15:28:47.0280 2044 WinUsb - ok 15:28:47.0324 2044 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll 15:28:47.0356 2044 Wlansvc - ok 15:28:47.0483 2044 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe 15:28:47.0484 2044 wlcrasvc - ok 15:28:47.0754 2044 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE 15:28:47.0805 2044 wlidsvc - ok 15:28:47.0838 2044 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys 15:28:47.0839 2044 WmiAcpi - ok 15:28:47.0911 2044 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe 15:28:47.0931 2044 wmiApSrv - ok 15:28:47.0969 2044 WMPNetworkSvc - ok 15:28:47.0983 2044 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll 15:28:47.0985 2044 WPCSvc - ok 15:28:48.0013 2044 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll 15:28:48.0025 2044 WPDBusEnum - ok 15:28:48.0063 2044 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys 15:28:48.0079 2044 ws2ifsl - ok 15:28:48.0116 2044 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll 15:28:48.0127 2044 wscsvc - ok 15:28:48.0137 2044 WSearch - ok 15:28:48.0206 2044 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll 15:28:48.0282 2044 wuauserv - ok 15:28:48.0328 2044 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys 15:28:48.0340 2044 WudfPf - ok 15:28:48.0419 2044 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys 15:28:48.0431 2044 WUDFRd - ok 15:28:48.0464 2044 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll 15:28:48.0472 2044 wudfsvc - ok 15:28:48.0506 2044 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll 15:28:48.0510 2044 WwanSvc - ok 15:28:48.0722 2044 X6va005 - ok 15:28:48.0861 2044 X6va011 - ok 15:28:48.0878 2044 ================ Scan global =============================== 15:28:48.0939 2044 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll 15:28:49.0001 2044 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll 15:28:49.0020 2044 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll 15:28:49.0065 2044 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll 15:28:49.0118 2044 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe 15:28:49.0127 2044 [Global] - ok 15:28:49.0133 2044 ================ Scan MBR ================================== 15:28:49.0137 2044 [ CDB4DE4BBD714F152979DA2DCBEF57EB ] \Device\Harddisk0\DR0 15:28:49.0137 2044 Suspicious mbr (Forged): \Device\Harddisk0\DR0 15:28:49.0197 2044 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - infected 15:28:49.0197 2044 \Device\Harddisk0\DR0 - detected Rootkit.Boot.Pihar.c (0) 15:28:49.0203 2044 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1 15:28:49.0813 2044 \Device\Harddisk1\DR1 - ok 15:28:49.0813 2044 ================ Scan VBR ================================== 15:28:49.0822 2044 [ ACF8542EC8365A6A07CCBBAF05822ED0 ] \Device\Harddisk0\DR0\Partition1 15:28:49.0823 2044 \Device\Harddisk0\DR0\Partition1 - ok 15:28:49.0833 2044 [ DA7DFCEE9E6FA9AB0432E49CE65D03C5 ] \Device\Harddisk0\DR0\Partition2 15:28:49.0834 2044 \Device\Harddisk0\DR0\Partition2 - ok 15:28:49.0840 2044 [ 6E409E135E4C0B54ECE3D5550FB5AA79 ] \Device\Harddisk1\DR1\Partition1 15:28:49.0843 2044 \Device\Harddisk1\DR1\Partition1 - ok 15:28:49.0843 2044 ============================================================ 15:28:49.0843 2044 Scan finished 15:28:49.0843 2044 ============================================================ 15:28:49.0855 1788 Detected object count: 1 15:28:49.0856 1788 Actual detected object count: 1 15:36:26.0251 1788 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - skipped by user 15:36:26.0251 1788 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.c ) - User select action: Skip
  4. I have tried using Malawarebytes to remove the Alureon rootkit, but it appears to keep surviving. Please help. The DDS and Attach files are attached. Please let me know if I need to include them in the text of my message. Thanks. In advance; I appreciate your support in helping me fix my computer. E071460 attach.txt dds.txt
  5. Unfortunately I became infected with Alureon.A, or at least that's what MSE says. It seems to have created an unallocated space of 170GB on the back end of the drive and a hidden partition on the front side of 43MB. I'm familiar on the whole using of GParted to unhide the space, but when I go to remove the malware, reboot the system and MSE is still saying its infected. So I decided to come to the pro's for guidance... Thank you! Attach.txt DDS.txt
  6. MSE says I am infected with Trojan:Dos/Alureon.A. MBAM says c:\windows\svchost.exe is corrupted with the Trojan. Unable to remove despite multiple attempts. Attached are the requested files. Thank you for your assistance. DDS.txt Attach.txt
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.