Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Help! I don't know is this a Google redirect [Solved]


  • This topic is locked This topic is locked

#16
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
How is the computer behaving now ?

Please download Malwarebytes' Anti-Malware

Double Click mbam-setup.exe to install the application.
  • Make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
  • If an update is found, it will download and install the latest version.
  • Once the program has loaded, select "Perform Quick Scan", then click Scan.
  • The scan may take some time to finish, so please be patient.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Make sure that everything is checked, and click Remove Selected.
  • When disinfection is completed, a log will open in Notepad and you may be prompted to Restart.(See Extra Note)
  • The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
  • Copy&Paste the entire report in your next reply.
Extra Note:
If MBAM encounters a file that is difficult to remove, you will be presented with 1 of 2 prompts, click OK to either and let MBAM proceed with the disinfection process, if asked to restart the computer, please do so immediately.
  • 0

Advertisements


#17
alhawi

alhawi

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 123 posts
16:04:41.0455 4900 TDSS rootkit removing tool 2.8.10.0 Sep 17 2012 19:23:24
16:04:41.0836 4900 ============================================================
16:04:41.0836 4900 Current date / time: 2012/09/21 16:04:41.0836
16:04:41.0836 4900 SystemInfo:
16:04:41.0836 4900
16:04:41.0836 4900 OS Version: 6.1.7600 ServicePack: 0.0
16:04:41.0836 4900 Product type: Workstation
16:04:41.0836 4900 ComputerName: OWNER-HP
16:04:41.0836 4900 UserName: owner
16:04:41.0836 4900 Windows directory: C:\Windows
16:04:41.0837 4900 System windows directory: C:\Windows
16:04:41.0837 4900 Running under WOW64
16:04:41.0837 4900 Processor architecture: Intel x64
16:04:41.0837 4900 Number of processors: 4
16:04:41.0837 4900 Page size: 0x1000
16:04:41.0837 4900 Boot type: Normal boot
16:04:41.0837 4900 ============================================================
16:04:42.0527 4900 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
16:04:42.0536 4900 ============================================================
16:04:42.0536 4900 \Device\Harddisk0\DR0:
16:04:42.0537 4900 MBR partitions:
16:04:42.0537 4900 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x63800
16:04:42.0537 4900 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x64000, BlocksNum 0x37C68800
16:04:42.0537 4900 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x37CCC800, BlocksNum 0x2685800
16:04:42.0537 4900 \Device\Harddisk0\DR0\Partition4: MBR, Type 0xC, StartLBA 0x3A352000, BlocksNum 0x33830
16:04:42.0537 4900 ============================================================
16:04:42.0559 4900 C: <-> \Device\Harddisk0\DR0\Partition2
16:04:42.0606 4900 D: <-> \Device\Harddisk0\DR0\Partition3
16:04:42.0606 4900 ============================================================
16:04:42.0607 4900 Initialize success
16:04:42.0607 4900 ============================================================
16:06:01.0456 2004 ============================================================
16:06:01.0456 2004 Scan started
16:06:01.0456 2004 Mode: Manual; SigCheck; TDLFS;
16:06:01.0456 2004 ============================================================
16:06:01.0815 2004 ================ Scan system memory ========================
16:06:01.0815 2004 System memory - ok
16:06:01.0816 2004 ================ Scan services =============================
16:06:01.0995 2004 [ 1B00662092F9F9568B995902F0CC40D5 ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
16:06:02.0104 2004 1394ohci - ok
16:06:02.0147 2004 [ 5C368F4B04ED2A923E6AFCA2D37BAFF5 ] Accelerometer C:\Windows\system32\DRIVERS\Accelerometer.sys
16:06:02.0170 2004 Accelerometer - ok
16:06:02.0223 2004 [ 6F11E88748CDEFD2F76AA215F97DDFE5 ] ACPI C:\Windows\system32\DRIVERS\ACPI.sys
16:06:02.0251 2004 ACPI - ok
16:06:02.0292 2004 [ 63B05A0420CE4BF0E4AF6DCC7CADA254 ] AcpiPmi C:\Windows\system32\DRIVERS\acpipmi.sys
16:06:02.0364 2004 AcpiPmi - ok
16:06:02.0493 2004 [ E12CFCF1DDBFC50948A75E6E38793225 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
16:06:02.0519 2004 AdobeFlashPlayerUpdateSvc - ok
16:06:02.0581 2004 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
16:06:02.0616 2004 adp94xx - ok
16:06:02.0658 2004 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
16:06:02.0686 2004 adpahci - ok
16:06:02.0705 2004 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
16:06:02.0722 2004 adpu320 - ok
16:06:02.0744 2004 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
16:06:02.0804 2004 AeLookupSvc - ok
16:06:02.0875 2004 [ A6FB9DB8F1A86861D955FD6975977AE0 ] AESTFilters C:\Program Files\IDT\WDM\AESTSr64.exe
16:06:02.0937 2004 AESTFilters - ok
16:06:03.0018 2004 [ DB9D6C6B2CD95A9CA414D045B627422E ] AFD C:\Windows\system32\drivers\afd.sys
16:06:03.0078 2004 AFD - ok
16:06:03.0115 2004 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\DRIVERS\agp440.sys
16:06:03.0135 2004 agp440 - ok
16:06:03.0161 2004 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
16:06:03.0190 2004 ALG - ok
16:06:03.0233 2004 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\DRIVERS\aliide.sys
16:06:03.0246 2004 aliide - ok
16:06:03.0258 2004 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\DRIVERS\amdide.sys
16:06:03.0271 2004 amdide - ok
16:06:03.0315 2004 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
16:06:03.0353 2004 AmdK8 - ok
16:06:03.0373 2004 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
16:06:03.0388 2004 AmdPPM - ok
16:06:03.0414 2004 [ EC7EBAB00A4D8448BAB68D1E49B4BEB9 ] amdsata C:\Windows\system32\drivers\amdsata.sys
16:06:03.0430 2004 amdsata - ok
16:06:03.0466 2004 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
16:06:03.0483 2004 amdsbs - ok
16:06:03.0499 2004 [ DB27766102C7BF7E95140A2AA81D042E ] amdxata C:\Windows\system32\drivers\amdxata.sys
16:06:03.0510 2004 amdxata - ok
16:06:03.0559 2004 [ 42FD751B27FA0E9C69BB39F39E409594 ] AppID C:\Windows\system32\drivers\appid.sys
16:06:03.0629 2004 AppID - ok
16:06:03.0650 2004 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
16:06:03.0706 2004 AppIDSvc - ok
16:06:03.0732 2004 [ D065BE66822847B7F127D1F90158376E ] Appinfo C:\Windows\System32\appinfo.dll
16:06:03.0776 2004 Appinfo - ok
16:06:03.0886 2004 [ 7EF47644B74EBE721CC32211D3C35E76 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
16:06:03.0905 2004 Apple Mobile Device - ok
16:06:03.0976 2004 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
16:06:03.0996 2004 arc - ok
16:06:04.0045 2004 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
16:06:04.0072 2004 arcsas - ok
16:06:04.0126 2004 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
16:06:04.0199 2004 AsyncMac - ok
16:06:04.0246 2004 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\DRIVERS\atapi.sys
16:06:04.0257 2004 atapi - ok
16:06:04.0335 2004 [ 40734F3A5EEC4C4AC6A1FAF10B293714 ] athr C:\Windows\system32\DRIVERS\athrx.sys
16:06:04.0412 2004 athr - ok
16:06:04.0456 2004 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
16:06:04.0546 2004 AudioEndpointBuilder - ok
16:06:04.0573 2004 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioSrv C:\Windows\System32\Audiosrv.dll
16:06:04.0619 2004 AudioSrv - ok
16:06:04.0633 2004 [ B20B5FA5CA050E9926E4D1DB81501B32 ] AxInstSV C:\Windows\System32\AxInstSV.dll
16:06:04.0714 2004 AxInstSV - ok
16:06:04.0760 2004 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
16:06:04.0811 2004 b06bdrv - ok
16:06:04.0837 2004 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
16:06:04.0870 2004 b57nd60a - ok
16:06:04.0972 2004 [ A2494901E7226B356B8C1005C45F1C5F ] BBSvc C:\Program Files (x86)\Microsoft\BingBar\7.1.361.0\BBSvc.exe
16:06:05.0005 2004 BBSvc - ok
16:06:05.0049 2004 [ 63B1CBBAE4790B5BAC98F01BF9449722 ] BBUpdate C:\Program Files (x86)\Microsoft\BingBar\7.1.361.0\SeaPort.exe
16:06:05.0067 2004 BBUpdate - ok
16:06:05.0093 2004 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
16:06:05.0133 2004 BDESVC - ok
16:06:05.0145 2004 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
16:06:05.0204 2004 Beep - ok
16:06:05.0243 2004 [ 4992C609A6315671463E30F6512BC022 ] BFE C:\Windows\System32\bfe.dll
16:06:05.0305 2004 BFE - ok
16:06:05.0339 2004 [ 7F0C323FE3DA28AA4AA1BDA3F575707F ] BITS C:\Windows\system32\qmgr.dll
16:06:05.0389 2004 BITS - ok
16:06:05.0421 2004 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
16:06:05.0444 2004 blbdrive - ok
16:06:05.0489 2004 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
16:06:05.0509 2004 Bonjour Service - ok
16:06:05.0545 2004 [ 19D20159708E152267E53B66677A4995 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
16:06:05.0587 2004 bowser - ok
16:06:05.0619 2004 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
16:06:05.0652 2004 BrFiltLo - ok
16:06:05.0669 2004 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
16:06:05.0686 2004 BrFiltUp - ok
16:06:05.0715 2004 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
16:06:05.0763 2004 BridgeMP - ok
16:06:05.0792 2004 [ 6B054C67AAA87843504E8E3C09102009 ] Browser C:\Windows\System32\browser.dll
16:06:05.0805 2004 Browser - ok
16:06:05.0830 2004 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
16:06:05.0871 2004 Brserid - ok
16:06:05.0884 2004 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
16:06:05.0913 2004 BrSerWdm - ok
16:06:05.0927 2004 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
16:06:05.0960 2004 BrUsbMdm - ok
16:06:05.0974 2004 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
16:06:06.0000 2004 BrUsbSer - ok
16:06:06.0041 2004 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
16:06:06.0088 2004 BthEnum - ok
16:06:06.0101 2004 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
16:06:06.0137 2004 BTHMODEM - ok
16:06:06.0160 2004 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
16:06:06.0193 2004 BthPan - ok
16:06:06.0215 2004 [ D59773C7FDD3D795D6FE402EEEA8D71E ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
16:06:06.0251 2004 BTHPORT - ok
16:06:06.0282 2004 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
16:06:06.0348 2004 bthserv - ok
16:06:06.0362 2004 [ 8504842634DD144C075B6B0C982CCEC4 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
16:06:06.0383 2004 BTHUSB - ok
16:06:06.0399 2004 catchme - ok
16:06:06.0415 2004 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
16:06:06.0473 2004 cdfs - ok
16:06:06.0501 2004 [ 83D2D75E1EFB81B3450C18131443F7DB ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
16:06:06.0531 2004 cdrom - ok
16:06:06.0559 2004 [ 312E2F82AF11E79906898AC3E3D58A1F ] CertPropSvc C:\Windows\System32\certprop.dll
16:06:06.0618 2004 CertPropSvc - ok
16:06:06.0689 2004 [ EA3333DB9AB03106EEC0D6D9D487ED01 ] CinemaNow Service C:\Program Files (x86)\CinemaNow\CinemaNow Media Manager\CinemanowSvc.exe
16:06:06.0721 2004 CinemaNow Service - ok
16:06:06.0753 2004 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
16:06:06.0769 2004 circlass - ok
16:06:06.0802 2004 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
16:06:06.0823 2004 CLFS - ok
16:06:06.0875 2004 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:06:06.0897 2004 clr_optimization_v2.0.50727_32 - ok
16:06:06.0939 2004 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
16:06:06.0952 2004 clr_optimization_v2.0.50727_64 - ok
16:06:07.0026 2004 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
16:06:07.0050 2004 clr_optimization_v4.0.30319_32 - ok
16:06:07.0072 2004 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
16:06:07.0086 2004 clr_optimization_v4.0.30319_64 - ok
16:06:07.0110 2004 [ 9573E8C7C3B3D1625FD941841FD0859C ] clwvd C:\Windows\system32\DRIVERS\clwvd.sys
16:06:07.0123 2004 clwvd - ok
16:06:07.0159 2004 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
16:06:07.0176 2004 CmBatt - ok
16:06:07.0200 2004 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\DRIVERS\cmdide.sys
16:06:07.0214 2004 cmdide - ok
16:06:07.0259 2004 [ CA7720B73446FDDEC5C69519C1174C98 ] CNG C:\Windows\system32\Drivers\cng.sys
16:06:07.0300 2004 CNG - ok
16:06:07.0330 2004 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
16:06:07.0341 2004 Compbatt - ok
16:06:07.0378 2004 [ F26B3A86F6FA87CA360B879581AB4123 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
16:06:07.0421 2004 CompositeBus - ok
16:06:07.0427 2004 COMSysApp - ok
16:06:07.0451 2004 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
16:06:07.0463 2004 crcdisk - ok
16:06:07.0498 2004 [ F02786B66375292E58C8777082D4396D ] CryptSvc C:\Windows\system32\cryptsvc.dll
16:06:07.0525 2004 CryptSvc - ok
16:06:07.0577 2004 [ 7266972E86890E2B30C0C322E906B027 ] DcomLaunch C:\Windows\system32\rpcss.dll
16:06:07.0626 2004 DcomLaunch - ok
16:06:07.0668 2004 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
16:06:07.0728 2004 defragsvc - ok
16:06:07.0777 2004 [ 9C253CE7311CA60FC11C774692A13208 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
16:06:07.0829 2004 DfsC - ok
16:06:07.0869 2004 [ CE3B9562D997F69B330D181A8875960F ] Dhcp C:\Windows\system32\dhcpcore.dll
16:06:07.0926 2004 Dhcp - ok
16:06:07.0961 2004 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
16:06:08.0027 2004 discache - ok
16:06:08.0080 2004 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
16:06:08.0103 2004 Disk - ok
16:06:08.0134 2004 [ 85CF424C74A1D5EC33533E1DBFF9920A ] Dnscache C:\Windows\System32\dnsrslvr.dll
16:06:08.0158 2004 Dnscache - ok
16:06:08.0175 2004 [ 14452ACDB09B70964C8C21BF80A13ACB ] dot3svc C:\Windows\System32\dot3svc.dll
16:06:08.0250 2004 dot3svc - ok
16:06:08.0269 2004 [ 8C2BA6BEA949EE6E68385F5692BAFB94 ] DPS C:\Windows\system32\dps.dll
16:06:08.0336 2004 DPS - ok
16:06:08.0364 2004 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
16:06:08.0398 2004 drmkaud - ok
16:06:08.0440 2004 [ 1633B9ABF52784A1331476397A48CBEF ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
16:06:08.0468 2004 DXGKrnl - ok
16:06:08.0499 2004 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
16:06:08.0541 2004 EapHost - ok
16:06:08.0630 2004 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
16:06:08.0763 2004 ebdrv - ok
16:06:08.0789 2004 [ 156F6159457D0AA7E59B62681B56EB90 ] EFS C:\Windows\System32\lsass.exe
16:06:08.0801 2004 EFS - ok
16:06:08.0866 2004 [ 47C071994C3F649F23D9CD075AC9304A ] ehRecvr C:\Windows\ehome\ehRecvr.exe
16:06:08.0941 2004 ehRecvr - ok
16:06:08.0990 2004 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
16:06:09.0047 2004 ehSched - ok
16:06:09.0095 2004 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
16:06:09.0138 2004 elxstor - ok
16:06:09.0161 2004 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\DRIVERS\errdev.sys
16:06:09.0185 2004 ErrDev - ok
16:06:09.0218 2004 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
16:06:09.0263 2004 EventSystem - ok
16:06:09.0288 2004 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
16:06:09.0333 2004 exfat - ok
16:06:09.0352 2004 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
16:06:09.0395 2004 fastfat - ok
16:06:09.0415 2004 [ D607B2F1BEE3992AA6C2C92C0A2F0855 ] Fax C:\Windows\system32\fxssvc.exe
16:06:09.0475 2004 Fax - ok
16:06:09.0488 2004 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
16:06:09.0514 2004 fdc - ok
16:06:09.0533 2004 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
16:06:09.0578 2004 fdPHost - ok
16:06:09.0592 2004 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
16:06:09.0634 2004 FDResPub - ok
16:06:09.0646 2004 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
16:06:09.0659 2004 FileInfo - ok
16:06:09.0664 2004 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
16:06:09.0715 2004 Filetrace - ok
16:06:09.0759 2004 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
16:06:09.0772 2004 flpydisk - ok
16:06:09.0813 2004 [ F7866AF72ABBAF84B1FA5AA195378C59 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
16:06:09.0847 2004 FltMgr - ok
16:06:09.0900 2004 [ CB5E4B9C319E3C6BB363EB7E58A4A051 ] FontCache C:\Windows\system32\FntCache.dll
16:06:09.0961 2004 FontCache - ok
16:06:09.0990 2004 [ 8D89E3131C27FDD6932189CB785E1B7A ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
16:06:10.0000 2004 FontCache3.0.0.0 - ok
16:06:10.0015 2004 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
16:06:10.0028 2004 FsDepends - ok
16:06:10.0056 2004 [ D3E3F93D67821A2DB2B3D9FAC2DC2064 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
16:06:10.0067 2004 Fs_Rec - ok
16:06:10.0109 2004 [ AE87BA80D0EC3B57126ED2CDC15B24ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
16:06:10.0143 2004 fvevol - ok
16:06:10.0170 2004 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
16:06:10.0183 2004 gagp30kx - ok
16:06:10.0227 2004 [ CE16683CFD11FE70BDE435DDA5EA1FCA ] GameConsoleService C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe
16:06:10.0242 2004 GameConsoleService - ok
16:06:10.0274 2004 [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
16:06:10.0283 2004 GEARAspiWDM - ok
16:06:10.0314 2004 [ FE5AB4525BC2EC68B9119A6E5D40128B ] gpsvc C:\Windows\System32\gpsvc.dll
16:06:10.0374 2004 gpsvc - ok
16:06:10.0462 2004 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:06:10.0485 2004 gupdate - ok
16:06:10.0510 2004 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:06:10.0523 2004 gupdatem - ok
16:06:10.0556 2004 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
16:06:10.0576 2004 gusvc - ok
16:06:10.0591 2004 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
16:06:10.0614 2004 hcw85cir - ok
16:06:10.0639 2004 [ 6410F6F415B2A5A9037224C41DA8BF12 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
16:06:10.0675 2004 HdAudAddService - ok
16:06:10.0696 2004 [ 0A49913402747A0B67DE940FB42CBDBB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
16:06:10.0728 2004 HDAudBus - ok
16:06:10.0783 2004 [ B6AC71AAA2B10848F57FC49D55A651AF ] HECIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
16:06:10.0795 2004 HECIx64 - ok
16:06:10.0808 2004 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
16:06:10.0823 2004 HidBatt - ok
16:06:10.0841 2004 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
16:06:10.0875 2004 HidBth - ok
16:06:10.0889 2004 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
16:06:10.0917 2004 HidIr - ok
16:06:10.0940 2004 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll
16:06:10.0993 2004 hidserv - ok
16:06:11.0021 2004 [ B3BF6B5B50006DEF50B66306D99FCF6F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
16:06:11.0034 2004 HidUsb - ok
16:06:11.0068 2004 [ EFA58EDE58DD74388FFD04CB32681518 ] hkmsvc C:\Windows\system32\kmsvc.dll
16:06:11.0167 2004 hkmsvc - ok
16:06:11.0189 2004 [ 046B2673767CA626E2CFB7FDF735E9E8 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
16:06:11.0239 2004 HomeGroupListener - ok
16:06:11.0263 2004 [ 06A7422224D9865A5613710A089987DF ] HomeGroupProvider C:\Windows\system32\provsvc.dll
16:06:11.0303 2004 HomeGroupProvider - ok
16:06:11.0365 2004 [ 3A09322A8AA8B0C79036686A0EBE7B4C ] HP Wireless Assistant Service C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
16:06:11.0380 2004 HP Wireless Assistant Service - ok
16:06:11.0409 2004 [ 4E0BEC0F78096FFD6D3314B497FC49D3 ] hpdskflt C:\Windows\system32\DRIVERS\hpdskflt.sys
16:06:11.0421 2004 hpdskflt - ok
16:06:11.0515 2004 [ 5DA42D24712E00728CEA2342A65009B2 ] hpqcxs08 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
16:06:11.0540 2004 hpqcxs08 - ok
16:06:11.0584 2004 [ D86A39BF100069444D026D22D9A6E555 ] hpqddsvc C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
16:06:11.0601 2004 hpqddsvc - ok
16:06:11.0702 2004 [ 0955C23C041451FB4E7099D6B2CF1C06 ] hpqwmiex C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
16:06:11.0755 2004 hpqwmiex - ok
16:06:11.0802 2004 [ 0886D440058F203EBA0E1825E4355914 ] HpSAMD C:\Windows\system32\DRIVERS\HpSAMD.sys
16:06:11.0815 2004 HpSAMD - ok
16:06:11.0864 2004 [ F37882F128EFACEFE353E0BAE2766909 ] HPSLPSVC C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL
16:06:11.0912 2004 HPSLPSVC ( UnsignedFile.Multi.Generic ) - warning
16:06:11.0912 2004 HPSLPSVC - detected UnsignedFile.Multi.Generic (1)
16:06:11.0940 2004 [ FC7C13B5A9E9BE23B7AE72BBC7FDB278 ] hpsrv C:\Windows\system32\Hpservice.exe
16:06:11.0953 2004 hpsrv - ok
16:06:12.0000 2004 [ F630DD7564EBB7248A13B1CC774D9EA6 ] HPWMISVC C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
16:06:12.0016 2004 HPWMISVC - ok
16:06:12.0041 2004 [ CEE049CAC4EFA7F4E1E4AD014414A5D4 ] HTTP C:\Windows\system32\drivers\HTTP.sys
16:06:12.0118 2004 HTTP - ok
16:06:12.0142 2004 [ F17766A19145F111856378DF337A5D79 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
16:06:12.0152 2004 hwpolicy - ok
16:06:12.0173 2004 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
16:06:12.0189 2004 i8042prt - ok
16:06:12.0235 2004 [ 1384872112E8E7FD5786ECEB8BDDF4C9 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
16:06:12.0257 2004 iaStor - ok
16:06:12.0297 2004 [ B75E45C564E944A2657167D197AB29DA ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
16:06:12.0321 2004 iaStorV - ok
16:06:12.0373 2004 [ 2F2BE70D3E02B6FA877921AB9516D43C ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
16:06:12.0428 2004 idsvc - ok
16:06:12.0641 2004 [ 1BE8D9CA4F2363B8E8015621878E0043 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
16:06:12.0922 2004 igfx - ok
16:06:12.0954 2004 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
16:06:12.0967 2004 iirsp - ok
16:06:12.0998 2004 [ C5B4683680DF085B57BC53E5EF34861F ] IKEEXT C:\Windows\System32\ikeext.dll
16:06:13.0082 2004 IKEEXT - ok
16:06:13.0108 2004 [ DD587A55390ED2295BCE6D36AD567DA9 ] Impcd C:\Windows\system32\DRIVERS\Impcd.sys
16:06:13.0156 2004 Impcd - ok
16:06:13.0201 2004 [ 58CF58DEE26C909BD6F977B61D246295 ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
16:06:13.0245 2004 IntcDAud - ok
16:06:13.0273 2004 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\DRIVERS\intelide.sys
16:06:13.0289 2004 intelide - ok
16:06:13.0314 2004 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
16:06:13.0344 2004 intelppm - ok
16:06:13.0368 2004 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
16:06:13.0439 2004 IPBusEnum - ok
16:06:13.0457 2004 [ 722DD294DF62483CECAAE6E094B4D695 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
16:06:13.0500 2004 IpFilterDriver - ok
16:06:13.0519 2004 [ F8E058D17363EC580E4B7232778B6CB5 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
16:06:13.0571 2004 iphlpsvc - ok
16:06:13.0587 2004 [ E2B4A4494DB7CB9B89B55CA268C337C5 ] IPMIDRV C:\Windows\system32\DRIVERS\IPMIDrv.sys
16:06:13.0612 2004 IPMIDRV - ok
16:06:13.0628 2004 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
16:06:13.0702 2004 IPNAT - ok
16:06:13.0748 2004 [ 50D6CCC6FF5561F9F56946B3E6164FB8 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
16:06:13.0804 2004 iPod Service - ok
16:06:13.0830 2004 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
16:06:13.0848 2004 IRENUM - ok
16:06:13.0877 2004 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\DRIVERS\isapnp.sys
16:06:13.0889 2004 isapnp - ok
16:06:13.0905 2004 [ FA4D2557DE56D45B0A346F93564BE6E1 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
16:06:13.0922 2004 iScsiPrt - ok
16:06:13.0945 2004 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
16:06:13.0957 2004 kbdclass - ok
16:06:13.0980 2004 [ 6DEF98F8541E1B5DCEB2C822A11F7323 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
16:06:14.0011 2004 kbdhid - ok
16:06:14.0029 2004 [ 156F6159457D0AA7E59B62681B56EB90 ] KeyIso C:\Windows\system32\lsass.exe
16:06:14.0042 2004 KeyIso - ok
16:06:14.0067 2004 [ 4F4B5FDE429416877DE7143044582EB5 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
16:06:14.0081 2004 KSecDD - ok
16:06:14.0117 2004 [ 6F40465A44ECDC1731BEFAFEC5BDD03C ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
16:06:14.0132 2004 KSecPkg - ok
16:06:14.0143 2004 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
16:06:14.0203 2004 ksthunk - ok
16:06:14.0239 2004 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
16:06:14.0300 2004 KtmRm - ok
16:06:14.0323 2004 [ 81F1D04D4D0E433099365127375FD501 ] LanmanServer C:\Windows\System32\srvsvc.dll
16:06:14.0359 2004 LanmanServer - ok
16:06:14.0386 2004 [ 27026EAC8818E8A6C00A1CAD2F11D29A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
16:06:14.0432 2004 LanmanWorkstation - ok
16:06:14.0511 2004 [ 07B1888209C54B675FFCCBDE9F06D2C6 ] LightScribeService C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
16:06:14.0516 2004 LightScribeService ( UnsignedFile.Multi.Generic ) - warning
16:06:14.0516 2004 LightScribeService - detected UnsignedFile.Multi.Generic (1)
16:06:14.0558 2004 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
16:06:14.0612 2004 lltdio - ok
16:06:14.0635 2004 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
16:06:14.0681 2004 lltdsvc - ok
16:06:14.0704 2004 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
16:06:14.0746 2004 lmhosts - ok
16:06:14.0810 2004 [ 6D515466AB8BFE61184092B635AE6EB4 ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
16:06:14.0827 2004 LMS - ok
16:06:14.0854 2004 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
16:06:14.0868 2004 LSI_FC - ok
16:06:14.0882 2004 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
16:06:14.0896 2004 LSI_SAS - ok
16:06:14.0913 2004 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
16:06:14.0926 2004 LSI_SAS2 - ok
16:06:14.0943 2004 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
16:06:14.0957 2004 LSI_SCSI - ok
16:06:14.0982 2004 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
16:06:15.0040 2004 luafv - ok
16:06:15.0067 2004 [ F84C8F1000BC11E3B7B23CBD3BAFF111 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
16:06:15.0104 2004 Mcx2Svc - ok
16:06:15.0136 2004 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
16:06:15.0152 2004 megasas - ok
16:06:15.0165 2004 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
16:06:15.0186 2004 MegaSR - ok
16:06:15.0202 2004 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
16:06:15.0245 2004 MMCSS - ok
16:06:15.0257 2004 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
16:06:15.0305 2004 Modem - ok
16:06:15.0327 2004 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
16:06:15.0358 2004 monitor - ok
16:06:15.0376 2004 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
16:06:15.0388 2004 mouclass - ok
16:06:15.0413 2004 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
16:06:15.0442 2004 mouhid - ok
16:06:15.0459 2004 [ 791AF66C4D0E7C90A3646066386FB571 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
16:06:15.0473 2004 mountmgr - ok
16:06:15.0516 2004 [ 94C66EDEDCDB6A126880472F9A704D8E ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
16:06:15.0533 2004 MpFilter - ok
16:06:15.0550 2004 [ 609D1D87649ECC19796F4D76D4C15CEA ] mpio C:\Windows\system32\DRIVERS\mpio.sys
16:06:15.0565 2004 mpio - ok
16:06:15.0581 2004 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
16:06:15.0624 2004 mpsdrv - ok
16:06:15.0653 2004 [ AECAB449567D1846DAD63ECE49E893E3 ] MpsSvc C:\Windows\system32\mpssvc.dll
16:06:15.0717 2004 MpsSvc - ok
16:06:15.0740 2004 [ 30524261BB51D96D6FCBAC20C810183C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
16:06:15.0769 2004 MRxDAV - ok
16:06:15.0795 2004 [ 040D62A9D8AD28922632137ACDD984F2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
16:06:15.0837 2004 mrxsmb - ok
16:06:15.0870 2004 [ F0067552F8F9B33D7C59403AB808A3CB ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
16:06:15.0890 2004 mrxsmb10 - ok
16:06:15.0937 2004 [ 3C142D31DE9F2F193218A53FE2632051 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
16:06:15.0977 2004 mrxsmb20 - ok
16:06:15.0999 2004 [ 5E939CF91EA4A841DBAFE4627E0292BB ] msahci C:\Windows\system32\DRIVERS\msahci.sys
16:06:16.0013 2004 msahci - ok
16:06:16.0040 2004 [ 8D27B597229AED79430FB9DB3BCBFBD0 ] msdsm C:\Windows\system32\DRIVERS\msdsm.sys
16:06:16.0058 2004 msdsm - ok
16:06:16.0070 2004 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
16:06:16.0098 2004 MSDTC - ok
16:06:16.0116 2004 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
16:06:16.0166 2004 Msfs - ok
16:06:16.0179 2004 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
16:06:16.0233 2004 mshidkmdf - ok
16:06:16.0250 2004 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\DRIVERS\msisadrv.sys
16:06:16.0260 2004 msisadrv - ok
16:06:16.0298 2004 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
16:06:16.0357 2004 MSiSCSI - ok
16:06:16.0361 2004 msiserver - ok
16:06:16.0384 2004 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
16:06:16.0441 2004 MSKSSRV - ok
16:06:16.0508 2004 [ 59FAAF2C83C8169EA20F9E335E418907 ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
16:06:16.0531 2004 MsMpSvc - ok
16:06:16.0543 2004 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
16:06:16.0593 2004 MSPCLOCK - ok
16:06:16.0601 2004 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
16:06:16.0656 2004 MSPQM - ok
16:06:16.0675 2004 [ 89CB141AA8616D8C6A4610FA26C60964 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
16:06:16.0694 2004 MsRPC - ok
16:06:16.0704 2004 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
16:06:16.0716 2004 mssmbios - ok
16:06:16.0728 2004 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
16:06:16.0784 2004 MSTEE - ok
16:06:16.0800 2004 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
16:06:16.0814 2004 MTConfig - ok
16:06:16.0824 2004 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
16:06:16.0835 2004 Mup - ok
16:06:16.0862 2004 [ 4987E079A4530FA737A128BE54B63B12 ] napagent C:\Windows\system32\qagentRT.dll
16:06:16.0930 2004 napagent - ok
16:06:16.0957 2004 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
16:06:16.0993 2004 NativeWifiP - ok
16:06:17.0027 2004 [ CAD515DBD07D082BB317D9928CE8962C ] NDIS C:\Windows\system32\drivers\ndis.sys
16:06:17.0057 2004 NDIS - ok
16:06:17.0069 2004 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
16:06:17.0112 2004 NdisCap - ok
16:06:17.0137 2004 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
16:06:17.0177 2004 NdisTapi - ok
16:06:17.0208 2004 [ F105BA1E22BF1F2EE8F005D4305E4BEC ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
16:06:17.0250 2004 Ndisuio - ok
16:06:17.0260 2004 [ 557DFAB9CA1FCB036AC77564C010DAD3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
16:06:17.0303 2004 NdisWan - ok
16:06:17.0319 2004 [ 659B74FB74B86228D6338D643CD3E3CF ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
16:06:17.0376 2004 NDProxy - ok
16:06:17.0410 2004 [ 2334DC48997BA203B794DF3EE70521DB ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
16:06:17.0433 2004 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
16:06:17.0433 2004 Net Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
16:06:17.0459 2004 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
16:06:17.0517 2004 NetBIOS - ok
16:06:17.0535 2004 [ 9162B273A44AB9DCE5B44362731D062A ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
16:06:17.0593 2004 NetBT - ok
16:06:17.0610 2004 [ 156F6159457D0AA7E59B62681B56EB90 ] Netlogon C:\Windows\system32\lsass.exe
16:06:17.0621 2004 Netlogon - ok
16:06:17.0669 2004 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
16:06:17.0715 2004 Netman - ok
16:06:17.0724 2004 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
16:06:17.0781 2004 netprofm - ok
16:06:17.0811 2004 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
16:06:17.0822 2004 NetTcpPortSharing - ok
16:06:17.0950 2004 [ 64428DFDAF6E88366CB51F45A79C5F69 ] netw5v64 C:\Windows\system32\DRIVERS\netw5v64.sys
16:06:18.0125 2004 netw5v64 - ok
16:06:18.0150 2004 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
16:06:18.0163 2004 nfrd960 - ok
16:06:18.0186 2004 [ 91B4E0273D2F6C24EF845F2B41311289 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
16:06:18.0199 2004 NisDrv - ok
16:06:18.0220 2004 [ 10A43829A9E606AF3EEF25A1C1665923 ] NisSrv c:\Program Files\Microsoft Security Client\NisSrv.exe
16:06:18.0240 2004 NisSrv - ok
16:06:18.0248 2004 [ D9A0CE66046D6EFA0C61BAA885CBA0A8 ] NlaSvc C:\Windows\System32\nlasvc.dll
16:06:18.0312 2004 NlaSvc - ok
16:06:18.0337 2004 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
16:06:18.0378 2004 Npfs - ok
16:06:18.0390 2004 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
16:06:18.0432 2004 nsi - ok
16:06:18.0441 2004 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
16:06:18.0490 2004 nsiproxy - ok
16:06:18.0541 2004 [ 378E0E0DFEA67D98AE6EA53ADBBD76BC ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
16:06:18.0581 2004 Ntfs - ok
16:06:18.0590 2004 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
16:06:18.0631 2004 Null - ok
16:06:18.0663 2004 [ A4D9C9A608A97F59307C2F2600EDC6A4 ] nvraid C:\Windows\system32\drivers\nvraid.sys
16:06:18.0678 2004 nvraid - ok
16:06:18.0692 2004 [ 6C1D5F70E7A6A3FD1C90D840EDC048B9 ] nvstor C:\Windows\system32\drivers\nvstor.sys
16:06:18.0707 2004 nvstor - ok
16:06:18.0721 2004 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\DRIVERS\nv_agp.sys
16:06:18.0736 2004 nv_agp - ok
16:06:18.0807 2004 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
16:06:18.0842 2004 odserv - ok
16:06:18.0871 2004 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
16:06:18.0890 2004 ohci1394 - ok
16:06:18.0921 2004 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
16:06:18.0938 2004 ose - ok
16:06:18.0976 2004 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
16:06:19.0019 2004 p2pimsvc - ok
16:06:19.0038 2004 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
16:06:19.0059 2004 p2psvc - ok
16:06:19.0111 2004 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
16:06:19.0139 2004 Parport - ok
16:06:19.0179 2004 [ 90061B1ACFE8CCAA5345750FFE08D8B8 ] partmgr C:\Windows\system32\drivers\partmgr.sys
16:06:19.0193 2004 partmgr - ok
16:06:19.0214 2004 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
16:06:19.0249 2004 PcaSvc - ok
16:06:19.0295 2004 [ F36F6504009F2FB0DFD1B17A116AD74B ] pci C:\Windows\system32\DRIVERS\pci.sys
16:06:19.0322 2004 pci - ok
16:06:19.0340 2004 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\DRIVERS\pciide.sys
16:06:19.0355 2004 pciide - ok
16:06:19.0387 2004 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
16:06:19.0403 2004 pcmcia - ok
16:06:19.0415 2004 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
16:06:19.0426 2004 pcw - ok
16:06:19.0460 2004 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
16:06:19.0533 2004 PEAUTH - ok
16:06:19.0693 2004 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
16:06:19.0720 2004 PerfHost - ok
16:06:19.0801 2004 [ 557E9A86F65F0DE18C9B6751DFE9D3F1 ] pla C:\Windows\system32\pla.dll
16:06:19.0901 2004 pla - ok
16:06:19.0946 2004 [ 98B1721B8718164293B9701B98C52D77 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
16:06:20.0010 2004 PlugPlay - ok
16:06:20.0074 2004 [ AC78DF349F0E4CFB8B667C0CFFF83CCE ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
16:06:20.0097 2004 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
16:06:20.0097 2004 Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
16:06:20.0112 2004 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
16:06:20.0144 2004 PNRPAutoReg - ok
16:06:20.0179 2004 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
16:06:20.0195 2004 PNRPsvc - ok
16:06:20.0228 2004 [ 166EB40D1F5B47E615DE3D0FFFE5F243 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
16:06:20.0279 2004 PolicyAgent - ok
16:06:20.0309 2004 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
16:06:20.0366 2004 Power - ok
16:06:20.0407 2004 [ 27CC19E81BA5E3403C48302127BDA717 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
16:06:20.0450 2004 PptpMiniport - ok
16:06:20.0497 2004 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
16:06:20.0527 2004 Processor - ok
16:06:20.0578 2004 [ 97293447431311C06703368AD0F6C4BE ] ProfSvc C:\Windows\system32\profsvc.dll
16:06:20.0627 2004 ProfSvc - ok
16:06:20.0647 2004 [ 156F6159457D0AA7E59B62681B56EB90 ] ProtectedStorage C:\Windows\system32\lsass.exe
16:06:20.0668 2004 ProtectedStorage - ok
16:06:20.0698 2004 [ EE992183BD8EAEFD9973F352E587A299 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
16:06:20.0745 2004 Psched - ok
16:06:20.0786 2004 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
16:06:20.0852 2004 ql2300 - ok
16:06:20.0869 2004 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
16:06:20.0884 2004 ql40xx - ok
16:06:20.0914 2004 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
16:06:20.0951 2004 QWAVE - ok
16:06:20.0966 2004 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
16:06:21.0000 2004 QWAVEdrv - ok
16:06:21.0018 2004 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
16:06:21.0067 2004 RasAcd - ok
16:06:21.0093 2004 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
16:06:21.0134 2004 RasAgileVpn - ok
16:06:21.0147 2004 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
16:06:21.0200 2004 RasAuto - ok
16:06:21.0219 2004 [ 87A6E852A22991580D6D39ADC4790463 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
16:06:21.0273 2004 Rasl2tp - ok
16:06:21.0292 2004 [ 47394ED3D16D053F5906EFE5AB51CC83 ] RasMan C:\Windows\System32\rasmans.dll
16:06:21.0341 2004 RasMan - ok
16:06:21.0351 2004 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
16:06:21.0393 2004 RasPppoe - ok
16:06:21.0406 2004 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
16:06:21.0448 2004 RasSstp - ok
16:06:21.0470 2004 [ 3BAC8142102C15D59A87757C1D41DCE5 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
16:06:21.0525 2004 rdbss - ok
16:06:21.0536 2004 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
16:06:21.0565 2004 rdpbus - ok
16:06:21.0593 2004 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
16:06:21.0633 2004 RDPCDD - ok
16:06:21.0666 2004 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
16:06:21.0705 2004 RDPENCDD - ok
16:06:21.0720 2004 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
16:06:21.0763 2004 RDPREFMP - ok
16:06:21.0838 2004 [ 447DE7E3DEA39D422C1504F245B668B1 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
16:06:21.0926 2004 RDPWD - ok
16:06:22.0010 2004 [ 634B9A2181D98F15941236886164EC8B ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
16:06:22.0036 2004 rdyboost - ok
16:06:22.0118 2004 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
16:06:22.0209 2004 RemoteAccess - ok
16:06:22.0243 2004 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
16:06:22.0285 2004 RemoteRegistry - ok
16:06:22.0405 2004 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
16:06:22.0469 2004 RFCOMM - ok
16:06:22.0546 2004 [ 7B04C9843921AB1F695FB395422C5360 ] RimUsb C:\Windows\system32\Drivers\RimUsb_AMD64.sys
16:06:22.0573 2004 RimUsb - ok
16:06:22.0605 2004 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
16:06:22.0658 2004 RpcEptMapper - ok
16:06:22.0722 2004 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
16:06:22.0747 2004 RpcLocator - ok
16:06:22.0785 2004 [ 7266972E86890E2B30C0C322E906B027 ] RpcSs C:\Windows\System32\rpcss.dll
16:06:22.0848 2004 RpcSs - ok
16:06:22.0879 2004 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
16:06:22.0920 2004 rspndr - ok
16:06:22.0985 2004 [ 907C4464381B5EBDFDC60F6C7D0DEDFC ] RSUSBSTOR C:\Windows\system32\Drivers\RtsUStor.sys
16:06:23.0017 2004 RSUSBSTOR - ok
16:06:23.0043 2004 [ 4B42BC58294E83A6A92EC8B88C14C4A3 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
16:06:23.0060 2004 RTL8167 - ok
16:06:23.0072 2004 [ 156F6159457D0AA7E59B62681B56EB90 ] SamSs C:\Windows\system32\lsass.exe
16:06:23.0084 2004 SamSs - ok
16:06:23.0099 2004 [ E3BBB89983DAF5622C1D50CF49F28227 ] sbp2port C:\Windows\system32\DRIVERS\sbp2port.sys
16:06:23.0113 2004 sbp2port - ok
16:06:23.0148 2004 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
16:06:23.0192 2004 SCardSvr - ok
16:06:23.0206 2004 [ C94DA20C7E3BA1DCA269BC8460D98387 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
16:06:23.0263 2004 scfilter - ok
16:06:23.0301 2004 [ 624D0F5FF99428BB90A5B8A4123E918E ] Schedule C:\Windows\system32\schedsvc.dll
16:06:23.0328 2004 Schedule - ok
16:06:23.0367 2004 [ 312E2F82AF11E79906898AC3E3D58A1F ] SCPolicySvc C:\Windows\System32\certprop.dll
16:06:23.0433 2004 SCPolicySvc - ok
16:06:23.0461 2004 [ 54E47AD086782D3AE9417C155CDCEB9B ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
16:06:23.0476 2004 sdbus - ok
16:06:23.0494 2004 [ 765A27C3279CE11D14CB9E4F5869FCA5 ] SDRSVC C:\Windows\System32\SDRSVC.dll
16:06:23.0529 2004 SDRSVC - ok
16:06:23.0554 2004 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
16:06:23.0613 2004 secdrv - ok
16:06:23.0630 2004 [ 463B386EBC70F98DA5DFF85F7E654346 ] seclogon C:\Windows\system32\seclogon.dll
16:06:23.0683 2004 seclogon - ok
16:06:23.0695 2004 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\system32\sens.dll
16:06:23.0745 2004 SENS - ok
16:06:23.0768 2004 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
16:06:23.0789 2004 SensrSvc - ok
16:06:23.0799 2004 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
16:06:23.0813 2004 Serenum - ok
16:06:23.0837 2004 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
16:06:23.0852 2004 Serial - ok
16:06:23.0866 2004 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
16:06:23.0881 2004 sermouse - ok
16:06:23.0901 2004 [ C3BC61CE47FF6F4E88AB8A3B429A36AF ] SessionEnv C:\Windows\system32\sessenv.dll
16:06:23.0948 2004 SessionEnv - ok
16:06:23.0958 2004 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
16:06:23.0988 2004 sffdisk - ok
16:06:24.0011 2004 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\DRIVERS\sffp_mmc.sys
16:06:24.0025 2004 sffp_mmc - ok
16:06:24.0036 2004 [ 178298F767FE638C9FEDCBDEF58BB5E4 ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
16:06:24.0061 2004 sffp_sd - ok
16:06:24.0082 2004 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
16:06:24.0098 2004 sfloppy - ok
16:06:24.0116 2004 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
16:06:24.0184 2004 SharedAccess - ok
16:06:24.0202 2004 [ 0298AC45D0EFFFB2DB4BAA7DD186E7BF ] ShellHWDetection C:\Windows\System32\shsvcs.dll
16:06:24.0224 2004 ShellHWDetection - ok
16:06:24.0273 2004 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
16:06:24.0298 2004 SiSRaid2 - ok
16:06:24.0317 2004 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
16:06:24.0330 2004 SiSRaid4 - ok
16:06:24.0374 2004 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
16:06:24.0393 2004 SkypeUpdate - ok
16:06:24.0419 2004 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
16:06:24.0486 2004 Smb - ok
16:06:24.0526 2004 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
16:06:24.0556 2004 SNMPTRAP - ok
16:06:24.0582 2004 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
16:06:24.0592 2004 spldr - ok
16:06:24.0626 2004 [ 567977DC43CC13C4C35ED7084C0B84D5 ] Spooler C:\Windows\System32\spoolsv.exe
16:06:24.0661 2004 Spooler - ok
16:06:24.0755 2004 [ 913D843498553A1BC8F8DBAD6358E49F ] sppsvc C:\Windows\system32\sppsvc.exe
16:06:24.0883 2004 sppsvc - ok
16:06:24.0895 2004 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
16:06:24.0949 2004 sppuinotify - ok
16:06:24.0980 2004 [ 2408C0366D96BCDF63E8F1C78E4A29C5 ] srv C:\Windows\system32\DRIVERS\srv.sys
16:06:25.0025 2004 srv - ok
16:06:25.0050 2004 [ 76548F7B818881B47D8D1AE1BE9C11F8 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
16:06:25.0082 2004 srv2 - ok
16:06:25.0128 2004 [ 0C4540311E11664B245A263E1154CEF8 ] SrvHsfHDA C:\Windows\system32\DRIVERS\VSTAZL6.SYS
16:06:25.0151 2004 SrvHsfHDA - ok
16:06:25.0189 2004 [ 02071D207A9858FBE3A48CBFD59C4A04 ] SrvHsfV92 C:\Windows\system32\DRIVERS\VSTDPV6.SYS
16:06:25.0250 2004 SrvHsfV92 - ok
16:06:25.0269 2004 [ 18E40C245DBFAF36FD0134A7EF2DF396 ] SrvHsfWinac C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
16:06:25.0303 2004 SrvHsfWinac - ok
16:06:25.0329 2004 [ 0AF6E19D39C70844C5CAA8FB0183C36E ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
16:06:25.0366 2004 srvnet - ok
16:06:25.0397 2004 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
16:06:25.0443 2004 SSDPSRV - ok
16:06:25.0456 2004 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
16:06:25.0527 2004 SstpSvc - ok
16:06:25.0605 2004 [ B00068BA94F5F306911B14B425AAEB56 ] STacSV C:\Program Files\IDT\WDM\STacSV64.exe
16:06:25.0672 2004 STacSV - ok
16:06:25.0702 2004 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
16:06:25.0718 2004 stexstor - ok
16:06:25.0748 2004 [ DA40D9C9CCB9836D6ABD1706935A2277 ] STHDA C:\Windows\system32\DRIVERS\stwrt64.sys
16:06:25.0787 2004 STHDA - ok
16:06:25.0818 2004 [ DECACB6921DED1A38642642685D77DAC ] StillCam C:\Windows\system32\DRIVERS\serscan.sys
16:06:25.0839 2004 StillCam - ok
16:06:25.0866 2004 [ 52D0E33B681BD0F33FDC08812FEE4F7D ] stisvc C:\Windows\System32\wiaservc.dll
16:06:25.0920 2004 stisvc - ok
16:06:25.0944 2004 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
16:06:25.0958 2004 swenum - ok
16:06:25.0984 2004 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
16:06:26.0061 2004 swprv - ok
16:06:26.0128 2004 [ 33E6A285DAA5134D8EA2247914C86C09 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
16:06:26.0167 2004 SynTP - ok
16:06:26.0341 2004 [ 3C1284516A62078FB68F768DE4F1A7BE ] SysMain C:\Windows\system32\sysmain.dll
16:06:26.0431 2004 SysMain - ok
16:06:26.0451 2004 [ 238935C3CF2854886DC7CBB2A0E2CC66 ] TabletInputService C:\Windows\System32\TabSvc.dll
16:06:26.0473 2004 TabletInputService - ok
16:06:26.0488 2004 [ 884264AC597B690C5707C89723BB8E7B ] TapiSrv C:\Windows\System32\tapisrv.dll
16:06:26.0533 2004 TapiSrv - ok
16:06:26.0548 2004 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
16:06:26.0590 2004 TBS - ok
16:06:26.0660 2004 [ 624C5B3AA4C99B3184BB922D9ECE3FF0 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
16:06:26.0705 2004 Tcpip - ok
16:06:26.0760 2004 [ 624C5B3AA4C99B3184BB922D9ECE3FF0 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
16:06:26.0808 2004 TCPIP6 - ok
16:06:26.0859 2004 [ 76D078AF6F587B162D50210F761EB9ED ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
16:06:26.0904 2004 tcpipreg - ok
16:06:26.0932 2004 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
16:06:26.0955 2004 TDPIPE - ok
16:06:26.0983 2004 [ 7518F7BCFD4B308ABC9192BACAF6C970 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
16:06:27.0028 2004 TDTCP - ok
16:06:27.0045 2004 [ 079125C4B17B01FCAEEBCE0BCB290C0F ] tdx C:\Windows\system32\DRIVERS\tdx.sys
16:06:27.0093 2004 tdx - ok
16:06:27.0103 2004 [ C448651339196C0E869A355171875522 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
16:06:27.0116 2004 TermDD - ok
16:06:27.0306 2004 [ 0F05EC2887BFE197AD82A13287D2F404 ] TermService C:\Windows\System32\termsrv.dll
16:06:27.0374 2004 TermService - ok
16:06:27.0394 2004 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
16:06:27.0446 2004 Themes - ok
16:06:27.0462 2004 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
16:06:27.0502 2004 THREADORDER - ok
16:06:27.0535 2004 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
16:06:27.0616 2004 TrkWks - ok
16:06:27.0667 2004 [ 840F7FB849F5887A49BA18C13B2DA920 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
16:06:27.0702 2004 TrustedInstaller - ok
16:06:27.0738 2004 [ 61B96C26131E37B24E93327A0BD1FB95 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
16:06:27.0780 2004 tssecsrv - ok
16:06:27.0826 2004 [ 3836171A2CDF3AF8EF10856DB9835A70 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
16:06:27.0880 2004 tunnel - ok
16:06:27.0909 2004 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
16:06:27.0921 2004 uagp35 - ok
16:06:27.0950 2004 [ C06E6F4679CEB8F430B90A51D76D8D3C ] udfs C:\Windows\system32\DRIVERS\udfs.sys
16:06:27.0976 2004 udfs - ok
16:06:28.0002 2004 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
16:06:28.0019 2004 UI0Detect - ok
16:06:28.0034 2004 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\DRIVERS\uliagpkx.sys
16:06:28.0048 2004 uliagpkx - ok
16:06:28.0064 2004 [ EAB6C35E62B1B0DB0D1B48B671D3A117 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
16:06:28.0078 2004 umbus - ok
16:06:28.0117 2004 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
16:06:28.0154 2004 UmPass - ok
16:06:28.0304 2004 [ 0FADD949576A164B4E51E716F46B6C33 ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
16:06:28.0414 2004 UNS - ok
16:06:28.0431 2004 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
16:06:28.0488 2004 upnphost - ok
16:06:28.0524 2004 [ FB251567F41BC61988B26731DEC19E4B ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
16:06:28.0540 2004 USBAAPL64 - ok
16:06:28.0572 2004 [ 537A4E03D7103C12D42DFD8FFDB5BDC9 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
16:06:28.0617 2004 usbccgp - ok
16:06:28.0646 2004 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\DRIVERS\usbcir.sys
16:06:28.0682 2004 usbcir - ok
16:06:28.0700 2004 [ FBB21EBE49F6D560DB37AC25FBC68E66 ] usbehci C:\Windows\system32\drivers\usbehci.sys
16:06:28.0716 2004 usbehci - ok
16:06:28.0751 2004 [ 6B7A8A99C4A459E73C286A6763EA24CC ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
16:06:28.0772 2004 usbhub - ok
16:06:28.0791 2004 [ 8C88AA7617B4CBC2E4BED61D26B33A27 ] usbohci C:\Windows\system32\drivers\usbohci.sys
16:06:28.0813 2004 usbohci - ok
16:06:28.0840 2004 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
16:06:28.0861 2004 usbprint - ok
16:06:28.0890 2004 [ F39983647BC1F3E6100778DDFE9DCE29 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
16:06:28.0943 2004 USBSTOR - ok
16:06:28.0965 2004 [ 0B5B3B2DF3FD1709618ACFA50B8392B0 ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
16:06:28.0988 2004 usbuhci - ok
16:06:29.0022 2004 [ 7CB8C573C6E4A2714402CC0A36EAB4FE ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
16:06:29.0065 2004 usbvideo - ok
16:06:29.0087 2004 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
16:06:29.0137 2004 UxSms - ok
16:06:29.0164 2004 [ 156F6159457D0AA7E59B62681B56EB90 ] VaultSvc C:\Windows\system32\lsass.exe
16:06:29.0175 2004 VaultSvc - ok
16:06:29.0213 2004 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\DRIVERS\vdrvroot.sys
16:06:29.0224 2004 vdrvroot - ok
16:06:29.0242 2004 [ 44D73E0BBC1D3C8981304BA15135C2F2 ] vds C:\Windows\System32\vds.exe
16:06:29.0293 2004 vds - ok
16:06:29.0312 2004 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
16:06:29.0331 2004 vga - ok
16:06:29.0344 2004 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
16:06:29.0405 2004 VgaSave - ok
16:06:29.0425 2004 [ C82E748660F62A242B2DFAC1442F22A4 ] vhdmp C:\Windows\system32\DRIVERS\vhdmp.sys
16:06:29.0441 2004 vhdmp - ok
16:06:29.0450 2004 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\DRIVERS\viaide.sys
16:06:29.0462 2004 viaide - ok
16:06:29.0481 2004 [ 2B1A3DAE2B4E70DBBA822B7A03FBD4A3 ] volmgr C:\Windows\system32\DRIVERS\volmgr.sys
16:06:29.0493 2004 volmgr - ok
16:06:29.0526 2004 [ 99B0CBB569CA79ACAED8C91461D765FB ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
16:06:29.0545 2004 volmgrx - ok
16:06:29.0561 2004 [ 58F82EED8CA24B461441F9C3E4F0BF5C ] volsnap C:\Windows\system32\DRIVERS\volsnap.sys
16:06:29.0579 2004 volsnap - ok
16:06:29.0609 2004 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
16:06:29.0625 2004 vsmraid - ok
16:06:29.0667 2004 [ 787898BF9FB6D7BD87A36E2D95C899BA ] VSS C:\Windows\system32\vssvc.exe
16:06:29.0723 2004 VSS - ok
16:06:29.0739 2004 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
16:06:29.0765 2004 vwifibus - ok
16:06:29.0793 2004 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
16:06:29.0825 2004 vwififlt - ok
16:06:29.0853 2004 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
16:06:29.0909 2004 W32Time - ok
16:06:29.0950 2004 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
16:06:30.0002 2004 WacomPen - ok
16:06:30.0061 2004 [ 47CA49400643EFFD3F1C9A27E1D69324 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
16:06:30.0112 2004 WANARP - ok
16:06:30.0130 2004 [ 47CA49400643EFFD3F1C9A27E1D69324 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
16:06:30.0173 2004 Wanarpv6 - ok
16:06:30.0224 2004 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
16:06:30.0317 2004 WatAdminSvc - ok
16:06:30.0354 2004 [ 5AB1BB85BD8B5089CC5D64200DEDAE68 ] wbengine C:\Windows\system32\wbengine.exe
16:06:30.0429 2004 wbengine - ok
16:06:30.0442 2004 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
16:06:30.0465 2004 WbioSrvc - ok
16:06:30.0499 2004 [ DD1BAE8EBFC653824D29CCF8C9054D68 ] wcncsvc C:\Windows\System32\wcncsvc.dll
16:06:30.0570 2004 wcncsvc - ok
16:06:30.0583 2004 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
16:06:30.0611 2004 WcsPlugInService - ok
16:06:30.0624 2004 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
16:06:30.0636 2004 Wd - ok
16:06:30.0661 2004 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
16:06:30.0695 2004 Wdf01000 - ok
16:06:30.0707 2004 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
16:06:30.0740 2004 WdiServiceHost - ok
16:06:30.0743 2004 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
16:06:30.0763 2004 WdiSystemHost - ok
16:06:30.0788 2004 [ 733006127F235BE7C35354EBEE7B9A7B ] WebClient C:\Windows\System32\webclnt.dll
16:06:30.0834 2004 WebClient - ok
16:06:30.0847 2004 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
16:06:30.0896 2004 Wecsvc - ok
16:06:30.0904 2004 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
16:06:30.0949 2004 wercplsupport - ok
16:06:30.0975 2004 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
16:06:31.0018 2004 WerSvc - ok
16:06:31.0044 2004 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
16:06:31.0086 2004 WfpLwf - ok
16:06:31.0103 2004 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
16:06:31.0115 2004 WIMMount - ok
16:06:31.0129 2004 WinDefend - ok
16:06:31.0134 2004 WinHttpAutoProxySvc - ok
16:06:31.0184 2004 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
16:06:31.0258 2004 Winmgmt - ok
16:06:31.0314 2004 [ 41FBB751936B387F9179E7F03A74FE29 ] WinRM C:\Windows\system32\WsmSvc.dll
16:06:31.0422 2004 WinRM - ok
16:06:31.0486 2004 [ 817EAFF5D38674EDD7713B9DFB8E9791 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
16:06:31.0513 2004 WinUsb - ok
16:06:31.0551 2004 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
16:06:31.0598 2004 Wlansvc - ok
16:06:31.0956 2004 [ 98F138897EF4246381D197CB81846D62 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
16:06:32.0071 2004 wlidsvc - ok
16:06:32.0093 2004 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
16:06:32.0105 2004 WmiAcpi - ok
16:06:32.0210 2004 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
16:06:32.0301 2004 wmiApSrv - ok
16:06:32.0357 2004 WMPNetworkSvc - ok
16:06:32.0374 2004 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
16:06:32.0404 2004 WPCSvc - ok
16:06:32.0422 2004 [ 2E57DDF2880A7E52E76F41C7E96D327B ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
16:06:32.0461 2004 WPDBusEnum - ok
16:06:32.0490 2004 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
16:06:32.0558 2004 ws2ifsl - ok
16:06:32.0583 2004 [ 8F9F3969933C02DA96EB0F84576DB43E ] wscsvc C:\Windows\system32\wscsvc.dll
16:06:32.0636 2004 wscsvc - ok
16:06:32.0640 2004 WSearch - ok
16:06:32.0734 2004 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
16:06:32.0879 2004 wuauserv - ok
16:06:32.0889 2004 [ 7CADC74271DD6461C452C271B30BD378 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
16:06:32.0942 2004 WudfPf - ok
16:06:32.0978 2004 [ 3B197AF0FFF08AA66B6B2241CA538D64 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
16:06:33.0024 2004 WUDFRd - ok
16:06:33.0049 2004 [ B551D6637AA0E132C18AC6E504F7B79B ] wudfsvc C:\Windows\System32\WUDFSvc.dll
16:06:33.0095 2004 wudfsvc - ok
16:06:33.0111 2004 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
16:06:33.0145 2004 WwanSvc - ok
16:06:33.0173 2004 [ B3EEACF62445E24FBB2CD4B0FB4DB026 ] yukonw7 C:\Windows\system32\DRIVERS\yk62x64.sys
16:06:33.0204 2004 yukonw7 - ok
16:06:33.0216 2004 ================ Scan global ===============================
16:06:33.0239 2004 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
16:06:33.0260 2004 [ 0CB6EBF4B461A6043353C570BD72A1E1 ] C:\Windows\system32\winsrv.dll
16:06:33.0270 2004 [ 0CB6EBF4B461A6043353C570BD72A1E1 ] C:\Windows\system32\winsrv.dll
16:06:33.0278 2004 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
16:06:33.0303 2004 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
16:06:33.0306 2004 [Global] - ok
16:06:33.0307 2004 ================ Scan MBR ==================================
16:06:33.0317 2004 [ 8BCB99DF6BA65F7A9FF16F899E5DB152 ] \Device\Harddisk0\DR0
16:06:35.0657 2004 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
16:06:35.0657 2004 \Device\Harddisk0\DR0 - detected TDSS File System (1)
16:06:35.0658 2004 ================ Scan VBR ==================================
16:06:35.0663 2004 [ F6088F44F6DAC92C82CDEB51B02D9261 ] \Device\Harddisk0\DR0\Partition1
16:06:35.0666 2004 \Device\Harddisk0\DR0\Partition1 - ok
16:06:35.0691 2004 [ BDF0EE619803563ED647DE996F98FDBD ] \Device\Harddisk0\DR0\Partition2
16:06:35.0701 2004 \Device\Harddisk0\DR0\Partition2 - ok
16:06:35.0736 2004 [ CC1324E80B696626C4E3D8617AB0C94D ] \Device\Harddisk0\DR0\Partition3
16:06:35.0740 2004 \Device\Harddisk0\DR0\Partition3 - ok
16:06:35.0777 2004 [ 9AF3090A31498BA36FB6A96EFB7B9481 ] \Device\Harddisk0\DR0\Partition4
16:06:35.0781 2004 \Device\Harddisk0\DR0\Partition4 - ok
16:06:35.0782 2004 ============================================================
16:06:35.0782 2004 Scan finished
16:06:35.0782 2004 ============================================================
16:06:35.0796 3888 Detected object count: 5
16:06:35.0796 3888 Actual detected object count: 5
16:07:06.0907 3888 HPSLPSVC ( UnsignedFile.Multi.Generic ) - skipped by user
16:07:06.0907 3888 HPSLPSVC ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:07:06.0910 3888 LightScribeService ( UnsignedFile.Multi.Generic ) - skipped by user
16:07:06.0910 3888 LightScribeService ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:07:06.0912 3888 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
16:07:06.0912 3888 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:07:06.0914 3888 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
16:07:06.0914 3888 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:07:06.0969 3888 \Device\Harddisk0\DR0\TDLFS\cmd.dll - copied to quarantine
16:07:06.0971 3888 \Device\Harddisk0\DR0\TDLFS\cmd64.dll - copied to quarantine
16:07:06.0998 3888 \Device\Harddisk0\DR0\TDLFS\drv32 - copied to quarantine
16:07:07.0016 3888 \Device\Harddisk0\DR0\TDLFS\drv64 - copied to quarantine
16:07:07.0018 3888 \Device\Harddisk0\DR0\TDLFS\servers.dat - copied to quarantine
16:07:07.0020 3888 \Device\Harddisk0\DR0\TDLFS\config.ini - copied to quarantine
16:07:07.0022 3888 \Device\Harddisk0\DR0\TDLFS\ldr16 - copied to quarantine
16:07:07.0026 3888 \Device\Harddisk0\DR0\TDLFS\ldr32 - copied to quarantine
16:07:07.0030 3888 \Device\Harddisk0\DR0\TDLFS\ldr64 - copied to quarantine
16:07:07.0032 3888 \Device\Harddisk0\DR0\TDLFS\s - copied to quarantine
16:07:07.0034 3888 \Device\Harddisk0\DR0\TDLFS\ldrm - copied to quarantine
16:07:07.0035 3888 \Device\Harddisk0\DR0\TDLFS\u - copied to quarantine
16:07:07.0036 3888 \Device\Harddisk0\DR0\TDLFS - deleted
16:07:07.0036 3888 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Delete
  • 0

#18
alhawi

alhawi

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 123 posts
ok I posted both logs, do I have to enable my Antivirus or not yet?
  • 0

#19
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
Yep re-enable everything and let me know of any outstanding problems
  • 0

#20
alhawi

alhawi

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 123 posts
Yes it's bevaving better, Thanks Essexboy. This is the Malwarebytes log.

Malwarebytes Anti-Malware (Trial) 1.65.0.1400
www.malwarebytes.org

Database version: v2012.09.21.09

Windows 7 x64 NTFS
Internet Explorer 9.0.8112.16421
owner :: OWNER-HP [administrator]

Protection: Enabled

Friday 9/21/2012 4:34:55 PM
mbam-log-2012-09-21 (16-34-55).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 202499
Time elapsed: 2 minute(s), 18 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 1
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{65bcd620-07dd-012f-819f-073cf1b8f7c6} (Adware.GamePlayLab) -> Quarantined and deleted successfully.

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 1
C:\Users\owner\Downloads\dBpowerAMP.exe (PUP.Bundle.Installer.DMR) -> Quarantined and deleted successfully.

(end)
  • 0

#21
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
Subject to no further problems :)

I will remove my tools now and give some recommendations, but, I would like you to run for 24 hours or so and come back if you have any problems

Now the best part of the day ----- Your log now appears clean :thumbsup:

A good workman always cleans up after himself so..The following will implement some cleanup procedures as well as reset System Restore points:

Run OTL
  • Under the Custom Scans/Fixes box at the bottom, paste in the following

    :Commands
    [resethosts]
    [emptytemp]
    [Reboot]

  • Then click the Run Fix button at the top
  • Let the program run unhindered, reboot the PC when it is done

Remove ComboFix

  • Hold down the Windows key + R on your keyboard. This will display the Run dialogue box
  • In the Run box, type in ComboFix /Uninstall (Notice the space between the "x" and "/") then click OK

    Posted Image
  • Follow the prompts on the screen
  • A message should appear confirming that ComboFix was uninstalled

Run OTL and hit the cleanup button. It will remove all the programmes we have used plus itself.

We will now confirm that your hidden files are set to that, as some of the tools I use will change that
  • Go to control panel
  • Select folder options (Appearance > Folder options in category view)
  • Select the View Tab.
  • Under the Hidden files and folders heading select Do not show hidden files and folders.
  • Click Yes to confirm.
  • Click OK.

Posted Image
Your Java is out of date. Older versions have vulnerabilities that malware can use to infect your system.
Please follow these steps to remove older version of Java components and upgrade the application.

Upgrading Java:
  • Go to this site and click Do I have Java
  • It will check your current version and then offer to update to the latest version

SPRING CLEAN

To manually create a new Restore Point
  • Go to Control Panel and select System
  • Select System
  • On the left select System Protection and accept the warning if you get one
  • Select System Protection Tab
  • Select Create at the bottom
  • Type in a name i.e. Clean
  • Select Create

Now we can purge the infected ones
  • GoStart > All programs > Accessories > system tools
  • Right click Disc cleanup and select run as administrator
  • Select Your main drive and accept the warning if you get one
  • For a few moments the system will make some calculations
  • Select the More Options tab
  • In the System Restore and Shadow Backups select Clean up
  • Select Delete on the pop up
  • Select OK
  • Select Delete

Now that you are clean, to help protect your computer in the future I recommend that you get the following free programmes:
Posted Image
Malwarebytes. Update and run weekly to keep your system clean

Download and install FileHippo update checker and run it monthly it will show you which programmes on your system need updating and give a download link

It is critical to have both a firewall and anti virus to protect your system and to keep them updated. To keep your operating system up to date visit

To learn more about how to protect yourself while on the internet read our little guide How did I get infected in the first place ?

Keep safe :wave:
  • 0

#22
alhawi

alhawi

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 123 posts
Thanx Essexboy, donation is on the way :thumbsup:
I will do the clean up, nice work A++++++++++++++++++++++++++++++++++++++

be safe
  • 0

#23
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
My pleasure and thank you :thumbsup:
  • 0

#24
alhawi

alhawi

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 123 posts
Hi, Essexboy
I tried to install Java and there is an error message:
c:\user\owner\AppData\locallow\Sun\java\jre1.7.0_07\java_sp.dll is corrupt.

can you check please
  • 0

#25
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
OK lets clear the way

Download and run Javara from MajorGeeks

Select remove older versions first, then select check for new version
  • 0

Advertisements


#26
alhawi

alhawi

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 123 posts
ok
  • 0

#27
alhawi

alhawi

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 123 posts
There is two options 1- Remove JRE 2- Additional tasks
the other options are for updates, I tried addtional tasks and found " check java vertions" is this the one you mean? is the older versions included there?

Thanx
  • 0

#28
alhawi

alhawi

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 123 posts
ok after clicking this option I found those versions:

Installed JRE Versions:
========================
Java™ 6 Update 20 (64-bit) version: 6.0.200
Java™ 6 Update 31 version: 6.0.310
Java™ 7 Update 5 version: 7.0.50


so do I have to locate them and delete all of them or delete the first two?
  • 0

#29
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
Remove JRE and allow the uninstaller to remove them all

[attachment=60689:Capture.GIF]
  • 0

#30
alhawi

alhawi

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 123 posts
ok I did the delete
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP