- Jun 13, 2015
- 12
hello from Taiwan and thank you guys for any help that you offer.
- Thread starter ivan
- Start date
- Status
- Jun 9, 2013
- 6,720
Hello and welcome to MalwareTips. I hope you enjoy the forums. 
This is a good place to be.
This is a good place to be.
@ivan if you are infected make a post here for help. http://malwaretips.com/forums/malware-removal-assistance.10/
Last edited by a moderator:
- Oct 23, 2012
- 12,527
- Jun 13, 2015
- 12
23:33:20.0955 0x0674 TDSS rootkit removing tool 3.0.0.44 Jan 22 2015 08:27:04
23:33:22.0957 0x0674 ============================================================
23:33:22.0957 0x0674 Current date / time: 2015/06/13 23:33:22.0957
23:33:22.0957 0x0674 SystemInfo:
23:33:22.0957 0x0674
23:33:22.0957 0x0674 OS Version: 6.1.7600 ServicePack: 0.0
23:33:22.0957 0x0674 Product type: Workstation
23:33:22.0957 0x0674 ComputerName: SX-PC
23:33:22.0957 0x0674 UserName: SX
23:33:22.0957 0x0674 Windows directory: C:\Windows
23:33:22.0957 0x0674 System windows directory: C:\Windows
23:33:22.0957 0x0674 Running under WOW64
23:33:22.0957 0x0674 Processor architecture: Intel x64
23:33:22.0957 0x0674 Number of processors: 4
23:33:22.0957 0x0674 Page size: 0x1000
23:33:22.0957 0x0674 Boot type: Normal boot
23:33:22.0957 0x0674
============================================================
23:33:22.0957 0x0674 BG loaded
23:33:23.0107 0x0674 System UUID: {F333889F-C093-0487-52B6-8029590A8A3B}
23:33:23.0457 0x0674 Drive \Device\Harddisk0\DR0 - Size: 0x950B056000 ( 596.17 Gb ), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
23:33:23.0467 0x0674 ============================================================
23:33:23.0467 0x0674 \Device\Harddisk0\DR0:
23:33:23.0467 0x0674 MBR partitions:
23:33:23.0467 0x0674 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x4A856E82
23:33:23.0467 0x0674 ============================================================
23:33:23.0477 0x0674 C: <-> \Device\Harddisk0\DR0\Partition1
23:33:23.0477 0x0674 ============================================================
23:33:23.0477 0x0674 Initialize success
23:33:23.0477 0x0674 ============================================================
23:33:28.0125 0x0888 ============================================================
23:33:28.0125 0x0888 Scan started
23:33:28.0125 0x0888 Mode: Manual;
23:33:28.0125 0x0888 ============================================================
23:33:28.0125 0x0888 KSN ping started
23:33:31.0557 0x0888 KSN ping finished: true
23:33:33.0866 0x0888 ================ Scan system memory ========================
23:33:33.0866 0x0888 System memory - ok
23:33:33.0866 0x0888 ================ Scan services =============================
23:33:36.0143 0x0888 [ 1B00662092F9F9568B995902F0CC40D5, D345014CF146FA57B2682C189D5E7F27D4C78F321F2723D912D623E777C2BB70 ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
23:33:36.0159 0x0888 1394ohci - ok
23:33:36.0237 0x0888 [ 6F11E88748CDEFD2F76AA215F97DDFE5, BD0B3561EDCDE5EFD89372793CFD09DF879709BF469542F4A049705CBA9FD060 ] ACPI C:\Windows\system32\DRIVERS\ACPI.sys
23:33:36.0253 0x0888 ACPI - ok
23:33:36.0311 0x0888 [ 63B05A0420CE4BF0E4AF6DCC7CADA254, 56BCC219D6B886FD42B7D335B4A7BBA3C9BC148220CBD99F8583FB505DAE63BF ] AcpiPmi C:\Windows\system32\DRIVERS\acpipmi.sys
23:33:36.0342 0x0888 AcpiPmi - ok
23:33:36.0452 0x0888 [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
23:33:36.0466 0x0888 adp94xx - ok
23:33:36.0514 0x0888 [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
23:33:36.0530 0x0888 adpahci - ok
23:33:36.0545 0x0888 [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
23:33:36.0555 0x0888 adpu320 - ok
23:33:36.0609 0x0888 [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
23:33:36.0611 0x0888 AeLookupSvc - ok
23:33:36.0685 0x0888 [ B9384E03479D2506BC924C16A3DB87BC, AB5FD2BC1F005E7D664F5DE3D5CB54499024A83B716DD52C56582DB7EFB4F01B ] AFD C:\Windows\system32\drivers\afd.sys
23:33:36.0696 0x0888 AFD - ok
23:33:36.0711 0x0888 [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\Windows\system32\DRIVERS\agp440.sys
23:33:36.0713 0x0888 agp440 - ok
23:33:36.0758 0x0888 [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\Windows\System32\alg.exe
23:33:36.0767 0x0888 ALG - ok
23:33:36.0830 0x0888 [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\Windows\system32\DRIVERS\aliide.sys
23:33:36.0832 0x0888 aliide - ok
23:33:36.0881 0x0888 [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\Windows\system32\DRIVERS\amdide.sys
23:33:36.0908 0x0888 amdide - ok
23:33:36.0916 0x0888 [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
23:33:36.0926 0x0888 AmdK8 - ok
23:33:36.0967 0x0888 [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
23:33:36.0968 0x0888 AmdPPM - ok
23:33:37.0013 0x0888 [ 7A4B413614C055935567CF88A9734D38, A3BB7CDF3EE0EEF67F89263E81145E73C7142EF5F0AF265375C2ECCE74F932C4 ] amdsata C:\Windows\system32\DRIVERS\amdsata.sys
23:33:37.0016 0x0888 amdsata - ok
23:33:37.0094 0x0888 [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
23:33:37.0104 0x0888 amdsbs - ok
23:33:37.0125 0x0888 [ B4AD0CACBAB298671DD6F6EF7E20679D, FB566C892D0A3DC0A523AE20F35011996958D670937DD5C1A1FCCD36AAC714D7 ] amdxata C:\Windows\system32\DRIVERS\amdxata.sys
23:33:37.0126 0x0888 amdxata - ok
23:33:37.0175 0x0888 [ 42FD751B27FA0E9C69BB39F39E409594, DE349CAA570957868CA1CB0BE0FAF551CD4D44FD53EBC4391B9C1C7B9CF295D2 ] AppID C:\Windows\system32\drivers\appid.sys
23:33:37.0192 0x0888 AppID - ok
23:33:37.0281 0x0888 [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc C:\Windows\System32\appidsvc.dll
23:33:37.0290 0x0888 AppIDSvc - ok
23:33:37.0366 0x0888 [ D065BE66822847B7F127D1F90158376E, 20F911F390FF23C2C42361A449C4344DB59F1DC21EDD1E7EBC4E80914DEF7824 ] Appinfo C:\Windows\System32\appinfo.dll
23:33:37.0368 0x0888 Appinfo - ok
23:33:37.0409 0x0888 [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\Windows\system32\DRIVERS\arc.sys
23:33:37.0461 0x0888 arc - ok
23:33:37.0570 0x0888 [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
23:33:37.0614 0x0888 arcsas - ok
23:33:37.0637 0x0888 [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
23:33:37.0642 0x0888 AsyncMac - ok
23:33:37.0663 0x0888 [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\Windows\system32\DRIVERS\atapi.sys
23:33:37.0663 0x0888 atapi - ok
23:33:38.0069 0x0888 [ 3EFD964D52221360AF0673CD61C2F4F5, 76D636CAF2E4FEDAAC6B0D958865A901340CF836EE4FCE59F1D5291E3BEC9F1E ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
23:33:38.0182 0x0888 atikmdag - ok
23:33:38.0357 0x0888 [ 07721A77180EDD4D39CCB865BF63C7FD, 9E8117E747C86154F98F2686D805A981029CC5D11AFB115A529429C9A4579BE5 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
23:33:38.0371 0x0888 AudioEndpointBuilder - ok
23:33:38.0400 0x0888 [ 07721A77180EDD4D39CCB865BF63C7FD, 9E8117E747C86154F98F2686D805A981029CC5D11AFB115A529429C9A4579BE5 ] AudioSrv C:\Windows\System32\Audiosrv.dll
23:33:38.0415 0x0888 AudioSrv - ok
23:33:38.0464 0x0888 [ B20B5FA5CA050E9926E4D1DB81501B32, 91B9038349BA07E32DE809E6798167EE44087809EB1174B84EC16580040F1BE0 ] AxInstSV C:\Windows\System32\AxInstSV.dll
23:33:38.0470 0x0888 AxInstSV - ok
23:33:38.0518 0x0888 [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
23:33:38.0536 0x0888 b06bdrv - ok
23:33:38.0566 0x0888 [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
23:33:38.0573 0x0888 b57nd60a - ok
23:33:38.0596 0x0888 [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\Windows\System32\bdesvc.dll
23:33:38.0606 0x0888 BDESVC - ok
23:33:38.0628 0x0888 [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\Windows\system32\drivers\Beep.sys
23:33:38.0629 0x0888 Beep - ok
23:33:38.0671 0x0888 [ 4992C609A6315671463E30F6512BC022, 3020034556EAC25CD90F41D3BFFDD0BB2C3D1C5BAC4359F4B71B84A9FC404495 ] BFE C:\Windows\System32\bfe.dll
23:33:38.0685 0x0888 BFE - ok
23:33:38.0756 0x0888 [ 7F0C323FE3DA28AA4AA1BDA3F575707F, 7FF09CBC16A9E5F357A76FF79A3F0DD047957D474031F51A6BB4916C7911F005 ] BITS C:\Windows\System32\qmgr.dll
23:33:38.0778 0x0888 BITS - ok
23:33:38.0806 0x0888 [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
23:33:38.0807 0x0888 blbdrive - ok
23:33:38.0818 0x0888 [ 91CE0D3DC57DD377E690A2D324022B08, 61874463956C0BCA5139522F34E974E5F638A092E0FD5C59DD30DE61D9AB8B0E ] bowser C:\Windows\system32\DRIVERS\bowser.sys
23:33:38.0820 0x0888 bowser - ok
23:33:38.0824 0x0888 [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
23:33:38.0826 0x0888 BrFiltLo - ok
23:33:38.0830 0x0888 [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
23:33:38.0831 0x0888 BrFiltUp - ok
23:33:38.0851 0x0888 [ 94FBC06F294D58D02361918418F996E3, 62C7CC2AF8F5A0BB0C262DACDE3F72C6AC318C3840CE60E46EE2064B32BDA5EF ] Browser C:\Windows\System32\browser.dll
23:33:38.0854 0x0888 Browser - ok
23:33:38.0876 0x0888 [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\Windows\System32\Drivers\Brserid.sys
23:33:38.0884 0x0888 Brserid - ok
23:33:38.0891 0x0888 [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
23:33:38.0893 0x0888 BrSerWdm - ok
23:33:38.0898 0x0888 [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
23:33:38.0899 0x0888 BrUsbMdm - ok
23:33:38.0904 0x0888 [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
23:33:38.0905 0x0888 BrUsbSer - ok
23:33:38.0911 0x0888 [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
23:33:38.0914 0x0888 BTHMODEM - ok
23:33:38.0925 0x0888 [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\Windows\system32\bthserv.dll
23:33:38.0928 0x0888 bthserv - ok
23:33:38.0937 0x0888 [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
23:33:38.0939 0x0888 cdfs - ok
23:33:38.0947 0x0888 [ 83D2D75E1EFB81B3450C18131443F7DB, F2C686C980D818E797818E75B808E1E0B51B2045840A4BFC32D860B7DB4DFA22 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
23:33:38.0952 0x0888 cdrom - ok
23:33:38.0991 0x0888 [ 312E2F82AF11E79906898AC3E3D58A1F, F6CB7D8B204B94F749D5DBEFD552150AAB16A34D629F87F73823A7504465F106 ] CertPropSvc C:\Windows\System32\certprop.dll
23:33:38.0994 0x0888 CertPropSvc - ok
23:33:38.0999 0x0888 [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
23:33:39.0001 0x0888 circlass - ok
23:33:39.0045 0x0888 [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS C:\Windows\system32\CLFS.sys
23:33:39.0058 0x0888 CLFS - ok
23:33:39.0352 0x0888 [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
23:33:39.0503 0x0888 clr_optimization_v2.0.50727_32 - ok
23:33:40.0204 0x0888 [ D1CEEA2B47CB998321C579651CE3E4F8, 654013B8FD229A50017B08DEC6CA19C7DDA8CE0771260E057A92625201D539B1 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
23:33:40.0414 0x0888 clr_optimization_v2.0.50727_64 - ok
23:33:40.0473 0x0888 [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
23:33:40.0475 0x0888 CmBatt - ok
23:33:40.0485 0x0888 [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\Windows\system32\DRIVERS\cmdide.sys
23:33:40.0486 0x0888 cmdide - ok
23:33:40.0516 0x0888 [ F95FD4CB7DA00BA2A63CE9F6B5C053E1, D1FBCA0416D38B9CA510FB01CF251E60B244D38080E6668948ED927D2350ED49 ] CNG C:\Windows\system32\Drivers\cng.sys
23:33:40.0534 0x0888 CNG - ok
23:33:40.0540 0x0888 [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
23:33:40.0541 0x0888 Compbatt - ok
23:33:40.0556 0x0888 [ F26B3A86F6FA87CA360B879581AB4123, 723904362614FE47F6CC0EA0656BA1B47EA32D73BAFB61688A5E5CAE4340B1BF ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
23:33:40.0557 0x0888 CompositeBus - ok
23:33:40.0572 0x0888 COMSysApp - ok
23:33:40.0586 0x0888 [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
23:33:40.0589 0x0888 crcdisk - ok
23:33:40.0618 0x0888 [ 8C57411B66282C01533CB776F98AD384, 65BCF1B0BA521CBE39E974C7ACAEA9C9E3F89D86754275C6B2616E7691876AEE ] CryptSvc C:\Windows\system32\cryptsvc.dll
23:33:40.0621 0x0888 CryptSvc - ok
23:33:40.0674 0x0888 [ 7266972E86890E2B30C0C322E906B027, BFA30E85F5BD3AA933913BD7C6D2B5993DB7AFB0C98349B61A6BEF0BDC8A3680 ] DcomLaunch C:\Windows\system32\rpcss.dll
23:33:40.0686 0x0888 DcomLaunch - ok
23:33:40.0710 0x0888 [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\Windows\System32\defragsvc.dll
23:33:40.0727 0x0888 defragsvc - ok
23:33:40.0739 0x0888 [ 3F1DC527070ACB87E40AFE46EF6DA749, 5CB9CB94854AF06BEA02AF3E0562B8ECF72B2B23ED657A3F5E17CD3552F3EF84 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
23:33:40.0742 0x0888 DfsC - ok
23:33:40.0794 0x0888 [ CE3B9562D997F69B330D181A8875960F, 6FEE6622859198C5C13545867EF7CFE8EDC991360E976F792313DAA9C82CC5C8 ] Dhcp C:\Windows\system32\dhcpcore.dll
23:33:40.0801 0x0888 Dhcp - ok
23:33:40.0814 0x0888 [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\Windows\system32\drivers\discache.sys
23:33:40.0816 0x0888 discache - ok
23:33:40.0837 0x0888 [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk C:\Windows\system32\DRIVERS\disk.sys
23:33:40.0857 0x0888 Disk - ok
23:33:40.0882 0x0888 [ 676108C4E3AA6F6B34633748BD0BEBD9, 953286126E482EF3A9A1833680EFF86D657BD6C5411B9AEC2D7828ADE63D25AD ] Dnscache C:\Windows\System32\dnsrslvr.dll
23:33:40.0886 0x0888 Dnscache - ok
23:33:40.0918 0x0888 [ 14452ACDB09B70964C8C21BF80A13ACB, DA0AAAC04626EFF4256D7095FF1DDA1F1B17676E26990C418BDF5090476F2AB4 ] dot3svc C:\Windows\System32\dot3svc.dll
23:33:40.0934 0x0888 dot3svc - ok
23:33:40.0967 0x0888 [ 8C2BA6BEA949EE6E68385F5692BAFB94, 1047F473DCE0FB56BEA5C1B7929752C1FBAB5983C8202ABB4EEA48FCD60A353A ] DPS C:\Windows\system32\dps.dll
23:33:40.0971 0x0888 DPS - ok
23:33:41.0008 0x0888 [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
23:33:41.0014 0x0888 drmkaud - ok
23:33:41.0081 0x0888 [ 7CB7D2B73813CE05C7BC0F5F95D27CEC, F80AD7E946B8C8C27A0EB8A99B3A61C3F09E5442372D64EB4886D86B8D0AFCFD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
23:33:41.0119 0x0888 DXGKrnl - ok
23:33:41.0153 0x0888 [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\Windows\System32\eapsvc.dll
23:33:41.0157 0x0888 EapHost - ok
23:33:41.0405 0x0888 [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
23:33:41.0522 0x0888 ebdrv - ok
23:33:41.0568 0x0888 [ 0793F40B9B8A1BDD266296409DBD91EA, 8A383FC9A66A327905C340D06138980F9E489479535A2C2AAE5E8BB14A74826E ] EFS C:\Windows\System32\lsass.exe
23:33:41.0570 0x0888 EFS - ok
23:33:41.0646 0x0888 [ B91D81B3B54A54CCAFC03733DBC2E29E, B08CFD3136F678CF902722B32CA55C4983EEE5AEBDCEE036BEB746914742141C ] ehRecvr C:\Windows\ehome\ehRecvr.exe
23:33:41.0664 0x0888 ehRecvr - ok
23:33:41.0687 0x0888 [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\Windows\ehome\ehsched.exe
23:33:41.0691 0x0888 ehSched - ok
23:33:41.0729 0x0888 [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
23:33:41.0743 0x0888 elxstor - ok
23:33:41.0748 0x0888 [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\Windows\system32\DRIVERS\errdev.sys
23:33:41.0749 0x0888 ErrDev - ok
23:33:41.0785 0x0888 [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\Windows\system32\es.dll
23:33:41.0794 0x0888 EventSystem - ok
23:33:41.0810 0x0888 [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat C:\Windows\system32\drivers\exfat.sys
23:33:41.0815 0x0888 exfat - ok
23:33:41.0825 0x0888 [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat C:\Windows\system32\drivers\fastfat.sys
23:33:41.0832 0x0888 fastfat - ok
23:33:41.0868 0x0888 [ D607B2F1BEE3992AA6C2C92C0A2F0855, E22301C8F01DBF0A38A85165959BB070647C996CB1BCD50FDFE3DDDCA427DF2A ] Fax C:\Windows\system32\fxssvc.exe
23:33:41.0883 0x0888 Fax - ok
23:33:41.0896 0x0888 [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\Windows\system32\DRIVERS\fdc.sys
23:33:41.0905 0x0888 fdc - ok
23:33:41.0947 0x0888 [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\Windows\system32\fdPHost.dll
23:33:41.0954 0x0888 fdPHost - ok
23:33:41.0968 0x0888 [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\Windows\system32\fdrespub.dll
23:33:41.0972 0x0888 FDResPub - ok
23:33:41.0989 0x0888 [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
23:33:41.0991 0x0888 FileInfo - ok
23:33:41.0997 0x0888 [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
23:33:41.0998 0x0888 Filetrace - ok
23:33:42.0004 0x0888 [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64
23:33:22.0957 0x0674 ============================================================
23:33:22.0957 0x0674 Current date / time: 2015/06/13 23:33:22.0957
23:33:22.0957 0x0674 SystemInfo:
23:33:22.0957 0x0674
23:33:22.0957 0x0674 OS Version: 6.1.7600 ServicePack: 0.0
23:33:22.0957 0x0674 Product type: Workstation
23:33:22.0957 0x0674 ComputerName: SX-PC
23:33:22.0957 0x0674 UserName: SX
23:33:22.0957 0x0674 Windows directory: C:\Windows
23:33:22.0957 0x0674 System windows directory: C:\Windows
23:33:22.0957 0x0674 Running under WOW64
23:33:22.0957 0x0674 Processor architecture: Intel x64
23:33:22.0957 0x0674 Number of processors: 4
23:33:22.0957 0x0674 Page size: 0x1000
23:33:22.0957 0x0674 Boot type: Normal boot
23:33:22.0957 0x0674
============================================================
23:33:22.0957 0x0674 BG loaded
23:33:23.0107 0x0674 System UUID: {F333889F-C093-0487-52B6-8029590A8A3B}
23:33:23.0457 0x0674 Drive \Device\Harddisk0\DR0 - Size: 0x950B056000 ( 596.17 Gb ), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
23:33:23.0467 0x0674 ============================================================
23:33:23.0467 0x0674 \Device\Harddisk0\DR0:
23:33:23.0467 0x0674 MBR partitions:
23:33:23.0467 0x0674 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x4A856E82
23:33:23.0467 0x0674 ============================================================
23:33:23.0477 0x0674 C: <-> \Device\Harddisk0\DR0\Partition1
23:33:23.0477 0x0674 ============================================================
23:33:23.0477 0x0674 Initialize success
23:33:23.0477 0x0674 ============================================================
23:33:28.0125 0x0888 ============================================================
23:33:28.0125 0x0888 Scan started
23:33:28.0125 0x0888 Mode: Manual;
23:33:28.0125 0x0888 ============================================================
23:33:28.0125 0x0888 KSN ping started
23:33:31.0557 0x0888 KSN ping finished: true
23:33:33.0866 0x0888 ================ Scan system memory ========================
23:33:33.0866 0x0888 System memory - ok
23:33:33.0866 0x0888 ================ Scan services =============================
23:33:36.0143 0x0888 [ 1B00662092F9F9568B995902F0CC40D5, D345014CF146FA57B2682C189D5E7F27D4C78F321F2723D912D623E777C2BB70 ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
23:33:36.0159 0x0888 1394ohci - ok
23:33:36.0237 0x0888 [ 6F11E88748CDEFD2F76AA215F97DDFE5, BD0B3561EDCDE5EFD89372793CFD09DF879709BF469542F4A049705CBA9FD060 ] ACPI C:\Windows\system32\DRIVERS\ACPI.sys
23:33:36.0253 0x0888 ACPI - ok
23:33:36.0311 0x0888 [ 63B05A0420CE4BF0E4AF6DCC7CADA254, 56BCC219D6B886FD42B7D335B4A7BBA3C9BC148220CBD99F8583FB505DAE63BF ] AcpiPmi C:\Windows\system32\DRIVERS\acpipmi.sys
23:33:36.0342 0x0888 AcpiPmi - ok
23:33:36.0452 0x0888 [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
23:33:36.0466 0x0888 adp94xx - ok
23:33:36.0514 0x0888 [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
23:33:36.0530 0x0888 adpahci - ok
23:33:36.0545 0x0888 [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
23:33:36.0555 0x0888 adpu320 - ok
23:33:36.0609 0x0888 [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
23:33:36.0611 0x0888 AeLookupSvc - ok
23:33:36.0685 0x0888 [ B9384E03479D2506BC924C16A3DB87BC, AB5FD2BC1F005E7D664F5DE3D5CB54499024A83B716DD52C56582DB7EFB4F01B ] AFD C:\Windows\system32\drivers\afd.sys
23:33:36.0696 0x0888 AFD - ok
23:33:36.0711 0x0888 [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\Windows\system32\DRIVERS\agp440.sys
23:33:36.0713 0x0888 agp440 - ok
23:33:36.0758 0x0888 [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\Windows\System32\alg.exe
23:33:36.0767 0x0888 ALG - ok
23:33:36.0830 0x0888 [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\Windows\system32\DRIVERS\aliide.sys
23:33:36.0832 0x0888 aliide - ok
23:33:36.0881 0x0888 [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\Windows\system32\DRIVERS\amdide.sys
23:33:36.0908 0x0888 amdide - ok
23:33:36.0916 0x0888 [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
23:33:36.0926 0x0888 AmdK8 - ok
23:33:36.0967 0x0888 [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
23:33:36.0968 0x0888 AmdPPM - ok
23:33:37.0013 0x0888 [ 7A4B413614C055935567CF88A9734D38, A3BB7CDF3EE0EEF67F89263E81145E73C7142EF5F0AF265375C2ECCE74F932C4 ] amdsata C:\Windows\system32\DRIVERS\amdsata.sys
23:33:37.0016 0x0888 amdsata - ok
23:33:37.0094 0x0888 [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
23:33:37.0104 0x0888 amdsbs - ok
23:33:37.0125 0x0888 [ B4AD0CACBAB298671DD6F6EF7E20679D, FB566C892D0A3DC0A523AE20F35011996958D670937DD5C1A1FCCD36AAC714D7 ] amdxata C:\Windows\system32\DRIVERS\amdxata.sys
23:33:37.0126 0x0888 amdxata - ok
23:33:37.0175 0x0888 [ 42FD751B27FA0E9C69BB39F39E409594, DE349CAA570957868CA1CB0BE0FAF551CD4D44FD53EBC4391B9C1C7B9CF295D2 ] AppID C:\Windows\system32\drivers\appid.sys
23:33:37.0192 0x0888 AppID - ok
23:33:37.0281 0x0888 [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc C:\Windows\System32\appidsvc.dll
23:33:37.0290 0x0888 AppIDSvc - ok
23:33:37.0366 0x0888 [ D065BE66822847B7F127D1F90158376E, 20F911F390FF23C2C42361A449C4344DB59F1DC21EDD1E7EBC4E80914DEF7824 ] Appinfo C:\Windows\System32\appinfo.dll
23:33:37.0368 0x0888 Appinfo - ok
23:33:37.0409 0x0888 [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\Windows\system32\DRIVERS\arc.sys
23:33:37.0461 0x0888 arc - ok
23:33:37.0570 0x0888 [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
23:33:37.0614 0x0888 arcsas - ok
23:33:37.0637 0x0888 [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
23:33:37.0642 0x0888 AsyncMac - ok
23:33:37.0663 0x0888 [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\Windows\system32\DRIVERS\atapi.sys
23:33:37.0663 0x0888 atapi - ok
23:33:38.0069 0x0888 [ 3EFD964D52221360AF0673CD61C2F4F5, 76D636CAF2E4FEDAAC6B0D958865A901340CF836EE4FCE59F1D5291E3BEC9F1E ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
23:33:38.0182 0x0888 atikmdag - ok
23:33:38.0357 0x0888 [ 07721A77180EDD4D39CCB865BF63C7FD, 9E8117E747C86154F98F2686D805A981029CC5D11AFB115A529429C9A4579BE5 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
23:33:38.0371 0x0888 AudioEndpointBuilder - ok
23:33:38.0400 0x0888 [ 07721A77180EDD4D39CCB865BF63C7FD, 9E8117E747C86154F98F2686D805A981029CC5D11AFB115A529429C9A4579BE5 ] AudioSrv C:\Windows\System32\Audiosrv.dll
23:33:38.0415 0x0888 AudioSrv - ok
23:33:38.0464 0x0888 [ B20B5FA5CA050E9926E4D1DB81501B32, 91B9038349BA07E32DE809E6798167EE44087809EB1174B84EC16580040F1BE0 ] AxInstSV C:\Windows\System32\AxInstSV.dll
23:33:38.0470 0x0888 AxInstSV - ok
23:33:38.0518 0x0888 [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
23:33:38.0536 0x0888 b06bdrv - ok
23:33:38.0566 0x0888 [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
23:33:38.0573 0x0888 b57nd60a - ok
23:33:38.0596 0x0888 [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\Windows\System32\bdesvc.dll
23:33:38.0606 0x0888 BDESVC - ok
23:33:38.0628 0x0888 [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\Windows\system32\drivers\Beep.sys
23:33:38.0629 0x0888 Beep - ok
23:33:38.0671 0x0888 [ 4992C609A6315671463E30F6512BC022, 3020034556EAC25CD90F41D3BFFDD0BB2C3D1C5BAC4359F4B71B84A9FC404495 ] BFE C:\Windows\System32\bfe.dll
23:33:38.0685 0x0888 BFE - ok
23:33:38.0756 0x0888 [ 7F0C323FE3DA28AA4AA1BDA3F575707F, 7FF09CBC16A9E5F357A76FF79A3F0DD047957D474031F51A6BB4916C7911F005 ] BITS C:\Windows\System32\qmgr.dll
23:33:38.0778 0x0888 BITS - ok
23:33:38.0806 0x0888 [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
23:33:38.0807 0x0888 blbdrive - ok
23:33:38.0818 0x0888 [ 91CE0D3DC57DD377E690A2D324022B08, 61874463956C0BCA5139522F34E974E5F638A092E0FD5C59DD30DE61D9AB8B0E ] bowser C:\Windows\system32\DRIVERS\bowser.sys
23:33:38.0820 0x0888 bowser - ok
23:33:38.0824 0x0888 [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
23:33:38.0826 0x0888 BrFiltLo - ok
23:33:38.0830 0x0888 [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
23:33:38.0831 0x0888 BrFiltUp - ok
23:33:38.0851 0x0888 [ 94FBC06F294D58D02361918418F996E3, 62C7CC2AF8F5A0BB0C262DACDE3F72C6AC318C3840CE60E46EE2064B32BDA5EF ] Browser C:\Windows\System32\browser.dll
23:33:38.0854 0x0888 Browser - ok
23:33:38.0876 0x0888 [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\Windows\System32\Drivers\Brserid.sys
23:33:38.0884 0x0888 Brserid - ok
23:33:38.0891 0x0888 [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
23:33:38.0893 0x0888 BrSerWdm - ok
23:33:38.0898 0x0888 [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
23:33:38.0899 0x0888 BrUsbMdm - ok
23:33:38.0904 0x0888 [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
23:33:38.0905 0x0888 BrUsbSer - ok
23:33:38.0911 0x0888 [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
23:33:38.0914 0x0888 BTHMODEM - ok
23:33:38.0925 0x0888 [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\Windows\system32\bthserv.dll
23:33:38.0928 0x0888 bthserv - ok
23:33:38.0937 0x0888 [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
23:33:38.0939 0x0888 cdfs - ok
23:33:38.0947 0x0888 [ 83D2D75E1EFB81B3450C18131443F7DB, F2C686C980D818E797818E75B808E1E0B51B2045840A4BFC32D860B7DB4DFA22 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
23:33:38.0952 0x0888 cdrom - ok
23:33:38.0991 0x0888 [ 312E2F82AF11E79906898AC3E3D58A1F, F6CB7D8B204B94F749D5DBEFD552150AAB16A34D629F87F73823A7504465F106 ] CertPropSvc C:\Windows\System32\certprop.dll
23:33:38.0994 0x0888 CertPropSvc - ok
23:33:38.0999 0x0888 [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
23:33:39.0001 0x0888 circlass - ok
23:33:39.0045 0x0888 [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS C:\Windows\system32\CLFS.sys
23:33:39.0058 0x0888 CLFS - ok
23:33:39.0352 0x0888 [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
23:33:39.0503 0x0888 clr_optimization_v2.0.50727_32 - ok
23:33:40.0204 0x0888 [ D1CEEA2B47CB998321C579651CE3E4F8, 654013B8FD229A50017B08DEC6CA19C7DDA8CE0771260E057A92625201D539B1 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
23:33:40.0414 0x0888 clr_optimization_v2.0.50727_64 - ok
23:33:40.0473 0x0888 [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
23:33:40.0475 0x0888 CmBatt - ok
23:33:40.0485 0x0888 [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\Windows\system32\DRIVERS\cmdide.sys
23:33:40.0486 0x0888 cmdide - ok
23:33:40.0516 0x0888 [ F95FD4CB7DA00BA2A63CE9F6B5C053E1, D1FBCA0416D38B9CA510FB01CF251E60B244D38080E6668948ED927D2350ED49 ] CNG C:\Windows\system32\Drivers\cng.sys
23:33:40.0534 0x0888 CNG - ok
23:33:40.0540 0x0888 [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
23:33:40.0541 0x0888 Compbatt - ok
23:33:40.0556 0x0888 [ F26B3A86F6FA87CA360B879581AB4123, 723904362614FE47F6CC0EA0656BA1B47EA32D73BAFB61688A5E5CAE4340B1BF ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
23:33:40.0557 0x0888 CompositeBus - ok
23:33:40.0572 0x0888 COMSysApp - ok
23:33:40.0586 0x0888 [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
23:33:40.0589 0x0888 crcdisk - ok
23:33:40.0618 0x0888 [ 8C57411B66282C01533CB776F98AD384, 65BCF1B0BA521CBE39E974C7ACAEA9C9E3F89D86754275C6B2616E7691876AEE ] CryptSvc C:\Windows\system32\cryptsvc.dll
23:33:40.0621 0x0888 CryptSvc - ok
23:33:40.0674 0x0888 [ 7266972E86890E2B30C0C322E906B027, BFA30E85F5BD3AA933913BD7C6D2B5993DB7AFB0C98349B61A6BEF0BDC8A3680 ] DcomLaunch C:\Windows\system32\rpcss.dll
23:33:40.0686 0x0888 DcomLaunch - ok
23:33:40.0710 0x0888 [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\Windows\System32\defragsvc.dll
23:33:40.0727 0x0888 defragsvc - ok
23:33:40.0739 0x0888 [ 3F1DC527070ACB87E40AFE46EF6DA749, 5CB9CB94854AF06BEA02AF3E0562B8ECF72B2B23ED657A3F5E17CD3552F3EF84 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
23:33:40.0742 0x0888 DfsC - ok
23:33:40.0794 0x0888 [ CE3B9562D997F69B330D181A8875960F, 6FEE6622859198C5C13545867EF7CFE8EDC991360E976F792313DAA9C82CC5C8 ] Dhcp C:\Windows\system32\dhcpcore.dll
23:33:40.0801 0x0888 Dhcp - ok
23:33:40.0814 0x0888 [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\Windows\system32\drivers\discache.sys
23:33:40.0816 0x0888 discache - ok
23:33:40.0837 0x0888 [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk C:\Windows\system32\DRIVERS\disk.sys
23:33:40.0857 0x0888 Disk - ok
23:33:40.0882 0x0888 [ 676108C4E3AA6F6B34633748BD0BEBD9, 953286126E482EF3A9A1833680EFF86D657BD6C5411B9AEC2D7828ADE63D25AD ] Dnscache C:\Windows\System32\dnsrslvr.dll
23:33:40.0886 0x0888 Dnscache - ok
23:33:40.0918 0x0888 [ 14452ACDB09B70964C8C21BF80A13ACB, DA0AAAC04626EFF4256D7095FF1DDA1F1B17676E26990C418BDF5090476F2AB4 ] dot3svc C:\Windows\System32\dot3svc.dll
23:33:40.0934 0x0888 dot3svc - ok
23:33:40.0967 0x0888 [ 8C2BA6BEA949EE6E68385F5692BAFB94, 1047F473DCE0FB56BEA5C1B7929752C1FBAB5983C8202ABB4EEA48FCD60A353A ] DPS C:\Windows\system32\dps.dll
23:33:40.0971 0x0888 DPS - ok
23:33:41.0008 0x0888 [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
23:33:41.0014 0x0888 drmkaud - ok
23:33:41.0081 0x0888 [ 7CB7D2B73813CE05C7BC0F5F95D27CEC, F80AD7E946B8C8C27A0EB8A99B3A61C3F09E5442372D64EB4886D86B8D0AFCFD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
23:33:41.0119 0x0888 DXGKrnl - ok
23:33:41.0153 0x0888 [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\Windows\System32\eapsvc.dll
23:33:41.0157 0x0888 EapHost - ok
23:33:41.0405 0x0888 [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
23:33:41.0522 0x0888 ebdrv - ok
23:33:41.0568 0x0888 [ 0793F40B9B8A1BDD266296409DBD91EA, 8A383FC9A66A327905C340D06138980F9E489479535A2C2AAE5E8BB14A74826E ] EFS C:\Windows\System32\lsass.exe
23:33:41.0570 0x0888 EFS - ok
23:33:41.0646 0x0888 [ B91D81B3B54A54CCAFC03733DBC2E29E, B08CFD3136F678CF902722B32CA55C4983EEE5AEBDCEE036BEB746914742141C ] ehRecvr C:\Windows\ehome\ehRecvr.exe
23:33:41.0664 0x0888 ehRecvr - ok
23:33:41.0687 0x0888 [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\Windows\ehome\ehsched.exe
23:33:41.0691 0x0888 ehSched - ok
23:33:41.0729 0x0888 [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
23:33:41.0743 0x0888 elxstor - ok
23:33:41.0748 0x0888 [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\Windows\system32\DRIVERS\errdev.sys
23:33:41.0749 0x0888 ErrDev - ok
23:33:41.0785 0x0888 [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\Windows\system32\es.dll
23:33:41.0794 0x0888 EventSystem - ok
23:33:41.0810 0x0888 [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat C:\Windows\system32\drivers\exfat.sys
23:33:41.0815 0x0888 exfat - ok
23:33:41.0825 0x0888 [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat C:\Windows\system32\drivers\fastfat.sys
23:33:41.0832 0x0888 fastfat - ok
23:33:41.0868 0x0888 [ D607B2F1BEE3992AA6C2C92C0A2F0855, E22301C8F01DBF0A38A85165959BB070647C996CB1BCD50FDFE3DDDCA427DF2A ] Fax C:\Windows\system32\fxssvc.exe
23:33:41.0883 0x0888 Fax - ok
23:33:41.0896 0x0888 [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\Windows\system32\DRIVERS\fdc.sys
23:33:41.0905 0x0888 fdc - ok
23:33:41.0947 0x0888 [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\Windows\system32\fdPHost.dll
23:33:41.0954 0x0888 fdPHost - ok
23:33:41.0968 0x0888 [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\Windows\system32\fdrespub.dll
23:33:41.0972 0x0888 FDResPub - ok
23:33:41.0989 0x0888 [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
23:33:41.0991 0x0888 FileInfo - ok
23:33:41.0997 0x0888 [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
23:33:41.0998 0x0888 Filetrace - ok
23:33:42.0004 0x0888 [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64
Welcome to MT.
[@ivan if you are infected make a post here for help. http://malwaretips.com/forums/malware-removal-assistance.10/[/QUOTE]
Do what @frogboy said you
Caution: MT is really addictive!!
[@ivan if you are infected make a post here for help. http://malwaretips.com/forums/malware-removal-assistance.10/[/QUOTE]
Do what @frogboy said you
Caution: MT is really addictive!!
- Status
Similar threads
