Jump to content

Recommended Posts

Welcome to the forum.

Please remove any usb or external drives from the computer before you run these scan!

Please download Farbar Service Scanner and run it on the computer with the issue.

  • Make sure the following options are checked:
    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center
    • Windows Update

    [*]Press "Scan".

    [*]It will create a log (FSS.txt) in the same directory the tool is run.

    [*]Please copy and paste the log to your reply.

-------------

Next..........

Please download and run RogueKiller.

Click Scan to scan the system (don't run any other options)

Post back the report.

-------------------------

Last.......

Please download OTL from one of the links below:

http://oldtimer.geekstogo.com/OTL.exe

http://oldtimer.geekstogo.com/OTL.com (<---renamed version)

Save it to your desktop.

Double click on the icon on your desktop.

Click the Scan All Users checkbox.

Push the Quick Scan button.

The scan will take about 10 minutes...depends on your hard drive size.

Two reports will open, copy and paste them in a reply here: (or attach them as .txt files)

OTL.txt <-- Will be opened

Extra.txt <-- Will be minimized

MrC

Link to post
Share on other sites

Thank you so much...here are the reports

System Restore:

============

System Restore Disabled Policy:

========================

Security Center:

============

wscsvc Service is not running. Checking service configuration:

Checking Start type: Attention! Unable to retrieve start type of wscsvc. The value does not exist.

Checking ImagePath: Attention! Unable to retrieve ImagePath of wscsvc. The value does not exist.

Unable to retrieve ServiceDll of wscsvc. The value does not exist.

Windows Update:

===========

File Check:

========

C:\Windows\System32\nsisvc.dll => MD5 is legit

C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit

C:\Windows\System32\dhcpcore.dll => MD5 is legit

C:\Windows\System32\drivers\afd.sys => MD5 is legit

C:\Windows\System32\drivers\tdx.sys => MD5 is legit

C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit

C:\Windows\System32\dnsrslvr.dll => MD5 is legit

C:\Windows\System32\mpssvc.dll => MD5 is legit

C:\Windows\System32\bfe.dll => MD5 is legit

C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit

C:\Windows\System32\SDRSVC.dll => MD5 is legit

C:\Windows\System32\vssvc.exe => MD5 is legit

C:\Windows\System32\wscsvc.dll => MD5 is legit

C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit

C:\Windows\System32\wuaueng.dll => MD5 is legit

C:\Windows\System32\qmgr.dll => MD5 is legit

C:\Windows\System32\es.dll => MD5 is legit

C:\Windows\System32\cryptsvc.dll => MD5 is legit

C:\Windows\System32\svchost.exe => MD5 is legit

C:\Windows\System32\rpcss.dll => MD5 is legit

**** End of log ****

¤¤¤ Registry Entries: 3 ¤¤¤

[PROXY IE] HKCU\[...]\Internet Settings : ProxyServer (hxxp127.0.0.1:56222) -> FOUND

[HJ] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> FOUND

[HJ] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND

¤¤¤ Particular Files / Folders: ¤¤¤

¤¤¤ Driver: [NOT LOADED] ¤¤¤

¤¤¤ Infection : ¤¤¤

¤¤¤ HOSTS File: ¤¤¤

127.0.0.1 www.007guard.com

127.0.0.1 007guard.com

127.0.0.1 008i.com

127.0.0.1 www.008k.com

127.0.0.1 008k.com

127.0.0.1 www.00hq.com

127.0.0.1 00hq.com

127.0.0.1 010402.com

127.0.0.1 www.032439.com

127.0.0.1 032439.com

127.0.0.1 www.0scan.com

127.0.0.1 0scan.com

127.0.0.1 www.1000gratisproben.com

127.0.0.1 1000gratisproben.com

127.0.0.1 www.1001namen.com

127.0.0.1 1001namen.com

127.0.0.1 www.100888290cs.com

127.0.0.1 100888290cs.com

127.0.0.1 www.100sexlinks.com

127.0.0.1 100sexlinks.com

[...]

¤¤¤ MBR Check: ¤¤¤

+++++ PhysicalDrive0: Hitachi HTS545050B9A300 +++++

--- User ---

[MBR] 3dc58bf13bf1226d28ff04fef707c91f

[bSP] 6b81a4f7bbdb87c02bc9f654358bd723 : Windows Vista MBR Code

Partition table:

0 - [ACTIVE] ACER (0x27) [VISIBLE] Offset (sectors): 2048 | Size: 1500 Mo

1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 3074048 | Size: 464503 Mo

2 - [XXXXXX] NTFS (0x17) [HIDDEN!] Offset (sectors): 954376192 | Size: 10936 Mo

User = LL1 ... OK!

User = LL2 ... OK!

Finished : << RKreport[1].txt >>

RKreport[1].txt

OTL logfile created on: 2/7/2012 2:42:06 PM - Run 1

OTL by OldTimer - Version 3.2.31.0 Folder = C:\Users\Bailey\Desktop

64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation

Internet Explorer (Version = 8.0.7601.17514)

Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

3.87 Gb Total Physical Memory | 2.33 Gb Available Physical Memory | 60.30% Memory free

7.74 Gb Paging File | 6.09 Gb Available in Paging File | 78.72% Paging File free

Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files (x86)

Drive C: | 453.62 Gb Total Space | 373.02 Gb Free Space | 82.23% Space Free | Partition Type: NTFS

Computer Name: WALTER | User Name: Bailey | Logged in as Administrator.

Boot Mode: Normal | Scan Mode: All users | Quick Scan | Include 64bit Scans

Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2012/02/07 14:40:37 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Users\Bailey\Desktop\OTL.exe

PRC - [2012/02/02 22:00:13 | 000,924,632 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe

PRC - [2011/12/24 17:50:18 | 000,652,872 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe

PRC - [2011/12/24 17:50:18 | 000,460,872 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe

PRC - [2011/10/14 13:11:32 | 000,296,088 | ---- | M] (Impulse Point, LLC) -- C:\Program Files (x86)\SafeConnect\SCClient.exe

PRC - [2011/10/14 13:11:31 | 000,175,968 | ---- | M] (Impulse Point, LLC) -- C:\Program Files (x86)\SafeConnect\scManager.sys

PRC - [2009/09/19 07:04:50 | 000,045,312 | ---- | M] (NewTech Infosystems, Inc.) -- C:\Program Files (x86)\NewTech Infosystems\Backup Now EZ\BackupNowEZSvr.exe

PRC - [2009/07/28 20:26:42 | 000,062,848 | ---- | M] (TOSHIBA CORPORATION) -- C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSwMgr.exe

PRC - [2009/07/14 19:10:30 | 000,042,368 | ---- | M] (TOSHIBA CORPORATION) -- C:\Program Files (x86)\TOSHIBA\ConfigFree\CFProcSRVC.exe

PRC - [2009/07/13 15:24:00 | 000,304,496 | ---- | M] (TOSHIBA CORPORATION) -- C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSTray.exe

PRC - [2009/07/02 10:05:00 | 000,252,288 | ---- | M] (TOSHIBA) -- C:\Program Files (x86)\TOSHIBA\TOSHIBA USB Sleep and Charge Utility\TUSBSleepChargeSrv.exe

PRC - [2009/03/10 18:51:20 | 000,046,448 | ---- | M] (TOSHIBA CORPORATION) -- C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe

OTL Extras logfile created on: 2/7/2012 2:42:06 PM - Run 1

OTL by OldTimer - Version 3.2.31.0 Folder = C:\Users\Bailey\Desktop

64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation

Internet Explorer (Version = 8.0.7601.17514)

Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

3.87 Gb Total Physical Memory | 2.33 Gb Available Physical Memory | 60.30% Memory free

7.74 Gb Paging File | 6.09 Gb Available in Paging File | 78.72% Paging File free

Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files (x86)

Drive C: | 453.62 Gb Total Space | 373.02 Gb Free Space | 82.23% Space Free | Partition Type: NTFS

Computer Name: WALTER | User Name: Bailey | Logged in as Administrator.

Boot Mode: Normal | Scan Mode: All users | Quick Scan | Include 64bit Scans

Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========

========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]

.url[@ = InternetShortcut] -- C:\windows\SysNative\rundll32.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]

.cpl [@ = cplfile] -- C:\windows\SysWow64\control.exe (Microsoft Corporation)

[HKEY_USERS\S-1-5-21-2195932338-79532217-972235551-1000\SOFTWARE\Classes\<extension>]

.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]

batfile [open] -- "%1" %*

cmdfile [open] -- "%1" %*

comfile [open] -- "%1" %*

exefile [open] -- "%1" %*

helpfile [open] -- Reg Error: Key error.

inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)

InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)

InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)

piffile [open] -- "%1" %*

regfile [merge] -- Reg Error: Key error.

scrfile [config] -- "%1"

scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l

scrfile [open] -- "%1" /S

txtfile [edit] -- Reg Error: Key error.

Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1

Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)

Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

Folder [explore] -- Reg Error: Value error.

Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]

batfile [open] -- "%1" %*

cmdfile [open] -- "%1" %*

comfile [open] -- "%1" %*

cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)

exefile [open] -- "%1" %*

helpfile [open] -- Reg Error: Key error.

inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)

piffile [open] -- "%1" %*

regfile [merge] -- Reg Error: Key error.

scrfile [config] -- "%1"

scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l

scrfile [open] -- "%1" /S

txtfile [edit] -- Reg Error: Key error.

Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1

Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)

Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

Folder [explore] -- Reg Error: Value error.

Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

"cval" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]

"AntiVirusOverride" = 0

"AntiSpywareOverride" = 0

"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

"DisableNotifications" = 0

"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]

"DisableNotifications" = 0

"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]

"DisableNotifications" = 0

"EnableFirewall" = 1

========== Authorized Applications List ==========

========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]

"{05BFB060-4F22-4710-B0A2-2801A1B606C5}" = Microsoft Antimalware

"{066CFFF8-12BF-4390-A673-75F95EFF188E}" = TOSHIBA Value Added Package

"{071c9b48-7c32-4621-a0ac-3f809523288f}" = Microsoft Visual C++ 2005 Redistributable (x64)

"{1B8ABA62-74F0-47ED-B18C-A43128E591B8}" = Windows Live ID Sign-in Assistant

"{20387B45-18A4-4D48-ABD9-A23D2CBE42B3}" = Dolby Control Center

"{42738DB0-FC3E-4672-A99B-9372F5696E30}" = Microsoft Security Client

"{5DA0E02F-970B-424B-BF41-513A5018E4C0}" = TOSHIBA Disc Creator

"{5EB6F3CB-46F4-451F-A028-7F6D8D35D7D0}" = Windows Live Language Selector

"{617C36FD-0CBE-4600-84B2-441CEB12FADF}" = TOSHIBA Extended Tiles for Windows Mobility Center

"{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}" = Bonjour

"{75104836-CAC7-444E-A39E-3F54151942F5}" = Apple Mobile Device Support

"{90120000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2007

"{90120000-002A-0409-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (English) 2007

"{90120000-0116-0409-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007

"{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}" = Intel® Matrix Storage Manager

"{94A90C69-71C1-470A-88F5-AA47ECC96B40}" = TOSHIBA HDD Protection

"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting

"{9DECD0F9-D3E8-48B0-A390-1CF09F54E3A4}" = TOSHIBA PC Health Monitor

"{aac9fcc4-dd9e-4add-901c-b5496a07ab2e}" = Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175

"{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}" = Microsoft Visual C++ 2005 Redistributable (x64)

"{B3FF1CD9-B2F0-4D71-BB55-5F580401C48E}" = TOSHIBA eco Utility

"{B65BBB06-1F8E-48F5-8A54-B024A9E15FDF}" = TOSHIBA Recovery Media Creator

"{B6E3757B-5E77-3915-866A-CCFC4B8D194C}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053

"{BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}" = PlayReady PC Runtime amd64

"{D4322448-B6AF-4316-B859-D8A0E84DCB38}" = TOSHIBA HDD/SSD Alert

"{D66F0C3C-24F2-4463-9E2F-4381E5C40A26}" = iTunes

"{DA54F80E-261C-41A2-A855-549A144F2F59}" = Windows Live MIME IFilter

"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile

"{F67FA545-D8E5-4209-86B1-AEE045D1003F}" = TOSHIBA Face Recognition

"EPSON Printer and Utilities" = EPSON Printer Software

"HDMI" = Intel® Graphics Media Accelerator Driver

"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile

"Microsoft Security Client" = Microsoft Security Essentials

"SAVE AS WWF_is1" = SAVE AS WWF

"SynTPDeinstKey" = Synaptics Pointing Device Driver

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]

"{008D69EB-70FF-46AB-9C75-924620DF191A}" = TOSHIBA Speech System SR Engine(U.S.) Version1.0

"{01250B8F-D947-4F8A-9408-FE8E3EE2EC92}" = MyToshiba

"{022CBB38-CEF0-42BA-906A-A49BEFAE0BEE}" = RICOH R5U230 Media Driver ver.2.06.03.02

"{066CFFF8-12BF-4390-A673-75F95EFF188E}" = TOSHIBA Value Added Package

"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer

"{0FB630AB-7BD8-40AE-B223-60397D57C3C9}" = Realtek WLAN Driver

"{15BC8CD0-A65B-47D0-A2DD-90A824590FA8}" = Microsoft Works

"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer

"{19BA08F7-C728-469C-8A35-BFBD3633BE08}" = Windows Live Movie Maker

"{1B87C40B-A60B-4EF3-9A68-706CF4B69978}" = TOSHIBA Assist

"{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}" = Junk Mail filter update

"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions

"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer

"{26A24AE4-039D-4CA4-87B4-2F83216016FF}" = Java 6 Update 23

"{31383A1D-FAE6-435A-9DBD-FDB61C7C8EC9}" = Ulead Photo Express 5 SE

"{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Windows Live Photo Gallery

"{343666E2-A059-48AC-AD67-230BF74E2DB2}" = Apple Application Support

"{34F4D9A4-42C2-4348-BEF4-E553C84549E7}" = Windows Live Photo Gallery

"{3B843B38-04B1-4CE6-8888-586273E0F289}" = Quickbooks Financial Center

"{3FBF6F99-8EC6-41B4-8527-0A32241B5496}" = TOSHIBA Speech System TTS Engine(U.S.) Version1.0

"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater

"{4CBABDFD-49F8-47FD-BE7D-ECDE7270525A}" = Windows Live PIMT Platform

"{50F68032-B5B7-4513-9116-C978DBD8F27A}" = DVD MovieFactory for TOSHIBA

"{5AF550B4-BB67-4E7E-82F1-2C4300279050}" = ToshibaRegistration

"{5E6F6CF3-BACC-4144-868C-E14622C658F3}" = TOSHIBA Web Camera Application

"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE

"{6A05FEDF-662E-46BF-8A25-010E3F1C9C69}" = Windows Live UX Platform Language Pack

"{6C5F3BDC-0A1B-4436-A696-5939629D5C31}" = TOSHIBA DVD PLAYER

"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable

"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053

"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update

"{7BE15435-2D3E-4B58-867F-9C75BED0208C}" = QuickTime

"{80956555-A512-4190-9CAD-B000C36D6B6B}" = Windows Live Messenger

"{84EBDF39-4B33-49D7-A0BD-EB6E2C4E81C1}" = Windows Live Sync

"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver

"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight

"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT

"{90120000-0015-0409-0000-0000000FF1CE}" = Microsoft Office Access MUI (English) 2007

"{90120000-0015-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)

"{90120000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2007

"{90120000-0016-0409-0000-0000000FF1CE}_HOMESTUDENTR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)

"{90120000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2007

"{90120000-0018-0409-0000-0000000FF1CE}_HOMESTUDENTR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)

"{90120000-0019-0409-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (English) 2007

"{90120000-0019-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)

"{90120000-001A-0409-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (English) 2007

"{90120000-001A-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)

"{90120000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2007

"{90120000-001B-0409-0000-0000000FF1CE}_HOMESTUDENTR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)

"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007

"{90120000-001F-0409-0000-0000000FF1CE}_HOMESTUDENTR_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)

"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007

"{90120000-001F-040C-0000-0000000FF1CE}_HOMESTUDENTR_{F580DDD5-8D37-4998-968E-EBB76BB86787}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)

"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007

"{90120000-001F-0C0A-0000-0000000FF1CE}_HOMESTUDENTR_{187308AB-5FA7-4F14-9AB9-D290383A10D9}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)

"{90120000-0020-0409-0000-0000000FF1CE}" = Compatibility Pack for the 2007 Office system

"{90120000-002A-0000-1000-0000000FF1CE}_ENTERPRISE_{E64BA721-2310-4B55-BE5A-2925F9706192}" = Microsoft Office 2007 Service Pack 2 (SP2)

"{90120000-002A-0000-1000-0000000FF1CE}_HOMESTUDENTR_{E64BA721-2310-4B55-BE5A-2925F9706192}" = Microsoft Office 2007 Service Pack 2 (SP2)

"{90120000-002A-0409-1000-0000000FF1CE}_HOMESTUDENTR_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2)

"{90120000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2007

"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007

"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)

"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)

"{90120000-0044-0409-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (English) 2007

"{90120000-0044-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)

"{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007

"{90120000-006E-0409-0000-0000000FF1CE}_HOMESTUDENTR_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2)

"{90120000-00A1-0409-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2007

"{90120000-00A1-0409-0000-0000000FF1CE}_HOMESTUDENTR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)

"{90120000-00BA-0409-0000-0000000FF1CE}" = Microsoft Office Groove MUI (English) 2007

"{90120000-00BA-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)

"{90120000-0114-0409-0000-0000000FF1CE}" = Microsoft Office Groove Setup Metadata MUI (English) 2007

"{90120000-0114-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)

"{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007

"{90120000-0115-0409-0000-0000000FF1CE}_HOMESTUDENTR_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2)

"{90120000-0116-0409-1000-0000000FF1CE}_HOMESTUDENTR_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2)

"{90120000-0117-0409-0000-0000000FF1CE}" = Microsoft Office Access Setup Metadata MUI (English) 2007

"{90120000-0117-0409-0000-0000000FF1CE}_ENTERPRISE_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)

"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In

"{91120000-002F-0000-0000-0000000FF1CE}" = Microsoft Office Home and Student 2007

"{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)

"{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)

"{92EA4134-10D1-418A-91E1-5A0453131A38}" = Windows Live Movie Maker

"{95120000-00AF-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint Viewer 2007 (English)

"{970472D0-F5F9-4158-A6E3-1AE49EFEF2D3}" = Toshiba Application Installer

"{981029E0-7FC9-4CF3-AB39-6F133621921A}" = Skype Toolbars

"{9AEAF9CC-390B-49C0-8F7F-14092BF163B6}" = NetZero Launcher

"{9D56775A-93F3-44A3-8092-840E3826DE30}" = Windows Live Mail

"{9E051993-7665-FE91-148D-3B0855E57F70}" = Amazon MP3 Uploader

"{A208044D-A88B-4ACF-AE95-E4F213E6EDC0}" = TOSHIBA Supervisor Password

"{A726AE06-AAA3-43D1-87E3-70F510314F04}" = Windows Live Writer

"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper

"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common

"{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}" = Windows Live Writer

"{AAF454FC-82CA-4F29-AB31-6A109485E76E}" = Windows Live Writer

"{AC6569FA-6919-442A-8552-073BE69E247A}" = TOSHIBA Service Station

"{AC76BA86-7AD7-1033-7B44-A94000000001}" = Adobe Reader 9.4.7

"{B3FF1CD9-B2F0-4D71-BB55-5F580401C48E}" = TOSHIBA eco Utility

"{B9ECA41B-55CC-4654-B6B5-6731D009EC69}" = NTI Backup Now EZ

"{C57BCDE1-7CB9-467D-B3BA-7E119916CDC1}" = Toshiba Online Backup

"{C66824E4-CBB3-4851-BB3F-E8CFD6350923}" = Windows Live Mail

"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform

"{D0387727-C89D-4774-B643-B9333EAA09DE}" = TOSHIBA Hardware Setup

"{D0B44725-3666-492D-BEF6-587A14BD9BD9}" = MSVCRT_amd64

"{D103C4BA-F905-437A-8049-DB24763BBE36}" = Skype™ 4.2

"{D4322448-B6AF-4316-B859-D8A0E84DCB38}" = TOSHIBA HDD/SSD Alert

"{D436F577-1695-4D2F-8B44-AC76C99E0002}" = Windows Live Photo Common

"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform

"{DA84ECBF-4B79-47F2-B34C-95C38484C058}" = Skype Launcher

"{DDC8BDEE-DCAC-404D-8257-3E8D4B782467}" = Windows Live Writer Resources

"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10

"{E487EE7D-EAAA-4E2A-9116-E3B477D8A74F}" = TOSHIBA USB Sleep and Charge Utility

"{E50AE784-FABE-46DA-A1F8-7B6B56DCB22E}" = Microsoft Office Suite Activation Assistant

"{E69992ED-A7F6-406C-9280-1C156417BC49}" = Toshiba Quality Application

"{E6B87DC4-2B3D-4483-ADFF-E483BF718991}" = OpenOffice.org 3.1

"{EB4DF488-AAEF-406F-A341-CB2AAA315B90}" = Windows Live Messenger

"{EE033C1F-443E-41EC-A0E2-559B539A4E4D}" = TOSHIBA Speech System Applications

"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]

"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver

"{F2004B8D-7791-4B35-A3FA-D8CA8BB4DD81}" = Direct DiscRecorder

"{F3529665-D75E-4D6D-98F0-745C78C68E9B}" = TOSHIBA ConfigFree

"{FE044230-9CA5-43F7-9B58-5AC5A28A1F33}" = Windows Live Essentials

"{FE23D063-934D-4829-A0D8-00634CE79B4A}" = Adobe AIR

"Adobe AIR" = Adobe AIR

"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX

"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin

"Amazon MP3 Downloader" = Amazon MP3 Downloader 1.0.12

"Amazon3" = Amazon3

"com.amazon.music.uploader" = Amazon MP3 Uploader

"Digital Camera Driver" = Digital Camera Driver

"ENTERPRISE" = Microsoft Office Enterprise 2007

"EPSON Printer and Utilities" = EPSON Printer Software

"EPSON Scanner" = EPSON Scan

"HOMESTUDENTR" = Microsoft Office Home and Student 2007

"InstallShield_{066CFFF8-12BF-4390-A673-75F95EFF188E}" = TOSHIBA Value Added Package

"InstallShield_{50F68032-B5B7-4513-9116-C978DBD8F27A}" = DVD MovieFactory for TOSHIBA

"InstallShield_{617C36FD-0CBE-4600-84B2-441CEB12FADF}" = TOSHIBA Extended Tiles for Windows Mobility Center

"InstallShield_{B3FF1CD9-B2F0-4D71-BB55-5F580401C48E}" = TOSHIBA eco Utility

"InstallShield_{B9ECA41B-55CC-4654-B6B5-6731D009EC69}" = NTI Backup Now EZ

"InstallShield_{D4322448-B6AF-4316-B859-D8A0E84DCB38}" = TOSHIBA HDD/SSD Alert

"InstallShield_{F2004B8D-7791-4B35-A3FA-D8CA8BB4DD81}" = Direct DiscRecorder

"InstallShield_{F67FA545-D8E5-4209-86B1-AEE045D1003F}" = TOSHIBA Face Recognition

"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware version 1.60.0.1800

"Mozilla Firefox 10.0 (x86 en-US)" = Mozilla Firefox 10.0 (x86 en-US)

"SafeConnect" = SafeConnect

"WildTangent toshiba Master Uninstall" = WildTangent Games

"WinLiveSuite" = Windows Live Essentials

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-2195932338-79532217-972235551-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]

"Facebook Plug-In" = Facebook Plug-In

========== Last 10 Event Log Errors ==========

[ Application Events ]

Error - 2/6/2012 10:37:01 PM | Computer Name = Walter | Source = Microsoft-Windows-CAPI2 | ID = 4107

Description = Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>

with error: A required certificate is not within its validity period when verifying

against the current system clock or the timestamp in the signed file. .

Error - 2/6/2012 10:37:05 PM | Computer Name = Walter | Source = Microsoft-Windows-CAPI2 | ID = 4107

Description = Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>

with error: A required certificate is not within its validity period when verifying

against the current system clock or the timestamp in the signed file. .

Error - 2/6/2012 10:37:11 PM | Computer Name = Walter | Source = Microsoft-Windows-CAPI2 | ID = 4107

Description = Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>

with error: A required certificate is not within its validity period when verifying

against the current system clock or the timestamp in the signed file. .

Error - 2/6/2012 10:37:15 PM | Computer Name = Walter | Source = Microsoft-Windows-CAPI2 | ID = 4107

Description = Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>

with error: A required certificate is not within its validity period when verifying

against the current system clock or the timestamp in the signed file. .

Error - 2/6/2012 10:40:49 PM | Computer Name = Walter | Source = Microsoft-Windows-CAPI2 | ID = 4107

Description = Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>

with error: A required certificate is not within its validity period when verifying

against the current system clock or the timestamp in the signed file. .

Error - 2/6/2012 10:40:55 PM | Computer Name = Walter | Source = Microsoft-Windows-CAPI2 | ID = 4107

Description = Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>

with error: A required certificate is not within its validity period when verifying

against the current system clock or the timestamp in the signed file. .

Error - 2/6/2012 10:43:48 PM | Computer Name = Walter | Source = Microsoft-Windows-CAPI2 | ID = 4107

Description = Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>

with error: A required certificate is not within its validity period when verifying

against the current system clock or the timestamp in the signed file. .

Error - 2/6/2012 10:47:53 PM | Computer Name = Walter | Source = Microsoft-Windows-CAPI2 | ID = 4107

Description = Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>

with error: A required certificate is not within its validity period when verifying

against the current system clock or the timestamp in the signed file. .

Error - 2/6/2012 11:01:23 PM | Computer Name = Walter | Source = Microsoft-Windows-CAPI2 | ID = 4107

Description = Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>

with error: A required certificate is not within its validity period when verifying

against the current system clock or the timestamp in the signed file. .

Error - 2/7/2012 1:32:55 AM | Computer Name = Walter | Source = SideBySide | ID = 16842824

Description = Activation context generation failed for "c:\program files\microsoft

security client\MSESysprep.dll".Error in manifest or policy file "c:\program files\microsoft

security client\MSESysprep.dll" on line 10. The element imaging appears as a child

of element urn:schemas-microsoft-com:asm.v1^assembly which is not supported by

this version of Windows.

[ System Events ]

Error - 2/5/2012 2:04:42 PM | Computer Name = Walter | Source = Service Control Manager | ID = 7001

Description = The Network List Service service depends on the Network Location Awareness

service which failed to start because of the following error: %%1068

Error - 2/5/2012 2:07:06 PM | Computer Name = Walter | Source = Service Control Manager | ID = 7001

Description = The Network List Service service depends on the Network Location Awareness

service which failed to start because of the following error: %%1068

Error - 2/5/2012 2:07:29 PM | Computer Name = Walter | Source = Service Control Manager | ID = 7001

Description = The Network List Service service depends on the Network Location Awareness

service which failed to start because of the following error: %%1068

Error - 2/5/2012 2:07:51 PM | Computer Name = Walter | Source = Service Control Manager | ID = 7001

Description = The Network List Service service depends on the Network Location Awareness

service which failed to start because of the following error: %%1068

Error - 2/5/2012 2:07:54 PM | Computer Name = Walter | Source = DCOM | ID = 10005

Description =

Error - 2/5/2012 2:09:33 PM | Computer Name = Walter | Source = Microsoft Antimalware | ID = 3002

Description = %%860 Real-Time Protection feature has encountered an error and failed.

Feature:

%%835 Error Code: 0x80004005 Error description: Unspecified error Reason: %%842

Error - 2/5/2012 2:16:32 PM | Computer Name = Walter | Source = Microsoft Antimalware | ID = 3002

Description = %%860 Real-Time Protection feature has encountered an error and failed.

Feature:

%%835 Error Code: 0x80004005 Error description: Unspecified error Reason: %%842

Error - 2/6/2012 9:23:15 PM | Computer Name = Walter | Source = Microsoft Antimalware | ID = 3002

Description = %%860 Real-Time Protection feature has encountered an error and failed.

Feature:

%%835 Error Code: 0x80004005 Error description: Unspecified error Reason: %%842

Error - 2/7/2012 2:59:32 AM | Computer Name = Walter | Source = Microsoft Antimalware | ID = 3002

Description = %%860 Real-Time Protection feature has encountered an error and failed.

Feature:

%%835 Error Code: 0x80004005 Error description: Unspecified error Reason: %%842

Error - 2/7/2012 6:06:30 PM | Computer Name = Walter | Source = Microsoft Antimalware | ID = 3002

Description = %%860 Real-Time Protection feature has encountered an error and failed.

Feature:

%%835 Error Code: 0x80004005 Error description: Unspecified error Reason: %%842

< End of report >

Link to post
Share on other sites

I ran RogueKiller again and did the scan and ProxyFix

Here is the OTL text again

OTL logfile created on: 2/7/2012 2:42:06 PM - Run 1

OTL by OldTimer - Version 3.2.31.0 Folder = C:\Users\Bailey\Desktop

64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation

Internet Explorer (Version = 8.0.7601.17514)

Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

3.87 Gb Total Physical Memory | 2.33 Gb Available Physical Memory | 60.30% Memory free

7.74 Gb Paging File | 6.09 Gb Available in Paging File | 78.72% Paging File free

Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files (x86)

Drive C: | 453.62 Gb Total Space | 373.02 Gb Free Space | 82.23% Space Free | Partition Type: NTFS

Computer Name: WALTER | User Name: Bailey | Logged in as Administrator.

Boot Mode: Normal | Scan Mode: All users | Quick Scan | Include 64bit Scans

Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2012/02/07 14:40:37 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Users\Bailey\Desktop\OTL.exe

PRC - [2012/02/02 22:00:13 | 000,924,632 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe

PRC - [2011/12/24 17:50:18 | 000,652,872 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe

PRC - [2011/12/24 17:50:18 | 000,460,872 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe

PRC - [2011/10/14 13:11:32 | 000,296,088 | ---- | M] (Impulse Point, LLC) -- C:\Program Files (x86)\SafeConnect\SCClient.exe

PRC - [2011/10/14 13:11:31 | 000,175,968 | ---- | M] (Impulse Point, LLC) -- C:\Program Files (x86)\SafeConnect\scManager.sys

PRC - [2009/09/19 07:04:50 | 000,045,312 | ---- | M] (NewTech Infosystems, Inc.) -- C:\Program Files (x86)\NewTech Infosystems\Backup Now EZ\BackupNowEZSvr.exe

PRC - [2009/07/28 20:26:42 | 000,062,848 | ---- | M] (TOSHIBA CORPORATION) -- C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSwMgr.exe

PRC - [2009/07/14 19:10:30 | 000,042,368 | ---- | M] (TOSHIBA CORPORATION) -- C:\Program Files (x86)\TOSHIBA\ConfigFree\CFProcSRVC.exe

PRC - [2009/07/13 15:24:00 | 000,304,496 | ---- | M] (TOSHIBA CORPORATION) -- C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSTray.exe

PRC - [2009/07/02 10:05:00 | 000,252,288 | ---- | M] (TOSHIBA) -- C:\Program Files (x86)\TOSHIBA\TOSHIBA USB Sleep and Charge Utility\TUSBSleepChargeSrv.exe

PRC - [2009/03/10 18:51:20 | 000,046,448 | ---- | M] (TOSHIBA CORPORATION) -- C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe

========== Modules (No Company Name) ==========

MOD - [2012/02/02 22:00:13 | 001,911,768 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\mozjs.dll

MOD - [2012/01/03 11:50:38 | 008,527,008 | ---- | M] () -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll

MOD - [2011/10/05 03:52:30 | 000,756,048 | ---- | M] () -- C:\Program Files (x86)\Common Files\microsoft shared\OFFICE12\MSPTLS.DLL

MOD - [2011/09/27 07:23:00 | 000,087,912 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll

MOD - [2011/09/27 07:22:40 | 001,242,472 | ---- | M] () -- C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll

========== Win32 Services (SafeList) ==========

SRV:64bit: - [2011/04/27 16:21:18 | 000,288,272 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- c:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe -- (NisSrv)

SRV:64bit: - [2011/04/27 16:21:18 | 000,012,784 | ---- | M] (Microsoft Corporation) [Auto | Running] -- c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe -- (MsMpSvc)

SRV:64bit: - [2009/09/17 14:41:36 | 000,137,560 | ---- | M] (TOSHIBA Corporation) [On_Demand | Running] -- C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe -- (TOSHIBA HDD SSD Alert Service)

SRV:64bit: - [2009/08/11 16:10:48 | 000,252,272 | ---- | M] (TOSHIBA Corporation) [Auto | Running] -- C:\Program Files\TOSHIBA\TECO\TecoService.exe -- (TOSHIBA eco Utility Service)

SRV:64bit: - [2009/08/05 14:20:12 | 000,488,800 | ---- | M] (TOSHIBA Corporation) [Auto | Running] -- C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe -- (TosCoSrv)

SRV:64bit: - [2009/08/04 11:15:06 | 000,826,224 | ---- | M] (TOSHIBA Corporation) [On_Demand | Running] -- C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe -- (TPCHSrv)

SRV:64bit: - [2009/07/28 14:48:06 | 000,140,632 | ---- | M] (TOSHIBA Corporation) [Auto | Running] -- C:\Windows\SysNative\TODDSrv.exe -- (TODDSrv)

SRV:64bit: - [2009/07/08 09:41:02 | 000,531,520 | ---- | M] (TOSHIBA Corporation) [Auto | Running] -- C:\Windows\SysNative\ThpSrv.exe -- (Thpsrv)

SRV - [2011/12/24 17:50:18 | 000,652,872 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)

SRV - [2011/10/14 13:11:31 | 000,175,968 | ---- | M] (Impulse Point, LLC) [Auto | Running] -- C:\Program Files (x86)\SafeConnect\scManager.sys -- (SCManager)

SRV - [2010/03/18 12:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)

SRV - [2009/09/19 07:04:50 | 000,045,312 | ---- | M] (NewTech Infosystems, Inc.) [Auto | Running] -- C:\Program Files (x86)\NewTech Infosystems\Backup Now EZ\BackupNowEZSvr.exe -- (NTI BackupNowEZSvr)

SRV - [2009/08/10 19:55:58 | 000,248,688 | ---- | M] (TOSHIBA CORPORATION) [Auto | Running] -- C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe -- (cfWiMAXService)

SRV - [2009/07/21 11:15:20 | 000,051,512 | ---- | M] (TOSHIBA Corporation) [On_Demand | Running] -- C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe -- (TMachInfo)

SRV - [2009/07/14 19:10:30 | 000,042,368 | ---- | M] (TOSHIBA CORPORATION) [Auto | Running] -- C:\Program Files (x86)\TOSHIBA\ConfigFree\CFProcSRVC.exe -- (ConfigFree Gadget Service)

SRV - [2009/06/10 13:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)

SRV - [2009/05/22 10:02:20 | 000,250,616 | ---- | M] (WildTangent, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\TOSHIBA Games\TOSHIBA Game Console\GameConsoleService.exe -- (GameConsoleService)

SRV - [2009/03/10 18:51:20 | 000,046,448 | ---- | M] (TOSHIBA CORPORATION) [Auto | Running] -- C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe -- (ConfigFree Service)

SRV - [2007/01/11 04:02:00 | 000,126,464 | ---- | M] (SEIKO EPSON CORPORATION) [Auto | Running] -- C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.EXE -- (EPSON_PM_RPCV4_01) EPSON V3 Service4(01)

========== Driver Services (SafeList) ==========

DRV:64bit: - [2011/12/10 15:24:08 | 000,023,152 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\mbam.sys -- (MBAMProtector)

DRV:64bit: - [2011/04/27 14:25:24 | 000,084,864 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NisDrvWFP.sys -- (NisDrv)

DRV:64bit: - [2011/03/10 22:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)

DRV:64bit: - [2011/03/10 22:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)

DRV:64bit: - [2010/11/20 05:33:35 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)

DRV:64bit: - [2010/11/20 03:07:05 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)

DRV:64bit: - [2010/11/20 01:37:42 | 000,109,056 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus)

DRV:64bit: - [2010/04/19 19:47:42 | 000,050,688 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbaapl64.sys -- (USBAAPL64)

DRV:64bit: - [2009/09/09 11:11:58 | 000,943,616 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\rtl8192se.sys -- (rtl8192se)

DRV:64bit: - [2009/08/27 08:07:06 | 007,369,600 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)

DRV:64bit: - [2009/08/07 05:24:14 | 000,408,600 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor)

DRV:64bit: - [2009/07/30 19:58:42 | 000,236,544 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)

DRV:64bit: - [2009/07/30 19:22:04 | 000,027,784 | ---- | M] (TOSHIBA Corporation.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\tdcmdpst.sys -- (tdcmdpst)

DRV:64bit: - [2009/07/28 18:24:12 | 000,081,408 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\risdpe64.sys -- (risdpcie)

DRV:64bit: - [2009/07/24 15:57:08 | 000,482,384 | ---- | M] (TOSHIBA Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\tos_sps64.sys -- (tos_sps64)

DRV:64bit: - [2009/07/20 17:48:32 | 000,274,480 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SynTP.sys -- (SynTP)

DRV:64bit: - [2009/07/14 15:31:18 | 000,026,840 | ---- | M] (TOSHIBA Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\TVALZ_O.SYS -- (TVALZ)

DRV:64bit: - [2009/07/13 17:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)

DRV:64bit: - [2009/07/13 17:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)

DRV:64bit: - [2009/07/13 17:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)

DRV:64bit: - [2009/07/10 06:45:12 | 000,139,264 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\IntcHdmi.sys -- (IntcHdmiAddService) Intel®

DRV:64bit: - [2009/07/07 08:51:42 | 000,009,216 | ---- | M] (TOSHIBA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\FwLnk.sys -- (FwLnk)

DRV:64bit: - [2009/07/04 19:27:02 | 000,055,808 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\rixdpe64.sys -- (rixdpcie)

DRV:64bit: - [2009/07/02 08:54:52 | 000,060,416 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\rimspe64.sys -- (rimspci)

DRV:64bit: - [2009/06/29 16:16:20 | 000,014,784 | ---- | M] (TOSHIBA Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\Thpevm.sys -- (Thpevm)

DRV:64bit: - [2009/06/29 10:25:22 | 000,034,880 | ---- | M] (TOSHIBA Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\thpdrv.sys -- (Thpdrv)

DRV:64bit: - [2009/06/22 17:06:38 | 000,035,008 | ---- | M] (TOSHIBA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\PGEffect.sys -- (PGEffect)

DRV:64bit: - [2009/06/19 19:15:22 | 000,014,472 | ---- | M] (TOSHIBA Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\TVALZFL.sys -- (TVALZFL)

DRV:64bit: - [2009/06/19 18:09:57 | 001,394,688 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\athrx.sys -- (athr)

DRV:64bit: - [2009/06/10 13:01:06 | 001,146,880 | ---- | M] (LSI Corp) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\agrsm64.sys -- (AgereSoftModem)

DRV:64bit: - [2009/06/10 12:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)

DRV:64bit: - [2009/06/10 12:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)

DRV:64bit: - [2009/06/10 12:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)

DRV:64bit: - [2009/06/10 12:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)

DRV:64bit: - [2009/05/18 14:17:08 | 000,034,152 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)

DRV:64bit: - [2009/05/05 16:46:08 | 000,018,432 | ---- | M] (NewTech Infosystems, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NTIDrvr.sys -- (NTIDrvr)

DRV:64bit: - [2009/05/05 16:46:08 | 000,016,896 | ---- | M] (NewTech Infosystems Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\UBHelper.sys -- (UBHelper)

DRV - [2009/07/13 17:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com/ig/redirectdomain?brand=TSNA&bmod=TSNA

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/ig/redirectdomain?brand=TSNA&bmod=TSNA

IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-2195932338-79532217-972235551-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com/ig/redirectdomain?brand=TSNA&bmod=TSNA

IE - HKU\S-1-5-21-2195932338-79532217-972235551-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/ig/redirectdomain?brand=TSNA&bmod=TSNA

IE - HKU\S-1-5-21-2195932338-79532217-972235551-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-2195932338-79532217-972235551-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local;<local>

IE - HKU\S-1-5-21-2195932338-79532217-972235551-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = http=127.0.0.1:56222

========== FireFox ==========

FF - prefs.js..browser.startup.homepage: "http://www.yahoo.com/"

FF - prefs.js..extensions.enabledItems: {AB2CE124-6272-4b12-94A9-7303C7397BD1}:4.2.0.5198

FF - prefs.js..extensions.enabledItems: activegs@freetoolsassociation.com:3.1.469

FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23

FF - prefs.js..extensions.enabledItems: {635abd67-4fe9-1b23-4f01-e679fa7484c1}:2.1.8.20100713041928

FF - prefs.js..extensions.enabledItems: zotero@chnm.gmu.edu:2.0.9

FF - prefs.js..network.proxy.http: "127.0.0.1"

FF - prefs.js..network.proxy.http_port: 56222

FF - prefs.js..network.proxy.type: 0

FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\windows\SysWOW64\Macromed\Flash\NPSWF32.dll ()

FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found

FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()

FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)

FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found

FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\4.0.60831.0\npctrl.dll ( Microsoft Corporation)

FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)

FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)

FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.99\npGoogleUpdate3.dll (Google Inc.)

FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.99\npGoogleUpdate3.dll (Google Inc.)

FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF - HKCU\Software\MozillaPlugins\@facebook.com/FBPlugin,version=1.0.1: C:\Users\Bailey\AppData\Roaming\Facebook\npfbplugin_1_0_1.dll ( )

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 10.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2012/02/02 22:00:14 | 000,000,000 | ---D | M]

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 10.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2012/01/08 14:44:00 | 000,000,000 | ---D | M]

[2009/12/30 16:44:29 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Bailey\AppData\Roaming\Mozilla\Extensions

[2012/02/02 17:36:03 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Bailey\AppData\Roaming\Mozilla\Firefox\Profiles\rc5w9kk0.default\extensions

[2012/01/25 17:07:11 | 000,000,000 | ---D | M] (Yahoo! Toolbar) -- C:\Users\Bailey\AppData\Roaming\Mozilla\Firefox\Profiles\rc5w9kk0.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}

[2011/11/18 18:22:53 | 000,000,000 | ---D | M] (ActiveGS) -- C:\Users\Bailey\AppData\Roaming\Mozilla\Firefox\Profiles\rc5w9kk0.default\extensions\activegs@freetoolsassociation.com

[2012/02/02 17:36:03 | 000,000,000 | ---D | M] (Zotero) -- C:\Users\Bailey\AppData\Roaming\Mozilla\Firefox\Profiles\rc5w9kk0.default\extensions\zotero@chnm.gmu.edu

[2011/11/09 12:20:08 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions

[2010/02/27 17:16:16 | 000,000,000 | ---D | M] (Skype extension for Firefox) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{AB2CE124-6272-4b12-94A9-7303C7397BD1}

[2010/05/28 12:57:53 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\extensions\{FD2FD708-1F6F-4B68-B141-C5778F0C19BB}

[2012/02/02 22:00:13 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files (x86)\mozilla firefox\components\browsercomps.dll

[2010/11/12 18:53:06 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\mozilla firefox\plugins\npdeployJava1.dll

[2012/02/02 22:00:10 | 000,002,252 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\bing.xml

[2012/02/02 22:00:10 | 000,002,040 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\twitter.xml

O1 HOSTS File: ([2010/01/29 16:29:47 | 000,377,845 | R--- | M]) - C:\Windows\SysNative\drivers\etc\hosts

O1 - Hosts: 127.0.0.1 www.007guard.com

O1 - Hosts: 127.0.0.1 007guard.com

O1 - Hosts: 127.0.0.1 008i.com

O1 - Hosts: 127.0.0.1 www.008k.com

O1 - Hosts: 127.0.0.1 008k.com

O1 - Hosts: 127.0.0.1 www.00hq.com

O1 - Hosts: 127.0.0.1 00hq.com

O1 - Hosts: 127.0.0.1 010402.com

O1 - Hosts: 127.0.0.1 www.032439.com

O1 - Hosts: 127.0.0.1 032439.com

O1 - Hosts: 127.0.0.1 www.0scan.com

O1 - Hosts: 127.0.0.1 0scan.com

O1 - Hosts: 127.0.0.1 www.1000gratisproben.com

O1 - Hosts: 127.0.0.1 1000gratisproben.com

O1 - Hosts: 127.0.0.1 www.1001namen.com

O1 - Hosts: 127.0.0.1 1001namen.com

O1 - Hosts: 127.0.0.1 www.100888290cs.com

O1 - Hosts: 127.0.0.1 100888290cs.com

O1 - Hosts: 127.0.0.1 www.100sexlinks.com

O1 - Hosts: 127.0.0.1 100sexlinks.com

O1 - Hosts: 127.0.0.1 10sek.com

O1 - Hosts: 127.0.0.1 www.10sek.com

O1 - Hosts: 127.0.0.1 1-2005-search.com

O1 - Hosts: 127.0.0.1 www.1-2005-search.com

O1 - Hosts: 127.0.0.1 123fporn.info

O1 - Hosts: 13021 more lines...

O2:64bit: - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)

O2:64bit: - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.7227.1100\swg64.dll (Google Inc.)

O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.7.7227.1100\swg.dll (Google Inc.)

O3:64bit: - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)

O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.

O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.

O3:64bit: - HKU\S-1-5-21-2195932338-79532217-972235551-1000\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)

O4:64bit: - HKLM..\Run: [] File not found

O4:64bit: - HKLM..\Run: [00TCrdMain] C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe (TOSHIBA Corporation)

O4:64bit: - HKLM..\Run: [HSON] C:\Program Files\TOSHIBA\TBS\HSON.exe (TOSHIBA Corporation)

O4:64bit: - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)

O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)

O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)

O4:64bit: - HKLM..\Run: [smartFaceVWatcher] C:\Program Files\TOSHIBA\SmartFaceV\SmartFaceVWatcher.exe (TOSHIBA Corporation)

O4:64bit: - HKLM..\Run: [smoothView] C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe (TOSHIBA Corporation)

O4:64bit: - HKLM..\Run: [Teco] C:\Program Files\TOSHIBA\TECO\Teco.exe (TOSHIBA Corporation)

O4:64bit: - HKLM..\Run: [ThpSrv] C:\windows\SysNative\thpsrv.exe (TOSHIBA Corporation)

O4:64bit: - HKLM..\Run: [TosSENotify] C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe (TOSHIBA Corporation)

O4:64bit: - HKLM..\Run: [TosWaitSrv] C:\Program Files\TOSHIBA\TPHM\TosWaitSrv.exe (TOSHIBA Corporation)

O4:64bit: - HKLM..\Run: [TPwrMain] C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe (TOSHIBA Corporation)

O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)

O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)

O4 - HKLM..\Run: [NortonOnlineBackupReminder] C:\Program Files (x86)\TOSHIBA\Toshiba Online Backup\Activation\TobuActivation.exe (Toshiba)

O4 - HKLM..\Run: [ToshibaServiceStation] C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe (TOSHIBA Corporation)

O4 - HKLM..\Run: [TUSBSleepChargeSrv] C:\Program Files (x86)\TOSHIBA\TOSHIBA USB Sleep and Charge Utility\TUSBSleepChargeSrv.exe (TOSHIBA)

O4 - HKU\S-1-5-19..\Run: [sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)

O4 - HKU\S-1-5-20..\Run: [sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation)

O4 - HKU\S-1-5-21-2195932338-79532217-972235551-1000..\Run: [EPSON Stylus CX3800 Series] C:\windows\system32\spool\DRIVERS\x64\3\E_IATIACA.EXE /FU "C:\windows\TEMP\E_S2541.tmp" /EF "HKCU" File not found

O4 - HKU\S-1-5-21-2195932338-79532217-972235551-1000..\Run: [MyTOSHIBA] C:\Program Files (x86)\TOSHIBA\My Toshiba\MyToshiba.exe (TOSHIBA)

O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found

O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe File not found

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3

O7 - HKU\S-1-5-21-2195932338-79532217-972235551-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HideSCAHealth = 1

O7 - HKU\S-1-5-21-2195932338-79532217-972235551-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O8:64bit: - Extra context menu item: Google Sidewiki... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_950DF09FAB501E03.dll/cmsidewiki.html File not found

O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_950DF09FAB501E03.dll/cmsidewiki.html File not found

O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000010 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)

O10 - NameSpace_Catalog5\Catalog_Entries\000000000010 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)

O1364bit: - gopher Prefix: missing

O13 - gopher Prefix: missing

O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23)

O16 - DPF: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23)

O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23)

O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1

O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{E72E90AD-FC95-4449-8FD2-7E3D361176EC}: DhcpNameServer = 192.168.2.1

O18:64bit: - Protocol\Handler\grooveLocalGWS - No CLSID value found

O18:64bit: - Protocol\Handler\livecall - No CLSID value found

O18:64bit: - Protocol\Handler\ms-help - No CLSID value found

O18:64bit: - Protocol\Handler\ms-itss - No CLSID value found

O18:64bit: - Protocol\Handler\msnim - No CLSID value found

O18:64bit: - Protocol\Handler\skype4com - No CLSID value found

O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found

O18:64bit: - Protocol\Handler\wlpg - No CLSID value found

O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)

O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\windows\explorer.exe (Microsoft Corporation)

O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)

O20:64bit: - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)

O20:64bit: - HKLM Winlogon: VMApplet - (/pagefile) - File not found

O20 - HKLM Winlogon: Shell - (explorer.exe) -C:\windows\SysWow64\explorer.exe (Microsoft Corporation)

O20 - HKLM Winlogon: UserInit - (C:\windows\system32\userinit.exe) -C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)

O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found

O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\windows\SysNative\igfxdev.dll (Intel Corporation)

O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.

O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.

O32 - HKLM CDRom: AutoRun - 1

O34 - HKLM BootExecute: (autocheck autochk *)

O35:64bit: - HKLM\..comfile [open] -- "%1" %*

O35:64bit: - HKLM\..exefile [open] -- "%1" %*

O35 - HKLM\..comfile [open] -- "%1" %*

O35 - HKLM\..exefile [open] -- "%1" %*

O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*

O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*

O37 - HKLM\...com [@ = comfile] -- "%1" %*

O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2012/02/07 14:40:34 | 000,584,192 | ---- | C] (OldTimer Tools) -- C:\Users\Bailey\Desktop\OTL.exe

[2012/02/07 14:38:25 | 000,000,000 | ---D | C] -- C:\Users\Bailey\Desktop\RK_Quarantine

[2012/02/07 14:36:20 | 000,000,000 | ---D | C] -- C:\Users\Bailey\Desktop\stuff

[2012/02/05 10:34:12 | 000,607,260 | R--- | C] (Swearware) -- C:\Users\Bailey\Desktop\dds.scr

[2012/01/18 18:40:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON

[2012/01/18 18:36:58 | 000,000,000 | ---D | C] -- C:\ProgramData\EPSON

[2012/01/17 18:02:45 | 000,000,000 | ---D | C] -- C:\Users\Bailey\Documents\Spring 12

[2012/01/08 14:47:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes

[2012/01/08 14:47:16 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes

[2012/01/08 14:47:16 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\iTunes

[2012/01/08 14:47:16 | 000,000,000 | ---D | C] -- C:\Program Files\iPod

[2 C:\Users\Bailey\Documents\*.tmp files -> C:\Users\Bailey\Documents\*.tmp -> ]

[1 C:\windows\*.tmp files -> C:\windows\*.tmp -> ]

[1 C:\Users\Bailey\AppData\Local\*.tmp files -> C:\Users\Bailey\AppData\Local\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2012/02/07 14:40:37 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Users\Bailey\Desktop\OTL.exe

[2012/02/07 14:13:35 | 000,015,792 | -H-- | M] () -- C:\windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0

[2012/02/07 14:13:35 | 000,015,792 | -H-- | M] () -- C:\windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0

[2012/02/07 14:06:35 | 000,000,894 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskMachineCore.job

[2012/02/07 14:06:10 | 000,067,584 | --S- | M] () -- C:\windows\bootstat.dat

[2012/02/07 14:06:04 | 3117,404,160 | -HS- | M] () -- C:\hiberfil.sys

[2012/02/06 22:48:03 | 000,000,898 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskMachineUA.job

[2012/02/05 10:34:15 | 000,607,260 | R--- | M] (Swearware) -- C:\Users\Bailey\Desktop\dds.scr

[2012/02/02 22:00:19 | 000,002,051 | ---- | M] () -- C:\Users\Bailey\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk

[2012/01/18 18:04:25 | 000,051,269 | ---- | M] () -- C:\Users\Bailey\Documents\spring 12 schedule.png

[2012/01/10 15:21:59 | 000,748,190 | ---- | M] () -- C:\windows\SysNative\PerfStringBackup.INI

[2012/01/10 15:21:59 | 000,629,416 | ---- | M] () -- C:\windows\SysNative\perfh009.dat

[2012/01/10 15:21:59 | 000,108,600 | ---- | M] () -- C:\windows\SysNative\perfc009.dat

[2012/01/08 14:47:47 | 000,001,795 | ---- | M] () -- C:\Users\Public\Desktop\iTunes.lnk

[2 C:\Users\Bailey\Documents\*.tmp files -> C:\Users\Bailey\Documents\*.tmp -> ]

[1 C:\windows\*.tmp files -> C:\windows\*.tmp -> ]

[1 C:\Users\Bailey\AppData\Local\*.tmp files -> C:\Users\Bailey\AppData\Local\*.tmp -> ]

========== Files Created - No Company Name ==========

[2012/01/08 14:47:47 | 000,001,795 | ---- | C] () -- C:\Users\Public\Desktop\iTunes.lnk

[2011/12/09 12:19:13 | 000,000,000 | ---- | C] () -- C:\Users\Bailey\AppData\Local\{4CBAB72D-E438-44CF-87D4-1CCB33908746}

[2011/12/09 12:17:19 | 000,000,000 | ---- | C] () -- C:\Users\Bailey\AppData\Local\{191F6FE2-6122-4213-9405-36F864BCDAF1}

[2011/12/01 23:13:54 | 000,104,593 | ---- | C] () -- C:\windows\SysWow64\drivers\MPIXVID.SYS

[2011/09/15 22:46:10 | 000,001,328 | -HS- | C] () -- C:\Users\Bailey\AppData\Local\5b5s8f0nhi1

[2011/09/15 22:46:10 | 000,001,328 | -HS- | C] () -- C:\ProgramData\5b5s8f0nhi1

[2011/06/17 23:07:51 | 000,000,016 | ---- | C] () -- C:\windows\popcinfo.dat

[2011/06/12 15:30:44 | 000,000,000 | ---- | C] () -- C:\Users\Bailey\AppData\Local\{EDBDD860-2F48-4DEB-B3EA-E190FAB35F96}

[2011/06/12 09:55:23 | 000,000,000 | ---- | C] () -- C:\Users\Bailey\AppData\Local\{941FC5E7-2F31-4E15-8FEC-F9B767CD8E31}

[2011/01/08 08:47:00 | 000,747,538 | ---- | C] () -- C:\windows\SysWow64\PerfStringBackup.INI

[2010/02/27 17:18:58 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat

[2010/01/10 12:40:56 | 000,000,196 | ---- | C] () -- C:\windows\ulead32.ini

[2009/12/28 18:17:07 | 000,002,450 | ---- | C] () -- C:\Users\Bailey\AppData\Roaming\wklnhst.dat

[2009/12/28 18:11:22 | 000,000,014 | RHS- | C] () -- C:\windows\SysWow64\drivers\fbd.sys

[2009/11/22 20:33:00 | 000,000,000 | ---- | C] () -- C:\windows\NDSTray.INI

[2009/08/27 08:05:12 | 000,982,220 | ---- | C] () -- C:\windows\SysWow64\igkrng500.bin

[2009/08/27 08:05:12 | 000,439,300 | ---- | C] () -- C:\windows\SysWow64\igcompkrng500.bin

[2009/08/27 08:05:12 | 000,134,592 | ---- | C] () -- C:\windows\SysWow64\igfcg500.bin

[2009/08/27 08:05:12 | 000,092,216 | ---- | C] () -- C:\windows\SysWow64\igfcg500m.bin

[2009/07/13 21:38:36 | 000,067,584 | --S- | C] () -- C:\windows\bootstat.dat

[2009/07/13 18:35:51 | 000,000,741 | ---- | C] () -- C:\windows\SysWow64\NOISE.DAT

[2009/07/13 18:34:42 | 000,215,943 | ---- | C] () -- C:\windows\SysWow64\dssec.dat

[2009/07/13 16:10:29 | 000,043,131 | ---- | C] () -- C:\windows\mib.bin

[2009/07/13 15:42:10 | 000,064,000 | ---- | C] () -- C:\windows\SysWow64\BWContextHandler.dll

[2009/07/13 13:03:59 | 000,364,544 | ---- | C] () -- C:\windows\SysWow64\msjetoledb40.dll

[2009/06/10 13:26:10 | 000,673,088 | ---- | C] () -- C:\windows\SysWow64\mlang.dat

[2005/02/25 06:15:00 | 000,159,744 | ---- | C] () -- C:\windows\SysWow64\EPSPTDV.DLL

========== LOP Check ==========

[2011/12/27 20:59:38 | 000,000,000 | ---D | M] -- C:\Users\Bailey\AppData\Roaming\.minecraft

[2010/09/07 08:30:18 | 000,000,000 | ---D | M] -- C:\Users\Bailey\AppData\Roaming\Amazon

[2012/01/06 15:07:08 | 000,000,000 | ---D | M] -- C:\Users\Bailey\AppData\Roaming\com.amazon.music.uploader

[2010/02/20 01:19:08 | 000,000,000 | ---D | M] -- C:\Users\Bailey\AppData\Roaming\Facebook

[2010/02/08 14:16:01 | 000,000,000 | ---D | M] -- C:\Users\Bailey\AppData\Roaming\Leadertech

[2010/01/19 20:26:06 | 000,000,000 | ---D | M] -- C:\Users\Bailey\AppData\Roaming\OpenOffice.org

[2011/09/28 18:58:31 | 000,000,000 | ---D | M] -- C:\Users\Bailey\AppData\Roaming\PDF Writer

[2009/12/28 18:17:08 | 000,000,000 | ---D | M] -- C:\Users\Bailey\AppData\Roaming\Template

[2010/02/27 17:32:16 | 000,000,000 | ---D | M] -- C:\Users\Bailey\AppData\Roaming\TOSHIBA

[2010/04/30 21:57:59 | 000,000,000 | ---D | M] -- C:\Users\Bailey\AppData\Roaming\WildTangent

[2009/12/28 18:11:01 | 000,000,000 | ---D | M] -- C:\Users\Bailey\AppData\Roaming\WinBatch

[2012/01/12 07:55:06 | 000,032,624 | ---- | M] () -- C:\windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========

========== Alternate Data Streams ==========

@Alternate Data Stream - 118 bytes -> C:\ProgramData\TEMP:5C321E34

< End of report >

Link to post
Share on other sites

Please do this:

Run OTL

Under the Custom Scans/Fixes box at the bottom, paste in the following

:OTL

FF - prefs.js..network.proxy.http: "127.0.0.1"

FF - prefs.js..network.proxy.http_port: 56222

FF - prefs.js..network.proxy.type: 0

O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.

O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.

O4:64bit: - HKLM..\Run: [] File not found

[2011/12/09 12:19:13 | 000,000,000 | ---- | C] () -- C:\Users\Bailey\AppData\Local\{4CBAB72D-E438-44CF-87D4-1CCB33908746}

[2011/12/09 12:17:19 | 000,000,000 | ---- | C] () -- C:\Users\Bailey\AppData\Local\{191F6FE2-6122-4213-9405-36F864BCDAF1}

[2011/09/15 22:46:10 | 000,001,328 | -HS- | C] () -- C:\Users\Bailey\AppData\Local\5b5s8f0nhi1

[2011/09/15 22:46:10 | 000,001,328 | -HS- | C] () -- C:\ProgramData\5b5s8f0nhi1

[2011/06/12 15:30:44 | 000,000,000 | ---- | C] () -- C:\Users\Bailey\AppData\Local\{EDBDD860-2F48-4DEB-B3EA-E190FAB35F96}

[2011/06/12 09:55:23 | 000,000,000 | ---- | C] () -- C:\Users\Bailey\AppData\Local\{941FC5E7-2F31-4E15-8FEC-F9B767CD8E31}

:Commands

[emptytemp]

  • Then click the Run Fix button at the top
  • Let the program run unhindered, when done it will say "Fix Complete press ok to open the log"
    Please post that log in your next reply. Note: If a file or folder cannot be moved immediately you may be asked to reboot the machine to finish the move process. If you are asked to reboot the machine choose Yes. In this case, after the reboot, open Notepad (Start->All Programs->Accessories->Notepad), click File->Open, in the File Name box enter *.log and press the Enter key, navigate to the C:\_OTL\MovedFiles folder, and open the newest .log file present, and copy/paste the contents of that document back here in your next post.

MrC

Link to post
Share on other sites

This is what it said.

All processes killed

Error: Unable to interpret <FF - prefs.js..network.proxy.http: "127.0.0.1"> in the current context!

Error: Unable to interpret <FF - prefs.js..network.proxy.http_port: 56222> in the current context!

Error: Unable to interpret <FF - prefs.js..network.proxy.type: 0> in the current context!

Error: Unable to interpret <O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.> in the current context!

Error: Unable to interpret <O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.> in the current context!

Error: Unable to interpret <O4:64bit: - HKLM..\Run: [] File not found> in the current context!

Error: Unable to interpret <[2011/12/09 12:19:13 | 000,000,000 | ---- | C] () -- C:\Users\Bailey\AppData\Local\{4CBAB72D-E438-44CF-87D4-1CCB33908746}> in the current context!

Error: Unable to interpret <[2011/12/09 12:17:19 | 000,000,000 | ---- | C] () -- C:\Users\Bailey\AppData\Local\{191F6FE2-6122-4213-9405-36F864BCDAF1}> in the current context!

Error: Unable to interpret <[2011/09/15 22:46:10 | 000,001,328 | -HS- | C] () -- C:\Users\Bailey\AppData\Local\5b5s8f0nhi1> in the current context!

Error: Unable to interpret <[2011/09/15 22:46:10 | 000,001,328 | -HS- | C] () -- C:\ProgramData\5b5s8f0nhi1> in the current context!

Error: Unable to interpret <[2011/06/12 15:30:44 | 000,000,000 | ---- | C] () -- C:\Users\Bailey\AppData\Local\{EDBDD860-2F48-4DEB-B3EA-E190FAB35F96}> in the current context!

Error: Unable to interpret <[2011/06/12 09:55:23 | 000,000,000 | ---- | C] () -- C:\Users\Bailey\AppData\Local\{941FC5E7-2F31-4E15-8FEC-F9B767CD8E31}> in the current context!

========== COMMANDS ==========

[EMPTYTEMP]

User: Administrator

User: All Users

User: Bailey

->Temp folder emptied: 1284335558 bytes

->Temporary Internet Files folder emptied: 197558653 bytes

->Java cache emptied: 47521544 bytes

->FireFox cache emptied: 266934503 bytes

->Flash cache emptied: 268423 bytes

User: Default

->Temp folder emptied: 0 bytes

->Temporary Internet Files folder emptied: 33170 bytes

->Flash cache emptied: 56475 bytes

User: Default User

->Temp folder emptied: 0 bytes

->Temporary Internet Files folder emptied: 0 bytes

->Flash cache emptied: 0 bytes

User: Public

%systemdrive% .tmp files removed: 0 bytes

%systemroot% .tmp files removed: 0 bytes

%systemroot%\System32 .tmp files removed: 0 bytes

%systemroot%\System32 (64bit) .tmp files removed: 0 bytes

%systemroot%\System32\drivers .tmp files removed: 0 bytes

Windows Temp folder emptied: 160352307 bytes

%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 67630 bytes

RecycleBin emptied: 0 bytes

Total Files Cleaned = 1,866.00 mb

OTL by OldTimer - Version 3.2.31.0 log created on 02072012_153800

Files\Folders moved on Reboot...

C:\Users\Bailey\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.

Registry entries deleted on Reboot...

Link to post
Share on other sites

No it has to be entered correctly, starting at :OTL and ending with [emptytemp], everything in blue bold:

:OTL

FF - prefs.js..network.proxy.http: "127.0.0.1"

FF - prefs.js..network.proxy.http_port: 56222

FF - prefs.js..network.proxy.type: 0

O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.

O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.

O4:64bit: - HKLM..\Run: [] File not found

[2011/12/09 12:19:13 | 000,000,000 | ---- | C] () -- C:\Users\Bailey\AppData\Local\{4CBAB72D-E438-44CF-87D4-1CCB33908746}

[2011/12/09 12:17:19 | 000,000,000 | ---- | C] () -- C:\Users\Bailey\AppData\Local\{191F6FE2-6122-4213-9405-36F864BCDAF1}

[2011/09/15 22:46:10 | 000,001,328 | -HS- | C] () -- C:\Users\Bailey\AppData\Local\5b5s8f0nhi1

[2011/09/15 22:46:10 | 000,001,328 | -HS- | C] () -- C:\ProgramData\5b5s8f0nhi1

[2011/06/12 15:30:44 | 000,000,000 | ---- | C] () -- C:\Users\Bailey\AppData\Local\{EDBDD860-2F48-4DEB-B3EA-E190FAB35F96}

[2011/06/12 09:55:23 | 000,000,000 | ---- | C] () -- C:\Users\Bailey\AppData\Local\{941FC5E7-2F31-4E15-8FEC-F9B767CD8E31}

:Commands

[emptytemp]

Link to post
Share on other sites

Oh sorry, is this correct?

All processes killed

========== OTL ==========

Prefs.js: "127.0.0.1" removed from network.proxy.http

Prefs.js: 56222 removed from network.proxy.http_port

Prefs.js: 0 removed from network.proxy.type

64bit-Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\Locked deleted successfully.

Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\Locked deleted successfully.

64bit-Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\ deleted successfully.

C:\Users\Bailey\AppData\Local\{4CBAB72D-E438-44CF-87D4-1CCB33908746} moved successfully.

C:\Users\Bailey\AppData\Local\{191F6FE2-6122-4213-9405-36F864BCDAF1} moved successfully.

C:\Users\Bailey\AppData\Local\5b5s8f0nhi1 moved successfully.

C:\ProgramData\5b5s8f0nhi1 moved successfully.

C:\Users\Bailey\AppData\Local\{EDBDD860-2F48-4DEB-B3EA-E190FAB35F96} moved successfully.

C:\Users\Bailey\AppData\Local\{941FC5E7-2F31-4E15-8FEC-F9B767CD8E31} moved successfully.

========== COMMANDS ==========

[EMPTYTEMP]

User: Administrator

User: All Users

User: Bailey

->Temp folder emptied: 165267 bytes

->Temporary Internet Files folder emptied: 33170 bytes

->Java cache emptied: 0 bytes

->FireFox cache emptied: 19282430 bytes

->Flash cache emptied: 456 bytes

User: Default

->Temp folder emptied: 0 bytes

->Temporary Internet Files folder emptied: 0 bytes

->Flash cache emptied: 0 bytes

User: Default User

->Temp folder emptied: 0 bytes

->Temporary Internet Files folder emptied: 0 bytes

->Flash cache emptied: 0 bytes

User: Public

%systemdrive% .tmp files removed: 0 bytes

%systemroot% .tmp files removed: 0 bytes

%systemroot%\System32 .tmp files removed: 0 bytes

%systemroot%\System32 (64bit) .tmp files removed: 0 bytes

%systemroot%\System32\drivers .tmp files removed: 0 bytes

Windows Temp folder emptied: 1610 bytes

%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 0 bytes

RecycleBin emptied: 0 bytes

Total Files Cleaned = 19.00 mb

OTL by OldTimer - Version 3.2.31.0 log created on 02072012_155745

Files\Folders moved on Reboot...

C:\Users\Bailey\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.

Registry entries deleted on Reboot...

Link to post
Share on other sites

That's Good! Now.......

Please download and run TDSSKiller as outlined in the post below:

http://forums.malwar...howtopic=104821

If a suspicious object is detected, the default action will be Skip, click on Continue

If you get the warning about a file UnsignedFile.Multi.Generic please choose

Skip and click on Continue

If malicious objects are found, they will show in the Scan results and offer three (3) options.

Ensure Cure is selected, then click Continue => Reboot now to finish the cleaning process.

Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.

Post back the log, MrC

Link to post
Share on other sites

Here is the log

16:12:30.0656 2760 TDSS rootkit removing tool 2.7.10.0 Feb 7 2012 15:14:46

16:12:31.0546 2760 ============================================================

16:12:31.0546 2760 Current date / time: 2012/02/07 16:12:31.0546

16:12:31.0546 2760 SystemInfo:

16:12:31.0546 2760

16:12:31.0546 2760 OS Version: 6.1.7601 ServicePack: 1.0

16:12:31.0546 2760 Product type: Workstation

16:12:31.0546 2760 ComputerName: WALTER

16:12:31.0611 2760 UserName: Bailey

16:12:31.0611 2760 Windows directory: C:\windows

16:12:31.0611 2760 System windows directory: C:\windows

16:12:31.0612 2760 Running under WOW64

16:12:31.0612 2760 Processor architecture: Intel x64

16:12:31.0612 2760 Number of processors: 2

16:12:31.0612 2760 Page size: 0x1000

16:12:31.0612 2760 Boot type: Normal boot

16:12:31.0612 2760 ============================================================

16:12:32.0770 2760 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040

16:12:32.0777 2760 \Device\Harddisk0\DR0:

16:12:32.0777 2760 MBR used

16:12:32.0777 2760 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x2EE800, BlocksNum 0x38B3B800

16:12:32.0798 2760 Initialize success

16:12:32.0798 2760 ============================================================

16:12:35.0006 2504 ============================================================

16:12:35.0006 2504 Scan started

16:12:35.0006 2504 Mode: Manual;

16:12:35.0006 2504 ============================================================

16:12:35.0450 2504 1394ohci (a87d604aea360176311474c87a63bb88) C:\windows\system32\drivers\1394ohci.sys

16:12:35.0456 2504 1394ohci - ok

16:12:35.0494 2504 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\windows\system32\drivers\ACPI.sys

16:12:35.0502 2504 ACPI - ok

16:12:35.0642 2504 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\windows\system32\drivers\acpipmi.sys

16:12:35.0644 2504 AcpiPmi - ok

16:12:35.0775 2504 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\windows\system32\DRIVERS\adp94xx.sys

16:12:35.0796 2504 adp94xx - ok

16:12:35.0915 2504 adpahci (597f78224ee9224ea1a13d6350ced962) C:\windows\system32\DRIVERS\adpahci.sys

16:12:35.0920 2504 adpahci - ok

16:12:35.0966 2504 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\windows\system32\DRIVERS\adpu320.sys

16:12:35.0988 2504 adpu320 - ok

16:12:36.0136 2504 AFD (d5b031c308a409a0a576bff4cf083d30) C:\windows\system32\drivers\afd.sys

16:12:36.0142 2504 AFD - ok

16:12:36.0267 2504 AgereSoftModem (98022774d9930ecbb292e70db7601df6) C:\windows\system32\DRIVERS\agrsm64.sys

16:12:36.0295 2504 AgereSoftModem - ok

16:12:36.0420 2504 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\windows\system32\drivers\agp440.sys

16:12:36.0422 2504 agp440 - ok

16:12:36.0590 2504 aliide (5812713a477a3ad7363c7438ca2ee038) C:\windows\system32\drivers\aliide.sys

16:12:36.0591 2504 aliide - ok

16:12:36.0765 2504 amdide (1ff8b4431c353ce385c875f194924c0c) C:\windows\system32\drivers\amdide.sys

16:12:36.0792 2504 amdide - ok

16:12:36.0910 2504 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\windows\system32\DRIVERS\amdk8.sys

16:12:36.0916 2504 AmdK8 - ok

16:12:36.0942 2504 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\windows\system32\DRIVERS\amdppm.sys

16:12:36.0974 2504 AmdPPM - ok

16:12:37.0114 2504 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\windows\system32\drivers\amdsata.sys

16:12:37.0116 2504 amdsata - ok

16:12:37.0266 2504 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\windows\system32\DRIVERS\amdsbs.sys

16:12:37.0269 2504 amdsbs - ok

16:12:37.0408 2504 amdxata (540daf1cea6094886d72126fd7c33048) C:\windows\system32\drivers\amdxata.sys

16:12:37.0421 2504 amdxata - ok

16:12:37.0472 2504 AppID (89a69c3f2f319b43379399547526d952) C:\windows\system32\drivers\appid.sys

16:12:37.0493 2504 AppID - ok

16:12:37.0687 2504 arc (c484f8ceb1717c540242531db7845c4e) C:\windows\system32\DRIVERS\arc.sys

16:12:37.0689 2504 arc - ok

16:12:37.0784 2504 arcsas (019af6924aefe7839f61c830227fe79c) C:\windows\system32\DRIVERS\arcsas.sys

16:12:37.0799 2504 arcsas - ok

16:12:37.0828 2504 AsyncMac (769765ce2cc62867468cea93969b2242) C:\windows\system32\DRIVERS\asyncmac.sys

16:12:37.0829 2504 AsyncMac - ok

16:12:37.0936 2504 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\windows\system32\drivers\atapi.sys

16:12:37.0937 2504 atapi - ok

16:12:38.0011 2504 athr (e857eee6b92aaa473ebb3465add8f7e7) C:\windows\system32\DRIVERS\athrx.sys

16:12:38.0028 2504 athr - ok

16:12:38.0192 2504 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\windows\system32\DRIVERS\bxvbda.sys

16:12:38.0204 2504 b06bdrv - ok

16:12:38.0352 2504 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\windows\system32\DRIVERS\b57nd60a.sys

16:12:38.0383 2504 b57nd60a - ok

16:12:38.0441 2504 Beep (16a47ce2decc9b099349a5f840654746) C:\windows\system32\drivers\Beep.sys

16:12:38.0442 2504 Beep - ok

16:12:38.0605 2504 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\windows\system32\DRIVERS\blbdrive.sys

16:12:38.0608 2504 blbdrive - ok

16:12:38.0784 2504 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\windows\system32\DRIVERS\bowser.sys

16:12:38.0799 2504 bowser - ok

16:12:38.0867 2504 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\windows\system32\DRIVERS\BrFiltLo.sys

16:12:38.0895 2504 BrFiltLo - ok

16:12:38.0951 2504 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\windows\system32\DRIVERS\BrFiltUp.sys

16:12:38.0966 2504 BrFiltUp - ok

16:12:39.0022 2504 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\windows\System32\Drivers\Brserid.sys

16:12:39.0035 2504 Brserid - ok

16:12:39.0123 2504 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\windows\System32\Drivers\BrSerWdm.sys

16:12:39.0179 2504 BrSerWdm - ok

16:12:39.0235 2504 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\windows\System32\Drivers\BrUsbMdm.sys

16:12:39.0244 2504 BrUsbMdm - ok

16:12:39.0270 2504 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\windows\System32\Drivers\BrUsbSer.sys

16:12:39.0296 2504 BrUsbSer - ok

16:12:39.0447 2504 BthEnum (cf98190a94f62e405c8cb255018b2315) C:\windows\system32\drivers\BthEnum.sys

16:12:39.0461 2504 BthEnum - ok

16:12:39.0528 2504 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\windows\system32\DRIVERS\bthmodem.sys

16:12:39.0560 2504 BTHMODEM - ok

16:12:39.0614 2504 BthPan (02dd601b708dd0667e1331fa8518e9ff) C:\windows\system32\DRIVERS\bthpan.sys

16:12:39.0638 2504 BthPan - ok

16:12:39.0728 2504 BTHPORT (64c198198501f7560ee41d8d1efa7952) C:\windows\System32\Drivers\BTHport.sys

16:12:39.0742 2504 BTHPORT - ok

16:12:39.0850 2504 BTHUSB (f188b7394d81010767b6df3178519a37) C:\windows\System32\Drivers\BTHUSB.sys

16:12:39.0863 2504 BTHUSB - ok

16:12:39.0917 2504 cdfs (b8bd2bb284668c84865658c77574381a) C:\windows\system32\DRIVERS\cdfs.sys

16:12:39.0965 2504 cdfs - ok

16:12:40.0116 2504 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\windows\system32\drivers\cdrom.sys

16:12:40.0135 2504 cdrom - ok

16:12:40.0273 2504 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\windows\system32\DRIVERS\circlass.sys

16:12:40.0275 2504 circlass - ok

16:12:40.0314 2504 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\windows\system32\CLFS.sys

16:12:40.0318 2504 CLFS - ok

16:12:40.0451 2504 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\windows\system32\DRIVERS\CmBatt.sys

16:12:40.0452 2504 CmBatt - ok

16:12:40.0509 2504 cmdide (e19d3f095812725d88f9001985b94edd) C:\windows\system32\drivers\cmdide.sys

16:12:40.0528 2504 cmdide - ok

16:12:40.0631 2504 CNG (c4943b6c962e4b82197542447ad599f4) C:\windows\system32\Drivers\cng.sys

16:12:40.0641 2504 CNG - ok

16:12:40.0765 2504 Compbatt (102de219c3f61415f964c88e9085ad14) C:\windows\system32\DRIVERS\compbatt.sys

16:12:40.0765 2504 Compbatt - ok

16:12:40.0811 2504 CompositeBus (03edb043586cceba243d689bdda370a8) C:\windows\system32\drivers\CompositeBus.sys

16:12:40.0813 2504 CompositeBus - ok

16:12:40.0924 2504 crcdisk (1c827878a998c18847245fe1f34ee597) C:\windows\system32\DRIVERS\crcdisk.sys

16:12:40.0925 2504 crcdisk - ok

16:12:41.0102 2504 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\windows\system32\Drivers\dfsc.sys

16:12:41.0104 2504 DfsC - ok

16:12:41.0138 2504 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\windows\system32\drivers\discache.sys

16:12:41.0139 2504 discache - ok

16:12:41.0231 2504 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\windows\system32\DRIVERS\disk.sys

16:12:41.0232 2504 Disk - ok

16:12:41.0281 2504 drmkaud (9b19f34400d24df84c858a421c205754) C:\windows\system32\drivers\drmkaud.sys

16:12:41.0295 2504 drmkaud - ok

16:12:41.0428 2504 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\windows\System32\drivers\dxgkrnl.sys

16:12:41.0434 2504 DXGKrnl - ok

16:12:41.0598 2504 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\windows\system32\DRIVERS\evbda.sys

16:12:41.0715 2504 ebdrv - ok

16:12:41.0859 2504 elxstor (0e5da5369a0fcaea12456dd852545184) C:\windows\system32\DRIVERS\elxstor.sys

16:12:41.0867 2504 elxstor - ok

16:12:41.0979 2504 ErrDev (34a3c54752046e79a126e15c51db409b) C:\windows\system32\drivers\errdev.sys

16:12:41.0980 2504 ErrDev - ok

16:12:42.0034 2504 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\windows\system32\drivers\exfat.sys

16:12:42.0050 2504 exfat - ok

16:12:42.0137 2504 fastfat (0adc83218b66a6db380c330836f3e36d) C:\windows\system32\drivers\fastfat.sys

16:12:42.0139 2504 fastfat - ok

16:12:42.0181 2504 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\windows\system32\DRIVERS\fdc.sys

16:12:42.0184 2504 fdc - ok

16:12:42.0306 2504 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\windows\system32\drivers\fileinfo.sys

16:12:42.0319 2504 FileInfo - ok

16:12:42.0387 2504 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\windows\system32\drivers\filetrace.sys

16:12:42.0394 2504 Filetrace - ok

16:12:42.0441 2504 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\windows\system32\DRIVERS\flpydisk.sys

16:12:42.0442 2504 flpydisk - ok

16:12:42.0569 2504 FltMgr (da6b67270fd9db3697b20fce94950741) C:\windows\system32\drivers\fltmgr.sys

16:12:42.0573 2504 FltMgr - ok

16:12:42.0647 2504 FsDepends (d43703496149971890703b4b1b723eac) C:\windows\system32\drivers\FsDepends.sys

16:12:42.0671 2504 FsDepends - ok

16:12:42.0801 2504 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\windows\system32\drivers\Fs_Rec.sys

16:12:42.0810 2504 Fs_Rec - ok

16:12:42.0897 2504 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\windows\system32\DRIVERS\fvevol.sys

16:12:42.0901 2504 fvevol - ok

16:12:43.0031 2504 FwLnk (60acb128e64c35c2b4e4aab1b0a5c293) C:\windows\system32\DRIVERS\FwLnk.sys

16:12:43.0055 2504 FwLnk - ok

16:12:43.0123 2504 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\windows\system32\DRIVERS\gagp30kx.sys

16:12:43.0141 2504 gagp30kx - ok

16:12:43.0306 2504 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\windows\system32\DRIVERS\GEARAspiWDM.sys

16:12:43.0307 2504 GEARAspiWDM - ok

16:12:43.0623 2504 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\windows\system32\drivers\hcw85cir.sys

16:12:43.0630 2504 hcw85cir - ok

16:12:43.0804 2504 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\windows\system32\drivers\HdAudio.sys

16:12:43.0816 2504 HdAudAddService - ok

16:12:43.0890 2504 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\windows\system32\drivers\HDAudBus.sys

16:12:43.0916 2504 HDAudBus - ok

16:12:44.0085 2504 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\windows\system32\DRIVERS\HidBatt.sys

16:12:44.0088 2504 HidBatt - ok

16:12:44.0165 2504 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\windows\system32\DRIVERS\hidbth.sys

16:12:44.0168 2504 HidBth - ok

16:12:44.0200 2504 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\windows\system32\DRIVERS\hidir.sys

16:12:44.0203 2504 HidIr - ok

16:12:44.0285 2504 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\windows\system32\drivers\hidusb.sys

16:12:44.0289 2504 HidUsb - ok

16:12:44.0388 2504 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\windows\system32\drivers\HpSAMD.sys

16:12:44.0389 2504 HpSAMD - ok

16:12:44.0438 2504 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\windows\system32\drivers\HTTP.sys

16:12:44.0447 2504 HTTP - ok

16:12:44.0550 2504 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\windows\system32\drivers\hwpolicy.sys

16:12:44.0553 2504 hwpolicy - ok

16:12:44.0633 2504 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\windows\system32\drivers\i8042prt.sys

16:12:44.0638 2504 i8042prt - ok

16:12:44.0792 2504 iaStor (bbb3b6df1abb0fe35802ede85cc1c011) C:\windows\system32\DRIVERS\iaStor.sys

16:12:44.0795 2504 iaStor - ok

16:12:44.0908 2504 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\windows\system32\drivers\iaStorV.sys

16:12:44.0926 2504 iaStorV - ok

16:12:45.0171 2504 igfx (3c3f27002abc69c5afe29cbe6cf7addf) C:\windows\system32\DRIVERS\igdkmd64.sys

16:12:45.0375 2504 igfx - ok

16:12:45.0501 2504 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\windows\system32\DRIVERS\iirsp.sys

16:12:45.0526 2504 iirsp - ok

16:12:45.0834 2504 IntcAzAudAddService (0c3cf4b3bae28e121a1689e3538f8712) C:\windows\system32\drivers\RTKVHD64.sys

16:12:45.0910 2504 IntcAzAudAddService - ok

16:12:46.0052 2504 IntcHdmiAddService (88a20fa54c73ded4e8dac764e9130ae9) C:\windows\system32\drivers\IntcHdmi.sys

16:12:46.0059 2504 IntcHdmiAddService - ok

16:12:46.0141 2504 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\windows\system32\drivers\intelide.sys

16:12:46.0160 2504 intelide - ok

16:12:46.0241 2504 intelppm (ada036632c664caa754079041cf1f8c1) C:\windows\system32\DRIVERS\intelppm.sys

16:12:46.0242 2504 intelppm - ok

16:12:46.0307 2504 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\windows\system32\DRIVERS\ipfltdrv.sys

16:12:46.0311 2504 IpFilterDriver - ok

16:12:46.0415 2504 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\windows\system32\drivers\IPMIDrv.sys

16:12:46.0441 2504 IPMIDRV - ok

16:12:46.0509 2504 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\windows\system32\drivers\ipnat.sys

16:12:46.0523 2504 IPNAT - ok

16:12:46.0663 2504 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\windows\system32\drivers\irenum.sys

16:12:46.0664 2504 IRENUM - ok

16:12:46.0760 2504 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\windows\system32\drivers\isapnp.sys

16:12:46.0765 2504 isapnp - ok

16:12:46.0832 2504 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\windows\system32\drivers\msiscsi.sys

16:12:46.0847 2504 iScsiPrt - ok

16:12:46.0928 2504 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\windows\system32\drivers\kbdclass.sys

16:12:46.0929 2504 kbdclass - ok

16:12:47.0003 2504 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\windows\system32\drivers\kbdhid.sys

16:12:47.0011 2504 kbdhid - ok

16:12:47.0113 2504 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\windows\system32\Drivers\ksecdd.sys

16:12:47.0121 2504 KSecDD - ok

16:12:47.0169 2504 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\windows\system32\Drivers\ksecpkg.sys

16:12:47.0176 2504 KSecPkg - ok

16:12:47.0251 2504 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\windows\system32\drivers\ksthunk.sys

16:12:47.0265 2504 ksthunk - ok

16:12:47.0462 2504 lltdio (1538831cf8ad2979a04c423779465827) C:\windows\system32\DRIVERS\lltdio.sys

16:12:47.0493 2504 lltdio - ok

16:12:47.0576 2504 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\windows\system32\DRIVERS\lsi_fc.sys

16:12:47.0579 2504 LSI_FC - ok

16:12:47.0706 2504 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\windows\system32\DRIVERS\lsi_sas.sys

16:12:47.0714 2504 LSI_SAS - ok

16:12:47.0778 2504 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\windows\system32\DRIVERS\lsi_sas2.sys

16:12:47.0780 2504 LSI_SAS2 - ok

16:12:47.0788 2504 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\windows\system32\DRIVERS\lsi_scsi.sys

16:12:47.0825 2504 LSI_SCSI - ok

16:12:47.0908 2504 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\windows\system32\drivers\luafv.sys

16:12:47.0910 2504 luafv - ok

16:12:48.0089 2504 MBAMProtector (79da94b35371b9e7104460c7693dcb2c) C:\windows\system32\drivers\mbam.sys

16:12:48.0089 2504 MBAMProtector - ok

16:12:48.0221 2504 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\windows\system32\DRIVERS\megasas.sys

16:12:48.0224 2504 megasas - ok

16:12:48.0383 2504 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\windows\system32\DRIVERS\MegaSR.sys

16:12:48.0395 2504 MegaSR - ok

16:12:48.0571 2504 Modem (800ba92f7010378b09f9ed9270f07137) C:\windows\system32\drivers\modem.sys

16:12:48.0598 2504 Modem - ok

16:12:48.0679 2504 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\windows\system32\DRIVERS\monitor.sys

16:12:48.0679 2504 monitor - ok

16:12:48.0825 2504 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\windows\system32\drivers\mouclass.sys

16:12:48.0826 2504 mouclass - ok

16:12:48.0894 2504 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\windows\system32\DRIVERS\mouhid.sys

16:12:48.0925 2504 mouhid - ok

16:12:49.0061 2504 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\windows\system32\drivers\mountmgr.sys

16:12:49.0064 2504 mountmgr - ok

16:12:49.0278 2504 MpFilter (c177a7ebf5e8a0b596f618870516cab8) C:\windows\system32\DRIVERS\MpFilter.sys

16:12:49.0281 2504 MpFilter - ok

16:12:49.0372 2504 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\windows\system32\drivers\mpio.sys

16:12:49.0392 2504 mpio - ok

16:12:49.0571 2504 MpNWMon (8fbf6b31fe8af1833d93c5913d5b4d55) C:\windows\system32\DRIVERS\MpNWMon.sys

16:12:49.0575 2504 MpNWMon - ok

16:12:49.0637 2504 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\windows\system32\drivers\mpsdrv.sys

16:12:49.0639 2504 mpsdrv - ok

16:12:49.0715 2504 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\windows\system32\drivers\mrxdav.sys

16:12:49.0718 2504 MRxDAV - ok

16:12:49.0835 2504 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\windows\system32\DRIVERS\mrxsmb.sys

16:12:49.0844 2504 mrxsmb - ok

16:12:49.0918 2504 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\windows\system32\DRIVERS\mrxsmb10.sys

16:12:49.0924 2504 mrxsmb10 - ok

16:12:49.0946 2504 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\windows\system32\DRIVERS\mrxsmb20.sys

16:12:49.0970 2504 mrxsmb20 - ok

16:12:50.0071 2504 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\windows\system32\drivers\msahci.sys

16:12:50.0071 2504 msahci - ok

16:12:50.0127 2504 msdsm (db801a638d011b9633829eb6f663c900) C:\windows\system32\drivers\msdsm.sys

16:12:50.0163 2504 msdsm - ok

16:12:50.0264 2504 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\windows\system32\drivers\Msfs.sys

16:12:50.0270 2504 Msfs - ok

16:12:50.0372 2504 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\windows\System32\drivers\mshidkmdf.sys

16:12:50.0373 2504 mshidkmdf - ok

16:12:50.0417 2504 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\windows\system32\drivers\msisadrv.sys

16:12:50.0432 2504 msisadrv - ok

16:12:50.0600 2504 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\windows\system32\drivers\MSKSSRV.sys

16:12:50.0618 2504 MSKSSRV - ok

16:12:50.0799 2504 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\windows\system32\drivers\MSPCLOCK.sys

16:12:50.0808 2504 MSPCLOCK - ok

16:12:51.0074 2504 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\windows\system32\drivers\MSPQM.sys

16:12:51.0076 2504 MSPQM - ok

16:12:51.0154 2504 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\windows\system32\drivers\MsRPC.sys

16:12:51.0196 2504 MsRPC - ok

16:12:51.0341 2504 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\windows\system32\drivers\mssmbios.sys

16:12:51.0342 2504 mssmbios - ok

16:12:51.0448 2504 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\windows\system32\drivers\MSTEE.sys

16:12:51.0452 2504 MSTEE - ok

16:12:51.0501 2504 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\windows\system32\DRIVERS\MTConfig.sys

16:12:51.0533 2504 MTConfig - ok

16:12:51.0562 2504 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\windows\system32\Drivers\mup.sys

16:12:51.0574 2504 Mup - ok

16:12:51.0661 2504 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\windows\system32\DRIVERS\nwifi.sys

16:12:51.0706 2504 NativeWifiP - ok

16:12:51.0820 2504 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\windows\system32\drivers\ndis.sys

16:12:51.0844 2504 NDIS - ok

16:12:51.0985 2504 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\windows\system32\DRIVERS\ndiscap.sys

16:12:51.0986 2504 NdisCap - ok

16:12:52.0118 2504 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\windows\system32\DRIVERS\ndistapi.sys

16:12:52.0119 2504 NdisTapi - ok

16:12:52.0226 2504 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\windows\system32\DRIVERS\ndisuio.sys

16:12:52.0275 2504 Ndisuio - ok

16:12:52.0325 2504 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\windows\system32\DRIVERS\ndiswan.sys

16:12:52.0372 2504 NdisWan - ok

16:12:52.0437 2504 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\windows\system32\drivers\NDProxy.sys

16:12:52.0489 2504 NDProxy - ok

16:12:52.0612 2504 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\windows\system32\DRIVERS\netbios.sys

16:12:52.0629 2504 NetBIOS - ok

16:12:52.0690 2504 NetBT (09594d1089c523423b32a4229263f068) C:\windows\system32\DRIVERS\netbt.sys

16:12:52.0695 2504 NetBT - ok

16:12:52.0860 2504 nfrd960 (77889813be4d166cdab78ddba990da92) C:\windows\system32\DRIVERS\nfrd960.sys

16:12:52.0867 2504 nfrd960 - ok

16:12:53.0046 2504 NisDrv (5f7d72cbcdd025af1f38fdeee5646968) C:\windows\system32\DRIVERS\NisDrvWFP.sys

16:12:53.0057 2504 NisDrv - ok

16:12:53.0231 2504 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\windows\system32\drivers\Npfs.sys

16:12:53.0238 2504 Npfs - ok

16:12:53.0369 2504 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\windows\system32\drivers\nsiproxy.sys

16:12:53.0370 2504 nsiproxy - ok

16:12:53.0651 2504 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\windows\system32\drivers\Ntfs.sys

16:12:53.0733 2504 Ntfs - ok

16:12:53.0943 2504 NTIDrvr (64ddd0dee976302f4bd93e5efcc2f013) C:\windows\system32\drivers\NTIDrvr.sys

16:12:53.0944 2504 NTIDrvr - ok

16:12:54.0079 2504 Null (9899284589f75fa8724ff3d16aed75c1) C:\windows\system32\drivers\Null.sys

16:12:54.0107 2504 Null - ok

16:12:54.0179 2504 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\windows\system32\drivers\nvraid.sys

16:12:54.0188 2504 nvraid - ok

16:12:54.0288 2504 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\windows\system32\drivers\nvstor.sys

16:12:54.0291 2504 nvstor - ok

16:12:54.0336 2504 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\windows\system32\drivers\nv_agp.sys

16:12:54.0346 2504 nv_agp - ok

16:12:54.0475 2504 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\windows\system32\drivers\ohci1394.sys

16:12:54.0479 2504 ohci1394 - ok

16:12:54.0656 2504 Parport (0086431c29c35be1dbc43f52cc273887) C:\windows\system32\DRIVERS\parport.sys

16:12:54.0661 2504 Parport - ok

16:12:54.0771 2504 partmgr (871eadac56b0a4c6512bbe32753ccf79) C:\windows\system32\drivers\partmgr.sys

16:12:54.0778 2504 partmgr - ok

16:12:54.0830 2504 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\windows\system32\drivers\pci.sys

16:12:54.0836 2504 pci - ok

16:12:54.0941 2504 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\windows\system32\drivers\pciide.sys

16:12:54.0960 2504 pciide - ok

16:12:55.0020 2504 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\windows\system32\DRIVERS\pcmcia.sys

16:12:55.0036 2504 pcmcia - ok

16:12:55.0077 2504 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\windows\system32\drivers\pcw.sys

16:12:55.0101 2504 pcw - ok

16:12:55.0234 2504 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\windows\system32\drivers\peauth.sys

16:12:55.0263 2504 PEAUTH - ok

16:12:55.0433 2504 PGEffect (663962900e7fea522126ba287715bb4a) C:\windows\system32\DRIVERS\pgeffect.sys

16:12:55.0440 2504 PGEffect - ok

16:12:55.0569 2504 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\windows\system32\DRIVERS\raspptp.sys

16:12:55.0640 2504 PptpMiniport - ok

16:12:55.0744 2504 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\windows\system32\DRIVERS\processr.sys

16:12:55.0751 2504 Processor - ok

16:12:55.0903 2504 Psched (0557cf5a2556bd58e26384169d72438d) C:\windows\system32\DRIVERS\pacer.sys

16:12:55.0908 2504 Psched - ok

16:12:56.0065 2504 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\windows\system32\DRIVERS\ql2300.sys

16:12:56.0161 2504 ql2300 - ok

16:12:56.0347 2504 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\windows\system32\DRIVERS\ql40xx.sys

16:12:56.0457 2504 ql40xx - ok

16:12:56.0664 2504 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\windows\system32\drivers\qwavedrv.sys

16:12:56.0668 2504 QWAVEdrv - ok

16:12:56.0734 2504 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\windows\system32\DRIVERS\rasacd.sys

16:12:56.0735 2504 RasAcd - ok

16:12:56.0861 2504 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\windows\system32\DRIVERS\AgileVpn.sys

16:12:56.0862 2504 RasAgileVpn - ok

16:12:56.0924 2504 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\windows\system32\DRIVERS\rasl2tp.sys

16:12:56.0926 2504 Rasl2tp - ok

16:12:57.0079 2504 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\windows\system32\DRIVERS\raspppoe.sys

16:12:57.0082 2504 RasPppoe - ok

16:12:57.0134 2504 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\windows\system32\DRIVERS\rassstp.sys

16:12:57.0256 2504 RasSstp - ok

16:12:57.0423 2504 rdbss (77f665941019a1594d887a74f301fa2f) C:\windows\system32\DRIVERS\rdbss.sys

16:12:57.0442 2504 rdbss - ok

16:12:57.0548 2504 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\windows\system32\DRIVERS\rdpbus.sys

16:12:57.0556 2504 rdpbus - ok

16:12:57.0649 2504 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\windows\system32\DRIVERS\RDPCDD.sys

16:12:57.0649 2504 RDPCDD - ok

16:12:57.0712 2504 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\windows\system32\drivers\rdpencdd.sys

16:12:57.0712 2504 RDPENCDD - ok

16:12:57.0817 2504 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\windows\system32\drivers\rdprefmp.sys

16:12:57.0818 2504 RDPREFMP - ok

16:12:57.0870 2504 RDPWD (15b66c206b5cb095bab980553f38ed23) C:\windows\system32\drivers\RDPWD.sys

16:12:57.0874 2504 RDPWD - ok

16:12:57.0990 2504 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\windows\system32\drivers\rdyboost.sys

16:12:57.0992 2504 rdyboost - ok

16:12:58.0040 2504 RFCOMM (3dd798846e2c28102b922c56e71b7932) C:\windows\system32\DRIVERS\rfcomm.sys

16:12:58.0049 2504 RFCOMM - ok

16:12:58.0134 2504 rimspci (e20b1907fc72a3664ece21e3c20fc63d) C:\windows\system32\DRIVERS\rimspe64.sys

16:12:58.0152 2504 rimspci - ok

16:12:58.0176 2504 risdpcie (7dda2e5cf452dad24b1be704225c18ee) C:\windows\system32\DRIVERS\risdpe64.sys

16:12:58.0182 2504 risdpcie - ok

16:12:58.0209 2504 rixdpcie (6a1cd4674505e6791390a1ab71da1fbe) C:\windows\system32\DRIVERS\rixdpe64.sys

16:12:58.0228 2504 rixdpcie - ok

16:12:58.0370 2504 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\windows\system32\DRIVERS\rspndr.sys

16:12:58.0384 2504 rspndr - ok

16:12:58.0490 2504 RTL8167 (f65f171165fbb613f7aa3cc78e8cab42) C:\windows\system32\DRIVERS\Rt64win7.sys

16:12:58.0502 2504 RTL8167 - ok

16:12:58.0663 2504 rtl8192se (7cd14bf5b42931fb80bee5d3e6ba7089) C:\windows\system32\DRIVERS\rtl8192se.sys

16:12:58.0693 2504 rtl8192se - ok

16:12:58.0868 2504 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\windows\system32\drivers\sbp2port.sys

16:12:58.0911 2504 sbp2port - ok

16:12:59.0018 2504 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\windows\system32\DRIVERS\scfilter.sys

16:12:59.0028 2504 scfilter - ok

16:12:59.0241 2504 sdbus (111e0ebc0ad79cb0fa014b907b231cf0) C:\windows\system32\drivers\sdbus.sys

16:12:59.0262 2504 sdbus - ok

16:12:59.0357 2504 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\windows\system32\drivers\secdrv.sys

16:12:59.0361 2504 secdrv - ok

16:12:59.0525 2504 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\windows\system32\DRIVERS\serenum.sys

16:12:59.0549 2504 Serenum - ok

16:12:59.0579 2504 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\windows\system32\DRIVERS\serial.sys

16:12:59.0581 2504 Serial - ok

16:12:59.0645 2504 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\windows\system32\DRIVERS\sermouse.sys

16:12:59.0653 2504 sermouse - ok

16:12:59.0786 2504 sffdisk (a554811bcd09279536440c964ae35bbf) C:\windows\system32\drivers\sffdisk.sys

16:12:59.0806 2504 sffdisk - ok

16:12:59.0837 2504 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\windows\system32\drivers\sffp_mmc.sys

16:12:59.0881 2504 sffp_mmc - ok

16:12:59.0944 2504 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\windows\system32\drivers\sffp_sd.sys

16:12:59.0946 2504 sffp_sd - ok

16:12:59.0996 2504 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\windows\system32\DRIVERS\sfloppy.sys

16:13:00.0033 2504 sfloppy - ok

16:13:00.0244 2504 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\windows\system32\DRIVERS\SiSRaid2.sys

16:13:00.0268 2504 SiSRaid2 - ok

16:13:00.0406 2504 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\windows\system32\DRIVERS\sisraid4.sys

16:13:00.0419 2504 SiSRaid4 - ok

16:13:00.0449 2504 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\windows\system32\DRIVERS\smb.sys

16:13:00.0456 2504 Smb - ok

16:13:00.0595 2504 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\windows\system32\drivers\spldr.sys

16:13:00.0596 2504 spldr - ok

16:13:00.0770 2504 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\windows\system32\DRIVERS\srv.sys

16:13:00.0798 2504 srv - ok

16:13:00.0938 2504 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\windows\system32\DRIVERS\srv2.sys

16:13:00.0948 2504 srv2 - ok

16:13:01.0000 2504 srvnet (27e461f0be5bff5fc737328f749538c3) C:\windows\system32\DRIVERS\srvnet.sys

16:13:01.0009 2504 srvnet - ok

16:13:01.0115 2504 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\windows\system32\DRIVERS\stexstor.sys

16:13:01.0116 2504 stexstor - ok

16:13:01.0177 2504 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\windows\system32\drivers\swenum.sys

16:13:01.0185 2504 swenum - ok

16:13:01.0361 2504 SynTP (be7311da9d6833fa69ed04b744a1c8f8) C:\windows\system32\DRIVERS\SynTP.sys

16:13:01.0364 2504 SynTP - ok

16:13:01.0541 2504 Tcpip (fc62769e7bff2896035aeed399108162) C:\windows\system32\drivers\tcpip.sys

16:13:01.0590 2504 Tcpip - ok

16:13:01.0813 2504 TCPIP6 (fc62769e7bff2896035aeed399108162) C:\windows\system32\DRIVERS\tcpip.sys

16:13:01.0827 2504 TCPIP6 - ok

16:13:01.0933 2504 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\windows\system32\drivers\tcpipreg.sys

16:13:01.0934 2504 tcpipreg - ok

16:13:01.0988 2504 tdcmdpst (fd542b661bd22fa69ca789ad0ac58c29) C:\windows\system32\DRIVERS\tdcmdpst.sys

16:13:01.0988 2504 tdcmdpst - ok

16:13:02.0086 2504 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\windows\system32\drivers\tdpipe.sys

16:13:02.0087 2504 TDPIPE - ok

16:13:02.0094 2504 TDTCP (e4245bda3190a582d55ed09e137401a9) C:\windows\system32\drivers\tdtcp.sys

16:13:02.0108 2504 TDTCP - ok

16:13:02.0207 2504 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\windows\system32\DRIVERS\tdx.sys

16:13:02.0209 2504 tdx - ok

16:13:02.0308 2504 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\windows\system32\drivers\termdd.sys

16:13:02.0309 2504 TermDD - ok

16:13:02.0418 2504 Thpdrv (c013f6acaa9761f571bd28dada7c157d) C:\windows\system32\DRIVERS\thpdrv.sys

16:13:02.0429 2504 Thpdrv - ok

16:13:02.0478 2504 Thpevm (b4e609047434ed948af7bdef2fa66e38) C:\windows\system32\DRIVERS\Thpevm.SYS

16:13:02.0479 2504 Thpevm - ok

16:13:02.0685 2504 tos_sps64 (09ff7b0b1b5c3d225495cb6f5a9b39f8) C:\windows\system32\DRIVERS\tos_sps64.sys

16:13:02.0691 2504 tos_sps64 - ok

16:13:02.0864 2504 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\windows\system32\DRIVERS\tssecsrv.sys

16:13:02.0865 2504 tssecsrv - ok

16:13:02.0972 2504 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\windows\system32\drivers\tsusbflt.sys

16:13:02.0976 2504 TsUsbFlt - ok

16:13:03.0122 2504 tunnel (3566a8daafa27af944f5d705eaa64894) C:\windows\system32\DRIVERS\tunnel.sys

16:13:03.0155 2504 tunnel - ok

16:13:03.0281 2504 TVALZ (550b567f9364d8f7684c3fb3ea665a72) C:\windows\system32\DRIVERS\TVALZ_O.SYS

16:13:03.0286 2504 TVALZ - ok

16:13:03.0390 2504 TVALZFL (9c7191f4b2e49bff47a6c1144b5923fa) C:\windows\system32\DRIVERS\TVALZFL.sys

16:13:03.0405 2504 TVALZFL - ok

16:13:03.0535 2504 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\windows\system32\DRIVERS\uagp35.sys

16:13:03.0537 2504 uagp35 - ok

16:13:03.0608 2504 UBHelper (2e22c1fd397a5a9ffef55e9d1fc96c00) C:\windows\system32\drivers\UBHelper.sys

16:13:03.0621 2504 UBHelper - ok

16:13:03.0736 2504 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\windows\system32\DRIVERS\udfs.sys

16:13:03.0770 2504 udfs - ok

16:13:03.0856 2504 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\windows\system32\drivers\uliagpkx.sys

16:13:03.0858 2504 uliagpkx - ok

16:13:03.0955 2504 umbus (dc54a574663a895c8763af0fa1ff7561) C:\windows\system32\drivers\umbus.sys

16:13:03.0957 2504 umbus - ok

16:13:04.0029 2504 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\windows\system32\DRIVERS\umpass.sys

16:13:04.0068 2504 UmPass - ok

16:13:04.0193 2504 USBAAPL64 (cd03479f2da26500b203ed075c146a7a) C:\windows\system32\Drivers\usbaapl64.sys

16:13:04.0242 2504 USBAAPL64 - ok

16:13:04.0283 2504 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\windows\system32\DRIVERS\usbccgp.sys

16:13:04.0285 2504 usbccgp - ok

16:13:04.0399 2504 usbcir (af0892a803fdda7492f595368e3b68e7) C:\windows\system32\drivers\usbcir.sys

16:13:04.0403 2504 usbcir - ok

16:13:04.0426 2504 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\windows\system32\DRIVERS\usbehci.sys

16:13:04.0427 2504 usbehci - ok

16:13:04.0471 2504 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\windows\system32\DRIVERS\usbhub.sys

16:13:04.0479 2504 usbhub - ok

16:13:04.0616 2504 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\windows\system32\drivers\usbohci.sys

16:13:04.0617 2504 usbohci - ok

16:13:04.0706 2504 usbprint (73188f58fb384e75c4063d29413cee3d) C:\windows\system32\DRIVERS\usbprint.sys

16:13:04.0709 2504 usbprint - ok

16:13:04.0755 2504 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\windows\system32\DRIVERS\usbscan.sys

16:13:04.0756 2504 usbscan - ok

16:13:04.0843 2504 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\windows\system32\DRIVERS\USBSTOR.SYS

16:13:04.0845 2504 USBSTOR - ok

16:13:04.0883 2504 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\windows\system32\DRIVERS\usbuhci.sys

16:13:04.0893 2504 usbuhci - ok

16:13:05.0021 2504 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\windows\System32\Drivers\usbvideo.sys

16:13:05.0032 2504 usbvideo - ok

16:13:05.0120 2504 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\windows\system32\drivers\vdrvroot.sys

16:13:05.0121 2504 vdrvroot - ok

16:13:05.0207 2504 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\windows\system32\DRIVERS\vgapnp.sys

16:13:05.0209 2504 vga - ok

16:13:05.0271 2504 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\windows\System32\drivers\vga.sys

16:13:05.0273 2504 VgaSave - ok

16:13:05.0370 2504 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\windows\system32\drivers\vhdmp.sys

16:13:05.0394 2504 vhdmp - ok

16:13:05.0497 2504 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\windows\system32\drivers\viaide.sys

16:13:05.0504 2504 viaide - ok

16:13:05.0600 2504 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\windows\system32\drivers\volmgr.sys

16:13:05.0601 2504 volmgr - ok

16:13:05.0672 2504 volmgrx (a255814907c89be58b79ef2f189b843b) C:\windows\system32\drivers\volmgrx.sys

16:13:05.0676 2504 volmgrx - ok

16:13:05.0773 2504 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\windows\system32\drivers\volsnap.sys

16:13:05.0783 2504 volsnap - ok

16:13:05.0863 2504 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\windows\system32\DRIVERS\vsmraid.sys

16:13:05.0873 2504 vsmraid - ok

16:13:05.0921 2504 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\windows\system32\DRIVERS\vwifibus.sys

16:13:05.0927 2504 vwifibus - ok

16:13:06.0023 2504 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\windows\system32\DRIVERS\vwififlt.sys

16:13:06.0030 2504 vwififlt - ok

16:13:06.0125 2504 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\windows\system32\DRIVERS\vwifimp.sys

16:13:06.0126 2504 vwifimp - ok

16:13:06.0220 2504 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\windows\system32\DRIVERS\wacompen.sys

16:13:06.0240 2504 WacomPen - ok

16:13:06.0406 2504 WANARP (356afd78a6ed4457169241ac3965230c) C:\windows\system32\DRIVERS\wanarp.sys

16:13:06.0411 2504 WANARP - ok

16:13:06.0420 2504 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\windows\system32\DRIVERS\wanarp.sys

16:13:06.0421 2504 Wanarpv6 - ok

16:13:06.0544 2504 Wd (72889e16ff12ba0f235467d6091b17dc) C:\windows\system32\DRIVERS\wd.sys

16:13:06.0547 2504 Wd - ok

16:13:06.0671 2504 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\windows\system32\drivers\Wdf01000.sys

16:13:06.0686 2504 Wdf01000 - ok

16:13:06.0861 2504 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\windows\system32\DRIVERS\wfplwf.sys

16:13:06.0862 2504 WfpLwf - ok

16:13:06.0950 2504 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\windows\system32\drivers\wimmount.sys

16:13:06.0952 2504 WIMMount - ok

16:13:07.0210 2504 WinUsb (fe88b288356e7b47b74b13372add906d) C:\windows\system32\DRIVERS\WinUsb.sys

16:13:07.0213 2504 WinUsb - ok

16:13:07.0344 2504 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\windows\system32\drivers\wmiacpi.sys

16:13:07.0345 2504 WmiAcpi - ok

16:13:07.0437 2504 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\windows\system32\drivers\ws2ifsl.sys

16:13:07.0550 2504 ws2ifsl - ok

16:13:07.0777 2504 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\windows\system32\drivers\WudfPf.sys

16:13:07.0794 2504 WudfPf - ok

16:13:07.0909 2504 WUDFRd (cf8d590be3373029d57af80914190682) C:\windows\system32\DRIVERS\WUDFRd.sys

16:13:07.0923 2504 WUDFRd - ok

16:13:08.0052 2504 MBR (0x1B8) (5b5e648d12fcadc244c1ec30318e1eb9) \Device\Harddisk0\DR0

16:13:08.0153 2504 \Device\Harddisk0\DR0 - ok

16:13:08.0178 2504 Boot (0x1200) (98938257e2b2777836945f7021fa03b3) \Device\Harddisk0\DR0\Partition0

16:13:08.0179 2504 \Device\Harddisk0\DR0\Partition0 - ok

16:13:08.0182 2504 ============================================================

16:13:08.0182 2504 Scan finished

16:13:08.0182 2504 ============================================================

16:13:08.0199 3300 Detected object count: 0

16:13:08.0199 3300 Actual detected object count: 0

16:13:17.0327 2692 ============================================================

16:13:17.0327 2692 Scan started

16:13:17.0328 2692 Mode: Manual; SigCheck; TDLFS;

16:13:17.0328 2692 ============================================================

16:13:17.0611 2692 1394ohci (a87d604aea360176311474c87a63bb88) C:\windows\system32\drivers\1394ohci.sys

16:13:17.0758 2692 1394ohci - ok

16:13:17.0867 2692 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\windows\system32\drivers\ACPI.sys

16:13:17.0913 2692 ACPI - ok

16:13:17.0969 2692 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\windows\system32\drivers\acpipmi.sys

16:13:18.0086 2692 AcpiPmi - ok

16:13:18.0203 2692 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\windows\system32\DRIVERS\adp94xx.sys

16:13:18.0240 2692 adp94xx - ok

16:13:18.0339 2692 adpahci (597f78224ee9224ea1a13d6350ced962) C:\windows\system32\DRIVERS\adpahci.sys

16:13:18.0368 2692 adpahci - ok

16:13:18.0412 2692 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\windows\system32\DRIVERS\adpu320.sys

16:13:18.0462 2692 adpu320 - ok

16:13:18.0536 2692 AFD (d5b031c308a409a0a576bff4cf083d30) C:\windows\system32\drivers\afd.sys

16:13:18.0650 2692 AFD - ok

16:13:18.0788 2692 AgereSoftModem (98022774d9930ecbb292e70db7601df6) C:\windows\system32\DRIVERS\agrsm64.sys

16:13:18.0924 2692 AgereSoftModem - ok

16:13:19.0026 2692 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\windows\system32\drivers\agp440.sys

16:13:19.0056 2692 agp440 - ok

16:13:19.0095 2692 aliide (5812713a477a3ad7363c7438ca2ee038) C:\windows\system32\drivers\aliide.sys

16:13:19.0117 2692 aliide - ok

16:13:19.0164 2692 amdide (1ff8b4431c353ce385c875f194924c0c) C:\windows\system32\drivers\amdide.sys

16:13:19.0188 2692 amdide - ok

16:13:19.0297 2692 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\windows\system32\DRIVERS\amdk8.sys

16:13:19.0414 2692 AmdK8 - ok

16:13:19.0514 2692 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\windows\system32\DRIVERS\amdppm.sys

16:13:19.0612 2692 AmdPPM - ok

16:13:19.0657 2692 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\windows\system32\drivers\amdsata.sys

16:13:19.0684 2692 amdsata - ok

16:13:19.0781 2692 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\windows\system32\DRIVERS\amdsbs.sys

16:13:19.0809 2692 amdsbs - ok

16:13:19.0875 2692 amdxata (540daf1cea6094886d72126fd7c33048) C:\windows\system32\drivers\amdxata.sys

16:13:19.0904 2692 amdxata - ok

16:13:19.0988 2692 AppID (89a69c3f2f319b43379399547526d952) C:\windows\system32\drivers\appid.sys

16:13:20.0176 2692 AppID - ok

16:13:20.0281 2692 arc (c484f8ceb1717c540242531db7845c4e) C:\windows\system32\DRIVERS\arc.sys

16:13:20.0302 2692 arc - ok

16:13:20.0327 2692 arcsas (019af6924aefe7839f61c830227fe79c) C:\windows\system32\DRIVERS\arcsas.sys

16:13:20.0393 2692 arcsas - ok

16:13:20.0422 2692 AsyncMac (769765ce2cc62867468cea93969b2242) C:\windows\system32\DRIVERS\asyncmac.sys

16:13:20.0638 2692 AsyncMac - ok

16:13:20.0763 2692 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\windows\system32\drivers\atapi.sys

16:13:20.0787 2692 atapi - ok

16:13:20.0882 2692 athr (e857eee6b92aaa473ebb3465add8f7e7) C:\windows\system32\DRIVERS\athrx.sys

16:13:21.0042 2692 athr - ok

16:13:21.0151 2692 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\windows\system32\DRIVERS\bxvbda.sys

16:13:21.0277 2692 b06bdrv - ok

16:13:21.0369 2692 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\windows\system32\DRIVERS\b57nd60a.sys

16:13:21.0441 2692 b57nd60a - ok

16:13:21.0548 2692 Beep (16a47ce2decc9b099349a5f840654746) C:\windows\system32\drivers\Beep.sys

16:13:21.0638 2692 Beep - ok

16:13:21.0695 2692 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\windows\system32\DRIVERS\blbdrive.sys

16:13:21.0757 2692 blbdrive - ok

16:13:21.0888 2692 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\windows\system32\DRIVERS\bowser.sys

16:13:21.0972 2692 bowser - ok

16:13:22.0060 2692 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\windows\system32\DRIVERS\BrFiltLo.sys

16:13:22.0120 2692 BrFiltLo - ok

16:13:22.0161 2692 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\windows\system32\DRIVERS\BrFiltUp.sys

16:13:22.0189 2692 BrFiltUp - ok

16:13:22.0294 2692 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\windows\System32\Drivers\Brserid.sys

16:13:22.0371 2692 Brserid - ok

16:13:22.0380 2692 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\windows\System32\Drivers\BrSerWdm.sys

16:13:22.0428 2692 BrSerWdm - ok

16:13:22.0526 2692 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\windows\System32\Drivers\BrUsbMdm.sys

16:13:22.0690 2692 BrUsbMdm - ok

16:13:22.0707 2692 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\windows\System32\Drivers\BrUsbSer.sys

16:13:22.0735 2692 BrUsbSer - ok

16:13:22.0800 2692 BthEnum (cf98190a94f62e405c8cb255018b2315) C:\windows\system32\drivers\BthEnum.sys

16:13:22.0964 2692 BthEnum - ok

16:13:23.0065 2692 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\windows\system32\DRIVERS\bthmodem.sys

16:13:23.0155 2692 BTHMODEM - ok

16:13:23.0268 2692 BthPan (02dd601b708dd0667e1331fa8518e9ff) C:\windows\system32\DRIVERS\bthpan.sys

16:13:23.0440 2692 BthPan - ok

16:13:23.0571 2692 BTHPORT (64c198198501f7560ee41d8d1efa7952) C:\windows\System32\Drivers\BTHport.sys

16:13:23.0691 2692 BTHPORT - ok

16:13:23.0844 2692 BTHUSB (f188b7394d81010767b6df3178519a37) C:\windows\System32\Drivers\BTHUSB.sys

16:13:23.0983 2692 BTHUSB - ok

16:13:24.0066 2692 cdfs (b8bd2bb284668c84865658c77574381a) C:\windows\system32\DRIVERS\cdfs.sys

16:13:24.0243 2692 cdfs - ok

16:13:24.0421 2692 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\windows\system32\drivers\cdrom.sys

16:13:24.0517 2692 cdrom - ok

16:13:24.0634 2692 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\windows\system32\DRIVERS\circlass.sys

16:13:24.0771 2692 circlass - ok

16:13:24.0877 2692 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\windows\system32\CLFS.sys

16:13:25.0008 2692 CLFS - ok

16:13:25.0134 2692 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\windows\system32\DRIVERS\CmBatt.sys

16:13:25.0181 2692 CmBatt - ok

16:13:25.0265 2692 cmdide (e19d3f095812725d88f9001985b94edd) C:\windows\system32\drivers\cmdide.sys

16:13:25.0294 2692 cmdide - ok

16:13:25.0421 2692 CNG (c4943b6c962e4b82197542447ad599f4) C:\windows\system32\Drivers\cng.sys

16:13:25.0494 2692 CNG - ok

16:13:25.0624 2692 Compbatt (102de219c3f61415f964c88e9085ad14) C:\windows\system32\DRIVERS\compbatt.sys

16:13:25.0668 2692 Compbatt - ok

16:13:25.0816 2692 CompositeBus (03edb043586cceba243d689bdda370a8) C:\windows\system32\drivers\CompositeBus.sys

16:13:25.0945 2692 CompositeBus - ok

16:13:26.0105 2692 crcdisk (1c827878a998c18847245fe1f34ee597) C:\windows\system32\DRIVERS\crcdisk.sys

16:13:26.0180 2692 crcdisk - ok

16:13:26.0376 2692 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\windows\system32\Drivers\dfsc.sys

16:13:26.0627 2692 DfsC - ok

16:13:26.0720 2692 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\windows\system32\drivers\discache.sys

16:13:27.0027 2692 discache - ok

16:13:27.0181 2692 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\windows\system32\DRIVERS\disk.sys

16:13:27.0239 2692 Disk - ok

16:13:27.0330 2692 drmkaud (9b19f34400d24df84c858a421c205754) C:\windows\system32\drivers\drmkaud.sys

16:13:27.0405 2692 drmkaud - ok

16:13:27.0535 2692 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\windows\System32\drivers\dxgkrnl.sys

16:13:27.0779 2692 DXGKrnl - ok

16:13:28.0098 2692 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\windows\system32\DRIVERS\evbda.sys

16:13:28.0224 2692 ebdrv - ok

16:13:28.0360 2692 elxstor (0e5da5369a0fcaea12456dd852545184) C:\windows\system32\DRIVERS\elxstor.sys

16:13:28.0427 2692 elxstor - ok

16:13:28.0539 2692 ErrDev (34a3c54752046e79a126e15c51db409b) C:\windows\system32\drivers\errdev.sys

16:13:28.0640 2692 ErrDev - ok

16:13:28.0705 2692 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\windows\system32\drivers\exfat.sys

16:13:28.0821 2692 exfat - ok

16:13:28.0964 2692 fastfat (0adc83218b66a6db380c330836f3e36d) C:\windows\system32\drivers\fastfat.sys

16:13:29.0065 2692 fastfat - ok

16:13:29.0163 2692 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\windows\system32\DRIVERS\fdc.sys

16:13:29.0257 2692 fdc - ok

16:13:29.0365 2692 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\windows\system32\drivers\fileinfo.sys

16:13:29.0391 2692 FileInfo - ok

16:13:29.0423 2692 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\windows\system32\drivers\filetrace.sys

16:13:29.0508 2692 Filetrace - ok

16:13:29.0629 2692 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\windows\system32\DRIVERS\flpydisk.sys

16:13:29.0656 2692 flpydisk - ok

16:13:29.0707 2692 FltMgr (da6b67270fd9db3697b20fce94950741) C:\windows\system32\drivers\fltmgr.sys

16:13:29.0754 2692 FltMgr - ok

16:13:29.0865 2692 FsDepends (d43703496149971890703b4b1b723eac) C:\windows\system32\drivers\FsDepends.sys

16:13:29.0894 2692 FsDepends - ok

16:13:29.0927 2692 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\windows\system32\drivers\Fs_Rec.sys

16:13:30.0010 2692 Fs_Rec - ok

16:13:30.0137 2692 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\windows\system32\DRIVERS\fvevol.sys

16:13:30.0167 2692 fvevol - ok

16:13:30.0222 2692 FwLnk (60acb128e64c35c2b4e4aab1b0a5c293) C:\windows\system32\DRIVERS\FwLnk.sys

16:13:30.0272 2692 FwLnk - ok

16:13:30.0371 2692 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\windows\system32\DRIVERS\gagp30kx.sys

16:13:30.0412 2692 gagp30kx - ok

16:13:30.0456 2692 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\windows\system32\DRIVERS\GEARAspiWDM.sys

16:13:30.0515 2692 GEARAspiWDM - ok

16:13:30.0655 2692 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\windows\system32\drivers\hcw85cir.sys

16:13:30.0740 2692 hcw85cir - ok

16:13:30.0840 2692 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\windows\system32\drivers\HdAudio.sys

16:13:30.0911 2692 HdAudAddService - ok

16:13:31.0060 2692 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\windows\system32\drivers\HDAudBus.sys

16:13:31.0255 2692 HDAudBus - ok

16:13:31.0347 2692 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\windows\system32\DRIVERS\HidBatt.sys

16:13:31.0594 2692 HidBatt - ok

16:13:31.0705 2692 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\windows\system32\DRIVERS\hidbth.sys

16:13:31.0794 2692 HidBth - ok

16:13:31.0804 2692 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\windows\system32\DRIVERS\hidir.sys

16:13:31.0864 2692 HidIr - ok

16:13:31.0935 2692 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\windows\system32\drivers\hidusb.sys

16:13:31.0986 2692 HidUsb - ok

Link to post
Share on other sites

16:13:32.0106 2692 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\windows\system32\drivers\HpSAMD.sys

16:13:32.0128 2692 HpSAMD - ok

16:13:32.0234 2692 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\windows\system32\drivers\HTTP.sys

16:13:32.0352 2692 HTTP - ok

16:13:32.0521 2692 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\windows\system32\drivers\hwpolicy.sys

16:13:32.0579 2692 hwpolicy - ok

16:13:32.0668 2692 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\windows\system32\drivers\i8042prt.sys

16:13:32.0692 2692 i8042prt - ok

16:13:32.0826 2692 iaStor (bbb3b6df1abb0fe35802ede85cc1c011) C:\windows\system32\DRIVERS\iaStor.sys

16:13:32.0891 2692 iaStor - ok

16:13:32.0968 2692 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\windows\system32\drivers\iaStorV.sys

16:13:32.0998 2692 iaStorV - ok

16:13:33.0292 2692 igfx (3c3f27002abc69c5afe29cbe6cf7addf) C:\windows\system32\DRIVERS\igdkmd64.sys

16:13:33.0824 2692 igfx - ok

16:13:33.0979 2692 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\windows\system32\DRIVERS\iirsp.sys

16:13:34.0079 2692 iirsp - ok

16:13:34.0307 2692 IntcAzAudAddService (0c3cf4b3bae28e121a1689e3538f8712) C:\windows\system32\drivers\RTKVHD64.sys

16:13:34.0493 2692 IntcAzAudAddService - ok

16:13:34.0633 2692 IntcHdmiAddService (88a20fa54c73ded4e8dac764e9130ae9) C:\windows\system32\drivers\IntcHdmi.sys

16:13:34.0787 2692 IntcHdmiAddService - ok

16:13:34.0910 2692 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\windows\system32\drivers\intelide.sys

16:13:34.0957 2692 intelide - ok

16:13:35.0065 2692 intelppm (ada036632c664caa754079041cf1f8c1) C:\windows\system32\DRIVERS\intelppm.sys

16:13:35.0276 2692 intelppm - ok

16:13:35.0505 2692 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\windows\system32\DRIVERS\ipfltdrv.sys

16:13:35.0620 2692 IpFilterDriver - ok

16:13:35.0681 2692 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\windows\system32\drivers\IPMIDrv.sys

16:13:35.0758 2692 IPMIDRV - ok

16:13:35.0904 2692 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\windows\system32\drivers\ipnat.sys

16:13:35.0991 2692 IPNAT - ok

16:13:36.0114 2692 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\windows\system32\drivers\irenum.sys

16:13:36.0210 2692 IRENUM - ok

16:13:36.0330 2692 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\windows\system32\drivers\isapnp.sys

16:13:36.0409 2692 isapnp - ok

16:13:36.0476 2692 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\windows\system32\drivers\msiscsi.sys

16:13:36.0519 2692 iScsiPrt - ok

16:13:36.0634 2692 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\windows\system32\drivers\kbdclass.sys

16:13:36.0661 2692 kbdclass - ok

16:13:36.0706 2692 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\windows\system32\drivers\kbdhid.sys

16:13:36.0793 2692 kbdhid - ok

16:13:36.0908 2692 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\windows\system32\Drivers\ksecdd.sys

16:13:36.0941 2692 KSecDD - ok

16:13:36.0974 2692 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\windows\system32\Drivers\ksecpkg.sys

16:13:37.0026 2692 KSecPkg - ok

16:13:37.0053 2692 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\windows\system32\drivers\ksthunk.sys

16:13:37.0216 2692 ksthunk - ok

16:13:37.0452 2692 lltdio (1538831cf8ad2979a04c423779465827) C:\windows\system32\DRIVERS\lltdio.sys

16:13:37.0529 2692 lltdio - ok

16:13:37.0599 2692 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\windows\system32\DRIVERS\lsi_fc.sys

16:13:37.0635 2692 LSI_FC - ok

16:13:37.0756 2692 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\windows\system32\DRIVERS\lsi_sas.sys

16:13:37.0779 2692 LSI_SAS - ok

16:13:37.0807 2692 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\windows\system32\DRIVERS\lsi_sas2.sys

16:13:37.0829 2692 LSI_SAS2 - ok

16:13:37.0907 2692 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\windows\system32\DRIVERS\lsi_scsi.sys

16:13:37.0927 2692 LSI_SCSI - ok

16:13:37.0947 2692 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\windows\system32\drivers\luafv.sys

16:13:38.0063 2692 luafv - ok

16:13:38.0149 2692 MBAMProtector (79da94b35371b9e7104460c7693dcb2c) C:\windows\system32\drivers\mbam.sys

16:13:38.0167 2692 MBAMProtector - ok

16:13:38.0235 2692 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\windows\system32\DRIVERS\megasas.sys

16:13:38.0254 2692 megasas - ok

16:13:38.0330 2692 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\windows\system32\DRIVERS\MegaSR.sys

16:13:38.0393 2692 MegaSR - ok

16:13:38.0477 2692 Modem (800ba92f7010378b09f9ed9270f07137) C:\windows\system32\drivers\modem.sys

16:13:38.0610 2692 Modem - ok

16:13:38.0737 2692 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\windows\system32\DRIVERS\monitor.sys

16:13:38.0817 2692 monitor - ok

16:13:38.0980 2692 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\windows\system32\drivers\mouclass.sys

16:13:39.0004 2692 mouclass - ok

16:13:39.0033 2692 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\windows\system32\DRIVERS\mouhid.sys

16:13:39.0090 2692 mouhid - ok

16:13:39.0203 2692 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\windows\system32\drivers\mountmgr.sys

16:13:39.0240 2692 mountmgr - ok

16:13:39.0297 2692 MpFilter (c177a7ebf5e8a0b596f618870516cab8) C:\windows\system32\DRIVERS\MpFilter.sys

16:13:39.0361 2692 MpFilter - ok

16:13:39.0391 2692 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\windows\system32\drivers\mpio.sys

16:13:39.0422 2692 mpio - ok

16:13:39.0545 2692 MpNWMon (8fbf6b31fe8af1833d93c5913d5b4d55) C:\windows\system32\DRIVERS\MpNWMon.sys

16:13:39.0608 2692 MpNWMon - ok

16:13:39.0646 2692 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\windows\system32\drivers\mpsdrv.sys

16:13:39.0756 2692 mpsdrv - ok

16:13:39.0891 2692 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\windows\system32\drivers\mrxdav.sys

16:13:40.0030 2692 MRxDAV - ok

16:13:40.0148 2692 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\windows\system32\DRIVERS\mrxsmb.sys

16:13:40.0279 2692 mrxsmb - ok

16:13:40.0375 2692 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\windows\system32\DRIVERS\mrxsmb10.sys

16:13:40.0489 2692 mrxsmb10 - ok

16:13:40.0576 2692 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\windows\system32\DRIVERS\mrxsmb20.sys

16:13:40.0675 2692 mrxsmb20 - ok

16:13:40.0769 2692 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\windows\system32\drivers\msahci.sys

16:13:40.0819 2692 msahci - ok

16:13:40.0898 2692 msdsm (db801a638d011b9633829eb6f663c900) C:\windows\system32\drivers\msdsm.sys

16:13:40.0979 2692 msdsm - ok

16:13:41.0080 2692 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\windows\system32\drivers\Msfs.sys

16:13:41.0202 2692 Msfs - ok

16:13:41.0335 2692 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\windows\System32\drivers\mshidkmdf.sys

16:13:41.0521 2692 mshidkmdf - ok

16:13:41.0666 2692 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\windows\system32\drivers\msisadrv.sys

16:13:41.0732 2692 msisadrv - ok

16:13:41.0818 2692 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\windows\system32\drivers\MSKSSRV.sys

16:13:41.0884 2692 MSKSSRV - ok

16:13:41.0982 2692 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\windows\system32\drivers\MSPCLOCK.sys

16:13:42.0095 2692 MSPCLOCK - ok

16:13:42.0199 2692 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\windows\system32\drivers\MSPQM.sys

16:13:42.0319 2692 MSPQM - ok

16:13:42.0462 2692 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\windows\system32\drivers\MsRPC.sys

16:13:42.0531 2692 MsRPC - ok

16:13:42.0685 2692 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\windows\system32\drivers\mssmbios.sys

16:13:42.0761 2692 mssmbios - ok

16:13:42.0898 2692 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\windows\system32\drivers\MSTEE.sys

16:13:43.0020 2692 MSTEE - ok

16:13:43.0131 2692 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\windows\system32\DRIVERS\MTConfig.sys

16:13:43.0208 2692 MTConfig - ok

16:13:43.0271 2692 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\windows\system32\Drivers\mup.sys

16:13:43.0318 2692 Mup - ok

16:13:43.0434 2692 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\windows\system32\DRIVERS\nwifi.sys

16:13:43.0497 2692 NativeWifiP - ok

16:13:43.0620 2692 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\windows\system32\drivers\ndis.sys

16:13:43.0781 2692 NDIS - ok

16:13:43.0954 2692 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\windows\system32\DRIVERS\ndiscap.sys

16:13:44.0122 2692 NdisCap - ok

16:13:44.0256 2692 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\windows\system32\DRIVERS\ndistapi.sys

16:13:44.0457 2692 NdisTapi - ok

16:13:44.0697 2692 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\windows\system32\DRIVERS\ndisuio.sys

16:13:44.0904 2692 Ndisuio - ok

16:13:45.0090 2692 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\windows\system32\DRIVERS\ndiswan.sys

16:13:45.0325 2692 NdisWan - ok

16:13:45.0466 2692 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\windows\system32\drivers\NDProxy.sys

16:13:45.0548 2692 NDProxy - ok

16:13:45.0618 2692 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\windows\system32\DRIVERS\netbios.sys

16:13:45.0675 2692 NetBIOS - ok

16:13:45.0764 2692 NetBT (09594d1089c523423b32a4229263f068) C:\windows\system32\DRIVERS\netbt.sys

16:13:45.0857 2692 NetBT - ok

16:13:45.0966 2692 nfrd960 (77889813be4d166cdab78ddba990da92) C:\windows\system32\DRIVERS\nfrd960.sys

16:13:45.0993 2692 nfrd960 - ok

16:13:46.0087 2692 NisDrv (5f7d72cbcdd025af1f38fdeee5646968) C:\windows\system32\DRIVERS\NisDrvWFP.sys

16:13:46.0109 2692 NisDrv - ok

16:13:46.0159 2692 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\windows\system32\drivers\Npfs.sys

16:13:46.0249 2692 Npfs - ok

16:13:46.0290 2692 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\windows\system32\drivers\nsiproxy.sys

16:13:46.0382 2692 nsiproxy - ok

16:13:46.0518 2692 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\windows\system32\drivers\Ntfs.sys

16:13:46.0603 2692 Ntfs - ok

16:13:46.0713 2692 NTIDrvr (64ddd0dee976302f4bd93e5efcc2f013) C:\windows\system32\drivers\NTIDrvr.sys

16:13:46.0746 2692 NTIDrvr - ok

16:13:46.0814 2692 Null (9899284589f75fa8724ff3d16aed75c1) C:\windows\system32\drivers\Null.sys

16:13:47.0003 2692 Null - ok

16:13:47.0121 2692 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\windows\system32\drivers\nvraid.sys

16:13:47.0170 2692 nvraid - ok

16:13:47.0237 2692 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\windows\system32\drivers\nvstor.sys

16:13:47.0310 2692 nvstor - ok

16:13:47.0415 2692 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\windows\system32\drivers\nv_agp.sys

16:13:47.0495 2692 nv_agp - ok

16:13:47.0594 2692 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\windows\system32\drivers\ohci1394.sys

16:13:47.0625 2692 ohci1394 - ok

16:13:47.0749 2692 Parport (0086431c29c35be1dbc43f52cc273887) C:\windows\system32\DRIVERS\parport.sys

16:13:47.0810 2692 Parport - ok

16:13:47.0944 2692 partmgr (871eadac56b0a4c6512bbe32753ccf79) C:\windows\system32\drivers\partmgr.sys

16:13:47.0986 2692 partmgr - ok

16:13:48.0092 2692 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\windows\system32\drivers\pci.sys

16:13:48.0128 2692 pci - ok

16:13:48.0149 2692 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\windows\system32\drivers\pciide.sys

16:13:48.0201 2692 pciide - ok

16:13:48.0300 2692 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\windows\system32\DRIVERS\pcmcia.sys

16:13:48.0366 2692 pcmcia - ok

16:13:48.0409 2692 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\windows\system32\drivers\pcw.sys

16:13:48.0431 2692 pcw - ok

16:13:48.0493 2692 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\windows\system32\drivers\peauth.sys

16:13:48.0704 2692 PEAUTH - ok

16:13:48.0833 2692 PGEffect (663962900e7fea522126ba287715bb4a) C:\windows\system32\DRIVERS\pgeffect.sys

16:13:48.0862 2692 PGEffect - ok

16:13:48.0975 2692 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\windows\system32\DRIVERS\raspptp.sys

16:13:49.0091 2692 PptpMiniport - ok

16:13:49.0216 2692 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\windows\system32\DRIVERS\processr.sys

16:13:49.0281 2692 Processor - ok

16:13:49.0362 2692 Psched (0557cf5a2556bd58e26384169d72438d) C:\windows\system32\DRIVERS\pacer.sys

16:13:49.0482 2692 Psched - ok

16:13:49.0681 2692 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\windows\system32\DRIVERS\ql2300.sys

16:13:49.0754 2692 ql2300 - ok

16:13:49.0861 2692 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\windows\system32\DRIVERS\ql40xx.sys

16:13:49.0881 2692 ql40xx - ok

16:13:49.0938 2692 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\windows\system32\drivers\qwavedrv.sys

16:13:49.0992 2692 QWAVEdrv - ok

16:13:50.0128 2692 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\windows\system32\DRIVERS\rasacd.sys

16:13:50.0207 2692 RasAcd - ok

16:13:50.0244 2692 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\windows\system32\DRIVERS\AgileVpn.sys

16:13:50.0347 2692 RasAgileVpn - ok

16:13:50.0463 2692 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\windows\system32\DRIVERS\rasl2tp.sys

16:13:50.0565 2692 Rasl2tp - ok

16:13:50.0629 2692 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\windows\system32\DRIVERS\raspppoe.sys

16:13:50.0790 2692 RasPppoe - ok

16:13:50.0882 2692 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\windows\system32\DRIVERS\rassstp.sys

16:13:50.0990 2692 RasSstp - ok

16:13:51.0106 2692 rdbss (77f665941019a1594d887a74f301fa2f) C:\windows\system32\DRIVERS\rdbss.sys

16:13:51.0192 2692 rdbss - ok

16:13:51.0247 2692 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\windows\system32\DRIVERS\rdpbus.sys

16:13:51.0331 2692 rdpbus - ok

16:13:51.0451 2692 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\windows\system32\DRIVERS\RDPCDD.sys

16:13:51.0559 2692 RDPCDD - ok

16:13:51.0699 2692 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\windows\system32\drivers\rdpencdd.sys

16:13:51.0819 2692 RDPENCDD - ok

16:13:51.0890 2692 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\windows\system32\drivers\rdprefmp.sys

16:13:51.0993 2692 RDPREFMP - ok

16:13:52.0087 2692 RDPWD (15b66c206b5cb095bab980553f38ed23) C:\windows\system32\drivers\RDPWD.sys

16:13:52.0235 2692 RDPWD - ok

16:13:52.0332 2692 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\windows\system32\drivers\rdyboost.sys

16:13:52.0364 2692 rdyboost - ok

16:13:52.0499 2692 RFCOMM (3dd798846e2c28102b922c56e71b7932) C:\windows\system32\DRIVERS\rfcomm.sys

16:13:52.0544 2692 RFCOMM - ok

16:13:52.0654 2692 rimspci (e20b1907fc72a3664ece21e3c20fc63d) C:\windows\system32\DRIVERS\rimspe64.sys

16:13:52.0757 2692 rimspci - ok

16:13:52.0871 2692 risdpcie (7dda2e5cf452dad24b1be704225c18ee) C:\windows\system32\DRIVERS\risdpe64.sys

16:13:52.0916 2692 risdpcie - ok

16:13:52.0971 2692 rixdpcie (6a1cd4674505e6791390a1ab71da1fbe) C:\windows\system32\DRIVERS\rixdpe64.sys

16:13:53.0082 2692 rixdpcie - ok

16:13:53.0210 2692 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\windows\system32\DRIVERS\rspndr.sys

16:13:53.0327 2692 rspndr - ok

16:13:53.0369 2692 RTL8167 (f65f171165fbb613f7aa3cc78e8cab42) C:\windows\system32\DRIVERS\Rt64win7.sys

16:13:53.0426 2692 RTL8167 - ok

16:13:53.0539 2692 rtl8192se (7cd14bf5b42931fb80bee5d3e6ba7089) C:\windows\system32\DRIVERS\rtl8192se.sys

16:13:53.0613 2692 rtl8192se - ok

16:13:53.0728 2692 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\windows\system32\drivers\sbp2port.sys

16:13:53.0757 2692 sbp2port - ok

16:13:53.0829 2692 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\windows\system32\DRIVERS\scfilter.sys

16:13:53.0944 2692 scfilter - ok

16:13:54.0050 2692 sdbus (111e0ebc0ad79cb0fa014b907b231cf0) C:\windows\system32\drivers\sdbus.sys

16:13:54.0114 2692 sdbus - ok

16:13:54.0176 2692 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\windows\system32\drivers\secdrv.sys

16:13:54.0308 2692 secdrv - ok

16:13:54.0467 2692 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\windows\system32\DRIVERS\serenum.sys

16:13:54.0521 2692 Serenum - ok

16:13:54.0571 2692 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\windows\system32\DRIVERS\serial.sys

16:13:54.0618 2692 Serial - ok

16:13:54.0682 2692 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\windows\system32\DRIVERS\sermouse.sys

16:13:54.0770 2692 sermouse - ok

16:13:54.0859 2692 sffdisk (a554811bcd09279536440c964ae35bbf) C:\windows\system32\drivers\sffdisk.sys

16:13:54.0939 2692 sffdisk - ok

16:13:55.0132 2692 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\windows\system32\drivers\sffp_mmc.sys

16:13:55.0258 2692 sffp_mmc - ok

16:13:55.0512 2692 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\windows\system32\drivers\sffp_sd.sys

16:13:55.0753 2692 sffp_sd - ok

16:13:55.0903 2692 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\windows\system32\DRIVERS\sfloppy.sys

16:13:56.0074 2692 sfloppy - ok

16:13:56.0236 2692 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\windows\system32\DRIVERS\SiSRaid2.sys

16:13:56.0297 2692 SiSRaid2 - ok

16:13:56.0348 2692 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\windows\system32\DRIVERS\sisraid4.sys

16:13:56.0429 2692 SiSRaid4 - ok

16:13:56.0464 2692 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\windows\system32\DRIVERS\smb.sys

16:13:56.0597 2692 Smb - ok

16:13:56.0683 2692 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\windows\system32\drivers\spldr.sys

16:13:56.0736 2692 spldr - ok

16:13:56.0969 2692 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\windows\system32\DRIVERS\srv.sys

16:13:57.0162 2692 srv - ok

16:13:57.0328 2692 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\windows\system32\DRIVERS\srv2.sys

16:13:57.0418 2692 srv2 - ok

16:13:57.0506 2692 srvnet (27e461f0be5bff5fc737328f749538c3) C:\windows\system32\DRIVERS\srvnet.sys

16:13:57.0560 2692 srvnet - ok

16:13:57.0643 2692 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\windows\system32\DRIVERS\stexstor.sys

16:13:57.0701 2692 stexstor - ok

16:13:57.0785 2692 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\windows\system32\drivers\swenum.sys

16:13:57.0836 2692 swenum - ok

16:13:57.0950 2692 SynTP (be7311da9d6833fa69ed04b744a1c8f8) C:\windows\system32\DRIVERS\SynTP.sys

16:13:57.0981 2692 SynTP - ok

16:13:58.0208 2692 Tcpip (fc62769e7bff2896035aeed399108162) C:\windows\system32\drivers\tcpip.sys

16:13:58.0292 2692 Tcpip - ok

16:13:58.0465 2692 TCPIP6 (fc62769e7bff2896035aeed399108162) C:\windows\system32\DRIVERS\tcpip.sys

16:13:58.0565 2692 TCPIP6 - ok

16:13:58.0759 2692 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\windows\system32\drivers\tcpipreg.sys

16:13:58.0902 2692 tcpipreg - ok

16:13:58.0987 2692 tdcmdpst (fd542b661bd22fa69ca789ad0ac58c29) C:\windows\system32\DRIVERS\tdcmdpst.sys

16:13:59.0050 2692 tdcmdpst - ok

16:13:59.0136 2692 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\windows\system32\drivers\tdpipe.sys

16:13:59.0223 2692 TDPIPE - ok

16:13:59.0257 2692 TDTCP (e4245bda3190a582d55ed09e137401a9) C:\windows\system32\drivers\tdtcp.sys

16:13:59.0373 2692 TDTCP - ok

16:13:59.0456 2692 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\windows\system32\DRIVERS\tdx.sys

16:13:59.0558 2692 tdx - ok

16:13:59.0747 2692 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\windows\system32\drivers\termdd.sys

16:13:59.0831 2692 TermDD - ok

16:13:59.0999 2692 Thpdrv (c013f6acaa9761f571bd28dada7c157d) C:\windows\system32\DRIVERS\thpdrv.sys

16:14:00.0019 2692 Thpdrv - ok

16:14:00.0132 2692 Thpevm (b4e609047434ed948af7bdef2fa66e38) C:\windows\system32\DRIVERS\Thpevm.SYS

16:14:00.0247 2692 Thpevm - ok

16:14:00.0450 2692 tos_sps64 (09ff7b0b1b5c3d225495cb6f5a9b39f8) C:\windows\system32\DRIVERS\tos_sps64.sys

16:14:00.0591 2692 tos_sps64 - ok

16:14:00.0803 2692 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\windows\system32\DRIVERS\tssecsrv.sys

16:14:01.0043 2692 tssecsrv - ok

16:14:01.0124 2692 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\windows\system32\drivers\tsusbflt.sys

16:14:01.0243 2692 TsUsbFlt - ok

16:14:01.0380 2692 tunnel (3566a8daafa27af944f5d705eaa64894) C:\windows\system32\DRIVERS\tunnel.sys

16:14:01.0472 2692 tunnel - ok

16:14:01.0557 2692 TVALZ (550b567f9364d8f7684c3fb3ea665a72) C:\windows\system32\DRIVERS\TVALZ_O.SYS

16:14:01.0593 2692 TVALZ - ok

16:14:01.0648 2692 TVALZFL (9c7191f4b2e49bff47a6c1144b5923fa) C:\windows\system32\DRIVERS\TVALZFL.sys

16:14:01.0675 2692 TVALZFL - ok

16:14:01.0709 2692 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\windows\system32\DRIVERS\uagp35.sys

16:14:01.0757 2692 uagp35 - ok

16:14:01.0861 2692 UBHelper (2e22c1fd397a5a9ffef55e9d1fc96c00) C:\windows\system32\drivers\UBHelper.sys

16:14:01.0906 2692 UBHelper - ok

16:14:01.0960 2692 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\windows\system32\DRIVERS\udfs.sys

16:14:02.0043 2692 udfs - ok

16:14:02.0182 2692 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\windows\system32\drivers\uliagpkx.sys

16:14:02.0214 2692 uliagpkx - ok

16:14:02.0260 2692 umbus (dc54a574663a895c8763af0fa1ff7561) C:\windows\system32\drivers\umbus.sys

16:14:02.0301 2692 umbus - ok

16:14:02.0398 2692 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\windows\system32\DRIVERS\umpass.sys

16:14:02.0424 2692 UmPass - ok

16:14:02.0475 2692 USBAAPL64 (cd03479f2da26500b203ed075c146a7a) C:\windows\system32\Drivers\usbaapl64.sys

16:14:02.0508 2692 USBAAPL64 ( UnsignedFile.Multi.Generic ) - warning

16:14:02.0508 2692 USBAAPL64 - detected UnsignedFile.Multi.Generic (1)

16:14:02.0643 2692 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\windows\system32\DRIVERS\usbccgp.sys

16:14:02.0750 2692 usbccgp - ok

16:14:02.0815 2692 usbcir (af0892a803fdda7492f595368e3b68e7) C:\windows\system32\drivers\usbcir.sys

16:14:02.0897 2692 usbcir - ok

16:14:03.0062 2692 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\windows\system32\DRIVERS\usbehci.sys

16:14:03.0134 2692 usbehci - ok

16:14:03.0168 2692 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\windows\system32\DRIVERS\usbhub.sys

16:14:03.0319 2692 usbhub - ok

16:14:03.0476 2692 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\windows\system32\drivers\usbohci.sys

16:14:03.0601 2692 usbohci - ok

16:14:03.0740 2692 usbprint (73188f58fb384e75c4063d29413cee3d) C:\windows\system32\DRIVERS\usbprint.sys

16:14:03.0784 2692 usbprint - ok

16:14:03.0848 2692 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\windows\system32\DRIVERS\usbscan.sys

16:14:04.0040 2692 usbscan - ok

16:14:04.0206 2692 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\windows\system32\DRIVERS\USBSTOR.SYS

16:14:04.0395 2692 USBSTOR - ok

16:14:04.0520 2692 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\windows\system32\DRIVERS\usbuhci.sys

16:14:04.0801 2692 usbuhci - ok

16:14:04.0851 2692 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\windows\System32\Drivers\usbvideo.sys

16:14:04.0931 2692 usbvideo - ok

16:14:05.0191 2692 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\windows\system32\drivers\vdrvroot.sys

16:14:05.0261 2692 vdrvroot - ok

16:14:05.0311 2692 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\windows\system32\DRIVERS\vgapnp.sys

16:14:05.0371 2692 vga - ok

16:14:05.0442 2692 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\windows\System32\drivers\vga.sys

16:14:05.0637 2692 VgaSave - ok

16:14:05.0705 2692 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\windows\system32\drivers\vhdmp.sys

16:14:05.0752 2692 vhdmp - ok

16:14:05.0841 2692 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\windows\system32\drivers\viaide.sys

16:14:05.0872 2692 viaide - ok

16:14:05.0910 2692 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\windows\system32\drivers\volmgr.sys

16:14:05.0970 2692 volmgr - ok

16:14:06.0009 2692 volmgrx (a255814907c89be58b79ef2f189b843b) C:\windows\system32\drivers\volmgrx.sys

16:14:06.0041 2692 volmgrx - ok

16:14:06.0188 2692 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\windows\system32\drivers\volsnap.sys

16:14:06.0250 2692 volsnap - ok

16:14:06.0341 2692 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\windows\system32\DRIVERS\vsmraid.sys

16:14:06.0365 2692 vsmraid - ok

16:14:06.0416 2692 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\windows\system32\DRIVERS\vwifibus.sys

16:14:06.0479 2692 vwifibus - ok

16:14:06.0564 2692 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\windows\system32\DRIVERS\vwififlt.sys

16:14:06.0671 2692 vwififlt - ok

16:14:06.0696 2692 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\windows\system32\DRIVERS\vwifimp.sys

16:14:06.0775 2692 vwifimp - ok

16:14:06.0850 2692 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\windows\system32\DRIVERS\wacompen.sys

16:14:06.0921 2692 WacomPen - ok

16:14:07.0070 2692 WANARP (356afd78a6ed4457169241ac3965230c) C:\windows\system32\DRIVERS\wanarp.sys

16:14:07.0188 2692 WANARP - ok

16:14:07.0212 2692 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\windows\system32\DRIVERS\wanarp.sys

16:14:07.0306 2692 Wanarpv6 - ok

16:14:07.0445 2692 Wd (72889e16ff12ba0f235467d6091b17dc) C:\windows\system32\DRIVERS\wd.sys

16:14:07.0485 2692 Wd - ok

16:14:07.0546 2692 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\windows\system32\drivers\Wdf01000.sys

16:14:07.0637 2692 Wdf01000 - ok

16:14:07.0869 2692 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\windows\system32\DRIVERS\wfplwf.sys

16:14:08.0047 2692 WfpLwf - ok

16:14:08.0157 2692 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\windows\system32\drivers\wimmount.sys

16:14:08.0187 2692 WIMMount - ok

16:14:08.0313 2692 WinUsb (fe88b288356e7b47b74b13372add906d) C:\windows\system32\DRIVERS\WinUsb.sys

16:14:08.0422 2692 WinUsb - ok

16:14:08.0528 2692 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\windows\system32\drivers\wmiacpi.sys

16:14:08.0553 2692 WmiAcpi - ok

16:14:08.0653 2692 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\windows\system32\drivers\ws2ifsl.sys

16:14:08.0817 2692 ws2ifsl - ok

16:14:08.0945 2692 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\windows\system32\drivers\WudfPf.sys

16:14:09.0055 2692 WudfPf - ok

16:14:09.0153 2692 WUDFRd (cf8d590be3373029d57af80914190682) C:\windows\system32\DRIVERS\WUDFRd.sys

16:14:09.0276 2692 WUDFRd - ok

16:14:09.0378 2692 MBR (0x1B8) (5b5e648d12fcadc244c1ec30318e1eb9) \Device\Harddisk0\DR0

16:14:09.0552 2692 \Device\Harddisk0\DR0 - ok

16:14:09.0593 2692 Boot (0x1200) (98938257e2b2777836945f7021fa03b3) \Device\Harddisk0\DR0\Partition0

16:14:09.0594 2692 \Device\Harddisk0\DR0\Partition0 - ok

16:14:09.0595 2692 ============================================================

16:14:09.0595 2692 Scan finished

16:14:09.0595 2692 ============================================================

16:14:09.0612 3428 Detected object count: 1

16:14:09.0612 3428 Actual detected object count: 1

16:14:43.0851 3428 USBAAPL64 ( UnsignedFile.Multi.Generic ) - skipped by user

16:14:43.0852 3428 USBAAPL64 ( UnsignedFile.Multi.Generic ) - User select action: Skip

16:15:10.0612 4688 ============================================================

16:15:10.0612 4688 Scan started

16:15:10.0612 4688 Mode: Manual; SigCheck; TDLFS;

16:15:10.0612 4688 ============================================================

16:15:10.0952 4688 1394ohci (a87d604aea360176311474c87a63bb88) C:\windows\system32\drivers\1394ohci.sys

16:15:11.0030 4688 1394ohci - ok

16:15:11.0086 4688 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\windows\system32\drivers\ACPI.sys

16:15:11.0166 4688 ACPI - ok

16:15:11.0244 4688 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\windows\system32\drivers\acpipmi.sys

16:15:11.0290 4688 AcpiPmi - ok

16:15:11.0357 4688 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\windows\system32\DRIVERS\adp94xx.sys

16:15:11.0412 4688 adp94xx - ok

16:15:11.0506 4688 adpahci (597f78224ee9224ea1a13d6350ced962) C:\windows\system32\DRIVERS\adpahci.sys

16:15:11.0590 4688 adpahci - ok

16:15:11.0617 4688 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\windows\system32\DRIVERS\adpu320.sys

16:15:11.0656 4688 adpu320 - ok

16:15:11.0756 4688 AFD (d5b031c308a409a0a576bff4cf083d30) C:\windows\system32\drivers\afd.sys

16:15:11.0800 4688 AFD - ok

16:15:11.0879 4688 AgereSoftModem (98022774d9930ecbb292e70db7601df6) C:\windows\system32\DRIVERS\agrsm64.sys

16:15:11.0984 4688 AgereSoftModem - ok

16:15:12.0099 4688 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\windows\system32\drivers\agp440.sys

16:15:12.0127 4688 agp440 - ok

16:15:12.0184 4688 aliide (5812713a477a3ad7363c7438ca2ee038) C:\windows\system32\drivers\aliide.sys

16:15:12.0204 4688 aliide - ok

16:15:12.0290 4688 amdide (1ff8b4431c353ce385c875f194924c0c) C:\windows\system32\drivers\amdide.sys

16:15:12.0332 4688 amdide - ok

16:15:12.0371 4688 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\windows\system32\DRIVERS\amdk8.sys

16:15:12.0395 4688 AmdK8 - ok

16:15:12.0420 4688 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\windows\system32\DRIVERS\amdppm.sys

16:15:12.0453 4688 AmdPPM - ok

16:15:12.0571 4688 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\windows\system32\drivers\amdsata.sys

16:15:12.0590 4688 amdsata - ok

16:15:12.0623 4688 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\windows\system32\DRIVERS\amdsbs.sys

16:15:12.0679 4688 amdsbs - ok

16:15:12.0794 4688 amdxata (540daf1cea6094886d72126fd7c33048) C:\windows\system32\drivers\amdxata.sys

16:15:12.0820 4688 amdxata - ok

16:15:12.0863 4688 AppID (89a69c3f2f319b43379399547526d952) C:\windows\system32\drivers\appid.sys

16:15:12.0943 4688 AppID - ok

16:15:13.0066 4688 arc (c484f8ceb1717c540242531db7845c4e) C:\windows\system32\DRIVERS\arc.sys

16:15:13.0084 4688 arc - ok

16:15:13.0115 4688 arcsas (019af6924aefe7839f61c830227fe79c) C:\windows\system32\DRIVERS\arcsas.sys

16:15:13.0154 4688 arcsas - ok

16:15:13.0208 4688 AsyncMac (769765ce2cc62867468cea93969b2242) C:\windows\system32\DRIVERS\asyncmac.sys

16:15:13.0294 4688 AsyncMac - ok

16:15:13.0362 4688 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\windows\system32\drivers\atapi.sys

16:15:13.0402 4688 atapi - ok

16:15:13.0465 4688 athr (e857eee6b92aaa473ebb3465add8f7e7) C:\windows\system32\DRIVERS\athrx.sys

16:15:13.0550 4688 athr - ok

16:15:13.0769 4688 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\windows\system32\DRIVERS\bxvbda.sys

16:15:13.0798 4688 b06bdrv - ok

16:15:13.0831 4688 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\windows\system32\DRIVERS\b57nd60a.sys

16:15:13.0857 4688 b57nd60a - ok

16:15:13.0943 4688 Beep (16a47ce2decc9b099349a5f840654746) C:\windows\system32\drivers\Beep.sys

16:15:14.0005 4688 Beep - ok

16:15:14.0084 4688 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\windows\system32\DRIVERS\blbdrive.sys

16:15:14.0109 4688 blbdrive - ok

16:15:14.0162 4688 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\windows\system32\DRIVERS\bowser.sys

16:15:14.0197 4688 bowser - ok

16:15:14.0279 4688 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\windows\system32\DRIVERS\BrFiltLo.sys

16:15:14.0303 4688 BrFiltLo - ok

16:15:14.0325 4688 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\windows\system32\DRIVERS\BrFiltUp.sys

16:15:14.0362 4688 BrFiltUp - ok

16:15:14.0390 4688 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\windows\System32\Drivers\Brserid.sys

16:15:14.0418 4688 Brserid - ok

16:15:14.0502 4688 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\windows\System32\Drivers\BrSerWdm.sys

16:15:14.0537 4688 BrSerWdm - ok

16:15:14.0545 4688 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\windows\System32\Drivers\BrUsbMdm.sys

16:15:14.0586 4688 BrUsbMdm - ok

16:15:14.0593 4688 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\windows\System32\Drivers\BrUsbSer.sys

16:15:14.0618 4688 BrUsbSer - ok

16:15:14.0660 4688 BthEnum (cf98190a94f62e405c8cb255018b2315) C:\windows\system32\drivers\BthEnum.sys

16:15:14.0714 4688 BthEnum - ok

16:15:14.0818 4688 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\windows\system32\DRIVERS\bthmodem.sys

16:15:14.0847 4688 BTHMODEM - ok

16:15:14.0855 4688 BthPan (02dd601b708dd0667e1331fa8518e9ff) C:\windows\system32\DRIVERS\bthpan.sys

16:15:14.0920 4688 BthPan - ok

16:15:14.0996 4688 BTHPORT (64c198198501f7560ee41d8d1efa7952) C:\windows\System32\Drivers\BTHport.sys

16:15:15.0078 4688 BTHPORT - ok

16:15:15.0207 4688 BTHUSB (f188b7394d81010767b6df3178519a37) C:\windows\System32\Drivers\BTHUSB.sys

16:15:15.0313 4688 BTHUSB - ok

16:15:15.0377 4688 cdfs (b8bd2bb284668c84865658c77574381a) C:\windows\system32\DRIVERS\cdfs.sys

16:15:15.0496 4688 cdfs - ok

16:15:15.0597 4688 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\windows\system32\drivers\cdrom.sys

16:15:15.0643 4688 cdrom - ok

16:15:15.0708 4688 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\windows\system32\DRIVERS\circlass.sys

16:15:15.0748 4688 circlass - ok

16:15:15.0850 4688 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\windows\system32\CLFS.sys

16:15:15.0893 4688 CLFS - ok

16:15:15.0977 4688 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\windows\system32\DRIVERS\CmBatt.sys

16:15:16.0008 4688 CmBatt - ok

16:15:16.0129 4688 cmdide (e19d3f095812725d88f9001985b94edd) C:\windows\system32\drivers\cmdide.sys

16:15:16.0155 4688 cmdide - ok

16:15:16.0224 4688 CNG (c4943b6c962e4b82197542447ad599f4) C:\windows\system32\Drivers\cng.sys

16:15:16.0279 4688 CNG - ok

16:15:16.0411 4688 Compbatt (102de219c3f61415f964c88e9085ad14) C:\windows\system32\DRIVERS\compbatt.sys

16:15:16.0431 4688 Compbatt - ok

16:15:16.0491 4688 CompositeBus (03edb043586cceba243d689bdda370a8) C:\windows\system32\drivers\CompositeBus.sys

16:15:16.0531 4688 CompositeBus - ok

16:15:16.0603 4688 crcdisk (1c827878a998c18847245fe1f34ee597) C:\windows\system32\DRIVERS\crcdisk.sys

16:15:16.0624 4688 crcdisk - ok

16:15:16.0715 4688 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\windows\system32\Drivers\dfsc.sys

16:15:16.0785 4688 DfsC - ok

16:15:16.0862 4688 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\windows\system32\drivers\discache.sys

16:15:16.0929 4688 discache - ok

16:15:16.0966 4688 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\windows\system32\DRIVERS\disk.sys

16:15:17.0005 4688 Disk - ok

16:15:17.0039 4688 drmkaud (9b19f34400d24df84c858a421c205754) C:\windows\system32\drivers\drmkaud.sys

16:15:17.0055 4688 drmkaud - ok

16:15:17.0164 4688 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\windows\System32\drivers\dxgkrnl.sys

16:15:17.0226 4688 DXGKrnl - ok

16:15:17.0384 4688 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\windows\system32\DRIVERS\evbda.sys

16:15:17.0465 4688 ebdrv - ok

16:15:17.0591 4688 elxstor (0e5da5369a0fcaea12456dd852545184) C:\windows\system32\DRIVERS\elxstor.sys

16:15:17.0633 4688 elxstor - ok

16:15:17.0759 4688 ErrDev (34a3c54752046e79a126e15c51db409b) C:\windows\system32\drivers\errdev.sys

16:15:17.0785 4688 ErrDev - ok

16:15:17.0861 4688 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\windows\system32\drivers\exfat.sys

16:15:17.0929 4688 exfat - ok

16:15:17.0961 4688 fastfat (0adc83218b66a6db380c330836f3e36d) C:\windows\system32\drivers\fastfat.sys

16:15:18.0021 4688 fastfat - ok

16:15:18.0128 4688 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\windows\system32\DRIVERS\fdc.sys

16:15:18.0155 4688 fdc - ok

16:15:18.0208 4688 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\windows\system32\drivers\fileinfo.sys

16:15:18.0231 4688 FileInfo - ok

16:15:18.0255 4688 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\windows\system32\drivers\filetrace.sys

16:15:18.0311 4688 Filetrace - ok

16:15:18.0454 4688 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\windows\system32\DRIVERS\flpydisk.sys

16:15:18.0482 4688 flpydisk - ok

16:15:18.0549 4688 FltMgr (da6b67270fd9db3697b20fce94950741) C:\windows\system32\drivers\fltmgr.sys

16:15:18.0609 4688 FltMgr - ok

16:15:18.0716 4688 FsDepends (d43703496149971890703b4b1b723eac) C:\windows\system32\drivers\FsDepends.sys

16:15:18.0752 4688 FsDepends - ok

16:15:18.0785 4688 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\windows\system32\drivers\Fs_Rec.sys

16:15:18.0808 4688 Fs_Rec - ok

16:15:18.0868 4688 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\windows\system32\DRIVERS\fvevol.sys

16:15:18.0918 4688 fvevol - ok

16:15:19.0025 4688 FwLnk (60acb128e64c35c2b4e4aab1b0a5c293) C:\windows\system32\DRIVERS\FwLnk.sys

16:15:19.0058 4688 FwLnk - ok

16:15:19.0090 4688 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\windows\system32\DRIVERS\gagp30kx.sys

16:15:19.0124 4688 gagp30kx - ok

16:15:19.0219 4688 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\windows\system32\DRIVERS\GEARAspiWDM.sys

16:15:19.0249 4688 GEARAspiWDM - ok

16:15:19.0330 4688 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\windows\system32\drivers\hcw85cir.sys

16:15:19.0373 4688 hcw85cir - ok

16:15:19.0485 4688 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\windows\system32\drivers\HdAudio.sys

16:15:19.0518 4688 HdAudAddService - ok

16:15:19.0558 4688 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\windows\system32\drivers\HDAudBus.sys

16:15:19.0583 4688 HDAudBus - ok

16:15:19.0631 4688 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\windows\system32\DRIVERS\HidBatt.sys

16:15:19.0671 4688 HidBatt - ok

16:15:19.0748 4688 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\windows\system32\DRIVERS\hidbth.sys

16:15:19.0797 4688 HidBth - ok

16:15:19.0807 4688 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\windows\system32\DRIVERS\hidir.sys

16:15:19.0834 4688 HidIr - ok

16:15:19.0887 4688 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\windows\system32\drivers\hidusb.sys

16:15:19.0926 4688 HidUsb - ok

16:15:19.0957 4688 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\windows\system32\drivers\HpSAMD.sys

16:15:19.0977 4688 HpSAMD - ok

16:15:20.0042 4688 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\windows\system32\drivers\HTTP.sys

16:15:20.0125 4688 HTTP - ok

16:15:20.0218 4688 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\windows\system32\drivers\hwpolicy.sys

16:15:20.0244 4688 hwpolicy - ok

16:15:20.0296 4688 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\windows\system32\drivers\i8042prt.sys

16:15:20.0334 4688 i8042prt - ok

16:15:20.0407 4688 iaStor (bbb3b6df1abb0fe35802ede85cc1c011) C:\windows\system32\DRIVERS\iaStor.sys

16:15:20.0452 4688 iaStor - ok

16:15:20.0541 4688 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\windows\system32\drivers\iaStorV.sys

16:15:20.0597 4688 iaStorV - ok

16:15:20.0864 4688 igfx (3c3f27002abc69c5afe29cbe6cf7addf) C:\windows\system32\DRIVERS\igdkmd64.sys

16:15:21.0165 4688 igfx - ok

16:15:21.0268 4688 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\windows\system32\DRIVERS\iirsp.sys

16:15:21.0288 4688 iirsp - ok

16:15:21.0381 4688 IntcAzAudAddService (0c3cf4b3bae28e121a1689e3538f8712) C:\windows\system32\drivers\RTKVHD64.sys

16:15:21.0461 4688 IntcAzAudAddService - ok

16:15:21.0571 4688 IntcHdmiAddService (88a20fa54c73ded4e8dac764e9130ae9) C:\windows\system32\drivers\IntcHdmi.sys

16:15:21.0594 4688 IntcHdmiAddService - ok

16:15:21.0663 4688 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\windows\system32\drivers\intelide.sys

16:15:21.0683 4688 intelide - ok

16:15:21.0721 4688 intelppm (ada036632c664caa754079041cf1f8c1) C:\windows\system32\DRIVERS\intelppm.sys

16:15:21.0766 4688 intelppm - ok

16:15:21.0877 4688 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\windows\system32\DRIVERS\ipfltdrv.sys

16:15:21.0937 4688 IpFilterDriver - ok

16:15:21.0989 4688 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\windows\system32\drivers\IPMIDrv.sys

16:15:22.0035 4688 IPMIDRV - ok

16:15:22.0089 4688 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\windows\system32\drivers\ipnat.sys

16:15:22.0157 4688 IPNAT - ok

16:15:22.0253 4688 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\windows\system32\drivers\irenum.sys

16:15:22.0282 4688 IRENUM - ok

16:15:22.0334 4688 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\windows\system32\drivers\isapnp.sys

16:15:22.0385 4688 isapnp - ok

16:15:22.0499 4688 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\windows\system32\drivers\msiscsi.sys

16:15:22.0552 4688 iScsiPrt - ok

16:15:22.0584 4688 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\windows\system32\drivers\kbdclass.sys

16:15:22.0615 4688 kbdclass - ok

16:15:22.0663 4688 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\windows\system32\drivers\kbdhid.sys

16:15:22.0752 4688 kbdhid - ok

16:15:22.0849 4688 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\windows\system32\Drivers\ksecdd.sys

16:15:22.0888 4688 KSecDD - ok

16:15:22.0937 4688 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\windows\system32\Drivers\ksecpkg.sys

16:15:22.0975 4688 KSecPkg - ok

16:15:23.0016 4688 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\windows\system32\drivers\ksthunk.sys

16:15:23.0085 4688 ksthunk - ok

16:15:23.0216 4688 lltdio (1538831cf8ad2979a04c423779465827) C:\windows\system32\DRIVERS\lltdio.sys

16:15:23.0281 4688 lltdio - ok

16:15:23.0345 4688 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\windows\system32\DRIVERS\lsi_fc.sys

16:15:23.0381 4688 LSI_FC - ok

16:15:23.0490 4688 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\windows\system32\DRIVERS\lsi_sas.sys

16:15:23.0514 4688 LSI_SAS - ok

16:15:23.0560 4688 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\windows\system32\DRIVERS\lsi_sas2.sys

16:15:23.0582 4688 LSI_SAS2 - ok

16:15:23.0591 4688 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\windows\system32\DRIVERS\lsi_scsi.sys

16:15:23.0613 4688 LSI_SCSI - ok

16:15:23.0661 4688 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\windows\system32\drivers\luafv.sys

16:15:23.0731 4688 luafv - ok

16:15:23.0845 4688 MBAMProtector (79da94b35371b9e7104460c7693dcb2c) C:\windows\system32\drivers\mbam.sys

16:15:23.0880 4688 MBAMProtector - ok

16:15:23.0931 4688 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\windows\system32\DRIVERS\megasas.sys

16:15:23.0953 4688 megasas - ok

16:15:23.0972 4688 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\windows\system32\DRIVERS\MegaSR.sys

16:15:24.0014 4688 MegaSR - ok

16:15:24.0032 4688 Modem (800ba92f7010378b09f9ed9270f07137) C:\windows\system32\drivers\modem.sys

16:15:24.0115 4688 Modem - ok

16:15:24.0133 4688 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\windows\system32\DRIVERS\monitor.sys

16:15:24.0169 4688 monitor - ok

16:15:24.0260 4688 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\windows\system32\drivers\mouclass.sys

16:15:24.0289 4688 mouclass - ok

16:15:24.0331 4688 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\windows\system32\DRIVERS\mouhid.sys

16:15:24.0368 4688 mouhid - ok

16:15:24.0419 4688 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\windows\system32\drivers\mountmgr.sys

16:15:24.0441 4688 mountmgr - ok

16:15:24.0536 4688 MpFilter (c177a7ebf5e8a0b596f618870516cab8) C:\windows\system32\DRIVERS\MpFilter.sys

16:15:24.0566 4688 MpFilter - ok

16:15:24.0585 4688 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\windows\system32\drivers\mpio.sys

16:15:24.0610 4688 mpio - ok

16:15:24.0650 4688 MpNWMon (8fbf6b31fe8af1833d93c5913d5b4d55) C:\windows\system32\DRIVERS\MpNWMon.sys

16:15:24.0691 4688 MpNWMon - ok

16:15:24.0795 4688 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\windows\system32\drivers\mpsdrv.sys

16:15:24.0869 4688 mpsdrv - ok

16:15:24.0916 4688 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\windows\system32\drivers\mrxdav.sys

16:15:24.0957 4688 MRxDAV - ok

16:15:25.0083 4688 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\windows\system32\DRIVERS\mrxsmb.sys

16:15:25.0109 4688 mrxsmb - ok

16:15:25.0168 4688 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\windows\system32\DRIVERS\mrxsmb10.sys

16:15:25.0203 4688 mrxsmb10 - ok

16:15:25.0304 4688 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\windows\system32\DRIVERS\mrxsmb20.sys

16:15:25.0341 4688 mrxsmb20 - ok

16:15:25.0384 4688 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\windows\system32\drivers\msahci.sys

16:15:25.0405 4688 msahci - ok

16:15:25.0453 4688 msdsm (db801a638d011b9633829eb6f663c900) C:\windows\system32\drivers\msdsm.sys

16:15:25.0537 4688 msdsm - ok

16:15:25.0644 4688 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\windows\system32\drivers\Msfs.sys

16:15:25.0704 4688 Msfs - ok

16:15:25.0735 4688 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\windows\System32\drivers\mshidkmdf.sys

16:15:25.0784 4688 mshidkmdf - ok

16:15:25.0874 4688 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\windows\system32\drivers\msisadrv.sys

16:15:25.0896 4688 msisadrv - ok

16:15:25.0959 4688 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\windows\system32\drivers\MSKSSRV.sys

16:15:26.0021 4688 MSKSSRV - ok

16:15:26.0089 4688 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\windows\system32\drivers\MSPCLOCK.sys

16:15:26.0135 4688 MSPCLOCK - ok

16:15:26.0206 4688 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\windows\system32\drivers\MSPQM.sys

16:15:26.0257 4688 MSPQM - ok

16:15:26.0355 4688 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\windows\system32\drivers\MsRPC.sys

16:15:26.0413 4688 MsRPC - ok

16:15:26.0554 4688 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\windows\system32\drivers\mssmbios.sys

16:15:26.0586 4688 mssmbios - ok

16:15:26.0683 4688 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\windows\system32\drivers\MSTEE.sys

16:15:26.0760 4688 MSTEE - ok

16:15:26.0816 4688 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\windows\system32\DRIVERS\MTConfig.sys

16:15:26.0846 4688 MTConfig - ok

16:15:26.0920 4688 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\windows\system32\Drivers\mup.sys

16:15:26.0950 4688 Mup - ok

16:15:27.0018 4688 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\windows\system32\DRIVERS\nwifi.sys

16:15:27.0084 4688 NativeWifiP - ok

16:15:27.0172 4688 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\windows\system32\drivers\ndis.sys

16:15:27.0231 4688 NDIS - ok

16:15:27.0323 4688 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\windows\system32\DRIVERS\ndiscap.sys

16:15:27.0417 4688 NdisCap - ok

16:15:27.0446 4688 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\windows\system32\DRIVERS\ndistapi.sys

16:15:27.0516 4688 NdisTapi - ok

16:15:27.0562 4688 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\windows\system32\DRIVERS\ndisuio.sys

16:15:27.0634 4688 Ndisuio - ok

16:15:27.0747 4688 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\windows\system32\DRIVERS\ndiswan.sys

16:15:27.0821 4688 NdisWan - ok

16:15:27.0874 4688 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\windows\system32\drivers\NDProxy.sys

16:15:27.0954 4688 NDProxy - ok

16:15:28.0058 4688 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\windows\system32\DRIVERS\netbios.sys

16:15:28.0150 4688 NetBIOS - ok

16:15:28.0211 4688 NetBT (09594d1089c523423b32a4229263f068) C:\windows\system32\DRIVERS\netbt.sys

16:15:28.0300 4688 NetBT - ok

16:15:28.0429 4688 nfrd960 (77889813be4d166cdab78ddba990da92) C:\windows\system32\DRIVERS\nfrd960.sys

16:15:28.0454 4688 nfrd960 - ok

16:15:28.0505 4688 NisDrv (5f7d72cbcdd025af1f38fdeee5646968) C:\windows\system32\DRIVERS\NisDrvWFP.sys

16:15:28.0535 4688 NisDrv - ok

16:15:28.0633 4688 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\windows\system32\drivers\Npfs.sys

16:15:28.0723 4688 Npfs - ok

16:15:28.0764 4688 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\windows\system32\drivers\nsiproxy.sys

16:15:28.0814 4688 nsiproxy - ok

16:15:28.0913 4688 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\windows\system32\drivers\Ntfs.sys

16:15:28.0977 4688 Ntfs - ok

16:15:29.0065 4688 NTIDrvr (64ddd0dee976302f4bd93e5efcc2f013) C:\windows\system32\drivers\NTIDrvr.sys

16:15:29.0083 4688 NTIDrvr - ok

16:15:29.0121 4688 Null (9899284589f75fa8724ff3d16aed75c1) C:\windows\system32\drivers\Null.sys

16:15:29.0165 4688 Null - ok

16:15:29.0216 4688 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\windows\system32\drivers\nvraid.sys

16:15:29.0240 4688 nvraid - ok

16:15:29.0362 4688 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\windows\system32\drivers\nvstor.sys

16:15:29.0386 4688 nvstor - ok

16:15:29.0415 4688 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\windows\system32\drivers\nv_agp.sys

16:15:29.0445 4688 nv_agp - ok

16:15:29.0524 4688 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\windows\system32\drivers\ohci1394.sys

16:15:29.0572 4688 ohci1394 - ok

16:15:29.0703 4688 Parport (0086431c29c35be1dbc43f52cc273887) C:\windows\system32\DRIVERS\parport.sys

16:15:29.0734 4688 Parport - ok

16:15:29.0797 4688 partmgr (871eadac56b0a4c6512bbe32753ccf79) C:\windows\system32\drivers\partmgr.sys

16:15:29.0829 4688 partmgr - ok

16:15:29.0943 4688 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\windows\system32\drivers\pci.sys

16:15:29.0974 4688 pci - ok

16:15:30.0005 4688 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\windows\system32\drivers\pciide.sys

16:15:30.0022 4688 pciide - ok

16:15:30.0137 4688 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\windows\system32\DRIVERS\pcmcia.sys

16:15:30.0185 4688 pcmcia - ok

16:15:30.0208 4688 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\windows\system32\drivers\pcw.sys

16:15:30.0239 4688 pcw - ok

16:15:30.0316 4688 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\windows\system32\drivers\peauth.sys

16:15:30.0387 4688 PEAUTH - ok

16:15:30.0505 4688 PGEffect (663962900e7fea522126ba287715bb4a) C:\windows\system32\DRIVERS\pgeffect.sys

16:15:30.0526 4688 PGEffect - ok

16:15:30.0670 4688 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\windows\system32\DRIVERS\raspptp.sys

16:15:30.0753 4688 PptpMiniport - ok

16:15:30.0845 4688 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\windows\system32\DRIVERS\processr.sys

16:15:30.0882 4688 Processor - ok

16:15:30.0982 4688 Psched (0557cf5a2556bd58e26384169d72438d) C:\windows\system32\DRIVERS\pacer.sys

16:15:31.0072 4688 Psched - ok

16:15:31.0167 4688 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\windows\system32\DRIVERS\ql2300.sys

16:15:31.0233 4688 ql2300 - ok

16:15:31.0346 4688 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\windows\system32\DRIVERS\ql40xx.sys

16:15:31.0383 4688 ql40xx - ok

16:15:31.0454 4688 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\windows\system32\drivers\qwavedrv.sys

16:15:31.0487 4688 QWAVEdrv - ok

16:15:31.0559 4688 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\windows\system32\DRIVERS\rasacd.sys

16:15:31.0630 4688 RasAcd - ok

16:15:31.0695 4688 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\windows\system32\DRIVERS\AgileVpn.sys

16:15:31.0771 4688 RasAgileVpn - ok

16:15:31.0847 4688 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\windows\system32\DRIVERS\rasl2tp.sys

16:15:31.0935 4688 Rasl2tp - ok

16:15:31.0980 4688 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\windows\system32\DRIVERS\raspppoe.sys

16:15:32.0064 4688 RasPppoe - ok

16:15:32.0100 4688 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\windows\system32\DRIVERS\rassstp.sys

16:15:32.0163 4688 RasSstp - ok

16:15:32.0240 4688 rdbss (77f665941019a1594d887a74f301fa2f) C:\windows\system32\DRIVERS\rdbss.sys

16:15:32.0311 4688 rdbss - ok

16:15:32.0366 4688 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\windows\system32\DRIVERS\rdpbus.sys

16:15:32.0402 4688 rdpbus - ok

16:15:32.0461 4688 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\windows\system32\DRIVERS\RDPCDD.sys

16:15:32.0530 4688 RDPCDD - ok

16:15:32.0568 4688 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\windows\system32\drivers\rdpencdd.sys

16:15:32.0615 4688 RDPENCDD - ok

16:15:32.0663 4688 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\windows\system32\drivers\rdprefmp.sys

16:15:32.0732 4688 RDPREFMP - ok

16:15:32.0784 4688 RDPWD (15b66c206b5cb095bab980553f38ed23) C:\windows\system32\drivers\RDPWD.sys

16:15:32.0844 4688 RDPWD - ok

16:15:32.0880 4688 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\windows\system32\drivers\rdyboost.sys

16:15:32.0906 4688 rdyboost - ok

16:15:32.0985 4688 RFCOMM (3dd798846e2c28102b922c56e71b7932) C:\windows\system32\DRIVERS\rfcomm.sys

16:15:33.0015 4688 RFCOMM - ok

16:15:33.0072 4688 rimspci (e20b1907fc72a3664ece21e3c20fc63d) C:\windows\system32\DRIVERS\rimspe64.sys

16:15:33.0094 4688 rimspci - ok

16:15:33.0144 4688 risdpcie (7dda2e5cf452dad24b1be704225c18ee) C:\windows\system32\DRIVERS\risdpe64.sys

16:15:33.0188 4688 risdpcie - ok

16:15:33.0220 4688 rixdpcie (6a1cd4674505e6791390a1ab71da1fbe) C:\windows\system32\DRIVERS\rixdpe64.sys

16:15:33.0238 4688 rixdpcie - ok

16:15:33.0306 4688 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\windows\system32\DRIVERS\rspndr.sys

16:15:33.0362 4688 rspndr - ok

16:15:33.0450 4688 RTL8167 (f65f171165fbb613f7aa3cc78e8cab42) C:\windows\system32\DRIVERS\Rt64win7.sys

16:15:33.0477 4688 RTL8167 - ok

16:15:33.0566 4688 rtl8192se (7cd14bf5b42931fb80bee5d3e6ba7089) C:\windows\system32\DRIVERS\rtl8192se.sys

16:15:33.0609 4688 rtl8192se - ok

16:15:33.0732 4688 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\windows\system32\drivers\sbp2port.sys

16:15:33.0764 4688 sbp2port - ok

16:15:33.0840 4688 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\windows\system32\DRIVERS\scfilter.sys

16:15:33.0894 4688 scfilter - ok

16:15:33.0980 4688 sdbus (111e0ebc0ad79cb0fa014b907b231cf0) C:\windows\system32\drivers\sdbus.sys

16:15:34.0017 4688 sdbus - ok

16:15:34.0072 4688 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\windows\system32\drivers\secdrv.sys

16:15:34.0121 4688 secdrv - ok

16:15:34.0205 4688 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\windows\system32\DRIVERS\serenum.sys

16:15:34.0225 4688 Serenum - ok

16:15:34.0266 4688 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\windows\system32\DRIVERS\serial.sys

16:15:34.0315 4688 Serial - ok

16:15:34.0376 4688 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\windows\system32\DRIVERS\sermouse.sys

16:15:34.0396 4688 sermouse - ok

16:15:34.0533 4688 sffdisk (a554811bcd09279536440c964ae35bbf) C:\windows\system32\drivers\sffdisk.sys

16:15:34.0573 4688 sffdisk - ok

16:15:34.0657 4688 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\windows\system32\drivers\sffp_mmc.sys

16:15:34.0716 4688 sffp_mmc - ok

16:15:34.0762 4688 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\windows\system32\drivers\sffp_sd.sys

16:15:34.0800 4688 sffp_sd - ok

16:15:34.0831 4688 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\windows\system32\DRIVERS\sfloppy.sys

16:15:34.0857 4688 sfloppy - ok

16:15:34.0939 4688 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\windows\system32\DRIVERS\SiSRaid2.sys

16:15:34.0970 4688 SiSRaid2 - ok

16:15:35.0049 4688 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\windows\system32\DRIVERS\sisraid4.sys

16:15:35.0079 4688 SiSRaid4 - ok

16:15:35.0118 4688 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\windows\system32\DRIVERS\smb.sys

16:15:35.0212 4688 Smb - ok

16:15:35.0298 4688 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\windows\system32\drivers\spldr.sys

16:15:35.0344 4688 spldr - ok

16:15:35.0463 4688 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\windows\system32\DRIVERS\srv.sys

16:15:35.0512 4688 srv - ok

16:15:35.0636 4688 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\windows\system32\DRIVERS\srv2.sys

16:15:35.0680 4688 srv2 - ok

16:15:35.0736 4688 srvnet (27e461f0be5bff5fc737328f749538c3) C:\windows\system32\DRIVERS\srvnet.sys

16:15:35.0779 4688 srvnet - ok

16:15:35.0895 4688 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\windows\system32\DRIVERS\stexstor.sys

16:15:35.0919 4688 stexstor - ok

16:15:35.0997 4688 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\windows\system32\drivers\swenum.sys

16:15:36.0019 4688 swenum - ok

16:15:36.0081 4688 SynTP (be7311da9d6833fa69ed04b744a1c8f8) C:\windows\system32\DRIVERS\SynTP.sys

16:15:36.0143 4688 SynTP - ok

16:15:36.0322 4688 Tcpip (fc62769e7bff2896035aeed399108162) C:\windows\system32\drivers\tcpip.sys

16:15:36.0465 4688 Tcpip - ok

16:15:36.0711 4688 TCPIP6 (fc62769e7bff2896035aeed399108162) C:\windows\system32\DRIVERS\tcpip.sys

16:15:36.0805 4688 TCPIP6 - ok

16:15:36.0923 4688 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\windows\system32\drivers\tcpipreg.sys

16:15:36.0982 4688 tcpipreg - ok

16:15:37.0067 4688 tdcmdpst (fd542b661bd22fa69ca789ad0ac58c29) C:\windows\system32\DRIVERS\tdcmdpst.sys

16:15:37.0096 4688 tdcmdpst - ok

16:15:37.0171 4688 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\windows\system32\drivers\tdpipe.sys

16:15:37.0231 4688 TDPIPE - ok

16:15:37.0268 4688 TDTCP (e4245bda3190a582d55ed09e137401a9) C:\windows\system32\drivers\tdtcp.sys

16:15:37.0336 4688 TDTCP - ok

16:15:37.0398 4688 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\windows\system32\DRIVERS\tdx.sys

16:15:37.0472 4688 tdx - ok

16:15:37.0576 4688 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\windows\system32\drivers\termdd.sys

16:15:37.0604 4688 TermDD - ok

16:15:37.0667 4688 Thpdrv (c013f6acaa9761f571bd28dada7c157d) C:\windows\system32\DRIVERS\thpdrv.sys

16:15:37.0694 4688 Thpdrv - ok

16:15:37.0747 4688 Thpevm (b4e609047434ed948af7bdef2fa66e38) C:\windows\system32\DRIVERS\Thpevm.SYS

16:15:37.0771 4688 Thpevm - ok

16:15:37.0875 4688 tos_sps64 (09ff7b0b1b5c3d225495cb6f5a9b39f8) C:\windows\system32\DRIVERS\tos_sps64.sys

16:15:37.0905 4688 tos_sps64 - ok

16:15:38.0010 4688 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\windows\system32\DRIVERS\tssecsrv.sys

16:15:38.0074 4688 tssecsrv - ok

16:15:38.0151 4688 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\windows\system32\drivers\tsusbflt.sys

16:15:38.0197 4688 TsUsbFlt - ok

16:15:38.0235 4688 tunnel (3566a8daafa27af944f5d705eaa64894) C:\windows\system32\DRIVERS\tunnel.sys

16:15:38.0309 4688 tunnel - ok

16:15:38.0367 4688 TVALZ (550b567f9364d8f7684c3fb3ea665a72) C:\windows\system32\DRIVERS\TVALZ_O.SYS

16:15:38.0396 4688 TVALZ - ok

16:15:38.0459 4688 TVALZFL (9c7191f4b2e49bff47a6c1144b5923fa) C:\windows\system32\DRIVERS\TVALZFL.sys

16:15:38.0479 4688 TVALZFL - ok

16:15:38.0546 4688 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\windows\system32\DRIVERS\uagp35.sys

16:15:38.0593 4688 uagp35 - ok

16:15:38.0660 4688 UBHelper (2e22c1fd397a5a9ffef55e9d1fc96c00) C:\windows\system32\drivers\UBHelper.sys

16:15:38.0715 4688 UBHelper - ok

16:15:38.0768 4688 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\windows\system32\DRIVERS\udfs.sys

16:15:38.0848 4688 udfs - ok

16:15:38.0947 4688 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\windows\system32\drivers\uliagpkx.sys

16:15:38.0982 4688 uliagpkx - ok

16:15:39.0057 4688 umbus (dc54a574663a895c8763af0fa1ff7561) C:\windows\system32\drivers\umbus.sys

16:15:39.0104 4688 umbus - ok

16:15:39.0169 4688 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\windows\system32\DRIVERS\umpass.sys

16:15:39.0215 4688 UmPass - ok

16:15:39.0334 4688 USBAAPL64 (cd03479f2da26500b203ed075c146a7a) C:\windows\system32\Drivers\usbaapl64.sys

16:15:39.0353 4688 USBAAPL64 ( UnsignedFile.Multi.Generic ) - warning

16:15:39.0353 4688 USBAAPL64 - detected UnsignedFile.Multi.Generic (1)

16:15:39.0420 4688 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\windows\system32\DRIVERS\usbccgp.sys

16:15:39.0444 4688 usbccgp - ok

16:15:39.0506 4688 usbcir (af0892a803fdda7492f595368e3b68e7) C:\windows\system32\drivers\usbcir.sys

16:15:39.0553 4688 usbcir - ok

16:15:39.0605 4688 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\windows\system32\DRIVERS\usbehci.sys

16:15:39.0677 4688 usbehci - ok

16:15:39.0728 4688 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\windows\system32\DRIVERS\usbhub.sys

16:15:39.0801 4688 usbhub - ok

16:15:39.0876 4688 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\windows\system32\drivers\usbohci.sys

16:15:39.0934 4688 usbohci - ok

16:15:40.0012 4688 usbprint (73188f58fb384e75c4063d29413cee3d) C:\windows\system32\DRIVERS\usbprint.sys

16:15:40.0056 4688 usbprint - ok

16:15:40.0136 4688 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\windows\system32\DRIVERS\usbscan.sys

16:15:40.0186 4688 usbscan - ok

16:15:40.0263 4688 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\windows\system32\DRIVERS\USBSTOR.SYS

16:15:40.0291 4688 USBSTOR - ok

16:15:40.0351 4688 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\windows\system32\DRIVERS\usbuhci.sys

16:15:40.0385 4688 usbuhci - ok

16:15:40.0439 4688 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\windows\System32\Drivers\usbvideo.sys

16:15:40.0493 4688 usbvideo - ok

16:15:40.0611 4688 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\windows\system32\drivers\vdrvroot.sys

16:15:40.0637 4688 vdrvroot - ok

16:15:40.0710 4688 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\windows\system32\DRIVERS\vgapnp.sys

16:15:40.0774 4688 vga - ok

16:15:40.0840 4688 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\windows\System32\drivers\vga.sys

16:15:40.0890 4688 VgaSave - ok

16:15:40.0973 4688 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\windows\system32\drivers\vhdmp.sys

16:15:41.0003 4688 vhdmp - ok

16:15:41.0077 4688 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\windows\system32\drivers\viaide.sys

16:15:41.0096 4688 viaide - ok

16:15:41.0182 4688 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\windows\system32\drivers\volmgr.sys

16:15:41.0211 4688 volmgr - ok

16:15:41.0327 4688 volmgrx (a255814907c89be58b79ef2f189b843b) C:\windows\system32\drivers\volmgrx.sys

16:15:41.0354 4688 volmgrx - ok

16:15:41.0430 4688 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\windows\system32\drivers\volsnap.sys

16:15:41.0472 4688 volsnap - ok

16:15:41.0553 4688 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\windows\system32\DRIVERS\vsmraid.sys

16:15:41.0582 4688 vsmraid - ok

16:15:41.0645 4688 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\windows\system32\DRIVERS\vwifibus.sys

16:15:41.0672 4688 vwifibus - ok

16:15:41.0718 4688 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\windows\system32\DRIVERS\vwififlt.sys

16:15:41.0749 4688 vwififlt - ok

16:15:41.0818 4688 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\windows\system32\DRIVERS\vwifimp.sys

16:15:41.0852 4688 vwifimp - ok

16:15:41.0918 4688 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\windows\system32\DRIVERS\wacompen.sys

16:15:41.0945 4688 WacomPen - ok

16:15:42.0030 4688 WANARP (356afd78a6ed4457169241ac3965230c) C:\windows\system32\DRIVERS\wanarp.sys

16:15:42.0098 4688 WANARP - ok

16:15:42.0104 4688 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\windows\system32\DRIVERS\wanarp.sys

16:15:42.0174 4688 Wanarpv6 - ok

16:15:42.0259 4688 Wd (72889e16ff12ba0f235467d6091b17dc) C:\windows\system32\DRIVERS\wd.sys

16:15:42.0287 4688 Wd - ok

16:15:42.0366 4688 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\windows\system32\drivers\Wdf01000.sys

16:15:42.0417 4688 Wdf01000 - ok

16:15:42.0530 4688 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\windows\system32\DRIVERS\wfplwf.sys

16:15:42.0610 4688 WfpLwf - ok

16:15:42.0675 4688 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\windows\system32\drivers\wimmount.sys

16:15:42.0724 4688 WIMMount - ok

16:15:42.0879 4688 WinUsb (fe88b288356e7b47b74b13372add906d) C:\windows\system32\DRIVERS\WinUsb.sys

16:15:42.0907 4688 WinUsb - ok

16:15:42.0980 4688 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\windows\system32\drivers\wmiacpi.sys

16:15:43.0015 4688 WmiAcpi - ok

16:15:43.0128 4688 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\windows\system32\drivers\ws2ifsl.sys

16:15:43.0229 4688 ws2ifsl - ok

16:15:43.0321 4688 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\windows\system32\drivers\WudfPf.sys

16:15:43.0383 4688 WudfPf - ok

16:15:43.0432 4688 WUDFRd (cf8d590be3373029d57af80914190682) C:\windows\system32\DRIVERS\WUDFRd.sys

16:15:43.0515 4688 WUDFRd - ok

16:15:43.0677 4688 MBR (0x1B8) (5b5e648d12fcadc244c1ec30318e1eb9) \Device\Harddisk0\DR0

16:15:43.0827 4688 \Device\Harddisk0\DR0 - ok

16:15:43.0869 4688 Boot (0x1200) (98938257e2b2777836945f7021fa03b3) \Device\Harddisk0\DR0\Partition0

16:15:43.0870 4688 \Device\Harddisk0\DR0\Partition0 - ok

16:15:43.0874 4688 ============================================================

16:15:43.0874 4688 Scan finished

16:15:43.0874 4688 ============================================================

16:15:43.0895 4956 Detected object count: 1

16:15:43.0895 4956 Actual detected object count: 1

16:15:48.0241 4956 USBAAPL64 ( UnsignedFile.Multi.Generic ) - skipped by user

16:15:48.0241 4956 USBAAPL64 ( UnsignedFile.Multi.Generic ) - User select action: Skip

Link to post
Share on other sites

OK, that file was clean, please do this/////

Download aswMBR to your desktop.

http://public.avast....erek/aswMBR.exe

Double click the aswMBR.exe to run it.

If you see this question: Would you like to download latest Avast! virus definitions?" say "Yes".

Click the "Scan" button to start scan.

On completion of the scan click "Save log", save it to your desktop and post in your next reply.

NOTE. aswMBR will create MBR.dat file on your desktop. This is a copy of your MBR. Do NOT delete it.

MrC

Link to post
Share on other sites

Here is the log

aswMBR version 0.9.9.1532 Copyright© 2011 AVAST Software

Run date: 2012-02-07 17:29:05

-----------------------------

17:29:05.608 OS Version: Windows x64 6.1.7601 Service Pack 1

17:29:05.608 Number of processors: 2 586 0x170A

17:29:05.609 ComputerName: WALTER UserName: Bailey

17:29:07.039 Initialize success

17:30:51.415 AVAST engine defs: 12020701

17:31:01.392 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1

17:31:01.396 Disk 0 Vendor: Hitachi_ PB4O Size: 476940MB BusType: 3

17:31:01.413 Disk 0 MBR read successfully

17:31:01.417 Disk 0 MBR scan

17:31:01.425 Disk 0 Windows VISTA default MBR code

17:31:01.436 Disk 0 Partition 1 80 (A) 27 Hidden NTFS WinRE NTFS 1500 MB offset 2048

17:31:01.494 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 464503 MB offset 3074048

17:31:01.704 Disk 0 Partition 3 00 17 Hidd HPFS/NTFS NTFS 10936 MB offset 954376192

17:31:01.758 Service scanning

17:31:02.286 Service MpNWMon C:\windows\system32\DRIVERS\MpNWMon.sys **LOCKED** 32

17:31:02.887 Modules scanning

17:31:02.894 Disk 0 trace - called modules:

17:31:02.923 ntoskrnl.exe CLASSPNP.SYS disk.sys thpdrv.sys iaStor.sys hal.dll

17:31:02.933 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8004c76790]

17:31:02.942 3 CLASSPNP.SYS[fffff8800160143f] -> nt!IofCallDriver -> \Device\THPDRV1[0xfffffa8004c74620]

17:31:02.950 5 thpdrv.sys[fffff88001bc0cc0] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa800469e050]

17:31:04.873 AVAST engine scan C:\windows

17:31:08.728 AVAST engine scan C:\windows\system32

17:35:15.733 AVAST engine scan C:\windows\system32\drivers

17:35:33.401 AVAST engine scan C:\Users\Bailey

17:36:22.846 File: C:\Users\Bailey\AppData\Roaming\Adobe\Flash Player\NativeCache\87751633C509CE0559A2FCA8D73AC9CC\7204ee24\adobecp-200489-1.dll **INFECTED** Win32:Malware-gen

17:41:47.014 AVAST engine scan C:\ProgramData

17:44:02.056 Scan finished successfully

17:48:12.771 Disk 0 MBR has been saved successfully to "C:\Users\Bailey\Desktop\MBR.dat"

17:48:12.778 The log file has been saved successfully to "C:\Users\Bailey\Desktop\aswMBR.txt"

Link to post
Share on other sites

C:\Users\Bailey\AppData\Roaming\Adobe\Flash Player\NativeCache\87751633C509CE0559A2FCA8D73AC9CC\7204ee24\adobecp-200489-1.dll **INFECTED** Win32:Malware-gen

We'll deal with this later.

----------------------

Dowload and run the Bitdefender Bootkit Removal Tool 64bit version:

http://www.malwareci...ction-1238.html

It runs very quickly, let me know if it finds anything, MrC

Link to post
Share on other sites

Here is the log

ListParts by Farbar

Ran by Bailey on 08-02-2012 at 11:29:34

Windows 7 (X64)

Running From: C:\Users\Bailey\Desktop

Language: 0409

************************************************************

========================= Memory info ======================

Percentage of memory in use: 43%

Total physical RAM: 3963.98 MB

Available physical RAM: 2258.23 MB

Total Pagefile: 7926.16 MB

Available Pagefile: 6131.23 MB

Total Virtual: 8192 MB

Available Virtual: 8191.9 MB

======================= Partitions =========================

1 Drive c: (Mr Harddrive) (Fixed) (Total:453.62 GB) (Free:374.35 GB) NTFS ==>[system with boot components (obtained from reading drive)]

Disk ### Status Size Free Dyn Gpt

-------- ------------- ------- ------- --- ---

Disk 0 Online 465 GB 0 B

Partitions of Disk 0:

===============

Partition ### Type Size Offset

------------- ---------------- ------- -------

Partition 1 Recovery 1500 MB 1024 KB

Partition 2 Primary 453 GB 1501 MB

Partition 3 Primary 10 GB 455 GB

Disk: 0

Partition 1

Type : 27

Hidden: Yes

Active: Yes

Volume ### Ltr Label Fs Type Size Status Info

---------- --- ----------- ----- ---------- ------- --------- --------

* Volume 2 System NTFS Partition 1500 MB Healthy Hidden

Disk: 0

Partition 2

Type : 07

Hidden: No

Active: No

Volume ### Ltr Label Fs Type Size Status Info

---------- --- ----------- ----- ---------- ------- --------- --------

* Volume 1 C Mr Harddriv NTFS Partition 453 GB Healthy Boot

Disk: 0

Partition 3

Type : 17 (Suspicious Type)

Hidden: Yes

Active: No

There is no volume associated with this partition.

****** End Of Log ******

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.