Jump to content

Backdoor Rootkit Browser Re-Direct Help


Recommended Posts

I have been reading the forums and trying to fix this on my own but it looks like I need help. I have tried running mbam and it finds "c:\Windows\svchost.exe (Trojan.Agent)" and then restarts and finds it again.

TDSSKiller also sometimes finds something. The most recent scan found this: ( Rootkit.Win32.BackBoot.gen )

I am going to copy these logs as well as the DDS log. I tried running ComboFix and received the blue screen of death. I will copy those errors in this post as well.

Thanks in advance for your help!

Malwarebytes' Anti-Malware 1.51.2.1300

www.malwarebytes.org

Database version: 7851

Windows 6.1.7600

Internet Explorer 9.0.8112.16421

10/5/2011 12:03:24 AM

mbam-log-2011-10-05 (00-03-24).txt

Scan type: Quick scan

Objects scanned: 188503

Time elapsed: 5 minute(s), 23 second(s)

Memory Processes Infected: 0

Memory Modules Infected: 0

Registry Keys Infected: 0

Registry Values Infected: 0

Registry Data Items Infected: 0

Folders Infected: 0

Files Infected: 1

Memory Processes Infected:

(No malicious items detected)

Memory Modules Infected:

(No malicious items detected)

Registry Keys Infected:

(No malicious items detected)

Registry Values Infected:

(No malicious items detected)

Registry Data Items Infected:

(No malicious items detected)

Folders Infected:

(No malicious items detected)

Files Infected:

c:\Windows\svchost.exe (Trojan.Agent) -> Quarantined and deleted successfully.

.

DDS (Ver_2011-08-26.01) - NTFSAMD64

Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 1.6.0_26

Run by Michael Kenny at 0:11:57 on 2011-10-05

Microsoft Windows 7 Home Premium 6.1.7600.0.1252.1.1033.18.4026.2378 [GMT -4:00]

.

AV: Microsoft Security Essentials *Disabled/Updated* {108DAC43-C256-20B7-BB05-914135DA5160}

SP: Microsoft Security Essentials *Disabled/Updated* {ABEC4DA7-E46C-2F39-81B5-AA334E5D1BDD}

SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

.

============== Running Processes ===============

.

C:\Windows\system32\wininit.exe

C:\Windows\system32\lsm.exe

C:\Windows\system32\svchost.exe -k DcomLaunch

C:\Windows\system32\svchost.exe -k RPCSS

c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe

C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\system32\svchost.exe -k LocalService

C:\Windows\system32\svchost.exe -k NetworkService

C:\Windows\system32\WLANExt.exe

C:\Windows\System32\spoolsv.exe

C:\Windows\system32\conhost.exe

C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSVC.exe

C:\Windows\SysWOW64\svchost.exe -k Akamai

C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

C:\Program Files (x86)\Bonjour\mDNSResponder.exe

C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe

C:\ProgramData\EPSON\EPW!3 SSRP\E_S40STB.EXE

C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.EXE

C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation

C:\Program Files (x86)\Acer\Registration\GregHSRW.exe

C:\Program Files (x86)\Hotspot Shield\bin\openvpnas.exe

C:\Program Files (x86)\Hotspot Shield\HssWPR\hsssrv.exe

C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe

C:\Windows\system32\taskhost.exe

C:\Program Files (x86)\Common Files\Mediafour\M4LIC.EXE

C:\Program Files\Mediafour\MacDrive 8\MacDrive8Service.exe

C:\Program Files\Microsoft LifeCam\MSCamS64.exe

C:\Windows\System32\svchost.exe -k HPZ12

C:\Windows\System32\svchost.exe -k HPZ12

C:\Windows\system32\svchost.exe -k imgsvc

C:\Program Files (x86)\TeamViewer\Version6\TeamViewer_Service.exe

C:\Program Files\Acer\Acer Updater\UpdaterService.exe

C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe

C:\Windows\system32\taskeng.exe

C:\Windows\system32\Dwm.exe

C:\Windows\Explorer.EXE

C:\Program Files (x86)\IObit\Game Booster\GameBox.exe

C:\Windows\System32\WerFault.exe

C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe

C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe

C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

C:\Program Files\Microsoft Security Client\msseces.exe

C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe

C:\Windows\System32\igfxtray.exe

C:\Windows\System32\hkcmd.exe

C:\Windows\System32\igfxpers.exe

C:\Windows\system32\igfxsrvc.exe

C:\Program Files\Synaptics\SynTP\SynTPHelper.exe

C:\Program Files (x86)\Google\Google Talk\googletalk.exe

C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe

C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

C:\Windows\System32\vds.exe

C:\Program Files (x86)\Hotspot Shield\bin\openvpntray.exe

C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted

C:\Windows\system32\igfxext.exe

C:\Windows\system32\wbem\unsecapp.exe

C:\Windows\system32\wbem\wmiprvse.exe

C:\Windows\System32\svchost.exe -k LocalServicePeerNet

C:\Program Files\Acer\Acer ePower Management\ePowerEvent.exe

C:\Program Files\Windows Media Player\wmpnetwk.exe

C:\Windows\system32\taskmgr.exe

C:\Program Files (x86)\Mozilla Firefox\firefox.exe

C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe

C:\Windows\system32\svchost.exe -k WindowsMobile

C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe

-netsvcs

C:\Windows\system32\conhost.exe

C:\Windows\system32\notepad.exe

C:\Windows\system32\wuauclt.exe

C:\Windows\servicing\TrustedInstaller.exe

C:\Windows\SysWOW64\NOTEPAD.EXE

C:\PROGRA~2\Java\jre6\bin\jp2launcher.exe

C:\Program Files (x86)\Java\jre6\bin\java.exe

C:\Windows\system32\conhost.exe

C:\Windows\system32\prevhost.exe

C:\Windows\system32\NOTEPAD.EXE

C:\Windows\SysWOW64\cmd.exe

C:\Windows\system32\conhost.exe

C:\Windows\SysWOW64\cscript.exe

C:\Windows\system32\wbem\wmiprvse.exe

.

============== Pseudo HJT Report ===============

.

uStart Page = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0409&m=aspire_5732z&r=27360510a215l0434z1i5t5482x756

mStart Page = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0409&m=aspire_5732z&r=27360510a215l0434z1i5t5482x756

uInternet Settings,ProxyOverride = local;192.168.*.*;*.local

uInternet Settings,ProxyServer = 200.196.234.26:8080

BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

BHO: DivX Plus Web Player HTML5 <video>: {326e768d-4182-46fd-9c16-1449a49795f4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll

BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - C:\Program Files (x86)\AVG\AVG9\avgssie.dll

BHO: DivX HiQ: {593ddec6-7468-4cdd-90e1-42dadaa222e9} - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll

BHO: {5C255C8A-E604-49b4-9D64-90988571CECB} - No File

BHO: PodcastBHO Class: {65134fdf-f8a5-4b3d-91d9-cdf273cfd578} - C:\Program Files (x86)\Common Files\doubleTwist\IEPodcastPlugin.dll

BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL

BHO: Windows Live Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll

BHO: Adobe PDF Conversion Toolbar Helper: {ae7cd045-e861-484f-8273-0445ee161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll

BHO: Skype Plug-In: {ae805869-2e5c-4ed4-8f7b-f1f7851a4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

BHO: Office Document Cache Handler: {b4f3a835-0e21-4959-ba22-42b3008e02ff} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL

BHO: Java Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll

BHO: SmartSelect Class: {f4971ee7-daa0-4053-9964-665d8ee6a077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll

TB: Adobe PDF: {47833539-d0c5-4125-9fa8-0819e2eaac93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll

TB: Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll

{555d4d79-4bd2-4094-a395-cfc534424a05}

EB: GoogleBar: {950dd287-7c12-4d2b-8a9a-729ab0553e65} - C:\Users\Michael Kenny\AppData\Roaming\Google.com\Google Bar\adxloader.dll

mRun: [googletalk] C:\Program Files (x86)\Google\Google Talk\googletalk.exe /autostart

mRun: [switchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe

mRun: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray

mRun: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

mRun: [Malwarebytes' Anti-Malware (reboot)] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript

mRunOnce: [AvgUninstallURL] cmd.exe /c start http://www.avg.com/ww.special-uninstallation-feedback-app?lic=OQBBAFYARgBSAEUARQAtAFYATgBKADMAMgAtAEcAMwBMAEEAQQAtAEEANAA4ADkAUgAtADkAVQBKAEsARgAtAEUASwBLADMAWAA"&"inst=NwA3AC0ANAAyADUANwAyADIANwA1ADYALQBTAFQAMQArADIALQBGAFAAOQArADYALQBUAEIAOQArADIALQBGAEwAKwA5AC0AWABPADMANgArADEALQBGADkATQA3AEMAKwA1AC0ARgA5AE0AMQAwAEIAKwAxAC0AWABPADkAKwAxAC0ARgA5AE0AMgArADEA"&"prod=90"&"ver=9.0.894

dRun: [Google Update] C:\Users\Michael Kenny\AppData\Local\Google\GoogleUpdate\Googleupdt32.exe

mPolicies-system: ConsentPromptBehaviorAdmin = 0 (0x0)

mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)

mPolicies-system: EnableLUA = 0 (0x0)

mPolicies-system: EnableUIADesktopToggle = 0 (0x0)

mPolicies-system: PromptOnSecureDesktop = 0 (0x0)

IE: {CF819DA3-9882-4944-ADF5-6EF17ECF3C6E} - "C:\Program Files (x86)\Fiddler2\Fiddler.exe"

IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll

IE: {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - {2EAF5BB0-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll

IE: {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - {2EAF5BB0-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll

IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll

IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

DPF: {4F29DE54-5EB7-4D76-B610-A86B5CD2A234} - hxxp://archives.gametap.com/static/cab_headless/GameTapWebPlayer.cab

DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab

DPF: {C4847596-972C-11D0-9567-00A0C9273C2A} - hxxp://crystalview.ccaglobal.com/viewer/activeXViewer/activexviewer.cab

DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab

DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab

DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab

TCP: DhcpNameServer = 65.32.5.111 65.32.5.112

TCP: Interfaces\{221ADA7F-B88A-4104-98DB-488C1177B8B7} : NameServer = 10.4.56.1

TCP: Interfaces\{7E79E597-80CE-49A1-859F-AB04D843E9DB} : DhcpNameServer = 65.32.5.111 65.32.5.112

TCP: Interfaces\{7E79E597-80CE-49A1-859F-AB04D843E9DB}\0527F635F657273656 : DhcpNameServer = 64.89.70.2 4.2.2.2 64.89.74.2

TCP: Interfaces\{7E79E597-80CE-49A1-859F-AB04D843E9DB}\0527F635F65727365613 : DhcpNameServer = 192.168.38.2 64.89.70.2

TCP: Interfaces\{7E79E597-80CE-49A1-859F-AB04D843E9DB}\2656C6B696E6534376 : DhcpNameServer = 65.32.5.111 65.32.5.112

TCP: Interfaces\{7E79E597-80CE-49A1-859F-AB04D843E9DB}\35D434443374E4D2449687F6E6 : DhcpNameServer = 192.168.1.1

TCP: Interfaces\{7E79E597-80CE-49A1-859F-AB04D843E9DB}\45279626563616 : DhcpNameServer = 192.168.1.1

TCP: Interfaces\{7E79E597-80CE-49A1-859F-AB04D843E9DB}\C696E6B6379737 : DhcpNameServer = 66.192.125.46 71.244.114.151

Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL

Handler: cdo - {CD00020A-8B95-11D1-82DB-00C04FB1625D} - C:\Program Files (x86)\Common Files\microsoft shared\Web Folders\PKMCDO.DLL

Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL

SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL

BHO-X64: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

BHO-X64: AcroIEHelperStub - No File

BHO-X64: DivX Plus Web Player HTML5 <video>: {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll

BHO-X64: Increase performance and video formats for your HTML5 <video> - No File

BHO-X64: AVG Safe Search: {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files (x86)\AVG\AVG9\avgssie.dll

BHO-X64: WormRadar.com IESiteBlocker.NavFilter - No File

BHO-X64: DivX HiQ: {593DDEC6-7468-4cdd-90E1-42DADAA222E9} - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll

BHO-X64: Use the DivX Plus Web Player to watch web videos with less interruptions and smoother playback on supported sites - No File

BHO-X64: {5C255C8A-E604-49b4-9D64-90988571CECB} - No File

BHO-X64: PodcastBHO Class: {65134FDF-F8A5-4B3D-91D9-CDF273CFD578} - C:\Program Files (x86)\Common Files\doubleTwist\IEPodcastPlugin.dll

BHO-X64: dTPodcastBHO - No File

BHO-X64: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL

BHO-X64: Windows Live Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

BHO-X64: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll

BHO-X64: Adobe PDF Conversion Toolbar Helper: {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll

BHO-X64: Skype Plug-In: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

BHO-X64: SkypeIEPluginBHO - No File

BHO-X64: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL

BHO-X64: URLRedirectionBHO - No File

BHO-X64: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll

BHO-X64: SmartSelect Class: {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll

BHO-X64: SmartSelect - No File

TB-X64: Adobe PDF: {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll

TB-X64: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll

EB-X64: {555D4D79-4BD2-4094-A395-CFC534424A05} - No File

EB-X64: {950DD287-7C12-4D2B-8A9A-729AB0553E65} - No File

mRun-x64: [googletalk] C:\Program Files (x86)\Google\Google Talk\googletalk.exe /autostart

mRun-x64: [switchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe

mRun-x64: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray

mRun-x64: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

mRun-x64: [Malwarebytes' Anti-Malware (reboot)] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript

mRunOnce-x64: [AvgUninstallURL] cmd.exe /c start http://www.avg.com/ww.special-uninstallation-feedback-app?lic=OQBBAFYARgBSAEUARQAtAFYATgBKADMAMgAtAEcAMwBMAEEAQQAtAEEANAA4ADkAUgAtADkAVQBKAEsARgAtAEUASwBLADMAWAA"&"inst=NwA3AC0ANAAyADUANwAyADIANwA1ADYALQBTAFQAMQArADIALQBGAFAAOQArADYALQBUAEIAOQArADIALQBGAEwAKwA5AC0AWABPADMANgArADEALQBGADkATQA3AEMAKwA1AC0ARgA5AE0AMQAwAEIAKwAxAC0AWABPADkAKwAxAC0ARgA5AE0AMgArADEA"&"prod=90"&"ver=9.0.894

IE-X64: {CF819DA3-9882-4944-ADF5-6EF17ECF3C6E} - "C:\Program Files (x86)\Fiddler2\Fiddler.exe"

SEH-X64: Groove GFS Stub Execution Hook: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL

.

================= FIREFOX ===================

.

FF - ProfilePath - C:\Users\Michael Kenny\AppData\Roaming\Mozilla\Firefox\Profiles\6nucs340.mk\

FF - prefs.js: network.proxy.type - 0

FF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL

FF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL

FF - plugin: C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll

FF - plugin: C:\Program Files (x86)\Common Files\doubleTwist\NPPodcast.dll

FF - plugin: C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll

FF - plugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll

FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.65\npGoogleUpdate3.dll

FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.69\npGoogleUpdate3.dll

FF - plugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll

FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\4.0.60531.0\npctrlui.dll

FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npContribute.dll

FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npCouponPrinter.dll

FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll

FF - plugin: C:\Program Files (x86)\TVUPlayer\npTVUAx.dll

FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

FF - plugin: C:\ProgramData\NexonUS\NGM\npNxGameUS.dll

FF - plugin: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll

FF - plugin: C:\Users\Michael Kenny\AppData\Local\Google\Update\1.3.21.69\npGoogleUpdate3.dll

FF - plugin: C:\Users\Michael Kenny\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll

FF - plugin: C:\Users\Michael Kenny\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll

FF - plugin: C:\Windows\system32\Wat\npWatWeb.dll

FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll

.

============= SERVICES / DRIVERS ===============

.

R0 MDFSYSNT;MacDrive file system driver;C:\Windows\system32\drivers\MDFSYSNT.sys --> C:\Windows\system32\drivers\MDFSYSNT.sys [?]

R0 MDPMGRNT;MacDrive Partition Driver;C:\Windows\system32\DRIVERS\MDPMGRNT.SYS --> C:\Windows\system32\DRIVERS\MDPMGRNT.SYS [?]

R0 PxHlpa64;PxHlpa64;C:\Windows\system32\Drivers\PxHlpa64.sys --> C:\Windows\system32\Drivers\PxHlpa64.sys [?]

R1 CBDisk;CBDisk;\??\C:\Windows\system32\drivers\CBDisk.sys --> C:\Windows\system32\drivers\CBDisk.sys [?]

R1 MpFilter;Microsoft Malware Protection Driver;C:\Windows\system32\DRIVERS\MpFilter.sys --> C:\Windows\system32\DRIVERS\MpFilter.sys [?]

R1 mwlPSDFilter;mwlPSDFilter;C:\Windows\system32\DRIVERS\mwlPSDFilter.sys --> C:\Windows\system32\DRIVERS\mwlPSDFilter.sys [?]

R1 mwlPSDNServ;mwlPSDNServ;C:\Windows\system32\DRIVERS\mwlPSDNServ.sys --> C:\Windows\system32\DRIVERS\mwlPSDNServ.sys [?]

R1 mwlPSDVDisk;mwlPSDVDisk;C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys --> C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys [?]

R1 SASDIFSV;SASDIFSV;C:\Program Files\SUPERAntiSpyware\sasdifsv64.sys [2011-7-12 14928]

R1 SASKUTIL;SASKUTIL;C:\Program Files\SUPERAntiSpyware\saskutil64.sys [2011-7-12 12368]

R1 vwififlt;Virtual WiFi Filter Driver;C:\Windows\system32\DRIVERS\vwififlt.sys --> C:\Windows\system32\DRIVERS\vwififlt.sys [?]

R2 Akamai;Akamai NetSession Interface;C:\Windows\System32\svchost.exe -k Akamai [2009-7-13 20992]

R2 ePowerSvc;Acer ePower Service;C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe [2009-11-6 844320]

R2 Greg_Service;GRegService;C:\Program Files (x86)\Acer\Registration\GregHSRW.exe [2009-8-28 1150496]

R2 hshld;Hotspot Shield Service;C:\Program Files (x86)\Hotspot Shield\bin\openvpnas.exe [2011-7-1 298824]

R2 HssWd;Hotspot Shield Monitoring Service;C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe -product HSS --> C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe -product HSS [?]

R2 iPodDrv;iPodDrv;\??\C:\Windows\system32\drivers\iPodDrv.sys --> C:\Windows\system32\drivers\iPodDrv.sys [?]

R2 M4LIC;Mediafour M4LIC service;C:\Program Files (x86)\Common Files\Mediafour\M4LIC.EXE [2010-7-20 205312]

R2 MacDrive8Service;MacDrive 8 service;C:\Program Files\Mediafour\MacDrive 8\MacDrive8Service.exe [2010-10-8 149504]

R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2011-7-31 366152]

R2 TeamViewer6;TeamViewer 6;C:\Program Files (x86)\TeamViewer\Version6\TeamViewer_Service.exe [2011-9-14 2358656]

R2 Updater Service;Updater Service;C:\Program Files\Acer\Acer Updater\UpdaterService.exe [2009-11-6 240160]

R3 L1C;NDIS Miniport Driver for Atheros AR8131/AR8132 PCI-E Ethernet Controller (NDIS 6.20);C:\Windows\system32\DRIVERS\L1C62x64.sys --> C:\Windows\system32\DRIVERS\L1C62x64.sys [?]

R3 MBAMProtector;MBAMProtector;\??\C:\Windows\system32\drivers\mbam.sys --> C:\Windows\system32\drivers\mbam.sys [?]

R3 WSDPrintDevice;WSD Print Support via UMB;C:\Windows\system32\DRIVERS\WSDPrint.sys --> C:\Windows\system32\DRIVERS\WSDPrint.sys [?]

R3 WSDScan;WSD Scan Support via UMB;C:\Windows\system32\DRIVERS\WSDScan.sys --> C:\Windows\system32\DRIVERS\WSDScan.sys [?]

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]

S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]

S2 gupdate;Google Update Service (gupdate);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-5-9 135664]

S3 BTCFilterService;USB Networking Driver Filter Service;C:\Windows\system32\DRIVERS\motfilt.sys --> C:\Windows\system32\DRIVERS\motfilt.sys [?]

S3 gupdatem;Google Update Service (gupdatem);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-5-9 135664]

S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2011-6-12 31125880]

S3 motandroidusb;Mot ADB Interface Driver;C:\Windows\system32\Drivers\motoandroid.sys --> C:\Windows\system32\Drivers\motoandroid.sys [?]

S3 motccgp;Motorola USB Composite Device Driver;C:\Windows\system32\DRIVERS\motccgp.sys --> C:\Windows\system32\DRIVERS\motccgp.sys [?]

S3 motccgpfl;MotCcgpFlService;C:\Windows\system32\DRIVERS\motccgpfl.sys --> C:\Windows\system32\DRIVERS\motccgpfl.sys [?]

S3 Motousbnet;Motorola USB Networking Driver Service;C:\Windows\system32\DRIVERS\Motousbnet.sys --> C:\Windows\system32\DRIVERS\Motousbnet.sys [?]

S3 motusbdevice;Motorola USB Dev Driver;C:\Windows\system32\DRIVERS\motusbdevice.sys --> C:\Windows\system32\DRIVERS\motusbdevice.sys [?]

S3 MpNWMon;Microsoft Malware Protection Network Driver;C:\Windows\system32\DRIVERS\MpNWMon.sys --> C:\Windows\system32\DRIVERS\MpNWMon.sys [?]

S3 MWLService;MyWinLocker Service;C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\MWLService.exe [2009-9-10 305448]

S3 NisDrv;Microsoft Network Inspection System;C:\Windows\system32\DRIVERS\NisDrvWFP.sys --> C:\Windows\system32\DRIVERS\NisDrvWFP.sys [?]

S3 NisSrv;Microsoft Network Inspection;C:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe [2011-4-27 288272]

S3 npggsvc;nProtect GameGuard Service;C:\Windows\system32\GameMon.des -service --> C:\Windows\system32\GameMon.des -service [?]

S3 NTIBackupSvc;NTI Backup Now 5 Backup Service;C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe [2009-6-17 50432]

S3 osppsvc;Office Software Protection Platform;C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-1-9 4925184]

S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;C:\Windows\System32\drivers\RtsUStor.sys [2009-11-6 225280]

S3 SwitchBoard;Adobe SwitchBoard;C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-2-19 517096]

S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\system32\Drivers\usbaapl64.sys --> C:\Windows\system32\Drivers\usbaapl64.sys [?]

S3 VX6000;Microsoft LifeCam VX-6000;C:\Windows\system32\DRIVERS\VX6000Xp.sys --> C:\Windows\system32\DRIVERS\VX6000Xp.sys [?]

S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\system32\Wat\WatAdminSvc.exe --> C:\Windows\system32\Wat\WatAdminSvc.exe [?]

S4 MotoHelper;MotoHelper Service;C:\Program Files (x86)\Motorola\MotoHelper\MotoHelperService.exe [2010-12-2 218432]

S4 NTISchedulerSvc;NTI Backup Now 5 Scheduler Service;C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [2009-6-17 144640]

.

=============== File Associations ===============

.

inffile=%SystemRoot%\SysWow64\NOTEPAD.EXE %1

VBEFile=%SystemRoot%\SysWow64\WScript.exe "%1" %*

VBSFile=%SystemRoot%\SysWow64\WScript.exe "%1" %*

.

=============== Created Last 30 ================

.

2011-10-05 04:04:59 69000 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{375FD66C-013B-47E0-B152-1ED433F065E3}\offreg.dll

2011-10-05 04:04:51 9049936 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{375FD66C-013B-47E0-B152-1ED433F065E3}\mpengine.dll

2011-10-05 03:57:43 41272 ----a-w- C:\Windows\SysWow64\drivers\mbamswissarmy.sys

2011-10-05 03:33:29 -------- d-s---w- C:\ComboFix

2011-10-05 01:39:33 20480 ------w- C:\Windows\svchost.exe

2011-10-02 20:26:40 9049936 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll

2011-10-02 01:17:53 -------- d-----w- C:\Users\Michael Kenny\AppData\Local\Plex Media Server

2011-10-02 01:16:34 -------- d-----w- C:\Program Files (x86)\Plex

2011-10-02 01:15:06 -------- d-----w- C:\Program Files\Bonjour

2011-10-02 01:15:06 -------- d-----w- C:\Program Files (x86)\Bonjour

2011-09-30 15:16:01 9049936 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{D6D02094-8969-4A24-8F59-B3F33995018B}\mpengine.dll

2011-09-29 00:40:21 -------- d-sh--w- C:\Windows\SysWow64\%APPDATA%

2011-09-28 15:01:03 -------- d-----w- C:\Program Files (x86)\PC Tools Security

2011-09-28 14:53:11 -------- d-----w- C:\ProgramData\PC Tools

2011-09-27 01:34:35 -------- d-----w- C:\$RECYCLE.BIN

2011-09-27 01:13:27 98816 ----a-w- C:\Windows\sed.exe

2011-09-27 01:13:27 518144 ----a-w- C:\Windows\SWREG.exe

2011-09-27 01:13:27 256000 ----a-w- C:\Windows\PEV.exe

2011-09-27 01:13:27 208896 ----a-w- C:\Windows\MBR.exe

2011-09-27 00:05:13 -------- d-----w- C:\Users\Michael Kenny\AppData\Local\TVU Networks

2011-09-27 00:05:13 -------- d-----w- C:\ProgramData\TVU Networks

2011-09-27 00:03:39 -------- d-----w- C:\Program Files (x86)\TVUPlayer

2011-09-11 20:56:10 -------- d-----w- C:\Joymax

2011-09-08 03:49:35 601424 ------w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{8BCB0471-0151-45CE-A9EA-269B72F6C444}\gapaengine.dll

.

==================== Find3M ====================

.

2011-08-31 21:00:50 25416 ----a-w- C:\Windows\System32\drivers\mbam.sys

2011-08-12 03:10:48 404640 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl

2011-07-22 05:42:23 2303488 ----a-w- C:\Windows\System32\jscript9.dll

2011-07-22 05:36:16 1389056 ----a-w- C:\Windows\System32\wininet.dll

2011-07-22 05:32:40 2382848 ----a-w- C:\Windows\System32\mshtml.tlb

2011-07-22 02:54:43 1797632 ----a-w- C:\Windows\SysWow64\jscript9.dll

2011-07-22 02:48:26 1126912 ----a-w- C:\Windows\SysWow64\wininet.dll

2011-07-22 02:44:36 2382848 ----a-w- C:\Windows\SysWow64\mshtml.tlb

2011-07-16 05:26:54 362496 ----a-w- C:\Windows\System32\wow64win.dll

2011-07-16 05:26:53 243200 ----a-w- C:\Windows\System32\wow64.dll

2011-07-16 05:26:53 13312 ----a-w- C:\Windows\System32\wow64cpu.dll

2011-07-16 05:26:18 214528 ----a-w- C:\Windows\System32\winsrv.dll

2011-07-16 05:24:09 16384 ----a-w- C:\Windows\System32\ntvdm64.dll

2011-07-16 05:21:32 422400 ----a-w- C:\Windows\System32\KernelBase.dll

2011-07-16 05:17:46 338432 ----a-w- C:\Windows\System32\conhost.exe

2011-07-16 04:36:09 14336 ----a-w- C:\Windows\SysWow64\ntvdm64.dll

2011-07-16 04:32:14 44032 ----a-w- C:\Windows\apppatch\acwow64.dll

2011-07-16 04:31:50 25600 ----a-w- C:\Windows\SysWow64\setup16.exe

2011-07-16 04:30:29 5120 ----a-w- C:\Windows\SysWow64\wow32.dll

2011-07-16 04:30:27 272384 ----a-w- C:\Windows\SysWow64\KernelBase.dll

2011-07-16 02:26:12 7680 ----a-w- C:\Windows\SysWow64\instnm.exe

2011-07-16 02:26:11 2048 ----a-w- C:\Windows\SysWow64\user.exe

2011-07-16 02:21:47 6144 ---ha-w- C:\Windows\SysWow64\api-ms-win-security-base-l1-1-0.dll

2011-07-16 02:21:47 4608 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll

2011-07-16 02:21:47 3584 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll

2011-07-16 02:21:47 3072 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-util-l1-1-0.dll

2011-07-09 05:14:10 2048 ----a-w- C:\Windows\System32\tzres.dll

2011-07-09 04:30:52 2048 ----a-w- C:\Windows\SysWow64\tzres.dll

2011-07-09 02:44:55 287744 ----a-w- C:\Windows\System32\drivers\mrxsmb10.sys

.

============= FINISH: 0:15:14.05 ===============

22:45:50.0105 5744 TDSS rootkit removing tool 2.6.4.0 Oct 3 2011 17:37:01

22:45:51.0346 5744 ============================================================

22:45:51.0346 5744 Current date / time: 2011/10/04 22:45:51.0346

22:45:51.0346 5744 SystemInfo:

22:45:51.0346 5744

22:45:51.0346 5744 OS Version: 6.1.7600 ServicePack: 0.0

22:45:51.0346 5744 Product type: Workstation

22:45:51.0346 5744 ComputerName: ACER1

22:45:51.0347 5744 UserName: Michael Kenny

22:45:51.0347 5744 Windows directory: C:\Windows

22:45:51.0347 5744 System windows directory: C:\Windows

22:45:51.0347 5744 Running under WOW64

22:45:51.0347 5744 Processor architecture: Intel x64

22:45:51.0347 5744 Number of processors: 2

22:45:51.0347 5744 Page size: 0x1000

22:45:51.0347 5744 Boot type: Normal boot

22:45:51.0347 5744 ============================================================

22:45:52.0965 5744 Initialize success

22:45:56.0365 5940 ============================================================

22:45:56.0365 5940 Scan started

22:45:56.0365 5940 Mode: Manual;

22:45:56.0365 5940 ============================================================

22:45:59.0716 5940 1394ohci (1b00662092f9f9568b995902f0cc40d5) C:\Windows\system32\DRIVERS\1394ohci.sys

22:45:59.0721 5940 1394ohci - ok

22:45:59.0846 5940 ACPI (6f11e88748cdefd2f76aa215f97ddfe5) C:\Windows\system32\DRIVERS\ACPI.sys

22:45:59.0851 5940 ACPI - ok

22:46:00.0022 5940 AcpiPmi (63b05a0420ce4bf0e4af6dcc7cada254) C:\Windows\system32\DRIVERS\acpipmi.sys

22:46:00.0075 5940 AcpiPmi - ok

22:46:00.0374 5940 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys

22:46:00.0422 5940 adp94xx - ok

22:46:00.0579 5940 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys

22:46:00.0635 5940 adpahci - ok

22:46:00.0806 5940 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys

22:46:00.0862 5940 adpu320 - ok

22:46:01.0062 5940 AFD (6ef20ddf3172e97d69f596fb90602f29) C:\Windows\system32\drivers\afd.sys

22:46:01.0081 5940 AFD - ok

22:46:01.0185 5940 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\DRIVERS\agp440.sys

22:46:01.0199 5940 agp440 - ok

22:46:01.0849 5940 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\DRIVERS\aliide.sys

22:46:01.0915 5940 aliide - ok

22:46:02.0057 5940 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\DRIVERS\amdide.sys

22:46:02.0080 5940 amdide - ok

22:46:02.0232 5940 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys

22:46:02.0271 5940 AmdK8 - ok

22:46:02.0310 5940 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys

22:46:02.0328 5940 AmdPPM - ok

22:46:02.0436 5940 amdsata (7a4b413614c055935567cf88a9734d38) C:\Windows\system32\DRIVERS\amdsata.sys

22:46:02.0461 5940 amdsata - ok

22:46:02.0801 5940 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys

22:46:02.0835 5940 amdsbs - ok

22:46:03.0120 5940 amdxata (b4ad0cacbab298671dd6f6ef7e20679d) C:\Windows\system32\DRIVERS\amdxata.sys

22:46:03.0125 5940 amdxata - ok

22:46:03.0158 5940 AppID (42fd751b27fa0e9c69bb39f39e409594) C:\Windows\system32\drivers\appid.sys

22:46:03.0176 5940 AppID - ok

22:46:03.0331 5940 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys

22:46:03.0351 5940 arc - ok

22:46:03.0516 5940 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys

22:46:03.0543 5940 arcsas - ok

22:46:03.0603 5940 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys

22:46:03.0632 5940 AsyncMac - ok

22:46:03.0672 5940 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\DRIVERS\atapi.sys

22:46:03.0677 5940 atapi - ok

22:46:03.0792 5940 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys

22:46:03.0871 5940 b06bdrv - ok

22:46:03.0979 5940 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys

22:46:04.0080 5940 b57nd60a - ok

22:46:04.0278 5940 BCM43XX (b44879610f2dc4a046b14befa3ae72de) C:\Windows\system32\DRIVERS\bcmwl664.sys

22:46:04.0297 5940 BCM43XX - ok

22:46:04.0684 5940 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys

22:46:04.0694 5940 Beep - ok

22:46:04.0848 5940 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys

22:46:04.0856 5940 blbdrive - ok

22:46:05.0015 5940 bowser (19d20159708e152267e53b66677a4995) C:\Windows\system32\DRIVERS\bowser.sys

22:46:05.0045 5940 bowser - ok

22:46:05.0102 5940 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys

22:46:05.0125 5940 BrFiltLo - ok

22:46:05.0279 5940 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys

22:46:05.0280 5940 BrFiltUp - ok

22:46:05.0449 5940 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys

22:46:05.0470 5940 Brserid - ok

22:46:05.0507 5940 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys

22:46:05.0549 5940 BrSerWdm - ok

22:46:05.0651 5940 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys

22:46:05.0687 5940 BrUsbMdm - ok

22:46:05.0773 5940 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys

22:46:05.0803 5940 BrUsbSer - ok

22:46:05.0988 5940 BTCFilterService (ff7c57973eead140062238c5a0b7d455) C:\Windows\system32\DRIVERS\motfilt.sys

22:46:06.0035 5940 BTCFilterService - ok

22:46:06.0381 5940 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys

22:46:06.0405 5940 BTHMODEM - ok

22:46:06.0823 5940 CBDisk (b99d91e4cd9017f213645aa2e80eb425) C:\Windows\system32\drivers\CBDisk.sys

22:46:06.0859 5940 CBDisk - ok

22:46:06.0906 5940 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys

22:46:06.0930 5940 cdfs - ok

22:46:06.0964 5940 cdrom (83d2d75e1efb81b3450c18131443f7db) C:\Windows\system32\DRIVERS\cdrom.sys

22:46:06.0974 5940 cdrom - ok

22:46:07.0050 5940 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys

22:46:07.0073 5940 circlass - ok

22:46:07.0186 5940 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys

22:46:07.0253 5940 CLFS - ok

22:46:07.0484 5940 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys

22:46:07.0489 5940 CmBatt - ok

22:46:07.0520 5940 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\DRIVERS\cmdide.sys

22:46:07.0543 5940 cmdide - ok

22:46:07.0657 5940 CNG (f95fd4cb7da00ba2a63ce9f6b5c053e1) C:\Windows\system32\Drivers\cng.sys

22:46:07.0758 5940 CNG - ok

22:46:07.0933 5940 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys

22:46:07.0985 5940 Compbatt - ok

22:46:08.0125 5940 CompositeBus (f26b3a86f6fa87ca360b879581ab4123) C:\Windows\system32\DRIVERS\CompositeBus.sys

22:46:08.0149 5940 CompositeBus - ok

22:46:08.0433 5940 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys

22:46:08.0467 5940 crcdisk - ok

22:46:08.0635 5940 DfsC (9c253ce7311ca60fc11c774692a13208) C:\Windows\system32\Drivers\dfsc.sys

22:46:08.0666 5940 DfsC - ok

22:46:08.0707 5940 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys

22:46:08.0718 5940 discache - ok

22:46:08.0901 5940 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys

22:46:08.0929 5940 Disk - ok

22:46:09.0240 5940 DKbFltr (d5bcb77be83cf99f508943945d46343d) C:\Windows\SysWOW64\Drivers\DKbFltr.sys

22:46:09.0260 5940 DKbFltr - ok

22:46:09.0462 5940 Dot4 (b42ed0320c6e41102fde0005154849bb) C:\Windows\system32\DRIVERS\Dot4.sys

22:46:09.0466 5940 Dot4 - ok

22:46:09.0506 5940 Dot4Print (85135ad27e79b689335c08167d917cde) C:\Windows\system32\DRIVERS\Dot4Prt.sys

22:46:09.0540 5940 Dot4Print - ok

22:46:09.0679 5940 dot4usb (fd05a02b0370bc3000f402e543ca5814) C:\Windows\system32\DRIVERS\dot4usb.sys

22:46:09.0685 5940 dot4usb - ok

22:46:09.0817 5940 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys

22:46:09.0855 5940 drmkaud - ok

22:46:10.0158 5940 dump_wmimmc - ok

22:46:10.0347 5940 DXGKrnl (1633b9abf52784a1331476397a48cbef) C:\Windows\System32\drivers\dxgkrnl.sys

22:46:10.0377 5940 DXGKrnl - ok

22:46:10.0583 5940 EagleX64 - ok

22:46:10.0899 5940 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys

22:46:11.0025 5940 ebdrv - ok

22:46:11.0122 5940 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys

22:46:11.0132 5940 elxstor - ok

22:46:11.0325 5940 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\DRIVERS\errdev.sys

22:46:11.0351 5940 ErrDev - ok

22:46:11.0639 5940 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys

22:46:11.0704 5940 exfat - ok

22:46:11.0756 5940 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys

22:46:11.0868 5940 fastfat - ok

22:46:11.0904 5940 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys

22:46:11.0937 5940 fdc - ok

22:46:12.0005 5940 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys

22:46:12.0012 5940 FileInfo - ok

22:46:12.0076 5940 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys

22:46:12.0084 5940 Filetrace - ok

22:46:12.0206 5940 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys

22:46:12.0281 5940 flpydisk - ok

22:46:12.0322 5940 FltMgr (f7866af72abbaf84b1fa5aa195378c59) C:\Windows\system32\drivers\fltmgr.sys

22:46:12.0336 5940 FltMgr - ok

22:46:12.0434 5940 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys

22:46:12.0753 5940 FsDepends - ok

22:46:12.0817 5940 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\Windows\system32\drivers\Fs_Rec.sys

22:46:12.0847 5940 Fs_Rec - ok

22:46:13.0000 5940 fvevol (ae87ba80d0ec3b57126ed2cdc15b24ed) C:\Windows\system32\DRIVERS\fvevol.sys

22:46:13.0009 5940 fvevol - ok

22:46:13.0042 5940 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys

22:46:13.0047 5940 gagp30kx - ok

22:46:13.0137 5940 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys

22:46:13.0149 5940 GEARAspiWDM - ok

22:46:13.0358 5940 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys

22:46:13.0365 5940 hcw85cir - ok

22:46:13.0412 5940 HdAudAddService (6410f6f415b2a5a9037224c41da8bf12) C:\Windows\system32\drivers\HdAudio.sys

22:46:13.0422 5940 HdAudAddService - ok

22:46:13.0463 5940 HDAudBus (0a49913402747a0b67de940fb42cbdbb) C:\Windows\system32\DRIVERS\HDAudBus.sys

22:46:13.0465 5940 HDAudBus - ok

22:46:13.0491 5940 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys

22:46:13.0493 5940 HidBatt - ok

22:46:13.0516 5940 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys

22:46:13.0528 5940 HidBth - ok

22:46:13.0578 5940 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys

22:46:13.0580 5940 HidIr - ok

22:46:13.0609 5940 HidUsb (b3bf6b5b50006def50b66306d99fcf6f) C:\Windows\system32\DRIVERS\hidusb.sys

22:46:13.0613 5940 HidUsb - ok

22:46:13.0683 5940 HpSAMD (0886d440058f203eba0e1825e4355914) C:\Windows\system32\DRIVERS\HpSAMD.sys

22:46:13.0694 5940 HpSAMD - ok

22:46:13.0802 5940 HssDrv (a60c877e1cd3aa2e4e5ccd8af305c0f1) C:\Windows\system32\DRIVERS\HssDrv.sys

22:46:13.0811 5940 HssDrv - ok

22:46:13.0959 5940 HTTP (cee049cac4efa7f4e1e4ad014414a5d4) C:\Windows\system32\drivers\HTTP.sys

22:46:14.0003 5940 HTTP - ok

22:46:14.0089 5940 hwpolicy (f17766a19145f111856378df337a5d79) C:\Windows\system32\drivers\hwpolicy.sys

22:46:14.0190 5940 hwpolicy - ok

22:46:14.0254 5940 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys

22:46:14.0297 5940 i8042prt - ok

22:46:14.0416 5940 iaStor (be7d72fcf442c26975942007e0831241) C:\Windows\system32\DRIVERS\iaStor.sys

22:46:14.0419 5940 iaStor - ok

22:46:14.0469 5940 iaStorV (d83efb6fd45df9d55e9a1afc63640d50) C:\Windows\system32\DRIVERS\iaStorV.sys

22:46:14.0490 5940 iaStorV - ok

22:46:14.0702 5940 igfx (2d18c9e1f23970de32d78d3b1cdda0a7) C:\Windows\system32\DRIVERS\igdkmd64.sys

22:46:14.0984 5940 igfx - ok

22:46:15.0010 5940 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys

22:46:15.0026 5940 iirsp - ok

22:46:15.0180 5940 IntcAzAudAddService (88798b4381fd58fae2da07880c177c5c) C:\Windows\system32\drivers\RTKVHD64.sys

22:46:15.0235 5940 IntcAzAudAddService - ok

22:46:15.0276 5940 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\DRIVERS\intelide.sys

22:46:15.0280 5940 intelide - ok

22:46:15.0321 5940 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys

22:46:15.0322 5940 intelppm - ok

22:46:15.0366 5940 IpFilterDriver (722dd294df62483cecaae6e094b4d695) C:\Windows\system32\DRIVERS\ipfltdrv.sys

22:46:15.0379 5940 IpFilterDriver - ok

22:46:15.0394 5940 IPMIDRV (e2b4a4494db7cb9b89b55ca268c337c5) C:\Windows\system32\DRIVERS\IPMIDrv.sys

22:46:15.0417 5940 IPMIDRV - ok

22:46:15.0473 5940 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys

22:46:15.0495 5940 IPNAT - ok

22:46:15.0553 5940 iPodDrv (02def37ab75e0032c50724646f708de8) C:\Windows\system32\drivers\iPodDrv.sys

22:46:15.0584 5940 iPodDrv - ok

22:46:15.0654 5940 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys

22:46:15.0675 5940 IRENUM - ok

22:46:15.0713 5940 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\DRIVERS\isapnp.sys

22:46:15.0732 5940 isapnp - ok

22:46:15.0844 5940 iScsiPrt (fa4d2557de56d45b0a346f93564be6e1) C:\Windows\system32\DRIVERS\msiscsi.sys

22:46:15.0881 5940 iScsiPrt - ok

22:46:15.0921 5940 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys

22:46:15.0942 5940 kbdclass - ok

22:46:15.0997 5940 kbdhid (6def98f8541e1b5dceb2c822a11f7323) C:\Windows\system32\DRIVERS\kbdhid.sys

22:46:16.0068 5940 kbdhid - ok

22:46:16.0119 5940 KSecDD (e8b6fcc9c83535c67f835d407620bd27) C:\Windows\system32\Drivers\ksecdd.sys

22:46:16.0162 5940 KSecDD - ok

22:46:16.0246 5940 KSecPkg (a8c63880ef6f4d3fec7b616b9c060215) C:\Windows\system32\Drivers\ksecpkg.sys

22:46:16.0254 5940 KSecPkg - ok

22:46:16.0325 5940 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys

22:46:16.0359 5940 ksthunk - ok

22:46:16.0538 5940 L1C (2377ec4cc3e356655b996f39b43486b6) C:\Windows\system32\DRIVERS\L1C62x64.sys

22:46:16.0554 5940 L1C - ok

22:46:16.0663 5940 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys

22:46:16.0666 5940 lltdio - ok

22:46:16.0752 5940 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys

22:46:16.0775 5940 LSI_FC - ok

22:46:16.0803 5940 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys

22:46:16.0839 5940 LSI_SAS - ok

22:46:16.0890 5940 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys

22:46:16.0918 5940 LSI_SAS2 - ok

22:46:16.0944 5940 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys

22:46:16.0980 5940 LSI_SCSI - ok

22:46:17.0076 5940 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys

22:46:17.0116 5940 luafv - ok

22:46:17.0221 5940 MBAMProtector (23a854450dab5c9b7a42ab9be6f2e4bd) C:\Windows\system32\drivers\mbam.sys

22:46:17.0228 5940 MBAMProtector - ok

22:46:17.0331 5940 MDFSYSNT (99875732a0c1373316af28ed79c168cc) C:\Windows\system32\drivers\MDFSYSNT.sys

22:46:17.0377 5940 MDFSYSNT - ok

22:46:17.0424 5940 MDPMGRNT (8d3b834090836a01f49b97f22ae9c83c) C:\Windows\system32\DRIVERS\MDPMGRNT.SYS

22:46:17.0449 5940 MDPMGRNT - ok

22:46:17.0487 5940 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys

22:46:17.0493 5940 megasas - ok

22:46:17.0537 5940 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys

22:46:17.0542 5940 MegaSR - ok

22:46:17.0647 5940 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys

22:46:17.0670 5940 Modem - ok

22:46:17.0735 5940 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys

22:46:17.0736 5940 monitor - ok

22:46:17.0810 5940 motandroidusb (d69f1e9a944a5f46a494af901ed41118) C:\Windows\system32\Drivers\motoandroid.sys

22:46:17.0854 5940 motandroidusb - ok

22:46:17.0939 5940 motccgp (a70bf78713b104c46c4e6e7858b6f02e) C:\Windows\system32\DRIVERS\motccgp.sys

22:46:17.0963 5940 motccgp - ok

22:46:17.0974 5940 motccgpfl (d51e009baeda07ebc107d49d224c2414) C:\Windows\system32\DRIVERS\motccgpfl.sys

22:46:17.0988 5940 motccgpfl - ok

22:46:18.0173 5940 motmodem (6cbc0f4005593c96c9aecad39f0690fc) C:\Windows\system32\DRIVERS\motmodem.sys

22:46:18.0217 5940 motmodem - ok

22:46:18.0315 5940 MotoSwitchService (ebd05f60cafc5bba2602b8d7101082d3) C:\Windows\system32\DRIVERS\motswch.sys

22:46:18.0320 5940 MotoSwitchService - ok

22:46:18.0391 5940 Motousbnet (87701078c3f720ac7a028e937994cc49) C:\Windows\system32\DRIVERS\Motousbnet.sys

22:46:18.0393 5940 Motousbnet - ok

22:46:18.0555 5940 motusbdevice (307727f9829fb46ff4be0e4d1dac5002) C:\Windows\system32\DRIVERS\motusbdevice.sys

22:46:18.0556 5940 motusbdevice - ok

22:46:18.0661 5940 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys

22:46:18.0668 5940 mouclass - ok

22:46:18.0861 5940 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys

22:46:18.0877 5940 mouhid - ok

22:46:18.0978 5940 mountmgr (791af66c4d0e7c90a3646066386fb571) C:\Windows\system32\drivers\mountmgr.sys

22:46:18.0991 5940 mountmgr - ok

22:46:19.0173 5940 MpFilter (c177a7ebf5e8a0b596f618870516cab8) C:\Windows\system32\DRIVERS\MpFilter.sys

22:46:19.0221 5940 MpFilter - ok

22:46:19.0340 5940 mpio (609d1d87649ecc19796f4d76d4c15cea) C:\Windows\system32\DRIVERS\mpio.sys

22:46:19.0562 5940 mpio - ok

22:46:19.0731 5940 MpNWMon (8fbf6b31fe8af1833d93c5913d5b4d55) C:\Windows\system32\DRIVERS\MpNWMon.sys

22:46:19.0784 5940 MpNWMon - ok

22:46:19.0832 5940 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys

22:46:19.0868 5940 mpsdrv - ok

22:46:19.0893 5940 MRxDAV (30524261bb51d96d6fcbac20c810183c) C:\Windows\system32\drivers\mrxdav.sys

22:46:19.0926 5940 MRxDAV - ok

22:46:20.0064 5940 mrxsmb (040d62a9d8ad28922632137acdd984f2) C:\Windows\system32\DRIVERS\mrxsmb.sys

22:46:20.0077 5940 mrxsmb - ok

22:46:20.0104 5940 mrxsmb10 (f0067552f8f9b33d7c59403ab808a3cb) C:\Windows\system32\DRIVERS\mrxsmb10.sys

22:46:20.0137 5940 mrxsmb10 - ok

22:46:20.0201 5940 mrxsmb20 (3c142d31de9f2f193218a53fe2632051) C:\Windows\system32\DRIVERS\mrxsmb20.sys

22:46:20.0235 5940 mrxsmb20 - ok

22:46:20.0281 5940 msahci (5c37497276e3b3a5488b23a326a754b7) C:\Windows\system32\DRIVERS\msahci.sys

22:46:20.0298 5940 msahci - ok

22:46:20.0397 5940 msdsm (8d27b597229aed79430fb9db3bcbfbd0) C:\Windows\system32\DRIVERS\msdsm.sys

22:46:20.0403 5940 msdsm - ok

22:46:20.0453 5940 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys

22:46:20.0455 5940 Msfs - ok

22:46:20.0506 5940 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys

22:46:20.0537 5940 mshidkmdf - ok

22:46:20.0634 5940 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\DRIVERS\msisadrv.sys

22:46:20.0640 5940 msisadrv - ok

22:46:20.0802 5940 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys

22:46:20.0815 5940 MSKSSRV - ok

22:46:21.0057 5940 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys

22:46:21.0087 5940 MSPCLOCK - ok

22:46:21.0147 5940 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys

22:46:21.0149 5940 MSPQM - ok

22:46:21.0331 5940 MsRPC (89cb141aa8616d8c6a4610fa26c60964) C:\Windows\system32\drivers\MsRPC.sys

22:46:21.0358 5940 MsRPC - ok

22:46:21.0401 5940 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\DRIVERS\mssmbios.sys

22:46:21.0402 5940 mssmbios - ok

22:46:21.0420 5940 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys

22:46:21.0430 5940 MSTEE - ok

22:46:21.0452 5940 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys

22:46:21.0467 5940 MTConfig - ok

22:46:21.0592 5940 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys

22:46:21.0603 5940 Mup - ok

22:46:21.0689 5940 mwlPSDFilter (6ffecc25b39dc7652a0cec0ada9db589) C:\Windows\system32\DRIVERS\mwlPSDFilter.sys

22:46:21.0707 5940 mwlPSDFilter - ok

22:46:21.0793 5940 mwlPSDNServ (0befe32ca56d6ee89d58175725596a85) C:\Windows\system32\DRIVERS\mwlPSDNServ.sys

22:46:21.0811 5940 mwlPSDNServ - ok

22:46:21.0873 5940 mwlPSDVDisk (d43bc633b8660463e446e28e14a51262) C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys

22:46:21.0890 5940 mwlPSDVDisk - ok

22:46:22.0110 5940 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys

22:46:22.0113 5940 NativeWifiP - ok

22:46:22.0582 5940 NDIS (cad515dbd07d082bb317d9928ce8962c) C:\Windows\system32\drivers\ndis.sys

22:46:22.0611 5940 NDIS - ok

22:46:22.0776 5940 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys

22:46:22.0798 5940 NdisCap - ok

22:46:22.0904 5940 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys

22:46:22.0916 5940 NdisTapi - ok

22:46:23.0346 5940 Ndisuio (f105ba1e22bf1f2ee8f005d4305e4bec) C:\Windows\system32\DRIVERS\ndisuio.sys

22:46:23.0355 5940 Ndisuio - ok

22:46:23.0465 5940 NdisWan (557dfab9ca1fcb036ac77564c010dad3) C:\Windows\system32\DRIVERS\ndiswan.sys

22:46:23.0486 5940 NdisWan - ok

22:46:23.0569 5940 NDProxy (659b74fb74b86228d6338d643cd3e3cf) C:\Windows\system32\drivers\NDProxy.sys

22:46:23.0581 5940 NDProxy - ok

22:46:23.0957 5940 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys

22:46:23.0964 5940 NetBIOS - ok

22:46:24.0073 5940 NetBT (9162b273a44ab9dce5b44362731d062a) C:\Windows\system32\DRIVERS\netbt.sys

22:46:24.0092 5940 NetBT - ok

22:46:24.0867 5940 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys

22:46:24.0872 5940 nfrd960 - ok

22:46:25.0540 5940 NisDrv (5f7d72cbcdd025af1f38fdeee5646968) C:\Windows\system32\DRIVERS\NisDrvWFP.sys

22:46:25.0544 5940 NisDrv - ok

22:46:26.0806 5940 NPF (351533acc2a069b94e80bbfc177e8fdf) C:\Windows\system32\drivers\npf.sys

22:46:26.0933 5940 NPF - ok

22:46:27.0055 5940 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys

22:46:27.0079 5940 Npfs - ok

22:46:27.0222 5940 NPPTNT2 - ok

22:46:27.0285 5940 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys

22:46:27.0290 5940 nsiproxy - ok

22:46:27.0396 5940 Ntfs (356698a13c4630d5b31c37378d469196) C:\Windows\system32\drivers\Ntfs.sys

22:46:27.0489 5940 Ntfs - ok

22:46:27.0628 5940 NTIDrvr (64ddd0dee976302f4bd93e5efcc2f013) C:\Windows\system32\drivers\NTIDrvr.sys

22:46:27.0642 5940 NTIDrvr - ok

22:46:27.0778 5940 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys

22:46:27.0786 5940 Null - ok

22:46:27.0822 5940 nvraid (3e38712941e9bb4ddbee00affe3fed3d) C:\Windows\system32\DRIVERS\nvraid.sys

22:46:27.0845 5940 nvraid - ok

22:46:28.0040 5940 nvstor (477dc4d6deb99be37084c9ac6d013da1) C:\Windows\system32\DRIVERS\nvstor.sys

22:46:28.0059 5940 nvstor - ok

22:46:28.0172 5940 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\DRIVERS\nv_agp.sys

22:46:28.0185 5940 nv_agp - ok

22:46:28.0271 5940 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\DRIVERS\ohci1394.sys

22:46:28.0274 5940 ohci1394 - ok

22:46:28.0417 5940 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys

22:46:28.0422 5940 Parport - ok

22:46:28.0506 5940 partmgr (7daa117143316c4a1537e074a5a9eaf0) C:\Windows\system32\drivers\partmgr.sys

22:46:28.0518 5940 partmgr - ok

22:46:28.0650 5940 pci (f36f6504009f2fb0dfd1b17a116ad74b) C:\Windows\system32\DRIVERS\pci.sys

22:46:28.0672 5940 pci - ok

22:46:28.0754 5940 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\DRIVERS\pciide.sys

22:46:28.0769 5940 pciide - ok

22:46:28.0811 5940 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys

22:46:28.0820 5940 pcmcia - ok

22:46:28.0845 5940 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys

22:46:28.0847 5940 pcw - ok

22:46:28.0921 5940 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys

22:46:28.0968 5940 PEAUTH - ok

22:46:29.0151 5940 PptpMiniport (27cc19e81ba5e3403c48302127bda717) C:\Windows\system32\DRIVERS\raspptp.sys

22:46:29.0167 5940 PptpMiniport - ok

22:46:29.0256 5940 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys

22:46:29.0279 5940 Processor - ok

22:46:30.0093 5940 Psched (ee992183bd8eaefd9973f352e587a299) C:\Windows\system32\DRIVERS\pacer.sys

22:46:30.0108 5940 Psched - ok

22:46:30.0845 5940 PxHlpa64 (4712cc14e720ecccc0aa16949d18aaf1) C:\Windows\system32\Drivers\PxHlpa64.sys

22:46:30.0855 5940 PxHlpa64 - ok

22:46:31.0640 5940 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys

22:46:31.0687 5940 ql2300 - ok

22:46:32.0429 5940 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys

22:46:32.0439 5940 ql40xx - ok

22:46:32.0857 5940 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys

22:46:32.0861 5940 QWAVEdrv - ok

22:46:32.0990 5940 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys

22:46:32.0996 5940 RasAcd - ok

22:46:33.0089 5940 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys

22:46:33.0091 5940 RasAgileVpn - ok

22:46:33.0684 5940 Rasl2tp (87a6e852a22991580d6d39adc4790463) C:\Windows\system32\DRIVERS\rasl2tp.sys

22:46:33.0690 5940 Rasl2tp - ok

22:46:33.0766 5940 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys

22:46:33.0776 5940 RasPppoe - ok

22:46:33.0814 5940 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys

22:46:33.0829 5940 RasSstp - ok

22:46:33.0868 5940 rdbss (3bac8142102c15d59a87757c1d41dce5) C:\Windows\system32\DRIVERS\rdbss.sys

22:46:33.0881 5940 rdbss - ok

22:46:33.0903 5940 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys

22:46:33.0915 5940 rdpbus - ok

22:46:33.0937 5940 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys

22:46:33.0949 5940 RDPCDD - ok

22:46:34.0094 5940 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys

22:46:34.0107 5940 RDPENCDD - ok

22:46:34.0196 5940 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys

22:46:34.0198 5940 RDPREFMP - ok

22:46:34.0398 5940 RDPWD (8a3e6bea1c53ea6177fe2b6eba2c80d7) C:\Windows\system32\drivers\RDPWD.sys

22:46:34.0481 5940 RDPWD - ok

22:46:34.0602 5940 rdyboost (634b9a2181d98f15941236886164ec8b) C:\Windows\system32\drivers\rdyboost.sys

22:46:34.0615 5940 rdyboost - ok

22:46:34.0818 5940 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys

22:46:34.0827 5940 rspndr - ok

22:46:34.0977 5940 RSUSBSTOR (db30aa4daa0d492fa5d7717d8181ffa1) C:\Windows\system32\Drivers\RtsUStor.sys

22:46:34.0981 5940 RSUSBSTOR - ok

22:46:35.0086 5940 SASDIFSV (b2a29cc6c019fe738c39037c6218444c) C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS

22:46:35.0093 5940 SASDIFSV - ok

22:46:35.0123 5940 SASKUTIL (58a38e75f3316a83c23df6173d41f2b5) C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS

22:46:35.0153 5940 SASKUTIL - ok

22:46:35.0248 5940 sbp2port (e3bbb89983daf5622c1d50cf49f28227) C:\Windows\system32\DRIVERS\sbp2port.sys

22:46:35.0255 5940 sbp2port - ok

22:46:35.0312 5940 SCDEmu (6ce6f98ea3d07a9c2ce3cd0a5a86352d) C:\Windows\system32\drivers\SCDEmu.sys

22:46:35.0335 5940 SCDEmu - ok

22:46:35.0434 5940 scfilter (c94da20c7e3ba1dca269bc8460d98387) C:\Windows\system32\DRIVERS\scfilter.sys

22:46:35.0436 5940 scfilter - ok

22:46:35.0486 5940 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys

22:46:35.0526 5940 secdrv - ok

22:46:35.0573 5940 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys

22:46:35.0591 5940 Serenum - ok

22:46:35.0686 5940 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys

22:46:35.0704 5940 Serial - ok

22:46:35.0789 5940 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys

22:46:35.0799 5940 sermouse - ok

22:46:35.0907 5940 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\DRIVERS\sffdisk.sys

22:46:35.0916 5940 sffdisk - ok

22:46:35.0936 5940 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\DRIVERS\sffp_mmc.sys

22:46:35.0940 5940 sffp_mmc - ok

22:46:35.0964 5940 sffp_sd (178298f767fe638c9fedcbdef58bb5e4) C:\Windows\system32\DRIVERS\sffp_sd.sys

22:46:35.0969 5940 sffp_sd - ok

22:46:36.0606 5940 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys

22:46:36.0726 5940 sfloppy - ok

22:46:36.0897 5940 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys

22:46:36.0990 5940 SiSRaid2 - ok

22:46:37.0096 5940 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys

22:46:37.0129 5940 SiSRaid4 - ok

22:46:37.0179 5940 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys

22:46:37.0198 5940 Smb - ok

22:46:37.0293 5940 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys

22:46:37.0300 5940 spldr - ok

22:46:37.0381 5940 srv (2408c0366d96bcdf63e8f1c78e4a29c5) C:\Windows\system32\DRIVERS\srv.sys

22:46:37.0449 5940 srv - ok

22:46:37.0509 5940 srv2 (76548f7b818881b47d8d1ae1be9c11f8) C:\Windows\system32\DRIVERS\srv2.sys

22:46:37.0678 5940 srv2 - ok

22:46:37.0736 5940 srvnet (0af6e19d39c70844c5caa8fb0183c36e) C:\Windows\system32\DRIVERS\srvnet.sys

22:46:37.0781 5940 srvnet - ok

22:46:37.0822 5940 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys

22:46:37.0837 5940 stexstor - ok

22:46:37.0858 5940 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\DRIVERS\swenum.sys

22:46:37.0901 5940 swenum - ok

22:46:38.0087 5940 SynTP (bcf305959b53b200ceb2ad25ad22f8a7) C:\Windows\system32\DRIVERS\SynTP.sys

22:46:38.0120 5940 SynTP - ok

22:46:38.0401 5940 taphss (f33fdc72298df4bf9813a55d21f4eb31) C:\Windows\system32\DRIVERS\taphss.sys

22:46:38.0438 5940 taphss - ok

22:46:38.0552 5940 Tcpip (b9d87c7707f058ac652a398cd28de14b) C:\Windows\system32\drivers\tcpip.sys

22:46:38.0588 5940 Tcpip - ok

22:46:38.0696 5940 TCPIP6 (b9d87c7707f058ac652a398cd28de14b) C:\Windows\system32\DRIVERS\tcpip.sys

22:46:38.0710 5940 TCPIP6 - ok

22:46:38.0769 5940 tcpipreg (76d078af6f587b162d50210f761eb9ed) C:\Windows\system32\drivers\tcpipreg.sys

22:46:38.0836 5940 tcpipreg - ok

22:46:38.0881 5940 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys

22:46:38.0945 5940 TDPIPE - ok

22:46:38.0985 5940 TDTCP (e4245bda3190a582d55ed09e137401a9) C:\Windows\system32\drivers\tdtcp.sys

22:46:39.0033 5940 TDTCP - ok

22:46:39.0074 5940 tdx (079125c4b17b01fcaeebce0bcb290c0f) C:\Windows\system32\DRIVERS\tdx.sys

22:46:39.0082 5940 tdx - ok

22:46:39.0375 5940 TermDD (c448651339196c0e869a355171875522) C:\Windows\system32\DRIVERS\termdd.sys

22:46:39.0383 5940 TermDD - ok

22:46:39.0434 5940 tssecsrv (61b96c26131e37b24e93327a0bd1fb95) C:\Windows\system32\DRIVERS\tssecsrv.sys

22:46:39.0439 5940 tssecsrv - ok

22:46:39.0477 5940 tunnel (3836171a2cdf3af8ef10856db9835a70) C:\Windows\system32\DRIVERS\tunnel.sys

22:46:39.0481 5940 tunnel - ok

22:46:39.0501 5940 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys

22:46:39.0510 5940 uagp35 - ok

22:46:39.0540 5940 UBHelper (2e22c1fd397a5a9ffef55e9d1fc96c00) C:\Windows\system32\drivers\UBHelper.sys

22:46:39.0558 5940 UBHelper - ok

22:46:39.0636 5940 udfs (d47baead86c65d4f4069d7ce0a4edceb) C:\Windows\system32\DRIVERS\udfs.sys

22:46:39.0648 5940 udfs - ok

22:46:39.0692 5940 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\DRIVERS\uliagpkx.sys

22:46:39.0696 5940 uliagpkx - ok

22:46:39.0727 5940 umbus (eab6c35e62b1b0db0d1b48b671d3a117) C:\Windows\system32\DRIVERS\umbus.sys

22:46:39.0733 5940 umbus - ok

22:46:39.0758 5940 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys

22:46:39.0761 5940 UmPass - ok

22:46:39.0822 5940 USBAAPL64 (cd03479f2da26500b203ed075c146a7a) C:\Windows\system32\Drivers\usbaapl64.sys

22:46:39.0829 5940 USBAAPL64 - ok

22:46:39.0914 5940 usbaudio (77b01bc848298223a95d4ec23e1785a1) C:\Windows\system32\drivers\usbaudio.sys

22:46:39.0953 5940 usbaudio - ok

22:46:39.0985 5940 usbccgp (b26afb54a534d634523c4fb66765b026) C:\Windows\system32\DRIVERS\usbccgp.sys

22:46:40.0005 5940 usbccgp - ok

22:46:40.0083 5940 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\DRIVERS\usbcir.sys

22:46:40.0090 5940 usbcir - ok

22:46:40.0115 5940 usbehci (2ea4aff7be7eb4632e3aa8595b0803b5) C:\Windows\system32\DRIVERS\usbehci.sys

22:46:40.0117 5940 usbehci - ok

22:46:40.0139 5940 usbhub (4c9042b8df86c1e8e6240c218b99b39b) C:\Windows\system32\DRIVERS\usbhub.sys

22:46:40.0151 5940 usbhub - ok

22:46:40.0206 5940 usbohci (58e546bbaf87664fc57e0f6081e4f609) C:\Windows\system32\DRIVERS\usbohci.sys

22:46:40.0249 5940 usbohci - ok

22:46:40.0293 5940 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys

22:46:40.0400 5940 usbprint - ok

22:46:40.0455 5940 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys

22:46:40.0504 5940 usbscan - ok

22:46:40.0562 5940 USBSTOR (080d3820da6c046be82fc8b45a893e83) C:\Windows\system32\DRIVERS\USBSTOR.SYS

22:46:40.0642 5940 USBSTOR - ok

22:46:40.0680 5940 usbuhci (81fb2216d3a60d1284455d511797db3d) C:\Windows\system32\DRIVERS\usbuhci.sys

22:46:40.0722 5940 usbuhci - ok

22:46:40.0816 5940 usbvideo (7cb8c573c6e4a2714402cc0a36eab4fe) C:\Windows\System32\Drivers\usbvideo.sys

22:46:40.0890 5940 usbvideo - ok

22:46:41.0231 5940 usb_rndisx (70d05ee263568a742d14e1876df80532) C:\Windows\system32\DRIVERS\usb8023x.sys

22:46:41.0234 5940 usb_rndisx - ok

22:46:41.0293 5940 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\DRIVERS\vdrvroot.sys

22:46:41.0295 5940 vdrvroot - ok

22:46:41.0326 5940 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys

22:46:41.0328 5940 vga - ok

22:46:41.0355 5940 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys

22:46:41.0357 5940 VgaSave - ok

22:46:41.0391 5940 vhdmp (c82e748660f62a242b2dfac1442f22a4) C:\Windows\system32\DRIVERS\vhdmp.sys

22:46:41.0395 5940 vhdmp - ok

22:46:41.0414 5940 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\DRIVERS\viaide.sys

22:46:41.0419 5940 viaide - ok

22:46:41.0441 5940 volmgr (2b1a3dae2b4e70dbba822b7a03fbd4a3) C:\Windows\system32\DRIVERS\volmgr.sys

22:46:41.0446 5940 volmgr - ok

22:46:41.0472 5940 volmgrx (99b0cbb569ca79acaed8c91461d765fb) C:\Windows\system32\drivers\volmgrx.sys

22:46:41.0484 5940 volmgrx - ok

22:46:41.0516 5940 volsnap (58f82eed8ca24b461441f9c3e4f0bf5c) C:\Windows\system32\DRIVERS\volsnap.sys

22:46:41.0529 5940 volsnap - ok

22:46:41.0610 5940 vpcbus (abd9b4a7e2d0ae51a3b8df1af3152d61) C:\Windows\system32\DRIVERS\vpchbus.sys

22:46:41.0616 5940 vpcbus - ok

22:46:41.0674 5940 vpcnfltr (8acda395841538ce9713a67fe8b2a3eb) C:\Windows\system32\DRIVERS\vpcnfltr.sys

22:46:41.0679 5940 vpcnfltr - ok

22:46:41.0711 5940 vpcusb (31924e31bc315773e6d149b157db46d5) C:\Windows\system32\DRIVERS\vpcusb.sys

22:46:41.0716 5940 vpcusb - ok

22:46:41.0794 5940 vpcvmm (510d250a08c09850f5c78ca2011b3b62) C:\Windows\system32\drivers\vpcvmm.sys

22:46:41.0797 5940 vpcvmm - ok

22:46:41.0827 5940 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys

22:46:41.0830 5940 vsmraid - ok

22:46:41.0870 5940 vtany - ok

22:46:41.0894 5940 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys

22:46:41.0897 5940 vwifibus - ok

22:46:41.0915 5940 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys

22:46:41.0923 5940 vwififlt - ok

22:46:42.0119 5940 VX6000 (07e6731ff9399a3b72d64150d4c5f71a) C:\Windows\system32\DRIVERS\VX6000Xp.sys

22:46:42.0187 5940 VX6000 - ok

22:46:42.0275 5940 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys

22:46:42.0280 5940 WacomPen - ok

22:46:42.0392 5940 WANARP (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys

22:46:42.0396 5940 WANARP - ok

22:46:42.0405 5940 Wanarpv6 (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys

22:46:42.0407 5940 Wanarpv6 - ok

22:46:42.0521 5940 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys

22:46:42.0525 5940 Wd - ok

22:46:42.0610 5940 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys

22:46:42.0620 5940 Wdf01000 - ok

22:46:42.0763 5940 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys

22:46:42.0767 5940 WfpLwf - ok

22:46:42.0837 5940 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys

22:46:42.0840 5940 WIMMount - ok

22:46:43.0024 5940 WINUSB (817eaff5d38674edd7713b9dfb8e9791) C:\Windows\system32\DRIVERS\WinUSB.SYS

22:46:43.0030 5940 WINUSB - ok

22:46:43.0107 5940 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\DRIVERS\wmiacpi.sys

22:46:43.0107 5940 WmiAcpi - ok

22:46:43.0302 5940 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys

22:46:43.0320 5940 ws2ifsl - ok

22:46:43.0439 5940 WSDPrintDevice (8d918b1db190a4d9b1753a66fa8c96e8) C:\Windows\system32\DRIVERS\WSDPrint.sys

22:46:43.0440 5940 WSDPrintDevice - ok

22:46:43.0475 5940 WSDScan (4a2a5c50dd1a63577d3aca94269fbc7f) C:\Windows\system32\DRIVERS\WSDScan.sys

22:46:43.0476 5940 WSDScan - ok

22:46:43.0554 5940 WudfPf (7cadc74271dd6461c452c271b30bd378) C:\Windows\system32\drivers\WudfPf.sys

22:46:43.0560 5940 WudfPf - ok

22:46:43.0640 5940 WUDFRd (3b197af0fff08aa66b6b2241ca538d64) C:\Windows\system32\DRIVERS\WUDFRd.sys

22:46:43.0785 5940 WUDFRd - ok

22:46:43.0921 5940 X6va002 - ok

22:46:43.0959 5940 X6va005 - ok

22:46:44.0076 5940 xspirit - ok

22:46:44.0169 5940 MBR (0x1B8) (950dcd2e3db597e6b62b2b7124557fec) \Device\Harddisk0\DR0

22:46:44.0246 5940 \Device\Harddisk0\DR0 ( Rootkit.Win32.BackBoot.gen ) - warning

22:46:44.0246 5940 \Device\Harddisk0\DR0 - detected Rootkit.Win32.BackBoot.gen (1)

22:46:44.0250 5940 Boot (0x1200) (45548ec6d6ba1b92e32fc1f175af2702) \Device\Harddisk0\DR0\Partition0

22:46:44.0252 5940 \Device\Harddisk0\DR0\Partition0 - ok

22:46:44.0266 5940 Boot (0x1200) (d0b471cf382984c2898153efe8b1f873) \Device\Harddisk0\DR0\Partition1

22:46:44.0267 5940 \Device\Harddisk0\DR0\Partition1 - ok

22:46:44.0267 5940 ============================================================

22:46:44.0267 5940 Scan finished

22:46:44.0267 5940 ============================================================

22:46:44.0286 5932 Detected object count: 1

22:46:44.0286 5932 Actual detected object count: 1

22:47:15.0291 5932 \Device\Harddisk0\DR0 ( Rootkit.Win32.BackBoot.gen ) - skipped by user

22:47:15.0291 5932 \Device\Harddisk0\DR0 ( Rootkit.Win32.BackBoot.gen ) - User select action: Skip

22:47:21.0230 5676 Deinitialize success

COMBOFIX BLUE SCREEN ERRORS:

Problem signature:

Problem Event Name: BlueScreen

OS Version: 6.1.7600.2.0.0.768.3

Locale ID: 1033

Additional information about the problem:

BCCode: 1e

BCP1: FFFFFFFFC0000005

BCP2: FFFFF80002E6D703

BCP3: 0000000000000000

BCP4: 000000007EFA0000

OS Version: 6_1_7600

Service Pack: 0_0

Product: 768_1

Files that help describe the problem:

C:\Windows\Minidump\100411-40170-01.dmp

C:\Users\Michael Kenny\AppData\Local\Temp\WER-146640-0.sysdata.xml

Read our privacy statement online:

http://go.microsoft.com/fwlink/?linkid=104288&clcid=0x0409

If the online privacy statement is not available, please read our privacy statement offline:

C:\Windows\system32\en-US\erofflps.txt

Files that help describe the problem:

C:\ProgramData\Microsoft\Windows\WER\ReportQueue\AppCrash_svchost.exe_24b889dd84862ce5d4e8823fd92e33bac1d2c98d_cab_15720157\WERE455.tmp.appcompat.txt

C:\ProgramData\Microsoft\Windows\WER\ReportQueue\AppCrash_svchost.exe_24b889dd84862ce5d4e8823fd92e33bac1d2c98d_cab_15720157\WERE6D6.tmp.WERInternalMetadata.xml

C:\ProgramData\Microsoft\Windows\WER\ReportQueue\AppCrash_svchost.exe_24b889dd84862ce5d4e8823fd92e33bac1d2c98d_cab_15720157\WERFB13.tmp.mdmp

Read our privacy statement online:

http://go.microsoft.com/fwlink/?linkid=104288&clcid=0x0409

If the online privacy statement is not available, please read our privacy statement offline:

C:\Windows\system32\en-US\erofflps.txt

Attach.txt

Link to post
Share on other sites

For anyone having the symptoms I did I think I was able to resolve them by using the ESET Online Antivirus Scanner, MalwareBytes and TDSSKILLER found something almost everytime but it kept coming back.

After running ESET I reran DDS.scr, Malwarebytes, and TDSSKIller and they all came up clean. I also have not been experiencing any more redirects.

Link to post
Share on other sites

  • Staff

Hi and welcome to Malwarebytes.

I'm afraid I have bad news.

Your logs reveal a backdoor trojan. A backdoor severely compromises system integrity.

A compromised system may allow illicit network connections, disabling of security software, modifying critical system files and collection and transmiission of personal identifiable information without your consent.

I recommend that you disconnect this PC from the Internet immediately, and only reconnect to download any tools that are required. If you do any banking or other financial transactions on the PC or it if it contains any other sensitive information, please get to a known clean computer and change all passwords where applicable, and it would be wise to contact those same financial institutions to apprise them of your situation.

Though the Trojan has been identified and can be killed, because of it's backdoor functionality, your PC is very likely compromised and there is no way to be sure your computer can ever again be trusted. Many experts in the security community believe that once infected with this type of Trojan, the best course of action would be a reformat and reinstall of the OS. If it were on my PC I would not hesitate for a moment to do so. Please read these for more information:

How Do I Handle Possible Identify Theft, Internet Fraud and CC Fraud?

When Should I Format, How Should I Reinstall

Should you decide not to follow that advice, we will of course do our best to clean the computer of any infections that we can see but, as I already stated, we can in no way guarantee it to be trustworthy.

Should you have any questions, please feel free to ask.

Let me know what you decide.

Link to post
Share on other sites

Hi Screen, I believe I was able toclean my computer using ESET. I am attaching the ESET log and the TDSSKILLER log I ran afterwards. My biggest concern is that when I try running combo fix I get the blue screen of death during the 4th section.

Thanks in Advance for your help!

ESETSmartInstaller@High as downloader log:

all ok

esets_scanner_update returned -1 esets_gle=36882

ESETSmartInstaller@High as downloader log:

all ok

# version=7

# OnlineScannerApp.exe=1.0.0.1

# OnlineScanner.ocx=1.0.0.6528

# api_version=3.0.2

# EOSSerial=7a0cab90cda6c74081e627cebfb413b7

# end=finished

# remove_checked=true

# archives_checked=false

# unwanted_checked=true

# unsafe_checked=true

# antistealth_checked=true

# utc_time=2011-10-08 06:15:52

# local_time=2011-10-08 02:15:52 (-0500, Eastern Daylight Time)

# country="United States"

# lang=1033

# osver=6.1.7600 NT

# compatibility_mode=1024 16777215 100 0 41261141 41261141 0 0

# compatibility_mode=5893 16776574 100 94 0 69601725 0 0

# compatibility_mode=8192 67108863 100 0 0 0 0 0

# scanned=364130

# found=21

# cleaned=21

# scan_time=39476

C:\SG Interactive\Project Blackout\xfire_installer.projblackout.exe Win32/OpenCandy application (deleted - quarantined) 00000000000000000000000000000000 C

C:\Users\Michael Kenny\AppData\Local\HP\HPUpdate\HPupdt32.dll a variant of Win32/Kryptik.TGT trojan (cleaned by deleting - quarantined) 00000000000000000000000000000000 C

C:\Users\Michael Kenny\AppData\Local\Temp\Av-test.txt Eicar test file (cleaned by deleting - quarantined) 00000000000000000000000000000000 C

C:\Users\Michael Kenny\AppData\LocalLow\Retrogamer_2zEI\Installr\Cache\000ACF5F.exe a variant of Win32/Toolbar.MyWebSearch.O application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C

C:\Users\Michael Kenny\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\43\78a7dab-5e54ed70 a variant of Java/Agent.DT trojan (cleaned by deleting - quarantined) 00000000000000000000000000000000 C

C:\Users\Michael Kenny\AppData\Roaming\Mozilla\Firefox\Profiles\6nucs340.mk\extensions\{143800dc-4992-4234-ad56-1ae9484b5c63}\chrome.manifest Win32/TrojanDownloader.Tracur.F trojan (cleaned by deleting - quarantined) 00000000000000000000000000000000 C

C:\Users\Michael Kenny\AppData\Roaming\Mozilla\Firefox\Profiles\6nucs340.mk\extensions\{5bc98b7c-8f2d-4bc5-8b62-04a0dceebabb}\chrome.manifest Win32/TrojanDownloader.Tracur.F trojan (cleaned by deleting - quarantined) 00000000000000000000000000000000 C

C:\Users\Michael Kenny\AppData\Roaming\Mozilla\Firefox\Profiles\6nucs340.mk\extensions\{7cdfbe90-ef13-4f51-b108-e70c39aaaf7d}\chrome.manifest Win32/TrojanDownloader.Tracur.F trojan (cleaned by deleting - quarantined) 00000000000000000000000000000000 C

C:\Users\Michael Kenny\Desktop\Desktop\9DJG7qxZme.exe a variant of Win32/Packed.Themida application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C

C:\Users\Michael Kenny\Desktop\Desktop\ProjectBlackout_Install_X_R.exe Win32/OpenCandy application (deleted - quarantined) 00000000000000000000000000000000 C

C:\Users\Michael Kenny\Desktop\Desktop\'s SANA Premium Version 60\Skillz-CF.Com.dll a variant of Win32/Packed.VMProtect.AAA trojan (cleaned by deleting - quarantined) 00000000000000000000000000000000 C

C:\Users\Michael Kenny\Desktop\Desktop\'s SANA Premium Version 60\Skillz-Injector.exe a variant of Win32/HackTool.Inject.D application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C

C:\Users\Michael Kenny\Desktop\Desktop\Desktop2\HSS-1.52-install-anchorfree-238-conduit2.exe a variant of Win32/HotSpotShield application (deleted - quarantined) 00000000000000000000000000000000 C

C:\Users\Michael Kenny\Desktop\Desktop\OLD LAPTOP\Shared\04 Track 4 (sucker).wma Win32/Adware.180Solutions application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C

C:\Users\Michael Kenny\Desktop\Desktop\pbhack\FIXIT.exe a variant of Win32/Packed.Enigma.AAF trojan (cleaned by deleting - quarantined) 00000000000000000000000000000000 C

C:\Users\Michael Kenny\Desktop\Desktop\pbhack\pb.dll a variant of Win32/Packed.Enigma.AAF trojan (cleaned by deleting - quarantined) 00000000000000000000000000000000 C

C:\Users\Michael Kenny\Desktop\DesktopNew\OLD PC\Documents and Settings\Michael Kenny\Desktop\dESKTOP 7-23-06\macdrivev6.0.1.0crackfff\crack.exe a variant of Win32/HackTool.Patcher.E application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C

C:\Users\Michael Kenny\Desktop\DesktopNew\Shared\04 Track 4 (sucker).wma Win32/Adware.180Solutions application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C

C:\Users\Michael Kenny\Downloads\IGkyJNRwbW.exe a variant of Win32/Packed.Themida application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C

C:\Users\Michael Kenny\Downloads\KeyFinderInstaller.exe Win32/OpenCandy application (deleted - quarantined) 00000000000000000000000000000000 C

C:\Users\Michael Kenny\Downloads\SoftonicDownloader_for_hexeditor.exe a variant of Win32/SoftonicDownloader.A application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C

Link to post
Share on other sites

22:51:53.0442 2588 TDSS rootkit removing tool 2.6.6.0 Oct 7 2011 12:45:24

22:51:53.0818 2588 ============================================================

22:51:53.0818 2588 Current date / time: 2011/10/09 22:51:53.0818

22:51:53.0818 2588 SystemInfo:

22:51:53.0818 2588

22:51:53.0818 2588 OS Version: 6.1.7600 ServicePack: 0.0

22:51:53.0818 2588 Product type: Workstation

22:51:53.0818 2588 ComputerName: ACER1

22:51:53.0818 2588 UserName: Michael Kenny

22:51:53.0818 2588 Windows directory: C:\Windows

22:51:53.0818 2588 System windows directory: C:\Windows

22:51:53.0818 2588 Running under WOW64

22:51:53.0818 2588 Processor architecture: Intel x64

22:51:53.0818 2588 Number of processors: 2

22:51:53.0818 2588 Page size: 0x1000

22:51:53.0818 2588 Boot type: Normal boot

22:51:53.0818 2588 ============================================================

22:51:54.0292 2588 Initialize success

22:52:02.0256 2336 ============================================================

22:52:02.0256 2336 Scan started

22:52:02.0256 2336 Mode: Manual;

22:52:02.0256 2336 ============================================================

22:52:02.0999 2336 1394ohci (1b00662092f9f9568b995902f0cc40d5) C:\Windows\system32\DRIVERS\1394ohci.sys

22:52:03.0002 2336 1394ohci - ok

22:52:03.0107 2336 ACPI (6f11e88748cdefd2f76aa215f97ddfe5) C:\Windows\system32\DRIVERS\ACPI.sys

22:52:03.0111 2336 ACPI - ok

22:52:03.0216 2336 AcpiPmi (63b05a0420ce4bf0e4af6dcc7cada254) C:\Windows\system32\DRIVERS\acpipmi.sys

22:52:03.0218 2336 AcpiPmi - ok

22:52:03.0369 2336 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys

22:52:03.0375 2336 adp94xx - ok

22:52:03.0806 2336 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys

22:52:03.0811 2336 adpahci - ok

22:52:03.0934 2336 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys

22:52:03.0937 2336 adpu320 - ok

22:52:04.0077 2336 AFD (6ef20ddf3172e97d69f596fb90602f29) C:\Windows\system32\drivers\afd.sys

22:52:04.0083 2336 AFD - ok

22:52:04.0123 2336 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\DRIVERS\agp440.sys

22:52:04.0125 2336 agp440 - ok

22:52:04.0266 2336 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\DRIVERS\aliide.sys

22:52:04.0268 2336 aliide - ok

22:52:04.0374 2336 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\DRIVERS\amdide.sys

22:52:04.0375 2336 amdide - ok

22:52:04.0491 2336 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys

22:52:04.0493 2336 AmdK8 - ok

22:52:04.0581 2336 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys

22:52:04.0583 2336 AmdPPM - ok

22:52:04.0697 2336 amdsata (7a4b413614c055935567cf88a9734d38) C:\Windows\system32\DRIVERS\amdsata.sys

22:52:04.0699 2336 amdsata - ok

22:52:04.0818 2336 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys

22:52:04.0821 2336 amdsbs - ok

22:52:04.0936 2336 amdxata (b4ad0cacbab298671dd6f6ef7e20679d) C:\Windows\system32\DRIVERS\amdxata.sys

22:52:04.0938 2336 amdxata - ok

22:52:05.0073 2336 AppID (42fd751b27fa0e9c69bb39f39e409594) C:\Windows\system32\drivers\appid.sys

22:52:05.0075 2336 AppID - ok

22:52:05.0258 2336 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys

22:52:05.0260 2336 arc - ok

22:52:05.0377 2336 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys

22:52:05.0379 2336 arcsas - ok

22:52:05.0484 2336 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys

22:52:05.0486 2336 AsyncMac - ok

22:52:05.0589 2336 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\DRIVERS\atapi.sys

22:52:05.0590 2336 atapi - ok

22:52:05.0742 2336 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys

22:52:05.0748 2336 b06bdrv - ok

22:52:05.0851 2336 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys

22:52:05.0855 2336 b57nd60a - ok

22:52:06.0022 2336 BCM43XX (b44879610f2dc4a046b14befa3ae72de) C:\Windows\system32\DRIVERS\bcmwl664.sys

22:52:06.0100 2336 BCM43XX - ok

22:52:06.0245 2336 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys

22:52:06.0246 2336 Beep - ok

22:52:06.0408 2336 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys

22:52:06.0410 2336 blbdrive - ok

22:52:06.0542 2336 bowser (19d20159708e152267e53b66677a4995) C:\Windows\system32\DRIVERS\bowser.sys

22:52:06.0544 2336 bowser - ok

22:52:06.0651 2336 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys

22:52:06.0652 2336 BrFiltLo - ok

22:52:06.0740 2336 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys

22:52:06.0741 2336 BrFiltUp - ok

22:52:06.0840 2336 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys

22:52:06.0844 2336 Brserid - ok

22:52:06.0923 2336 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys

22:52:06.0924 2336 BrSerWdm - ok

22:52:07.0033 2336 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys

22:52:07.0034 2336 BrUsbMdm - ok

22:52:07.0122 2336 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys

22:52:07.0123 2336 BrUsbSer - ok

22:52:07.0237 2336 BTCFilterService (ff7c57973eead140062238c5a0b7d455) C:\Windows\system32\DRIVERS\motfilt.sys

22:52:07.0239 2336 BTCFilterService - ok

22:52:07.0341 2336 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys

22:52:07.0343 2336 BTHMODEM - ok

22:52:07.0449 2336 CBDisk (b99d91e4cd9017f213645aa2e80eb425) C:\Windows\system32\drivers\CBDisk.sys

22:52:07.0459 2336 CBDisk - ok

22:52:07.0544 2336 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys

22:52:07.0546 2336 cdfs - ok

22:52:07.0658 2336 cdrom (83d2d75e1efb81b3450c18131443f7db) C:\Windows\system32\DRIVERS\cdrom.sys

22:52:07.0661 2336 cdrom - ok

22:52:07.0776 2336 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys

22:52:07.0777 2336 circlass - ok

22:52:07.0857 2336 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys

22:52:07.0861 2336 CLFS - ok

22:52:07.0965 2336 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys

22:52:07.0966 2336 CmBatt - ok

22:52:08.0035 2336 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\DRIVERS\cmdide.sys

22:52:08.0037 2336 cmdide - ok

22:52:08.0115 2336 CNG (f95fd4cb7da00ba2a63ce9f6b5c053e1) C:\Windows\system32\Drivers\cng.sys

22:52:08.0121 2336 CNG - ok

22:52:08.0182 2336 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys

22:52:08.0183 2336 Compbatt - ok

22:52:08.0285 2336 CompositeBus (f26b3a86f6fa87ca360b879581ab4123) C:\Windows\system32\DRIVERS\CompositeBus.sys

22:52:08.0287 2336 CompositeBus - ok

22:52:08.0382 2336 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys

22:52:08.0383 2336 crcdisk - ok

22:52:08.0505 2336 DfsC (9c253ce7311ca60fc11c774692a13208) C:\Windows\system32\Drivers\dfsc.sys

22:52:08.0507 2336 DfsC - ok

22:52:08.0567 2336 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys

22:52:08.0568 2336 discache - ok

22:52:08.0639 2336 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys

22:52:08.0640 2336 Disk - ok

22:52:08.0718 2336 DKbFltr (d5bcb77be83cf99f508943945d46343d) C:\Windows\SysWOW64\Drivers\DKbFltr.sys

22:52:08.0719 2336 DKbFltr - ok

22:52:08.0844 2336 Dot4 (b42ed0320c6e41102fde0005154849bb) C:\Windows\system32\DRIVERS\Dot4.sys

22:52:08.0847 2336 Dot4 - ok

22:52:08.0955 2336 Dot4Print (85135ad27e79b689335c08167d917cde) C:\Windows\system32\DRIVERS\Dot4Prt.sys

22:52:08.0956 2336 Dot4Print - ok

22:52:09.0061 2336 dot4usb (fd05a02b0370bc3000f402e543ca5814) C:\Windows\system32\DRIVERS\dot4usb.sys

22:52:09.0063 2336 dot4usb - ok

22:52:09.0165 2336 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys

22:52:09.0167 2336 drmkaud - ok

22:52:09.0329 2336 dump_wmimmc - ok

22:52:09.0461 2336 DXGKrnl (1633b9abf52784a1331476397a48cbef) C:\Windows\System32\drivers\dxgkrnl.sys

22:52:09.0489 2336 DXGKrnl - ok

22:52:09.0599 2336 EagleX64 - ok

22:52:09.0704 2336 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys

22:52:09.0804 2336 ebdrv - ok

22:52:09.0937 2336 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys

22:52:09.0944 2336 elxstor - ok

22:52:10.0062 2336 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\DRIVERS\errdev.sys

22:52:10.0063 2336 ErrDev - ok

22:52:10.0099 2336 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys

22:52:10.0102 2336 exfat - ok

22:52:10.0127 2336 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys

22:52:10.0130 2336 fastfat - ok

22:52:10.0219 2336 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys

22:52:10.0221 2336 fdc - ok

22:52:10.0254 2336 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys

22:52:10.0256 2336 FileInfo - ok

22:52:10.0275 2336 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys

22:52:10.0277 2336 Filetrace - ok

22:52:10.0299 2336 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys

22:52:10.0301 2336 flpydisk - ok

22:52:10.0327 2336 FltMgr (f7866af72abbaf84b1fa5aa195378c59) C:\Windows\system32\drivers\fltmgr.sys

22:52:10.0331 2336 FltMgr - ok

22:52:10.0366 2336 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys

22:52:10.0368 2336 FsDepends - ok

22:52:10.0389 2336 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\Windows\system32\drivers\Fs_Rec.sys

22:52:10.0390 2336 Fs_Rec - ok

22:52:10.0494 2336 fvevol (ae87ba80d0ec3b57126ed2cdc15b24ed) C:\Windows\system32\DRIVERS\fvevol.sys

22:52:10.0496 2336 fvevol - ok

22:52:10.0568 2336 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys

22:52:10.0570 2336 gagp30kx - ok

22:52:10.0689 2336 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys

22:52:10.0691 2336 GEARAspiWDM - ok

22:52:10.0830 2336 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys

22:52:10.0831 2336 hcw85cir - ok

22:52:10.0927 2336 HdAudAddService (6410f6f415b2a5a9037224c41da8bf12) C:\Windows\system32\drivers\HdAudio.sys

22:52:10.0932 2336 HdAudAddService - ok

22:52:11.0012 2336 HDAudBus (0a49913402747a0b67de940fb42cbdbb) C:\Windows\system32\DRIVERS\HDAudBus.sys

22:52:11.0015 2336 HDAudBus - ok

22:52:11.0089 2336 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys

22:52:11.0090 2336 HidBatt - ok

22:52:11.0165 2336 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys

22:52:11.0167 2336 HidBth - ok

22:52:11.0238 2336 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys

22:52:11.0240 2336 HidIr - ok

22:52:11.0358 2336 HidUsb (b3bf6b5b50006def50b66306d99fcf6f) C:\Windows\system32\DRIVERS\hidusb.sys

22:52:11.0360 2336 HidUsb - ok

22:52:11.0477 2336 HpSAMD (0886d440058f203eba0e1825e4355914) C:\Windows\system32\DRIVERS\HpSAMD.sys

22:52:11.0478 2336 HpSAMD - ok

22:52:11.0604 2336 HssDrv (a60c877e1cd3aa2e4e5ccd8af305c0f1) C:\Windows\system32\DRIVERS\HssDrv.sys

22:52:11.0605 2336 HssDrv - ok

22:52:11.0741 2336 HTTP (cee049cac4efa7f4e1e4ad014414a5d4) C:\Windows\system32\drivers\HTTP.sys

22:52:11.0750 2336 HTTP - ok

22:52:11.0805 2336 hwpolicy (f17766a19145f111856378df337a5d79) C:\Windows\system32\drivers\hwpolicy.sys

22:52:11.0806 2336 hwpolicy - ok

22:52:11.0825 2336 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys

22:52:11.0827 2336 i8042prt - ok

22:52:11.0931 2336 iaStor (be7d72fcf442c26975942007e0831241) C:\Windows\system32\DRIVERS\iaStor.sys

22:52:11.0934 2336 iaStor - ok

22:52:12.0062 2336 iaStorV (d83efb6fd45df9d55e9a1afc63640d50) C:\Windows\system32\DRIVERS\iaStorV.sys

22:52:12.0068 2336 iaStorV - ok

22:52:12.0310 2336 igfx (2d18c9e1f23970de32d78d3b1cdda0a7) C:\Windows\system32\DRIVERS\igdkmd64.sys

22:52:12.0500 2336 igfx - ok

22:52:12.0570 2336 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys

22:52:12.0572 2336 iirsp - ok

22:52:12.0740 2336 IntcAzAudAddService (88798b4381fd58fae2da07880c177c5c) C:\Windows\system32\drivers\RTKVHD64.sys

22:52:12.0823 2336 IntcAzAudAddService - ok

22:52:12.0925 2336 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\DRIVERS\intelide.sys

22:52:12.0926 2336 intelide - ok

22:52:12.0958 2336 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys

22:52:12.0960 2336 intelppm - ok

22:52:13.0059 2336 IpFilterDriver (722dd294df62483cecaae6e094b4d695) C:\Windows\system32\DRIVERS\ipfltdrv.sys

22:52:13.0061 2336 IpFilterDriver - ok

22:52:13.0074 2336 IPMIDRV (e2b4a4494db7cb9b89b55ca268c337c5) C:\Windows\system32\DRIVERS\IPMIDrv.sys

22:52:13.0080 2336 IPMIDRV - ok

22:52:13.0122 2336 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys

22:52:13.0124 2336 IPNAT - ok

22:52:13.0219 2336 iPodDrv (02def37ab75e0032c50724646f708de8) C:\Windows\system32\drivers\iPodDrv.sys

22:52:13.0228 2336 iPodDrv - ok

22:52:13.0264 2336 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys

22:52:13.0265 2336 IRENUM - ok

22:52:13.0329 2336 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\DRIVERS\isapnp.sys

22:52:13.0330 2336 isapnp - ok

22:52:13.0404 2336 iScsiPrt (fa4d2557de56d45b0a346f93564be6e1) C:\Windows\system32\DRIVERS\msiscsi.sys

22:52:13.0407 2336 iScsiPrt - ok

22:52:13.0479 2336 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys

22:52:13.0481 2336 kbdclass - ok

22:52:13.0558 2336 kbdhid (6def98f8541e1b5dceb2c822a11f7323) C:\Windows\system32\DRIVERS\kbdhid.sys

22:52:13.0559 2336 kbdhid - ok

22:52:13.0657 2336 KSecDD (e8b6fcc9c83535c67f835d407620bd27) C:\Windows\system32\Drivers\ksecdd.sys

22:52:13.0660 2336 KSecDD - ok

22:52:13.0729 2336 KSecPkg (a8c63880ef6f4d3fec7b616b9c060215) C:\Windows\system32\Drivers\ksecpkg.sys

22:52:13.0732 2336 KSecPkg - ok

22:52:13.0818 2336 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys

22:52:13.0821 2336 ksthunk - ok

22:52:13.0941 2336 L1C (2377ec4cc3e356655b996f39b43486b6) C:\Windows\system32\DRIVERS\L1C62x64.sys

22:52:13.0942 2336 L1C - ok

22:52:14.0077 2336 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys

22:52:14.0079 2336 lltdio - ok

22:52:14.0423 2336 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys

22:52:14.0425 2336 LSI_FC - ok

22:52:14.0819 2336 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys

22:52:14.0821 2336 LSI_SAS - ok

22:52:14.0861 2336 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys

22:52:14.0863 2336 LSI_SAS2 - ok

22:52:14.0875 2336 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys

22:52:14.0878 2336 LSI_SCSI - ok

22:52:14.0934 2336 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys

22:52:14.0936 2336 luafv - ok

22:52:15.0060 2336 MBAMProtector (23a854450dab5c9b7a42ab9be6f2e4bd) C:\Windows\system32\drivers\mbam.sys

22:52:15.0062 2336 MBAMProtector - ok

22:52:15.0191 2336 MDFSYSNT (99875732a0c1373316af28ed79c168cc) C:\Windows\system32\drivers\MDFSYSNT.sys

22:52:15.0213 2336 MDFSYSNT - ok

22:52:15.0239 2336 MDPMGRNT (8d3b834090836a01f49b97f22ae9c83c) C:\Windows\system32\DRIVERS\MDPMGRNT.SYS

22:52:15.0249 2336 MDPMGRNT - ok

22:52:15.0291 2336 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys

22:52:15.0292 2336 megasas - ok

22:52:15.0318 2336 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys

22:52:15.0323 2336 MegaSR - ok

22:52:15.0363 2336 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys

22:52:15.0365 2336 Modem - ok

22:52:15.0418 2336 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys

22:52:15.0419 2336 monitor - ok

22:52:15.0459 2336 motandroidusb (d69f1e9a944a5f46a494af901ed41118) C:\Windows\system32\Drivers\motoandroid.sys

22:52:15.0461 2336 motandroidusb - ok

22:52:15.0521 2336 motccgp (a70bf78713b104c46c4e6e7858b6f02e) C:\Windows\system32\DRIVERS\motccgp.sys

22:52:15.0522 2336 motccgp - ok

22:52:15.0548 2336 motccgpfl (d51e009baeda07ebc107d49d224c2414) C:\Windows\system32\DRIVERS\motccgpfl.sys

22:52:15.0549 2336 motccgpfl - ok

22:52:15.0611 2336 motmodem (6cbc0f4005593c96c9aecad39f0690fc) C:\Windows\system32\DRIVERS\motmodem.sys

22:52:15.0613 2336 motmodem - ok

22:52:15.0697 2336 MotoSwitchService (ebd05f60cafc5bba2602b8d7101082d3) C:\Windows\system32\DRIVERS\motswch.sys

22:52:15.0698 2336 MotoSwitchService - ok

22:52:15.0729 2336 Motousbnet (87701078c3f720ac7a028e937994cc49) C:\Windows\system32\DRIVERS\Motousbnet.sys

22:52:15.0730 2336 Motousbnet - ok

22:52:15.0793 2336 motusbdevice (307727f9829fb46ff4be0e4d1dac5002) C:\Windows\system32\DRIVERS\motusbdevice.sys

22:52:15.0794 2336 motusbdevice - ok

22:52:15.0843 2336 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys

22:52:15.0845 2336 mouclass - ok

22:52:15.0866 2336 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys

22:52:15.0868 2336 mouhid - ok

22:52:15.0894 2336 mountmgr (791af66c4d0e7c90a3646066386fb571) C:\Windows\system32\drivers\mountmgr.sys

22:52:15.0896 2336 mountmgr - ok

22:52:15.0958 2336 MpFilter (c177a7ebf5e8a0b596f618870516cab8) C:\Windows\system32\DRIVERS\MpFilter.sys

22:52:15.0961 2336 MpFilter - ok

22:52:16.0000 2336 mpio (609d1d87649ecc19796f4d76d4c15cea) C:\Windows\system32\DRIVERS\mpio.sys

22:52:16.0002 2336 mpio - ok

22:52:16.0047 2336 MpNWMon (8fbf6b31fe8af1833d93c5913d5b4d55) C:\Windows\system32\DRIVERS\MpNWMon.sys

22:52:16.0049 2336 MpNWMon - ok

22:52:16.0081 2336 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys

22:52:16.0083 2336 mpsdrv - ok

22:52:16.0108 2336 MRxDAV (30524261bb51d96d6fcbac20c810183c) C:\Windows\system32\drivers\mrxdav.sys

22:52:16.0111 2336 MRxDAV - ok

22:52:16.0169 2336 mrxsmb (040d62a9d8ad28922632137acdd984f2) C:\Windows\system32\DRIVERS\mrxsmb.sys

22:52:16.0172 2336 mrxsmb - ok

22:52:16.0197 2336 mrxsmb10 (f0067552f8f9b33d7c59403ab808a3cb) C:\Windows\system32\DRIVERS\mrxsmb10.sys

22:52:16.0201 2336 mrxsmb10 - ok

22:52:16.0250 2336 mrxsmb20 (3c142d31de9f2f193218a53fe2632051) C:\Windows\system32\DRIVERS\mrxsmb20.sys

22:52:16.0253 2336 mrxsmb20 - ok

22:52:16.0308 2336 msahci (5c37497276e3b3a5488b23a326a754b7) C:\Windows\system32\DRIVERS\msahci.sys

22:52:16.0310 2336 msahci - ok

22:52:16.0368 2336 msdsm (8d27b597229aed79430fb9db3bcbfbd0) C:\Windows\system32\DRIVERS\msdsm.sys

22:52:16.0370 2336 msdsm - ok

22:52:16.0413 2336 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys

22:52:16.0415 2336 Msfs - ok

22:52:16.0440 2336 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys

22:52:16.0441 2336 mshidkmdf - ok

22:52:16.0463 2336 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\DRIVERS\msisadrv.sys

22:52:16.0465 2336 msisadrv - ok

22:52:16.0518 2336 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys

22:52:16.0519 2336 MSKSSRV - ok

22:52:16.0562 2336 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys

22:52:16.0563 2336 MSPCLOCK - ok

22:52:16.0575 2336 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys

22:52:16.0577 2336 MSPQM - ok

22:52:16.0621 2336 MsRPC (89cb141aa8616d8c6a4610fa26c60964) C:\Windows\system32\drivers\MsRPC.sys

22:52:16.0627 2336 MsRPC - ok

22:52:16.0650 2336 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\DRIVERS\mssmbios.sys

22:52:16.0652 2336 mssmbios - ok

22:52:16.0681 2336 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys

22:52:16.0682 2336 MSTEE - ok

22:52:16.0701 2336 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys

22:52:16.0702 2336 MTConfig - ok

22:52:16.0741 2336 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys

22:52:16.0743 2336 Mup - ok

22:52:16.0783 2336 mwlPSDFilter (6ffecc25b39dc7652a0cec0ada9db589) C:\Windows\system32\DRIVERS\mwlPSDFilter.sys

22:52:16.0784 2336 mwlPSDFilter - ok

22:52:16.0800 2336 mwlPSDNServ (0befe32ca56d6ee89d58175725596a85) C:\Windows\system32\DRIVERS\mwlPSDNServ.sys

22:52:16.0801 2336 mwlPSDNServ - ok

22:52:16.0818 2336 mwlPSDVDisk (d43bc633b8660463e446e28e14a51262) C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys

22:52:16.0820 2336 mwlPSDVDisk - ok

22:52:16.0937 2336 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys

22:52:16.0941 2336 NativeWifiP - ok

22:52:17.0017 2336 NDIS (cad515dbd07d082bb317d9928ce8962c) C:\Windows\system32\drivers\ndis.sys

22:52:17.0031 2336 NDIS - ok

22:52:17.0069 2336 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys

22:52:17.0071 2336 NdisCap - ok

22:52:17.0108 2336 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys

22:52:17.0109 2336 NdisTapi - ok

22:52:17.0150 2336 Ndisuio (f105ba1e22bf1f2ee8f005d4305e4bec) C:\Windows\system32\DRIVERS\ndisuio.sys

22:52:17.0152 2336 Ndisuio - ok

22:52:17.0168 2336 NdisWan (557dfab9ca1fcb036ac77564c010dad3) C:\Windows\system32\DRIVERS\ndiswan.sys

22:52:17.0170 2336 NdisWan - ok

22:52:17.0196 2336 NDProxy (659b74fb74b86228d6338d643cd3e3cf) C:\Windows\system32\drivers\NDProxy.sys

22:52:17.0197 2336 NDProxy - ok

22:52:17.0294 2336 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys

22:52:17.0296 2336 NetBIOS - ok

22:52:17.0322 2336 NetBT (9162b273a44ab9dce5b44362731d062a) C:\Windows\system32\DRIVERS\netbt.sys

22:52:17.0327 2336 NetBT - ok

22:52:17.0382 2336 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys

22:52:17.0384 2336 nfrd960 - ok

22:52:17.0439 2336 NisDrv (5f7d72cbcdd025af1f38fdeee5646968) C:\Windows\system32\DRIVERS\NisDrvWFP.sys

22:52:17.0441 2336 NisDrv - ok

22:52:17.0521 2336 NPF (351533acc2a069b94e80bbfc177e8fdf) C:\Windows\system32\drivers\npf.sys

22:52:17.0531 2336 NPF - ok

22:52:17.0593 2336 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys

22:52:17.0595 2336 Npfs - ok

22:52:17.0647 2336 NPPTNT2 - ok

22:52:17.0700 2336 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys

22:52:17.0701 2336 nsiproxy - ok

22:52:17.0767 2336 Ntfs (356698a13c4630d5b31c37378d469196) C:\Windows\system32\drivers\Ntfs.sys

22:52:17.0818 2336 Ntfs - ok

22:52:17.0945 2336 NTIDrvr (64ddd0dee976302f4bd93e5efcc2f013) C:\Windows\system32\drivers\NTIDrvr.sys

22:52:17.0954 2336 NTIDrvr - ok

22:52:18.0050 2336 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys

22:52:18.0051 2336 Null - ok

22:52:18.0094 2336 nvraid (3e38712941e9bb4ddbee00affe3fed3d) C:\Windows\system32\DRIVERS\nvraid.sys

22:52:18.0096 2336 nvraid - ok

22:52:18.0121 2336 nvstor (477dc4d6deb99be37084c9ac6d013da1) C:\Windows\system32\DRIVERS\nvstor.sys

22:52:18.0124 2336 nvstor - ok

22:52:18.0166 2336 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\DRIVERS\nv_agp.sys

22:52:18.0168 2336 nv_agp - ok

22:52:18.0187 2336 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\DRIVERS\ohci1394.sys

22:52:18.0189 2336 ohci1394 - ok

22:52:18.0267 2336 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys

22:52:18.0269 2336 Parport - ok

22:52:18.0300 2336 partmgr (7daa117143316c4a1537e074a5a9eaf0) C:\Windows\system32\drivers\partmgr.sys

22:52:18.0302 2336 partmgr - ok

22:52:18.0333 2336 pci (f36f6504009f2fb0dfd1b17a116ad74b) C:\Windows\system32\DRIVERS\pci.sys

22:52:18.0336 2336 pci - ok

22:52:18.0359 2336 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\DRIVERS\pciide.sys

22:52:18.0360 2336 pciide - ok

22:52:18.0383 2336 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys

22:52:18.0386 2336 pcmcia - ok

22:52:18.0406 2336 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys

22:52:18.0408 2336 pcw - ok

22:52:18.0437 2336 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys

22:52:18.0445 2336 PEAUTH - ok

22:52:18.0613 2336 PptpMiniport (27cc19e81ba5e3403c48302127bda717) C:\Windows\system32\DRIVERS\raspptp.sys

22:52:18.0615 2336 PptpMiniport - ok

22:52:18.0650 2336 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys

22:52:18.0652 2336 Processor - ok

22:52:18.0698 2336 Psched (ee992183bd8eaefd9973f352e587a299) C:\Windows\system32\DRIVERS\pacer.sys

22:52:18.0701 2336 Psched - ok

22:52:18.0762 2336 PxHlpa64 (4712cc14e720ecccc0aa16949d18aaf1) C:\Windows\system32\Drivers\PxHlpa64.sys

22:52:18.0763 2336 PxHlpa64 - ok

22:52:18.0835 2336 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys

22:52:18.0901 2336 ql2300 - ok

22:52:18.0984 2336 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys

22:52:18.0987 2336 ql40xx - ok

22:52:19.0005 2336 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys

22:52:19.0006 2336 QWAVEdrv - ok

22:52:19.0039 2336 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys

22:52:19.0041 2336 RasAcd - ok

22:52:19.0083 2336 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys

22:52:19.0084 2336 RasAgileVpn - ok

22:52:19.0112 2336 Rasl2tp (87a6e852a22991580d6d39adc4790463) C:\Windows\system32\DRIVERS\rasl2tp.sys

22:52:19.0114 2336 Rasl2tp - ok

22:52:19.0138 2336 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys

22:52:19.0140 2336 RasPppoe - ok

22:52:19.0175 2336 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys

22:52:19.0177 2336 RasSstp - ok

22:52:19.0206 2336 rdbss (3bac8142102c15d59a87757c1d41dce5) C:\Windows\system32\DRIVERS\rdbss.sys

22:52:19.0211 2336 rdbss - ok

22:52:19.0230 2336 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys

22:52:19.0232 2336 rdpbus - ok

22:52:19.0253 2336 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys

22:52:19.0254 2336 RDPCDD - ok

22:52:19.0275 2336 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys

22:52:19.0276 2336 RDPENCDD - ok

22:52:19.0301 2336 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys

22:52:19.0302 2336 RDPREFMP - ok

22:52:19.0330 2336 RDPWD (8a3e6bea1c53ea6177fe2b6eba2c80d7) C:\Windows\system32\drivers\RDPWD.sys

22:52:19.0333 2336 RDPWD - ok

22:52:19.0361 2336 rdyboost (634b9a2181d98f15941236886164ec8b) C:\Windows\system32\drivers\rdyboost.sys

22:52:19.0364 2336 rdyboost - ok

22:52:19.0434 2336 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys

22:52:19.0436 2336 rspndr - ok

22:52:19.0493 2336 RSUSBSTOR (db30aa4daa0d492fa5d7717d8181ffa1) C:\Windows\system32\Drivers\RtsUStor.sys

22:52:19.0497 2336 RSUSBSTOR - ok

22:52:19.0594 2336 SASDIFSV (b2a29cc6c019fe738c39037c6218444c) C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS

22:52:19.0596 2336 SASDIFSV - ok

22:52:19.0628 2336 SASKUTIL (58a38e75f3316a83c23df6173d41f2b5) C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS

22:52:19.0629 2336 SASKUTIL - ok

22:52:19.0698 2336 sbp2port (e3bbb89983daf5622c1d50cf49f28227) C:\Windows\system32\DRIVERS\sbp2port.sys

22:52:19.0700 2336 sbp2port - ok

22:52:19.0732 2336 SCDEmu (6ce6f98ea3d07a9c2ce3cd0a5a86352d) C:\Windows\system32\drivers\SCDEmu.sys

22:52:19.0743 2336 SCDEmu - ok

22:52:19.0761 2336 scfilter (c94da20c7e3ba1dca269bc8460d98387) C:\Windows\system32\DRIVERS\scfilter.sys

22:52:19.0763 2336 scfilter - ok

22:52:19.0813 2336 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys

22:52:19.0815 2336 secdrv - ok

22:52:19.0845 2336 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys

22:52:19.0847 2336 Serenum - ok

22:52:19.0880 2336 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys

22:52:19.0883 2336 Serial - ok

22:52:19.0906 2336 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys

22:52:19.0907 2336 sermouse - ok

22:52:19.0980 2336 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\DRIVERS\sffdisk.sys

22:52:19.0981 2336 sffdisk - ok

22:52:20.0008 2336 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\DRIVERS\sffp_mmc.sys

22:52:20.0009 2336 sffp_mmc - ok

22:52:20.0033 2336 sffp_sd (178298f767fe638c9fedcbdef58bb5e4) C:\Windows\system32\DRIVERS\sffp_sd.sys

22:52:20.0034 2336 sffp_sd - ok

22:52:20.0067 2336 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys

22:52:20.0068 2336 sfloppy - ok

22:52:20.0102 2336 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys

22:52:20.0104 2336 SiSRaid2 - ok

22:52:20.0124 2336 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys

22:52:20.0126 2336 SiSRaid4 - ok

22:52:20.0140 2336 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys

22:52:20.0142 2336 Smb - ok

22:52:20.0188 2336 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys

22:52:20.0189 2336 spldr - ok

22:52:20.0264 2336 srv (2408c0366d96bcdf63e8f1c78e4a29c5) C:\Windows\system32\DRIVERS\srv.sys

22:52:20.0271 2336 srv - ok

22:52:20.0337 2336 srv2 (76548f7b818881b47d8d1ae1be9c11f8) C:\Windows\system32\DRIVERS\srv2.sys

22:52:20.0342 2336 srv2 - ok

22:52:20.0397 2336 srvnet (0af6e19d39c70844c5caa8fb0183c36e) C:\Windows\system32\DRIVERS\srvnet.sys

22:52:20.0399 2336 srvnet - ok

22:52:20.0439 2336 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys

22:52:20.0441 2336 stexstor - ok

22:52:20.0475 2336 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\DRIVERS\swenum.sys

22:52:20.0476 2336 swenum - ok

22:52:20.0535 2336 SynTP (bcf305959b53b200ceb2ad25ad22f8a7) C:\Windows\system32\DRIVERS\SynTP.sys

22:52:20.0539 2336 SynTP - ok

22:52:20.0602 2336 taphss (f33fdc72298df4bf9813a55d21f4eb31) C:\Windows\system32\DRIVERS\taphss.sys

22:52:20.0603 2336 taphss - ok

22:52:20.0705 2336 Tcpip (b9d87c7707f058ac652a398cd28de14b) C:\Windows\system32\drivers\tcpip.sys

22:52:20.0754 2336 Tcpip - ok

22:52:20.0893 2336 TCPIP6 (b9d87c7707f058ac652a398cd28de14b) C:\Windows\system32\DRIVERS\tcpip.sys

22:52:20.0905 2336 TCPIP6 - ok

22:52:20.0964 2336 tcpipreg (76d078af6f587b162d50210f761eb9ed) C:\Windows\system32\drivers\tcpipreg.sys

22:52:20.0965 2336 tcpipreg - ok

22:52:20.0994 2336 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys

22:52:20.0995 2336 TDPIPE - ok

22:52:21.0019 2336 TDTCP (e4245bda3190a582d55ed09e137401a9) C:\Windows\system32\drivers\tdtcp.sys

22:52:21.0020 2336 TDTCP - ok

22:52:21.0046 2336 tdx (079125c4b17b01fcaeebce0bcb290c0f) C:\Windows\system32\DRIVERS\tdx.sys

22:52:21.0048 2336 tdx - ok

22:52:21.0180 2336 TermDD (c448651339196c0e869a355171875522) C:\Windows\system32\DRIVERS\termdd.sys

22:52:21.0182 2336 TermDD - ok

22:52:21.0238 2336 tssecsrv (61b96c26131e37b24e93327a0bd1fb95) C:\Windows\system32\DRIVERS\tssecsrv.sys

22:52:21.0240 2336 tssecsrv - ok

22:52:21.0272 2336 tunnel (3836171a2cdf3af8ef10856db9835a70) C:\Windows\system32\DRIVERS\tunnel.sys

22:52:21.0274 2336 tunnel - ok

22:52:21.0296 2336 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys

22:52:21.0297 2336 uagp35 - ok

22:52:21.0333 2336 UBHelper (2e22c1fd397a5a9ffef55e9d1fc96c00) C:\Windows\system32\drivers\UBHelper.sys

22:52:21.0343 2336 UBHelper - ok

22:52:21.0375 2336 udfs (d47baead86c65d4f4069d7ce0a4edceb) C:\Windows\system32\DRIVERS\udfs.sys

22:52:21.0380 2336 udfs - ok

22:52:21.0431 2336 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\DRIVERS\uliagpkx.sys

22:52:21.0433 2336 uliagpkx - ok

22:52:21.0466 2336 umbus (eab6c35e62b1b0db0d1b48b671d3a117) C:\Windows\system32\DRIVERS\umbus.sys

22:52:21.0467 2336 umbus - ok

22:52:21.0485 2336 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys

22:52:21.0487 2336 UmPass - ok

22:52:21.0550 2336 USBAAPL64 (cd03479f2da26500b203ed075c146a7a) C:\Windows\system32\Drivers\usbaapl64.sys

22:52:21.0552 2336 USBAAPL64 - ok

22:52:21.0642 2336 usbaudio (77b01bc848298223a95d4ec23e1785a1) C:\Windows\system32\drivers\usbaudio.sys

22:52:21.0644 2336 usbaudio - ok

22:52:21.0679 2336 usbccgp (b26afb54a534d634523c4fb66765b026) C:\Windows\system32\DRIVERS\usbccgp.sys

22:52:21.0682 2336 usbccgp - ok

22:52:21.0710 2336 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\DRIVERS\usbcir.sys

22:52:21.0712 2336 usbcir - ok

22:52:21.0742 2336 usbehci (2ea4aff7be7eb4632e3aa8595b0803b5) C:\Windows\system32\DRIVERS\usbehci.sys

22:52:21.0744 2336 usbehci - ok

22:52:21.0777 2336 usbhub (4c9042b8df86c1e8e6240c218b99b39b) C:\Windows\system32\DRIVERS\usbhub.sys

22:52:21.0782 2336 usbhub - ok

22:52:21.0810 2336 usbohci (58e546bbaf87664fc57e0f6081e4f609) C:\Windows\system32\DRIVERS\usbohci.sys

22:52:21.0812 2336 usbohci - ok

22:52:21.0842 2336 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys

22:52:21.0843 2336 usbprint - ok

22:52:21.0881 2336 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys

22:52:21.0883 2336 usbscan - ok

22:52:21.0911 2336 USBSTOR (080d3820da6c046be82fc8b45a893e83) C:\Windows\system32\DRIVERS\USBSTOR.SYS

22:52:21.0914 2336 USBSTOR - ok

22:52:21.0940 2336 usbuhci (81fb2216d3a60d1284455d511797db3d) C:\Windows\system32\DRIVERS\usbuhci.sys

22:52:21.0942 2336 usbuhci - ok

22:52:22.0009 2336 usbvideo (7cb8c573c6e4a2714402cc0a36eab4fe) C:\Windows\System32\Drivers\usbvideo.sys

22:52:22.0012 2336 usbvideo - ok

22:52:22.0080 2336 usb_rndisx (70d05ee263568a742d14e1876df80532) C:\Windows\system32\DRIVERS\usb8023x.sys

22:52:22.0082 2336 usb_rndisx - ok

22:52:22.0143 2336 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\DRIVERS\vdrvroot.sys

22:52:22.0144 2336 vdrvroot - ok

22:52:22.0187 2336 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys

22:52:22.0188 2336 vga - ok

22:52:22.0216 2336 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys

22:52:22.0218 2336 VgaSave - ok

22:52:22.0250 2336 vhdmp (c82e748660f62a242b2dfac1442f22a4) C:\Windows\system32\DRIVERS\vhdmp.sys

22:52:22.0253 2336 vhdmp - ok

22:52:22.0274 2336 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\DRIVERS\viaide.sys

22:52:22.0275 2336 viaide - ok

22:52:22.0301 2336 volmgr (2b1a3dae2b4e70dbba822b7a03fbd4a3) C:\Windows\system32\DRIVERS\volmgr.sys

22:52:22.0303 2336 volmgr - ok

22:52:22.0332 2336 volmgrx (99b0cbb569ca79acaed8c91461d765fb) C:\Windows\system32\drivers\volmgrx.sys

22:52:22.0336 2336 volmgrx - ok

22:52:22.0365 2336 volsnap (58f82eed8ca24b461441f9c3e4f0bf5c) C:\Windows\system32\DRIVERS\volsnap.sys

22:52:22.0370 2336 volsnap - ok

22:52:22.0426 2336 vpcbus (abd9b4a7e2d0ae51a3b8df1af3152d61) C:\Windows\system32\DRIVERS\vpchbus.sys

22:52:22.0429 2336 vpcbus - ok

22:52:22.0479 2336 vpcnfltr (8acda395841538ce9713a67fe8b2a3eb) C:\Windows\system32\DRIVERS\vpcnfltr.sys

22:52:22.0481 2336 vpcnfltr - ok

22:52:22.0517 2336 vpcusb (31924e31bc315773e6d149b157db46d5) C:\Windows\system32\DRIVERS\vpcusb.sys

22:52:22.0520 2336 vpcusb - ok

22:52:22.0558 2336 vpcvmm (510d250a08c09850f5c78ca2011b3b62) C:\Windows\system32\drivers\vpcvmm.sys

22:52:22.0563 2336 vpcvmm - ok

22:52:22.0598 2336 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys

22:52:22.0601 2336 vsmraid - ok

22:52:22.0630 2336 vtany - ok

22:52:22.0655 2336 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys

22:52:22.0656 2336 vwifibus - ok

22:52:22.0675 2336 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys

22:52:22.0677 2336 vwififlt - ok

22:52:22.0767 2336 VX6000 (07e6731ff9399a3b72d64150d4c5f71a) C:\Windows\system32\DRIVERS\VX6000Xp.sys

22:52:22.0829 2336 VX6000 - ok

22:52:22.0936 2336 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys

22:52:22.0937 2336 WacomPen - ok

22:52:22.0988 2336 WANARP (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys

22:52:22.0990 2336 WANARP - ok

22:52:23.0010 2336 Wanarpv6 (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys

22:52:23.0011 2336 Wanarpv6 - ok

22:52:23.0126 2336 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys

22:52:23.0128 2336 Wd - ok

22:52:23.0159 2336 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys

22:52:23.0167 2336 Wdf01000 - ok

22:52:23.0223 2336 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys

22:52:23.0224 2336 WfpLwf - ok

22:52:23.0241 2336 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys

22:52:23.0243 2336 WIMMount - ok

22:52:23.0339 2336 WINUSB (817eaff5d38674edd7713b9dfb8e9791) C:\Windows\system32\DRIVERS\WinUSB.SYS

22:52:23.0341 2336 WINUSB - ok

22:52:23.0411 2336 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\DRIVERS\wmiacpi.sys

22:52:23.0413 2336 WmiAcpi - ok

22:52:23.0470 2336 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys

22:52:23.0471 2336 ws2ifsl - ok

22:52:23.0524 2336 WSDPrintDevice (8d918b1db190a4d9b1753a66fa8c96e8) C:\Windows\system32\DRIVERS\WSDPrint.sys

22:52:23.0526 2336 WSDPrintDevice - ok

22:52:23.0557 2336 WSDScan (4a2a5c50dd1a63577d3aca94269fbc7f) C:\Windows\system32\DRIVERS\WSDScan.sys

22:52:23.0558 2336 WSDScan - ok

22:52:23.0615 2336 WudfPf (7cadc74271dd6461c452c271b30bd378) C:\Windows\system32\drivers\WudfPf.sys

22:52:23.0617 2336 WudfPf - ok

22:52:23.0644 2336 WUDFRd (3b197af0fff08aa66b6b2241ca538d64) C:\Windows\system32\DRIVERS\WUDFRd.sys

22:52:23.0647 2336 WUDFRd - ok

22:52:23.0747 2336 X6va002 - ok

22:52:23.0786 2336 X6va005 - ok

22:52:23.0805 2336 xspirit - ok

22:52:23.0851 2336 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0

22:52:23.0872 2336 \Device\Harddisk0\DR0 - ok

22:52:23.0876 2336 Boot (0x1200) (45548ec6d6ba1b92e32fc1f175af2702) \Device\Harddisk0\DR0\Partition0

22:52:23.0877 2336 \Device\Harddisk0\DR0\Partition0 - ok

22:52:23.0893 2336 Boot (0x1200) (d0b471cf382984c2898153efe8b1f873) \Device\Harddisk0\DR0\Partition1

22:52:23.0894 2336 \Device\Harddisk0\DR0\Partition1 - ok

22:52:23.0894 2336 ============================================================

22:52:23.0894 2336 Scan finished

22:52:23.0894 2336 ============================================================

22:52:23.0913 5868 Detected object count: 0

22:52:23.0913 5868 Actual detected object count: 0

22:54:23.0067 5484 ============================================================

22:54:23.0067 5484 Scan started

22:54:23.0067 5484 Mode: Manual;

22:54:23.0067 5484 ============================================================

22:54:23.0453 5484 1394ohci (1b00662092f9f9568b995902f0cc40d5) C:\Windows\system32\DRIVERS\1394ohci.sys

22:54:23.0455 5484 1394ohci - ok

22:54:23.0483 5484 ACPI (6f11e88748cdefd2f76aa215f97ddfe5) C:\Windows\system32\DRIVERS\ACPI.sys

22:54:23.0485 5484 ACPI - ok

22:54:23.0503 5484 AcpiPmi (63b05a0420ce4bf0e4af6dcc7cada254) C:\Windows\system32\DRIVERS\acpipmi.sys

22:54:23.0504 5484 AcpiPmi - ok

22:54:23.0533 5484 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys

22:54:23.0537 5484 adp94xx - ok

22:54:23.0560 5484 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys

22:54:23.0562 5484 adpahci - ok

22:54:23.0587 5484 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys

22:54:23.0589 5484 adpu320 - ok

22:54:23.0654 5484 AFD (6ef20ddf3172e97d69f596fb90602f29) C:\Windows\system32\drivers\afd.sys

22:54:23.0657 5484 AFD - ok

22:54:23.0721 5484 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\DRIVERS\agp440.sys

22:54:23.0722 5484 agp440 - ok

22:54:23.0753 5484 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\DRIVERS\aliide.sys

22:54:23.0754 5484 aliide - ok

22:54:23.0772 5484 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\DRIVERS\amdide.sys

22:54:23.0772 5484 amdide - ok

22:54:23.0801 5484 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys

22:54:23.0801 5484 AmdK8 - ok

22:54:23.0824 5484 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys

22:54:23.0825 5484 AmdPPM - ok

22:54:23.0851 5484 amdsata (7a4b413614c055935567cf88a9734d38) C:\Windows\system32\DRIVERS\amdsata.sys

22:54:23.0852 5484 amdsata - ok

22:54:23.0871 5484 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys

22:54:23.0873 5484 amdsbs - ok

22:54:23.0890 5484 amdxata (b4ad0cacbab298671dd6f6ef7e20679d) C:\Windows\system32\DRIVERS\amdxata.sys

22:54:23.0891 5484 amdxata - ok

22:54:23.0916 5484 AppID (42fd751b27fa0e9c69bb39f39e409594) C:\Windows\system32\drivers\appid.sys

22:54:23.0917 5484 AppID - ok

22:54:23.0956 5484 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys

22:54:23.0957 5484 arc - ok

22:54:24.0009 5484 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys

22:54:24.0010 5484 arcsas - ok

22:54:24.0026 5484 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys

22:54:24.0026 5484 AsyncMac - ok

22:54:24.0042 5484 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\DRIVERS\atapi.sys

22:54:24.0043 5484 atapi - ok

22:54:24.0096 5484 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys

22:54:24.0099 5484 b06bdrv - ok

22:54:24.0127 5484 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys

22:54:24.0129 5484 b57nd60a - ok

22:54:24.0230 5484 BCM43XX (b44879610f2dc4a046b14befa3ae72de) C:\Windows\system32\DRIVERS\bcmwl664.sys

22:54:24.0248 5484 BCM43XX - ok

22:54:24.0343 5484 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys

22:54:24.0344 5484 Beep - ok

22:54:24.0374 5484 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys

22:54:24.0374 5484 blbdrive - ok

22:54:24.0429 5484 bowser (19d20159708e152267e53b66677a4995) C:\Windows\system32\DRIVERS\bowser.sys

22:54:24.0430 5484 bowser - ok

22:54:24.0449 5484 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys

22:54:24.0450 5484 BrFiltLo - ok

22:54:24.0471 5484 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys

22:54:24.0472 5484 BrFiltUp - ok

22:54:24.0516 5484 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys

22:54:24.0519 5484 Brserid - ok

22:54:24.0543 5484 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys

22:54:24.0544 5484 BrSerWdm - ok

22:54:24.0565 5484 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys

22:54:24.0566 5484 BrUsbMdm - ok

22:54:24.0578 5484 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys

22:54:24.0579 5484 BrUsbSer - ok

22:54:24.0647 5484 BTCFilterService (ff7c57973eead140062238c5a0b7d455) C:\Windows\system32\DRIVERS\motfilt.sys

22:54:24.0647 5484 BTCFilterService - ok

22:54:24.0672 5484 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys

22:54:24.0673 5484 BTHMODEM - ok

22:54:24.0725 5484 CBDisk (b99d91e4cd9017f213645aa2e80eb425) C:\Windows\system32\drivers\CBDisk.sys

22:54:24.0726 5484 CBDisk - ok

22:54:24.0764 5484 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys

22:54:24.0765 5484 cdfs - ok

22:54:24.0834 5484 cdrom (83d2d75e1efb81b3450c18131443f7db) C:\Windows\system32\DRIVERS\cdrom.sys

22:54:24.0835 5484 cdrom - ok

22:54:24.0863 5484 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys

22:54:24.0864 5484 circlass - ok

22:54:24.0899 5484 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys

22:54:24.0902 5484 CLFS - ok

22:54:24.0953 5484 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys

22:54:24.0953 5484 CmBatt - ok

22:54:24.0978 5484 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\DRIVERS\cmdide.sys

22:54:24.0979 5484 cmdide - ok

22:54:25.0014 5484 CNG (f95fd4cb7da00ba2a63ce9f6b5c053e1) C:\Windows\system32\Drivers\cng.sys

22:54:25.0017 5484 CNG - ok

22:54:25.0036 5484 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys

22:54:25.0037 5484 Compbatt - ok

22:54:25.0062 5484 CompositeBus (f26b3a86f6fa87ca360b879581ab4123) C:\Windows\system32\DRIVERS\CompositeBus.sys

22:54:25.0062 5484 CompositeBus - ok

22:54:25.0091 5484 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys

22:54:25.0092 5484 crcdisk - ok

22:54:25.0170 5484 DfsC (9c253ce7311ca60fc11c774692a13208) C:\Windows\system32\Drivers\dfsc.sys

22:54:25.0171 5484 DfsC - ok

22:54:25.0199 5484 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys

22:54:25.0200 5484 discache - ok

22:54:25.0215 5484 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys

22:54:25.0216 5484 Disk - ok

22:54:25.0260 5484 DKbFltr (d5bcb77be83cf99f508943945d46343d) C:\Windows\SysWOW64\Drivers\DKbFltr.sys

22:54:25.0261 5484 DKbFltr - ok

22:54:25.0332 5484 Dot4 (b42ed0320c6e41102fde0005154849bb) C:\Windows\system32\DRIVERS\Dot4.sys

22:54:25.0333 5484 Dot4 - ok

22:54:25.0354 5484 Dot4Print (85135ad27e79b689335c08167d917cde) C:\Windows\system32\DRIVERS\Dot4Prt.sys

22:54:25.0354 5484 Dot4Print - ok

22:54:25.0371 5484 dot4usb (fd05a02b0370bc3000f402e543ca5814) C:\Windows\system32\DRIVERS\dot4usb.sys

22:54:25.0371 5484 dot4usb - ok

22:54:25.0408 5484 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys

22:54:25.0409 5484 drmkaud - ok

22:54:25.0494 5484 dump_wmimmc - ok

22:54:25.0604 5484 DXGKrnl (1633b9abf52784a1331476397a48cbef) C:\Windows\System32\drivers\dxgkrnl.sys

22:54:25.0610 5484 DXGKrnl - ok

22:54:25.0623 5484 EagleX64 - ok

22:54:25.0735 5484 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys

22:54:25.0755 5484 ebdrv - ok

22:54:25.0824 5484 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys

22:54:25.0828 5484 elxstor - ok

22:54:25.0882 5484 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\DRIVERS\errdev.sys

22:54:25.0883 5484 ErrDev - ok

22:54:25.0942 5484 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys

22:54:25.0944 5484 exfat - ok

22:54:25.0970 5484 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys

22:54:25.0972 5484 fastfat - ok

22:54:25.0996 5484 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys

22:54:25.0996 5484 fdc - ok

22:54:26.0030 5484 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys

22:54:26.0031 5484 FileInfo - ok

22:54:26.0051 5484 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys

22:54:26.0052 5484 Filetrace - ok

22:54:26.0076 5484 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys

22:54:26.0077 5484 flpydisk - ok

22:54:26.0103 5484 FltMgr (f7866af72abbaf84b1fa5aa195378c59) C:\Windows\system32\drivers\fltmgr.sys

22:54:26.0106 5484 FltMgr - ok

22:54:26.0123 5484 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys

22:54:26.0124 5484 FsDepends - ok

22:54:26.0176 5484 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\Windows\system32\drivers\Fs_Rec.sys

22:54:26.0177 5484 Fs_Rec - ok

22:54:26.0214 5484 fvevol (ae87ba80d0ec3b57126ed2cdc15b24ed) C:\Windows\system32\DRIVERS\fvevol.sys

22:54:26.0216 5484 fvevol - ok

22:54:26.0233 5484 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys

22:54:26.0234 5484 gagp30kx - ok

22:54:26.0287 5484 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys

22:54:26.0288 5484 GEARAspiWDM - ok

22:54:26.0373 5484 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys

22:54:26.0373 5484 hcw85cir - ok

22:54:26.0404 5484 HdAudAddService (6410f6f415b2a5a9037224c41da8bf12) C:\Windows\system32\drivers\HdAudio.sys

22:54:26.0406 5484 HdAudAddService - ok

22:54:26.0433 5484 HDAudBus (0a49913402747a0b67de940fb42cbdbb) C:\Windows\system32\DRIVERS\HDAudBus.sys

22:54:26.0434 5484 HDAudBus - ok

22:54:26.0454 5484 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys

22:54:26.0455 5484 HidBatt - ok

22:54:26.0475 5484 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys

22:54:26.0476 5484 HidBth - ok

22:54:26.0503 5484 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys

22:54:26.0504 5484 HidIr - ok

22:54:26.0523 5484 HidUsb (b3bf6b5b50006def50b66306d99fcf6f) C:\Windows\system32\DRIVERS\hidusb.sys

22:54:26.0524 5484 HidUsb - ok

22:54:26.0564 5484 HpSAMD (0886d440058f203eba0e1825e4355914) C:\Windows\system32\DRIVERS\HpSAMD.sys

22:54:26.0565 5484 HpSAMD - ok

22:54:26.0635 5484 HssDrv (a60c877e1cd3aa2e4e5ccd8af305c0f1) C:\Windows\system32\DRIVERS\HssDrv.sys

22:54:26.0636 5484 HssDrv - ok

22:54:26.0684 5484 HTTP (cee049cac4efa7f4e1e4ad014414a5d4) C:\Windows\system32\drivers\HTTP.sys

22:54:26.0689 5484 HTTP - ok

22:54:26.0704 5484 hwpolicy (f17766a19145f111856378df337a5d79) C:\Windows\system32\drivers\hwpolicy.sys

22:54:26.0704 5484 hwpolicy - ok

22:54:26.0724 5484 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys

22:54:26.0725 5484 i8042prt - ok

22:54:26.0785 5484 iaStor (be7d72fcf442c26975942007e0831241) C:\Windows\system32\DRIVERS\iaStor.sys

22:54:26.0788 5484 iaStor - ok

22:54:26.0816 5484 iaStorV (d83efb6fd45df9d55e9a1afc63640d50) C:\Windows\system32\DRIVERS\iaStorV.sys

22:54:26.0819 5484 iaStorV - ok

22:54:27.0008 5484 igfx (2d18c9e1f23970de32d78d3b1cdda0a7) C:\Windows\system32\DRIVERS\igdkmd64.sys

22:54:27.0054 5484 igfx - ok

22:54:27.0080 5484 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys

22:54:27.0081 5484 iirsp - ok

22:54:27.0194 5484 IntcAzAudAddService (88798b4381fd58fae2da07880c177c5c) C:\Windows\system32\drivers\RTKVHD64.sys

22:54:27.0211 5484 IntcAzAudAddService - ok

22:54:27.0234 5484 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\DRIVERS\intelide.sys

22:54:27.0235 5484 intelide - ok

22:54:27.0257 5484 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys

22:54:27.0258 5484 intelppm - ok

22:54:27.0291 5484 IpFilterDriver (722dd294df62483cecaae6e094b4d695) C:\Windows\system32\DRIVERS\ipfltdrv.sys

22:54:27.0292 5484 IpFilterDriver - ok

22:54:27.0308 5484 IPMIDRV (e2b4a4494db7cb9b89b55ca268c337c5) C:\Windows\system32\DRIVERS\IPMIDrv.sys

22:54:27.0309 5484 IPMIDRV - ok

22:54:27.0331 5484 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys

22:54:27.0333 5484 IPNAT - ok

22:54:27.0384 5484 iPodDrv (02def37ab75e0032c50724646f708de8) C:\Windows\system32\drivers\iPodDrv.sys

22:54:27.0386 5484 iPodDrv - ok

22:54:27.0407 5484 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys

22:54:27.0407 5484 IRENUM - ok

22:54:27.0427 5484 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\DRIVERS\isapnp.sys

22:54:27.0428 5484 isapnp - ok

22:54:27.0458 5484 iScsiPrt (fa4d2557de56d45b0a346f93564be6e1) C:\Windows\system32\DRIVERS\msiscsi.sys

22:54:27.0460 5484 iScsiPrt - ok

22:54:27.0478 5484 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys

22:54:27.0479 5484 kbdclass - ok

22:54:27.0500 5484 kbdhid (6def98f8541e1b5dceb2c822a11f7323) C:\Windows\system32\DRIVERS\kbdhid.sys

22:54:27.0501 5484 kbdhid - ok

22:54:27.0523 5484 KSecDD (e8b6fcc9c83535c67f835d407620bd27) C:\Windows\system32\Drivers\ksecdd.sys

22:54:27.0524 5484 KSecDD - ok

22:54:27.0561 5484 KSecPkg (a8c63880ef6f4d3fec7b616b9c060215) C:\Windows\system32\Drivers\ksecpkg.sys

22:54:27.0562 5484 KSecPkg - ok

22:54:27.0583 5484 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys

22:54:27.0584 5484 ksthunk - ok

22:54:27.0628 5484 L1C (2377ec4cc3e356655b996f39b43486b6) C:\Windows\system32\DRIVERS\L1C62x64.sys

22:54:27.0629 5484 L1C - ok

22:54:27.0665 5484 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys

22:54:27.0666 5484 lltdio - ok

22:54:27.0711 5484 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys

22:54:27.0712 5484 LSI_FC - ok

22:54:27.0729 5484 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys

22:54:27.0730 5484 LSI_SAS - ok

22:54:27.0749 5484 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys

22:54:27.0750 5484 LSI_SAS2 - ok

22:54:27.0765 5484 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys

22:54:27.0766 5484 LSI_SCSI - ok

22:54:27.0800 5484 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys

22:54:27.0801 5484 luafv - ok

22:54:27.0870 5484 MBAMProtector (23a854450dab5c9b7a42ab9be6f2e4bd) C:\Windows\system32\drivers\mbam.sys

22:54:27.0871 5484 MBAMProtector - ok

22:54:27.0934 5484 MDFSYSNT (99875732a0c1373316af28ed79c168cc) C:\Windows\system32\drivers\MDFSYSNT.sys

22:54:27.0938 5484 MDFSYSNT - ok

22:54:27.0960 5484 MDPMGRNT (8d3b834090836a01f49b97f22ae9c83c) C:\Windows\system32\DRIVERS\MDPMGRNT.SYS

22:54:27.0962 5484 MDPMGRNT - ok

22:54:27.0989 5484 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys

22:54:27.0990 5484 megasas - ok

22:54:28.0016 5484 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys

22:54:28.0019 5484 MegaSR - ok

22:54:28.0051 5484 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys

22:54:28.0052 5484 Modem - ok

22:54:28.0094 5484 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys

22:54:28.0095 5484 monitor - ok

22:54:28.0125 5484 motandroidusb (d69f1e9a944a5f46a494af901ed41118) C:\Windows\system32\Drivers\motoandroid.sys

22:54:28.0125 5484 motandroidusb - ok

22:54:28.0164 5484 motccgp (a70bf78713b104c46c4e6e7858b6f02e) C:\Windows\system32\DRIVERS\motccgp.sys

22:54:28.0165 5484 motccgp - ok

22:54:28.0175 5484 motccgpfl (d51e009baeda07ebc107d49d224c2414) C:\Windows\system32\DRIVERS\motccgpfl.sys

22:54:28.0176 5484 motccgpfl - ok

22:54:28.0254 5484 motmodem (6cbc0f4005593c96c9aecad39f0690fc) C:\Windows\system32\DRIVERS\motmodem.sys

22:54:28.0255 5484 motmodem - ok

22:54:28.0273 5484 MotoSwitchService (ebd05f60cafc5bba2602b8d7101082d3) C:\Windows\system32\DRIVERS\motswch.sys

22:54:28.0274 5484 MotoSwitchService - ok

22:54:28.0306 5484 Motousbnet (87701078c3f720ac7a028e937994cc49) C:\Windows\system32\DRIVERS\Motousbnet.sys

22:54:28.0306 5484 Motousbnet - ok

22:54:28.0358 5484 motusbdevice (307727f9829fb46ff4be0e4d1dac5002) C:\Windows\system32\DRIVERS\motusbdevice.sys

22:54:28.0359 5484 motusbdevice - ok

22:54:28.0397 5484 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys

22:54:28.0398 5484 mouclass - ok

22:54:28.0420 5484 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys

22:54:28.0421 5484 mouhid - ok

22:54:28.0448 5484 mountmgr (791af66c4d0e7c90a3646066386fb571) C:\Windows\system32\drivers\mountmgr.sys

22:54:28.0449 5484 mountmgr - ok

22:54:28.0501 5484 MpFilter (c177a7ebf5e8a0b596f618870516cab8) C:\Windows\system32\DRIVERS\MpFilter.sys

22:54:28.0503 5484 MpFilter - ok

22:54:28.0532 5484 mpio (609d1d87649ecc19796f4d76d4c15cea) C:\Windows\system32\DRIVERS\mpio.sys

22:54:28.0533 5484 mpio - ok

22:54:28.0557 5484 MpNWMon (8fbf6b31fe8af1833d93c5913d5b4d55) C:\Windows\system32\DRIVERS\MpNWMon.sys

22:54:28.0558 5484 MpNWMon - ok

22:54:28.0580 5484 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys

22:54:28.0581 5484 mpsdrv - ok

22:54:28.0598 5484 MRxDAV (30524261bb51d96d6fcbac20c810183c) C:\Windows\system32\drivers\mrxdav.sys

22:54:28.0601 5484 MRxDAV - ok

22:54:28.0657 5484 mrxsmb (040d62a9d8ad28922632137acdd984f2) C:\Windows\system32\DRIVERS\mrxsmb.sys

22:54:28.0658 5484 mrxsmb - ok

22:54:28.0685 5484 mrxsmb10 (f0067552f8f9b33d7c59403ab808a3cb) C:\Windows\system32\DRIVERS\mrxsmb10.sys

22:54:28.0687 5484 mrxsmb10 - ok

22:54:28.0738 5484 mrxsmb20 (3c142d31de9f2f193218a53fe2632051) C:\Windows\system32\DRIVERS\mrxsmb20.sys

22:54:28.0739 5484 mrxsmb20 - ok

22:54:28.0773 5484 msahci (5c37497276e3b3a5488b23a326a754b7) C:\Windows\system32\DRIVERS\msahci.sys

22:54:28.0774 5484 msahci - ok

22:54:28.0800 5484 msdsm (8d27b597229aed79430fb9db3bcbfbd0) C:\Windows\system32\DRIVERS\msdsm.sys

22:54:28.0801 5484 msdsm - ok

22:54:28.0834 5484 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys

22:54:28.0835 5484 Msfs - ok

22:54:28.0861 5484 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys

22:54:28.0862 5484 mshidkmdf - ok

22:54:28.0884 5484 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\DRIVERS\msisadrv.sys

22:54:28.0885 5484 msisadrv - ok

22:54:28.0916 5484 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys

22:54:28.0917 5484 MSKSSRV - ok

22:54:28.0938 5484 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys

22:54:28.0939 5484 MSPCLOCK - ok

22:54:28.0951 5484 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys

22:54:28.0953 5484 MSPQM - ok

22:54:28.0987 5484 MsRPC (89cb141aa8616d8c6a4610fa26c60964) C:\Windows\system32\drivers\MsRPC.sys

22:54:28.0990 5484 MsRPC - ok

22:54:29.0015 5484 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\DRIVERS\mssmbios.sys

22:54:29.0016 5484 mssmbios - ok

22:54:29.0035 5484 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys

22:54:29.0036 5484 MSTEE - ok

22:54:29.0055 5484 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys

22:54:29.0056 5484 MTConfig - ok

22:54:29.0084 5484 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys

22:54:29.0085 5484 Mup - ok

22:54:29.0126 5484 mwlPSDFilter (6ffecc25b39dc7652a0cec0ada9db589) C:\Windows\system32\DRIVERS\mwlPSDFilter.sys

22:54:29.0127 5484 mwlPSDFilter - ok

22:54:29.0143 5484 mwlPSDNServ (0befe32ca56d6ee89d58175725596a85) C:\Windows\system32\DRIVERS\mwlPSDNServ.sys

22:54:29.0143 5484 mwlPSDNServ - ok

22:54:29.0162 5484 mwlPSDVDisk (d43bc633b8660463e446e28e14a51262) C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys

22:54:29.0163 5484 mwlPSDVDisk - ok

22:54:29.0213 5484 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys

22:54:29.0215 5484 NativeWifiP - ok

22:54:29.0271 5484 NDIS (cad515dbd07d082bb317d9928ce8962c) C:\Windows\system32\drivers\ndis.sys

22:54:29.0277 5484 NDIS - ok

22:54:29.0301 5484 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys

22:54:29.0302 5484 NdisCap - ok

22:54:29.0329 5484 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys

22:54:29.0329 5484 NdisTapi - ok

22:54:29.0349 5484 Ndisuio (f105ba1e22bf1f2ee8f005d4305e4bec) C:\Windows\system32\DRIVERS\ndisuio.sys

22:54:29.0350 5484 Ndisuio - ok

22:54:29.0377 5484 NdisWan (557dfab9ca1fcb036ac77564c010dad3) C:\Windows\system32\DRIVERS\ndiswan.sys

22:54:29.0379 5484 NdisWan - ok

22:54:29.0394 5484 NDProxy (659b74fb74b86228d6338d643cd3e3cf) C:\Windows\system32\drivers\NDProxy.sys

22:54:29.0395 5484 NDProxy - ok

22:54:29.0415 5484 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys

22:54:29.0417 5484 NetBIOS - ok

22:54:29.0443 5484 NetBT (9162b273a44ab9dce5b44362731d062a) C:\Windows\system32\DRIVERS\netbt.sys

22:54:29.0445 5484 NetBT - ok

22:54:29.0492 5484 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys

22:54:29.0493 5484 nfrd960 - ok

22:54:29.0560 5484 NisDrv (5f7d72cbcdd025af1f38fdeee5646968) C:\Windows\system32\DRIVERS\NisDrvWFP.sys

22:54:29.0562 5484 NisDrv - ok

22:54:29.0620 5484 NPF (351533acc2a069b94e80bbfc177e8fdf) C:\Windows\system32\drivers\npf.sys

22:54:29.0621 5484 NPF - ok

22:54:29.0647 5484 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys

22:54:29.0648 5484 Npfs - ok

22:54:29.0660 5484 NPPTNT2 - ok

22:54:29.0686 5484 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys

22:54:29.0687 5484 nsiproxy - ok

22:54:29.0742 5484 Ntfs (356698a13c4630d5b31c37378d469196) C:\Windows\system32\drivers\Ntfs.sys

22:54:29.0753 5484 Ntfs - ok

22:54:29.0787 5484 NTIDrvr (64ddd0dee976302f4bd93e5efcc2f013) C:\Windows\system32\drivers\NTIDrvr.sys

22:54:29.0788 5484 NTIDrvr - ok

22:54:29.0815 5484 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys

22:54:29.0815 5484 Null - ok

22:54:29.0847 5484 nvraid (3e38712941e9bb4ddbee00affe3fed3d) C:\Windows\system32\DRIVERS\nvraid.sys

22:54:29.0849 5484 nvraid - ok

22:54:29.0875 5484 nvstor (477dc4d6deb99be37084c9ac6d013da1) C:\Windows\system32\DRIVERS\nvstor.sys

22:54:29.0876 5484 nvstor - ok

22:54:29.0908 5484 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\DRIVERS\nv_agp.sys

22:54:29.0910 5484 nv_agp - ok

22:54:29.0930 5484 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\DRIVERS\ohci1394.sys

22:54:29.0931 5484 ohci1394 - ok

22:54:29.0976 5484 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys

22:54:29.0977 5484 Parport - ok

22:54:30.0009 5484 partmgr (7daa117143316c4a1537e074a5a9eaf0) C:\Windows\system32\drivers\partmgr.sys

22:54:30.0010 5484 partmgr - ok

22:54:30.0064 5484 pci (f36f6504009f2fb0dfd1b17a116ad74b) C:\Windows\system32\DRIVERS\pci.sys

22:54:30.0065 5484 pci - ok

22:54:30.0090 5484 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\DRIVERS\pciide.sys

22:54:30.0091 5484 pciide - ok

22:54:30.0114 5484 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys

22:54:30.0116 5484 pcmcia - ok

22:54:30.0137 5484 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys

22:54:30.0138 5484 pcw - ok

22:54:30.0168 5484 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys

22:54:30.0172 5484 PEAUTH - ok

22:54:30.0276 5484 PptpMiniport (27cc19e81ba5e3403c48302127bda717) C:\Windows\system32\DRIVERS\raspptp.sys

22:54:30.0278 5484 PptpMiniport - ok

22:54:30.0304 5484 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys

22:54:30.0305 5484 Processor - ok

22:54:30.0340 5484 Psched (ee992183bd8eaefd9973f352e587a299) C:\Windows\system32\DRIVERS\pacer.sys

22:54:30.0341 5484 Psched - ok

22:54:30.0393 5484 PxHlpa64 (4712cc14e720ecccc0aa16949d18aaf1) C:\Windows\system32\Drivers\PxHlpa64.sys

22:54:30.0394 5484 PxHlpa64 - ok

22:54:30.0443 5484 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys

22:54:30.0453 5484 ql2300 - ok

22:54:30.0482 5484 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys

22:54:30.0483 5484 ql40xx - ok

22:54:30.0514 5484 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys

22:54:30.0515 5484 QWAVEdrv - ok

22:54:30.0537 5484 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys

22:54:30.0538 5484 RasAcd - ok

22:54:30.0570 5484 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys

22:54:30.0571 5484 RasAgileVpn - ok

22:54:30.0599 5484 Rasl2tp (87a6e852a22991580d6d39adc4790463) C:\Windows\system32\DRIVERS\rasl2tp.sys

22:54:30.0600 5484 Rasl2tp - ok

22:54:30.0625 5484 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys

22:54:30.0626 5484 RasPppoe - ok

22:54:30.0651 5484 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys

22:54:30.0652 5484 RasSstp - ok

22:54:30.0682 5484 rdbss (3bac8142102c15d59a87757c1d41dce5) C:\Windows\system32\DRIVERS\rdbss.sys

22:54:30.0684 5484 rdbss - ok

22:54:30.0706 5484 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys

22:54:30.0707 5484 rdpbus - ok

22:54:30.0729 5484 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys

22:54:30.0730 5484 RDPCDD - ok

22:54:30.0744 5484 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys

22:54:30.0749 5484 RDPENCDD - ok

22:54:30.0777 5484 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys

22:54:30.0778 5484 RDPREFMP - ok

22:54:30.0805 5484 RDPWD (8a3e6bea1c53ea6177fe2b6eba2c80d7) C:\Windows\system32\drivers\RDPWD.sys

22:54:30.0807 5484 RDPWD - ok

22:54:30.0837 5484 rdyboost (634b9a2181d98f15941236886164ec8b) C:\Windows\system32\drivers\rdyboost.sys

22:54:30.0838 5484 rdyboost - ok

22:54:30.0888 5484 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys

22:54:30.0889 5484 rspndr - ok

22:54:30.0935 5484 RSUSBSTOR (db30aa4daa0d492fa5d7717d8181ffa1) C:\Windows\system32\Drivers\RtsUStor.sys

22:54:30.0938 5484 RSUSBSTOR - ok

22:54:31.0037 5484 SASDIFSV (b2a29cc6c019fe738c39037c6218444c) C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS

22:54:31.0037 5484 SASDIFSV - ok

22:54:31.0048 5484 SASKUTIL (58a38e75f3316a83c23df6173d41f2b5) C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS

22:54:31.0048 5484 SASKUTIL - ok

22:54:31.0118 5484 sbp2port (e3bbb89983daf5622c1d50cf49f28227) C:\Windows\system32\DRIVERS\sbp2port.sys

22:54:31.0120 5484 sbp2port - ok

22:54:31.0163 5484 SCDEmu (6ce6f98ea3d07a9c2ce3cd0a5a86352d) C:\Windows\system32\drivers\SCDEmu.sys

22:54:31.0165 5484 SCDEmu - ok

22:54:31.0181 5484 scfilter (c94da20c7e3ba1dca269bc8460d98387) C:\Windows\system32\DRIVERS\scfilter.sys

22:54:31.0182 5484 scfilter - ok

22:54:31.0222 5484 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys

22:54:31.0223 5484 secdrv - ok

22:54:31.0254 5484 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys

22:54:31.0255 5484 Serenum - ok

22:54:31.0278 5484 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys

22:54:31.0279 5484 Serial - ok

22:54:31.0303 5484 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys

22:54:31.0304 5484 sermouse - ok

22:54:31.0377 5484 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\DRIVERS\sffdisk.sys

22:54:31.0378 5484 sffdisk - ok

22:54:31.0395 5484 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\DRIVERS\sffp_mmc.sys

22:54:31.0395 5484 sffp_mmc - ok

22:54:31.0420 5484 sffp_sd (178298f767fe638c9fedcbdef58bb5e4) C:\Windows\system32\DRIVERS\sffp_sd.sys

22:54:31.0420 5484 sffp_sd - ok

22:54:31.0453 5484 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys

22:54:31.0454 5484 sfloppy - ok

22:54:31.0478 5484 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys

22:54:31.0479 5484 SiSRaid2 - ok

22:54:31.0499 5484 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys

22:54:31.0500 5484 SiSRaid4 - ok

22:54:31.0516 5484 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys

22:54:31.0517 5484 Smb - ok

22:54:31.0552 5484 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys

22:54:31.0553 5484 spldr - ok

22:54:31.0630 5484 srv (2408c0366d96bcdf63e8f1c78e4a29c5) C:\Windows\system32\DRIVERS\srv.sys

22:54:31.0633 5484 srv - ok

22:54:31.0690 5484 srv2 (76548f7b818881b47d8d1ae1be9c11f8) C:\Windows\system32\DRIVERS\srv2.sys

22:54:31.0693 5484 srv2 - ok

22:54:31.0739 5484 srvnet (0af6e19d39c70844c5caa8fb0183c36e) C:\Windows\system32\DRIVERS\srvnet.sys

22:54:31.0740 5484 srvnet - ok

22:54:31.0781 5484 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys

22:54:31.0782 5484 stexstor - ok

22:54:31.0806 5484 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\DRIVERS\swenum.sys

22:54:31.0807 5484 swenum - ok

22:54:31.0855 5484 SynTP (bcf305959b53b200ceb2ad25ad22f8a7) C:\Windows\system32\DRIVERS\SynTP.sys

22:54:31.0857 5484 SynTP - ok

22:54:31.0922 5484 taphss (f33fdc72298df4bf9813a55d21f4eb31) C:\Windows\system32\DRIVERS\taphss.sys

22:54:31.0923 5484 taphss - ok

22:54:32.0026 5484 Tcpip (b9d87c7707f058ac652a398cd28de14b) C:\Windows\system32\drivers\tcpip.sys

22:54:32.0039 5484 Tcpip - ok

22:54:32.0114 5484 TCPIP6 (b9d87c7707f058ac652a398cd28de14b) C:\Windows\system32\DRIVERS\tcpip.sys

22:54:32.0126 5484 TCPIP6 - ok

22:54:32.0173 5484 tcpipreg (76d078af6f587b162d50210f761eb9ed) C:\Windows\system32\drivers\tcpipreg.sys

22:54:32.0174 5484 tcpipreg - ok

22:54:32.0203 5484 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys

22:54:32.0204 5484 TDPIPE - ok

22:54:32.0228 5484 TDTCP (e4245bda3190a582d55ed09e137401a9) C:\Windows\system32\drivers\tdtcp.sys

22:54:32.0228 5484 TDTCP - ok

22:54:32.0255 5484 tdx (079125c4b17b01fcaeebce0bcb290c0f) C:\Windows\system32\DRIVERS\tdx.sys

22:54:32.0257 5484 tdx - ok

22:54:32.0278 5484 TermDD (c448651339196c0e869a355171875522) C:\Windows\system32\DRIVERS\termdd.sys

22:54:32.0279 5484 TermDD - ok

22:54:32.0324 5484 tssecsrv (61b96c26131e37b24e93327a0bd1fb95) C:\Windows\system32\DRIVERS\tssecsrv.sys

22:54:32.0325 5484 tssecsrv - ok

22:54:32.0348 5484 tunnel (3836171a2cdf3af8ef10856db9835a70) C:\Windows\system32\DRIVERS\tunnel.sys

22:54:32.0350 5484 tunnel - ok

22:54:32.0371 5484 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys

22:54:32.0372 5484 uagp35 - ok

22:54:32.0397 5484 UBHelper (2e22c1fd397a5a9ffef55e9d1fc96c00) C:\Windows\system32\drivers\UBHelper.sys

22:54:32.0399 5484 UBHelper - ok

22:54:32.0440 5484 udfs (d47baead86c65d4f4069d7ce0a4edceb) C:\Windows\system32\DRIVERS\udfs.sys

22:54:32.0443 5484 udfs - ok

22:54:32.0473 5484 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\DRIVERS\uliagpkx.sys

22:54:32.0475 5484 uliagpkx - ok

22:54:32.0497 5484 umbus (eab6c35e62b1b0db0d1b48b671d3a117) C:\Windows\system32\DRIVERS\umbus.sys

22:54:32.0498 5484 umbus - ok

22:54:32.0517 5484 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys

22:54:32.0517 5484 UmPass - ok

22:54:32.0581 5484 USBAAPL64 (cd03479f2da26500b203ed075c146a7a) C:\Windows\system32\Drivers\usbaapl64.sys

22:54:32.0582 5484 USBAAPL64 - ok

22:54:32.0640 5484 usbaudio (77b01bc848298223a95d4ec23e1785a1) C:\Windows\system32\drivers\usbaudio.sys

22:54:32.0641 5484 usbaudio - ok

22:54:32.0677 5484 usbccgp (b26afb54a534d634523c4fb66765b026) C:\Windows\system32\DRIVERS\usbccgp.sys

22:54:32.0678 5484 usbccgp - ok

22:54:32.0708 5484 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\DRIVERS\usbcir.sys

22:54:32.0709 5484 usbcir - ok

22:54:32.0729 5484 usbehci (2ea4aff7be7eb4632e3aa8595b0803b5) C:\Windows\system32\DRIVERS\usbehci.sys

22:54:32.0730 5484 usbehci - ok

22:54:32.0764 5484 usbhub (4c9042b8df86c1e8e6240c218b99b39b) C:\Windows\system32\DRIVERS\usbhub.sys

22:54:32.0767 5484 usbhub - ok

22:54:32.0786 5484 usbohci (58e546bbaf87664fc57e0f6081e4f609) C:\Windows\system32\DRIVERS\usbohci.sys

22:54:32.0787 5484 usbohci - ok

22:54:32.0800 5484 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys

22:54:32.0801 5484 usbprint - ok

22:54:32.0835 5484 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys

22:54:32.0836 5484 usbscan - ok

22:54:32.0865 5484 USBSTOR (080d3820da6c046be82fc8b45a893e83) C:\Windows\system32\DRIVERS\USBSTOR.SYS

22:54:32.0866 5484 USBSTOR - ok

22:54:32.0893 5484 usbuhci (81fb2216d3a60d1284455d511797db3d) C:\Windows\system32\DRIVERS\usbuhci.sys

22:54:32.0894 5484 usbuhci - ok

22:54:32.0952 5484 usbvideo (7cb8c573c6e4a2714402cc0a36eab4fe) C:\Windows\System32\Drivers\usbvideo.sys

22:54:32.0953 5484 usbvideo - ok

22:54:33.0011 5484 usb_rndisx (70d05ee263568a742d14e1876df80532) C:\Windows\system32\DRIVERS\usb8023x.sys

22:54:33.0012 5484 usb_rndisx - ok

22:54:33.0063 5484 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\DRIVERS\vdrvroot.sys

22:54:33.0064 5484 vdrvroot - ok

22:54:33.0084 5484 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys

22:54:33.0085 5484 vga - ok

22:54:33.0113 5484 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys

22:54:33.0114 5484 VgaSave - ok

22:54:33.0148 5484 vhdmp (c82e748660f62a242b2dfac1442f22a4) C:\Windows\system32\DRIVERS\vhdmp.sys

22:54:33.0150 5484 vhdmp - ok

22:54:33.0172 5484 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\DRIVERS\viaide.sys

22:54:33.0172 5484 viaide - ok

22:54:33.0199 5484 volmgr (2b1a3dae2b4e70dbba822b7a03fbd4a3) C:\Windows\system32\DRIVERS\volmgr.sys

22:54:33.0200 5484 volmgr - ok

22:54:33.0230 5484 volmgrx (99b0cbb569ca79acaed8c91461d765fb) C:\Windows\system32\drivers\volmgrx.sys

22:54:33.0232 5484 volmgrx - ok

22:54:33.0263 5484 volsnap (58f82eed8ca24b461441f9c3e4f0bf5c) C:\Windows\system32\DRIVERS\volsnap.sys

22:54:33.0266 5484 volsnap - ok

22:54:33.0302 5484 vpcbus (abd9b4a7e2d0ae51a3b8df1af3152d61) C:\Windows\system32\DRIVERS\vpchbus.sys

22:54:33.0303 5484 vpcbus - ok

22:54:33.0357 5484 vpcnfltr (8acda395841538ce9713a67fe8b2a3eb) C:\Windows\system32\DRIVERS\vpcnfltr.sys

22:54:33.0358 5484 vpcnfltr - ok

22:54:33.0382 5484 vpcusb (31924e31bc315773e6d149b157db46d5) C:\Windows\system32\DRIVERS\vpcusb.sys

22:54:33.0383 5484 vpcusb - ok

22:54:33.0445 5484 vpcvmm (510d250a08c09850f5c78ca2011b3b62) C:\Windows\system32\drivers\vpcvmm.sys

22:54:33.0447 5484 vpcvmm - ok

22:54:33.0485 5484 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys

22:54:33.0487 5484 vsmraid - ok

22:54:33.0494 5484 vtany - ok

22:54:33.0519 5484 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys

22:54:33.0520 5484 vwifibus - ok

22:54:33.0539 5484 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys

22:54:33.0540 5484 vwififlt - ok

22:54:33.0631 5484 VX6000 (07e6731ff9399a3b72d64150d4c5f71a) C:\Windows\system32\DRIVERS\VX6000Xp.sys

22:54:33.0645 5484 VX6000 - ok

22:54:33.0678 5484 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys

22:54:33.0679 5484 WacomPen - ok

22:54:33.0705 5484 WANARP (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys

22:54:33.0707 5484 WANARP - ok

22:54:33.0715 5484 Wanarpv6 (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys

22:54:33.0716 5484 Wanarpv6 - ok

22:54:33.0751 5484 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys

22:54:33.0752 5484 Wd - ok

22:54:33.0790 5484 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys

22:54:33.0795 5484 Wdf01000 - ok

22:54:33.0843 5484 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys

22:54:33.0844 5484 WfpLwf - ok

22:54:33.0855 5484 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys

22:54:33.0856 5484 WIMMount - ok

22:54:33.0937 5484 WINUSB (817eaff5d38674edd7713b9dfb8e9791) C:\Windows\system32\DRIVERS\WinUSB.SYS

22:54:33.0938 5484 WINUSB - ok

22:54:33.0965 5484 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\DRIVERS\wmiacpi.sys

22:54:33.0966 5484 WmiAcpi - ok

22:54:34.0012 5484 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys

22:54:34.0013 5484 ws2ifsl - ok

22:54:34.0056 5484 WSDPrintDevice (8d918b1db190a4d9b1753a66fa8c96e8) C:\Windows\system32\DRIVERS\WSDPrint.sys

22:54:34.0056 5484 WSDPrintDevice - ok

22:54:34.0089 5484 WSDScan (4a2a5c50dd1a63577d3aca94269fbc7f) C:\Windows\system32\DRIVERS\WSDScan.sys

22:54:34.0089 5484 WSDScan - ok

22:54:34.0147 5484 WudfPf (7cadc74271dd6461c452c271b30bd378) C:\Windows\system32\drivers\WudfPf.sys

22:54:34.0148 5484 WudfPf - ok

22:54:34.0176 5484 WUDFRd (3b197af0fff08aa66b6b2241ca538d64) C:\Windows\system32\DRIVERS\WUDFRd.sys

22:54:34.0178 5484 WUDFRd - ok

22:54:34.0257 5484 X6va002 - ok

22:54:34.0265 5484 X6va005 - ok

22:54:34.0279 5484 xspirit - ok

22:54:34.0327 5484 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0

22:54:34.0348 5484 \Device\Harddisk0\DR0 - ok

22:54:34.0352 5484 Boot (0x1200) (45548ec6d6ba1b92e32fc1f175af2702) \Device\Harddisk0\DR0\Partition0

22:54:34.0353 5484 \Device\Harddisk0\DR0\Partition0 - ok

22:54:34.0359 5484 Boot (0x1200) (d0b471cf382984c2898153efe8b1f873) \Device\Harddisk0\DR0\Partition1

22:54:34.0360 5484 \Device\Harddisk0\DR0\Partition1 - ok

22:54:34.0362 5484 ============================================================

22:54:34.0362 5484 Scan finished

22:54:34.0362 5484 ============================================================

22:54:34.0376 0492 Detected object count: 0

22:54:34.0376 0492 Actual detected object count: 0

Malwarebytes' Anti-Malware 1.51.2.1300

www.malwarebytes.org

Database version: 7851

Windows 6.1.7600

Internet Explorer 9.0.8112.16421

10/8/2011 4:19:46 PM

mbam-log-2011-10-08 (16-19-46).txt

Scan type: Quick scan

Objects scanned: 188297

Time elapsed: 6 minute(s), 20 second(s)

Memory Processes Infected: 0

Memory Modules Infected: 0

Registry Keys Infected: 0

Registry Values Infected: 0

Registry Data Items Infected: 0

Folders Infected: 0

Files Infected: 0

Memory Processes Infected:

(No malicious items detected)

Memory Modules Infected:

(No malicious items detected)

Registry Keys Infected:

(No malicious items detected)

Registry Values Infected:

(No malicious items detected)

Registry Data Items Infected:

(No malicious items detected)

Folders Infected:

(No malicious items detected)

Files Infected:

(No malicious items detected)

Link to post
Share on other sites

  • Staff

Delete your copy of ComboFix. Grab a fresh copy and save it to your Desktop, but do not run it yet. Before you download it, rename it to sega.com

Please reboot to Safe Mode (tap the F8 key just before Windows starts to load and select the Safe Mode option from the menu).

Click Start --> Run, and enter this command exactly as shown:

"%userprofile%\desktop\sega.com" /killall /nombr

If you get a blue screen, write it down and post it here.

Link to post
Share on other sites

It worked! Thanks for your help. Let me know if you see anything else I need to do.

Thanks in Advance!

ComboFix 11-10-09.01 - Michael Kenny 10/10/2011 1:36.4.2 - x64 NETWORK

Microsoft Windows 7 Home Premium 6.1.7600.0.1252.1.1033.18.4026.3012 [GMT -4:00]

Running from: c:\users\Michael Kenny\Desktop\sega.com

AV: Microsoft Security Essentials *Disabled/Updated* {108DAC43-C256-20B7-BB05-914135DA5160}

SP: Microsoft Security Essentials *Disabled/Updated* {ABEC4DA7-E46C-2F39-81B5-AA334E5D1BDD}

SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

* Created a new restore point

.

.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))

.

.

c:\users\Michael Kenny\AppData\Roaming\Mozilla\Firefox\Profiles\6nucs340.mk\extensions\{143800dc-4992-4234-ad56-1ae9484b5c63}

c:\users\Michael Kenny\AppData\Roaming\Mozilla\Firefox\Profiles\6nucs340.mk\extensions\{143800dc-4992-4234-ad56-1ae9484b5c63}\chrome\xulcache.jar

c:\users\Michael Kenny\AppData\Roaming\Mozilla\Firefox\Profiles\6nucs340.mk\extensions\{143800dc-4992-4234-ad56-1ae9484b5c63}\defaults\preferences\xulcache.js

c:\users\Michael Kenny\AppData\Roaming\Mozilla\Firefox\Profiles\6nucs340.mk\extensions\{143800dc-4992-4234-ad56-1ae9484b5c63}\install.rdf

c:\users\Michael Kenny\AppData\Roaming\Mozilla\Firefox\Profiles\6nucs340.mk\extensions\{5bc98b7c-8f2d-4bc5-8b62-04a0dceebabb}

c:\users\Michael Kenny\AppData\Roaming\Mozilla\Firefox\Profiles\6nucs340.mk\extensions\{5bc98b7c-8f2d-4bc5-8b62-04a0dceebabb}\chrome\xulcache.jar

c:\users\Michael Kenny\AppData\Roaming\Mozilla\Firefox\Profiles\6nucs340.mk\extensions\{5bc98b7c-8f2d-4bc5-8b62-04a0dceebabb}\defaults\preferences\xulcache.js

c:\users\Michael Kenny\AppData\Roaming\Mozilla\Firefox\Profiles\6nucs340.mk\extensions\{5bc98b7c-8f2d-4bc5-8b62-04a0dceebabb}\install.rdf

c:\users\Michael Kenny\AppData\Roaming\Mozilla\Firefox\Profiles\6nucs340.mk\extensions\{7cdfbe90-ef13-4f51-b108-e70c39aaaf7d}

c:\users\Michael Kenny\AppData\Roaming\Mozilla\Firefox\Profiles\6nucs340.mk\extensions\{7cdfbe90-ef13-4f51-b108-e70c39aaaf7d}\chrome\xulcache.jar

c:\users\Michael Kenny\AppData\Roaming\Mozilla\Firefox\Profiles\6nucs340.mk\extensions\{7cdfbe90-ef13-4f51-b108-e70c39aaaf7d}\defaults\preferences\xulcache.js

c:\users\Michael Kenny\AppData\Roaming\Mozilla\Firefox\Profiles\6nucs340.mk\extensions\{7cdfbe90-ef13-4f51-b108-e70c39aaaf7d}\install.rdf

.

.

((((((((((((((((((((((((( Files Created from 2011-09-10 to 2011-10-10 )))))))))))))))))))))))))))))))

.

.

2011-10-10 06:02 . 2011-10-10 06:02 69000 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{DC601143-9F53-4604-9990-78EC947D71B6}\offreg.dll

2011-10-10 06:02 . 2011-09-12 21:26 9049936 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{DC601143-9F53-4604-9990-78EC947D71B6}\mpengine.dll

2011-10-10 05:48 . 2011-10-10 05:48 -------- d-----w- c:\users\Default\AppData\Local\temp

2011-10-05 14:11 . 2011-10-05 14:11 -------- d-----w- c:\program files (x86)\ESET

2011-10-05 01:54 . 2011-10-05 01:54 -------- d-----w- c:\program files (x86)\Common Files\Java

2011-10-02 20:26 . 2011-09-12 21:26 9049936 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll

2011-10-02 01:17 . 2011-10-02 01:20 -------- d-----w- c:\users\Michael Kenny\AppData\Local\Plex Media Server

2011-10-02 01:16 . 2011-10-02 01:16 -------- d-----w- c:\program files (x86)\Plex

2011-10-02 01:15 . 2011-10-02 01:15 -------- d-----w- c:\program files\Bonjour

2011-10-02 01:15 . 2011-10-02 01:15 -------- d-----w- c:\program files (x86)\Bonjour

2011-09-30 15:16 . 2011-09-21 13:00 9049936 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{D6D02094-8969-4A24-8F59-B3F33995018B}\mpengine.dll

2011-09-29 00:40 . 2011-09-29 00:40 -------- d-sh--w- c:\windows\SysWow64\%APPDATA%

2011-09-28 15:01 . 2011-09-28 16:21 -------- d-----w- c:\program files (x86)\PC Tools Security

2011-09-28 14:53 . 2011-09-28 16:13 -------- d-----w- c:\programdata\PC Tools

2011-09-27 00:05 . 2011-09-27 00:05 -------- d-----w- c:\users\Michael Kenny\AppData\Local\TVU Networks

2011-09-27 00:05 . 2011-09-27 00:05 -------- d-----w- c:\programdata\TVU Networks

2011-09-27 00:03 . 2011-09-27 00:05 -------- d-----w- c:\program files (x86)\TVUPlayer

2011-09-11 20:56 . 2011-09-11 20:56 -------- d-----w- C:\Joymax

.

.

.

(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))

.

2011-08-31 21:00 . 2011-07-31 06:17 25416 ----a-w- c:\windows\system32\drivers\mbam.sys

2011-08-12 03:10 . 2011-06-22 06:17 404640 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl

2011-07-22 05:42 . 2011-08-15 01:02 2303488 ----a-w- c:\windows\system32\jscript9.dll

2011-07-22 05:36 . 2011-08-15 01:02 1389056 ----a-w- c:\windows\system32\wininet.dll

2011-07-22 05:32 . 2011-08-15 01:02 2382848 ----a-w- c:\windows\system32\mshtml.tlb

2011-07-22 02:54 . 2011-08-15 01:02 1797632 ----a-w- c:\windows\SysWow64\jscript9.dll

2011-07-22 02:48 . 2011-08-15 01:02 1126912 ----a-w- c:\windows\SysWow64\wininet.dll

2011-07-22 02:44 . 2011-08-15 01:02 2382848 ----a-w- c:\windows\SysWow64\mshtml.tlb

2011-07-16 05:26 . 2011-08-12 02:57 362496 ----a-w- c:\windows\system32\wow64win.dll

2011-07-16 05:26 . 2011-08-12 02:57 243200 ----a-w- c:\windows\system32\wow64.dll

2011-07-16 05:26 . 2011-08-12 02:57 13312 ----a-w- c:\windows\system32\wow64cpu.dll

2011-07-16 05:26 . 2011-08-12 02:57 214528 ----a-w- c:\windows\system32\winsrv.dll

2011-07-16 05:24 . 2011-08-12 02:57 16384 ----a-w- c:\windows\system32\ntvdm64.dll

2011-07-16 05:21 . 2011-08-12 02:57 422400 ----a-w- c:\windows\system32\KernelBase.dll

2011-07-16 05:17 . 2011-08-12 02:57 338432 ----a-w- c:\windows\system32\conhost.exe

2011-07-16 05:04 . 2011-08-12 02:57 3584 ---ha-w- c:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll

2011-07-16 05:04 . 2011-08-12 02:57 6144 ---ha-w- c:\windows\system32\api-ms-win-security-base-l1-1-0.dll

2011-07-16 05:04 . 2011-08-12 02:57 5120 ---ha-w- c:\windows\system32\api-ms-win-core-file-l1-1-0.dll

2011-07-16 05:04 . 2011-08-12 02:57 4608 ---ha-w- c:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll

2011-07-16 05:04 . 2011-08-12 02:57 4096 ---ha-w- c:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll

2011-07-16 05:04 . 2011-08-12 02:57 4096 ---ha-w- c:\windows\system32\api-ms-win-core-synch-l1-1-0.dll

2011-07-16 05:04 . 2011-08-12 02:57 3584 ---ha-w- c:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll

2011-07-16 05:04 . 2011-08-12 02:57 3072 ---ha-w- c:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll

2011-07-16 05:04 . 2011-08-12 02:57 3072 ---ha-w- c:\windows\system32\api-ms-win-core-util-l1-1-0.dll

2011-07-16 05:04 . 2011-08-12 02:57 3072 ---ha-w- c:\windows\system32\api-ms-win-core-string-l1-1-0.dll

2011-07-16 05:04 . 2011-08-12 02:57 4608 ---ha-w- c:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll

2011-07-16 05:04 . 2011-08-12 02:57 4096 ---ha-w- c:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll

2011-07-16 05:04 . 2011-08-12 02:57 3584 ---ha-w- c:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll

2011-07-16 05:04 . 2011-08-12 02:57 3584 ---ha-w- c:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll

2011-07-16 05:04 . 2011-08-12 02:57 3584 ---ha-w- c:\windows\system32\api-ms-win-core-misc-l1-1-0.dll

2011-07-16 05:04 . 2011-08-12 02:57 3584 ---ha-w- c:\windows\system32\api-ms-win-core-memory-l1-1-0.dll

2011-07-16 05:04 . 2011-08-12 02:57 3584 ---ha-w- c:\windows\system32\api-ms-win-core-heap-l1-1-0.dll

2011-07-16 05:04 . 2011-08-12 02:57 3072 ---ha-w- c:\windows\system32\api-ms-win-core-profile-l1-1-0.dll

2011-07-16 05:04 . 2011-08-12 02:57 3072 ---ha-w- c:\windows\system32\api-ms-win-core-io-l1-1-0.dll

2011-07-16 05:04 . 2011-08-12 02:57 3072 ---ha-w- c:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll

2011-07-16 05:04 . 2011-08-12 02:57 3072 ---ha-w- c:\windows\system32\api-ms-win-core-handle-l1-1-0.dll

2011-07-16 05:04 . 2011-08-12 02:57 3072 ---ha-w- c:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll

2011-07-16 05:04 . 2011-08-12 02:57 4096 ---ha-w- c:\windows\system32\api-ms-win-core-localization-l1-1-0.dll

2011-07-16 05:04 . 2011-08-12 02:57 3072 ---ha-w- c:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll

2011-07-16 05:04 . 2011-08-12 02:57 3072 ---ha-w- c:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll

2011-07-16 05:04 . 2011-08-12 02:57 3072 ---ha-w- c:\windows\system32\api-ms-win-core-debug-l1-1-0.dll

2011-07-16 05:04 . 2011-08-12 02:57 3072 ---ha-w- c:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll

2011-07-16 05:04 . 2011-08-12 02:57 3072 ---ha-w- c:\windows\system32\api-ms-win-core-console-l1-1-0.dll

2011-07-16 04:36 . 2011-08-12 02:57 14336 ----a-w- c:\windows\SysWow64\ntvdm64.dll

2011-07-16 04:32 . 2011-08-12 02:57 44032 ----a-w- c:\windows\apppatch\acwow64.dll

2011-07-16 04:31 . 2011-08-12 02:57 25600 ----a-w- c:\windows\SysWow64\setup16.exe

2011-07-16 04:30 . 2011-08-12 02:57 5120 ----a-w- c:\windows\SysWow64\wow32.dll

2011-07-16 04:30 . 2011-08-12 02:57 272384 ----a-w- c:\windows\SysWow64\KernelBase.dll

2011-07-16 04:19 . 2011-08-12 02:57 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-libraryloader-l1-1-0.dll

2011-07-16 04:19 . 2011-08-12 02:57 5120 ---ha-w- c:\windows\SysWow64\api-ms-win-core-file-l1-1-0.dll

2011-07-16 04:19 . 2011-08-12 02:57 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-sysinfo-l1-1-0.dll

2011-07-16 04:19 . 2011-08-12 02:57 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-synch-l1-1-0.dll

2011-07-16 04:19 . 2011-08-12 02:57 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-heap-l1-1-0.dll

2011-07-16 04:19 . 2011-08-12 02:57 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-string-l1-1-0.dll

2011-07-16 04:19 . 2011-08-12 02:57 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-rtlsupport-l1-1-0.dll

2011-07-16 04:19 . 2011-08-12 02:57 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-misc-l1-1-0.dll

2011-07-16 04:19 . 2011-08-12 02:57 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-localregistry-l1-1-0.dll

2011-07-16 04:19 . 2011-08-12 02:57 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-processenvironment-l1-1-0.dll

2011-07-16 04:19 . 2011-08-12 02:57 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-namedpipe-l1-1-0.dll

2011-07-16 04:19 . 2011-08-12 02:57 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-memory-l1-1-0.dll

2011-07-16 04:19 . 2011-08-12 02:57 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-interlocked-l1-1-0.dll

2011-07-16 04:19 . 2011-08-12 02:57 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-profile-l1-1-0.dll

2011-07-16 04:19 . 2011-08-12 02:57 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-io-l1-1-0.dll

2011-07-16 04:19 . 2011-08-12 02:57 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-handle-l1-1-0.dll

2011-07-16 04:19 . 2011-08-12 02:57 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-fibers-l1-1-0.dll

2011-07-16 04:19 . 2011-08-12 02:57 4608 ---ha-w- c:\windows\SysWow64\api-ms-win-core-processthreads-l1-1-0.dll

2011-07-16 04:19 . 2011-08-12 02:57 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-localization-l1-1-0.dll

2011-07-16 04:19 . 2011-08-12 02:57 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-errorhandling-l1-1-0.dll

2011-07-16 04:19 . 2011-08-12 02:57 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-delayload-l1-1-0.dll

2011-07-16 04:19 . 2011-08-12 02:57 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-debug-l1-1-0.dll

2011-07-16 04:19 . 2011-08-12 02:57 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-datetime-l1-1-0.dll

2011-07-16 04:19 . 2011-08-12 02:57 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-console-l1-1-0.dll

2011-07-16 02:26 . 2011-08-12 02:57 7680 ----a-w- c:\windows\SysWow64\instnm.exe

2011-07-16 02:26 . 2011-08-12 02:57 2048 ----a-w- c:\windows\SysWow64\user.exe

2011-07-16 02:21 . 2011-08-12 02:57 6144 ---ha-w- c:\windows\SysWow64\api-ms-win-security-base-l1-1-0.dll

2011-07-16 02:21 . 2011-08-12 02:57 4608 ---ha-w- c:\windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll

2011-07-16 02:21 . 2011-08-12 02:57 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll

2011-07-16 02:21 . 2011-08-12 02:57 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-util-l1-1-0.dll

2011-07-13 04:53 . 2011-08-15 01:47 8578896 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Updates\mpengine.dll

.

.

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))

.

.

*Note* empty entries & legit default entries are not shown

REGEDIT4

.

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\egisPSDP]

@="{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}"

[HKEY_CLASSES_ROOT\CLSID\{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}]

2009-09-10 13:41 120104 ----a-w- c:\program files (x86)\EgisTec\MyWinLocker 3\x86\PSDProtect.dll

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]

"googletalk"="c:\program files (x86)\Google\Google Talk\googletalk.exe" [2007-01-01 3739648]

"SwitchBoard"="c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]

"Malwarebytes' Anti-Malware"="c:\program files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" [2011-08-31 449608]

"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2011-04-08 254696]

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\RunOnce]

"AvgUninstallURL"="start http://www.avg.com/ww.special-uninstallation-feedback-app?lic=OQBBAFYARgBSAEUARQAtAFYATgBKADMAMgAtAEcAMwBMAEEAQQAtAEEANAA4ADkAUgAtADkAVQBKAEsARgAtAEUASwBLADMAWAA&inst=NwA3AC0ANAAyADUANwAyADIANwA1ADYALQBTAFQAMQArADIALQBGAFAAOQArADYALQBUAEIAOQArADIALQBGAEwAKwA5AC0AWABPADMANgArADEALQBGADkATQA3AEMAKwA1AC0ARgA5AE0AMQAwAEIAKwAxAC0AWABPADkAKwAxAC0ARgA5AE0AMgArADEA∏=90&ver=9.0.894" [?]

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]

"ConsentPromptBehaviorAdmin"= 0 (0x0)

"ConsentPromptBehaviorUser"= 3 (0x3)

"EnableLUA"= 0 (0x0)

"EnableUIADesktopToggle"= 0 (0x0)

"PromptOnSecureDesktop"= 0 (0x0)

.

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]

"aux"=wdmaud.drv

.

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]

@="Service"

.

R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]

R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]

R2 gupdate;Google Update Service (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-05-09 135664]

R3 BTCFilterService;USB Networking Driver Filter Service;c:\windows\system32\DRIVERS\motfilt.sys [x]

R3 dump_wmimmc;dump_wmimmc;c:\program files (x86)\Asiasoft Online\SuddenAttackSEA\GameGuard\dump_wmimmc.sys [x]

R3 EagleX64;EagleX64;c:\windows\system32\drivers\EagleX64.sys [x]

R3 gupdatem;Google Update Service (gupdatem);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-05-09 135664]

R3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files (x86)\Microsoft Office\Office14\GROOVE.EXE [2011-06-12 31125880]

R3 motandroidusb;Mot ADB Interface Driver;c:\windows\system32\Drivers\motoandroid.sys [x]

R3 motccgp;Motorola USB Composite Device Driver;c:\windows\system32\DRIVERS\motccgp.sys [x]

R3 motccgpfl;MotCcgpFlService;c:\windows\system32\DRIVERS\motccgpfl.sys [x]

R3 Motousbnet;Motorola USB Networking Driver Service;c:\windows\system32\DRIVERS\Motousbnet.sys [x]

R3 motusbdevice;Motorola USB Dev Driver;c:\windows\system32\DRIVERS\motusbdevice.sys [x]

R3 MpNWMon;Microsoft Malware Protection Network Driver;c:\windows\system32\DRIVERS\MpNWMon.sys [x]

R3 MWLService;MyWinLocker Service;c:\program files (x86)\EgisTec\MyWinLocker 3\x86\\MWLService.exe [2009-09-10 305448]

R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys [x]

R3 NisSrv;Microsoft Network Inspection;c:\program files\Microsoft Security Client\Antimalware\NisSrv.exe [2011-04-27 288272]

R3 NPF;NetGroup Packet Filter Driver;c:\windows\system32\drivers\npf.sys [x]

R3 NTIBackupSvc;NTI Backup Now 5 Backup Service;c:\program files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe [2009-06-18 50432]

R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-10 4925184]

R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys [2009-09-02 225280]

R3 SwitchBoard;Adobe SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]

R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys [x]

R3 vtany;vtany;c:\windows\vtany.sys [x]

R3 VX6000;Microsoft LifeCam VX-6000;c:\windows\system32\DRIVERS\VX6000Xp.sys [x]

R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe [x]

R3 X6va002;X6va002;c:\users\MICHAE~1\AppData\Local\Temp\0029430.tmp [x]

R3 X6va005;X6va005;c:\users\MICHAE~1\AppData\Local\Temp\0057973.tmp [x]

R3 xspirit;xspirit;c:\users\MICHAE~1\AppData\Local\Temp\xspirit.sys [x]

R4 MotoHelper;MotoHelper Service;c:\program files (x86)\Motorola\MotoHelper\MotoHelperService.exe [2010-12-02 218432]

R4 NTISchedulerSvc;NTI Backup Now 5 Scheduler Service;c:\program files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [2009-06-18 144640]

S0 MDFSYSNT;MacDrive file system driver; [x]

S0 MDPMGRNT;MacDrive Partition Driver;c:\windows\system32\DRIVERS\MDPMGRNT.SYS [x]

S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys [x]

S1 CBDisk;CBDisk;c:\windows\system32\drivers\CBDisk.sys [x]

S1 mwlPSDFilter;mwlPSDFilter;c:\windows\system32\DRIVERS\mwlPSDFilter.sys [x]

S1 mwlPSDNServ;mwlPSDNServ;c:\windows\system32\DRIVERS\mwlPSDNServ.sys [x]

S1 mwlPSDVDisk;mwlPSDVDisk;c:\windows\system32\DRIVERS\mwlPSDVDisk.sys [x]

S1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-12 14928]

S1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]

S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x]

S2 Akamai;Akamai NetSession Interface;c:\windows\System32\svchost.exe [2009-07-14 27136]

S2 ePowerSvc;Acer ePower Service;c:\program files\Acer\Acer ePower Management\ePowerSvc.exe [2009-10-29 844320]

S2 Greg_Service;GRegService;c:\program files (x86)\Acer\Registration\GregHSRW.exe [2009-08-28 1150496]

S2 hshld;Hotspot Shield Service;c:\program files (x86)\Hotspot Shield\bin\openvpnas.exe [2011-07-01 298824]

S2 HssWd;Hotspot Shield Monitoring Service;c:\program files (x86)\Hotspot Shield\bin\hsswd.exe [2011-05-25 329544]

S2 iPodDrv;iPodDrv;c:\windows\system32\drivers\iPodDrv.sys [x]

S2 M4LIC;Mediafour M4LIC service;c:\program files (x86)\Common Files\Mediafour\M4LIC.EXE [2010-07-20 205312]

S2 MacDrive8Service;MacDrive 8 service;c:\program files\Mediafour\MacDrive 8\MacDrive8Service.exe [2010-10-08 149504]

S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2011-08-31 366152]

S2 TeamViewer6;TeamViewer 6;c:\program files (x86)\TeamViewer\Version6\TeamViewer_Service.exe [2011-08-30 2358656]

S2 Updater Service;Updater Service;c:\program files\Acer\Acer Updater\UpdaterService.exe [2009-07-04 240160]

S3 L1C;NDIS Miniport Driver for Atheros AR8131/AR8132 PCI-E Ethernet Controller (NDIS 6.20);c:\windows\system32\DRIVERS\L1C62x64.sys [x]

S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [x]

S3 WSDPrintDevice;WSD Print Support via UMB;c:\windows\system32\DRIVERS\WSDPrint.sys [x]

S3 WSDScan;WSD Scan Support via UMB;c:\windows\system32\DRIVERS\WSDScan.sys [x]

.

.

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]

Akamai REG_MULTI_SZ Akamai

.

Contents of the 'Scheduled Tasks' folder

.

2011-10-10 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job

- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-05-09 22:06]

.

2011-10-10 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job

- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-05-09 22:06]

.

2011-10-09 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2744291658-2730593648-2260109157-1001Core.job

- c:\users\Michael Kenny\AppData\Local\Google\Update\GoogleUpdate.exe [2010-08-28 18:06]

.

2011-10-10 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2744291658-2730593648-2260109157-1001UA.job

- c:\users\Michael Kenny\AppData\Local\Google\Update\GoogleUpdate.exe [2010-08-28 18:06]

.

.

--------- x86-64 -----------

.

.

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{F9E4A054-E9B1-4BC3-83A3-76A1AE736170}]

2011-05-24 23:41 287048 ----a-w- c:\program files (x86)\Hotspot Shield\HssIE\HssIE_64.dll

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\egisPSDP]

@="{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}"

[HKEY_CLASSES_ROOT\CLSID\{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}]

2009-09-10 13:44 137512 ----a-w- c:\program files (x86)\EgisTec\MyWinLocker 3\x64\PSDProtect.dll

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"IAAnotif"="c:\program files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2009-10-13 186904]

"Acer ePower Management"="c:\program files\Acer\Acer ePower Management\ePowerTray.exe" [2009-10-29 822816]

"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2011-06-15 1436736]

"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2011-03-28 11786344]

"IgfxTray"="c:\windows\system32\igfxtray.exe" [2009-09-02 159232]

"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2009-09-02 380928]

"Persistence"="c:\windows\system32\igfxpers.exe" [2009-09-02 358912]

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]

"LoadAppInit_DLLs"=0x1

.

------- Supplementary Scan -------

.

uLocal Page = c:\windows\system32\blank.htm

uStart Page = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0409&m=aspire_5732z&r=27360510a215l0434z1i5t5482x756

mStart Page = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0409&m=aspire_5732z&r=27360510a215l0434z1i5t5482x756

mLocal Page = c:\windows\system32\blank.htm

uInternet Settings,ProxyOverride = local;192.168.*.*;*.local

uInternet Settings,ProxyServer = 200.196.234.26:8080

TCP: DhcpNameServer = 65.32.5.111 65.32.5.112

TCP: Interfaces\{221ADA7F-B88A-4104-98DB-488C1177B8B7}: NameServer = 10.4.56.1

DPF: {4F29DE54-5EB7-4D76-B610-A86B5CD2A234} - hxxp://archives.gametap.com/static/cab_headless/GameTapWebPlayer.cab

FF - ProfilePath - c:\users\Michael Kenny\AppData\Roaming\Mozilla\Firefox\Profiles\6nucs340.mk\

FF - prefs.js: network.proxy.type - 0

.

- - - - ORPHANS REMOVED - - - -

.

Toolbar-Locked - (no file)

Wow6432Node-HKU-Default-Run-Google Update - c:\users\Michael Kenny\AppData\Local\Google\GoogleUpdate\Googleupdt32.exe

SafeBoot-mcmscsvc

SafeBoot-MCODS

Toolbar-Locked - (no file)

ShellIconOverlayIdentifiers-MacDrive volume icons - (no file)

HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe

AddRemove-exent_668050 - c:\remote programs\Farm Mania 2\GPlrLanc.exe

.

.

.

[HKEY_LOCAL_MACHINE\system\ControlSet001\services\npggsvc]

"ImagePath"="c:\windows\system32\GameMon.des -service"

.

[HKEY_LOCAL_MACHINE\system\ControlSet001\services\X6va002]

"ImagePath"="\??\c:\users\MICHAE~1\AppData\Local\Temp\0029430.tmp"

.

[HKEY_LOCAL_MACHINE\system\ControlSet001\services\X6va005]

"ImagePath"="\??\c:\users\MICHAE~1\AppData\Local\Temp\0057973.tmp"

.

--------------------- LOCKED REGISTRY KEYS ---------------------

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]

@Denied: (A 2) (Everyone)

@="FlashBroker"

"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10o_ActiveX.exe,-101"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]

"Enabled"=dword:00000001

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10o_ActiveX.exe"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]

@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]

@Denied: (A 2) (Everyone)

@="Shockwave Flash Object"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10o.ocx"

"ThreadingModel"="Apartment"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]

@="0"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]

@="ShockwaveFlash.ShockwaveFlash.10"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10o.ocx, 1"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]

@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]

@="1.0"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]

@="ShockwaveFlash.ShockwaveFlash"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]

@Denied: (A 2) (Everyone)

@="Macromedia Flash Factory Object"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10o.ocx"

"ThreadingModel"="Apartment"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]

@="FlashFactory.FlashFactory.1"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10o.ocx, 1"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]

@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]

@="1.0"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]

@="FlashFactory.FlashFactory"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]

@Denied: (A 2) (Everyone)

@="IFlashBroker4"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]

@="{00020424-0000-0000-C000-000000000046}"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]

@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

"Version"="1.0"

.

[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]

@Denied: (A) (Everyone)

"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"

.

[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3]

@Denied: (A) (Everyone)

.

[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]

"Key"="ActionsPane3"

"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"

.

[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Windows CE Services]

"SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,

00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00,5c,00,53,00,4f,00,46,00,\

.

[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]

@Denied: (A) (Users)

@Denied: (A) (Everyone)

@Allowed: (B 1 2 3 4 5) (S-1-5-20)

"BlindDial"=dword:00000000

.

[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]

@Denied: (Full) (Everyone)

.

------------------------ Other Running Processes ------------------------

.

c:\program files (x86)\Common Files\EPSON\EBAPI\eEBSVC.exe

c:\program files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

c:\program files (x86)\Bonjour\mDNSResponder.exe

c:\program files (x86)\Hotspot Shield\HssWPR\hsssrv.exe

c:\program files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe

c:\program files (x86)\IObit\Game Booster\GameBox.exe

c:\program files (x86)\Hotspot Shield\bin\openvpntray.exe

.

**************************************************************************

.

Completion time: 2011-10-10 02:11:44 - machine was rebooted

ComboFix-quarantined-files.txt 2011-10-10 06:11

.

Pre-Run: 29,163,384,832 bytes free

Post-Run: 28,577,673,216 bytes free

.

- - End Of File - - CB7F1239A1DBDC3FEC52208E91D52410

Link to post
Share on other sites

  • Staff

Hi,

Next, please run a free online scan with the ESET Online Scanner

Note: You will need to use Internet Explorer for this scan.

  1. Tick the box next to YES, I accept the Terms of Use.
  2. Click Start
  3. When asked, allow the ActiveX control to install
  4. Click Start
  5. Make sure that the options Remove found threats and the option Scan unwanted applications is checked
  6. Click Scan
    Wait for the scan to finish
  7. Use Notepad to open the logfile located at C:\Program Files\EsetOnlineScanner\log.txt
  8. Copy and paste that log as a reply to this topic

Next, download my Security Check from here or here.

  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.

Let me know how things are running now and what issues remain.

Link to post
Share on other sites

  • 2 weeks later...
  • Staff

Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.