Jump to content

Stuck with SearchNu and Partner37


stuck101
 Share

Recommended Posts

Hey guys,

I have tried everything possible to get rid of a redirect and error 105 problem which I believe is being caused by SearchNu and Partner37 malware.

I had used malwarebytes, ESET online scanner, Spybot-Search and Destroy and they had all found something and removed it, but the error 105 and redirect still happens.

After rescanning even on safe mode none of the scanners show signs of any malware, however the error 105 still appears with searchnu in the URL address bar.

Also, the really odd thing is, the internet on my other machines have also been going slow, is it possible this virus or malware could have infected my wifi router? Not sure if this is relevant but the other devices on the same network are a macbook, iphone, ipad and samsung galaxy.

I'm fairly new at this so any help in removing this would be highly appreciated!!

Thanks so much!

Attach.txt

DDS.txt

Link to post
Share on other sites

Hello stuck101 and :welcome:! My name is Maniac and I will be glad to help you solve your malware problem.

Please note:

  • If you are a paying customer, you have the privilege to contact the help desk at Consumer Support. If you choose this option to get help, please let me know.
  • I recommend you to keep the instructions I will be giving you so that they are available to you at any time. You can save them in a text file or print them.
  • Make sure you read all of the instructions and fixes thoroughly before continuing with them.
  • Follow my instructions strictly and don’t hesitate to stop and ask me if you have any questions.
  • Post your log files, don't attach them. Every log file should be copy/pasted in your next reply.

Step 1

Please uninstall: µTorrent

Step 2

  • Launch Malwarebytes' Anti-Malware
  • Go to Update tab and select Check for Updates. If an update is found, it will download and install the latest version.
  • Go to Scanner tab and select Perform Quick Scan, then click Scan.
  • The scan may take some time to finish,so please be patient.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Make sure that everything is checked, and click Remove Selected.
  • When disinfection is completed, a log will open in Notepad and you may be prompted to Restart. (See Extra Note)
  • The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
  • Copy&Paste the entire report in your next reply.

Extra Note: If MBAM encounters a file that is difficult to remove, you will be presented with 1 of 2 prompts, click OK to either and let MBAM proceed with the disinfection process, if asked to restart the computer,please do so immediately.

Step 2

Download aswMBR.exe to your desktop.

Double click the aswMBR.exe to run it

Click the "Scan" button to start scan

aswMBR2-1.gif

On completion of the scan click save log, save it to your desktop and post in your next reply

aswMBR2.png

Step 3

Please download AdwCleaner from here and save it on your Desktop.

  1. Right-click on adwcleaner.exe and select Run As Administrator to launch the application.
  2. Now click on the Search tab.
  3. Please post the contents of the log-file created in your next post.

Note: The log can also be located at C:\ >> AdwCleaner[XX].txt >> XX <-- Denotes the number of times the application has been ran, so in this should be something like R1.

In your next reply, post the following log files:

  • Malwarebytes' Anti-Malware log
  • aswMBR log
  • AdwCleaner log

Link to post
Share on other sites

Hey guys,

Just thought I would also post the TDSSkiller log too, incase it helps..


18:16:41.0502 3364 TDSS rootkit removing tool 2.7.9.0 Feb 1 2012 09:28:49
18:16:42.0557 3364 ============================================================
18:16:42.0557 3364 Current date / time: 2012/09/30 18:16:42.0557
18:16:42.0557 3364 SystemInfo:
18:16:42.0558 3364
18:16:42.0558 3364 OS Version: 6.1.7600 ServicePack: 0.0
18:16:42.0558 3364 Product type: Workstation
18:16:42.0558 3364 ComputerName: GGAUS-HP
18:16:42.0558 3364 UserName: r99
18:16:42.0558 3364 Windows directory: C:\Windows
18:16:42.0558 3364 System windows directory: C:\Windows
18:16:42.0558 3364 Running under WOW64
18:16:42.0558 3364 Processor architecture: Intel x64
18:16:42.0558 3364 Number of processors: 2
18:16:42.0558 3364 Page size: 0x1000
18:16:42.0558 3364 Boot type: Normal boot
18:16:42.0558 3364 ============================================================
18:16:43.0028 3364 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:16:43.0035 3364 \Device\Harddisk0\DR0:
18:16:43.0035 3364 MBR used
18:16:43.0035 3364 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x63800
18:16:43.0035 3364 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x64000, BlocksNum 0x2328F800
18:16:43.0035 3364 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x232F3800, BlocksNum 0x2107000
18:16:43.0035 3364 \Device\Harddisk0\DR0\Partition3: MBR, Type 0xC, StartLBA 0x253FA800, BlocksNum 0x33AB0
18:16:43.0113 3364 Initialize success
18:16:43.0113 3364 ============================================================
18:17:17.0258 4992 ============================================================
18:17:17.0258 4992 Scan started
18:17:17.0258 4992 Mode: Manual; SigCheck; TDLFS;
18:17:17.0258 4992 ============================================================
18:17:17.0579 4992 1394ohci (1b00662092f9f9568b995902f0cc40d5) C:\Windows\system32\DRIVERS\1394ohci.sys
18:17:17.0735 4992 1394ohci - ok
18:17:17.0870 4992 ACPI (6f11e88748cdefd2f76aa215f97ddfe5) C:\Windows\system32\DRIVERS\ACPI.sys
18:17:17.0916 4992 ACPI - ok
18:17:18.0019 4992 AcpiPmi (63b05a0420ce4bf0e4af6dcc7cada254) C:\Windows\system32\DRIVERS\acpipmi.sys
18:17:18.0110 4992 AcpiPmi - ok
18:17:18.0282 4992 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
18:17:18.0333 4992 adp94xx - ok
18:17:18.0472 4992 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
18:17:18.0515 4992 adpahci - ok
18:17:18.0649 4992 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
18:17:18.0689 4992 adpu320 - ok
18:17:18.0849 4992 AFD (db9d6c6b2cd95a9ca414d045b627422e) C:\Windows\system32\drivers\afd.sys
18:17:18.0923 4992 AFD - ok
18:17:19.0043 4992 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\DRIVERS\agp440.sys
18:17:19.0077 4992 agp440 - ok
18:17:19.0222 4992 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\DRIVERS\aliide.sys
18:17:19.0254 4992 aliide - ok
18:17:19.0381 4992 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\DRIVERS\amdide.sys
18:17:19.0411 4992 amdide - ok
18:17:19.0547 4992 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
18:17:19.0626 4992 AmdK8 - ok
18:17:19.0751 4992 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
18:17:19.0824 4992 AmdPPM - ok
18:17:19.0968 4992 amdsata (ab3166c09438a161fbde13099a72e0af) C:\Windows\system32\DRIVERS\amdsata.sys
18:17:20.0006 4992 amdsata - ok
18:17:20.0162 4992 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
18:17:20.0201 4992 amdsbs - ok
18:17:20.0325 4992 amdxata (5118dcd2065d8c8d752ad5ec0b2d6aa6) C:\Windows\system32\DRIVERS\amdxata.sys
18:17:20.0357 4992 amdxata - ok
18:17:20.0481 4992 AppID (42fd751b27fa0e9c69bb39f39e409594) C:\Windows\system32\drivers\appid.sys
18:17:20.0571 4992 AppID - ok
18:17:20.0741 4992 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
18:17:20.0776 4992 arc - ok
18:17:20.0852 4992 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
18:17:20.0887 4992 arcsas - ok
18:17:21.0044 4992 aswFsBlk (55142b4f7a7e4c9c151c6000a6bf7809) C:\Windows\system32\drivers\aswFsBlk.sys
18:17:21.0089 4992 aswFsBlk - ok
18:17:21.0221 4992 aswMonFlt (aa9fde3d630160b47dab21bf8250111c) C:\Windows\system32\drivers\aswMonFlt.sys
18:17:21.0249 4992 aswMonFlt - ok
18:17:21.0379 4992 aswRdr (2a6675c24df5159a9506cd13ece5abe9) C:\Windows\System32\Drivers\aswrdr2.sys
18:17:21.0407 4992 aswRdr - ok
18:17:21.0533 4992 aswSnx (4e38475bdb51a867ccba7d5df7fdfc0c) C:\Windows\system32\drivers\aswSnx.sys
18:17:21.0588 4992 aswSnx - ok
18:17:21.0708 4992 aswSP (9a49d80d65451af22913aef772cc3da9) C:\Windows\system32\drivers\aswSP.sys
18:17:21.0749 4992 aswSP - ok
18:17:21.0780 4992 aswTdi (c3ec420451ac5300a22190ae38418fba) C:\Windows\system32\drivers\aswTdi.sys
18:17:21.0797 4992 aswTdi - ok
18:17:21.0846 4992 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
18:17:21.0959 4992 AsyncMac - ok
18:17:22.0084 4992 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\DRIVERS\atapi.sys
18:17:22.0115 4992 atapi - ok
18:17:22.0307 4992 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
18:17:22.0386 4992 b06bdrv - ok
18:17:22.0521 4992 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
18:17:22.0604 4992 b57nd60a - ok
18:17:22.0745 4992 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
18:17:22.0859 4992 Beep - ok
18:17:23.0000 4992 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
18:17:23.0052 4992 blbdrive - ok
18:17:23.0199 4992 bowser (19d20159708e152267e53b66677a4995) C:\Windows\system32\DRIVERS\bowser.sys
18:17:23.0257 4992 bowser - ok
18:17:23.0391 4992 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
18:17:23.0462 4992 BrFiltLo - ok
18:17:23.0593 4992 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
18:17:23.0635 4992 BrFiltUp - ok
18:17:23.0704 4992 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
18:17:23.0770 4992 Brserid - ok
18:17:23.0903 4992 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
18:17:23.0969 4992 BrSerWdm - ok
18:17:24.0104 4992 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
18:17:24.0175 4992 BrUsbMdm - ok
18:17:24.0297 4992 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
18:17:24.0342 4992 BrUsbSer - ok
18:17:24.0488 4992 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
18:17:24.0553 4992 BTHMODEM - ok
18:17:24.0693 4992 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
18:17:24.0825 4992 cdfs - ok
18:17:24.0971 4992 cdrom (83d2d75e1efb81b3450c18131443f7db) C:\Windows\system32\DRIVERS\cdrom.sys
18:17:25.0027 4992 cdrom - ok
18:17:25.0181 4992 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
18:17:25.0246 4992 circlass - ok
18:17:25.0352 4992 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
18:17:25.0400 4992 CLFS - ok
18:17:25.0543 4992 clwvd (50f92c943f18b070f166d019dfab3d9a) C:\Windows\system32\DRIVERS\clwvd.sys
18:17:25.0570 4992 clwvd - ok
18:17:25.0704 4992 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
18:17:25.0759 4992 CmBatt - ok
18:17:25.0900 4992 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\DRIVERS\cmdide.sys
18:17:25.0931 4992 cmdide - ok
18:17:26.0024 4992 CNG (ca7720b73446fddec5c69519c1174c98) C:\Windows\system32\Drivers\cng.sys
18:17:26.0081 4992 CNG - ok
18:17:26.0200 4992 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
18:17:26.0232 4992 Compbatt - ok
18:17:26.0378 4992 CompositeBus (f26b3a86f6fa87ca360b879581ab4123) C:\Windows\system32\DRIVERS\CompositeBus.sys
18:17:26.0439 4992 CompositeBus - ok
18:17:26.0581 4992 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
18:17:26.0613 4992 crcdisk - ok
18:17:26.0805 4992 DfsC (9c253ce7311ca60fc11c774692a13208) C:\Windows\system32\Drivers\dfsc.sys
18:17:26.0861 4992 DfsC - ok
18:17:26.0993 4992 dg_ssudbus (113212d25d0c9bb8901a9833774da97f) C:\Windows\system32\DRIVERS\ssudbus.sys
18:17:27.0022 4992 dg_ssudbus - ok
18:17:27.0122 4992 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
18:17:27.0234 4992 discache - ok
18:17:27.0372 4992 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
18:17:27.0405 4992 Disk - ok
18:17:27.0563 4992 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
18:17:27.0614 4992 drmkaud - ok
18:17:27.0745 4992 DXGKrnl (1633b9abf52784a1331476397a48cbef) C:\Windows\System32\drivers\dxgkrnl.sys
18:17:27.0800 4992 DXGKrnl - ok
18:17:27.0975 4992 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
18:17:28.0138 4992 ebdrv - ok
18:17:28.0316 4992 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
18:17:28.0361 4992 elxstor - ok
18:17:28.0431 4992 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\DRIVERS\errdev.sys
18:17:28.0509 4992 ErrDev - ok
18:17:28.0705 4992 ewusbnet (477bc304201197f4057090bd60af1739) C:\Windows\system32\DRIVERS\ewusbnet.sys
18:17:28.0759 4992 ewusbnet - ok
18:17:28.0911 4992 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
18:17:29.0007 4992 exfat - ok
18:17:29.0154 4992 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
18:17:29.0271 4992 fastfat - ok
18:17:29.0453 4992 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
18:17:29.0526 4992 fdc - ok
18:17:29.0704 4992 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
18:17:29.0736 4992 FileInfo - ok
18:17:29.0798 4992 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
18:17:29.0901 4992 Filetrace - ok
18:17:30.0046 4992 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
18:17:30.0091 4992 flpydisk - ok
18:17:30.0252 4992 FltMgr (f7866af72abbaf84b1fa5aa195378c59) C:\Windows\system32\drivers\fltmgr.sys
18:17:30.0295 4992 FltMgr - ok
18:17:30.0441 4992 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
18:17:30.0474 4992 FsDepends - ok
18:17:30.0635 4992 Fs_Rec (d3e3f93d67821a2db2b3d9fac2dc2064) C:\Windows\system32\drivers\Fs_Rec.sys
18:17:30.0666 4992 Fs_Rec - ok
18:17:30.0841 4992 fvevol (ae87ba80d0ec3b57126ed2cdc15b24ed) C:\Windows\system32\DRIVERS\fvevol.sys
18:17:30.0886 4992 fvevol - ok
18:17:31.0040 4992 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
18:17:31.0074 4992 gagp30kx - ok
18:17:31.0234 4992 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
18:17:31.0258 4992 GEARAspiWDM - ok
18:17:31.0442 4992 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
18:17:31.0494 4992 hcw85cir - ok
18:17:31.0660 4992 HdAudAddService (6410f6f415b2a5a9037224c41da8bf12) C:\Windows\system32\drivers\HdAudio.sys
18:17:31.0724 4992 HdAudAddService - ok
18:17:31.0864 4992 HDAudBus (0a49913402747a0b67de940fb42cbdbb) C:\Windows\system32\DRIVERS\HDAudBus.sys
18:17:31.0925 4992 HDAudBus - ok
18:17:32.0069 4992 HECIx64 (b6ac71aaa2b10848f57fc49d55a651af) C:\Windows\system32\DRIVERS\HECIx64.sys
18:17:32.0095 4992 HECIx64 - ok
18:17:32.0241 4992 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
18:17:32.0277 4992 HidBatt - ok
18:17:32.0438 4992 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
18:17:32.0504 4992 HidBth - ok
18:17:32.0661 4992 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
18:17:32.0720 4992 HidIr - ok
18:17:32.0874 4992 HidUsb (b3bf6b5b50006def50b66306d99fcf6f) C:\Windows\system32\DRIVERS\hidusb.sys
18:17:32.0930 4992 HidUsb - ok
18:17:33.0165 4992 HpSAMD (0886d440058f203eba0e1825e4355914) C:\Windows\system32\DRIVERS\HpSAMD.sys
18:17:33.0200 4992 HpSAMD - ok
18:17:33.0383 4992 HTTP (cee049cac4efa7f4e1e4ad014414a5d4) C:\Windows\system32\drivers\HTTP.sys
18:17:33.0508 4992 HTTP - ok
18:17:33.0691 4992 hwdatacard (8f9b0fc4ec3a8194bd4cbc5ed3e7abeb) C:\Windows\system32\DRIVERS\ewusbmdm.sys
18:17:33.0742 4992 hwdatacard - ok
18:17:33.0918 4992 hwpolicy (f17766a19145f111856378df337a5d79) C:\Windows\system32\drivers\hwpolicy.sys
18:17:33.0948 4992 hwpolicy - ok
18:17:34.0156 4992 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys
18:17:34.0193 4992 i8042prt - ok
18:17:34.0361 4992 iaStor (1384872112e8e7fd5786eceb8bddf4c9) C:\Windows\system32\DRIVERS\iaStor.sys
18:17:34.0405 4992 iaStor - ok
18:17:34.0583 4992 iaStorV (513dc087cfed7d2bb82f005385d3531f) C:\Windows\system32\DRIVERS\iaStorV.sys
18:17:34.0627 4992 iaStorV - ok
18:17:35.0008 4992 igfx (898ab5bfed7040d7ab07af01885eb944) C:\Windows\system32\DRIVERS\igdkmd64.sys
18:17:35.0331 4992 igfx - ok
18:17:35.0479 4992 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
18:17:35.0512 4992 iirsp - ok
18:17:35.0699 4992 Impcd (4b6363cd4610bb848531bb260b15dfcc) C:\Windows\system32\DRIVERS\Impcd.sys
18:17:35.0735 4992 Impcd - ok
18:17:35.0902 4992 IntcAzAudAddService (d311e2dd59a34079d89c249b2a4d9fdb) C:\Windows\system32\drivers\RTKVHD64.sys
18:17:35.0970 4992 IntcAzAudAddService - ok
18:17:36.0127 4992 IntcDAud (58cf58dee26c909bd6f977b61d246295) C:\Windows\system32\DRIVERS\IntcDAud.sys
18:17:36.0181 4992 IntcDAud - ok
18:17:36.0334 4992 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\DRIVERS\intelide.sys
18:17:36.0365 4992 intelide - ok
18:17:36.0486 4992 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
18:17:36.0540 4992 intelppm - ok
18:17:36.0664 4992 IpFilterDriver (722dd294df62483cecaae6e094b4d695) C:\Windows\system32\DRIVERS\ipfltdrv.sys
18:17:36.0782 4992 IpFilterDriver - ok
18:17:36.0916 4992 IPMIDRV (e2b4a4494db7cb9b89b55ca268c337c5) C:\Windows\system32\DRIVERS\IPMIDrv.sys
18:17:36.0966 4992 IPMIDRV - ok
18:17:37.0103 4992 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
18:17:37.0198 4992 IPNAT - ok
18:17:37.0318 4992 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
18:17:37.0364 4992 IRENUM - ok
18:17:37.0493 4992 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\DRIVERS\isapnp.sys
18:17:37.0525 4992 isapnp - ok
18:17:37.0637 4992 iScsiPrt (fa4d2557de56d45b0a346f93564be6e1) C:\Windows\system32\DRIVERS\msiscsi.sys
18:17:37.0678 4992 iScsiPrt - ok
18:17:37.0819 4992 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
18:17:37.0851 4992 kbdclass - ok
18:17:37.0982 4992 kbdhid (6def98f8541e1b5dceb2c822a11f7323) C:\Windows\system32\DRIVERS\kbdhid.sys
18:17:38.0035 4992 kbdhid - ok
18:17:38.0161 4992 KSecDD (4f4b5fde429416877de7143044582eb5) C:\Windows\system32\Drivers\ksecdd.sys
18:17:38.0197 4992 KSecDD - ok
18:17:38.0292 4992 KSecPkg (6f40465a44ecdc1731befafec5bdd03c) C:\Windows\system32\Drivers\ksecpkg.sys
18:17:38.0329 4992 KSecPkg - ok
18:17:38.0423 4992 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
18:17:38.0519 4992 ksthunk - ok
18:17:38.0661 4992 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
18:17:38.0758 4992 lltdio - ok
18:17:38.0914 4992 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
18:17:38.0950 4992 LSI_FC - ok
18:17:39.0085 4992 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
18:17:39.0120 4992 LSI_SAS - ok
18:17:39.0250 4992 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
18:17:39.0284 4992 LSI_SAS2 - ok
18:17:39.0407 4992 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
18:17:39.0443 4992 LSI_SCSI - ok
18:17:39.0556 4992 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
18:17:39.0655 4992 luafv - ok
18:17:39.0814 4992 mcdbus (79d51e7f5926e8ce1b3ebecebae28cff) C:\Windows\system32\DRIVERS\mcdbus.sys
18:17:39.0856 4992 mcdbus - ok
18:17:39.0971 4992 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
18:17:40.0003 4992 megasas - ok
18:17:40.0119 4992 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
18:17:40.0164 4992 MegaSR - ok
18:17:40.0299 4992 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
18:17:40.0398 4992 Modem - ok
18:17:40.0510 4992 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
18:17:40.0565 4992 monitor - ok
18:17:40.0736 4992 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
18:17:40.0768 4992 mouclass - ok
18:17:40.0942 4992 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
18:17:41.0000 4992 mouhid - ok
18:17:41.0161 4992 mountmgr (791af66c4d0e7c90a3646066386fb571) C:\Windows\system32\drivers\mountmgr.sys
18:17:41.0195 4992 mountmgr - ok
18:17:41.0348 4992 mpio (609d1d87649ecc19796f4d76d4c15cea) C:\Windows\system32\DRIVERS\mpio.sys
18:17:41.0387 4992 mpio - ok
18:17:41.0503 4992 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
18:17:41.0625 4992 mpsdrv - ok
18:17:41.0724 4992 MRxDAV (30524261bb51d96d6fcbac20c810183c) C:\Windows\system32\drivers\mrxdav.sys
18:17:41.0783 4992 MRxDAV - ok
18:17:41.0890 4992 mrxsmb (040d62a9d8ad28922632137acdd984f2) C:\Windows\system32\DRIVERS\mrxsmb.sys
18:17:41.0945 4992 mrxsmb - ok
18:17:42.0063 4992 mrxsmb10 (f0067552f8f9b33d7c59403ab808a3cb) C:\Windows\system32\DRIVERS\mrxsmb10.sys
18:17:42.0126 4992 mrxsmb10 - ok
18:17:42.0222 4992 mrxsmb20 (3c142d31de9f2f193218a53fe2632051) C:\Windows\system32\DRIVERS\mrxsmb20.sys
18:17:42.0290 4992 mrxsmb20 - ok
18:17:42.0397 4992 msahci (d1318d7b87b71003a5c6c7c31ec80288) C:\Windows\system32\DRIVERS\msahci.sys
18:17:42.0429 4992 msahci - ok
18:17:42.0550 4992 msdsm (8d27b597229aed79430fb9db3bcbfbd0) C:\Windows\system32\DRIVERS\msdsm.sys
18:17:42.0587 4992 msdsm - ok
18:17:42.0712 4992 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
18:17:42.0785 4992 Msfs - ok
18:17:42.0924 4992 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
18:17:43.0072 4992 mshidkmdf - ok
18:17:43.0233 4992 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\DRIVERS\msisadrv.sys
18:17:43.0264 4992 msisadrv - ok
18:17:43.0466 4992 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
18:17:43.0558 4992 MSKSSRV - ok
18:17:43.0719 4992 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
18:17:43.0820 4992 MSPCLOCK - ok
18:17:44.0012 4992 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
18:17:44.0103 4992 MSPQM - ok
18:17:44.0249 4992 MsRPC (89cb141aa8616d8c6a4610fa26c60964) C:\Windows\system32\drivers\MsRPC.sys
18:17:44.0296 4992 MsRPC - ok
18:17:44.0448 4992 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\DRIVERS\mssmbios.sys
18:17:44.0480 4992 mssmbios - ok
18:17:44.0663 4992 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
18:17:44.0755 4992 MSTEE - ok
18:17:44.0921 4992 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
18:17:44.0971 4992 MTConfig - ok
18:17:45.0134 4992 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
18:17:45.0169 4992 Mup - ok
18:17:45.0362 4992 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
18:17:45.0444 4992 NativeWifiP - ok
18:17:45.0647 4992 NDIS (cad515dbd07d082bb317d9928ce8962c) C:\Windows\system32\drivers\ndis.sys
18:17:45.0732 4992 NDIS - ok
18:17:45.0903 4992 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
18:17:45.0985 4992 NdisCap - ok
18:17:46.0156 4992 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
18:17:46.0243 4992 NdisTapi - ok
18:17:46.0408 4992 Ndisuio (f105ba1e22bf1f2ee8f005d4305e4bec) C:\Windows\system32\DRIVERS\ndisuio.sys
18:17:46.0503 4992 Ndisuio - ok
18:17:46.0657 4992 NdisWan (557dfab9ca1fcb036ac77564c010dad3) C:\Windows\system32\DRIVERS\ndiswan.sys
18:17:46.0740 4992 NdisWan - ok
18:17:46.0889 4992 NDProxy (659b74fb74b86228d6338d643cd3e3cf) C:\Windows\system32\drivers\NDProxy.sys
18:17:46.0981 4992 NDProxy - ok
18:17:47.0166 4992 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
18:17:47.0275 4992 NetBIOS - ok
18:17:47.0444 4992 NetBT (9162b273a44ab9dce5b44362731d062a) C:\Windows\system32\DRIVERS\netbt.sys
18:17:47.0550 4992 NetBT - ok
18:17:47.0775 4992 netr28x (24cf1304d899124336f67f88f3c15e21) C:\Windows\system32\DRIVERS\netr28x.sys
18:17:47.0830 4992 netr28x - ok
18:17:48.0128 4992 netw5v64 (64428dfdaf6e88366cb51f45a79c5f69) C:\Windows\system32\DRIVERS\netw5v64.sys
18:17:48.0328 4992 netw5v64 - ok
18:17:48.0511 4992 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
18:17:48.0544 4992 nfrd960 - ok
18:17:48.0755 4992 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
18:17:48.0847 4992 Npfs - ok
18:17:48.0992 4992 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
18:17:49.0080 4992 nsiproxy - ok
18:17:49.0273 4992 Ntfs (378e0e0dfea67d98ae6ea53adbbd76bc) C:\Windows\system32\drivers\Ntfs.sys
18:17:49.0364 4992 Ntfs - ok
18:17:49.0548 4992 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
18:17:49.0656 4992 Null - ok
18:17:49.0827 4992 nvraid (deab10231cbdb0881fc25428ebe11506) C:\Windows\system32\DRIVERS\nvraid.sys
18:17:49.0865 4992 nvraid - ok
18:17:50.0018 4992 nvstor (0af7b8136794e23e87be138992880e64) C:\Windows\system32\DRIVERS\nvstor.sys
18:17:50.0057 4992 nvstor - ok
18:17:50.0328 4992 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\DRIVERS\nv_agp.sys
18:17:50.0368 4992 nv_agp - ok
18:17:50.0680 4992 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\DRIVERS\ohci1394.sys
18:17:50.0723 4992 ohci1394 - ok
18:17:51.0013 4992 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
18:17:51.0053 4992 Parport - ok
18:17:51.0275 4992 partmgr (90061b1acfe8ccaa5345750ffe08d8b8) C:\Windows\system32\drivers\partmgr.sys
18:17:51.0297 4992 partmgr - ok
18:17:51.0436 4992 pci (f36f6504009f2fb0dfd1b17a116ad74b) C:\Windows\system32\DRIVERS\pci.sys
18:17:51.0455 4992 pci - ok
18:17:51.0584 4992 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\DRIVERS\pciide.sys
18:17:51.0599 4992 pciide - ok
18:17:51.0740 4992 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
18:17:51.0761 4992 pcmcia - ok
18:17:51.0910 4992 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
18:17:51.0925 4992 pcw - ok
18:17:52.0085 4992 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
18:17:52.0165 4992 PEAUTH - ok
18:17:52.0358 4992 PptpMiniport (27cc19e81ba5e3403c48302127bda717) C:\Windows\system32\DRIVERS\raspptp.sys
18:17:52.0443 4992 PptpMiniport - ok
18:17:52.0586 4992 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
18:17:52.0637 4992 Processor - ok
18:17:52.0790 4992 Psched (ee992183bd8eaefd9973f352e587a299) C:\Windows\system32\DRIVERS\pacer.sys
18:17:52.0892 4992 Psched - ok
18:17:53.0041 4992 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
18:17:53.0138 4992 ql2300 - ok
18:17:53.0291 4992 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
18:17:53.0323 4992 ql40xx - ok
18:17:53.0461 4992 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
18:17:53.0524 4992 QWAVEdrv - ok
18:17:53.0691 4992 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
18:17:53.0782 4992 RasAcd - ok
18:17:53.0903 4992 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
18:17:53.0996 4992 RasAgileVpn - ok
18:17:54.0124 4992 Rasl2tp (87a6e852a22991580d6d39adc4790463) C:\Windows\system32\DRIVERS\rasl2tp.sys
18:17:54.0235 4992 Rasl2tp - ok
18:17:54.0391 4992 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
18:17:54.0486 4992 RasPppoe - ok
18:17:54.0648 4992 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
18:17:54.0746 4992 RasSstp - ok
18:17:54.0896 4992 rdbss (3bac8142102c15d59a87757c1d41dce5) C:\Windows\system32\DRIVERS\rdbss.sys
18:17:54.0994 4992 rdbss - ok
18:17:55.0155 4992 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
18:17:55.0209 4992 rdpbus - ok
18:17:55.0360 4992 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
18:17:55.0461 4992 RDPCDD - ok
18:17:55.0626 4992 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
18:17:55.0706 4992 RDPENCDD - ok
18:17:55.0865 4992 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
18:17:55.0945 4992 RDPREFMP - ok
18:17:56.0113 4992 RDPWD (447de7e3dea39d422c1504f245b668b1) C:\Windows\system32\drivers\RDPWD.sys
18:17:56.0168 4992 RDPWD - ok
18:17:56.0329 4992 rdyboost (e5dc9ba9e439d6dbdd79f8caacb5bf01) C:\Windows\system32\drivers\rdyboost.sys
18:17:56.0369 4992 rdyboost - ok
18:17:56.0522 4992 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
18:17:56.0626 4992 rspndr - ok
18:17:56.0792 4992 RSUSBSTOR (22d6b47d004a6568c500680be2972854) C:\Windows\system32\Drivers\RtsUStor.sys
18:17:56.0826 4992 RSUSBSTOR - ok
18:17:56.0987 4992 RTL8167 (4fbda07ef0a3097ce14c5cabf723b278) C:\Windows\system32\DRIVERS\Rt64win7.sys
18:17:57.0024 4992 RTL8167 - ok
18:17:57.0172 4992 sbp2port (e3bbb89983daf5622c1d50cf49f28227) C:\Windows\system32\DRIVERS\sbp2port.sys
18:17:57.0207 4992 sbp2port - ok
18:17:57.0385 4992 scfilter (c94da20c7e3ba1dca269bc8460d98387) C:\Windows\system32\DRIVERS\scfilter.sys
18:17:57.0480 4992 scfilter - ok
18:17:57.0648 4992 sdbus (54e47ad086782d3ae9417c155cdceb9b) C:\Windows\system32\DRIVERS\sdbus.sys
18:17:57.0693 4992 sdbus - ok
18:17:57.0851 4992 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
18:17:57.0953 4992 secdrv - ok
18:17:58.0105 4992 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
18:17:58.0140 4992 Serenum - ok
18:17:58.0293 4992 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
18:17:58.0330 4992 Serial - ok
18:17:58.0519 4992 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
18:17:58.0559 4992 sermouse - ok
18:17:58.0738 4992 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\DRIVERS\sffdisk.sys
18:17:58.0784 4992 sffdisk - ok
18:17:58.0939 4992 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\DRIVERS\sffp_mmc.sys
18:17:58.0983 4992 sffp_mmc - ok
18:17:59.0145 4992 sffp_sd (178298f767fe638c9fedcbdef58bb5e4) C:\Windows\system32\DRIVERS\sffp_sd.sys
18:17:59.0197 4992 sffp_sd - ok
18:17:59.0339 4992 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
18:17:59.0391 4992 sfloppy - ok
18:17:59.0584 4992 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
18:17:59.0616 4992 SiSRaid2 - ok
18:17:59.0784 4992 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
18:17:59.0819 4992 SiSRaid4 - ok
18:18:00.0004 4992 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
18:18:00.0096 4992 Smb - ok
18:18:00.0266 4992 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
18:18:00.0297 4992 spldr - ok
18:18:00.0465 4992 srv (2408c0366d96bcdf63e8f1c78e4a29c5) C:\Windows\system32\DRIVERS\srv.sys
18:18:00.0520 4992 srv - ok
18:18:00.0686 4992 srv2 (76548f7b818881b47d8d1ae1be9c11f8) C:\Windows\system32\DRIVERS\srv2.sys
18:18:00.0765 4992 srv2 - ok
18:18:00.0957 4992 SrvHsfHDA (0c4540311e11664b245a263e1154cef8) C:\Windows\system32\DRIVERS\VSTAZL6.SYS
18:18:00.0989 4992 SrvHsfHDA - ok
18:18:01.0174 4992 SrvHsfV92 (02071d207a9858fbe3a48cbfd59c4a04) C:\Windows\system32\DRIVERS\VSTDPV6.SYS
18:18:01.0299 4992 SrvHsfV92 - ok
18:18:01.0458 4992 SrvHsfWinac (18e40c245dbfaf36fd0134a7ef2df396) C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
18:18:01.0528 4992 SrvHsfWinac - ok
18:18:01.0690 4992 srvnet (0af6e19d39c70844c5caa8fb0183c36e) C:\Windows\system32\DRIVERS\srvnet.sys
18:18:01.0741 4992 srvnet - ok
18:18:01.0937 4992 ssudmdm (78cd64791f8634cf7b582fd085e57c4b) C:\Windows\system32\DRIVERS\ssudmdm.sys
18:18:01.0969 4992 ssudmdm - ok
18:18:02.0098 4992 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
18:18:02.0130 4992 stexstor - ok
18:18:02.0289 4992 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\DRIVERS\swenum.sys
18:18:02.0320 4992 swenum - ok
18:18:02.0507 4992 SynTP (961cfac2a5318e212f459d651f28e0a4) C:\Windows\system32\DRIVERS\SynTP.sys
18:18:02.0573 4992 SynTP - ok
18:18:02.0792 4992 Tcpip (624c5b3aa4c99b3184bb922d9ece3ff0) C:\Windows\system32\drivers\tcpip.sys
18:18:02.0915 4992 Tcpip - ok
18:18:03.0148 4992 TCPIP6 (624c5b3aa4c99b3184bb922d9ece3ff0) C:\Windows\system32\DRIVERS\tcpip.sys
18:18:03.0222 4992 TCPIP6 - ok
18:18:03.0367 4992 tcpipreg (76d078af6f587b162d50210f761eb9ed) C:\Windows\system32\drivers\tcpipreg.sys
18:18:03.0447 4992 tcpipreg - ok
18:18:03.0598 4992 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
18:18:03.0646 4992 TDPIPE - ok
18:18:03.0831 4992 TDTCP (7518f7bcfd4b308abc9192bacaf6c970) C:\Windows\system32\drivers\tdtcp.sys
18:18:03.0877 4992 TDTCP - ok
18:18:04.0052 4992 tdx (079125c4b17b01fcaeebce0bcb290c0f) C:\Windows\system32\DRIVERS\tdx.sys
18:18:04.0147 4992 tdx - ok
18:18:04.0308 4992 TermDD (c448651339196c0e869a355171875522) C:\Windows\system32\DRIVERS\termdd.sys
18:18:04.0341 4992 TermDD - ok
18:18:04.0520 4992 tssecsrv (61b96c26131e37b24e93327a0bd1fb95) C:\Windows\system32\DRIVERS\tssecsrv.sys
18:18:04.0595 4992 tssecsrv - ok
18:18:04.0758 4992 tunnel (3836171a2cdf3af8ef10856db9835a70) C:\Windows\system32\DRIVERS\tunnel.sys
18:18:04.0835 4992 tunnel - ok
18:18:04.0993 4992 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
18:18:05.0027 4992 uagp35 - ok
18:18:05.0199 4992 udfs (0e5e962b5649d544be54e8c90761ea2b) C:\Windows\system32\DRIVERS\udfs.sys
18:18:05.0267 4992 udfs - ok
18:18:05.0448 4992 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\DRIVERS\uliagpkx.sys
18:18:05.0482 4992 uliagpkx - ok
18:18:05.0653 4992 umbus (eab6c35e62b1b0db0d1b48b671d3a117) C:\Windows\system32\DRIVERS\umbus.sys
18:18:05.0703 4992 umbus - ok
18:18:05.0905 4992 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
18:18:05.0948 4992 UmPass - ok
18:18:06.0154 4992 USBAAPL64 (aa33fc47ed58c34e6e9261e4f850b7eb) C:\Windows\system32\Drivers\usbaapl64.sys
18:18:06.0194 4992 USBAAPL64 - ok
18:18:06.0406 4992 usbccgp (537a4e03d7103c12d42dfd8ffdb5bdc9) C:\Windows\system32\DRIVERS\usbccgp.sys
18:18:06.0460 4992 usbccgp - ok
18:18:06.0651 4992 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\DRIVERS\usbcir.sys
18:18:06.0704 4992 usbcir - ok
18:18:06.0891 4992 usbehci (fbb21ebe49f6d560db37ac25fbc68e66) C:\Windows\system32\drivers\usbehci.sys
18:18:06.0933 4992 usbehci - ok
18:18:07.0137 4992 usbhub (6b7a8a99c4a459e73c286a6763ea24cc) C:\Windows\system32\DRIVERS\usbhub.sys
18:18:07.0221 4992 usbhub - ok
18:18:07.0381 4992 usbohci (8c88aa7617b4cbc2e4bed61d26b33a27) C:\Windows\system32\drivers\usbohci.sys
18:18:07.0421 4992 usbohci - ok
18:18:07.0580 4992 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
18:18:07.0631 4992 usbprint - ok
18:18:08.0022 4992 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
18:18:08.0081 4992 usbscan - ok
18:18:08.0220 4992 USBSTOR (a60e7e0fa88ff067d049d525547cd5e9) C:\Windows\system32\DRIVERS\USBSTOR.SYS
18:18:08.0269 4992 USBSTOR - ok
18:18:08.0482 4992 usbuhci (0b5b3b2df3fd1709618acfa50b8392b0) C:\Windows\system32\drivers\usbuhci.sys
18:18:08.0536 4992 usbuhci - ok
18:18:08.0722 4992 usbvideo (d501e12614b00a3252073101d6a1a74b) C:\Windows\system32\Drivers\usbvideo.sys
18:18:08.0766 4992 usbvideo - ok
18:18:08.0934 4992 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\DRIVERS\vdrvroot.sys
18:18:08.0966 4992 vdrvroot - ok
18:18:09.0102 4992 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
18:18:09.0145 4992 vga - ok
18:18:09.0288 4992 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
18:18:09.0386 4992 VgaSave - ok
18:18:09.0546 4992 vhdmp (c82e748660f62a242b2dfac1442f22a4) C:\Windows\system32\DRIVERS\vhdmp.sys
18:18:09.0590 4992 vhdmp - ok
18:18:09.0750 4992 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\DRIVERS\viaide.sys
18:18:09.0781 4992 viaide - ok
18:18:09.0958 4992 volmgr (2b1a3dae2b4e70dbba822b7a03fbd4a3) C:\Windows\system32\DRIVERS\volmgr.sys
18:18:09.0991 4992 volmgr - ok
18:18:10.0138 4992 volmgrx (99b0cbb569ca79acaed8c91461d765fb) C:\Windows\system32\drivers\volmgrx.sys
18:18:10.0181 4992 volmgrx - ok
18:18:10.0343 4992 volsnap (58f82eed8ca24b461441f9c3e4f0bf5c) C:\Windows\system32\DRIVERS\volsnap.sys
18:18:10.0385 4992 volsnap - ok
18:18:10.0526 4992 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
18:18:10.0563 4992 vsmraid - ok
18:18:10.0735 4992 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
18:18:10.0795 4992 vwifibus - ok
18:18:10.0980 4992 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
18:18:11.0043 4992 vwififlt - ok
18:18:11.0223 4992 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys
18:18:11.0291 4992 vwifimp - ok
18:18:11.0474 4992 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
18:18:11.0509 4992 WacomPen - ok
18:18:11.0689 4992 WANARP (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
18:18:11.0791 4992 WANARP - ok
18:18:11.0847 4992 Wanarpv6 (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
18:18:11.0917 4992 Wanarpv6 - ok
18:18:12.0091 4992 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
18:18:12.0123 4992 Wd - ok
18:18:12.0283 4992 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
18:18:12.0339 4992 Wdf01000 - ok
18:18:12.0475 4992 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
18:18:12.0561 4992 WfpLwf - ok
18:18:12.0692 4992 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
18:18:12.0724 4992 WIMMount - ok
18:18:12.0923 4992 WinUsb (817eaff5d38674edd7713b9dfb8e9791) C:\Windows\system32\DRIVERS\WinUsb.sys
18:18:12.0978 4992 WinUsb - ok
18:18:13.0120 4992 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\DRIVERS\wmiacpi.sys
18:18:13.0154 4992 WmiAcpi - ok
18:18:13.0302 4992 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
18:18:13.0400 4992 ws2ifsl - ok
18:18:13.0560 4992 WudfPf (7cadc74271dd6461c452c271b30bd378) C:\Windows\system32\drivers\WudfPf.sys
18:18:13.0653 4992 WudfPf - ok
18:18:13.0819 4992 WUDFRd (3b197af0fff08aa66b6b2241ca538d64) C:\Windows\system32\DRIVERS\WUDFRd.sys
18:18:13.0898 4992 WUDFRd - ok
18:18:14.0082 4992 yukonw7 (b3eeacf62445e24fbb2cd4b0fb4db026) C:\Windows\system32\DRIVERS\yk62x64.sys
18:18:14.0149 4992 yukonw7 - ok
18:18:14.0214 4992 MBR (0x1B8) (48ef5d4915719c9bd37d56b0a870bd7b) \Device\Harddisk0\DR0
18:18:14.0297 4992 \Device\Harddisk0\DR0 - ok
18:18:14.0336 4992 Boot (0x1200) (344af9c3fb350d6d5232ed20b7c8af14) \Device\Harddisk0\DR0\Partition0
18:18:14.0337 4992 \Device\Harddisk0\DR0\Partition0 - ok
18:18:14.0353 4992 Boot (0x1200) (7de6b5c12fe0b02513f20fa5bf86c852) \Device\Harddisk0\DR0\Partition1
18:18:14.0355 4992 \Device\Harddisk0\DR0\Partition1 - ok
18:18:14.0384 4992 Boot (0x1200) (173e9242625f37ee4a71d1f70c9395ea) \Device\Harddisk0\DR0\Partition2
18:18:14.0386 4992 \Device\Harddisk0\DR0\Partition2 - ok
18:18:14.0405 4992 Boot (0x1200) (85e51f96f3bfc4b32d7bf047f6ea8a47) \Device\Harddisk0\DR0\Partition3
18:18:14.0406 4992 \Device\Harddisk0\DR0\Partition3 - ok
18:18:14.0407 4992 ============================================================
18:18:14.0407 4992 Scan finished
18:18:14.0407 4992 ============================================================
18:18:14.0427 4984 Detected object count: 0
18:18:14.0427 4984 Actual detected object count: 0
18:19:18.0970 0168 ============================================================
18:19:18.0970 0168 Scan started
18:19:18.0970 0168 Mode: Manual; SigCheck; TDLFS;
18:19:18.0970 0168 ============================================================
18:19:19.0553 0168 1394ohci (1b00662092f9f9568b995902f0cc40d5) C:\Windows\system32\DRIVERS\1394ohci.sys
18:19:19.0616 0168 1394ohci - ok
18:19:19.0744 0168 ACPI (6f11e88748cdefd2f76aa215f97ddfe5) C:\Windows\system32\DRIVERS\ACPI.sys
18:19:19.0784 0168 ACPI - ok
18:19:19.0915 0168 AcpiPmi (63b05a0420ce4bf0e4af6dcc7cada254) C:\Windows\system32\DRIVERS\acpipmi.sys
18:19:19.0954 0168 AcpiPmi - ok
18:19:20.0089 0168 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
18:19:20.0136 0168 adp94xx - ok
18:19:20.0268 0168 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
18:19:20.0311 0168 adpahci - ok
18:19:20.0434 0168 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
18:19:20.0473 0168 adpu320 - ok
18:19:20.0634 0168 AFD (db9d6c6b2cd95a9ca414d045b627422e) C:\Windows\system32\drivers\afd.sys
18:19:20.0681 0168 AFD - ok
18:19:20.0795 0168 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\DRIVERS\agp440.sys
18:19:20.0827 0168 agp440 - ok
18:19:20.0940 0168 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\DRIVERS\aliide.sys
18:19:20.0970 0168 aliide - ok
18:19:21.0088 0168 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\DRIVERS\amdide.sys
18:19:21.0119 0168 amdide - ok
18:19:21.0243 0168 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
18:19:21.0278 0168 AmdK8 - ok
18:19:21.0436 0168 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
18:19:21.0470 0168 AmdPPM - ok
18:19:21.0631 0168 amdsata (ab3166c09438a161fbde13099a72e0af) C:\Windows\system32\DRIVERS\amdsata.sys
18:19:21.0665 0168 amdsata - ok
18:19:21.0836 0168 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
18:19:21.0872 0168 amdsbs - ok
18:19:22.0033 0168 amdxata (5118dcd2065d8c8d752ad5ec0b2d6aa6) C:\Windows\system32\DRIVERS\amdxata.sys
18:19:22.0064 0168 amdxata - ok
18:19:22.0221 0168 AppID (42fd751b27fa0e9c69bb39f39e409594) C:\Windows\system32\drivers\appid.sys
18:19:22.0271 0168 AppID - ok
18:19:22.0448 0168 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
18:19:22.0481 0168 arc - ok
18:19:22.0659 0168 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
18:19:22.0692 0168 arcsas - ok
18:19:22.0818 0168 aswFsBlk (55142b4f7a7e4c9c151c6000a6bf7809) C:\Windows\system32\drivers\aswFsBlk.sys
18:19:22.0849 0168 aswFsBlk - ok
18:19:22.0984 0168 aswMonFlt (aa9fde3d630160b47dab21bf8250111c) C:\Windows\system32\drivers\aswMonFlt.sys
18:19:23.0012 0168 aswMonFlt - ok
18:19:23.0120 0168 aswRdr (2a6675c24df5159a9506cd13ece5abe9) C:\Windows\System32\Drivers\aswrdr2.sys
18:19:23.0147 0168 aswRdr - ok
18:19:23.0262 0168 aswSnx (4e38475bdb51a867ccba7d5df7fdfc0c) C:\Windows\system32\drivers\aswSnx.sys
18:19:23.0321 0168 aswSnx - ok
18:19:23.0449 0168 aswSP (9a49d80d65451af22913aef772cc3da9) C:\Windows\system32\drivers\aswSP.sys
18:19:23.0489 0168 aswSP - ok
18:19:23.0609 0168 aswTdi (c3ec420451ac5300a22190ae38418fba) C:\Windows\system32\drivers\aswTdi.sys
18:19:23.0637 0168 aswTdi - ok
18:19:23.0765 0168 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
18:19:23.0845 0168 AsyncMac - ok
18:19:23.0958 0168 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\DRIVERS\atapi.sys
18:19:23.0984 0168 atapi - ok
18:19:24.0159 0168 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
18:19:24.0201 0168 b06bdrv - ok
18:19:24.0362 0168 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
18:19:24.0401 0168 b57nd60a - ok
18:19:24.0596 0168 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
18:19:24.0668 0168 Beep - ok
18:19:24.0829 0168 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
18:19:24.0863 0168 blbdrive - ok
18:19:25.0039 0168 bowser (19d20159708e152267e53b66677a4995) C:\Windows\system32\DRIVERS\bowser.sys
18:19:25.0072 0168 bowser - ok
18:19:25.0265 0168 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
18:19:25.0305 0168 BrFiltLo - ok
18:19:25.0478 0168 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
18:19:25.0519 0168 BrFiltUp - ok
18:19:25.0855 0168 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
18:19:25.0893 0168 Brserid - ok
18:19:26.0066 0168 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
18:19:26.0105 0168 BrSerWdm - ok
18:19:26.0456 0168 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
18:19:26.0496 0168 BrUsbMdm - ok
18:19:26.0660 0168 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
18:19:26.0692 0168 BrUsbSer - ok
18:19:26.0829 0168 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
18:19:26.0871 0168 BTHMODEM - ok
18:19:27.0045 0168 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
18:19:27.0122 0168 cdfs - ok
18:19:27.0289 0168 cdrom (83d2d75e1efb81b3450c18131443f7db) C:\Windows\system32\DRIVERS\cdrom.sys
18:19:27.0325 0168 cdrom - ok
18:19:27.0510 0168 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
18:19:27.0548 0168 circlass - ok
18:19:27.0659 0168 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
18:19:27.0698 0168 CLFS - ok
18:19:27.0873 0168 clwvd (50f92c943f18b070f166d019dfab3d9a) C:\Windows\system32\DRIVERS\clwvd.sys
18:19:27.0898 0168 clwvd - ok
18:19:28.0045 0168 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
18:19:28.0078 0168 CmBatt - ok
18:19:28.0218 0168 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\DRIVERS\cmdide.sys
18:19:28.0246 0168 cmdide - ok
18:19:28.0409 0168 CNG (ca7720b73446fddec5c69519c1174c98) C:\Windows\system32\Drivers\cng.sys
18:19:28.0457 0168 CNG - ok
18:19:28.0596 0168 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
18:19:28.0627 0168 Compbatt - ok
18:19:28.0774 0168 CompositeBus (f26b3a86f6fa87ca360b879581ab4123) C:\Windows\system32\DRIVERS\CompositeBus.sys
18:19:28.0814 0168 CompositeBus - ok
18:19:28.0977 0168 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
18:19:29.0010 0168 crcdisk - ok
18:19:29.0200 0168 DfsC (9c253ce7311ca60fc11c774692a13208) C:\Windows\system32\Drivers\dfsc.sys
18:19:29.0234 0168 DfsC - ok
18:19:29.0400 0168 dg_ssudbus (113212d25d0c9bb8901a9833774da97f) C:\Windows\system32\DRIVERS\ssudbus.sys
18:19:29.0429 0168 dg_ssudbus - ok
18:19:29.0607 0168 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
18:19:29.0678 0168 discache - ok
18:19:29.0835 0168 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
18:19:29.0867 0168 Disk - ok
18:19:30.0048 0168 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
18:19:30.0089 0168 drmkaud - ok
18:19:30.0274 0168 DXGKrnl (1633b9abf52784a1331476397a48cbef) C:\Windows\System32\drivers\dxgkrnl.sys
18:19:30.0326 0168 DXGKrnl - ok
18:19:30.0583 0168 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
18:19:30.0669 0168 ebdrv - ok
18:19:30.0834 0168 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
18:19:30.0879 0168 elxstor - ok
18:19:31.0038 0168 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\DRIVERS\errdev.sys
18:19:31.0067 0168 ErrDev - ok
18:19:31.0234 0168 ewusbnet (477bc304201197f4057090bd60af1739) C:\Windows\system32\DRIVERS\ewusbnet.sys
18:19:31.0270 0168 ewusbnet - ok
18:19:31.0452 0168 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
18:19:31.0533 0168 exfat - ok
18:19:31.0695 0168 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
18:19:31.0775 0168 fastfat - ok
18:19:31.0961 0168 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
18:19:31.0994 0168 fdc - ok
18:19:32.0167 0168 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
18:19:32.0200 0168 FileInfo - ok
18:19:32.0372 0168 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
18:19:32.0454 0168 Filetrace - ok
18:19:32.0619 0168 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
18:19:32.0655 0168 flpydisk - ok
18:19:32.0825 0168 FltMgr (f7866af72abbaf84b1fa5aa195378c59) C:\Windows\system32\drivers\fltmgr.sys
18:19:32.0867 0168 FltMgr - ok
18:19:33.0048 0168 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
18:19:33.0081 0168 FsDepends - ok
18:19:33.0253 0168 Fs_Rec (d3e3f93d67821a2db2b3d9fac2dc2064) C:\Windows\system32\drivers\Fs_Rec.sys
18:19:33.0285 0168 Fs_Rec - ok
18:19:33.0459 0168 fvevol (ae87ba80d0ec3b57126ed2cdc15b24ed) C:\Windows\system32\DRIVERS\fvevol.sys
18:19:33.0504 0168 fvevol - ok
18:19:33.0670 0168 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
18:19:33.0702 0168 gagp30kx - ok
18:19:33.0875 0168 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
18:19:33.0899 0168 GEARAspiWDM - ok
18:19:34.0060 0168 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
18:19:34.0093 0168 hcw85cir - ok
18:19:34.0278 0168 HdAudAddService (6410f6f415b2a5a9037224c41da8bf12) C:\Windows\system32\drivers\HdAudio.sys
18:19:34.0326 0168 HdAudAddService - ok
18:19:34.0483 0168 HDAudBus (0a49913402747a0b67de940fb42cbdbb) C:\Windows\system32\DRIVERS\HDAudBus.sys
18:19:34.0526 0168 HDAudBus - ok
18:19:34.0710 0168 HECIx64 (b6ac71aaa2b10848f57fc49d55a651af) C:\Windows\system32\DRIVERS\HECIx64.sys
18:19:34.0736 0168 HECIx64 - ok
18:19:34.0903 0168 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
18:19:34.0937 0168 HidBatt - ok
18:19:35.0101 0168 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
18:19:35.0139 0168 HidBth - ok
18:19:35.0335 0168 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
18:19:35.0374 0168 HidIr - ok
18:19:35.0526 0168 HidUsb (b3bf6b5b50006def50b66306d99fcf6f) C:\Windows\system32\DRIVERS\hidusb.sys
18:19:35.0562 0168 HidUsb - ok
18:19:35.0783 0168 HpSAMD (0886d440058f203eba0e1825e4355914) C:\Windows\system32\DRIVERS\HpSAMD.sys
18:19:35.0800 0168 HpSAMD - ok
18:19:36.0012 0168 HTTP (cee049cac4efa7f4e1e4ad014414a5d4) C:\Windows\system32\drivers\HTTP.sys
18:19:36.0115 0168 HTTP - ok
18:19:36.0276 0168 hwdatacard (8f9b0fc4ec3a8194bd4cbc5ed3e7abeb) C:\Windows\system32\DRIVERS\ewusbmdm.sys
18:19:36.0308 0168 hwdatacard - ok
18:19:36.0480 0168 hwpolicy (f17766a19145f111856378df337a5d79) C:\Windows\system32\drivers\hwpolicy.sys
18:19:36.0511 0168 hwpolicy - ok
18:19:36.0674 0168 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys
18:19:36.0710 0168 i8042prt - ok
18:19:36.0879 0168 iaStor (1384872112e8e7fd5786eceb8bddf4c9) C:\Windows\system32\DRIVERS\iaStor.sys
18:19:36.0923 0168 iaStor - ok
18:19:37.0111 0168 iaStorV (513dc087cfed7d2bb82f005385d3531f) C:\Windows\system32\DRIVERS\iaStorV.sys
18:19:37.0151 0168 iaStorV - ok
18:19:37.0533 0168 igfx (898ab5bfed7040d7ab07af01885eb944) C:\Windows\system32\DRIVERS\igdkmd64.sys
18:19:37.0686 0168 igfx - ok
18:19:37.0831 0168 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
18:19:37.0861 0168 iirsp - ok
18:19:38.0041 0168 Impcd (4b6363cd4610bb848531bb260b15dfcc) C:\Windows\system32\DRIVERS\Impcd.sys
18:19:38.0071 0168 Impcd - ok
18:19:38.0265 0168 IntcAzAudAddService (d311e2dd59a34079d89c249b2a4d9fdb) C:\Windows\system32\drivers\RTKVHD64.sys
18:19:38.0338 0168 IntcAzAudAddService - ok
18:19:38.0534 0168 IntcDAud (58cf58dee26c909bd6f977b61d246295) C:\Windows\system32\DRIVERS\IntcDAud.sys
18:19:38.0568 0168 IntcDAud - ok
18:19:38.0729 0168 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\DRIVERS\intelide.sys
18:19:38.0760 0168 intelide - ok
18:19:38.0905 0168 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
18:19:38.0939 0168 intelppm - ok
18:19:39.0094 0168 IpFilterDriver (722dd294df62483cecaae6e094b4d695) C:\Windows\system32\DRIVERS\ipfltdrv.sys
18:19:39.0176 0168 IpFilterDriver - ok
18:19:39.0312 0168 IPMIDRV (e2b4a4494db7cb9b89b55ca268c337c5) C:\Windows\system32\DRIVERS\IPMIDrv.sys
18:19:39.0347 0168 IPMIDRV - ok
18:19:39.0499 0168 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
18:19:39.0574 0168 IPNAT - ok
18:19:39.0736 0168 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
18:19:39.0780 0168 IRENUM - ok
18:19:39.0978 0168 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\DRIVERS\isapnp.sys
18:19:40.0009 0168 isapnp - ok
18:19:40.0166 0168 iScsiPrt (fa4d2557de56d45b0a346f93564be6e1) C:\Windows\system32\DRIVERS\msiscsi.sys
18:19:40.0205 0168 iScsiPrt - ok
18:19:40.0370 0168 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
18:19:40.0402 0168 kbdclass - ok
18:19:40.0578 0168 kbdhid (6def98f8541e1b5dceb2c822a11f7323) C:\Windows\system32\DRIVERS\kbdhid.sys
18:19:40.0614 0168 kbdhid - ok
18:19:40.0801 0168 KSecDD (4f4b5fde429416877de7143044582eb5) C:\Windows\system32\Drivers\ksecdd.sys
18:19:40.0834 0168 KSecDD - ok
18:19:40.0999 0168 KSecPkg (6f40465a44ecdc1731befafec5bdd03c) C:\Windows\system32\Drivers\ksecpkg.sys
18:19:41.0035 0168 KSecPkg - ok
18:19:41.0197 0168 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
18:19:41.0277 0168 ksthunk - ok
18:19:41.0429 0168 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
18:19:41.0514 0168 lltdio - ok
18:19:41.0688 0168 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
18:19:41.0722 0168 LSI_FC - ok
18:19:41.0914 0168 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
18:19:41.0948 0168 LSI_SAS - ok
18:19:42.0113 0168 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
18:19:42.0146 0168 LSI_SAS2 - ok
18:19:42.0303 0168 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
18:19:42.0338 0168 LSI_SCSI - ok
18:19:42.0507 0168 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
18:19:42.0594 0168 luafv - ok
18:19:42.0788 0168 mcdbus (79d51e7f5926e8ce1b3ebecebae28cff) C:\Windows\system32\DRIVERS\mcdbus.sys
18:19:42.0829 0168 mcdbus - ok
18:19:42.0989 0168 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
18:19:43.0021 0168 megasas - ok
18:19:43.0170 0168 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
18:19:43.0207 0168 MegaSR - ok
18:19:43.0362 0168 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
18:19:43.0441 0168 Modem - ok
18:19:43.0606 0168 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
18:19:43.0648 0168 monitor - ok
18:19:43.0821 0168 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
18:19:43.0853 0168 mouclass - ok
18:19:44.0004 0168 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
18:19:44.0038 0168 mouhid - ok
18:19:44.0201 0168 mountmgr (791af66c4d0e7c90a3646066386fb571) C:\Windows\system32\drivers\mountmgr.sys
18:19:44.0235 0168 mountmgr - ok
18:19:44.0399 0168 mpio (609d1d87649ecc19796f4d76d4c15cea) C:\Windows\system32\DRIVERS\mpio.sys
18:19:44.0434 0168 mpio - ok
18:19:44.0599 0168 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
18:19:44.0674 0168 mpsdrv - ok
18:19:44.0843 0168 MRxDAV (30524261bb51d96d6fcbac20c810183c) C:\Windows\system32\drivers\mrxdav.sys
18:19:44.0887 0168 MRxDAV - ok
18:19:45.0054 0168 mrxsmb (040d62a9d8ad28922632137acdd984f2) C:\Windows\system32\DRIVERS\mrxsmb.sys
18:19:45.0089 0168 mrxsmb - ok
18:19:45.0271 0168 mrxsmb10 (f0067552f8f9b33d7c59403ab808a3cb) C:\Windows\system32\DRIVERS\mrxsmb10.sys
18:19:45.0309 0168 mrxsmb10 - ok
18:19:45.0497 0168 mrxsmb20 (3c142d31de9f2f193218a53fe2632051) C:\Windows\system32\DRIVERS\mrxsmb20.sys
18:19:45.0519 0168 mrxsmb20 - ok
18:19:45.0660 0168 msahci (d1318d7b87b71003a5c6c7c31ec80288) C:\Windows\system32\DRIVERS\msahci.sys
18:19:45.0691 0168 msahci - ok
18:19:45.0857 0168 msdsm (8d27b597229aed79430fb9db3bcbfbd0) C:\Windows\system32\DRIVERS\msdsm.sys
18:19:45.0892 0168 msdsm - ok
18:19:46.0086 0168 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
18:19:46.0166 0168 Msfs - ok
18:19:46.0320 0168 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
18:19:46.0404 0168 mshidkmdf - ok
18:19:46.0585 0168 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\DRIVERS\msisadrv.sys
18:19:46.0616 0168 msisadrv - ok
18:19:46.0773 0168 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
18:19:46.0854 0168 MSKSSRV - ok
18:19:47.0026 0168 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
18:19:47.0102 0168 MSPCLOCK - ok
18:19:47.0263 0168 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
18:19:47.0341 0168 MSPQM - ok
18:19:47.0522 0168 MsRPC (89cb141aa8616d8c6a4610fa26c60964) C:\Windows\system32\drivers\MsRPC.sys
18:19:47.0561 0168 MsRPC - ok
18:19:47.0722 0168 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\DRIVERS\mssmbios.sys
18:19:47.0753 0168 mssmbios - ok
18:19:47.0914 0168 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
18:19:47.0997 0168 MSTEE - ok
18:19:48.0117 0168 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
18:19:48.0145 0168 MTConfig - ok
18:19:48.0296 0168 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
18:19:48.0329 0168 Mup - ok
18:19:48.0491 0168 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
18:19:48.0543 0168 NativeWifiP - ok
18:19:48.0720 0168 NDIS (cad515dbd07d082bb317d9928ce8962c) C:\Windows\system32\drivers\ndis.sys
18:19:48.0772 0168 NDIS - ok
18:19:48.0943 0168 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
18:19:49.0021 0168 NdisCap - ok
18:19:49.0185 0168 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
18:19:49.0265 0168 NdisTapi - ok
18:19:49.0426 0168 Ndisuio (f105ba1e22bf1f2ee8f005d4305e4bec) C:\Windows\system32\DRIVERS\ndisuio.sys
18:19:49.0502 0168 Ndisuio - ok
18:19:49.0664 0168 NdisWan (557dfab9ca1fcb036ac77564c010dad3) C:\Windows\system32\DRIVERS\ndiswan.sys
18:19:49.0766 0168 NdisWan - ok
18:19:49.0940 0168 NDProxy (659b74fb74b86228d6338d643cd3e3cf) C:\Windows\system32\drivers\NDProxy.sys
18:19:50.0028 0168 NDProxy - ok
18:19:50.0173 0168 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
18:19:50.0251 0168 NetBIOS - ok
18:19:50.0418 0168 NetBT (9162b273a44ab9dce5b44362731d062a) C:\Windows\system32\DRIVERS\netbt.sys
18:19:50.0495 0168 NetBT - ok
18:19:50.0694 0168 netr28x (24cf1304d899124336f67f88f3c15e21) C:\Windows\system32\DRIVERS\netr28x.sys
18:19:50.0743 0168 netr28x - ok
18:19:51.0036 0168 netw5v64 (64428dfdaf6e88366cb51f45a79c5f69) C:\Windows\system32\DRIVERS\netw5v64.sys
18:19:51.0127 0168 netw5v64 - ok
18:19:51.0307 0168 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
18:19:51.0339 0168 nfrd960 - ok
18:19:51.0517 0168 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
18:19:51.0598 0168 Npfs - ok
18:19:51.0787 0168 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
18:19:51.0867 0168 nsiproxy - ok
18:19:52.0083 0168 Ntfs (378e0e0dfea67d98ae6ea53adbbd76bc) C:\Windows\system32\drivers\Ntfs.sys
18:19:52.0149 0168 Ntfs - ok
18:19:52.0321 0168 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
18:19:52.0404 0168 Null - ok
18:19:52.0590 0168 nvraid (deab10231cbdb0881fc25428ebe11506) C:\Windows\system32\DRIVERS\nvraid.sys
18:19:52.0625 0168 nvraid - ok
18:19:52.0803 0168 nvstor (0af7b8136794e23e87be138992880e64) C:\Windows\system32\DRIVERS\nvstor.sys
18:19:52.0840 0168 nvstor - ok
18:19:53.0012 0168 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\DRIVERS\nv_agp.sys
18:19:53.0044 0168 nv_agp - ok
18:19:53.0231 0168 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\DRIVERS\ohci1394.sys
18:19:53.0266 0168 ohci1394 - ok
18:19:53.0464 0168 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
18:19:53.0500 0168 Parport - ok
18:19:53.0683 0168 partmgr (90061b1acfe8ccaa5345750ffe08d8b8) C:\Windows\system32\drivers\partmgr.sys
18:19:53.0716 0168 partmgr - ok
18:19:53.0889 0168 pci (f36f6504009f2fb0dfd1b17a116ad74b) C:\Windows\system32\DRIVERS\pci.sys
18:19:53.0926 0168 pci - ok
18:19:54.0091 0168 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\DRIVERS\pciide.sys
18:19:54.0121 0168 pciide - ok
18:19:54.0281 0168 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
18:19:54.0320 0168 pcmcia - ok
18:19:54.0506 0168 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
18:19:54.0538 0168 pcw - ok
18:19:54.0717 0168 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
18:19:54.0796 0168 PEAUTH - ok
18:19:54.0999 0168 PptpMiniport (27cc19e81ba5e3403c48302127bda717) C:\Windows\system32\DRIVERS\raspptp.sys
18:19:55.0081 0168 PptpMiniport - ok
18:19:55.0271 0168 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
18:19:55.0306 0168 Processor - ok
18:19:55.0485 0168 Psched (ee992183bd8eaefd9973f352e587a299) C:\Windows\system32\DRIVERS\pacer.sys
18:19:55.0563 0168 Psched - ok
18:19:55.0771 0168 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
18:19:55.0834 0168 ql2300 - ok
18:19:56.0021 0168 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
18:19:56.0056 0168 ql40xx - ok
18:19:56.0246 0168 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
18:19:56.0288 0168 QWAVEdrv - ok
18:19:56.0454 0168 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
18:19:56.0538 0168 RasAcd - ok
18:19:56.0721 0168 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
18:19:56.0796 0168 RasAgileVpn - ok
18:19:56.0964 0168 Rasl2tp (87a6e852a22991580d6d39adc4790463) C:\Windows\system32\DRIVERS\rasl2tp.sys
18:19:57.0036 0168 Rasl2tp - ok
18:19:57.0220 0168 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
18:19:57.0299 0168 RasPppoe - ok
18:19:57.0477 0168 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
18:19:57.0549 0168 RasSstp - ok
18:19:57.0726 0168 rdbss (3bac8142102c15d59a87757c1d41dce5) C:\Windows\system32\DRIVERS\rdbss.sys
18:19:57.0810 0168 rdbss - ok
18:19:57.0984 0168 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
18:19:58.0025 0168 rdpbus - ok
18:19:58.0212 0168 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
18:19:58.0302 0168 RDPCDD - ok
18:19:58.0478 0168 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
18:19:58.0558 0168 RDPENCDD - ok
18:19:58.0739 0168 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
18:19:58.0823 0168 RDPREFMP - ok
18:19:59.0020 0168 RDPWD (447de7e3dea39d422c1504f245b668b1) C:\Windows\system32\drivers\RDPWD.sys
18:19:59.0056 0168 RDPWD - ok
18:19:59.0225 0168 rdyboost (e5dc9ba9e439d6dbdd79f8caacb5bf01) C:\Windows\system32\drivers\rdyboost.sys
18:19:59.0264 0168 rdyboost - ok
18:19:59.0441 0168 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
18:19:59.0532 0168 rspndr - ok
18:19:59.0710 0168 RSUSBSTOR (22d6b47d004a6568c500680be2972854) C:\Windows\system32\Drivers\RtsUStor.sys
18:19:59.0743 0168 RSUSBSTOR - ok
18:19:59.0905 0168 RTL8167 (4fbda07ef0a3097ce14c5cabf723b278) C:\Windows\system32\DRIVERS\Rt64win7.sys
18:19:59.0941 0168 RTL8167 - ok
18:20:00.0102 0168 sbp2port (e3bbb89983daf5622c1d50cf49f28227) C:\Windows\system32\DRIVERS\sbp2port.sys
18:20:00.0136 0168 sbp2port - ok
18:20:00.0303 0168 scfilter (c94da20c7e3ba1dca269bc8460d98387) C:\Windows\system32\DRIVERS\scfilter.sys
18:20:00.0385 0168 scfilter - ok
18:20:00.0578 0168 sdbus (54e47ad086782d3ae9417c155cdceb9b) C:\Windows\system32\DRIVERS\sdbus.sys
18:20:00.0622 0168 sdbus - ok
18:20:00.0791 0168 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
18:20:00.0869 0168 secdrv - ok
18:20:01.0057 0168 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
18:20:01.0090 0168 Serenum - ok
18:20:01.0267 0168 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
18:20:01.0303 0168 Serial - ok
18:20:01.0493 0168 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
18:20:01.0527 0168 sermouse - ok
18:20:01.0712 0168 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\DRIVERS\sffdisk.sys
18:20:01.0743 0168 sffdisk - ok
18:20:01.0924 0168 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\DRIVERS\sffp_mmc.sys
18:20:01.0956 0168 sffp_mmc - ok
18:20:02.0120 0168 sffp_sd (178298f767fe638c9fedcbdef58bb5e4) C:\Windows\system32\DRIVERS\sffp_sd.sys
18:20:02.0152 0168 sffp_sd - ok
18:20:02.0336 0168 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
18:20:02.0369 0168 sfloppy - ok
18:20:02.0547 0168 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
18:20:02.0579 0168 SiSRaid2 - ok
18:20:02.0758 0168 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
18:20:02.0791 0168 SiSRaid4 - ok
18:20:02.0966 0168 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
18:20:03.0039 0168 Smb - ok
18:20:03.0217 0168 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
18:20:03.0248 0168 spldr - ok
18:20:03.0427 0168 srv (2408c0366d96bcdf63e8f1c78e4a29c5) C:\Windows\system32\DRIVERS\srv.sys
18:20:03.0470 0168 srv - ok
18:20:03.0638 0168 srv2 (76548f7b818881b47d8d1ae1be9c11f8) C:\Windows\system32\DRIVERS\srv2.sys
18:20:03.0680 0168 srv2 - ok
18:20:03.0865 0168 SrvHsfHDA (0c4540311e11664b245a263e1154cef8) C:\Windows\system32\DRIVERS\VSTAZL6.SYS
18:20:03.0904 0168 SrvHsfHDA - ok
18:20:04.0125 0168 SrvHsfV92 (02071d207a9858fbe3a48cbfd59c4a04) C:\Windows\system32\DRIVERS\VSTDPV6.SYS
18:20:04.0173 0168 SrvHsfV92 - ok
18:20:04.0354 0168 SrvHsfWinac (18e40c245dbfaf36fd0134a7ef2df396) C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
18:20:04.0396 0168 SrvHsfWinac - ok
18:20:04.0564 0168 srvnet (0af6e19d39c70844c5caa8fb0183c36e) C:\Windows\system32\DRIVERS\srvnet.sys
18:20:04.0600 0168 srvnet - ok
18:20:04.0799 0168 ssudmdm (78cd64791f8634cf7b582fd085e57c4b) C:\Windows\system32\DRIVERS\ssudmdm.sys
18:20:04.0831 0168 ssudmdm - ok
18:20:05.0005 0168 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
18:20:05.0036 0168 stexstor - ok
18:20:05.0218 0168 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\DRIVERS\swenum.sys
18:20:05.0249 0168 swenum - ok
18:20:05.0459 0168 SynTP (961cfac2a5318e212f459d651f28e0a4) C:\Windows\system32\DRIVERS\SynTP.sys
18:20:05.0519 0168 SynTP - ok
18:20:05.0744 0168 Tcpip (624c5b3aa4c99b3184bb922d9ece3ff0) C:\Windows\system32\drivers\tcpip.sys
18:20:05.0807 0168 Tcpip - ok
18:20:06.0010 0168 TCPIP6 (624c5b3aa4c99b3184bb922d9ece3ff0) C:\Windows\system32\DRIVERS\tcpip.sys
18:20:06.0077 0168 TCPIP6 - ok
18:20:06.0240 0168 tcpipreg (76d078af6f587b162d50210f761eb9ed) C:\Windows\system32\drivers\tcpipreg.sys
18:20:06.0311 0168 tcpipreg - ok
18:20:06.0472 0168 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
18:20:06.0503 0168 TDPIPE - ok
18:20:06.0671 0168 TDTCP (7518f7bcfd4b308abc9192bacaf6c970) C:\Windows\system32\drivers\tdtcp.sys
18:20:06.0703 0168 TDTCP - ok
18:20:06.0881 0168 tdx (079125c4b17b01fcaeebce0bcb290c0f) C:\Windows\system32\DRIVERS\tdx.sys
18:20:06.0963 0168 tdx - ok
18:20:07.0146 0168 TermDD (c448651339196c0e869a355171875522) C:\Windows\system32\DRIVERS\termdd.sys
18:20:07.0179 0168 TermDD - ok
18:20:07.0372 0168 tssecsrv (61b96c26131e37b24e93327a0bd1fb95) C:\Windows\system32\DRIVERS\tssecsrv.sys
18:20:07.0445 0168 tssecsrv - ok
18:20:07.0610 0168 tunnel (3836171a2cdf3af8ef10856db9835a70) C:\Windows\system32\DRIVERS\tunnel.sys
18:20:07.0686 0168 tunnel - ok
18:20:07.0878 0168 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
18:20:07.0911 0168 uagp35 - ok
18:20:08.0073 0168 udfs (0e5e962b5649d544be54e8c90761ea2b) C:\Windows\system32\DRIVERS\udfs.sys
18:20:08.0112 0168 udfs - ok
18:20:08.0311 0168 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\DRIVERS\uliagpkx.sys
18:20:08.0342 0168 uliagpkx - ok
18:20:08.0515 0168 umbus (eab6c35e62b1b0db0d1b48b671d3a117) C:\Windows\system32\DRIVERS\umbus.sys
18:20:08.0550 0168 umbus - ok
18:20:08.0712 0168 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
18:20:08.0746 0168 UmPass - ok
18:20:08.0939 0168 USBAAPL64 (aa33fc47ed58c34e6e9261e4f850b7eb) C:\Windows\system32\Drivers\usbaapl64.sys
18:20:08.0968 0168 USBAAPL64 - ok
18:20:09.0157 0168 usbccgp (537a4e03d7103c12d42dfd8ffdb5bdc9) C:\Windows\system32\DRIVERS\usbccgp.sys
18:20:09.0191 0168 usbccgp - ok
18:20:09.0358 0168 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\DRIVERS\usbcir.sys
18:20:09.0401 0168 usbcir - ok
18:20:09.0565 0168 usbehci (fbb21ebe49f6d560db37ac25fbc68e66) C:\Windows\system32\drivers\usbehci.sys
18:20:09.0598 0168 usbehci - ok
18:20:09.0800 0168 usbhub (6b7a8a99c4a459e73c286a6763ea24cc) C:\Windows\system32\DRIVERS\usbhub.sys
18:20:09.0840 0168 usbhub - ok
18:20:10.0011 0168 usbohci (8c88aa7617b4cbc2e4bed61d26b33a27) C:\Windows\system32\drivers\usbohci.sys
18:20:10.0043 0168 usbohci - ok
18:20:10.0187 0168 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
18:20:10.0229 0168 usbprint - ok
18:20:10.0396 0168 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
18:20:10.0438 0168 usbscan - ok
18:20:10.0594 0168 USBSTOR (a60e7e0fa88ff067d049d525547cd5e9) C:\Windows\system32\DRIVERS\USBSTOR.SYS
18:20:10.0627 0168 USBSTOR - ok
18:20:10.0800 0168 usbuhci (0b5b3b2df3fd1709618acfa50b8392b0) C:\Windows\system32\drivers\usbuhci.sys
18:20:10.0832 0168 usbuhci - ok
18:20:11.0007 0168 usbvideo (d501e12614b00a3252073101d6a1a74b) C:\Windows\system32\Drivers\usbvideo.sys
18:20:11.0053 0168 usbvideo - ok
18:20:11.0241 0168 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\DRIVERS\vdrvroot.sys
18:20:11.0273 0168 vdrvroot - ok
18:20:11.0443 0168 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
18:20:11.0485 0168 vga - ok
18:20:11.0651 0168 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
18:20:11.0731 0168 VgaSave - ok
18:20:11.0931 0168 vhdmp (c82e748660f62a242b2dfac1442f22a4) C:\Windows\system32\DRIVERS\vhdmp.sys
18:20:11.0970 0168 vhdmp - ok
18:20:12.0135 0168 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\DRIVERS\viaide.sys
18:20:12.0161 0168 viaide - ok
18:20:12.0332 0168 volmgr (2b1a3dae2b4e70dbba822b7a03fbd4a3) C:\Windows\system32\DRIVERS\volmgr.sys
18:20:12.0364 0168 volmgr - ok
18:20:12.0534 0168 volmgrx (99b0cbb569ca79acaed8c91461d765fb) C:\Windows\system32\drivers\volmgrx.sys
18:20:12.0575 0168 volmgrx - ok
18:20:12.0750 0168 volsnap (58f82eed8ca24b461441f9c3e4f0bf5c) C:\Windows\system32\DRIVERS\volsnap.sys
18:20:12.0788 0168 volsnap - ok
18:20:12.0967 0168 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
18:20:13.0004 0168 vsmraid - ok
18:20:13.0176 0168 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
18:20:13.0219 0168 vwifibus - ok
18:20:13.0387 0168 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
18:20:13.0434 0168 vwififlt - ok
18:20:13.0608 0168 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys
18:20:13.0652 0168 vwifimp - ok
18:20:13.0837 0168 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
18:20:13.0871 0168 WacomPen - ok
18:20:14.0052 0168 WANARP (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
18:20:14.0130 0168 WANARP - ok
18:20:14.0134 0168 Wanarpv6 (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
18:20:14.0182 0168 Wanarpv6 - ok
18:20:14.0387 0168 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
18:20:14.0418 0168 Wd - ok
18:20:14.0601 0168 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
18:20:14.0657 0168 Wdf01000 - ok
18:20:14.0837 0168 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
18:20:14.0912 0168 WfpLwf - ok
18:20:15.0077 0168 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
18:20:15.0108 0168 WIMMount - ok
18:20:15.0297 0168 WinUsb (817eaff5d38674edd7713b9dfb8e9791) C:\Windows\system32\DRIVERS\WinUsb.sys
18:20:15.0336 0168 WinUsb - ok
18:20:15.0527 0168 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\DRIVERS\wmiacpi.sys
18:20:15.0561 0168 WmiAcpi - ok
18:20:15.0743 0168 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
18:20:15.0819 0168 ws2ifsl - ok
18:20:16.0000 0168 WudfPf (7cadc74271dd6461c452c271b30bd378) C:\Windows\system32\drivers\WudfPf.sys
18:20:16.0061 0168 WudfPf - ok
18:20:16.0238 0168 WUDFRd (3b197af0fff08aa66b6b2241ca538d64) C:\Windows\system32\DRIVERS\WUDFRd.sys
18:20:16.0321 0168 WUDFRd - ok
18:20:16.0512 0168 yukonw7 (b3eeacf62445e24fbb2cd4b0fb4db026) C:\Windows\system32\DRIVERS\yk62x64.sys
18:20:16.0555 0168 yukonw7 - ok
18:20:16.0588 0168 MBR (0x1B8) (48ef5d4915719c9bd37d56b0a870bd7b) \Device\Harddisk0\DR0
18:20:16.0671 0168 \Device\Harddisk0\DR0 - ok
18:20:16.0709 0168 Boot (0x1200) (344af9c3fb350d6d5232ed20b7c8af14) \Device\Harddisk0\DR0\Partition0
18:20:16.0711 0168 \Device\Harddisk0\DR0\Partition0 - ok
18:20:16.0727 0168 Boot (0x1200) (7de6b5c12fe0b02513f20fa5bf86c852) \Device\Harddisk0\DR0\Partition1
18:20:16.0729 0168 \Device\Harddisk0\DR0\Partition1 - ok
18:20:16.0758 0168 Boot (0x1200) (173e9242625f37ee4a71d1f70c9395ea) \Device\Harddisk0\DR0\Partition2
18:20:16.0760 0168 \Device\Harddisk0\DR0\Partition2 - ok
18:20:16.0779 0168 Boot (0x1200) (85e51f96f3bfc4b32d7bf047f6ea8a47) \Device\Harddisk0\DR0\Partition3
18:20:16.0780 0168 \Device\Harddisk0\DR0\Partition3 - ok
18:20:16.0780 0168 ============================================================
18:20:16.0780 0168 Scan finished
18:20:16.0780 0168 ============================================================
18:20:16.0796 3544 Detected object count: 0
18:20:16.0796 3544 Actual detected object count: 0

Link to post
Share on other sites

Hi Maniac

Thanks so much for your msg!!!

I have done as per your instructions, here is the malwarebytes log:


Malwarebytes Anti-Malware 1.65.0.1400
www.malwarebytes.org
Database version: v2012.09.29.05
Windows 7 x64 NTFS
Internet Explorer 8.0.7600.16385
GGaus :: GGAUS-HP [limited]
30/09/2012 6:32:45 PM
mbam-log-2012-09-30 (18-32-45).txt
Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 163159
Time elapsed: 4 minute(s), 44 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
(end)

Here is the Logs from Adcleaner


# AdwCleaner v2.003 - Logfile created 09/30/2012 at 18:49:37
# Updated 23/09/2012 by Xplode
# Operating system : Windows 7 Home Premium (64 bits)
# User : r99 - GGAUS-HP
# Boot Mode : Normal
# Running from : C:\Users\GGaus\Desktop\adwcleaner.exe
# Option [Search]

***** [Services] *****

***** [Files / Folders] *****
File Found : C:\Program Files (x86)\Mozilla FireFox\searchplugins\Search_Results.xml
File Found : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eBay.lnk
File Found : C:\Users\Public\Desktop\eBay.lnk
File Found : C:\Users\r99\AppData\Roaming\Mozilla\Firefox\Profiles\xx4becad.default\searchplugins\Search_Results.xml
Folder Found : C:\ProgramData\Anti-phishing Domain Advisor
Folder Found : C:\ProgramData\boost_interprocess
Folder Found : C:\Users\GGaus\AppData\Local\Temp\AskSearch
Folder Found : C:\Users\GGaus\AppData\LocalLow\boost_interprocess
Folder Found : C:\Users\r99\AppData\Roaming\OpenCandy
***** [Registry] *****
Key Found : HKCU\Software\DataMngr
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\incredibar.com
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\incredibar.com
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2410}
Key Found : HKLM\SOFTWARE\Classes\AppID\{CFDAFE39-20CE-451D-BD45-A37452F39CF0}
Key Found : HKLM\SOFTWARE\Classes\AppID\YontooIEClient.DLL
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{D372567D-67C1-4B29-B3F0-159B52B3E967}
Key Found : HKLM\SOFTWARE\Classes\YontooIEClient.Api
Key Found : HKLM\SOFTWARE\Classes\YontooIEClient.Api.1
Key Found : HKLM\SOFTWARE\Classes\YontooIEClient.Layers
Key Found : HKLM\SOFTWARE\Classes\YontooIEClient.Layers.1
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SearchquMediaBar_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SearchquMediaBar_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SetupDataMngr_Searchqu_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SetupDataMngr_Searchqu_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\incredibar.com
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\incredibar.com
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{7E84186E-B5DE-4226-8A66-6E49C6B511B4}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{99066096-8989-4612-841F-621A01D54AD7}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{99079A25-328F-4BD4-BE04-00955ACAA0A7}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5}
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827}
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2410}
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{99079A25-328F-4BD4-BE04-00955ACAA0A7}
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
Key Found : HKLM\SOFTWARE\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}
Key Found : HKLM\SOFTWARE\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5}
Key Found : HKLM\SOFTWARE\DataMngr
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2410}
Key Found : HKU\S-1-5-21-2734991292-1067806275-2596081165-1000\Software\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827}
Key Found : HKU\S-1-5-21-2734991292-1067806275-2596081165-1001\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2410}
Value Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{99079A25-328F-4BD4-BE04-00955ACAA0A7}]
***** [Internet Browsers] *****
-\\ Internet Explorer v8.0.7600.16385
[HKCU\Software\Microsoft\Internet Explorer\Main - Start Page] = hxxp://www.searchnu.com/410
-\\ Mozilla Firefox v10.0.1 (en-US)
Profile name : default
File : C:\Users\GGaus\AppData\Roaming\Mozilla\Firefox\Profiles\cmlmt9w3.default\prefs.js
Found : user_pref("extensions.s4fToolbar.cp-blekko-domainlinks", true);
Found : user_pref("extensions.s4fToolbar.cp-blekko-rank", true);
Found : user_pref("extensions.s4fToolbar.si-blekko-rank", true);
Found : user_pref("surfcanyon.daily_code", "scIsOnSearchEngineDomain = function() {\nreturn contains(scCurre[...]
Found : user_pref("surfcanyon.daily_code_timestamp", "1310452610533");
Found : user_pref("surfcanyon.display_similar_product_images", true);
Found : user_pref("surfcanyon.hourly_code", "scGetDocument = function() {\nreturn scIsFF ? content.document [...]
Found : user_pref("surfcanyon.hourly_code2", "scEnableGoogle_hourly = function() {\nvar args = window.locati[...]
Found : user_pref("surfcanyon.hourly_code_timestamp", "1310509016480");
Found : user_pref("surfcanyon.initialized_roaming_suggestions", true);
Found : user_pref("surfcanyon.initialized_search_links", true);
Found : user_pref("surfcanyon.initialized_similar_product_images", true);
Found : user_pref("surfcanyon.inst_id", "8893511549654887841114836774198");
Found : user_pref("surfcanyon.inst_timestamp", "1309847176133");
Found : user_pref("surfcanyon.last_seen_splash", "333");
Found : user_pref("surfcanyon.num_results_clicked", "26");
Found : user_pref("surfcanyon.num_results_clicked_when_recs_available", "12");
Found : user_pref("surfcanyon.num_searches", "19");
Found : user_pref("surfcanyon.partner_code", "WTIFFEUB");
Found : user_pref("surfcanyon.refinements_cache", "^how to uninstall yahoo toolbar/internet:firefox:forums:c[...]
Found : user_pref("surfcanyon.roaming_suggestions_enabled", true);
Found : user_pref("surfcanyon.search_links_enabled", true);
Profile name : default
File : C:\Users\r99\AppData\Roaming\Mozilla\Firefox\Profiles\xx4becad.default\prefs.js
Found : user_pref("browser.startup.homepage", "hxxp://www.searchnu.com/410");
Found : user_pref("browser.search.selectedEngine", "Search Results");
Found : user_pref("browser.search.defaultenginename", "Search Results");
Found : user_pref("browser.search.order.1", "Search Results");
Found : user_pref("keyword.URL", "hxxp://dts.search-results.com/sr?src=ffb&appid=0&systemid=410&sr=0&q=");
-\\ Google Chrome v [Unable to get version]
File : C:\Users\GGaus\AppData\Local\Google\Chrome\User Data\Default\Preferences
[OK] File is clean.
File : C:\Users\r99\AppData\Local\Google\Chrome\User Data\Default\Preferences
Found [l.8] : homepage = "hxxp://www.searchnu.com/410",
Found [l.12] : urls_to_restore_on_startup = [ "hxxp://www.searchnu.com/410", "hxxp://www.google.com/" ]
Found [l.46] : search_url = "hxxp://dts.search-results.com/sr?src=crb&appid=0&systemid=410&sr=0&q={searchTerms}",
Found [l.1328] : homepage = "hxxp://www.searchnu.com/410",
Found [l.1600] : urls_to_restore_on_startup = [ "hxxp://www.searchnu.com/410", "hxxp://www.google.com/" ]
*************************
AdwCleaner[R2].txt - [7755 octets] - [30/09/2012 18:49:37]
AdwCleaner[R1].txt - [7870 octets] - [30/09/2012 18:47:39]
########## EOF - \AdwCleaner[R2].txt - [7875 octets] ##########

Here is the final log:


aswMBR version 0.9.9.1665 Copyright(c) 2011 AVAST Software
Run date: 2012-09-30 18:44:10
-----------------------------
18:44:10.051 OS Version: Windows x64 6.1.7600
18:44:10.051 Number of processors: 2 586 0x2505
18:44:10.052 ComputerName: GGAUS-HP UserName: r99
18:44:11.182 Initialize success
18:44:12.205 AVAST engine defs: 12092901
18:44:32.472 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
18:44:32.476 Disk 0 Vendor: WDC_WD32 02.0 Size: 305245MB BusType: 3
18:44:32.497 Disk 0 MBR read successfully
18:44:32.502 Disk 0 MBR scan
18:44:32.508 Disk 0 unknown MBR code
18:44:32.514 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 199 MB offset 2048
18:44:32.535 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 288031 MB offset 409600
18:44:32.566 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 16910 MB offset 590297088
18:44:32.586 Disk 0 Partition 4 00 0C FAT32 LBA MSDOS5.0 103 MB offset 624928768
18:44:32.625 Disk 0 scanning C:\Windows\system32\drivers
18:44:48.148 Service scanning
18:45:36.726 Modules scanning
18:45:36.743 Disk 0 trace - called modules:
18:45:37.093 ntoskrnl.exe CLASSPNP.SYS disk.sys iaStor.sys hal.dll
18:45:37.103 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa80063bd5e0]
18:45:37.113 3 CLASSPNP.SYS[fffff88001b0843f] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8006222050]
18:45:38.057 AVAST engine scan C:\Windows
18:45:40.368 AVAST engine scan C:\Windows\system32
18:48:18.897 AVAST engine scan C:\Windows\system32\drivers
18:48:30.163 AVAST engine scan C:\Users\r99
18:49:27.994 AVAST engine scan C:\ProgramData
18:51:23.988 Scan finished successfully
18:51:49.948 Disk 0 MBR has been saved successfully to "C:\Users\GGaus\Desktop\MBR.dat"
18:51:49.956 The log file has been saved successfully to "C:\Users\GGaus\Desktop\aswMBR.txt"

I hope that is all the info needed, please let me know if I have missed anything imp.. Thanks again!!

Link to post
Share on other sites

Step 1

  1. Please re-run AdwCleaner
  2. Click on Delete button.
  3. Confirm each time with OK.
  4. Your computer will be rebooted automatically. A text file will open after the restart. Please post the content of that logfile in your reply.

Note: You can find the logfile at C:\AdwCleaner[sn].txt as well - n is the order number.

Step 2

Download TFC to your desktop

  • Open the file and close any other windows.
  • It will close all programs itself when run, make sure to let it run uninterrupted.
  • Click the Start button to begin the process. The program should not take long to finish its job
  • Once its finished it should reboot your machine, if not, do this yourself to ensure a complete clean

Link to post
Share on other sites

Maniac, thanks so much for taking the time to help with this..

Here is the AdCleaner log post delete:


# AdwCleaner v2.003 - Logfile created 09/30/2012 at 20:58:29
# Updated 23/09/2012 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : r99 - GGAUS-HP
# Boot Mode : Normal
# Running from : C:\Users\GGaus\Desktop\adwcleaner.exe
# Option [Delete]

***** [Services] *****

***** [Files / Folders] *****
File Deleted : C:\Program Files (x86)\Mozilla FireFox\searchplugins\Search_Results.xml
File Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eBay.lnk
File Deleted : C:\Users\Public\Desktop\eBay.lnk
Folder Deleted : C:\ProgramData\Anti-phishing Domain Advisor
Folder Deleted : C:\ProgramData\boost_interprocess
Folder Deleted : C:\Users\GGaus\AppData\Local\Temp\AskSearch
Folder Deleted : C:\Users\GGaus\AppData\LocalLow\boost_interprocess
Folder Deleted : C:\Users\r99\AppData\Roaming\OpenCandy
***** [Registry] *****
Key Deleted : HKCU\Software\DataMngr
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\incredibar.com
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\incredibar.com
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{CFDAFE39-20CE-451D-BD45-A37452F39CF0}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\YontooIEClient.DLL
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{D372567D-67C1-4B29-B3F0-159B52B3E967}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\incredibar.com
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\incredibar.com
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{7E84186E-B5DE-4226-8A66-6E49C6B511B4}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{99066096-8989-4612-841F-621A01D54AD7}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5}
Key Deleted : HKLM\SOFTWARE\DataMngr
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827}
Key Deleted : HKU\S-1-5-21-2734991292-1067806275-2596081165-1000\Software\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827}
***** [Internet Browsers] *****
-\\ Internet Explorer v8.0.7601.17514
Restored : [HKCU\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKCU\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKU\S-1-5-21-2734991292-1067806275-2596081165-1000\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Replaced : [HKCU\Software\Microsoft\Internet Explorer\Main - Start Page] = hxxp://www.searchnu.com/410 --> hxxp://www.google.com
-\\ Google Chrome v [Unable to get version]
File : C:\Users\GGaus\AppData\Local\Google\Chrome\User Data\Default\Preferences
[OK] File is clean.
File : C:\Users\r99\AppData\Local\Google\Chrome\User Data\Default\Preferences
Deleted [l.8] : homepage = "hxxp://www.searchnu.com/410",
Deleted [l.12] : urls_to_restore_on_startup = [ "hxxp://www.searchnu.com/410", "hxxp://www.google.com/" ]
Deleted [l.46] : search_url = "hxxp://dts.search-results.com/sr?src=crb&appid=0&systemid=410&sr=0&q={searchTerms}",
Deleted [l.1328] : homepage = "hxxp://www.searchnu.com/410",
Deleted [l.1600] : urls_to_restore_on_startup = [ "hxxp://www.searchnu.com/410", "hxxp://www.google.com/" ]
*************************
AdwCleaner[R4].txt - [4239 octets] - [30/09/2012 20:58:08]
AdwCleaner[S1].txt - [4879 octets] - [30/09/2012 20:58:29]
AdwCleaner[R3].txt - [7990 octets] - [30/09/2012 18:52:57]
AdwCleaner[R1].txt - [7870 octets] - [30/09/2012 18:47:39]
AdwCleaner[R2].txt - [7930 octets] - [30/09/2012 18:49:37]
########## EOF - \AdwCleaner[S1].txt - [5119 octets] ##########

I am downloading TFC soon as I finish this post and begin Step2.

Will be back soon once the reports done..

Link to post
Share on other sites

Hmm, ok run TFC and it emptied all the cache and temp files and restarted itself too.. However after restart I opened g.chrome and tried to load a webpage and no luck :(

Same error 105... I really hope this malware hasnt infected my network or wifi router, as it prevents my other internet devices from connecting too and I have to reboot the router to get the net working again...

Link to post
Share on other sites

Hey Maniac,

My doubts turned out right, this damn malware had infected my router somehow, I have no clue how but it did.

The reason I figured it out was cos all the devices in my network were affected.

So after clearing up the infected pc which was doing the redirects. I did a firmware reninstall and update in my router and voila it works fine now.

So far so good, will test it for this week for any unusual behaviour though.

Thanks again for responding and following up on this.

Link to post
Share on other sites

  • Download OTC to your desktop and run it
  • Click Yes to beginning the Cleanup process and remove these components, including this application.
  • You will be asked to reboot the machine to finish the Cleanup process. Choose Yes.

Some malware prevention tips:

users.telenet.be/bluepatchy/miekiemoes/prevention.html

Safe surfing!

Link to post
Share on other sites

Glad we could help. :)

If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
 Share

  • Recently Browsing   0 members

    No registered users viewing this page.

Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.