Jump to content

Redirected search results malware

joelle

By joelle
in Resolved Malware Removal Logs

 Share

Recommended Posts

joelle

joelle

Posted
Posted

My laptop started having problems with search results links being redirected last night. Often they are redirected to bing.com. Sometimes to get-answers-fast. Happens in both IE8 and Firefox (unsure of version). So far, I haven't been able to find the problem. Here are the logs for what I've done so far in safe mode. (I was able to run these in safe mode, but could not post on this forum -- even in safe mode -- from that laptop.) Would appreciate any help that could save me the time and money of taking it in somewhere. TIA.

--** mbam quick scan log **--

Malwarebytes' Anti-Malware 1.51.2.1300

www.malwarebytes.org

Database version: 8081

Windows 6.1.7601 Service Pack 1 (Safe Mode)

Internet Explorer 8.0.7601.17514

11/3/2011 8:41:08 PM

mbam-log-2011-11-03 (20-41-08).txt

Scan type: Quick scan

Objects scanned: 191828

Time elapsed: 2 minute(s), 59 second(s)

Memory Processes Infected: 0

Memory Modules Infected: 0

Registry Keys Infected: 0

Registry Values Infected: 0

Registry Data Items Infected: 0

Folders Infected: 0

Files Infected: 1

Memory Processes Infected:

(No malicious items detected)

Memory Modules Infected:

(No malicious items detected)

Registry Keys Infected:

(No malicious items detected)

Registry Values Infected:

(No malicious items detected)

Registry Data Items Infected:

(No malicious items detected)

Folders Infected:

(No malicious items detected)

Files Infected:

c:\Users\Joelle\AppData\Local\Temp\jar_cache860176982052950029.tmp (Trojan.Fakealert) -> Quarantined and deleted successfully.

--** dds.txt **--

.

DDS (Ver_2011-08-26.01) - NTFSAMD64 NETWORK

Internet Explorer: 8.0.7601.17514 BrowserJavaVersion: 1.6.0_23

Run by Joelle at 22:59:18 on 2011-11-03

Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.4023.3036 [GMT -7:00]

.

AV: Microsoft Security Essentials *Enabled/Updated* {108DAC43-C256-20B7-BB05-914135DA5160}

SP: Microsoft Security Essentials *Enabled/Updated* {ABEC4DA7-E46C-2F39-81B5-AA334E5D1BDD}

SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

.

============== Running Processes ===============

.

C:\Windows\system32\wininit.exe

C:\Windows\system32\lsm.exe

C:\Windows\system32\svchost.exe -k DcomLaunch

C:\Windows\system32\svchost.exe -k RPCSS

c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe

C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted

C:\Windows\system32\svchost.exe -k LocalService

C:\Windows\system32\svchost.exe -k NetworkService

C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted

C:\Windows\Explorer.EXE

C:\Windows\system32\ctfmon.exe

C:\Windows\helppane.exe

C:\Program Files (x86)\Internet Explorer\iexplore.exe

C:\Program Files (x86)\Internet Explorer\iexplore.exe

\\?\C:\Windows\system32\wbem\WMIADAP.EXE

C:\Windows\system32\wbem\wmiprvse.exe

C:\Windows\SysWOW64\cmd.exe

C:\Windows\system32\conhost.exe

C:\Windows\SysWOW64\cscript.exe

C:\Windows\system32\wbem\wmiprvse.exe

.

============== Pseudo HJT Report ===============

.

uInternet Settings,ProxyOverride = *.local

mWinlogon: Userinit=userinit.exe,

BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

BHO: Canon Easy-WebPrint EX BHO: {3785d0ad-bfff-47f6-bf5b-a587c162fed9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll

BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll

BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

BHO: Windows Live Messenger Companion Helper: {9fdde16b-836f-4806-ab1f-1455cbeff289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll

BHO: Adobe PDF Conversion Toolbar Helper: {ae7cd045-e861-484f-8273-0445ee161910} - C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll

BHO: Microsoft Live Search Toolbar Helper: {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - c:\Program Files (x86)\MSN\Toolbar\3.0.0566.0\msneshellx.dll

BHO: Java Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll

BHO: GoodShopToolbar: {e86e69ac-a2ce-415a-967e-70ded47d72e2} - c:\program files (x86)\goodsearch.com\goodsearch toolbar\adxloader.dll

TB: Microsoft Live Search Toolbar: {1e61ed7c-7cb8-49d6-b9e9-ab4c880c8414} - c:\Program Files (x86)\MSN\Toolbar\3.0.0566.0\msneshellx.dll

TB: Adobe PDF: {47833539-d0c5-4125-9fa8-0819e2eaac93} - C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll

TB: GoodSearchBar: {10834e9a-d475-4a24-ad01-f3f24f71b28e} - c:\program files (x86)\goodsearch.com\goodsearch toolbar\adxloader.dll

TB: Canon Easy-WebPrint EX: {759d9886-0c6f-4498-bab6-4a5f47c6c72f} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll

TB: {604BC32A-9680-40D1-9AC6-E06B23A1BA4C} - No File

EB: Adobe PDF: {182ec0be-5110-49c8-a062-beb1d02a220b} - C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll

{555d4d79-4bd2-4094-a395-cfc534424a05}

EB: Canon Easy-WebPrint EX: {21347690-ec41-4f9a-8887-1f4aee672439} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll

uRun: [LightScribe Control Panel] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden

uRun: [Ffqxh] rundll32 "C:\Users\Joelle\AppData\Roaming\diskcopyp.dll",SLUWL

mRun: [HPCam_Menu] "c:\Program Files (x86)\Hewlett-Packard\Media\Webcam\MUITransfer\MUIStartMenu.exe" "c:\Program Files (x86)\Hewlett-Packard\Media\Webcam" UpdateWithCreateOnce "Software\Hewlett-Packard\Media\Webcam"

mRun: [NortonOnlineBackupReminder] "C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe" UNATTENDED

mRun: [WirelessAssistant] C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe

mRun: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

mRun: [<NO NAME>]

mRun: [Adobe_ID0EYTHM] C:\PROGRA~2\COMMON~1\Adobe\ADOBEV~1\Server\bin\VERSIO~2.EXE

mRun: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"

mRun: [Monitor] "C:\Program Files (x86)\LeapFrog\LeapFrog Connect\Monitor.exe"

mRun: [iJNetworkScanUtility] C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe

mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime

mRun: [iTunesHelper] "C:\Program Files\iTunesHelper.exe"

mPolicies-explorer: NoActiveDesktop = 1 (0x1)

mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)

mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)

mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)

mPolicies-system: EnableUIADesktopToggle = 0 (0x0)

IE: Append to existing PDF - C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html

IE: Convert link target to Adobe PDF - C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html

IE: Convert link target to existing PDF - C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html

IE: Convert selected links to Adobe PDF - C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html

IE: Convert selected links to existing PDF - C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html

IE: Convert selection to Adobe PDF - C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html

IE: Convert selection to existing PDF - C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html

IE: Convert to Adobe PDF - C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html

IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~4\Office12\EXCEL.EXE/3000

IE: {0000036B-C524-4050-81A0-243669A86B9F} - {B63DBA5F-523F-4B9C-A43D-65DF1977EAD3} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll

IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\PROGRA~2\MICROS~4\Office12\ONBttnIE.dll

IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - C:\PROGRA~2\MICROS~4\Office12\REFIEBAR.DLL

DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab

DPF: {BEA7310D-06C4-4339-A784-DC3804819809} - hxxp://fredmeyer.pnimedia.com/upload/activex/v3_0_0_7/PhotoCenter_ActiveX_Control.cab

DPF: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab

DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab

DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} - hxxp://zone.msn.com/bingame/zuma/default/popcaploader_v6.cab

DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

TCP: DhcpNameServer = 24.113.32.30 24.113.32.29

TCP: Interfaces\{D2B4B01C-77F4-48C5-BA37-3F08948101C0} : DhcpNameServer = 24.113.32.30 24.113.32.29

TCP: Interfaces\{D2B4B01C-77F4-48C5-BA37-3F08948101C0}\C696E6B6379737 : DhcpNameServer = 24.113.32.30 24.113.32.29

TCP: Interfaces\{D2B4B01C-77F4-48C5-BA37-3F08948101C0}\E4544574541425F5745756374713 : DhcpNameServer = 192.168.1.1

Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll

Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll

SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll

mASetup: {10880D85-AAD9-4558-ABDC-2AB1552D831F} - "C:\Program Files (x86)\Common Files\LightScribe\LSRunOnce.exe"

BHO-X64: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

BHO-X64: AcroIEHelperStub - No File

BHO-X64: Canon Easy-WebPrint EX BHO: {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll

BHO-X64: Canon Easy-WebPrint EX BHO - No File

BHO-X64: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll

BHO-X64: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

BHO-X64: Windows Live Messenger Companion Helper: {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll

BHO-X64: Adobe PDF Conversion Toolbar Helper: {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll

BHO-X64: Microsoft Live Search Toolbar Helper: {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - c:\Program Files (x86)\MSN\Toolbar\3.0.0566.0\msneshellx.dll

BHO-X64: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll

BHO-X64: GoodShopToolbar: {e86e69ac-a2ce-415a-967e-70ded47d72e2} - c:\program files (x86)\goodsearch.com\goodsearch toolbar\adxloader.dll

BHO-X64: 0x1 - No File

TB-X64: Microsoft Live Search Toolbar: {1E61ED7C-7CB8-49d6-B9E9-AB4C880C8414} - c:\Program Files (x86)\MSN\Toolbar\3.0.0566.0\msneshellx.dll

TB-X64: Adobe PDF: {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll

TB-X64: GoodSearchBar: {10834e9a-d475-4a24-ad01-f3f24f71b28e} - c:\program files (x86)\goodsearch.com\goodsearch toolbar\adxloader.dll

TB-X64: Canon Easy-WebPrint EX: {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll

TB-X64: {604BC32A-9680-40D1-9AC6-E06B23A1BA4C} - No File

EB-X64: {182EC0BE-5110-49C8-A062-BEB1D02A220B} - No File

EB-X64: {555D4D79-4BD2-4094-A395-CFC534424A05} - No File

EB-X64: {21347690-EC41-4F9A-8887-1F4AEE672439} - No File

mRun-x64: [HPCam_Menu] "c:\Program Files (x86)\Hewlett-Packard\Media\Webcam\MUITransfer\MUIStartMenu.exe" "c:\Program Files (x86)\Hewlett-Packard\Media\Webcam" UpdateWithCreateOnce "Software\Hewlett-Packard\Media\Webcam"

mRun-x64: [NortonOnlineBackupReminder] "C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe" UNATTENDED

mRun-x64: [WirelessAssistant] C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe

mRun-x64: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

mRun-x64: [(Default)]

mRun-x64: [Adobe_ID0EYTHM] C:\PROGRA~2\COMMON~1\Adobe\ADOBEV~1\Server\bin\VERSIO~2.EXE

mRun-x64: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"

mRun-x64: [Monitor] "C:\Program Files (x86)\LeapFrog\LeapFrog Connect\Monitor.exe"

mRun-x64: [iJNetworkScanUtility] C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe

mRun-x64: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime

mRun-x64: [iTunesHelper] "C:\Program Files\iTunesHelper.exe"

SEH-X64: Groove GFS Stub Execution Hook: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll

.

================= FIREFOX ===================

.

FF - ProfilePath - C:\Users\Joelle\AppData\Roaming\Mozilla\Firefox\Profiles\6jh0vrn7.default\

FF - plugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll

FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.79\npGoogleUpdate3.dll

FF - plugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll

FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\NPcol400.dll

FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npCouponPrinter.dll

FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npMozCouponPrinter.dll

FF - plugin: C:\Program Files (x86)\NOS\bin\np_gp.dll

FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

FF - plugin: C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL

FF - plugin: C:\Program Files\Mozilla Plugins\npitunes.dll

FF - plugin: C:\Users\Default\AppData\Local\HuluDesktop\instances\0.9.7.1\nphdplg.dll

FF - plugin: C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll

FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll

FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - C:\Program Files (x86)\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

FF - Ext: Java Console: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}

FF - Ext: Java Console: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}

FF - Ext: Java Console: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}

FF - Ext: Java Console: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}

FF - Ext: GoodSearch Toolbar: {1CD12824-AE3B-44EE-BD8F-403F1E48FD3A} - %profile%\extensions\{1CD12824-AE3B-44EE-BD8F-403F1E48FD3A}

.

============= SERVICES / DRIVERS ===============

.

R1 vwififlt;Virtual WiFi Filter Driver;C:\Windows\system32\DRIVERS\vwififlt.sys --> C:\Windows\system32\DRIVERS\vwififlt.sys [?]

R3 enecir;ENE CIR Receiver;C:\Windows\system32\DRIVERS\enecir.sys --> C:\Windows\system32\DRIVERS\enecir.sys [?]

R3 NETw5s64;Intel® Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 64 Bit;C:\Windows\system32\DRIVERS\NETw5s64.sys --> C:\Windows\system32\DRIVERS\NETw5s64.sys [?]

S1 MpFilter;Microsoft Malware Protection Driver;C:\Windows\system32\DRIVERS\MpFilter.sys --> C:\Windows\system32\DRIVERS\MpFilter.sys [?]

S2 AESTFilters;Andrea ST Filters Service;C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_960c1f056a541068\AESTSr64.exe [2009-3-2 89600]

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]

S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]

S2 gupdate;Google Update Service (gupdate);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-4-30 136176]

S2 hpsrv;HP Service;C:\Windows\system32\Hpservice.exe --> C:\Windows\system32\Hpservice.exe [?]

S3 FlyUsb;FLY Fusion;C:\Windows\system32\DRIVERS\FlyUsb.sys --> C:\Windows\system32\DRIVERS\FlyUsb.sys [?]

S3 fssfltr;fssfltr;C:\Windows\system32\DRIVERS\fssfltr.sys --> C:\Windows\system32\DRIVERS\fssfltr.sys [?]

S3 fsssvc;Windows Live Family Safety Service;C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2011-5-13 1492840]

S3 gupdatem;Google Update Service (gupdatem);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-4-30 136176]

S3 JMCR;JMCR;C:\Windows\system32\DRIVERS\jmcr.sys --> C:\Windows\system32\DRIVERS\jmcr.sys [?]

S3 MpNWMon;Microsoft Malware Protection Network Driver;C:\Windows\system32\DRIVERS\MpNWMon.sys --> C:\Windows\system32\DRIVERS\MpNWMon.sys [?]

S3 netw5v64;Intel® Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit;C:\Windows\system32\DRIVERS\netw5v64.sys --> C:\Windows\system32\DRIVERS\netw5v64.sys [?]

S3 NisDrv;Microsoft Network Inspection System;C:\Windows\system32\DRIVERS\NisDrvWFP.sys --> C:\Windows\system32\DRIVERS\NisDrvWFP.sys [?]

S3 NisSrv;Microsoft Network Inspection;C:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe [2011-4-27 288272]

S3 NVHDA;Service for NVIDIA High Definition Audio Driver;C:\Windows\system32\drivers\nvhda64v.sys --> C:\Windows\system32\drivers\nvhda64v.sys [?]

S3 RTL8167;Realtek 8167 NT Driver;C:\Windows\system32\DRIVERS\Rt64win7.sys --> C:\Windows\system32\DRIVERS\Rt64win7.sys [?]

S3 SrvHsfHDA;SrvHsfHDA;C:\Windows\system32\DRIVERS\VSTAZL6.SYS --> C:\Windows\system32\DRIVERS\VSTAZL6.SYS [?]

S3 SrvHsfV92;SrvHsfV92;C:\Windows\system32\DRIVERS\VSTDPV6.SYS --> C:\Windows\system32\DRIVERS\VSTDPV6.SYS [?]

S3 SrvHsfWinac;SrvHsfWinac;C:\Windows\system32\DRIVERS\VSTCNXT6.SYS --> C:\Windows\system32\DRIVERS\VSTCNXT6.SYS [?]

S3 TsUsbFlt;TsUsbFlt;C:\Windows\system32\drivers\tsusbflt.sys --> C:\Windows\system32\drivers\tsusbflt.sys [?]

S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\system32\Drivers\usbaapl64.sys --> C:\Windows\system32\Drivers\usbaapl64.sys [?]

S3 WDC_SAM;WD SCSI Pass Thru driver;C:\Windows\system32\DRIVERS\wdcsam64.sys --> C:\Windows\system32\DRIVERS\wdcsam64.sys [?]

S3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;C:\Windows\system32\DRIVERS\yk62x64.sys --> C:\Windows\system32\DRIVERS\yk62x64.sys [?]

.

=============== Created Last 30 ================

.

2011-11-04 05:54:21 69000 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{A7BEC653-A0EE-497F-A319-76C9BA5EB7BC}\offreg.dll

2011-11-04 03:54:36 8570192 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{A7BEC653-A0EE-497F-A319-76C9BA5EB7BC}\mpengine.dll

2011-11-04 03:37:14 -------- d-----w- C:\Users\Joelle\AppData\Roaming\Malwarebytes

2011-11-04 03:37:06 -------- d-----w- C:\ProgramData\Malwarebytes

2011-11-04 03:37:03 25416 ----a-w- C:\Windows\System32\drivers\mbam.sys

2011-11-04 03:37:03 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware

2011-11-03 15:53:21 -------- d-----w- C:\Users\Joelle\AppData\Local\{21F29EF7-EC4D-414C-BEF5-046FFC54C92A}

2011-11-03 15:53:11 -------- d-----w- C:\Users\Joelle\AppData\Local\{CD232D4A-1331-4D89-9583-62E1F333D672}

2011-11-03 06:15:58 69120 --sha-r- C:\Users\Joelle\AppData\Roaming\diskcopyp.dll

2011-11-03 03:19:32 -------- d-----w- C:\Users\Joelle\AppData\Local\{FE9045E6-18AD-4C81-9BAF-2E8059086EF2}

2011-11-03 03:19:14 -------- d-----w- C:\Users\Joelle\AppData\Local\{693CD04D-40CD-4340-AA81-7341324F2B80}

2011-11-02 05:02:55 -------- d-----w- C:\Users\Joelle\AppData\Local\{2F92E158-1006-4B43-A7FE-B8FE045DF09A}

2011-11-02 05:02:38 -------- d-----w- C:\Users\Joelle\AppData\Local\{6657408D-5509-4A3F-BCD6-A0CC76B113C6}

2011-10-31 06:37:44 -------- d-----w- C:\Users\Joelle\AppData\Local\{C72C647D-BB30-44E1-9F63-9F83EB7F4F1F}

2011-10-31 06:37:34 -------- d-----w- C:\Users\Joelle\AppData\Local\{815953B2-3F35-4BDC-ADDA-70740974897C}

2011-10-30 07:31:37 -------- d-----w- C:\Users\Joelle\AppData\Local\{F838E286-DBBC-4C99-B60C-4F29454F584A}

2011-10-30 07:31:27 -------- d-----w- C:\Users\Joelle\AppData\Local\{EB5A256F-305D-4B22-92B7-7B80BE3FEC0A}

2011-10-29 19:31:13 -------- d-----w- C:\Users\Joelle\AppData\Local\{F9F5BE10-FE8B-4123-AE4A-9739AB81ADEE}

2011-10-29 19:31:03 -------- d-----w- C:\Users\Joelle\AppData\Local\{B2067210-7BFB-4A04-A74E-CC87165638B1}

2011-10-29 07:30:39 -------- d-----w- C:\Users\Joelle\AppData\Local\{75F829A1-5A8C-4242-A6EC-4A9EE4BA9580}

2011-10-29 07:30:25 -------- d-----w- C:\Users\Joelle\AppData\Local\{5B8986E5-3225-488B-8B32-54CD4064ED0E}

2011-10-27 00:27:45 6144 ----a-w- C:\Program Files\Internet Explorer\iecompat.dll

2011-10-27 00:27:45 6144 ----a-w- C:\Program Files (x86)\Internet Explorer\iecompat.dll

2011-10-23 17:27:23 -------- d-----w- C:\Windows\System32\SPReview

2011-10-23 17:25:39 -------- d-----w- C:\Windows\System32\EventProviders

2011-10-23 08:07:46 -------- d-----w- C:\Program Files (x86)\Microsoft Security Client

2011-10-23 08:07:25 8570192 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\Updates\mpengine.dll

2011-10-21 18:06:21 -------- d-----w- C:\Users\Joelle\AppData\Local\{C2499A84-98E7-47F8-B72B-C02061E3DFC5}

2011-10-21 18:06:11 -------- d-----w- C:\Users\Joelle\AppData\Local\{AC991235-9320-499B-A93A-1C8C32DEEABD}

2011-10-21 04:01:20 -------- d-----w- C:\Users\Joelle\AppData\Local\{FD1D2223-2C48-4A8A-8F7E-34FE264C5BF5}

2011-10-21 04:01:09 -------- d-----w- C:\Users\Joelle\AppData\Local\{EB827D73-0584-4D50-A175-52443384C8B5}

2011-10-20 16:00:56 -------- d-----w- C:\Users\Joelle\AppData\Local\{E940AF7F-0381-4CC9-8E74-1496475116E7}

2011-10-20 16:00:46 -------- d-----w- C:\Users\Joelle\AppData\Local\{64E0A83B-6BAB-46F9-ADA9-85D4789CD6C9}

2011-10-20 00:20:07 -------- d-----w- C:\Users\Joelle\AppData\Local\{CDFBE921-5AA9-4D8D-A2F1-EFB8F475C068}

2011-10-20 00:19:51 -------- d-----w- C:\Users\Joelle\AppData\Local\{6CEC3270-4480-4633-903F-887A94DE7621}

2011-10-19 06:16:35 -------- d-----w- C:\Users\Joelle\AppData\Local\{6DED8843-3E0F-45C0-B248-12EF21F26B70}

2011-10-19 06:16:24 -------- d-----w- C:\Users\Joelle\AppData\Local\{7063B5EC-20CD-491F-8760-5ACD46F256B6}

2011-10-18 18:16:12 -------- d-----w- C:\Users\Joelle\AppData\Local\{EF66D935-7E8A-40E9-8DC2-B05482A654D7}

2011-10-18 18:16:02 -------- d-----w- C:\Users\Joelle\AppData\Local\{A1102BDB-70C7-4476-BD88-943CA21E16E4}

2011-10-18 05:27:01 -------- d-----w- C:\Users\Joelle\AppData\Local\{64268A93-F1CD-4339-950E-E9DCA56B133B}

2011-10-18 05:26:50 -------- d-----w- C:\Users\Joelle\AppData\Local\{2E385A0E-B6A2-4568-9EEA-CC93AFA2A207}

2011-10-17 17:08:16 -------- d-----w- C:\Users\Joelle\AppData\Local\{999FBB82-D2D8-4BC5-BC05-6D5B87FA2956}

2011-10-17 17:08:06 -------- d-----w- C:\Users\Joelle\AppData\Local\{E4A4F613-8B25-49DD-A2B1-D67B849E246C}

2011-10-17 05:07:52 -------- d-----w- C:\Users\Joelle\AppData\Local\{7EE67D1E-9E5F-4B3F-B834-DAA157F053CE}

2011-10-17 05:07:41 -------- d-----w- C:\Users\Joelle\AppData\Local\{F90B0E2A-FD50-4F9E-98C7-4188240FFC6F}

2011-10-16 17:07:25 -------- d-----w- C:\Users\Joelle\AppData\Local\{160D2D96-2AC2-41C7-8401-B225CC6E8F38}

2011-10-16 17:07:15 -------- d-----w- C:\Users\Joelle\AppData\Local\{CA6E583C-AC17-4267-B0EE-C829DCE50E9F}

2011-10-16 05:06:49 -------- d-----w- C:\Users\Joelle\AppData\Local\{07E4CCDA-A358-43B6-A0DF-0DAD71017F55}

2011-10-16 05:06:36 -------- d-----w- C:\Users\Joelle\AppData\Local\{6BCC2B9F-C1C5-458B-85DD-FC4433CF66A4}

2011-10-14 06:42:34 -------- d-----w- C:\Users\Joelle\AppData\Local\{0BC61861-FCA2-4D1D-9C59-0959E47F53E1}

2011-10-14 06:42:17 -------- d-----w- C:\Users\Joelle\AppData\Local\{9D4FD4EC-EE98-4A5E-9728-6A4F235412C2}

2011-10-12 22:52:59 1638912 ----a-w- C:\Windows\SysWow64\mshtml.tlb

2011-10-10 22:35:42 917840 ------w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{1CE9CC5A-438A-4EE6-B774-B30A8A417BC7}\gapaengine.dll

2011-10-09 15:52:54 -------- d-----w- C:\Users\Joelle\AppData\Local\{375C2049-3609-4BB7-A4AC-DB2E1389355A}

2011-10-08 17:41:22 -------- d-----w- C:\Users\Joelle\AppData\Local\{F22AFBCB-F67A-4172-A678-D6632A5D3D98}

2011-10-08 17:41:13 -------- d-----w- C:\Users\Joelle\AppData\Local\{3186B52F-C883-4BE8-8F52-05B4C5067C98}

2011-10-08 05:04:15 -------- d-----w- C:\Users\Joelle\AppData\Local\{D7B7786E-476D-40F7-A6E7-244B4237C645}

2011-10-08 05:04:05 -------- d-----w- C:\Users\Joelle\AppData\Local\{FD4FF7BA-236F-466F-977B-A781C9960662}

2011-10-07 16:38:43 -------- d-----w- C:\Users\Joelle\AppData\Local\{990347BF-529F-40A9-8348-85908E80B268}

2011-10-07 16:38:29 -------- d-----w- C:\Users\Joelle\AppData\Local\{3EDBA34A-4AC0-4EE9-B7E3-275BB6722139}

2011-10-06 23:02:59 -------- d-----w- C:\Users\Joelle\AppData\Local\{688FF901-E4EC-439B-8085-FEB9A12D0794}

2011-10-06 23:02:43 -------- d-----w- C:\Users\Joelle\AppData\Local\{05D72051-9278-4919-A351-F28F352F0697}

.

==================== Find3M ====================

.

2011-10-23 17:39:03 175616 ----a-w- C:\Windows\System32\msclmd.dll

2011-10-23 17:39:03 152576 ----a-w- C:\Windows\SysWow64\msclmd.dll

2011-10-23 17:23:52 414368 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl

2011-10-01 03:25:37 1638912 ----a-w- C:\Windows\System32\mshtml.tlb

2011-09-06 03:03:17 3138048 ----a-w- C:\Windows\System32\win32k.sys

2011-08-27 05:37:49 861696 ----a-w- C:\Windows\System32\oleaut32.dll

2011-08-27 05:37:48 331776 ----a-w- C:\Windows\System32\oleacc.dll

2011-08-27 04:26:27 571904 ----a-w- C:\Windows\SysWow64\oleaut32.dll

2011-08-27 04:26:27 233472 ----a-w- C:\Windows\SysWow64\oleacc.dll

2011-08-20 05:37:58 1188864 ----a-w- C:\Windows\System32\wininet.dll

2011-08-20 04:31:05 981504 ----a-w- C:\Windows\SysWow64\wininet.dll

2011-08-19 08:07:46 293736 ----a-w- C:\Program Files\iTunesOutlookAddIn.dll

2011-08-19 08:07:38 421736 ----a-w- C:\Program Files\iTunesHelper.exe

2011-08-19 08:07:38 168296 ----a-w- C:\Program Files\iTunesHelper.dll

2011-08-19 08:07:36 403304 ----a-w- C:\Program Files\iTunesAdmin.dll

2011-08-19 08:07:32 9777000 ----a-w- C:\Program Files\iTunes.exe

2011-08-19 08:07:24 19664232 ----a-w- C:\Program Files\iTunes.dll

2011-08-19 08:07:20 792424 ----a-w- C:\Program Files\gnsdk_sdkmanager.dll

2011-08-19 08:07:20 276328 ----a-w- C:\Program Files\gnsdk_submit.dll

2011-08-19 08:07:20 2742120 ----a-w- C:\Program Files\gnsdk_dsp.dll

2011-08-19 08:07:20 198504 ----a-w- C:\Program Files\gnsdk_musicid.dll

2011-08-17 05:26:46 613888 ----a-w- C:\Windows\System32\psisdecd.dll

2011-08-17 05:25:08 108032 ----a-w- C:\Windows\System32\psisrndr.ax

2011-08-17 04:24:12 465408 ----a-w- C:\Windows\SysWow64\psisdecd.dll

2011-08-17 04:19:27 75776 ----a-w- C:\Windows\SysWow64\psisrndr.ax

2011-07-29 08:10:20 111904 ----a-w- C:\Program Files\ITDetector.ocx

.

============= FINISH: 23:01:48.22 ===============

--** TDSS report **--

23:47:26.0793 0832 TDSS rootkit removing tool 2.6.15.0 Nov 3 2011 17:15:49

23:47:27.0308 0832 ============================================================

23:47:27.0308 0832 Current date / time: 2011/11/03 23:47:27.0308

23:47:27.0308 0832 SystemInfo:

23:47:27.0308 0832

23:47:27.0308 0832 OS Version: 6.1.7601 ServicePack: 1.0

23:47:27.0308 0832 Product type: Workstation

23:47:27.0308 0832 ComputerName: EDRO-PC

23:47:27.0324 0832 UserName: Joelle

23:47:27.0324 0832 Windows directory: C:\Windows

23:47:27.0324 0832 System windows directory: C:\Windows

23:47:27.0324 0832 Running under WOW64

23:47:27.0324 0832 Processor architecture: Intel x64

23:47:27.0324 0832 Number of processors: 4

23:47:27.0324 0832 Page size: 0x1000

23:47:27.0324 0832 Boot type: Safe boot with network

23:47:27.0324 0832 ============================================================

23:47:27.0807 0832 Initialize success

23:47:36.0200 2512 ============================================================

23:47:36.0200 2512 Scan started

23:47:36.0200 2512 Mode: Manual;

23:47:36.0200 2512 ============================================================

23:47:37.0807 2512 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys

23:47:37.0822 2512 1394ohci - ok

23:47:37.0885 2512 Accelerometer (3e2427d4966c7606097341e55ab4e105) C:\Windows\system32\DRIVERS\Accelerometer.sys

23:47:37.0885 2512 Accelerometer - ok

23:47:37.0932 2512 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys

23:47:37.0932 2512 ACPI - ok

23:47:37.0978 2512 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys

23:47:37.0978 2512 AcpiPmi - ok

23:47:38.0041 2512 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys

23:47:38.0056 2512 adp94xx - ok

23:47:38.0181 2512 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys

23:47:38.0197 2512 adpahci - ok

23:47:38.0259 2512 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys

23:47:38.0275 2512 adpu320 - ok

23:47:38.0337 2512 AFD (d5b031c308a409a0a576bff4cf083d30) C:\Windows\system32\drivers\afd.sys

23:47:38.0337 2512 AFD - ok

23:47:38.0415 2512 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys

23:47:38.0415 2512 agp440 - ok

23:47:38.0462 2512 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys

23:47:38.0462 2512 aliide - ok

23:47:38.0478 2512 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys

23:47:38.0478 2512 amdide - ok

23:47:38.0540 2512 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys

23:47:38.0540 2512 AmdK8 - ok

23:47:38.0540 2512 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys

23:47:38.0556 2512 AmdPPM - ok

23:47:38.0602 2512 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys

23:47:38.0602 2512 amdsata - ok

23:47:38.0634 2512 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys

23:47:38.0634 2512 amdsbs - ok

23:47:38.0712 2512 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys

23:47:38.0712 2512 amdxata - ok

23:47:38.0774 2512 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys

23:47:38.0774 2512 AppID - ok

23:47:38.0868 2512 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys

23:47:38.0868 2512 arc - ok

23:47:38.0899 2512 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys

23:47:38.0899 2512 arcsas - ok

23:47:38.0946 2512 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys

23:47:38.0946 2512 AsyncMac - ok

23:47:39.0008 2512 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys

23:47:39.0024 2512 atapi - ok

23:47:39.0086 2512 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys

23:47:39.0086 2512 b06bdrv - ok

23:47:39.0148 2512 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys

23:47:39.0148 2512 b57nd60a - ok

23:47:39.0242 2512 BCM43XX (9e84a931dbee0292e38ed672f6293a99) C:\Windows\system32\DRIVERS\bcmwl664.sys

23:47:39.0242 2512 BCM43XX - ok

23:47:39.0336 2512 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys

23:47:39.0336 2512 Beep - ok

23:47:39.0398 2512 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys

23:47:39.0398 2512 blbdrive - ok

23:47:39.0492 2512 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys

23:47:39.0492 2512 bowser - ok

23:47:39.0523 2512 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys

23:47:39.0523 2512 BrFiltLo - ok

23:47:39.0538 2512 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys

23:47:39.0538 2512 BrFiltUp - ok

23:47:39.0570 2512 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys

23:47:39.0570 2512 Brserid - ok

23:47:39.0585 2512 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys

23:47:39.0585 2512 BrSerWdm - ok

23:47:39.0648 2512 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys

23:47:39.0648 2512 BrUsbMdm - ok

23:47:39.0679 2512 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys

23:47:39.0679 2512 BrUsbSer - ok

23:47:39.0710 2512 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys

23:47:39.0710 2512 BTHMODEM - ok

23:47:39.0741 2512 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys

23:47:39.0741 2512 cdfs - ok

23:47:39.0804 2512 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\drivers\cdrom.sys

23:47:39.0804 2512 cdrom - ok

23:47:39.0850 2512 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys

23:47:39.0850 2512 circlass - ok

23:47:39.0897 2512 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys

23:47:39.0897 2512 CLFS - ok

23:47:39.0944 2512 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys

23:47:39.0944 2512 CmBatt - ok

23:47:39.0991 2512 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys

23:47:39.0991 2512 cmdide - ok

23:47:40.0053 2512 CNG (d5fea92400f12412b3922087c09da6a5) C:\Windows\system32\Drivers\cng.sys

23:47:40.0069 2512 CNG - ok

23:47:40.0116 2512 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys

23:47:40.0116 2512 Compbatt - ok

23:47:40.0162 2512 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys

23:47:40.0162 2512 CompositeBus - ok

23:47:40.0194 2512 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys

23:47:40.0209 2512 crcdisk - ok

23:47:40.0272 2512 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys

23:47:40.0272 2512 DfsC - ok

23:47:40.0318 2512 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys

23:47:40.0318 2512 discache - ok

23:47:40.0381 2512 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys

23:47:40.0381 2512 Disk - ok

23:47:40.0412 2512 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys

23:47:40.0412 2512 drmkaud - ok

23:47:40.0459 2512 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys

23:47:40.0474 2512 DXGKrnl - ok

23:47:40.0568 2512 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys

23:47:40.0599 2512 ebdrv - ok

23:47:40.0708 2512 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys

23:47:40.0708 2512 elxstor - ok

23:47:40.0755 2512 enecir (524c79054636d2e5751169005006460b) C:\Windows\system32\DRIVERS\enecir.sys

23:47:40.0755 2512 enecir - ok

23:47:40.0802 2512 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys

23:47:40.0802 2512 ErrDev - ok

23:47:40.0849 2512 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys

23:47:40.0849 2512 exfat - ok

23:47:40.0864 2512 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys

23:47:40.0864 2512 fastfat - ok

23:47:40.0942 2512 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys

23:47:40.0942 2512 fdc - ok

23:47:40.0974 2512 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys

23:47:40.0974 2512 FileInfo - ok

23:47:40.0989 2512 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys

23:47:40.0989 2512 Filetrace - ok

23:47:41.0036 2512 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys

23:47:41.0036 2512 flpydisk - ok

23:47:41.0083 2512 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys

23:47:41.0083 2512 FltMgr - ok

23:47:41.0192 2512 FlyUsb (6cd6bb45bd3e0eef6ce496bf52854ff1) C:\Windows\system32\DRIVERS\FlyUsb.sys

23:47:41.0192 2512 FlyUsb - ok

23:47:41.0254 2512 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys

23:47:41.0254 2512 FsDepends - ok

23:47:41.0317 2512 fssfltr (6c06701bf1db05405804d7eb610991ce) C:\Windows\system32\DRIVERS\fssfltr.sys

23:47:41.0317 2512 fssfltr - ok

23:47:41.0348 2512 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\Windows\system32\drivers\Fs_Rec.sys

23:47:41.0348 2512 Fs_Rec - ok

23:47:41.0395 2512 FTDIBUS (fa169871d8fadcc6539c4e8726610286) C:\Windows\system32\drivers\ftdibus.sys

23:47:41.0395 2512 FTDIBUS - ok

23:47:41.0442 2512 FTSER2K (24237091348d1efb5635a1cf9649e311) C:\Windows\system32\drivers\ftser2k.sys

23:47:41.0442 2512 FTSER2K - ok

23:47:41.0504 2512 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys

23:47:41.0520 2512 fvevol - ok

23:47:41.0551 2512 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys

23:47:41.0551 2512 gagp30kx - ok

23:47:41.0598 2512 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys

23:47:41.0598 2512 GEARAspiWDM - ok

23:47:41.0722 2512 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys

23:47:41.0722 2512 hcw85cir - ok

23:47:41.0785 2512 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys

23:47:41.0785 2512 HdAudAddService - ok

23:47:41.0832 2512 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys

23:47:41.0832 2512 HDAudBus - ok

23:47:41.0863 2512 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys

23:47:41.0863 2512 HidBatt - ok

23:47:41.0878 2512 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys

23:47:41.0878 2512 HidBth - ok

23:47:41.0972 2512 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys

23:47:41.0972 2512 HidIr - ok

23:47:42.0003 2512 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\drivers\hidusb.sys

23:47:42.0003 2512 HidUsb - ok

23:47:42.0034 2512 hpdskflt (ccbe758967cc0f53f5ba3b271653c4e6) C:\Windows\system32\DRIVERS\hpdskflt.sys

23:47:42.0034 2512 hpdskflt - ok

23:47:42.0066 2512 HpqKbFiltr (9af482d058be59cc28bce52e7c4b747c) C:\Windows\system32\DRIVERS\HpqKbFiltr.sys

23:47:42.0081 2512 HpqKbFiltr - ok

23:47:42.0128 2512 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys

23:47:42.0128 2512 HpSAMD - ok

23:47:42.0237 2512 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys

23:47:42.0253 2512 HTTP - ok

23:47:42.0284 2512 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys

23:47:42.0284 2512 hwpolicy - ok

23:47:42.0331 2512 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys

23:47:42.0331 2512 i8042prt - ok

23:47:42.0393 2512 iaStor (bbb3b6df1abb0fe35802ede85cc1c011) C:\Windows\system32\DRIVERS\iaStor.sys

23:47:42.0393 2512 iaStor - ok

23:47:42.0487 2512 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys

23:47:42.0502 2512 iaStorV - ok

23:47:42.0658 2512 igfx (a87261ef1546325b559374f5689cf5bc) C:\Windows\system32\DRIVERS\igdkmd64.sys

23:47:42.0705 2512 igfx - ok

23:47:42.0783 2512 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys

23:47:42.0783 2512 iirsp - ok

23:47:42.0846 2512 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys

23:47:42.0846 2512 intelide - ok

23:47:42.0877 2512 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys

23:47:42.0877 2512 intelppm - ok

23:47:42.0924 2512 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys

23:47:42.0924 2512 IpFilterDriver - ok

23:47:42.0970 2512 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys

23:47:42.0970 2512 IPMIDRV - ok

23:47:43.0002 2512 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys

23:47:43.0002 2512 IPNAT - ok

23:47:43.0095 2512 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys

23:47:43.0095 2512 IRENUM - ok

23:47:43.0126 2512 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys

23:47:43.0126 2512 isapnp - ok

23:47:43.0173 2512 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys

23:47:43.0173 2512 iScsiPrt - ok

23:47:43.0236 2512 JMCR (f8844b00c10e386c704c610e95a9847d) C:\Windows\system32\DRIVERS\jmcr.sys

23:47:43.0236 2512 JMCR - ok

23:47:43.0282 2512 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\drivers\kbdclass.sys

23:47:43.0282 2512 kbdclass - ok

23:47:43.0345 2512 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\drivers\kbdhid.sys

23:47:43.0345 2512 kbdhid - ok

23:47:43.0423 2512 KSecDD (ccd53b5bd33ce0c889e830d839c8b66e) C:\Windows\system32\Drivers\ksecdd.sys

23:47:43.0423 2512 KSecDD - ok

23:47:43.0454 2512 KSecPkg (9ff918a261752c12639e8ad4208d2c2f) C:\Windows\system32\Drivers\ksecpkg.sys

23:47:43.0470 2512 KSecPkg - ok

23:47:43.0501 2512 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys

23:47:43.0501 2512 ksthunk - ok

23:47:43.0563 2512 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys

23:47:43.0563 2512 lltdio - ok

23:47:43.0610 2512 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys

23:47:43.0610 2512 LSI_FC - ok

23:47:43.0672 2512 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys

23:47:43.0672 2512 LSI_SAS - ok

23:47:43.0704 2512 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys

23:47:43.0704 2512 LSI_SAS2 - ok

23:47:43.0735 2512 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys

23:47:43.0735 2512 LSI_SCSI - ok

23:47:43.0782 2512 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys

23:47:43.0782 2512 luafv - ok

23:47:43.0828 2512 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys

23:47:43.0828 2512 megasas - ok

23:47:43.0860 2512 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys

23:47:43.0860 2512 MegaSR - ok

23:47:43.0938 2512 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys

23:47:43.0938 2512 Modem - ok

23:47:43.0969 2512 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys

23:47:43.0969 2512 monitor - ok

23:47:44.0016 2512 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\drivers\mouclass.sys

23:47:44.0016 2512 mouclass - ok

23:47:44.0062 2512 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys

23:47:44.0062 2512 mouhid - ok

23:47:44.0094 2512 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys

23:47:44.0094 2512 mountmgr - ok

23:47:44.0140 2512 MpFilter (c177a7ebf5e8a0b596f618870516cab8) C:\Windows\system32\DRIVERS\MpFilter.sys

23:47:44.0140 2512 MpFilter - ok

23:47:44.0218 2512 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys

23:47:44.0218 2512 mpio - ok

23:47:44.0250 2512 MpNWMon (8fbf6b31fe8af1833d93c5913d5b4d55) C:\Windows\system32\DRIVERS\MpNWMon.sys

23:47:44.0250 2512 MpNWMon - ok

23:47:44.0281 2512 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys

23:47:44.0281 2512 mpsdrv - ok

23:47:44.0328 2512 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys

23:47:44.0328 2512 MRxDAV - ok

23:47:44.0390 2512 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys

23:47:44.0390 2512 mrxsmb - ok

23:47:44.0421 2512 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys

23:47:44.0437 2512 mrxsmb10 - ok

23:47:44.0499 2512 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys

23:47:44.0499 2512 mrxsmb20 - ok

23:47:44.0530 2512 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys

23:47:44.0530 2512 msahci - ok

23:47:44.0577 2512 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys

23:47:44.0577 2512 msdsm - ok

23:47:44.0624 2512 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys

23:47:44.0624 2512 Msfs - ok

23:47:44.0655 2512 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys

23:47:44.0671 2512 mshidkmdf - ok

23:47:44.0702 2512 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys

23:47:44.0702 2512 msisadrv - ok

23:47:44.0780 2512 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys

23:47:44.0780 2512 MSKSSRV - ok

23:47:44.0811 2512 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys

23:47:44.0811 2512 MSPCLOCK - ok

23:47:44.0827 2512 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys

23:47:44.0827 2512 MSPQM - ok

23:47:44.0874 2512 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys

23:47:44.0874 2512 MsRPC - ok

23:47:44.0905 2512 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys

23:47:44.0905 2512 mssmbios - ok

23:47:44.0967 2512 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys

23:47:44.0983 2512 MSTEE - ok

23:47:45.0014 2512 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys

23:47:45.0014 2512 MTConfig - ok

23:47:45.0061 2512 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys

23:47:45.0076 2512 Mup - ok

23:47:45.0108 2512 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys

23:47:45.0108 2512 NativeWifiP - ok

23:47:45.0170 2512 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys

23:47:45.0186 2512 NDIS - ok

23:47:45.0264 2512 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys

23:47:45.0264 2512 NdisCap - ok

23:47:45.0310 2512 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys

23:47:45.0310 2512 NdisTapi - ok

23:47:45.0373 2512 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys

23:47:45.0373 2512 Ndisuio - ok

23:47:45.0404 2512 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys

23:47:45.0404 2512 NdisWan - ok

23:47:45.0451 2512 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys

23:47:45.0451 2512 NDProxy - ok

23:47:45.0513 2512 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys

23:47:45.0513 2512 NetBIOS - ok

23:47:45.0591 2512 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys

23:47:45.0591 2512 NetBT - ok

23:47:45.0763 2512 NETw5s64 (39ede676d17f37af4573c2b33ec28aca) C:\Windows\system32\DRIVERS\NETw5s64.sys

23:47:45.0841 2512 NETw5s64 - ok

23:47:45.0981 2512 netw5v64 (64428dfdaf6e88366cb51f45a79c5f69) C:\Windows\system32\DRIVERS\netw5v64.sys

23:47:46.0044 2512 netw5v64 - ok

23:47:46.0137 2512 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys

23:47:46.0137 2512 nfrd960 - ok

23:47:46.0153 2512 NisDrv (5f7d72cbcdd025af1f38fdeee5646968) C:\Windows\system32\DRIVERS\NisDrvWFP.sys

23:47:46.0153 2512 NisDrv - ok

23:47:46.0215 2512 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys

23:47:46.0215 2512 Npfs - ok

23:47:46.0231 2512 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys

23:47:46.0231 2512 nsiproxy - ok

23:47:46.0293 2512 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys

23:47:46.0309 2512 Ntfs - ok

23:47:46.0402 2512 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys

23:47:46.0402 2512 Null - ok

23:47:46.0434 2512 NVHDA (ad37248bd442d41c9a896e53eb8a85ee) C:\Windows\system32\drivers\nvhda64v.sys

23:47:46.0434 2512 NVHDA - ok

23:47:46.0652 2512 nvlddmkm (bbe872a814b00798c2d568d46c42a71b) C:\Windows\system32\DRIVERS\nvlddmkm.sys

23:47:46.0855 2512 nvlddmkm - ok

23:47:46.0964 2512 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys

23:47:46.0964 2512 nvraid - ok

23:47:46.0995 2512 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys

23:47:46.0995 2512 nvstor - ok

23:47:47.0073 2512 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys

23:47:47.0073 2512 nv_agp - ok

23:47:47.0151 2512 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys

23:47:47.0151 2512 ohci1394 - ok

23:47:47.0245 2512 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys

23:47:47.0245 2512 Parport - ok

23:47:47.0292 2512 partmgr (871eadac56b0a4c6512bbe32753ccf79) C:\Windows\system32\drivers\partmgr.sys

23:47:47.0292 2512 partmgr - ok

23:47:47.0338 2512 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys

23:47:47.0338 2512 pci - ok

23:47:47.0370 2512 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys

23:47:47.0370 2512 pciide - ok

23:47:47.0401 2512 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys

23:47:47.0401 2512 pcmcia - ok

23:47:47.0432 2512 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys

23:47:47.0432 2512 pcw - ok

23:47:47.0463 2512 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys

23:47:47.0463 2512 PEAUTH - ok

23:47:47.0588 2512 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys

23:47:47.0588 2512 PptpMiniport - ok

23:47:47.0619 2512 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys

23:47:47.0619 2512 Processor - ok

23:47:47.0682 2512 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys

23:47:47.0682 2512 Psched - ok

23:47:47.0728 2512 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys

23:47:47.0744 2512 ql2300 - ok

23:47:47.0806 2512 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys

23:47:47.0806 2512 ql40xx - ok

23:47:47.0838 2512 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys

23:47:47.0838 2512 QWAVEdrv - ok

23:47:47.0853 2512 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys

23:47:47.0853 2512 RasAcd - ok

23:47:47.0884 2512 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys

23:47:47.0884 2512 RasAgileVpn - ok

23:47:47.0947 2512 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys

23:47:47.0947 2512 Rasl2tp - ok

23:47:47.0978 2512 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys

23:47:47.0978 2512 RasPppoe - ok

23:47:47.0994 2512 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys

23:47:47.0994 2512 RasSstp - ok

23:47:48.0072 2512 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys

23:47:48.0072 2512 rdbss - ok

23:47:48.0118 2512 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys

23:47:48.0118 2512 rdpbus - ok

23:47:48.0150 2512 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys

23:47:48.0150 2512 RDPCDD - ok

23:47:48.0181 2512 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys

23:47:48.0181 2512 RDPENCDD - ok

23:47:48.0196 2512 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys

23:47:48.0196 2512 RDPREFMP - ok

23:47:48.0243 2512 RDPWD (15b66c206b5cb095bab980553f38ed23) C:\Windows\system32\drivers\RDPWD.sys

23:47:48.0243 2512 RDPWD - ok

23:47:48.0306 2512 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys

23:47:48.0321 2512 rdyboost - ok

23:47:48.0446 2512 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys

23:47:48.0446 2512 rspndr - ok

23:47:48.0493 2512 RTL8167 (5b04929ef24f87e239b880faae410e3a) C:\Windows\system32\DRIVERS\Rt64win7.sys

23:47:48.0493 2512 RTL8167 - ok

23:47:48.0540 2512 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys

23:47:48.0540 2512 sbp2port - ok

23:47:48.0586 2512 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys

23:47:48.0586 2512 scfilter - ok

23:47:48.0633 2512 sdbus (111e0ebc0ad79cb0fa014b907b231cf0) C:\Windows\system32\drivers\sdbus.sys

23:47:48.0633 2512 sdbus - ok

23:47:48.0664 2512 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys

23:47:48.0664 2512 secdrv - ok

23:47:48.0758 2512 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys

23:47:48.0758 2512 Serenum - ok

23:47:48.0774 2512 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys

23:47:48.0774 2512 Serial - ok

23:47:48.0805 2512 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys

23:47:48.0805 2512 sermouse - ok

23:47:48.0836 2512 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys

23:47:48.0836 2512 sffdisk - ok

23:47:48.0852 2512 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys

23:47:48.0852 2512 sffp_mmc - ok

23:47:48.0867 2512 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys

23:47:48.0883 2512 sffp_sd - ok

23:47:48.0898 2512 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys

23:47:48.0898 2512 sfloppy - ok

23:47:48.0930 2512 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys

23:47:48.0930 2512 SiSRaid2 - ok

23:47:48.0961 2512 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys

23:47:48.0961 2512 SiSRaid4 - ok

23:47:49.0054 2512 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys

23:47:49.0054 2512 Smb - ok

23:47:49.0070 2512 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys

23:47:49.0070 2512 spldr - ok

23:47:49.0132 2512 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys

23:47:49.0132 2512 srv - ok

23:47:49.0257 2512 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys

23:47:49.0257 2512 srv2 - ok

23:47:49.0304 2512 SrvHsfHDA (0c4540311e11664b245a263e1154cef8) C:\Windows\system32\DRIVERS\VSTAZL6.SYS

23:47:49.0304 2512 SrvHsfHDA - ok

23:47:49.0351 2512 SrvHsfV92 (02071d207a9858fbe3a48cbfd59c4a04) C:\Windows\system32\DRIVERS\VSTDPV6.SYS

23:47:49.0366 2512 SrvHsfV92 - ok

23:47:49.0444 2512 SrvHsfWinac (18e40c245dbfaf36fd0134a7ef2df396) C:\Windows\system32\DRIVERS\VSTCNXT6.SYS

23:47:49.0444 2512 SrvHsfWinac - ok

23:47:49.0507 2512 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys

23:47:49.0507 2512 srvnet - ok

23:47:49.0554 2512 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys

23:47:49.0554 2512 stexstor - ok

23:47:49.0663 2512 STHDA (dffbc024dfc7bb05b2129e05cbc7a201) C:\Windows\system32\DRIVERS\stwrt64.sys

23:47:49.0663 2512 STHDA - ok

23:47:49.0725 2512 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys

23:47:49.0725 2512 swenum - ok

23:47:49.0803 2512 SynTP (3a706a967295e16511e40842b1a2761d) C:\Windows\system32\DRIVERS\SynTP.sys

23:47:49.0819 2512 SynTP - ok

23:47:49.0928 2512 Tcpip (f0e98c00a09fdf791525829a1d14240f) C:\Windows\system32\drivers\tcpip.sys

23:47:49.0944 2512 Tcpip - ok

23:47:50.0006 2512 TCPIP6 (f0e98c00a09fdf791525829a1d14240f) C:\Windows\system32\DRIVERS\tcpip.sys

23:47:50.0006 2512 TCPIP6 - ok

23:47:50.0084 2512 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys

23:47:50.0084 2512 tcpipreg - ok

23:47:50.0131 2512 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys

23:47:50.0131 2512 TDPIPE - ok

23:47:50.0146 2512 TDTCP (e4245bda3190a582d55ed09e137401a9) C:\Windows\system32\drivers\tdtcp.sys

23:47:50.0146 2512 TDTCP - ok

23:47:50.0193 2512 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys

23:47:50.0193 2512 tdx - ok

23:47:50.0240 2512 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys

23:47:50.0240 2512 TermDD - ok

23:47:50.0318 2512 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys

23:47:50.0318 2512 tssecsrv - ok

23:47:50.0380 2512 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys

23:47:50.0380 2512 TsUsbFlt - ok

23:47:50.0427 2512 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys

23:47:50.0443 2512 tunnel - ok

23:47:50.0474 2512 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys

23:47:50.0474 2512 uagp35 - ok

23:47:50.0505 2512 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys

23:47:50.0521 2512 udfs - ok

23:47:50.0583 2512 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys

23:47:50.0583 2512 uliagpkx - ok

23:47:50.0692 2512 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys

23:47:50.0692 2512 umbus - ok

23:47:50.0724 2512 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys

23:47:50.0724 2512 UmPass - ok

23:47:50.0770 2512 USBAAPL64 (aa33fc47ed58c34e6e9261e4f850b7eb) C:\Windows\system32\Drivers\usbaapl64.sys

23:47:50.0770 2512 USBAAPL64 - ok

23:47:50.0817 2512 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys

23:47:50.0817 2512 usbccgp - ok

23:47:50.0880 2512 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys

23:47:50.0880 2512 usbcir - ok

23:47:50.0942 2512 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\drivers\usbehci.sys

23:47:50.0942 2512 usbehci - ok

23:47:51.0004 2512 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys

23:47:51.0004 2512 usbhub - ok

23:47:51.0036 2512 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys

23:47:51.0036 2512 usbohci - ok

23:47:51.0082 2512 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys

23:47:51.0082 2512 usbprint - ok

23:47:51.0098 2512 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\drivers\USBSTOR.SYS

23:47:51.0098 2512 USBSTOR - ok

23:47:51.0160 2512 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys

23:47:51.0160 2512 usbuhci - ok

23:47:51.0285 2512 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\Windows\System32\Drivers\usbvideo.sys

23:47:51.0285 2512 usbvideo - ok

23:47:51.0379 2512 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys

23:47:51.0379 2512 vdrvroot - ok

23:47:51.0410 2512 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys

23:47:51.0410 2512 vga - ok

23:47:51.0441 2512 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys

23:47:51.0441 2512 VgaSave - ok

23:47:51.0472 2512 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys

23:47:51.0472 2512 vhdmp - ok

23:47:51.0504 2512 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys

23:47:51.0504 2512 viaide - ok

23:47:51.0519 2512 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys

23:47:51.0535 2512 volmgr - ok

23:47:51.0613 2512 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys

23:47:51.0628 2512 volmgrx - ok

23:47:51.0706 2512 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys

23:47:51.0706 2512 volsnap - ok

23:47:51.0738 2512 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys

23:47:51.0738 2512 vsmraid - ok

23:47:51.0769 2512 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys

23:47:51.0769 2512 vwifibus - ok

23:47:51.0784 2512 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys

23:47:51.0784 2512 vwififlt - ok

23:47:51.0831 2512 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys

23:47:51.0831 2512 WacomPen - ok

23:47:51.0862 2512 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys

23:47:51.0862 2512 WANARP - ok

23:47:51.0878 2512 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys

23:47:51.0878 2512 Wanarpv6 - ok

23:47:51.0940 2512 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys

23:47:51.0940 2512 Wd - ok

23:47:52.0003 2512 WDC_SAM (a3d04ebf5227886029b4532f20d026f7) C:\Windows\system32\DRIVERS\wdcsam64.sys

23:47:52.0003 2512 WDC_SAM - ok

23:47:52.0034 2512 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys

23:47:52.0034 2512 Wdf01000 - ok

23:47:52.0159 2512 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys

23:47:52.0159 2512 WfpLwf - ok

23:47:52.0190 2512 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys

23:47:52.0190 2512 WIMMount - ok

23:47:52.0268 2512 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys

23:47:52.0268 2512 WinUsb - ok

23:47:52.0346 2512 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys

23:47:52.0346 2512 WmiAcpi - ok

23:47:52.0455 2512 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys

23:47:52.0455 2512 ws2ifsl - ok

23:47:52.0502 2512 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys

23:47:52.0502 2512 WudfPf - ok

23:47:52.0518 2512 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys

23:47:52.0518 2512 WUDFRd - ok

23:47:52.0580 2512 yukonw7 (b3eeacf62445e24fbb2cd4b0fb4db026) C:\Windows\system32\DRIVERS\yk62x64.sys

23:47:52.0580 2512 yukonw7 - ok

23:47:52.0611 2512 MBR (0x1B8) (bdf616d65c292878ea35b95c12720485) \Device\Harddisk0\DR0

23:47:52.0611 2512 \Device\Harddisk0\DR0 - ok

23:47:52.0627 2512 Boot (0x1200) (6185d1aa70ca1c99cf521fbb8def44df) \Device\Harddisk0\DR0\Partition0

23:47:52.0627 2512 \Device\Harddisk0\DR0\Partition0 - ok

23:47:52.0642 2512 Boot (0x1200) (42fff17ab4df50f90c2652e40c54b3b9) \Device\Harddisk0\DR0\Partition1

23:47:52.0642 2512 \Device\Harddisk0\DR0\Partition1 - ok

23:47:52.0674 2512 Boot (0x1200) (f940f762d2dc7ac6bea985bb4cc037a6) \Device\Harddisk0\DR0\Partition2

23:47:52.0674 2512 \Device\Harddisk0\DR0\Partition2 - ok

23:47:52.0689 2512 Boot (0x1200) (1dafaed89d17c8152712454f438d0452) \Device\Harddisk0\DR0\Partition3

23:47:52.0689 2512 \Device\Harddisk0\DR0\Partition3 - ok

23:47:52.0689 2512 ============================================================

23:47:52.0689 2512 Scan finished

23:47:52.0689 2512 ============================================================

23:47:52.0689 2408 Detected object count: 0

23:47:52.0689 2408 Actual detected object count: 0

Link to post
Share on other sites
joelle

joelle

Posted
  • Author
Posted

Can't find way to delete this post, so I'll just add an update. Took it down to local shop, but mentioned I needed it cleaned quick (and cheap). They installed AVG free and sent me home to update it the run it in safe mode. So far it looks like it worked. Keeping my fingers crossed.

Link to post
Share on other sites
LDTate

LDTate

Posted
Posted

Glad we could help. :)

If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!

Link to post
Share on other sites
Guest
This topic is now closed to further replies.
 Share
Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.