Laptop got "bricked" now desktop may be in danger

[mtnester]

It started a couple of days ago with my laptop, which is what I use 90% of the time. When I did a Google search and clicked on a link I always got a 404 Not Found page. I happened to look at the address bar and it had some domain listed like puffbum or bumpuff or something weird. I immediately started a scan (Avast 6) which found nothing. I tried restoring to an earlier date but nothing happened. I restarted the laptop and that's when i discovered it had turned into a doorstop. Only F2 (BIOS) worked. The hidden recovery partition could not be accessed and all I got was the Windows Recovery Options, none of which solved anything. The laptop is under warranty and I will have to return it for a new hard drive. (Even using an emergency boot disk didn't work). Okay, so that's toast; water under the bridge.

At the moment I'm using my Gateway desktop, but something seems to be wrong here as well. Avast didn't find anything, Malwarebytes didn't find anything, but my internet connection seems to be hijacked and I am leery of doing anything sensitive (passwords, banking, etc.) because I cannot determine where my internet connection is coming from. The network information shows my PC connected to "Network" instead of my modem.and the network name I had configured. I tried setting up a new network, but in the box where you choose the wireless router nothing appears. I also cannot get a map of available networks around me. There are normally 6-8 networks that appear along with their signal strengths. Choosing "Connect to a network" just gives a pop-up on my taskbar icon that says "Network internet access" rather than showing my network name.

As an extra check, I turned WiFi on for my smartphone and downloaded an analyzer which did show the correct network name for my SSID (I think that's what it's called). Am I being paranoid, or does anyone think my network connection has been hijacked by some trojan or virus and I'm automatically being connected to a network somewhere else; and if so what should I do?

I am attaching the DDS and Attach txts as given in the pinned instructions.

DDS.txt

Attach.txt

[Elise]

Hi and

Lets first do a rootkit scan.

Please download the TDSS Rootkit Removing Tool (TDSSKiller.exe) and save it to your Desktop. <-Important!!!

• Double-click on TDSSKiller.exe to run the tool for known TDSS variants.
  Vista/Windows 7 users right-click and select Run As Administrator.
  
• If TDSSKiller does not run, try renaming it.
  
• To do this, right-click on TDSSKiller.exe, select Rename and give it a random name with the .com file extension (i.e. 123abc.com). If you do not see the file extension, please refer to How to change the file extension.
  
• Click the Start Scan button.
  
• Do not use the computer during the scan
  
• If the scan completes with nothing found, click Close to exit.
  
• If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.
  
• Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.
  
• A log file named TDSSKiller_version_date_time_log.txt (i.e. TDSSKiller.2.4.0.0_27.07.2010_09.o7.26_log.txt) will be created and saved to the root directory (usually Local Disk C:).
  
• Copy and paste the contents of that file in your next reply.

In case you'd like help with your laptop as well (there are still a few things we can try), please start a new topic for it and give me the link (I have some experiencing with similar issues as it is often malware and not hardware that causes it and enjoy the challenge this type of problem proves to be ).

[mtnester]

Elise,

Thank you so much for helping. First, I would love to give you the challenge of fixing my laptop. I dropped it off today to have someone attempt to recover a couple of my libraries so as soon as I get it back I'll start a new post.

Now for my desktop. TDSSKiller reports it didn't find anything. I am attaching the report.

Shirley

TDSSKiller.2.7.13.0_16.02.2012_18.11.50_log.txt

[mtnester]

Copy and paste the contents of that file in your next reply

oops. But then, maybe not. I saw the "change parameters" and decided to run the test again and check the two boxes for Verify driver signatures and Detect TDLS file system. The result shows two threats. The text:

18:30:55.0036 3108 TDSS rootkit removing tool 2.7.13.0 Feb 15 2012 19:33:14

18:30:55.0489 3108 ============================================================

18:30:55.0489 3108 Current date / time: 2012/02/16 18:30:55.0489

18:30:55.0489 3108 SystemInfo:

18:30:55.0489 3108

18:30:55.0489 3108 OS Version: 6.1.7600 ServicePack: 0.0

18:30:55.0489 3108 Product type: Workstation

18:30:55.0489 3108 ComputerName: MOM-PC

18:30:55.0489 3108 UserName: Mom

18:30:55.0489 3108 Windows directory: C:\Windows

18:30:55.0489 3108 System windows directory: C:\Windows

18:30:55.0489 3108 Running under WOW64

18:30:55.0489 3108 Processor architecture: Intel x64

18:30:55.0489 3108 Number of processors: 4

18:30:55.0489 3108 Page size: 0x1000

18:30:55.0489 3108 Boot type: Normal boot

18:30:55.0489 3108 ============================================================

18:30:55.0801 3108 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040

18:30:55.0848 3108 \Device\Harddisk0\DR0:

18:30:55.0848 3108 MBR used

18:30:55.0848 3108 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x2200800, BlocksNum 0x32000

18:30:55.0848 3108 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2232800, BlocksNum 0x724D3800

18:30:55.0879 3108 Initialize success

18:30:55.0879 3108 ============================================================

18:31:06.0393 4452 ============================================================

18:31:06.0409 4452 Scan started

18:31:06.0409 4452 Mode: Manual; SigCheck; TDLFS;

18:31:06.0409 4452 ============================================================

18:31:06.0705 4452 1394ohci (1b00662092f9f9568b995902f0cc40d5) C:\Windows\system32\DRIVERS\1394ohci.sys

18:31:06.0799 4452 1394ohci - ok

18:31:06.0830 4452 ACPI (6f11e88748cdefd2f76aa215f97ddfe5) C:\Windows\system32\DRIVERS\ACPI.sys

18:31:06.0846 4452 ACPI - ok

18:31:06.0877 4452 AcpiPmi (63b05a0420ce4bf0e4af6dcc7cada254) C:\Windows\system32\DRIVERS\acpipmi.sys

18:31:06.0892 4452 AcpiPmi - ok

18:31:06.0924 4452 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys

18:31:06.0939 4452 adp94xx - ok

18:31:06.0955 4452 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys

18:31:06.0955 4452 adpahci - ok

18:31:06.0970 4452 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys

18:31:06.0970 4452 adpu320 - ok

18:31:07.0033 4452 AFD (db9d6c6b2cd95a9ca414d045b627422e) C:\Windows\system32\drivers\afd.sys

18:31:07.0080 4452 AFD - ok

18:31:07.0080 4452 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\DRIVERS\agp440.sys

18:31:07.0095 4452 agp440 - ok

18:31:07.0111 4452 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\DRIVERS\aliide.sys

18:31:07.0111 4452 aliide - ok

18:31:07.0126 4452 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\DRIVERS\amdide.sys

18:31:07.0126 4452 amdide - ok

18:31:07.0158 4452 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys

18:31:07.0189 4452 AmdK8 - ok

18:31:07.0189 4452 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys

18:31:07.0220 4452 AmdPPM - ok

18:31:07.0236 4452 amdsata (7a4b413614c055935567cf88a9734d38) C:\Windows\system32\DRIVERS\amdsata.sys

18:31:07.0251 4452 amdsata - ok

18:31:07.0282 4452 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys

18:31:07.0282 4452 amdsbs - ok

18:31:07.0314 4452 amdxata (b4ad0cacbab298671dd6f6ef7e20679d) C:\Windows\system32\DRIVERS\amdxata.sys

18:31:07.0329 4452 amdxata - ok

18:31:07.0345 4452 AppID (42fd751b27fa0e9c69bb39f39e409594) C:\Windows\system32\drivers\appid.sys

18:31:07.0376 4452 AppID - ok

18:31:07.0392 4452 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys

18:31:07.0407 4452 arc - ok

18:31:07.0407 4452 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys

18:31:07.0423 4452 arcsas - ok

18:31:07.0454 4452 aswFsBlk (ce6d8bcc4787704ea4feeb92b0d0caf8) C:\Windows\system32\drivers\aswFsBlk.sys

18:31:07.0516 4452 aswFsBlk - ok

18:31:07.0548 4452 aswMonFlt (0debeb2e3fbd0bf5343125cce617f105) C:\Windows\system32\drivers\aswMonFlt.sys

18:31:07.0563 4452 aswMonFlt - ok

18:31:07.0594 4452 aswRdr (952edc2e81f85d1781958d4128bf59f8) C:\Windows\system32\drivers\aswRdr.sys

18:31:07.0610 4452 aswRdr - ok

18:31:07.0672 4452 aswSnx (dd383e2ac941c545a85ab72503da6c12) C:\Windows\system32\drivers\aswSnx.sys

18:31:07.0704 4452 aswSnx - ok

18:31:07.0704 4452 aswSP (ef5403fb8b2dcb791ec365fdf6040a4a) C:\Windows\system32\drivers\aswSP.sys

18:31:07.0719 4452 aswSP - ok

18:31:07.0735 4452 aswTdi (34165da5c6b30c0f9d61246bf8a28040) C:\Windows\system32\drivers\aswTdi.sys

18:31:07.0735 4452 aswTdi - ok

18:31:07.0750 4452 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys

18:31:07.0797 4452 AsyncMac - ok

18:31:07.0813 4452 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\DRIVERS\atapi.sys

18:31:07.0828 4452 atapi - ok

18:31:07.0860 4452 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys

18:31:07.0891 4452 b06bdrv - ok

18:31:07.0906 4452 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys

18:31:07.0922 4452 b57nd60a - ok

18:31:07.0938 4452 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys

18:31:07.0984 4452 Beep - ok

18:31:08.0031 4452 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys

18:31:08.0031 4452 blbdrive - ok

18:31:08.0078 4452 bowser (19d20159708e152267e53b66677a4995) C:\Windows\system32\DRIVERS\bowser.sys

18:31:08.0109 4452 bowser - ok

18:31:08.0125 4452 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys

18:31:08.0140 4452 BrFiltLo - ok

18:31:08.0156 4452 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys

18:31:08.0172 4452 BrFiltUp - ok

18:31:08.0187 4452 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys

18:31:08.0203 4452 Brserid - ok

18:31:08.0203 4452 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys

18:31:08.0218 4452 BrSerWdm - ok

18:31:08.0234 4452 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys

18:31:08.0250 4452 BrUsbMdm - ok

18:31:08.0250 4452 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys

18:31:08.0265 4452 BrUsbSer - ok

18:31:08.0265 4452 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys

18:31:08.0281 4452 BTHMODEM - ok

18:31:08.0296 4452 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys

18:31:08.0312 4452 cdfs - ok

18:31:08.0328 4452 cdrom (83d2d75e1efb81b3450c18131443f7db) C:\Windows\system32\DRIVERS\cdrom.sys

18:31:08.0343 4452 cdrom - ok

18:31:08.0359 4452 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys

18:31:08.0359 4452 circlass - ok

18:31:08.0390 4452 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys

18:31:08.0406 4452 CLFS - ok

18:31:08.0421 4452 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys

18:31:08.0421 4452 CmBatt - ok

18:31:08.0437 4452 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\DRIVERS\cmdide.sys

18:31:08.0437 4452 cmdide - ok

18:31:08.0484 4452 CNG (937beb186a735aca91d717044a49d17e) C:\Windows\system32\Drivers\cng.sys

18:31:08.0515 4452 CNG - ok

18:31:08.0530 4452 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys

18:31:08.0530 4452 Compbatt - ok

18:31:08.0562 4452 CompositeBus (f26b3a86f6fa87ca360b879581ab4123) C:\Windows\system32\DRIVERS\CompositeBus.sys

18:31:08.0577 4452 CompositeBus - ok

18:31:08.0593 4452 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys

18:31:08.0593 4452 crcdisk - ok

18:31:08.0624 4452 DfsC (9c253ce7311ca60fc11c774692a13208) C:\Windows\system32\Drivers\dfsc.sys

18:31:08.0655 4452 DfsC - ok

18:31:08.0655 4452 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys

18:31:08.0702 4452 discache - ok

18:31:08.0718 4452 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys

18:31:08.0718 4452 Disk - ok

18:31:08.0749 4452 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys

18:31:08.0764 4452 drmkaud - ok

18:31:08.0827 4452 DXGKrnl (1633b9abf52784a1331476397a48cbef) C:\Windows\System32\drivers\dxgkrnl.sys

18:31:08.0874 4452 DXGKrnl - ok

18:31:08.0920 4452 e1kexpress (52a482dc61f24b498c8268866b90bb44) C:\Windows\system32\DRIVERS\e1k62x64.sys

18:31:08.0920 4452 e1kexpress - ok

18:31:09.0014 4452 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys

18:31:09.0092 4452 ebdrv - ok

18:31:09.0108 4452 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys

18:31:09.0123 4452 elxstor - ok

18:31:09.0123 4452 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\DRIVERS\errdev.sys

18:31:09.0154 4452 ErrDev - ok

18:31:09.0154 4452 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys

18:31:09.0186 4452 exfat - ok

18:31:09.0217 4452 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys

18:31:09.0295 4452 fastfat - ok

18:31:09.0310 4452 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys

18:31:09.0342 4452 fdc - ok

18:31:09.0373 4452 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys

18:31:09.0373 4452 FileInfo - ok

18:31:09.0388 4452 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys

18:31:09.0435 4452 Filetrace - ok

18:31:09.0435 4452 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys

18:31:09.0451 4452 flpydisk - ok

18:31:09.0466 4452 FltMgr (f7866af72abbaf84b1fa5aa195378c59) C:\Windows\system32\drivers\fltmgr.sys

18:31:09.0466 4452 FltMgr - ok

18:31:09.0482 4452 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys

18:31:09.0482 4452 FsDepends - ok

18:31:09.0498 4452 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\Windows\system32\drivers\Fs_Rec.sys

18:31:09.0498 4452 Fs_Rec - ok

18:31:09.0529 4452 fvevol (ae87ba80d0ec3b57126ed2cdc15b24ed) C:\Windows\system32\DRIVERS\fvevol.sys

18:31:09.0544 4452 fvevol - ok

18:31:09.0560 4452 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys

18:31:09.0576 4452 gagp30kx - ok

18:31:09.0638 4452 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys

18:31:09.0669 4452 hcw85cir - ok

18:31:09.0669 4452 HdAudAddService (6410f6f415b2a5a9037224c41da8bf12) C:\Windows\system32\drivers\HdAudio.sys

18:31:09.0700 4452 HdAudAddService - ok

18:31:09.0716 4452 HDAudBus (0a49913402747a0b67de940fb42cbdbb) C:\Windows\system32\DRIVERS\HDAudBus.sys

18:31:09.0732 4452 HDAudBus - ok

18:31:09.0763 4452 HECIx64 (b6ac71aaa2b10848f57fc49d55a651af) C:\Windows\system32\DRIVERS\HECIx64.sys

18:31:09.0763 4452 HECIx64 - ok

18:31:09.0778 4452 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys

18:31:09.0794 4452 HidBatt - ok

18:31:09.0810 4452 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys

18:31:09.0825 4452 HidBth - ok

18:31:09.0841 4452 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys

18:31:09.0856 4452 HidIr - ok

18:31:09.0888 4452 HidUsb (b3bf6b5b50006def50b66306d99fcf6f) C:\Windows\system32\DRIVERS\hidusb.sys

18:31:09.0903 4452 HidUsb - ok

18:31:09.0919 4452 HpSAMD (0886d440058f203eba0e1825e4355914) C:\Windows\system32\DRIVERS\HpSAMD.sys

18:31:09.0934 4452 HpSAMD - ok

18:31:09.0966 4452 HTTP (cee049cac4efa7f4e1e4ad014414a5d4) C:\Windows\system32\drivers\HTTP.sys

18:31:10.0012 4452 HTTP - ok

18:31:10.0028 4452 hwpolicy (f17766a19145f111856378df337a5d79) C:\Windows\system32\drivers\hwpolicy.sys

18:31:10.0028 4452 hwpolicy - ok

18:31:10.0044 4452 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys

18:31:10.0044 4452 i8042prt - ok

18:31:10.0075 4452 iaStor (be7d72fcf442c26975942007e0831241) C:\Windows\system32\DRIVERS\iaStor.sys

18:31:10.0090 4452 iaStor - ok

18:31:10.0106 4452 iaStorV (d83efb6fd45df9d55e9a1afc63640d50) C:\Windows\system32\DRIVERS\iaStorV.sys

18:31:10.0122 4452 iaStorV - ok

18:31:10.0122 4452 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys

18:31:10.0137 4452 iirsp - ok

18:31:10.0200 4452 IntcAzAudAddService (42943bb3ab7a405b30eff7c8283cc129) C:\Windows\system32\drivers\RTKVHD64.sys

18:31:10.0231 4452 IntcAzAudAddService - ok

18:31:10.0246 4452 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\DRIVERS\intelide.sys

18:31:10.0246 4452 intelide - ok

18:31:10.0262 4452 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys

18:31:10.0278 4452 intelppm - ok

18:31:10.0293 4452 IpFilterDriver (722dd294df62483cecaae6e094b4d695) C:\Windows\system32\DRIVERS\ipfltdrv.sys

18:31:10.0324 4452 IpFilterDriver - ok

18:31:10.0324 4452 IPMIDRV (e2b4a4494db7cb9b89b55ca268c337c5) C:\Windows\system32\DRIVERS\IPMIDrv.sys

18:31:10.0340 4452 IPMIDRV - ok

18:31:10.0340 4452 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys

18:31:10.0371 4452 IPNAT - ok

18:31:10.0387 4452 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys

18:31:10.0402 4452 IRENUM - ok

18:31:10.0402 4452 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\DRIVERS\isapnp.sys

18:31:10.0418 4452 isapnp - ok

18:31:10.0418 4452 iScsiPrt (fa4d2557de56d45b0a346f93564be6e1) C:\Windows\system32\DRIVERS\msiscsi.sys

18:31:10.0434 4452 iScsiPrt - ok

18:31:10.0480 4452 JRAID (75ddb94a2a24f9f7037d10a2dda06d36) C:\Windows\system32\DRIVERS\jraid.sys

18:31:10.0496 4452 JRAID - ok

18:31:10.0512 4452 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys

18:31:10.0512 4452 kbdclass - ok

18:31:10.0527 4452 kbdhid (6def98f8541e1b5dceb2c822a11f7323) C:\Windows\system32\DRIVERS\kbdhid.sys

18:31:10.0527 4452 kbdhid - ok

18:31:10.0574 4452 KSecDD (16c1b906fc5ead84769f90b736b6bf0e) C:\Windows\system32\Drivers\ksecdd.sys

18:31:10.0574 4452 KSecDD - ok

18:31:10.0605 4452 KSecPkg (0b711550c56444879d71c7daabda6c83) C:\Windows\system32\Drivers\ksecpkg.sys

18:31:10.0605 4452 KSecPkg - ok

18:31:10.0621 4452 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys

18:31:10.0652 4452 ksthunk - ok

18:31:10.0683 4452 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys

18:31:10.0714 4452 lltdio - ok

18:31:10.0792 4452 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys

18:31:10.0824 4452 LSI_FC - ok

18:31:10.0824 4452 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys

18:31:10.0839 4452 LSI_SAS - ok

18:31:10.0855 4452 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys

18:31:10.0855 4452 LSI_SAS2 - ok

18:31:10.0870 4452 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys

18:31:10.0870 4452 LSI_SCSI - ok

18:31:10.0886 4452 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys

18:31:10.0948 4452 luafv - ok

18:31:10.0980 4452 MBAMProtector (79da94b35371b9e7104460c7693dcb2c) C:\Windows\system32\drivers\mbam.sys

18:31:10.0980 4452 MBAMProtector - ok

18:31:10.0995 4452 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys

18:31:11.0011 4452 megasas - ok

18:31:11.0011 4452 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys

18:31:11.0026 4452 MegaSR - ok

18:31:11.0042 4452 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys

18:31:11.0073 4452 Modem - ok

18:31:11.0104 4452 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys

18:31:11.0120 4452 monitor - ok

18:31:11.0136 4452 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys

18:31:11.0136 4452 mouclass - ok

18:31:11.0151 4452 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys

18:31:11.0151 4452 mouhid - ok

18:31:11.0167 4452 mountmgr (791af66c4d0e7c90a3646066386fb571) C:\Windows\system32\drivers\mountmgr.sys

18:31:11.0167 4452 mountmgr - ok

18:31:11.0198 4452 mpio (609d1d87649ecc19796f4d76d4c15cea) C:\Windows\system32\DRIVERS\mpio.sys

18:31:11.0198 4452 mpio - ok

18:31:11.0214 4452 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys

18:31:11.0245 4452 mpsdrv - ok

18:31:11.0307 4452 MREMP50 (9bd4dcb5412921864a7aacdedfbd1923) C:\PROGRA~2\COMMON~1\Motive\MREMP50.SYS

18:31:11.0338 4452 MREMP50 ( UnsignedFile.Multi.Generic ) - warning

18:31:11.0338 4452 MREMP50 - detected UnsignedFile.Multi.Generic (1)

18:31:11.0385 4452 MREMP50a64 (c2758df79c83a0d12a5599a040ca1818) C:\PROGRA~1\COMMON~1\Motive\MREMP50a64.SYS

18:31:11.0401 4452 MREMP50a64 - ok

18:31:11.0416 4452 MREMPR5 - ok

18:31:11.0416 4452 MRENDIS5 - ok

18:31:11.0432 4452 MRESP50 (07c02c892e8e1a72d6bf35004f0e9c5e) C:\PROGRA~2\COMMON~1\Motive\MRESP50.SYS

18:31:11.0448 4452 MRESP50 ( UnsignedFile.Multi.Generic ) - warning

18:31:11.0448 4452 MRESP50 - detected UnsignedFile.Multi.Generic (1)

18:31:11.0463 4452 MRESP50a64 (38bd5b32e0722752be8465d2a6da43d9) C:\PROGRA~1\COMMON~1\Motive\MRESP50a64.SYS

18:31:11.0463 4452 MRESP50a64 - ok

18:31:11.0479 4452 MRxDAV (30524261bb51d96d6fcbac20c810183c) C:\Windows\system32\drivers\mrxdav.sys

18:31:11.0510 4452 MRxDAV - ok

18:31:11.0557 4452 mrxsmb (040d62a9d8ad28922632137acdd984f2) C:\Windows\system32\DRIVERS\mrxsmb.sys

18:31:11.0572 4452 mrxsmb - ok

18:31:11.0588 4452 mrxsmb10 (f0067552f8f9b33d7c59403ab808a3cb) C:\Windows\system32\DRIVERS\mrxsmb10.sys

18:31:11.0635 4452 mrxsmb10 - ok

18:31:11.0666 4452 mrxsmb20 (3c142d31de9f2f193218a53fe2632051) C:\Windows\system32\DRIVERS\mrxsmb20.sys

18:31:11.0697 4452 mrxsmb20 - ok

18:31:11.0713 4452 msahci (5c37497276e3b3a5488b23a326a754b7) C:\Windows\system32\DRIVERS\msahci.sys

18:31:11.0728 4452 msahci - ok

18:31:11.0728 4452 msdsm (8d27b597229aed79430fb9db3bcbfbd0) C:\Windows\system32\DRIVERS\msdsm.sys

18:31:11.0744 4452 msdsm - ok

18:31:11.0760 4452 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys

18:31:11.0791 4452 Msfs - ok

18:31:11.0806 4452 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys

18:31:11.0838 4452 mshidkmdf - ok

18:31:11.0853 4452 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\DRIVERS\msisadrv.sys

18:31:11.0853 4452 msisadrv - ok

18:31:11.0869 4452 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys

18:31:11.0900 4452 MSKSSRV - ok

18:31:11.0916 4452 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys

18:31:11.0947 4452 MSPCLOCK - ok

18:31:11.0947 4452 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys

18:31:11.0994 4452 MSPQM - ok

18:31:12.0009 4452 MsRPC (89cb141aa8616d8c6a4610fa26c60964) C:\Windows\system32\drivers\MsRPC.sys

18:31:12.0025 4452 MsRPC - ok

18:31:12.0040 4452 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\DRIVERS\mssmbios.sys

18:31:12.0040 4452 mssmbios - ok

18:31:12.0056 4452 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys

18:31:12.0087 4452 MSTEE - ok

18:31:12.0118 4452 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys

18:31:12.0118 4452 MTConfig - ok

18:31:12.0150 4452 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys

18:31:12.0150 4452 Mup - ok

18:31:12.0181 4452 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys

18:31:12.0196 4452 NativeWifiP - ok

18:31:12.0228 4452 NDIS (cad515dbd07d082bb317d9928ce8962c) C:\Windows\system32\drivers\ndis.sys

18:31:12.0243 4452 NDIS - ok

18:31:12.0259 4452 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys

18:31:12.0290 4452 NdisCap - ok

18:31:12.0306 4452 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys

18:31:12.0352 4452 NdisTapi - ok

18:31:12.0352 4452 Ndisuio (f105ba1e22bf1f2ee8f005d4305e4bec) C:\Windows\system32\DRIVERS\ndisuio.sys

18:31:12.0399 4452 Ndisuio - ok

18:31:12.0415 4452 NdisWan (557dfab9ca1fcb036ac77564c010dad3) C:\Windows\system32\DRIVERS\ndiswan.sys

18:31:12.0430 4452 NdisWan - ok

18:31:12.0446 4452 NDProxy (659b74fb74b86228d6338d643cd3e3cf) C:\Windows\system32\drivers\NDProxy.sys

18:31:12.0477 4452 NDProxy - ok

18:31:12.0493 4452 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys

18:31:12.0524 4452 NetBIOS - ok

18:31:12.0524 4452 NetBT (9162b273a44ab9dce5b44362731d062a) C:\Windows\system32\DRIVERS\netbt.sys

18:31:12.0571 4452 NetBT - ok

18:31:12.0586 4452 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys

18:31:12.0602 4452 nfrd960 - ok

18:31:12.0602 4452 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys

18:31:12.0633 4452 Npfs - ok

18:31:12.0649 4452 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys

18:31:12.0680 4452 nsiproxy - ok

18:31:12.0711 4452 Ntfs (356698a13c4630d5b31c37378d469196) C:\Windows\system32\drivers\Ntfs.sys

18:31:12.0742 4452 Ntfs - ok

18:31:12.0758 4452 NTIDrvr (64ddd0dee976302f4bd93e5efcc2f013) C:\Windows\system32\drivers\NTIDrvr.sys

18:31:12.0758 4452 NTIDrvr - ok

18:31:12.0774 4452 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys

18:31:12.0820 4452 Null - ok

18:31:12.0867 4452 NVHDA (ad37248bd442d41c9a896e53eb8a85ee) C:\Windows\system32\drivers\nvhda64v.sys

18:31:12.0883 4452 NVHDA - ok

18:31:13.0117 4452 nvlddmkm (b34e9bfbd9c61048ef6281c3e7ec210a) C:\Windows\system32\DRIVERS\nvlddmkm.sys

18:31:13.0273 4452 nvlddmkm - ok

18:31:13.0320 4452 nvraid (3e38712941e9bb4ddbee00affe3fed3d) C:\Windows\system32\DRIVERS\nvraid.sys

18:31:13.0335 4452 nvraid - ok

18:31:13.0335 4452 nvstor (477dc4d6deb99be37084c9ac6d013da1) C:\Windows\system32\DRIVERS\nvstor.sys

18:31:13.0351 4452 nvstor - ok

18:31:13.0351 4452 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\DRIVERS\nv_agp.sys

18:31:13.0366 4452 nv_agp - ok

18:31:13.0366 4452 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\DRIVERS\ohci1394.sys

18:31:13.0382 4452 ohci1394 - ok

18:31:13.0398 4452 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys

18:31:13.0398 4452 Parport - ok

18:31:13.0413 4452 partmgr (7daa117143316c4a1537e074a5a9eaf0) C:\Windows\system32\drivers\partmgr.sys

18:31:13.0413 4452 partmgr - ok

18:31:13.0429 4452 pci (f36f6504009f2fb0dfd1b17a116ad74b) C:\Windows\system32\DRIVERS\pci.sys

18:31:13.0444 4452 pci - ok

18:31:13.0444 4452 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\DRIVERS\pciide.sys

18:31:13.0444 4452 pciide - ok

18:31:13.0460 4452 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys

18:31:13.0476 4452 pcmcia - ok

18:31:13.0476 4452 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys

18:31:13.0491 4452 pcw - ok

18:31:13.0491 4452 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys

18:31:13.0538 4452 PEAUTH - ok

18:31:13.0569 4452 PptpMiniport (27cc19e81ba5e3403c48302127bda717) C:\Windows\system32\DRIVERS\raspptp.sys

18:31:13.0632 4452 PptpMiniport - ok

18:31:13.0678 4452 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys

18:31:13.0710 4452 Processor - ok

18:31:13.0725 4452 Psched (ee992183bd8eaefd9973f352e587a299) C:\Windows\system32\DRIVERS\pacer.sys

18:31:13.0788 4452 Psched - ok

18:31:13.0819 4452 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys

18:31:13.0850 4452 ql2300 - ok

18:31:13.0850 4452 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys

18:31:13.0866 4452 ql40xx - ok

18:31:13.0866 4452 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys

18:31:13.0881 4452 QWAVEdrv - ok

18:31:13.0897 4452 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys

18:31:13.0928 4452 RasAcd - ok

18:31:13.0944 4452 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys

18:31:13.0975 4452 RasAgileVpn - ok

18:31:13.0990 4452 Rasl2tp (87a6e852a22991580d6d39adc4790463) C:\Windows\system32\DRIVERS\rasl2tp.sys

18:31:14.0022 4452 Rasl2tp - ok

18:31:14.0022 4452 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys

18:31:14.0053 4452 RasPppoe - ok

18:31:14.0068 4452 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys

18:31:14.0100 4452 RasSstp - ok

18:31:14.0131 4452 rdbss (3bac8142102c15d59a87757c1d41dce5) C:\Windows\system32\DRIVERS\rdbss.sys

18:31:14.0178 4452 rdbss - ok

18:31:14.0178 4452 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys

18:31:14.0193 4452 rdpbus - ok

18:31:14.0209 4452 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys

18:31:14.0240 4452 RDPCDD - ok

18:31:14.0240 4452 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys

18:31:14.0271 4452 RDPENCDD - ok

18:31:14.0287 4452 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys

18:31:14.0318 4452 RDPREFMP - ok

18:31:14.0318 4452 RDPWD (8a3e6bea1c53ea6177fe2b6eba2c80d7) C:\Windows\system32\drivers\RDPWD.sys

18:31:14.0349 4452 RDPWD - ok

18:31:14.0349 4452 rdyboost (634b9a2181d98f15941236886164ec8b) C:\Windows\system32\drivers\rdyboost.sys

18:31:14.0365 4452 rdyboost - ok

18:31:14.0380 4452 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys

18:31:14.0427 4452 rspndr - ok

18:31:14.0443 4452 sbp2port (e3bbb89983daf5622c1d50cf49f28227) C:\Windows\system32\DRIVERS\sbp2port.sys

18:31:14.0443 4452 sbp2port - ok

18:31:14.0458 4452 scfilter (c94da20c7e3ba1dca269bc8460d98387) C:\Windows\system32\DRIVERS\scfilter.sys

18:31:14.0490 4452 scfilter - ok

18:31:14.0490 4452 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys

18:31:14.0536 4452 secdrv - ok

18:31:14.0536 4452 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys

18:31:14.0552 4452 Serenum - ok

18:31:14.0568 4452 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys

18:31:14.0583 4452 Serial - ok

18:31:14.0599 4452 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys

18:31:14.0614 4452 sermouse - ok

18:31:14.0646 4452 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\DRIVERS\sffdisk.sys

18:31:14.0677 4452 sffdisk - ok

18:31:14.0692 4452 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\DRIVERS\sffp_mmc.sys

18:31:14.0708 4452 sffp_mmc - ok

18:31:14.0724 4452 sffp_sd (178298f767fe638c9fedcbdef58bb5e4) C:\Windows\system32\DRIVERS\sffp_sd.sys

18:31:14.0739 4452 sffp_sd - ok

18:31:14.0739 4452 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys

18:31:14.0755 4452 sfloppy - ok

18:31:14.0770 4452 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys

18:31:14.0770 4452 SiSRaid2 - ok

18:31:14.0786 4452 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys

18:31:14.0786 4452 SiSRaid4 - ok

18:31:14.0802 4452 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys

18:31:14.0833 4452 Smb - ok

18:31:14.0848 4452 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys

18:31:14.0864 4452 spldr - ok

18:31:14.0911 4452 srv (2408c0366d96bcdf63e8f1c78e4a29c5) C:\Windows\system32\DRIVERS\srv.sys

18:31:14.0942 4452 srv - ok

18:31:14.0989 4452 srv2 (76548f7b818881b47d8d1ae1be9c11f8) C:\Windows\system32\DRIVERS\srv2.sys

18:31:15.0020 4452 srv2 - ok

18:31:15.0067 4452 srvnet (0af6e19d39c70844c5caa8fb0183c36e) C:\Windows\system32\DRIVERS\srvnet.sys

18:31:15.0082 4452 srvnet - ok

18:31:15.0129 4452 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys

18:31:15.0145 4452 stexstor - ok

18:31:15.0176 4452 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\DRIVERS\swenum.sys

18:31:15.0192 4452 swenum - ok

18:31:15.0270 4452 Tcpip (f18f56efc0bfb9c87ba01c37b27f4da5) C:\Windows\system32\drivers\tcpip.sys

18:31:15.0348 4452 Tcpip - ok

18:31:15.0394 4452 TCPIP6 (f18f56efc0bfb9c87ba01c37b27f4da5) C:\Windows\system32\DRIVERS\tcpip.sys

18:31:15.0426 4452 TCPIP6 - ok

18:31:15.0441 4452 tcpipreg (76d078af6f587b162d50210f761eb9ed) C:\Windows\system32\drivers\tcpipreg.sys

18:31:15.0472 4452 tcpipreg - ok

18:31:15.0488 4452 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys

18:31:15.0519 4452 TDPIPE - ok

18:31:15.0519 4452 TDTCP (e4245bda3190a582d55ed09e137401a9) C:\Windows\system32\drivers\tdtcp.sys

18:31:15.0550 4452 TDTCP - ok

18:31:15.0566 4452 tdx (079125c4b17b01fcaeebce0bcb290c0f) C:\Windows\system32\DRIVERS\tdx.sys

18:31:15.0597 4452 tdx - ok

18:31:15.0613 4452 TermDD (c448651339196c0e869a355171875522) C:\Windows\system32\DRIVERS\termdd.sys

18:31:15.0613 4452 TermDD - ok

18:31:15.0628 4452 tssecsrv (61b96c26131e37b24e93327a0bd1fb95) C:\Windows\system32\DRIVERS\tssecsrv.sys

18:31:15.0675 4452 tssecsrv - ok

18:31:15.0691 4452 tunnel (3836171a2cdf3af8ef10856db9835a70) C:\Windows\system32\DRIVERS\tunnel.sys

18:31:15.0738 4452 tunnel - ok

18:31:15.0738 4452 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys

18:31:15.0753 4452 uagp35 - ok

18:31:15.0769 4452 UBHelper (2e22c1fd397a5a9ffef55e9d1fc96c00) C:\Windows\system32\drivers\UBHelper.sys

18:31:15.0769 4452 UBHelper - ok

18:31:15.0784 4452 udfs (d47baead86c65d4f4069d7ce0a4edceb) C:\Windows\system32\DRIVERS\udfs.sys

18:31:15.0831 4452 udfs - ok

18:31:15.0847 4452 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\DRIVERS\uliagpkx.sys

18:31:15.0862 4452 uliagpkx - ok

18:31:15.0878 4452 umbus (eab6c35e62b1b0db0d1b48b671d3a117) C:\Windows\system32\DRIVERS\umbus.sys

18:31:15.0894 4452 umbus - ok

18:31:15.0909 4452 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys

18:31:15.0925 4452 UmPass - ok

18:31:15.0956 4452 usbccgp (b26afb54a534d634523c4fb66765b026) C:\Windows\system32\DRIVERS\usbccgp.sys

18:31:15.0972 4452 usbccgp - ok

18:31:16.0003 4452 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\DRIVERS\usbcir.sys

18:31:16.0003 4452 usbcir - ok

18:31:16.0018 4452 usbehci (2ea4aff7be7eb4632e3aa8595b0803b5) C:\Windows\system32\DRIVERS\usbehci.sys

18:31:16.0018 4452 usbehci - ok

18:31:16.0034 4452 usbhub (4c9042b8df86c1e8e6240c218b99b39b) C:\Windows\system32\DRIVERS\usbhub.sys

18:31:16.0065 4452 usbhub - ok

18:31:16.0065 4452 usbohci (58e546bbaf87664fc57e0f6081e4f609) C:\Windows\system32\DRIVERS\usbohci.sys

18:31:16.0081 4452 usbohci - ok

18:31:16.0081 4452 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys

18:31:16.0112 4452 usbprint - ok

18:31:16.0112 4452 USBSTOR (080d3820da6c046be82fc8b45a893e83) C:\Windows\system32\DRIVERS\USBSTOR.SYS

18:31:16.0128 4452 USBSTOR - ok

18:31:16.0143 4452 usbuhci (81fb2216d3a60d1284455d511797db3d) C:\Windows\system32\DRIVERS\usbuhci.sys

18:31:16.0143 4452 usbuhci - ok

18:31:16.0174 4452 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\DRIVERS\vdrvroot.sys

18:31:16.0174 4452 vdrvroot - ok

18:31:16.0190 4452 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys

18:31:16.0206 4452 vga - ok

18:31:16.0206 4452 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys

18:31:16.0252 4452 VgaSave - ok

18:31:16.0252 4452 vhdmp (c82e748660f62a242b2dfac1442f22a4) C:\Windows\system32\DRIVERS\vhdmp.sys

18:31:16.0268 4452 vhdmp - ok

18:31:16.0268 4452 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\DRIVERS\viaide.sys

18:31:16.0284 4452 viaide - ok

18:31:16.0284 4452 volmgr (2b1a3dae2b4e70dbba822b7a03fbd4a3) C:\Windows\system32\DRIVERS\volmgr.sys

18:31:16.0299 4452 volmgr - ok

18:31:16.0299 4452 volmgrx (99b0cbb569ca79acaed8c91461d765fb) C:\Windows\system32\drivers\volmgrx.sys

18:31:16.0315 4452 volmgrx - ok

18:31:16.0330 4452 volsnap (58f82eed8ca24b461441f9c3e4f0bf5c) C:\Windows\system32\DRIVERS\volsnap.sys

18:31:16.0330 4452 volsnap - ok

18:31:16.0346 4452 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys

18:31:16.0362 4452 vsmraid - ok

18:31:16.0362 4452 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\System32\drivers\vwifibus.sys

18:31:16.0377 4452 vwifibus - ok

18:31:16.0393 4452 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys

18:31:16.0408 4452 WacomPen - ok

18:31:16.0424 4452 WANARP (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys

18:31:16.0455 4452 WANARP - ok

18:31:16.0471 4452 Wanarpv6 (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys

18:31:16.0486 4452 Wanarpv6 - ok

18:31:16.0518 4452 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys

18:31:16.0518 4452 Wd - ok

18:31:16.0533 4452 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys

18:31:16.0549 4452 Wdf01000 - ok

18:31:16.0564 4452 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys

18:31:16.0596 4452 WfpLwf - ok

18:31:16.0611 4452 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys

18:31:16.0611 4452 WIMMount - ok

18:31:16.0627 4452 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\DRIVERS\wmiacpi.sys

18:31:16.0642 4452 WmiAcpi - ok

18:31:16.0658 4452 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys

18:31:16.0689 4452 ws2ifsl - ok

18:31:16.0705 4452 WudfPf (7cadc74271dd6461c452c271b30bd378) C:\Windows\system32\drivers\WudfPf.sys

18:31:16.0736 4452 WudfPf - ok

18:31:16.0752 4452 WUDFRd (3b197af0fff08aa66b6b2241ca538d64) C:\Windows\system32\DRIVERS\WUDFRd.sys

18:31:16.0783 4452 WUDFRd - ok

18:31:16.0814 4452 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0

18:31:16.0954 4452 \Device\Harddisk0\DR0 - ok

18:31:16.0970 4452 Boot (0x1200) (ce041326564eaaaecb690610e34f229d) \Device\Harddisk0\DR0\Partition0

18:31:16.0970 4452 \Device\Harddisk0\DR0\Partition0 - ok

18:31:17.0001 4452 Boot (0x1200) (6dc6ce6fa04144b7fce4718fc84d4a65) \Device\Harddisk0\DR0\Partition1

18:31:17.0001 4452 \Device\Harddisk0\DR0\Partition1 - ok

18:31:17.0001 4452 ============================================================

18:31:17.0001 4452 Scan finished

18:31:17.0001 4452 ============================================================

18:31:17.0017 3492 Detected object count: 2

18:31:17.0017 3492 Actual detected object count: 2

18:34:20.0932 3492 MREMP50 ( UnsignedFile.Multi.Generic ) - skipped by user

18:34:20.0932 3492 MREMP50 ( UnsignedFile.Multi.Generic ) - User select action: Skip

18:34:20.0932 3492 MRESP50 ( UnsignedFile.Multi.Generic ) - skipped by user

18:34:20.0932 3492 MRESP50 ( UnsignedFile.Multi.Generic ) - User select action: Skip

18:35:26.0593 4652 ============================================================

18:35:26.0593 4652 Scan started

18:35:26.0593 4652 Mode: Manual; SigCheck; TDLFS;

18:35:26.0593 4652 ============================================================

18:35:26.0796 4652 1394ohci (1b00662092f9f9568b995902f0cc40d5) C:\Windows\system32\DRIVERS\1394ohci.sys

18:35:26.0842 4652 1394ohci - ok

18:35:26.0858 4652 ACPI (6f11e88748cdefd2f76aa215f97ddfe5) C:\Windows\system32\DRIVERS\ACPI.sys

18:35:26.0874 4652 ACPI - ok

18:35:26.0889 4652 AcpiPmi (63b05a0420ce4bf0e4af6dcc7cada254) C:\Windows\system32\DRIVERS\acpipmi.sys

18:35:26.0905 4652 AcpiPmi - ok

18:35:26.0920 4652 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys

18:35:26.0936 4652 adp94xx - ok

18:35:26.0936 4652 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys

18:35:26.0952 4652 adpahci - ok

18:35:26.0952 4652 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys

18:35:26.0967 4652 adpu320 - ok

18:35:26.0998 4652 AFD (db9d6c6b2cd95a9ca414d045b627422e) C:\Windows\system32\drivers\afd.sys

18:35:27.0014 4652 AFD - ok

18:35:27.0030 4652 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\DRIVERS\agp440.sys

18:35:27.0030 4652 agp440 - ok

18:35:27.0045 4652 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\DRIVERS\aliide.sys

18:35:27.0045 4652 aliide - ok

18:35:27.0061 4652 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\DRIVERS\amdide.sys

18:35:27.0061 4652 amdide - ok

18:35:27.0076 4652 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys

18:35:27.0076 4652 AmdK8 - ok

18:35:27.0092 4652 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys

18:35:27.0092 4652 AmdPPM - ok

18:35:27.0108 4652 amdsata (7a4b413614c055935567cf88a9734d38) C:\Windows\system32\DRIVERS\amdsata.sys

18:35:27.0108 4652 amdsata - ok

18:35:27.0123 4652 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys

18:35:27.0123 4652 amdsbs - ok

18:35:27.0139 4652 amdxata (b4ad0cacbab298671dd6f6ef7e20679d) C:\Windows\system32\DRIVERS\amdxata.sys

18:35:27.0139 4652 amdxata - ok

18:35:27.0154 4652 AppID (42fd751b27fa0e9c69bb39f39e409594) C:\Windows\system32\drivers\appid.sys

18:35:27.0154 4652 AppID - ok

18:35:27.0170 4652 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys

18:35:27.0186 4652 arc - ok

18:35:27.0186 4652 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys

18:35:27.0201 4652 arcsas - ok

18:35:27.0217 4652 aswFsBlk (ce6d8bcc4787704ea4feeb92b0d0caf8) C:\Windows\system32\drivers\aswFsBlk.sys

18:35:27.0217 4652 aswFsBlk - ok

18:35:27.0248 4652 aswMonFlt (0debeb2e3fbd0bf5343125cce617f105) C:\Windows\system32\drivers\aswMonFlt.sys

18:35:27.0248 4652 aswMonFlt - ok

18:35:27.0264 4652 aswRdr (952edc2e81f85d1781958d4128bf59f8) C:\Windows\system32\drivers\aswRdr.sys

18:35:27.0279 4652 aswRdr - ok

18:35:27.0295 4652 aswSnx (dd383e2ac941c545a85ab72503da6c12) C:\Windows\system32\drivers\aswSnx.sys

18:35:27.0310 4652 aswSnx - ok

18:35:27.0310 4652 aswSP (ef5403fb8b2dcb791ec365fdf6040a4a) C:\Windows\system32\drivers\aswSP.sys

18:35:27.0326 4652 aswSP - ok

18:35:27.0326 4652 aswTdi (34165da5c6b30c0f9d61246bf8a28040) C:\Windows\system32\drivers\aswTdi.sys

18:35:27.0326 4652 aswTdi - ok

18:35:27.0342 4652 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys

18:35:27.0373 4652 AsyncMac - ok

18:35:27.0373 4652 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\DRIVERS\atapi.sys

18:35:27.0388 4652 atapi - ok

18:35:27.0404 4652 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys

18:35:27.0420 4652 b06bdrv - ok

18:35:27.0435 4652 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys

18:35:27.0451 4652 b57nd60a - ok

18:35:27.0466 4652 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys

18:35:27.0498 4652 Beep - ok

18:35:27.0513 4652 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys

18:35:27.0513 4652 blbdrive - ok

18:35:27.0560 4652 bowser (19d20159708e152267e53b66677a4995) C:\Windows\system32\DRIVERS\bowser.sys

18:35:27.0591 4652 bowser - ok

18:35:27.0591 4652 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys

18:35:27.0607 4652 BrFiltLo - ok

18:35:27.0607 4652 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys

18:35:27.0622 4652 BrFiltUp - ok

18:35:27.0638 4652 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys

18:35:27.0638 4652 Brserid - ok

18:35:27.0654 4652 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys

18:35:27.0669 4652 BrSerWdm - ok

18:35:27.0669 4652 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys

18:35:27.0685 4652 BrUsbMdm - ok

18:35:27.0685 4652 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys

18:35:27.0700 4652 BrUsbSer - ok

18:35:27.0700 4652 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys

18:35:27.0716 4652 BTHMODEM - ok

18:35:27.0716 4652 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys

18:35:27.0747 4652 cdfs - ok

18:35:27.0763 4652 cdrom (83d2d75e1efb81b3450c18131443f7db) C:\Windows\system32\DRIVERS\cdrom.sys

18:35:27.0763 4652 cdrom - ok

18:35:27.0778 4652 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys

18:35:27.0794 4652 circlass - ok

18:35:27.0825 4652 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys

18:35:27.0841 4652 CLFS - ok

18:35:27.0856 4652 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys

18:35:27.0872 4652 CmBatt - ok

18:35:27.0872 4652 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\DRIVERS\cmdide.sys

18:35:27.0888 4652 cmdide - ok

18:35:27.0934 4652 CNG (937beb186a735aca91d717044a49d17e) C:\Windows\system32\Drivers\cng.sys

18:35:27.0950 4652 CNG - ok

18:35:27.0950 4652 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys

18:35:27.0966 4652 Compbatt - ok

18:35:27.0966 4652 CompositeBus (f26b3a86f6fa87ca360b879581ab4123) C:\Windows\system32\DRIVERS\CompositeBus.sys

18:35:27.0981 4652 CompositeBus - ok

18:35:27.0997 4652 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys

18:35:27.0997 4652 crcdisk - ok

18:35:28.0028 4652 DfsC (9c253ce7311ca60fc11c774692a13208) C:\Windows\system32\Drivers\dfsc.sys

18:35:28.0044 4652 DfsC - ok

18:35:28.0059 4652 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys

18:35:28.0090 4652 discache - ok

18:35:28.0106 4652 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys

18:35:28.0106 4652 Disk - ok

18:35:28.0137 4652 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys

18:35:28.0137 4652 drmkaud - ok

18:35:28.0200 4652 DXGKrnl (1633b9abf52784a1331476397a48cbef) C:\Windows\System32\drivers\dxgkrnl.sys

18:35:28.0231 4652 DXGKrnl - ok

18:35:28.0262 4652 e1kexpress (52a482dc61f24b498c8268866b90bb44) C:\Windows\system32\DRIVERS\e1k62x64.sys

18:35:28.0278 4652 e1kexpress - ok

18:35:28.0356 4652 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys

18:35:28.0402 4652 ebdrv - ok

18:35:28.0418 4652 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys

18:35:28.0434 4652 elxstor - ok

18:35:28.0449 4652 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\DRIVERS\errdev.sys

18:35:28.0449 4652 ErrDev - ok

18:35:28.0465 4652 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys

18:35:28.0496 4652 exfat - ok

18:35:28.0512 4652 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys

18:35:28.0543 4652 fastfat - ok

18:35:28.0558 4652 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys

18:35:28.0558 4652 fdc - ok

18:35:28.0574 4652 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys

18:35:28.0574 4652 FileInfo - ok

18:35:28.0590 4652 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys

18:35:28.0621 4652 Filetrace - ok

18:35:28.0621 4652 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys

18:35:28.0636 4652 flpydisk - ok

18:35:28.0636 4652 FltMgr (f7866af72abbaf84b1fa5aa195378c59) C:\Windows\system32\drivers\fltmgr.sys

18:35:28.0652 4652 FltMgr - ok

18:35:28.0652 4652 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys

18:35:28.0668 4652 FsDepends - ok

18:35:28.0668 4652 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\Windows\system32\drivers\Fs_Rec.sys

18:35:28.0683 4652 Fs_Rec - ok

18:35:28.0714 4652 fvevol (ae87ba80d0ec3b57126ed2cdc15b24ed) C:\Windows\system32\DRIVERS\fvevol.sys

18:35:28.0730 4652 fvevol - ok

18:35:28.0746 4652 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys

18:35:28.0746 4652 gagp30kx - ok

18:35:28.0777 4652 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys

18:35:28.0777 4652 hcw85cir - ok

18:35:28.0792 4652 HdAudAddService (6410f6f415b2a5a9037224c41da8bf12) C:\Windows\system32\drivers\HdAudio.sys

18:35:28.0808 4652 HdAudAddService - ok

18:35:28.0808 4652 HDAudBus (0a49913402747a0b67de940fb42cbdbb) C:\Windows\system32\DRIVERS\HDAudBus.sys

18:35:28.0824 4652 HDAudBus - ok

18:35:28.0839 4652 HECIx64 (b6ac71aaa2b10848f57fc49d55a651af) C:\Windows\system32\DRIVERS\HECIx64.sys

18:35:28.0855 4652 HECIx64 - ok

18:35:28.0855 4652 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys

18:35:28.0870 4652 HidBatt - ok

18:35:28.0870 4652 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys

18:35:28.0886 4652 HidBth - ok

18:35:28.0902 4652 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys

18:35:28.0902 4652 HidIr - ok

18:35:28.0917 4652 HidUsb (b3bf6b5b50006def50b66306d99fcf6f) C:\Windows\system32\DRIVERS\hidusb.sys

18:35:28.0917 4652 HidUsb - ok

18:35:28.0948 4652 HpSAMD (0886d440058f203eba0e1825e4355914) C:\Windows\system32\DRIVERS\HpSAMD.sys

18:35:28.0964 4652 HpSAMD - ok

18:35:28.0980 4652 HTTP (cee049cac4efa7f4e1e4ad014414a5d4) C:\Windows\system32\drivers\HTTP.sys

18:35:29.0011 4652 HTTP - ok

18:35:29.0011 4652 hwpolicy (f17766a19145f111856378df337a5d79) C:\Windows\system32\drivers\hwpolicy.sys

18:35:29.0026 4652 hwpolicy - ok

18:35:29.0026 4652 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys

18:35:29.0042 4652 i8042prt - ok

18:35:29.0073 4652 iaStor (be7d72fcf442c26975942007e0831241) C:\Windows\system32\DRIVERS\iaStor.sys

18:35:29.0089 4652 iaStor - ok

18:35:29.0104 4652 iaStorV (d83efb6fd45df9d55e9a1afc63640d50) C:\Windows\system32\DRIVERS\iaStorV.sys

18:35:29.0120 4652 iaStorV - ok

18:35:29.0136 4652 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys

18:35:29.0136 4652 iirsp - ok

18:35:29.0198 4652 IntcAzAudAddService (42943bb3ab7a405b30eff7c8283cc129) C:\Windows\system32\drivers\RTKVHD64.sys

18:35:29.0245 4652 IntcAzAudAddService - ok

18:35:29.0245 4652 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\DRIVERS\intelide.sys

18:35:29.0260 4652 intelide - ok

18:35:29.0260 4652 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys

18:35:29.0276 4652 intelppm - ok

18:35:29.0276 4652 IpFilterDriver (722dd294df62483cecaae6e094b4d695) C:\Windows\system32\DRIVERS\ipfltdrv.sys

18:35:29.0307 4652 IpFilterDriver - ok

18:35:29.0307 4652 IPMIDRV (e2b4a4494db7cb9b89b55ca268c337c5) C:\Windows\system32\DRIVERS\IPMIDrv.sys

18:35:29.0323 4652 IPMIDRV - ok

18:35:29.0323 4652 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys

18:35:29.0354 4652 IPNAT - ok

18:35:29.0370 4652 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys

18:35:29.0385 4652 IRENUM - ok

18:35:29.0385 4652 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\DRIVERS\isapnp.sys

18:35:29.0401 4652 isapnp - ok

18:35:29.0401 4652 iScsiPrt (fa4d2557de56d45b0a346f93564be6e1) C:\Windows\system32\DRIVERS\msiscsi.sys

18:35:29.0416 4652 iScsiPrt - ok

18:35:29.0448 4652 JRAID (75ddb94a2a24f9f7037d10a2dda06d36) C:\Windows\system32\DRIVERS\jraid.sys

18:35:29.0448 4652 JRAID - ok

18:35:29.0463 4652 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys

18:35:29.0463 4652 kbdclass - ok

18:35:29.0479 4652 kbdhid (6def98f8541e1b5dceb2c822a11f7323) C:\Windows\system32\DRIVERS\kbdhid.sys

18:35:29.0479 4652 kbdhid - ok

18:35:29.0526 4652 KSecDD (16c1b906fc5ead84769f90b736b6bf0e) C:\Windows\system32\Drivers\ksecdd.sys

18:35:29.0541 4652 KSecDD - ok

18:35:29.0557 4652 KSecPkg (0b711550c56444879d71c7daabda6c83) C:\Windows\system32\Drivers\ksecpkg.sys

18:35:29.0572 4652 KSecPkg - ok

18:35:29.0572 4652 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys

18:35:29.0604 4652 ksthunk - ok

18:35:29.0619 4652 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys

18:35:29.0635 4652 lltdio - ok

18:35:29.0650 4652 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys

18:35:29.0666 4652 LSI_FC - ok

18:35:29.0682 4652 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys

18:35:29.0682 4652 LSI_SAS - ok

18:35:29.0697 4652 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys

18:35:29.0697 4652 LSI_SAS2 - ok

18:35:29.0713 4652 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys

18:35:29.0713 4652 LSI_SCSI - ok

18:35:29.0728 4652 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys

18:35:29.0760 4652 luafv - ok

18:35:29.0791 4652 MBAMProtector (79da94b35371b9e7104460c7693dcb2c) C:\Windows\system32\drivers\mbam.sys

18:35:29.0791 4652 MBAMProtector - ok

18:35:29.0806 4652 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys

18:35:29.0806 4652 megasas - ok

18:35:29.0822 4652 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys

18:35:29.0838 4652 MegaSR - ok

18:35:29.0838 4652 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys

18:35:29.0869 4652 Modem - ok

18:35:29.0900 4652 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys

18:35:29.0916 4652 monitor - ok

18:35:29.0916 4652 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys

18:35:29.0931 4652 mouclass - ok

18:35:29.0931 4652 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys

18:35:29.0947 4652 mouhid - ok

18:35:29.0947 4652 mountmgr (791af66c4d0e7c90a3646066386fb571) C:\Windows\system32\drivers\mountmgr.sys

18:35:29.0962 4652 mountmgr - ok

18:35:29.0962 4652 mpio (609d1d87649ecc19796f4d76d4c15cea) C:\Windows\system32\DRIVERS\mpio.sys

18:35:29.0978 4652 mpio - ok

18:35:29.0978 4652 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys

18:35:30.0009 4652 mpsdrv - ok

18:35:30.0072 4652 MREMP50 (9bd4dcb5412921864a7aacdedfbd1923) C:\PROGRA~2\COMMON~1\Motive\MREMP50.SYS

18:35:30.0072 4652 MREMP50 ( UnsignedFile.Multi.Generic ) - warning

18:35:30.0072 4652 MREMP50 - detected UnsignedFile.Multi.Generic (1)

18:35:30.0118 4652 MREMP50a64 (c2758df79c83a0d12a5599a040ca1818) C:\PROGRA~1\COMMON~1\Motive\MREMP50a64.SYS

18:35:30.0134 4652 MREMP50a64 - ok

18:35:30.0150 4652 MREMPR5 - ok

18:35:30.0150 4652 MRENDIS5 - ok

18:35:30.0165 4652 MRESP50 (07c02c892e8e1a72d6bf35004f0e9c5e) C:\PROGRA~2\COMMON~1\Motive\MRESP50.SYS

18:35:30.0165 4652 MRESP50 ( UnsignedFile.Multi.Generic ) - warning

18:35:30.0165 4652 MRESP50 - detected UnsignedFile.Multi.Generic (1)

18:35:30.0181 4652 MRESP50a64 (38bd5b32e0722752be8465d2a6da43d9) C:\PROGRA~1\COMMON~1\Motive\MRESP50a64.SYS

18:35:30.0181 4652 MRESP50a64 - ok

18:35:30.0196 4652 MRxDAV (30524261bb51d96d6fcbac20c810183c) C:\Windows\system32\drivers\mrxdav.sys

18:35:30.0212 4652 MRxDAV - ok

18:35:30.0259 4652 mrxsmb (040d62a9d8ad28922632137acdd984f2) C:\Windows\system32\DRIVERS\mrxsmb.sys

18:35:30.0290 4652 mrxsmb - ok

18:35:30.0306 4652 mrxsmb10 (f0067552f8f9b33d7c59403ab808a3cb) C:\Windows\system32\DRIVERS\mrxsmb10.sys

18:35:30.0321 4652 mrxsmb10 - ok

18:35:30.0352 4652 mrxsmb20 (3c142d31de9f2f193218a53fe2632051) C:\Windows\system32\DRIVERS\mrxsmb20.sys

18:35:30.0368 4652 mrxsmb20 - ok

18:35:30.0384 4652 msahci (5c37497276e3b3a5488b23a326a754b7) C:\Windows\system32\DRIVERS\msahci.sys

18:35:30.0399 4652 msahci - ok

18:35:30.0415 4652 msdsm (8d27b597229aed79430fb9db3bcbfbd0) C:\Windows\system32\DRIVERS\msdsm.sys

18:35:30.0446 4652 msdsm - ok

18:35:30.0462 4652 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys

18:35:30.0493 4652 Msfs - ok

18:35:30.0493 4652 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys

18:35:30.0524 4652 mshidkmdf - ok

18:35:30.0524 4652 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\DRIVERS\msisadrv.sys

18:35:30.0540 4652 msisadrv - ok

18:35:30.0555 4652 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys

18:35:30.0586 4652 MSKSSRV - ok

18:35:30.0602 4652 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys

18:35:30.0633 4652 MSPCLOCK - ok

18:35:30.0633 4652 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys

18:35:30.0664 4652 MSPQM - ok

18:35:30.0664 4652 MsRPC (89cb141aa8616d8c6a4610fa26c60964) C:\Windows\system32\drivers\MsRPC.sys

18:35:30.0680 4652 MsRPC - ok

18:35:30.0696 4652 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\DRIVERS\mssmbios.sys

18:35:30.0711 4652 mssmbios - ok

18:35:30.0727 4652 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys

18:35:30.0758 4652 MSTEE - ok

18:35:30.0758 4652 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys

18:35:30.0774 4652 MTConfig - ok

18:35:30.0774 4652 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys

18:35:30.0789 4652 Mup - ok

18:35:30.0805 4652 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys

18:35:30.0820 4652 NativeWifiP - ok

18:35:30.0836 4652 NDIS (cad515dbd07d082bb317d9928ce8962c) C:\Windows\system32\drivers\ndis.sys

18:35:30.0852 4652 NDIS - ok

18:35:30.0867 4652 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys

18:35:30.0898 4652 NdisCap - ok

18:35:30.0898 4652 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys

18:35:30.0930 4652 NdisTapi - ok

18:35:30.0930 4652 Ndisuio (f105ba1e22bf1f2ee8f005d4305e4bec) C:\Windows\system32\DRIVERS\ndisuio.sys

18:35:30.0961 4652 Ndisuio - ok

18:35:30.0976 4652 NdisWan (557dfab9ca1fcb036ac77564c010dad3) C:\Windows\system32\DRIVERS\ndiswan.sys

18:35:31.0008 4652 NdisWan - ok

18:35:31.0008 4652 NDProxy (659b74fb74b86228d6338d643cd3e3cf) C:\Windows\system32\drivers\NDProxy.sys

18:35:31.0039 4652 NDProxy - ok

18:35:31.0039 4652 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys

18:35:31.0070 4652 NetBIOS - ok

18:35:31.0086 4652 NetBT (9162b273a44ab9dce5b44362731d062a) C:\Windows\system32\DRIVERS\netbt.sys

18:35:31.0117 4652 NetBT - ok

18:35:31.0117 4652 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys

18:35:31.0132 4652 nfrd960 - ok

18:35:31.0132 4652 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys

18:35:31.0164 4652 Npfs - ok

18:35:31.0179 4652 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys

18:35:31.0210 4652 nsiproxy - ok

18:35:31.0242 4652 Ntfs (356698a13c4630d5b31c37378d469196) C:\Windows\system32\drivers\Ntfs.sys

18:35:31.0273 4652 Ntfs - ok

18:35:31.0273 4652 NTIDrvr (64ddd0dee976302f4bd93e5efcc2f013) C:\Windows\system32\drivers\NTIDrvr.sys

18:35:31.0288 4652 NTIDrvr - ok

18:35:31.0288 4652 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys

18:35:31.0320 4652 Null - ok

18:35:31.0335 4652 NVHDA (ad37248bd442d41c9a896e53eb8a85ee) C:\Windows\system32\drivers\nvhda64v.sys

18:35:31.0351 4652 NVHDA - ok

18:35:31.0600 4652 nvlddmkm (b34e9bfbd9c61048ef6281c3e7ec210a) C:\Windows\system32\DRIVERS\nvlddmkm.sys

18:35:31.0772 4652 nvlddmkm - ok

18:35:31.0803 4652 nvraid (3e38712941e9bb4ddbee00affe3fed3d) C:\Windows\system32\DRIVERS\nvraid.sys

18:35:31.0803 4652 nvraid - ok

18:35:31.0819 4652 nvstor (477dc4d6deb99be37084c9ac6d013da1) C:\Windows\system32\DRIVERS\nvstor.sys

18:35:31.0834 4652 nvstor - ok

18:35:31.0834 4652 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\DRIVERS\nv_agp.sys

18:35:31.0850 4652 nv_agp - ok

18:35:31.0850 4652 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\DRIVERS\ohci1394.sys

18:35:31.0866 4652 ohci1394 - ok

18:35:31.0881 4652 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys

18:35:31.0881 4652 Parport - ok

18:35:31.0897 4652 partmgr (7daa117143316c4a1537e074a5a9eaf0) C:\Windows\system32\drivers\partmgr.sys

18:35:31.0897 4652 partmgr - ok

18:35:31.0912 4652 pci (f36f6504009f2fb0dfd1b17a116ad74b) C:\Windows\system32\DRIVERS\pci.sys

18:35:31.0912 4652 pci - ok

18:35:31.0928 4652 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\DRIVERS\pciide.sys

18:35:31.0928 4652 pciide - ok

18:35:31.0944 4652 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys

18:35:31.0944 4652 pcmcia - ok

18:35:31.0959 4652 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys

18:35:31.0959 4652 pcw - ok

18:35:31.0975 4652 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys

18:35:32.0006 4652 PEAUTH - ok

18:35:32.0037 4652 PptpMiniport (27cc19e81ba5e3403c48302127bda717) C:\Windows\system32\DRIVERS\raspptp.sys

18:35:32.0068 4652 PptpMiniport - ok

18:35:32.0084 4652 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys

18:35:32.0100 4652 Processor - ok

18:35:32.0100 4652 Psched (ee992183bd8eaefd9973f352e587a299) C:\Windows\system32\DRIVERS\pacer.sys

18:35:32.0131 4652 Psched - ok

18:35:32.0162 4652 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys

18:35:32.0178 4652 ql2300 - ok

18:35:32.0193 4652 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys

18:35:32.0209 4652 ql40xx - ok

18:35:32.0209 4652 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys

18:35:32.0224 4652 QWAVEdrv - ok

18:35:32.0224 4652 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys

18:35:32.0256 4652 RasAcd - ok

18:35:32.0271 4652 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys

18:35:32.0302 4652 RasAgileVpn - ok

18:35:32.0318 4652 Rasl2tp (87a6e852a22991580d6d39adc4790463) C:\Windows\system32\DRIVERS\rasl2tp.sys

18:35:32.0334 4652 Rasl2tp - ok

18:35:32.0349 4652 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys

18:35:32.0380 4652 RasPppoe - ok

18:35:32.0396 4652 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys

18:35:32.0412 4652 RasSstp - ok

18:35:32.0427 4652 rdbss (3bac8142102c15d59a87757c1d41dce5) C:\Windows\system32\DRIVERS\rdbss.sys

18:35:32.0458 4652 rdbss - ok

18:35:32.0474 4652 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys

18:35:32.0474 4652 rdpbus - ok

18:35:32.0490 4652 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys

18:35:32.0521 4652 RDPCDD - ok

18:35:32.0521 4652 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys

18:35:32.0552 4652 RDPENCDD - ok

18:35:32.0568 4652 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys

18:35:32.0599 4652 RDPREFMP - ok

18:35:32.0599 4652 RDPWD (8a3e6bea1c53ea6177fe2b6eba2c80d7) C:\Windows\system32\drivers\RDPWD.sys

18:35:32.0630 4652 RDPWD - ok

18:35:32.0630 4652 rdyboost (634b9a2181d98f15941236886164ec8b) C:\Windows\system32\drivers\rdyboost.sys

18:35:32.0646 4652 rdyboost - ok

18:35:32.0661 4652 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys

18:35:32.0692 4652 rspndr - ok

18:35:32.0708 4652 sbp2port (e3bbb89983daf5622c1d50cf49f28227) C:\Windows\system32\DRIVERS\sbp2port.sys

18:35:32.0708 4652 sbp2port - ok

18:35:32.0724 4652 scfilter (c94da20c7e3ba1dca269bc8460d98387) C:\Windows\system32\DRIVERS\scfilter.sys

18:35:32.0755 4652 scfilter - ok

18:35:32.0755 4652 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys

18:35:32.0786 4652 secdrv - ok

18:35:32.0802 4652 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys

18:35:32.0802 4652 Serenum - ok

18:35:32.0817 4652 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys

18:35:32.0817 4652 Serial - ok

18:35:32.0833 4652 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys

18:35:32.0848 4652 sermouse - ok

18:35:32.0880 4652 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\DRIVERS\sffdisk.sys

18:35:32.0880 4652 sffdisk - ok

18:35:32.0911 4652 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\DRIVERS\sffp_mmc.sys

18:35:32.0911 4652 sffp_mmc - ok

18:35:32.0942 4652 sffp_sd (178298f767fe638c9fedcbdef58bb5e4) C:\Windows\system32\DRIVERS\sffp_sd.sys

18:35:32.0942 4652 sffp_sd - ok

18:35:32.0942 4652 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys

18:35:32.0958 4652 sfloppy - ok

18:35:32.0973 4652 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys

18:35:32.0973 4652 SiSRaid2 - ok

18:35:32.0989 4652 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys

18:35:32.0989 4652 SiSRaid4 - ok

18:35:33.0004 4652 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys

18:35:33.0036 4652 Smb - ok

18:35:33.0036 4652 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys

18:35:33.0051 4652 spldr - ok

18:35:33.0098 4652 srv (2408c0366d96bcdf63e8f1c78e4a29c5) C:\Windows\system32\DRIVERS\srv.sys

18:35:33.0114 4652 srv - ok

18:35:33.0145 4652 srv2 (76548f7b818881b47d8d1ae1be9c11f8) C:\Windows\system32\DRIVERS\srv2.sys

18:35:33.0160 4652 srv2 - ok

18:35:33.0176 4652 srvnet (0af6e19d39c70844c5caa8fb0183c36e) C:\Windows\system32\DRIVERS\srvnet.sys

18:35:33.0192 4652 srvnet - ok

18:35:33.0207 4652 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys

18:35:33.0223 4652 stexstor - ok

18:35:33.0238 4652 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\DRIVERS\swenum.sys

18:35:33.0254 4652 swenum - ok

18:35:33.0332 4652 Tcpip (f18f56efc0bfb9c87ba01c37b27f4da5) C:\Windows\system32\drivers\tcpip.sys

18:35:33.0379 4652 Tcpip - ok

18:35:33.0410 4652 TCPIP6 (f18f56efc0bfb9c87ba01c37b27f4da5) C:\Windows\system32\DRIVERS\tcpip.sys

18:35:33.0457 4652 TCPIP6 - ok

18:35:33.0472 4652 tcpipreg (76d078af6f587b162d50210f761eb9ed) C:\Windows\system32\drivers\tcpipreg.sys

18:35:33.0504 4652 tcpipreg - ok

18:35:33.0504 4652 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys

18:35:33.0535 4652 TDPIPE - ok

18:35:33.0550 4652 TDTCP (e4245bda3190a582d55ed09e137401a9) C:\Windows\system32\drivers\tdtcp.sys

18:35:33.0582 4652 TDTCP - ok

18:35:33.0582 4652 tdx (079125c4b17b01fcaeebce0bcb290c0f) C:\Windows\system32\DRIVERS\tdx.sys

18:35:33.0613 4652 tdx - ok

18:35:33.0613 4652 TermDD (c448651339196c0e869a355171875522) C:\Windows\system32\DRIVERS\termdd.sys

18:35:33.0628 4652 TermDD - ok

18:35:33.0644 4652 tssecsrv (61b96c26131e37b24e93327a0bd1fb95) C:\Windows\system32\DRIVERS\tssecsrv.sys

18:35:33.0660 4652 tssecsrv - ok

18:35:33.0675 4652 tunnel (3836171a2cdf3af8ef10856db9835a70) C:\Windows\system32\DRIVERS\tunnel.sys

18:35:33.0706 4652 tunnel - ok

18:35:33.0706 4652 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys

18:35:33.0722 4652 uagp35 - ok

18:35:33.0722 4652 UBHelper (2e22c1fd397a5a9ffef55e9d1fc96c00) C:\Windows\system32\drivers\UBHelper.sys

18:35:33.0738 4652 UBHelper - ok

18:35:33.0738 4652 udfs (d47baead86c65d4f4069d7ce0a4edceb) C:\Windows\system32\DRIVERS\udfs.sys

18:35:33.0769 4652 udfs - ok

18:35:33.0800 4652 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\DRIVERS\uliagpkx.sys

18:35:33.0800 4652 uliagpkx - ok

18:35:33.0816 4652 umbus (eab6c35e62b1b0db0d1b48b671d3a117) C:\Windows\system32\DRIVERS\umbus.sys

18:35:33.0816 4652 umbus - ok

18:35:33.0831 4652 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys

18:35:33.0831 4652 UmPass - ok

18:35:33.0847 4652 usbccgp (b26afb54a534d634523c4fb66765b026) C:\Windows\system32\DRIVERS\usbccgp.sys

18:35:33.0862 4652 usbccgp - ok

18:35:33.0878 4652 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\DRIVERS\usbcir.sys

18:35:33.0894 4652 usbcir - ok

18:35:33.0894 4652 usbehci (2ea4aff7be7eb4632e3aa8595b0803b5) C:\Windows\system32\DRIVERS\usbehci.sys

18:35:33.0909 4652 usbehci - ok

18:35:33.0909 4652 usbhub (4c9042b8df86c1e8e6240c218b99b39b) C:\Windows\system32\DRIVERS\usbhub.sys

18:35:33.0925 4652 usbhub - ok

18:35:33.0940 4652 usbohci (58e546bbaf87664fc57e0f6081e4f609) C:\Windows\system32\DRIVERS\usbohci.sys

18:35:33.0940 4652 usbohci - ok

18:35:33.0956 4652 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys

18:35:33.0956 4652 usbprint - ok

18:35:33.0972 4652 USBSTOR (080d3820da6c046be82fc8b45a893e83) C:\Windows\system32\DRIVERS\USBSTOR.SYS

18:35:33.0987 4652 USBSTOR - ok

18:35:33.0987 4652 usbuhci (81fb2216d3a60d1284455d511797db3d) C:\Windows\system32\DRIVERS\usbuhci.sys

18:35:34.0003 4652 usbuhci - ok

18:35:34.0018 4652 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\DRIVERS\vdrvroot.sys

18:35:34.0018 4652 vdrvroot - ok

18:35:34.0034 4652 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys

18:35:34.0050 4652 vga - ok

18:35:34.0050 4652 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys

18:35:34.0081 4652 VgaSave - ok

18:35:34.0096 4652 vhdmp (c82e748660f62a242b2dfac1442f22a4) C:\Windows\system32\DRIVERS\vhdmp.sys

18:35:34.0112 4652 vhdmp - ok

18:35:34.0112 4652 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\DRIVERS\viaide.sys

18:35:34.0128 4652 viaide - ok

18:35:34.0128 4652 volmgr (2b1a3dae2b4e70dbba822b7a03fbd4a3) C:\Windows\system32\DRIVERS\volmgr.sys

18:35:34.0143 4652 volmgr - ok

18:35:34.0143 4652 volmgrx (99b0cbb569ca79acaed8c91461d765fb) C:\Windows\system32\drivers\volmgrx.sys

18:35:34.0159 4652 volmgrx - ok

18:35:34.0174 4652 volsnap (58f82eed8ca24b461441f9c3e4f0bf5c) C:\Windows\system32\DRIVERS\volsnap.sys

18:35:34.0174 4652 volsnap - ok

18:35:34.0190 4652 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys

18:35:34.0206 4652 vsmraid - ok

18:35:34.0206 4652 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\System32\drivers\vwifibus.sys

18:35:34.0221 4652 vwifibus - ok

18:35:34.0221 4652 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys

18:35:34.0237 4652 WacomPen - ok

18:35:34.0237 4652 WANARP (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys

18:35:34.0268 4652 WANARP - ok

18:35:34.0268 4652 Wanarpv6 (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys

18:35:34.0299 4652 Wanarpv6 - ok

18:35:34.0330 4652 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys

18:35:34.0330 4652 Wd - ok

18:35:34.0346 4652 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys

18:35:34.0362 4652 Wdf01000 - ok

18:35:34.0377 4652 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys

18:35:34.0408 4652 WfpLwf - ok

18:35:34.0408 4652 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys

18:35:34.0424 4652 WIMMount - ok

18:35:34.0440 4652 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\DRIVERS\wmiacpi.sys

18:35:34.0440 4652 WmiAcpi - ok

18:35:34.0455 4652 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys

18:35:34.0486 4652 ws2ifsl - ok

18:35:34.0502 4652 WudfPf (7cadc74271dd6461c452c271b30bd378) C:\Windows\system32\drivers\WudfPf.sys

18:35:34.0518 4652 WudfPf - ok

18:35:34.0533 4652 WUDFRd (3b197af0fff08aa66b6b2241ca538d64) C:\Windows\system32\DRIVERS\WUDFRd.sys

18:35:34.0564 4652 WUDFRd - ok

18:35:34.0580 4652 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0

18:35:34.0736 4652 \Device\Harddisk0\DR0 - ok

18:35:34.0752 4652 Boot (0x1200) (ce041326564eaaaecb690610e34f229d) \Device\Harddisk0\DR0\Partition0

18:35:34.0752 4652 \Device\Harddisk0\DR0\Partition0 - ok

18:35:34.0783 4652 Boot (0x1200) (6dc6ce6fa04144b7fce4718fc84d4a65) \Device\Harddisk0\DR0\Partition1

18:35:34.0783 4652 \Device\Harddisk0\DR0\Partition1 - ok

18:35:34.0783 4652 ============================================================

18:35:34.0783 4652 Scan finished

18:35:34.0783 4652 ============================================================

18:35:34.0783 1432 Detected object count: 2

18:35:34.0783 1432 Actual detected object count: 2

18:37:14.0748 1432 MREMP50 ( UnsignedFile.Multi.Generic ) - skipped by user

18:37:14.0748 1432 MREMP50 ( UnsignedFile.Multi.Generic ) - User select action: Skip

18:37:14.0748 1432 MRESP50 ( UnsignedFile.Multi.Generic ) - skipped by user

18:37:14.0748 1432 MRESP50 ( UnsignedFile.Multi.Generic ) - User select action: Skip

18:37:22.0251 4064 Deinitialize success

I don't know if that helps or not but thought maybe I should try both options. I did not choose any action for the threats until I heard from you.

[Elise]

No need to do anything about these files.

Lets do one other scan. If that doesn't identify a problem then its time to have a look at your router as it is possible that may be affected as well.

COMBOFIX

---------------

Please download ComboFix from one of these locations:

• 
  

Bleepingcomputer
ForoSpyware

• Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools. (Click on this link to see a list of programs that should be disabled. The list is not all inclusive.)
  
• Double click on Combofix.exe and follow the prompts.
  
• As part of it's process, ComboFix will check to see if the Microsoft Windows Recovery Console is installed. With malware infections being as they are today, it's strongly recommended to have this pre-installed on your machine before doing any malware removal. It will allow you to boot up into a special recovery/repair mode that will allow us to more easily help you should your computer have a problem after an attempted removal of malware.
  
• Follow the prompts to allow ComboFix to download and install the Microsoft Windows Recovery Console, and when prompted, agree to the End-User License Agreement to install the Microsoft Windows Recovery Console.
  

**Please note: If the Microsoft Windows Recovery Console is already installed, or if you are running Vista, ComboFix will continue it's malware removal procedures.

Once the Microsoft Windows Recovery Console is installed using ComboFix, you should see the following message:

Click on Yes, to continue scanning for malware.

When finished, it shall produce a log for you. Please include the C:\Combofix.txt in your next reply.

[mtnester]

I ran Combofix and am including the text file. The (only?) problem I had is that my FreeAgent GoFlex Drive (K:) external drive (USB) was attached and Combofix deleted the .inf and setup files from there so now Drive K: shows empty in My Computer view.

ComboFix 12-02-17.02 - Mom 02/17/2012 13:23:28.2.4 - x64

Microsoft Windows 7 Home Premium 6.1.7600.0.1252.1.1033.18.8119.6805 [GMT -5:00]

Running from: c:\users\Mom\Desktop\ComboFix.exe

AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}

SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}

SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

.

.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))

.

.

c:\windows\system32\wbem\Performance\WmiApRpl_new.ini

K:\Autorun.inf

K:\Setup.exe

.

.

((((((((((((((((((((((((( Files Created from 2012-01-17 to 2012-02-17 )))))))))))))))))))))))))))))))

.

.

.

.

.

(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))

.

2012-01-29 10:10 . 2011-12-03 03:06 279656 ------w- c:\windows\system32\MpSigStub.exe

2011-11-28 18:01 . 2011-12-03 02:54 41184 ----a-w- c:\windows\avastSS.scr

2011-11-28 18:01 . 2011-12-03 02:54 199816 ----a-w- c:\windows\SysWow64\aswBoot.exe

2011-11-28 18:01 . 2011-12-03 02:55 256960 ----a-w- c:\windows\system32\aswBoot.exe

2011-11-28 17:54 . 2011-12-03 02:55 591192 ----a-w- c:\windows\system32\drivers\aswSnx.sys

2011-11-28 17:53 . 2011-12-03 02:55 304472 ----a-w- c:\windows\system32\drivers\aswSP.sys

2011-11-28 17:52 . 2011-12-03 02:55 42328 ----a-w- c:\windows\system32\drivers\aswRdr.sys

2011-11-28 17:52 . 2011-12-03 02:55 58712 ----a-w- c:\windows\system32\drivers\aswTdi.sys

2011-11-28 17:52 . 2011-12-03 02:55 66904 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys

2011-11-28 17:51 . 2011-12-03 02:55 24408 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys

.

.

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))

.

.

*Note* empty entries & legit default entries are not shown

REGEDIT4

.

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"swg"="c:\program files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2009-12-01 39408]

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]

"JMB36X IDE Setup"="c:\windows\RaidTool\xInsIDE.exe" [2007-03-20 36864]

"BackupManagerTray"="c:\program files (x86)\NewTech Infosystems\Gateway MyBackup\BackupManagerTray.exe" [2009-08-12 244480]

"Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2009-02-28 35696]

"NortonOnlineBackupReminder"="c:\program files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe" [2009-07-25 588648]

"Gateway Photo Frame"="c:\program files (x86)\Gateway Photo Frame\ButtonMonitor.exe" [2009-07-20 124416]

"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2011-11-28 3744552]

"Malwarebytes' Anti-Malware"="c:\program files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" [2012-01-13 460872]

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]

"ConsentPromptBehaviorAdmin"= 5 (0x5)

"ConsentPromptBehaviorUser"= 3 (0x3)

"EnableUIADesktopToggle"= 0 (0x0)

.

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]

"mixer4"=wdmaud.drv

.

R2 gupdate;Google Update Service (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-12-03 135664]

R3 gupdatem;Google Update Service (gupdatem);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-12-03 135664]

R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe [x]

S1 aswSnx;aswSnx; [x]

S1 aswSP;aswSP; [x]

S2 aswFsBlk;aswFsBlk; [x]

S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [x]

S2 Greg_Service;GRegService;c:\program files (x86)\Gateway\Registration\GregHSRW.exe [2009-08-28 1150496]

S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-01-13 652360]

S2 McciCMService64;McciCMService64;c:\program files\Common Files\Motive\McciCMService.exe [2010-04-30 517632]

S2 McciServiceHost;McciServiceHost;c:\program files (x86)\Common Files\Motive\McciServiceHost.exe [2011-09-09 315392]

S2 NTI IScheduleSvc;NTI IScheduleSvc;c:\program files (x86)\NewTech Infosystems\Gateway MyBackup\IScheduleSvc.exe [2009-08-12 62208]

S2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2011-05-21 2214504]

S2 UNS;Intel® Management & Security Application User Notification Service;c:\program files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2009-10-01 2314240]

S2 Updater Service;Updater Service;c:\program files\Gateway\Gateway Updater\UpdaterService.exe [2009-07-04 240160]

S2 USBS3S4Detection;USBS3S4Detection;c:\oem\USBDECTION\USBS3S4Detection.exe [2009-12-09 76320]

S3 e1kexpress;Intel® PRO/1000 PCI Express Network Connection Driver K;c:\windows\system32\DRIVERS\e1k62x64.sys [x]

S3 HECIx64;Intel® Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [x]

S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [x]

S3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows\system32\drivers\nvhda64v.sys [x]

.

.

Contents of the 'Scheduled Tasks' folder

.

2012-02-17 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job

- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-12-03 02:47]

.

2012-02-17 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job

- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-12-03 02:47]

.

.

--------- x86-64 -----------

.

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]

@="{472083B0-C522-11CF-8763-00608CC02F24}"

[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]

2011-11-28 18:01 134384 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"IAAnotif"="c:\program files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2009-10-13 186904]

"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2009-10-28 8312352]

"ATT-SST_McciTrayApp"="c:\program files\ATT-SST\McciTrayApp.exe" [2010-07-27 3453440]

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]

"LoadAppInit_DLLs"=0x0

.

------- Supplementary Scan -------

.

uStart Page = https://email03.secureserver.net/search.php?login=1

uLocal Page = c:\windows\system32\blank.htm

mStart Page = hxxp://homepage.gateway.com/rdr.aspx?b=ACGW&l=0409&m=dx4831&r=17361011p306p04d5v165k45n1r322

mLocal Page = c:\windows\SysWOW64\blank.htm

IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000

Trusted Zone: $talisma_url$

TCP: DhcpNameServer = 192.168.0.1 68.94.157.1

.

- - - - ORPHANS REMOVED - - - -

.

Toolbar-Locked - (no file)

Toolbar-Locked - (no file)

AddRemove-Yahoo! Mail - c:\windows\system32\regsvr32

.

.

.

--------------------- LOCKED REGISTRY KEYS ---------------------

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}]

@Denied: (A 2) (Everyone)

@="FlashBroker"

"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil10c.exe,-101"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\Elevation]

"Enabled"=dword:00000001

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\LocalServer32]

@="c:\\Windows\\SysWow64\\Macromed\\Flash\\FlashUtil10c.exe"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\TypeLib]

@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]

@Denied: (A 2) (Everyone)

@="Shockwave Flash Object"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]

@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10c.ocx"

"ThreadingModel"="Apartment"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]

@="0"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]

@="ShockwaveFlash.ShockwaveFlash.10"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]

@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10c.ocx, 1"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]

@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]

@="1.0"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]

@="ShockwaveFlash.ShockwaveFlash"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]

@Denied: (A 2) (Everyone)

@="Macromedia Flash Factory Object"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]

@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10c.ocx"

"ThreadingModel"="Apartment"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]

@="FlashFactory.FlashFactory.1"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]

@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10c.ocx, 1"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]

@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]

@="1.0"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]

@="FlashFactory.FlashFactory"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}]

@Denied: (A 2) (Everyone)

@="IFlashBroker3"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}\ProxyStubClsid32]

@="{00020424-0000-0000-C000-000000000046}"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}\TypeLib]

@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

"Version"="1.0"

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]

@Denied: (Full) (Everyone)

.

------------------------ Other Running Processes ------------------------

.

c:\program files\AVAST Software\Avast\AvastSvc.exe

c:\program files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe

c:\program files (x86)\Common Files\Motive\McciCMService.exe

c:\program files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe

.

**************************************************************************

.

Completion time: 2012-02-17 13:31:03 - machine was rebooted

ComboFix-quarantined-files.txt 2012-02-17 18:31

.

Pre-Run: 939,228,884,992 bytes free

Post-Run: 939,103,186,944 bytes free

.

- - End Of File - - 90CF1D335FDC2E2CCD79976C9A6A2640

Ready for next step.

[Elise]

You can move the files back if you are sure they belong there:

Copy them from here:

c:\qoobox\quarantine\K\Autorun.inf.vir

c:\qoobox\quarantine\K\Setup.exe.vir

Be sure to rename the files and remove the .vir extension.

Let me know if this went okay.

[mtnester]

I am sure they belong somewhere on the K:\ drive since I remember seeing they were going to be deleted from K; however, I am not sure which part of that drive they were deleted from. I moved them back to the basic drive, closed the My Computer folder and reopened it without K:\ being recognized so then I put them into the Seagate folder with the same result; same with the Boot folder. I can open the drive and the files and folders are there, but according to the properties in My Computer the drive has 199 GB free of 199 GB.

I can probably contact Seagate at some time and ask how to solve that particular problem, but that is the Seagate drive and I don't use the Seagate dashboard very often anyway. I'm more concerned about the network problem. I'm afraid to attempt logging in to my financial institutions and cannot pay any bills until I figure out why I cannot connect to a different network than "Home network" (not the name of my network) or set up a network (no router or access point appears) or connect to a network (nothing happens when I click that link).

What else can I try? Thanks.

[mtnester]

P.S. Regarding my laptop, I will soon start a new thread: "My laptop is an expensive doorstop"

What hours are you normally on so that you can answer that thread? I will try posting when you are available, since you said you liked a challenge. Good Luck!

[Elise]

In that case I doubt the files are needed on that drive. Do you remember if the correct drive space was displayed correctly beforehand?

Besides that, how are things running now?

Your version of Adobe Reader is out of date. Older versions have vulnerabilities that malicious sites can use to exploit and infect your system. Please follow these steps to remove older version Adobe components and update:

• Download the latest version of Adobe Reader Version X. and save it to your desktop.
  
• Uncheck the "Free McAfee Security plan Plus" option or any other Toolbar you are offered
  
• Click the download button at the bottom.
  
• If you use Internet Explorer and do not wish to install the ActiveX element, simply click on the click here to download link on the next page.
  
• Remove all older version of Adobe Reader: Go to Add/remove and uninstall all versions of Adobe Reader, Acrobat Reader and Adobe Acrobat.
  If you are unsure of how to use Add or Remove Programs, the please see this tutorial:How To Remove An Installed Program From Your Computer
  
• Then from your desktop double-click on Adobe Reader to install the newest version.
  If using Windows Vista and the installer refuses to launch due to insufficient user permissions, then Run As Administrator.
  
• When the "Adobe Setup - Welcome" window opens, click the Install > button.
  
• If offered to install a Toolbar, just uncheck the box before continuing unless you want it.
  

Your Adobe Reader is now up to date!

ESET ONLINE SCANNER

----------------------------

I'd like us to scan your machine with ESET OnlineScan

1. Hold down Control and click on this link to open ESET OnlineScan in a new window.
   
2. Click the button.
   
3. For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
   1. 
      
   2. Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
      
   3. Double click on the
      icon on your desktop.
      
      
   4. Check "YES, I accept the Terms of Use."
      
   5. Click the Start button.
      
   6. Accept any security warnings from your browser.
      
   7. Under scan settings, check "Scan Archives" and "Remove found threats"
      
   8. Click Advanced settings and select the following:
      • Scan potentially unwanted applications
        
      • Scan for potentially unsafe applications
        
      • Enable Anti-Stealth technology

[*]ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.

[*]When the scan completes, click List Threats

[*]Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.

[*]Click the Back button.

[*]Click the Finish button.

I'll be online more or less for another 12 hours, so if you post a topic for the laptop, you can just copy/paste the link here or send it to me by PM.

[mtnester]

Yes, the correct drive space was listed correctly before the original scan. There was a blue bar filling in the amount of space used on the drive. Now it is empty.

Things are running okay as far as I can tell. It is just the continuing problem of being able to set up a new connection (no wireless router appears for me to choose) or connect to a network (nothing at alll happens when I click that link in Network and Sharing Center) that bothers me, and the fact that I cannot verify that my desktop is actually connected to MY router and not hijacked by someone else.. My network name is not "Home network" and doesn't show my network name, although it appears correctly on my smartphone.

Adobe:

I updated Adobe Reader. Normally I use Foxit Reader for pdf files, but hadn't installed it yet. i do have adobe Flash Player 10 and Adobe AIR if those make any difference.

I ran the ESET scanner again. There were no threats.

Anything else I can do?

BTW, here is the URL for the laptop problem:

http://forums.malwarebytes.org/index.php?showtopic=106323

[mtnester]

P.S. I borrowed another laptop and it shows the correct network name when I search for a network and allows me to connect to it.

[Elise]

I replied to your laptop topic.

As for this computer, please run the following.

Please download Farbar Service Scanner and run it on the computer with the issue.

• Make sure the following options are checked:
  • Internet Services
    
  • Windows Firewall
    
  • System Restore
    
  • Security Center
    
  • Windows Update
    

  [*]Press "Scan".

  [*]It will create a log (FSS.txt) in the same directory the tool is run.

  [*]Please copy and paste the log to your reply.

[mtnester]

Here is the log requested:

Farbar Service Scanner Version: 14-02-2012

Ran by Mom (administrator) on 19-02-2012 at 14:28:15

Running from "C:\Users\Mom\Desktop"

Microsoft Windows 7 Home Premium (X64)

Boot Mode: Normal

****************************************************************

Internet Services:

============

Connection Status:

==============

Localhost is accessible.

LAN connected.

Google IP is accessible.

Yahoo IP is accessible.

Windows Firewall:

=============

Firewall Disabled Policy:

==================

System Restore:

============

System Restore Disabled Policy:

========================

Security Center:

============

Windows Update:

============

File Check:

========

C:\Windows\System32\nsisvc.dll => MD5 is legit

C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit

C:\Windows\System32\dhcpcore.dll => MD5 is legit

C:\Windows\System32\drivers\afd.sys

[2012-02-15 22:38] - [2011-12-27 22:59] - 0499200 ____A (Microsoft Corporation) DB9D6C6B2CD95A9CA414D045B627422E

C:\Windows\System32\drivers\tdx.sys => MD5 is legit

C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit

C:\Windows\System32\dnsrslvr.dll => MD5 is legit

C:\Windows\System32\mpssvc.dll

[2009-07-13 19:09] - [2009-07-13 20:41] - 0824832 ____A (Microsoft Corporation) AECAB449567D1846DAD63ECE49E893E3

C:\Windows\System32\bfe.dll => MD5 is legit

C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit

C:\Windows\System32\SDRSVC.dll

[2009-07-13 18:36] - [2009-07-13 20:41] - 0170496 ____A (Microsoft Corporation) 765A27C3279CE11D14CB9E4F5869FCA5

C:\Windows\System32\vssvc.exe => MD5 is legit

C:\Windows\System32\wscsvc.dll => MD5 is legit

C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit

C:\Windows\System32\wuaueng.dll

[2009-07-13 19:36] - [2009-07-13 20:41] - 2418176 ____A (Microsoft Corporation) 38340204A2D0228F1E87740FC5E554A7

C:\Windows\System32\qmgr.dll => MD5 is legit

C:\Windows\System32\es.dll => MD5 is legit

C:\Windows\System32\cryptsvc.dll => MD5 is legit

C:\Windows\System32\svchost.exe => MD5 is legit

C:\Windows\System32\rpcss.dll => MD5 is legit

**** End of log ****

[Elise]

Have you tried to reinstall the wireless card drivers? They should be available on the drivers CD that came with your computer.

Right click the removable drive and select Properties. Select the Tools tab and click the option to error check the volume and check both options. See if the disk check resolves the problem.

[mtnester]

I am currently at a friend's house using his wi-fi to contact you. Here is what has happened.

No CD came with my computer. There may be a recovery partition, but currently I am unable to access it. I am sorry I don't know what removable drive you are referring to do a disk check.

In attempting to try some other fixes I have gotten myself in a worse mess than before. Nothing showed in device manager other than the Adapter. I tried updating the driver but the response was that it was already up to date. I went to the website for my router, thinking I would attempt a "new" connection (using the old login information) and it performed a "repair," which was not successful and resulted in my not being able to access the internet at all. I was linked to the home network, but not the internet.

Next I attempted a system restore going way back to December (the last time I used the desktop before mid-February) thinking that perhaps that would reset things as of before the network issue; but that was unsuccessful. Not thinking about possible consequences I chose a restore point of Feb 15. Dumb thing to do. I made several attempts to log in but each time I entered my password all that I got next was a black screen. As best I can remember what happened next was a couple instances of a BSOD. I lost the screen to quickly to write down stop codes, but I did read something like BAD_CALLER_POOL.

Since I cannot access the user guide to discover how to boot into safe mode (F2 gets me the BIOS, as does the Delete Key; and F12 just gives me boot options for which drive to boot with first). Of course booting into Safe Mode with Networking wouldn't work anyway since I have no internet access.

In short, it looks like I have really screwed things up now. I will try to get some support from Actiontec (my router) to see if they will walk me through reconnecting to the internet. I think I'm past the warranty period so I'm not sure how that will go.

In any case, I will try to get back to this thread in the next couple of days to take my lecture like an adult and humbly try to stick to your directions in future without trying any (not) bright ideas of my own.

[Elise]

Sorry for the confusion, this is the drive I was referring to:

Yes, the correct drive space was listed correctly before the original scan. There was a blue bar filling in the amount of space used on the drive. Now it is empty.

The router can simply be reset by pressing the reset button for about ten seconds with the router turned off.

As for the computer, does tapping F8 on startup bring up the advanced boot options menu?

If so, try Last Known Good Configuration and the safe mode options. If none works, try Disable Automatic Restart on System Failure and let me know what the error code is.

[mtnester]

I found a McDonald's with wi-fi so of course it isn't secured. I will try the steps above when I return home, I think I tried F8 before but maybe not; I will try again.

I did record the following things that happened today. When I log in to my desktop I get the Welcome message then the screen goes black. After waiting awhile I get a BSOD.

I tried taking a photo of one or two of them (I had tried different things like attempting to access the minidump file; that just gave me another BSOD with a different message. I don't know if the screens would help, but I can try attaching the photos.tt

I will try resetting the router when I return home.

[Elise]

Can you please reboot in Safe Mode with Networking and tell me if the same BSOD occurs there?

[mtnester]

The router can simply be reset by pressing the reset button for about ten seconds with the router turned off.

As for the computer, does tapping F8 on startup bring up the advanced boot options menu?

If so, try Last Known Good Configuration and the safe mode options. If none works, try Known Good Configurationand let me know what the error code is.

It seems I can only get to Safe Mode if the BSOD occurs. Here is what has happened the last few days. Using F8 does nothing on my Gateway desktop. I tried finding "Disable Automatic Restart on System Failure" and "Last Known Good Configuration" but I don't know where they are. I didn't see an advanced boot options menu anywhere either (like in BIOS or Control Panel) but perhaps I just don't know where to look. However, in trying to find those two items somehow a System Repair dialogue box appeared. I have no idea how I accomplished that but it seems to have done the trick as far as eliminating the black screen followed by a BSOD when I logged in. Now I don't seem to have any trouble getting into my desktop.

I had some trouble with the router (thank you for the info on resetting). Of course things never go as smoothly as the steps would indicate and I kept getting timed out or kicked back to screens I had already finished, but at last I got there. So, I am finally back on line. Hurray!

Of course that brings me back to my original issue of my desktop being connected to "Home network." Would it be because I am connected via the Ethernet cord rather than wirelessly? The Network Connections screen shows an icon for Local Area Connection and a icon with my network name and WAN Miniport (PPPOE), which is my router. My network name has the green default checkmark next to it and says Disconnected. When I attempt to connect to that icon, I get an Error 651. Again, that may be a moot point if I'm connected by Ethernet cord. I got worried because my laptop (connected wirelessly of course) does show the proper name in the Network and Sharing Center.

Input?

Thanks for your input.

[Elise]

The simplest way to check this is to unplug the ethernet cable and see if you are still connected to the internet.

[screen317]

Are you still with us? This topic will be closed in a few days if we do not hear back from you.

[Maurice Naggar]

Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!