View Full Version : computer wont switch off
hi i,m maxman (http://forums.spybot.info/member.php?u=78727) writing this on behalf off ann you helped me in the past so thought you might be able to help
The problem is with this machine a acer extensa 5235 laptop is that it wont switch of it just wants to restart but with a error message and safe start up menu and then a restore fix all normal checks have been done with avg and m/s checks
here are dds log before installing wizip 16 for attach file thank you in advance for help :D:
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 9.0.8112.16421
Run by Parent at 10:24:17 on 2011-11-07
Microsoft Windows 7 Professional 6.1.7601.1.1252.44.1033.18.953.44 [GMT 0:00]
.
AV: Microsoft Security Essentials *Enabled/Updated* {108DAC43-C256-20B7-BB05-914135DA5160}
AV: AVG Anti-Virus Free Edition 2011 *Enabled/Updated* {5A2746B1-DEE9-F85A-FBCD-ADB11639C5F0}
SP: AVG Anti-Virus Free Edition 2011 *Enabled/Updated* {E146A755-F8D3-F7D4-C17D-96C36DBE8F4D}
SP: Microsoft Security Essentials *Enabled/Updated* {ABEC4DA7-E46C-2F39-81B5-AA334E5D1BDD}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\PROGRA~1\AVG\AVG10\avgchsvx.exe
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files\AVG\AVG10\avgwdsvc.exe
C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files\Acer\Registration\GregHSRW.exe
C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe
C:\Program Files\Netintelligence Home\LiteClient.exe
C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\Program Files\AVG\AVG10\avgnsx.exe
C:\Windows\system32\srvmon.exe
C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files\Acer\Acer Updater\UpdaterService.exe
C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
c:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files\CONEXANT\cAudioFilterAgent\cAudioFilterAgent.exe
C:\Program Files\Launch Manager\LManager.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Netintelligence Home\LiteClientAM.exe
C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe
C:\Program Files\AVG\AVG10\avgtray.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Windows\system32\igfxsrvc.exe
C:\Program Files\Netintelligence Home\AMMon.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Windows\system32\igfxext.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\Acer\Acer ePower Management\ePowerEvent.exe
C:\Program Files\AVG\AVG10\Identity Protection\agent\bin\avgidsmonitor.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\PROGRA~1\AVG\AVG10\avgrsx.exe
C:\Program Files\AVG\AVG10\avgcsrvx.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\System32\svchost.exe -k WerSvcGroup
C:\Windows\system32\conhost.exe
C:\Windows\system32\wbem\wmiprvse.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.co.uk/
mDefault_Page_URL = hxxp://www.nextgenerationlearning.org.uk/ourhomeaccess
mStart Page = hxxp://www.nextgenerationlearning.org.uk/ourhomeaccess
BHO: txthlpBHO Class: {060235dc-6d84-47bd-95d7-a4ef5099a59d} - c:\progra~1\texthe~1\readan~1\TE4470~1.DLL
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - c:\program files\avg\avg10\avgssie.dll
BHO: Spybot-S&D IE Protection: {53707962-6f74-2d53-2644-206d7942484f} - c:\progra~1\spybot~1\SDHelper.dll
BHO: {5C255C8A-E604-49b4-9D64-90988571CECB} - No File
BHO: Search Helper: {6ebf7485-159f-4bff-a14f-b9e3aac4465b} - c:\program files\microsoft\search enhancement pack\search helper\SEPsearchhelperie.dll
BHO: ba3HelperObj Class: {a17b153f-2267-4161-a165-73dcd6c31bef} - c:\progra~1\texthe~1\readan~1\ba3bho.dll
BHO: Windows Live Toolbar Helper: {e15a8dc0-8516-42a1-81ea-dc94ec1acf10} - c:\program files\windows live\toolbar\wltcore.dll
TB: &Windows Live Toolbar: {21fa44ef-376d-4d53-9b0f-8a89d3229068} - c:\program files\windows live\toolbar\wltcore.dll
uRun: [msnmsgr] "c:\program files\windows live\messenger\msnmsgr.exe" /background
mRun: [IAAnotif] c:\program files\intel\intel matrix storage manager\iaanotif.exe
mRun: [cAudioFilterAgent] c:\program files\conexant\caudiofilteragent\cAudioFilterAgent.exe
mRun: [LManager] c:\program files\launch manager\LManager.exe
mRun: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
mRun: [NIHomeAM] "c:\program files\netintelligence home\LiteClientAM.exe"
mRun: [Acer ePower Management] c:\program files\acer\acer epower management\ePowerTray.exe
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
mRun: [AVG_TRAY] c:\program files\avg\avg10\avgtray.exe
mRun: [IgfxTray] c:\windows\system32\igfxtray.exe
mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe
mRun: [Persistence] c:\windows\system32\igfxpers.exe
mRun: [PLD_FrameworkRun] c:\windows\system32\oem\_NowIntoDT.vbs
mRun: [MSC] "c:\program files\microsoft security client\msseces.exe" -hide -runkey
mRunOnce: [PLD_FrameworkRunOnce] c:\windows\system32\oem\_waitAndLaunch_PLD_Framework_NoWait.vbs
mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE: E&xport to Microsoft Excel - c:\progra~1\mif5ba~1\office12\EXCEL.EXE/3000
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - c:\program files\windows live\writer\WriterBrowserExtension.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\mif5ba~1\office12\REFIEBAR.DLL
IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - c:\progra~1\spybot~1\SDHelper.dll
LSP: c:\windows\system32\NIHLSP.DLL
TCP: DhcpNameServer = 194.168.4.100 194.168.8.100
TCP: Interfaces\{976C358F-90C4-4DE6-9A37-386AD6063C28} : DhcpNameServer = 194.168.4.100 194.168.8.100
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - c:\program files\avg\avg10\avgpp.dll
Notify: igfxcui - igfxdev.dll
Hosts: 127.0.0.1 www.spywareinfo.com (http://www.spywareinfo.com)
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\users\parent\appdata\roaming\mozilla\firefox\profiles\g60k6171.default\
FF - plugin: c:\program files\adobe\reader 10.0\reader\air\nppdf32.dll
FF - plugin: c:\program files\google\google earth\plugin\npgeplugin.dll
FF - plugin: c:\program files\microsoft silverlight\4.0.60831.0\npctrlui.dll
FF - plugin: c:\program files\windows live\photo gallery\NPWLPG.dll
.
============= SERVICES / DRIVERS ===============
.
R0 AVGIDSEH;AVGIDSEH;c:\windows\system32\drivers\AVGIDSEH.sys [2011-2-22 22992]
R0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\drivers\avgrkx86.sys [2011-3-16 32592]
R1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\drivers\avgldx86.sys [2011-1-7 248656]
R1 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\drivers\avgmfx86.sys [2011-3-1 34896]
R1 Avgtdix;AVG TDI Driver;c:\windows\system32\drivers\avgtdix.sys [2011-4-4 297168]
R1 MpFilter;Microsoft Malware Protection Driver;c:\windows\system32\drivers\MpFilter.sys [2009-6-19 165648]
R1 MpKsl091fb88b;MpKsl091fb88b;c:\programdata\microsoft\microsoft antimalware\definition updates\{1bfef89a-0444-4665-b7f9-7622e07677d8}\MpKsl091fb88b.sys [2011-11-7 28752]
R1 MpKslbab09aad;MpKslbab09aad;c:\programdata\microsoft\microsoft antimalware\definition updates\{1bfef89a-0444-4665-b7f9-7622e07677d8}\MpKslbab09aad.sys [2011-11-7 28752]
R1 MpKslcaf5c68f;MpKslcaf5c68f;c:\programdata\microsoft\microsoft antimalware\definition updates\{1bfef89a-0444-4665-b7f9-7622e07677d8}\MpKslcaf5c68f.sys [2011-11-7 28752]
R1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\drivers\vwififlt.sys [2009-7-13 48128]
R2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files\common files\adobe\arm\1.0\armsvc.exe [2011-6-6 64952]
R2 AVGIDSAgent;AVGIDSAgent;c:\program files\avg\avg10\identity protection\agent\bin\AVGIDSAgent.exe [2011-8-18 7390560]
R2 avgwd;AVG WatchDog;c:\program files\avg\avg10\avgwdsvc.exe [2011-2-8 269520]
R2 ePowerSvc;Acer ePower Service;c:\program files\acer\acer epower management\ePowerSvc.exe [2009-12-5 727584]
R2 Greg_Service;GRegService;c:\program files\acer\registration\GregHSRW.exe [2009-8-28 1150496]
R2 NILiteClient;Netintelligence Home Edition Client;c:\program files\netintelligence home\LiteClient.exe [2009-12-5 2359296]
R2 NTISchedulerSvc;NTI Backup Now 5 Scheduler Service;c:\program files\newtech infosystems\nti backup now 5\SchedulerSvc.exe [2009-6-18 144640]
R2 SBSDWSCService;SBSD Security Center Service;c:\program files\spybot - search & destroy\SDWinSec.exe [2011-8-29 1153368]
R2 ServiceMonitor;Service Monitor;c:\windows\system32\srvmon.exe [2009-12-5 712704]
R3 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\drivers\AVGIDSDriver.sys [2011-5-27 134480]
R3 AVGIDSFilter;AVGIDSFilter;c:\windows\system32\drivers\AVGIDSFilter.sys [2011-2-10 24144]
R3 AVGIDSShim;AVGIDSShim;c:\windows\system32\drivers\AVGIDSShim.sys [2011-2-10 21968]
R3 L1C;NDIS Miniport Driver for Atheros AR8131/AR8132 PCI-E Ethernet Controller (NDIS 6.20);c:\windows\system32\drivers\L1C62x86.sys [2009-12-5 51712]
R3 MpNWMon;Microsoft Malware Protection Network Driver;c:\windows\system32\drivers\MpNWMon.sys [2009-6-19 43392]
R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\drivers\NisDrvWFP.sys [2010-10-24 65024]
R3 NisSrv;Microsoft Network Inspection;c:\program files\microsoft security client\antimalware\NisSrv.exe [2011-4-27 208944]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-13 229888]
S3 fssfltr;fssfltr;c:\windows\system32\drivers\fssfltr.sys [2009-12-5 55264]
S3 fsssvc;Windows Live Family Safety;c:\program files\windows live\family safety\fsssvc.exe [2008-12-9 533344]
S3 NTIBackupSvc;NTI Backup Now 5 Backup Service;c:\program files\newtech infosystems\nti backup now 5\BackupSvc.exe [2009-6-18 50432]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\drivers\RtsUStor.sys [2009-12-5 167424]
S3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\TsUsbFlt.sys [2011-8-30 52224]
S4 MSSQLServerADHelper100;SQL Active Directory Helper Service;c:\program files\microsoft sql server\100\shared\sqladhlp.exe [2008-7-11 47128]
S4 RsFx0102;RsFx0102 Driver;c:\windows\system32\drivers\RsFx0102.sys [2008-7-10 242712]
.
=============== Created Last 30 ================
.
2011-11-07 09:57:23 28752 ----a-w- c:\programdata\microsoft\microsoft antimalware\definition updates\{1bfef89a-0444-4665-b7f9-7622e07677d8}\MpKsl091fb88b.sys
2011-11-07 09:26:07 28752 ----a-w- c:\programdata\microsoft\microsoft antimalware\definition updates\{1bfef89a-0444-4665-b7f9-7622e07677d8}\MpKslbab09aad.sys
2011-11-07 08:54:29 28752 ----a-w- c:\programdata\microsoft\microsoft antimalware\definition updates\{1bfef89a-0444-4665-b7f9-7622e07677d8}\MpKslcaf5c68f.sys
2011-11-07 08:53:31 56200 ----a-w- c:\programdata\microsoft\microsoft antimalware\definition updates\{1bfef89a-0444-4665-b7f9-7622e07677d8}\offreg.dll
2011-11-07 08:53:27 6668624 ----a-w- c:\programdata\microsoft\microsoft antimalware\definition updates\{1bfef89a-0444-4665-b7f9-7622e07677d8}\mpengine.dll
2011-11-06 21:53:40 -------- d-----w- c:\windows\system32\MpEngineStore
2011-11-06 21:33:47 -------- d-----w- c:\windows\system32\appmgmt
2011-10-15 08:32:42 -------- d-----w- C:\d5aa5267031d5ee99ae3ee09c17b
2011-10-13 11:47:57 75776 ----a-w- c:\windows\system32\psisrndr.ax
2011-10-13 11:47:57 465408 ----a-w- c:\windows\system32\psisdecd.dll
2011-10-13 11:47:55 571904 ----a-w- c:\windows\system32\oleaut32.dll
2011-10-13 11:47:55 233472 ----a-w- c:\windows\system32\oleacc.dll
2011-10-13 11:47:50 2334720 ----a-w- c:\windows\system32\win32k.sys
2011-10-11 09:50:43 439632 ------w- c:\programdata\microsoft\microsoft antimalware\definition updates\nisbackup\gapaengine.dll
2011-10-11 09:50:38 703824 ------w- c:\programdata\microsoft\microsoft antimalware\definition updates\{3b7b1676-c609-4437-baee-3d4960457801}\gapaengine.dll
.
==================== Find3M ====================
.
2011-09-07 12:55:23 152576 ----a-w- c:\windows\system32\msclmd.dll
2011-09-01 02:35:59 1798144 ----a-w- c:\windows\system32\jscript9.dll
2011-09-01 02:28:15 1126912 ----a-w- c:\windows\system32\wininet.dll
2011-09-01 02:22:54 2382848 ----a-w- c:\windows\system32\mshtml.tlb
2011-08-29 17:33:25 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-08-29 17:12:31 3 ----a-w- c:\windows\system32\PLD_Framework.cmd
.
============= FINISH: 10:27:13.95 ===============
Hi,
System should have just one antivirus program installed only. That said, please decide between AVG and Microsoft Security Essentials.
The problem is with this machine a acer extensa 5235 laptop is that it wont switch of it just wants to restart but with a error message
What is the error?
Hi,
System should have just one antivirus program installed only. That said, please decide between AVG and Microsoft Security Essentials.
What is the error?
can turn m/s e off
the error on reboot is the dos screen saying "windows did not shut down properly " with start in safe mode etc .
don't know if this is a software or malware problem this machine will not shut down just restarts .
Hi,
Disable automatic restart on error:
Click on the Start button->right click on Computer and select Properties.
In the task pane on the left, click the Advanced system settings link.
Locate the Startup and Recovery section near the bottom of the window and click on the Settings button.
In the Startup and Recovery window, locate and uncheck the check box next to Automatically restart.
Click OK in the Startup and Recovery window.
Click OK in the System Properties window.
You can now close the System window.
Download GMER (http://www.gmer.net) here by clicking download exe -button and then saving it your desktop:
Double-click .exe that you downloaded
Click rootkit-tab, uncheck files option and then click scan.
Don't check
Show All
box while scanning in progress!
When scanning is ready, click Copy.
This copies log to clipboard
Post log (if the log is long, archive it into a zip file and attach instead of posting) in your reply.
Hi,
Disable automatic restart on error:
Click on the Start button->right click on Computer and select Properties.
In the task pane on the left, click the Advanced system settings link.
Locate the Startup and Recovery section near the bottom of the window and click on the Settings button.
In the Startup and Recovery window, locate and uncheck the check box next to Automatically restart.
Click OK in the Startup and Recovery window.
Click OK in the System Properties window.
You can now close the System window.
logg as requested :
Download GMER (http://www.gmer.net) here by clicking download exe -button and then saving it your desktop:
Double-click .exe that you downloaded
Click rootkit-tab, uncheck files option and then click scan.
Don't check
Show All
box while scanning in progress!
When scanning is ready, click Copy.
This copies log to clipboard
Post log (if the log is long, archive it into a zip file and attach instead of posting) in your reply.
GMER 1.0.15.15641 - http://www.gmer.net
Rootkit scan 2011-11-12 19:27:00
Windows 6.1.7601 Service Pack 1
Running: nn9fej4l.exe; Driver: C:\Users\Parent\AppData\Local\Temp\kfldrpow.sys
---- System - GMER 1.0.15 ----
SSDT \SystemRoot\system32\DRIVERS\AVGIDSShim.Sys (IDS Application Activity Monitor Loader Driver./AVG Technologies CZ, s.r.o. ) ZwOpenProcess [0x96C757A0]
SSDT \SystemRoot\system32\DRIVERS\AVGIDSShim.Sys (IDS Application Activity Monitor Loader Driver./AVG Technologies CZ, s.r.o. ) ZwTerminateProcess [0x96C75848]
SSDT \SystemRoot\system32\DRIVERS\AVGIDSShim.Sys (IDS Application Activity Monitor Loader Driver./AVG Technologies CZ, s.r.o. ) ZwTerminateThread [0x96C758E4]
SSDT \SystemRoot\system32\DRIVERS\AVGIDSShim.Sys (IDS Application Activity Monitor Loader Driver./AVG Technologies CZ, s.r.o. ) ZwWriteVirtualMemory [0x96C75980]
---- Kernel code sections - GMER 1.0.15 ----
.text ntkrnlpa.exe!ZwSaveKey + 13D1 82C3F349 1 Byte [06]
.text ntkrnlpa.exe!KiDispatchInterrupt + 5A2 82C78D52 19 Bytes [E0, 0F, BA, F0, 07, 73, 09, ...] {LOOPNZ 0x11; MOV EDX, 0x97307f0; MOV CR4, EAX; OR AL, 0x80; MOV CR4, EAX; RET ; MOV ECX, CR3}
.text ntkrnlpa.exe!KeRemoveQueueEx + 139F 82C80054 4 Bytes [A0, 57, C7, 96]
.text ntkrnlpa.exe!KeRemoveQueueEx + 166F 82C80324 8 Bytes [48, 58, C7, 96, E4, 58, C7, ...]
.text ntkrnlpa.exe!KeRemoveQueueEx + 16E3 82C80398 4 Bytes [80, 59, C7, 96] {SBB BYTE [ECX-0x39], 0x96}
---- User code sections - GMER 1.0.15 ----
.text C:\Program Files\Mozilla Firefox\firefox.exe[4680] ntdll.dll!LdrLoadDll 77A722B8 5 Bytes JMP 66B8FAE0 C:\Program Files\Mozilla Firefox\xul.dll (Mozilla Foundation)
.text C:\Program Files\Mozilla Firefox\firefox.exe[4680] kernel32.dll!GetStartupInfoA + 238 75732048 7 Bytes JMP 6A3B2E30 C:\Program Files\WinZip Courier\npwzwmc.dll (WinZip Courier Plugin for Mozilla Firefox/WinZip Computing, S.L.)
.text C:\Program Files\Mozilla Firefox\plugin-container.exe[5712] USER32.dll!GetWindowInfo 75D14B5E 5 Bytes JMP 66D089A7 C:\Program Files\Mozilla Firefox\xul.dll (Mozilla Foundation)
.text C:\Program Files\Mozilla Firefox\plugin-container.exe[5712] USER32.dll!TrackPopupMenu 75D22228 5 Bytes JMP 66D08F65 C:\Program Files\Mozilla Firefox\xul.dll (Mozilla Foundation)
---- User IAT/EAT - GMER 1.0.15 ----
IAT C:\Program Files\Windows Live\Messenger\msnmsgr.exe[552] @ C:\Windows\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [7533FFF6] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Program Files\Windows Live\Messenger\msnmsgr.exe[552] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [7533FFF6] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Program Files\Windows Live\Messenger\msnmsgr.exe[552] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [7533FFF6] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Program Files\Windows Live\Messenger\msnmsgr.exe[552] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [7533FFF6] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Program Files\Windows Live\Messenger\msnmsgr.exe[552] @ C:\Windows\system32\CRYPT32.dll [KERNEL32.dll!GetProcAddress] [7533FFF6] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Program Files\Windows Live\Messenger\msnmsgr.exe[552] @ C:\Windows\system32\WININET.dll [KERNEL32.dll!GetProcAddress] [7533FFF6] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Program Files\Windows Live\Messenger\msnmsgr.exe[552] @ C:\Windows\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] [7533FFF6] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe[1228] @ C:\Windows\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] [7533FFF6] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe[1228] @ C:\Windows\system32\USER32.dll [KERNEL32.dll!GetProcAddress] [7533FFF6] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe[1228] @ C:\Windows\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] [7533FFF6] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe[1228] @ C:\Windows\system32\CRYPT32.dll [KERNEL32.dll!GetProcAddress] [7533FFF6] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe[1228] @ C:\Windows\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] [7533FFF6] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe[1228] @ C:\Windows\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] [7533FFF6] C:\Windows\system32\apphelp.dll (Application Compatibility Client Library/Microsoft Corporation)
IAT C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe[1228] @ C:\Windows\system32\ole32.dll [ntdll.dll!EtwRegisterTraceGuidsW] [7011B0C6] C:\Windows\AppPatch\AcXtrnal.dll (Windows Compatibility DLL/Microsoft Corporation)
---- Devices - GMER 1.0.15 ----
AttachedDevice \FileSystem\Ntfs \Ntfs AVGIDSFilter.Sys (IDS Application Activity Monitor Filter Driver./AVG Technologies CZ, s.r.o. )
Device \Driver\ACPI_HAL \Device\0000022c halmacpi.dll (Hardware Abstraction Layer DLL/Microsoft Corporation)
AttachedDevice \Driver\kbdclass \Device\KeyboardClass0 Wdf01000.sys (Kernel Mode Driver Framework Runtime/Microsoft Corporation)
AttachedDevice \Driver\kbdclass \Device\KeyboardClass1 Wdf01000.sys (Kernel Mode Driver Framework Runtime/Microsoft Corporation)
AttachedDevice \Driver\tdx \Device\Tcp avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.)
AttachedDevice \Driver\volmgr \Device\HarddiskVolume1 fvevol.sys (BitLocker Drive Encryption Driver/Microsoft Corporation)
AttachedDevice \Driver\volmgr \Device\HarddiskVolume2 fvevol.sys (BitLocker Drive Encryption Driver/Microsoft Corporation)
AttachedDevice \Driver\volmgr \Device\HarddiskVolume3 fvevol.sys (BitLocker Drive Encryption Driver/Microsoft Corporation)
AttachedDevice \Driver\tdx \Device\Udp avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.)
AttachedDevice \Driver\tdx \Device\RawIp avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.)
---- EOF - GMER 1.0.15 ----
Hi,
Does the system throw an error instead of automatic restart now when shutdown is attempted?
Hi,
Does the system throw an error instead of automatic restart now when shutdown is attempted?
shut down is now possible , yes its throws a error /safe start menu on start up .
Hi,
Is it that same error message like earlier?
1. Download TDSSKiller (http://support.kaspersky.com/downloads/utils/tdsskiller.zip) and extract its contents into a folder in desired location (i.e. c:\tdsskiller).
2. Execute the file TDSSKiller.exe.
3. Click Start Scan. If threats are found, select cure and click Continue (tool may prompt for a reboot).
4. Post back contents of log file in c: drive root (name should be in UtilityName.Version_Date_Time_log.txt format)
Hi,
Is it that same error message like earlier?
1. Download TDSSKiller (http://support.kaspersky.com/downloads/utils/tdsskiller.zip) and extract its contents into a folder in desired location (i.e. c:\tdsskiller).
2. Execute the file TDSSKiller.exe.
3. Click Start Scan. If threats are found, select cure and click Continue (tool may prompt for a reboot).
4. Post back contents of log file in c: drive root (name should be in UtilityName.Version_Date_Time_log.txt format)
13:29:24.0650 6136 TDSS rootkit removing tool 2.6.18.0 Nov 11 2011 15:47:15
13:29:25.0098 6136 ============================================================
13:29:25.0098 6136 Current date / time: 2011/11/14 13:29:25.0098
13:29:25.0098 6136 SystemInfo:
13:29:25.0098 6136
13:29:25.0099 6136 OS Version: 6.1.7601 ServicePack: 1.0
13:29:25.0099 6136 Product type: Workstation
13:29:25.0099 6136 ComputerName: ANN-PC
13:29:25.0099 6136 UserName: Parent
13:29:25.0099 6136 Windows directory: C:\Windows
13:29:25.0099 6136 System windows directory: C:\Windows
13:29:25.0099 6136 Processor architecture: Intel x86
13:29:25.0099 6136 Number of processors: 1
13:29:25.0099 6136 Page size: 0x1000
13:29:25.0099 6136 Boot type: Normal boot
13:29:25.0099 6136 ============================================================
13:29:27.0329 6136 Initialize success
13:29:34.0654 2228 ============================================================
13:29:34.0654 2228 Scan started
13:29:34.0654 2228 Mode: Manual;
13:29:34.0654 2228 ============================================================
13:29:34.0946 2228 1394ohci (1b133875b8aa8ac48969bd3458afe9f5) C:\Windows\system32\drivers\1394ohci.sys
13:29:35.0082 2228 1394ohci - ok
13:29:35.0163 2228 ACPI (cea80c80bed809aa0da6febc04733349) C:\Windows\system32\drivers\ACPI.sys
13:29:35.0168 2228 ACPI - ok
13:29:35.0234 2228 AcpiPmi (1efbc664abff416d1d07db115dcb264f) C:\Windows\system32\drivers\acpipmi.sys
13:29:35.0303 2228 AcpiPmi - ok
13:29:35.0393 2228 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\Windows\system32\DRIVERS\adp94xx.sys
13:29:35.0449 2228 adp94xx - ok
13:29:35.0492 2228 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\Windows\system32\DRIVERS\adpahci.sys
13:29:35.0539 2228 adpahci - ok
13:29:35.0572 2228 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\Windows\system32\DRIVERS\adpu320.sys
13:29:35.0576 2228 adpu320 - ok
13:29:35.0647 2228 AFD (9ebbba55060f786f0fcaa3893bfa2806) C:\Windows\system32\drivers\afd.sys
13:29:35.0734 2228 AFD - ok
13:29:35.0771 2228 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\Windows\system32\drivers\agp440.sys
13:29:35.0786 2228 agp440 - ok
13:29:35.0846 2228 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\Windows\system32\DRIVERS\djsvs.sys
13:29:35.0849 2228 aic78xx - ok
13:29:35.0950 2228 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\Windows\system32\drivers\aliide.sys
13:29:36.0005 2228 aliide - ok
13:29:36.0071 2228 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\Windows\system32\drivers\amdagp.sys
13:29:36.0111 2228 amdagp - ok
13:29:36.0139 2228 amdide (cd5914170297126b6266860198d1d4f0) C:\Windows\system32\drivers\amdide.sys
13:29:36.0170 2228 amdide - ok
13:29:36.0244 2228 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\Windows\system32\DRIVERS\amdk8.sys
13:29:36.0343 2228 AmdK8 - ok
13:29:36.0404 2228 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\Windows\system32\DRIVERS\amdppm.sys
13:29:36.0458 2228 AmdPPM - ok
13:29:36.0529 2228 amdsata (d320bf87125326f996d4904fe24300fc) C:\Windows\system32\drivers\amdsata.sys
13:29:36.0532 2228 amdsata - ok
13:29:36.0597 2228 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\Windows\system32\DRIVERS\amdsbs.sys
13:29:36.0602 2228 amdsbs - ok
13:29:36.0634 2228 amdxata (46387fb17b086d16dea267d5be23a2f2) C:\Windows\system32\drivers\amdxata.sys
13:29:36.0673 2228 amdxata - ok
13:29:36.0731 2228 AppID (aea177f783e20150ace5383ee368da19) C:\Windows\system32\drivers\appid.sys
13:29:36.0746 2228 AppID - ok
13:29:36.0914 2228 arc (2932004f49677bd84dbc72edb754ffb3) C:\Windows\system32\DRIVERS\arc.sys
13:29:36.0940 2228 arc - ok
13:29:36.0985 2228 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\Windows\system32\DRIVERS\arcsas.sys
13:29:37.0011 2228 arcsas - ok
13:29:37.0060 2228 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\Windows\system32\DRIVERS\asyncmac.sys
13:29:37.0082 2228 AsyncMac - ok
13:29:37.0133 2228 atapi (338c86357871c167a96ab976519bf59e) C:\Windows\system32\drivers\atapi.sys
13:29:37.0157 2228 atapi - ok
13:29:37.0245 2228 athr (b01751cc563aecac09bbe36aaa21fbef) C:\Windows\system32\DRIVERS\athr.sys
13:29:37.0480 2228 athr - ok
13:29:37.0640 2228 AVGIDSDriver (b9acb889ba1e0561868c025f95d63e25) C:\Windows\system32\DRIVERS\AVGIDSDriver.Sys
13:29:37.0652 2228 AVGIDSDriver - ok
13:29:37.0755 2228 AVGIDSEH (13256fc72fa5b3f6d6e8c5957e579b7c) C:\Windows\system32\DRIVERS\AVGIDSEH.Sys
13:29:37.0814 2228 AVGIDSEH - ok
13:29:37.0848 2228 AVGIDSFilter (fa0685cc51de5cfd804e7deaa6488e0e) C:\Windows\system32\DRIVERS\AVGIDSFilter.Sys
13:29:37.0872 2228 AVGIDSFilter - ok
13:29:37.0932 2228 AVGIDSShim (f788b51100d0f40ea176798cce954a1a) C:\Windows\system32\DRIVERS\AVGIDSShim.Sys
13:29:37.0951 2228 AVGIDSShim - ok
13:29:38.0003 2228 Avgldx86 (4e796d3d2c3182b13b3e3b5a2ad4ef0a) C:\Windows\system32\DRIVERS\avgldx86.sys
13:29:38.0036 2228 Avgldx86 - ok
13:29:38.0075 2228 Avgmfx86 (5639de66b37d02bd22df4cf3155fba60) C:\Windows\system32\DRIVERS\avgmfx86.sys
13:29:38.0096 2228 Avgmfx86 - ok
13:29:38.0131 2228 Avgrkx86 (d1baf652eda0ae70896276a1fb32c2d4) C:\Windows\system32\DRIVERS\avgrkx86.sys
13:29:38.0133 2228 Avgrkx86 - ok
13:29:38.0167 2228 Avgtdix (aaf0ebcad95f2164cffb544e00392498) C:\Windows\system32\DRIVERS\avgtdix.sys
13:29:38.0196 2228 Avgtdix - ok
13:29:38.0283 2228 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\Windows\system32\DRIVERS\bxvbdx.sys
13:29:38.0336 2228 b06bdrv - ok
13:29:38.0407 2228 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\Windows\system32\DRIVERS\b57nd60x.sys
13:29:38.0451 2228 b57nd60x - ok
13:29:38.0525 2228 Beep (505506526a9d467307b3c393dedaf858) C:\Windows\system32\drivers\Beep.sys
13:29:38.0572 2228 Beep - ok
13:29:38.0631 2228 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\Windows\system32\DRIVERS\blbdrive.sys
13:29:38.0672 2228 blbdrive - ok
13:29:38.0743 2228 bowser (8f2da3028d5fcbd1a060a3de64cd6506) C:\Windows\system32\DRIVERS\bowser.sys
13:29:38.0836 2228 bowser - ok
13:29:38.0877 2228 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\DRIVERS\BrFiltLo.sys
13:29:38.0919 2228 BrFiltLo - ok
13:29:38.0939 2228 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\DRIVERS\BrFiltUp.sys
13:29:38.0963 2228 BrFiltUp - ok
13:29:39.0011 2228 Brserid (845b8ce732e67f3b4133164868c666ea) C:\Windows\System32\Drivers\Brserid.sys
13:29:39.0038 2228 Brserid - ok
13:29:39.0056 2228 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\System32\Drivers\BrSerWdm.sys
13:29:39.0059 2228 BrSerWdm - ok
13:29:39.0095 2228 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\System32\Drivers\BrUsbMdm.sys
13:29:39.0098 2228 BrUsbMdm - ok
13:29:39.0116 2228 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\System32\Drivers\BrUsbSer.sys
13:29:39.0193 2228 BrUsbSer - ok
13:29:39.0225 2228 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\Windows\system32\DRIVERS\bthmodem.sys
13:29:39.0248 2228 BTHMODEM - ok
13:29:39.0330 2228 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\Windows\system32\DRIVERS\cdfs.sys
13:29:39.0382 2228 cdfs - ok
13:29:39.0449 2228 cdrom (be167ed0fdb9c1fa1133953c18d5a6c9) C:\Windows\system32\drivers\cdrom.sys
13:29:39.0564 2228 cdrom - ok
13:29:39.0634 2228 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\Windows\system32\DRIVERS\circlass.sys
13:29:39.0637 2228 circlass - ok
13:29:39.0702 2228 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\Windows\system32\CLFS.sys
13:29:39.0707 2228 CLFS - ok
13:29:39.0775 2228 CmBatt (dea805815e587dad1dd2c502220b5616) C:\Windows\system32\DRIVERS\CmBatt.sys
13:29:39.0816 2228 CmBatt - ok
13:29:39.0867 2228 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\Windows\system32\drivers\cmdide.sys
13:29:39.0869 2228 cmdide - ok
13:29:39.0914 2228 CNG (1b675691ed940766149c93e8f4488d68) C:\Windows\system32\Drivers\cng.sys
13:29:39.0921 2228 CNG - ok
13:29:39.0996 2228 CnxtHdAudService (720a32c2d7be2f21c1213a2ec9c16cdd) C:\Windows\system32\drivers\CHDRT32.sys
13:29:40.0082 2228 CnxtHdAudService - ok
13:29:40.0147 2228 Compbatt (a6023d3823c37043986713f118a89bee) C:\Windows\system32\DRIVERS\compbatt.sys
13:29:40.0150 2228 Compbatt - ok
13:29:40.0203 2228 CompositeBus (cbe8c58a8579cfe5fccf809e6f114e89) C:\Windows\system32\drivers\CompositeBus.sys
13:29:40.0238 2228 CompositeBus - ok
13:29:40.0295 2228 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\Windows\system32\DRIVERS\crcdisk.sys
13:29:40.0298 2228 crcdisk - ok
13:29:40.0368 2228 CSC (3c2177a897b4ca2788c6fb0c3fd81d4b) C:\Windows\system32\drivers\csc.sys
13:29:40.0421 2228 CSC - ok
13:29:40.0490 2228 DfsC (f024449c97ec1e464aaffda18593db88) C:\Windows\system32\Drivers\dfsc.sys
13:29:40.0515 2228 DfsC - ok
13:29:40.0566 2228 discache (1a050b0274bfb3890703d490f330c0da) C:\Windows\system32\drivers\discache.sys
13:29:40.0589 2228 discache - ok
13:29:40.0637 2228 Disk (565003f326f99802e68ca78f2a68e9ff) C:\Windows\system32\DRIVERS\disk.sys
13:29:40.0663 2228 Disk - ok
13:29:40.0734 2228 DKbFltr (c701324c9e0c25dd9d60311bd87fbc84) C:\Windows\system32\DRIVERS\DKbFltr.sys
13:29:40.0749 2228 DKbFltr - ok
13:29:40.0805 2228 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\Windows\system32\drivers\drmkaud.sys
13:29:40.0808 2228 drmkaud - ok
13:29:40.0872 2228 DXGKrnl (23f5d28378a160352ba8f817bd8c71cb) C:\Windows\System32\drivers\dxgkrnl.sys
13:29:40.0982 2228 DXGKrnl - ok
13:29:41.0124 2228 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\Windows\system32\DRIVERS\evbdx.sys
13:29:41.0283 2228 ebdrv - ok
13:29:41.0420 2228 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\Windows\system32\DRIVERS\elxstor.sys
13:29:41.0456 2228 elxstor - ok
13:29:41.0544 2228 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\Windows\system32\drivers\errdev.sys
13:29:41.0570 2228 ErrDev - ok
13:29:41.0656 2228 exfat (2dc9108d74081149cc8b651d3a26207f) C:\Windows\system32\drivers\exfat.sys
13:29:41.0688 2228 exfat - ok
13:29:41.0723 2228 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\Windows\system32\drivers\fastfat.sys
13:29:41.0778 2228 fastfat - ok
13:29:41.0830 2228 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\Windows\system32\DRIVERS\fdc.sys
13:29:41.0855 2228 fdc - ok
13:29:41.0905 2228 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\Windows\system32\drivers\fileinfo.sys
13:29:41.0910 2228 FileInfo - ok
13:29:41.0940 2228 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\Windows\system32\drivers\filetrace.sys
13:29:41.0979 2228 Filetrace - ok
13:29:42.0013 2228 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\Windows\system32\DRIVERS\flpydisk.sys
13:29:42.0032 2228 flpydisk - ok
13:29:42.0081 2228 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\Windows\system32\drivers\fltmgr.sys
13:29:42.0088 2228 FltMgr - ok
13:29:42.0135 2228 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\Windows\system32\drivers\FsDepends.sys
13:29:42.0160 2228 FsDepends - ok
13:29:42.0248 2228 fssfltr (17829180deebf703ec7f445ac3abea99) C:\Windows\system32\DRIVERS\fssfltr.sys
13:29:42.0317 2228 fssfltr - ok
13:29:42.0376 2228 Fs_Rec (a574b4360e438977038aae4bf60d79a2) C:\Windows\system32\drivers\Fs_Rec.sys
13:29:42.0400 2228 Fs_Rec - ok
13:29:42.0463 2228 fvevol (8a73e79089b282100b9393b644cb853b) C:\Windows\system32\DRIVERS\fvevol.sys
13:29:42.0485 2228 fvevol - ok
13:29:42.0526 2228 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\Windows\system32\DRIVERS\gagp30kx.sys
13:29:42.0543 2228 gagp30kx - ok
13:29:42.0641 2228 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\Windows\system32\drivers\hcw85cir.sys
13:29:42.0707 2228 hcw85cir - ok
13:29:42.0767 2228 HdAudAddService (a5ef29d5315111c80a5c1abad14c8972) C:\Windows\system32\drivers\HdAudio.sys
13:29:42.0773 2228 HdAudAddService - ok
13:29:42.0806 2228 HDAudBus (9036377b8a6c15dc2eec53e489d159b5) C:\Windows\system32\drivers\HDAudBus.sys
13:29:42.0810 2228 HDAudBus - ok
13:29:42.0857 2228 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\Windows\system32\DRIVERS\HidBatt.sys
13:29:42.0884 2228 HidBatt - ok
13:29:42.0915 2228 HidBth (89448f40e6df260c206a193a4683ba78) C:\Windows\system32\DRIVERS\hidbth.sys
13:29:42.0920 2228 HidBth - ok
13:29:42.0963 2228 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\Windows\system32\DRIVERS\hidir.sys
13:29:42.0981 2228 HidIr - ok
13:29:43.0049 2228 HidUsb (10c19f8290891af023eaec0832e1eb4d) C:\Windows\system32\drivers\hidusb.sys
13:29:43.0077 2228 HidUsb - ok
13:29:43.0156 2228 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\Windows\system32\drivers\HpSAMD.sys
13:29:43.0159 2228 HpSAMD - ok
13:29:43.0206 2228 HTTP (871917b07a141bff43d76d8844d48106) C:\Windows\system32\drivers\HTTP.sys
13:29:43.0222 2228 HTTP - ok
13:29:43.0261 2228 hwpolicy (0c4e035c7f105f1299258c90886c64c5) C:\Windows\system32\drivers\hwpolicy.sys
13:29:43.0277 2228 hwpolicy - ok
13:29:43.0333 2228 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\Windows\system32\drivers\i8042prt.sys
13:29:43.0345 2228 i8042prt - ok
13:29:43.0446 2228 iaStor (d483687eace0c065ee772481a96e05f5) C:\Windows\system32\DRIVERS\iaStor.sys
13:29:43.0448 2228 iaStor - ok
13:29:43.0504 2228 iaStorV (5cd5f9a5444e6cdcb0ac89bd62d8b76e) C:\Windows\system32\drivers\iaStorV.sys
13:29:43.0533 2228 iaStorV - ok
13:29:43.0785 2228 igfx (8266ae06df974e5ba047b3e9e9e70b3f) C:\Windows\system32\DRIVERS\igdkmd32.sys
13:29:44.0483 2228 igfx - ok
13:29:44.0611 2228 iirsp (4173ff5708f3236cf25195fecd742915) C:\Windows\system32\DRIVERS\iirsp.sys
13:29:44.0614 2228 iirsp - ok
13:29:44.0701 2228 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\Windows\system32\drivers\intelide.sys
13:29:44.0703 2228 intelide - ok
13:29:44.0748 2228 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\Windows\system32\DRIVERS\intelppm.sys
13:29:44.0751 2228 intelppm - ok
13:29:44.0793 2228 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\Windows\system32\DRIVERS\ipfltdrv.sys
13:29:44.0862 2228 IpFilterDriver - ok
13:29:44.0926 2228 IPMIDRV (4bd7134618c1d2a27466a099062547bf) C:\Windows\system32\drivers\IPMIDrv.sys
13:29:44.0929 2228 IPMIDRV - ok
13:29:44.0972 2228 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\Windows\system32\drivers\ipnat.sys
13:29:45.0030 2228 IPNAT - ok
13:29:45.0069 2228 IRENUM (42996cff20a3084a56017b7902307e9f) C:\Windows\system32\drivers\irenum.sys
13:29:45.0116 2228 IRENUM - ok
13:29:45.0161 2228 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\Windows\system32\drivers\isapnp.sys
13:29:45.0220 2228 isapnp - ok
13:29:45.0288 2228 iScsiPrt (cb7a9abb12b8415bce5d74994c7ba3ae) C:\Windows\system32\drivers\msiscsi.sys
13:29:45.0314 2228 iScsiPrt - ok
13:29:45.0369 2228 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\Windows\system32\drivers\kbdclass.sys
13:29:45.0372 2228 kbdclass - ok
13:29:45.0435 2228 kbdhid (9e3ced91863e6ee98c24794d05e27a71) C:\Windows\system32\drivers\kbdhid.sys
13:29:45.0468 2228 kbdhid - ok
13:29:45.0525 2228 KSecDD (412cea1aa78cc02a447f5c9e62b32ff1) C:\Windows\system32\Drivers\ksecdd.sys
13:29:45.0548 2228 KSecDD - ok
13:29:45.0590 2228 KSecPkg (26c046977e85b95036453d7b88ba1820) C:\Windows\system32\Drivers\ksecpkg.sys
13:29:45.0594 2228 KSecPkg - ok
13:29:45.0656 2228 L1C (a158cea8644b8a5c1ec0e9a81b70f65a) C:\Windows\system32\DRIVERS\L1C62x86.sys
13:29:45.0722 2228 L1C - ok
13:29:45.0808 2228 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\Windows\system32\DRIVERS\lltdio.sys
13:29:45.0821 2228 lltdio - ok
13:29:45.0879 2228 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\Windows\system32\DRIVERS\lsi_fc.sys
13:29:45.0906 2228 LSI_FC - ok
13:29:45.0948 2228 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\Windows\system32\DRIVERS\lsi_sas.sys
13:29:45.0980 2228 LSI_SAS - ok
13:29:46.0016 2228 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\Windows\system32\DRIVERS\lsi_sas2.sys
13:29:46.0037 2228 LSI_SAS2 - ok
13:29:46.0071 2228 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\Windows\system32\DRIVERS\lsi_scsi.sys
13:29:46.0074 2228 LSI_SCSI - ok
13:29:46.0119 2228 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\Windows\system32\drivers\luafv.sys
13:29:46.0122 2228 luafv - ok
13:29:46.0164 2228 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\Windows\system32\DRIVERS\megasas.sys
13:29:46.0166 2228 megasas - ok
13:29:46.0204 2228 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\Windows\system32\DRIVERS\MegaSR.sys
13:29:46.0250 2228 MegaSR - ok
13:29:46.0290 2228 Modem (f001861e5700ee84e2d4e52c712f4964) C:\Windows\system32\drivers\modem.sys
13:29:46.0325 2228 Modem - ok
13:29:46.0371 2228 monitor (79d10964de86b292320e9dfe02282a23) C:\Windows\system32\DRIVERS\monitor.sys
13:29:46.0373 2228 monitor - ok
13:29:46.0428 2228 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\Windows\system32\drivers\mouclass.sys
13:29:46.0433 2228 mouclass - ok
13:29:46.0487 2228 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\Windows\system32\DRIVERS\mouhid.sys
13:29:46.0489 2228 mouhid - ok
13:29:46.0560 2228 mountmgr (fc8771f45ecccfd89684e38842539b9b) C:\Windows\system32\drivers\mountmgr.sys
13:29:46.0563 2228 mountmgr - ok
13:29:46.0636 2228 MpFilter (fee0baded54222e9f1dae9541212aab1) C:\Windows\system32\DRIVERS\MpFilter.sys
13:29:46.0660 2228 MpFilter - ok
13:29:46.0741 2228 mpio (2d699fb6e89ce0d8da14ecc03b3edfe0) C:\Windows\system32\drivers\mpio.sys
13:29:46.0745 2228 mpio - ok
13:29:46.0818 2228 MpKsl010c2552 - ok
13:29:46.0836 2228 MpKsl015bfbe2 - ok
13:29:46.0855 2228 MpKsl016bbdd6 - ok
13:29:46.0882 2228 MpKsl018a60bb - ok
13:29:46.0897 2228 MpKsl0215e8a3 - ok
13:29:46.0922 2228 MpKsl024838e8 - ok
13:29:46.0945 2228 MpKsl02d6a689 - ok
13:29:46.0957 2228 MpKsl03383908 - ok
13:29:46.0975 2228 MpKsl0375b1ed - ok
13:29:46.0989 2228 MpKsl038c1141 - ok
13:29:47.0002 2228 MpKsl03a23001 - ok
13:29:47.0015 2228 MpKsl03af8be6 - ok
13:29:47.0029 2228 MpKsl044757d7 - ok
13:29:47.0043 2228 MpKsl06a5a43e - ok
13:29:47.0055 2228 MpKsl0711f60a - ok
13:29:47.0078 2228 MpKsl07c5b801 - ok
13:29:47.0091 2228 MpKsl08c64942 - ok
13:29:47.0105 2228 MpKsl08d50a1e - ok
13:29:47.0118 2228 MpKsl09188bca - ok
13:29:47.0132 2228 MpKsl09f06484 - ok
13:29:47.0168 2228 MpKsl0a12c829 - ok
13:29:47.0195 2228 MpKsl0a2ecf03 - ok
13:29:47.0219 2228 MpKsl0acd0c53 - ok
13:29:47.0234 2228 MpKsl0af62062 - ok
13:29:47.0278 2228 MpKsl0b597f63 - ok
13:29:47.0340 2228 MpKsl0bbdeb60 - ok
13:29:47.0357 2228 MpKsl0c4fd072 - ok
13:29:47.0370 2228 MpKsl0ca19fbf - ok
13:29:47.0408 2228 MpKsl0dc8e52f - ok
13:29:47.0420 2228 MpKsl0e3a0f11 - ok
13:29:47.0433 2228 MpKsl0f730407 - ok
13:29:47.0452 2228 MpKsl114d340c - ok
13:29:47.0479 2228 MpKsl11735416 - ok
13:29:47.0493 2228 MpKsl1190f774 - ok
13:29:47.0506 2228 MpKsl11be4c63 - ok
13:29:47.0520 2228 MpKsl11c9e8e2 - ok
13:29:47.0538 2228 MpKsl125bb1f6 - ok
13:29:47.0550 2228 MpKsl12bdb909 - ok
13:29:47.0564 2228 MpKsl147f0532 - ok
13:29:47.0578 2228 MpKsl163d30c7 - ok
13:29:47.0601 2228 MpKsl166f45d6 - ok
13:29:47.0614 2228 MpKsl166f59b9 - ok
13:29:47.0628 2228 MpKsl16a7315b - ok
13:29:47.0642 2228 MpKsl16dbb553 - ok
13:29:47.0655 2228 MpKsl16e4f3cd - ok
13:29:47.0673 2228 MpKsl17833c05 - ok
13:29:47.0692 2228 MpKsl17863798 - ok
13:29:47.0710 2228 MpKsl182276aa - ok
13:29:47.0756 2228 MpKsl1901f61b - ok
13:29:47.0768 2228 MpKsl1a32742b - ok
13:29:47.0797 2228 MpKsl1a34bdc3 - ok
13:29:47.0824 2228 MpKsl1a7b3c4f - ok
13:29:47.0836 2228 MpKsl1b5098b7 - ok
13:29:47.0858 2228 MpKsl1c5120cd - ok
13:29:47.0870 2228 MpKsl1cb32a43 - ok
13:29:47.0884 2228 MpKsl1cf699a4 - ok
13:29:47.0905 2228 MpKsl1d3f3622 - ok
13:29:47.0930 2228 MpKsl1d62f24c - ok
13:29:47.0944 2228 MpKsl1d675da6 - ok
13:29:47.0957 2228 MpKsl1db98e62 - ok
13:29:47.0975 2228 MpKsl1fa5ee0f - ok
13:29:47.0988 2228 MpKsl1fe491d4 - ok
13:29:48.0001 2228 MpKsl1ffa14cb - ok
13:29:48.0014 2228 MpKsl20f80256 - ok
13:29:48.0028 2228 MpKsl219086dd - ok
13:29:48.0041 2228 MpKsl21a8a5f8 - ok
13:29:48.0066 2228 MpKsl24ad5546 - ok
13:29:48.0078 2228 MpKsl25caa189 - ok
13:29:48.0091 2228 MpKsl2652c748 - ok
13:29:48.0112 2228 MpKsl26e11d15 - ok
13:29:48.0138 2228 MpKsl271c5e77 - ok
13:29:48.0165 2228 MpKsl2782dec1 - ok
13:29:48.0180 2228 MpKsl28182fd9 - ok
13:29:48.0194 2228 MpKsl28235e16 - ok
13:29:48.0214 2228 MpKsl2952b6d3 - ok
13:29:48.0232 2228 MpKsl2952e7cd - ok
13:29:48.0246 2228 MpKsl296407d8 - ok
13:29:48.0307 2228 MpKsl2a761022 - ok
13:29:48.0326 2228 MpKsl2a7fd335 - ok
13:29:48.0339 2228 MpKsl2acce2f0 - ok
13:29:48.0353 2228 MpKsl2aef1ea8 - ok
13:29:48.0402 2228 MpKsl2b5b1013 - ok
13:29:48.0416 2228 MpKsl2bb35630 - ok
13:29:48.0439 2228 MpKsl2bf3190f - ok
13:29:48.0452 2228 MpKsl2c38b928 - ok
13:29:48.0466 2228 MpKsl2c855944 - ok
13:29:48.0512 2228 MpKsl2d4f8752 - ok
13:29:48.0533 2228 MpKsl2db8580d - ok
13:29:48.0564 2228 MpKsl2db9d6e1 - ok
13:29:48.0577 2228 MpKsl2e92c3c9 - ok
13:29:48.0617 2228 MpKsl2ecb06c2 - ok
13:29:48.0631 2228 MpKsl2efcba62 - ok
13:29:48.0658 2228 MpKsl2f42d346 - ok
13:29:48.0672 2228 MpKsl3000b788 - ok
13:29:48.0684 2228 MpKsl3029df55 - ok
13:29:48.0698 2228 MpKsl30e94c4c - ok
13:29:48.0712 2228 MpKsl314e0ef7 - ok
13:29:48.0726 2228 MpKsl31c32368 - ok
13:29:48.0744 2228 MpKsl3333d88b - ok
13:29:48.0759 2228 MpKsl34302250 - ok
13:29:48.0773 2228 MpKsl349fd179 - ok
13:29:48.0787 2228 MpKsl34ab46f8 - ok
13:29:48.0800 2228 MpKsl3638abb3 - ok
13:29:48.0813 2228 MpKsl37230d8b - ok
13:29:48.0827 2228 MpKsl37261573 - ok
13:29:48.0841 2228 MpKsl37e804bf - ok
13:29:48.0854 2228 MpKsl38cc90bb - ok
13:29:48.0868 2228 MpKsl390b60ab - ok
13:29:48.0882 2228 MpKsl39a0198e - ok
13:29:48.0896 2228 MpKsl39f7a698 - ok
13:29:48.0909 2228 MpKsl3b09f0fa - ok
13:29:48.0922 2228 MpKsl3b35e985 - ok
13:29:48.0936 2228 MpKsl3c937bff - ok
13:29:48.0950 2228 MpKsl3dc34458 - ok
13:29:48.0963 2228 MpKsl3e3e3468 - ok
13:29:48.0977 2228 MpKsl3e4331ad - ok
13:29:48.0992 2228 MpKsl3e7c61ba - ok
13:29:49.0010 2228 MpKsl3e87a211 - ok
13:29:49.0033 2228 MpKsl3eb28919 - ok
13:29:49.0046 2228 MpKsl3f220889 - ok
13:29:49.0077 2228 MpKsl3f97e462 - ok
13:29:49.0092 2228 MpKsl3fe1437c - ok
13:29:49.0105 2228 MpKsl3fff1558 - ok
13:29:49.0120 2228 MpKsl40a6d5b8 - ok
13:29:49.0132 2228 MpKsl40fa12c3 - ok
13:29:49.0146 2228 MpKsl41670aa5 - ok
13:29:49.0160 2228 MpKsl41e84b21 - ok
13:29:49.0188 2228 MpKsl42383495 - ok
13:29:49.0201 2228 MpKsl42fc0d03 - ok
13:29:49.0215 2228 MpKsl4355c956 - ok
13:29:49.0227 2228 MpKsl43ad0a59 - ok
13:29:49.0256 2228 MpKsl44054468 - ok
13:29:49.0274 2228 MpKsl444be1fe - ok
13:29:49.0299 2228 MpKsl44f640d5 - ok
13:29:49.0315 2228 MpKsl45176d73 - ok
13:29:49.0332 2228 MpKsl45639a55 - ok
13:29:49.0351 2228 MpKsl45cad674 - ok
13:29:49.0364 2228 MpKsl4673d165 - ok
13:29:49.0378 2228 MpKsl479a32aa - ok
13:29:49.0392 2228 MpKsl47ac202a - ok
13:29:49.0408 2228 MpKsl48ad6758 - ok
13:29:49.0421 2228 MpKsl49da027f - ok
13:29:49.0452 2228 MpKsl4c1d1d69 - ok
13:29:49.0464 2228 MpKsl4cb95223 - ok
13:29:49.0477 2228 MpKsl4d08f282 - ok
13:29:49.0491 2228 MpKsl4d351570 - ok
13:29:49.0509 2228 MpKsl4d743858 - ok
13:29:49.0529 2228 MpKsl4d793690 - ok
13:29:49.0543 2228 MpKsl4ddfd1c6 - ok
13:29:49.0556 2228 MpKsl4e9b03b1 - ok
13:29:49.0570 2228 MpKsl4f806507 - ok
13:29:49.0596 2228 MpKsl4fcfb533 - ok
13:29:49.0608 2228 MpKsl50170fe7 - ok
13:29:49.0623 2228 MpKsl50515b7a - ok
13:29:49.0637 2228 MpKsl527cd1a8 - ok
13:29:49.0651 2228 MpKsl5318564a - ok
13:29:49.0671 2228 MpKsl5387a65d - ok
13:29:49.0684 2228 MpKsl53ef0725 - ok
13:29:49.0698 2228 MpKsl542806c7 - ok
13:29:49.0711 2228 MpKsl54cd2b91 - ok
13:29:49.0724 2228 MpKsl56af7bb9 - ok
13:29:49.0738 2228 MpKsl56c8732f - ok
13:29:49.0752 2228 MpKsl576238a1 - ok
13:29:49.0777 2228 MpKsl579818cd - ok
13:29:49.0795 2228 MpKsl58258b51 - ok
13:29:49.0809 2228 MpKsl5833b9b8 - ok
13:29:49.0824 2228 MpKsl58f1d997 - ok
13:29:49.0836 2228 MpKsl590ff5ad - ok
13:29:49.0850 2228 MpKsl59d78fc4 - ok
13:29:49.0864 2228 MpKsl5a610cc9 - ok
13:29:49.0890 2228 MpKsl5a902d1b - ok
13:29:49.0903 2228 MpKsl5b88f9f9 - ok
13:29:49.0916 2228 MpKsl5bceeb5e - ok
13:29:49.0930 2228 MpKsl5dffeded - ok
13:29:49.0944 2228 MpKsl5e4cd54f - ok
13:29:49.0958 2228 MpKsl5e537f35 - ok
13:29:49.0977 2228 MpKsl5f2dd1a0 - ok
13:29:50.0003 2228 MpKsl61defd46 - ok
13:29:50.0017 2228 MpKsl62a5fab5 - ok
13:29:50.0041 2228 MpKsl62c3b868 - ok
13:29:50.0058 2228 MpKsl63002c7c - ok
13:29:50.0073 2228 MpKsl637b2efc - ok
13:29:50.0086 2228 MpKsl6522b452 - ok
13:29:50.0100 2228 MpKsl65c0b6fb - ok
13:29:50.0114 2228 MpKsl65d43d1e - ok
13:29:50.0128 2228 MpKsl668377fd - ok
13:29:50.0140 2228 MpKsl66a766c0 - ok
13:29:50.0154 2228 MpKsl66f339e3 - ok
13:29:50.0168 2228 MpKsl6715d367 - ok
13:29:50.0193 2228 MpKsl68dedb70 - ok
13:29:50.0213 2228 MpKsl6b92aac3 - ok
13:29:50.0228 2228 MpKsl6bb3337b - ok
13:29:50.0257 2228 MpKsl6c75ca6f - ok
13:29:50.0277 2228 MpKsl6d83e49e - ok
13:29:50.0343 2228 MpKsl6daf5110 (5f53edfead46fa7adb78eee9ecce8fdf) c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{46887EEC-534C-4A38-ADE9-B6E3AF0FCD60}\MpKsl6daf5110.sys
13:29:50.0396 2228 MpKsl6daf5110 - ok
13:29:50.0417 2228 MpKsl6db4a5e4 - ok
13:29:50.0430 2228 MpKsl6dd444f1 - ok
13:29:50.0454 2228 MpKsl6df9f385 - ok
13:29:50.0468 2228 MpKsl6ed1d5a3 - ok
13:29:50.0492 2228 MpKsl6f1c4fa1 - ok
13:29:50.0504 2228 MpKsl6f8095ff - ok
13:29:50.0518 2228 MpKsl709be310 - ok
13:29:50.0537 2228 MpKsl70e99752 - ok
13:29:50.0554 2228 MpKsl710238fe - ok
13:29:50.0572 2228 MpKsl7231bca3 - ok
13:29:50.0612 2228 MpKsl7282b34e - ok
13:29:50.0626 2228 MpKsl72eaf2f4 - ok
13:29:50.0649 2228 MpKsl72f5cd60 - ok
13:29:50.0662 2228 MpKsl73146ace - ok
13:29:50.0676 2228 MpKsl73cf54e7 - ok
13:29:50.0690 2228 MpKsl73f42d0f - ok
13:29:50.0704 2228 MpKsl7477b53c - ok
13:29:50.0716 2228 MpKsl74b7473b - ok
13:29:50.0730 2228 MpKsl74d89094 - ok
13:29:50.0744 2228 MpKsl750a7dc1 - ok
13:29:50.0757 2228 MpKsl7576819c - ok
13:29:50.0775 2228 MpKsl75f434ee - ok
13:29:50.0789 2228 MpKsl766ccf17 - ok
13:29:50.0810 2228 MpKsl76cb581c - ok
13:29:50.0830 2228 MpKsl77421084 - ok
13:29:50.0843 2228 MpKsl777d6cad - ok
13:29:50.0857 2228 MpKsl7838d304 - ok
13:29:50.0871 2228 MpKsl78496a80 - ok
13:29:50.0885 2228 MpKsl7855dfea - ok
13:29:50.0901 2228 MpKsl7872606d - ok
13:29:50.0929 2228 MpKsl79f2ab7f - ok
13:29:50.0943 2228 MpKsl7a6057d1 - ok
13:29:50.0966 2228 MpKsl7ab1d97b - ok
13:29:50.0980 2228 MpKsl7b396c20 - ok
13:29:50.0994 2228 MpKsl7b416767 - ok
13:29:51.0008 2228 MpKsl7bec3b4a - ok
13:29:51.0023 2228 MpKsl7cb94542 - ok
13:29:51.0038 2228 MpKsl7d0c74ca - ok
13:29:51.0050 2228 MpKsl7d8b80b8 - ok
13:29:51.0064 2228 MpKsl7d95ec6c - ok
13:29:51.0082 2228 MpKsl7f773987 - ok
13:29:51.0096 2228 MpKsl7fafeeb4 - ok
13:29:51.0111 2228 MpKsl805ef2df - ok
13:29:51.0124 2228 MpKsl80cd4816 - ok
13:29:51.0138 2228 MpKsl81811b4f - ok
13:29:51.0152 2228 MpKsl8194f134 - ok
13:29:51.0166 2228 MpKsl81f05e9c - ok
13:29:51.0179 2228 MpKsl82456a6e - ok
13:29:51.0194 2228 MpKsl825bd9f0 - ok
13:29:51.0208 2228 MpKsl8347a4a9 - ok
13:29:51.0223 2228 MpKsl8375cc45 - ok
13:29:51.0237 2228 MpKsl840db5e1 - ok
13:29:51.0284 2228 MpKsl844fe957 - ok
13:29:51.0299 2228 MpKsl8509046f - ok
13:29:51.0313 2228 MpKsl853bf8fa - ok
13:29:51.0327 2228 MpKsl857ec216 - ok
13:29:51.0347 2228 MpKsl86289a02 - ok
13:29:51.0361 2228 MpKsl8704077b - ok
13:29:51.0375 2228 MpKsl874a6c9e - ok
13:29:51.0390 2228 MpKsl874bff90 - ok
13:29:51.0403 2228 MpKsl8768db4b - ok
13:29:51.0417 2228 MpKsl87953dc7 - ok
13:29:51.0432 2228 MpKsl880674a4 - ok
13:29:51.0446 2228 MpKsl888abb88 - ok
13:29:51.0460 2228 MpKsl88b3ae6e - ok
13:29:51.0474 2228 MpKsl88bfabc2 - ok
13:29:51.0489 2228 MpKsl88c1810d - ok
13:29:51.0503 2228 MpKsl894f0b23 - ok
13:29:51.0518 2228 MpKsl898cb1c0 - ok
13:29:51.0533 2228 MpKsl89ff4a78 - ok
13:29:51.0553 2228 MpKsl8a7cf879 - ok
13:29:51.0567 2228 MpKsl8ab86461 - ok
13:29:51.0597 2228 MpKsl8ad054a4 - ok
13:29:51.0610 2228 MpKsl8adf10a0 - ok
13:29:51.0625 2228 MpKsl8baac8fe - ok
13:29:51.0639 2228 MpKsl8c1405ce - ok
13:29:51.0653 2228 MpKsl8c79a65c - ok
13:29:51.0666 2228 MpKsl8d9365b3 - ok
13:29:51.0681 2228 MpKsl8db2b1fb - ok
13:29:51.0695 2228 MpKsl8e955347 - ok
13:29:51.0709 2228 MpKsl8ec5577a - ok
13:29:51.0722 2228 MpKsl8f19cf17 - ok
13:29:51.0736 2228 MpKsl8fcc1d17 - ok
13:29:51.0751 2228 MpKsl8fe53042 - ok
13:29:51.0765 2228 MpKsl9073cb63 - ok
13:29:51.0778 2228 MpKsl90a356b0 - ok
13:29:51.0793 2228 MpKsl912d739c - ok
13:29:51.0807 2228 MpKsl913aa63d - ok
13:29:51.0822 2228 MpKsl91a021dc - ok
13:29:51.0835 2228 MpKsl93550992 - ok
13:29:51.0855 2228 MpKsl9360a52a - ok
13:29:51.0870 2228 MpKsl9488edaa - ok
13:29:51.0883 2228 MpKsl94e4f8bd - ok
13:29:51.0898 2228 MpKsl954c460d - ok
13:29:51.0912 2228 MpKsl954cda86 - ok
13:29:51.0926 2228 MpKsl9568c4f5 - ok
13:29:51.0940 2228 MpKsl96f299de - ok
13:29:51.0960 2228 MpKsl96f9d061 - ok
13:29:51.0975 2228 MpKsl97cd837d - ok
13:29:51.0989 2228 MpKsl97e03d0b - ok
13:29:52.0003 2228 MpKsl9934261b - ok
13:29:52.0017 2228 MpKsl99dda655 - ok
13:29:52.0031 2228 MpKsl9a342c1e - ok
13:29:52.0046 2228 MpKsl9a3c7106 - ok
13:29:52.0060 2228 MpKsl9b6f84eb - ok
13:29:52.0073 2228 MpKsl9bae41c8 - ok
13:29:52.0087 2228 MpKsl9c210349 - ok
13:29:52.0102 2228 MpKsl9c575178 - ok
13:29:52.0120 2228 MpKsl9cd87357 - ok
13:29:52.0134 2228 MpKsl9d155a35 - ok
13:29:52.0149 2228 MpKsl9e466d1e - ok
13:29:52.0174 2228 MpKsl9e4e3e8f - ok
13:29:52.0189 2228 MpKsl9e6b7689 - ok
13:29:52.0201 2228 MpKsl9f4dcac5 - ok
13:29:52.0216 2228 MpKsl9fb23186 - ok
13:29:52.0250 2228 MpKsl9ff6714e - ok
13:29:52.0269 2228 MpKsla072b0dd - ok
13:29:52.0284 2228 MpKsla07d57ad - ok
13:29:52.0306 2228 MpKsla0fc17f9 - ok
13:29:52.0321 2228 MpKsla1b3f1c4 - ok
13:29:52.0335 2228 MpKsla29b6e50 - ok
13:29:52.0350 2228 MpKsla2bbcebc - ok
13:29:52.0365 2228 MpKsla3c6556f - ok
13:29:52.0383 2228 MpKsla4b5cca7 - ok
13:29:52.0397 2228 MpKsla5032ec6 - ok
13:29:52.0412 2228 MpKsla5cc64a8 - ok
13:29:52.0425 2228 MpKsla5e6eeb0 - ok
13:29:52.0439 2228 MpKsla638c8ab - ok
13:29:52.0454 2228 MpKsla6ba9de5 - ok
13:29:52.0468 2228 MpKsla7552a30 - ok
13:29:52.0482 2228 MpKsla80332c3 - ok
13:29:52.0497 2228 MpKsla9b6e498 - ok
13:29:52.0513 2228 MpKsla9ddc800 - ok
13:29:52.0528 2228 MpKsla9fc7453 - ok
13:29:52.0542 2228 MpKslaa19a608 - ok
13:29:52.0557 2228 MpKslaab71a38 - ok
13:29:52.0577 2228 MpKslabefe3a9 - ok
13:29:52.0591 2228 MpKslabf14307 - ok
13:29:52.0606 2228 MpKslae3676e4 - ok
13:29:52.0621 2228 MpKslae6e7ab4 - ok
13:29:52.0639 2228 MpKslb1798b01 - ok
13:29:52.0654 2228 MpKslb1d405d0 - ok
13:29:52.0669 2228 MpKslb2151b3f - ok
13:29:52.0682 2228 MpKslb28e0b42 - ok
13:29:52.0697 2228 MpKslb33e3318 - ok
13:29:52.0711 2228 MpKslb33f0422 - ok
13:29:52.0726 2228 MpKslb351d091 - ok
13:29:52.0740 2228 MpKslb362f72c - ok
13:29:52.0755 2228 MpKslb38d6912 - ok
13:29:52.0769 2228 MpKslb4fc3f5e - ok
13:29:52.0784 2228 MpKslb55c566e - ok
13:29:52.0799 2228 MpKslb5c02dcc - ok
13:29:52.0814 2228 MpKslb61bddbd - ok
13:29:52.0830 2228 MpKslb6c00127 - ok
13:29:52.0845 2228 MpKslb7006a2c - ok
13:29:52.0860 2228 MpKslb85d5401 - ok
13:29:52.0892 2228 MpKslb866a4a7 - ok
13:29:52.0919 2228 MpKslb87f0ee4 - ok
13:29:52.0933 2228 MpKslba834d2d - ok
13:29:52.0948 2228 MpKslbae0aaf2 - ok
13:29:52.0970 2228 MpKslbb2a4b1c - ok
13:29:52.0985 2228 MpKslbbc6ba64 - ok
13:29:53.0000 2228 MpKslbbf21667 - ok
13:29:53.0027 2228 MpKslbc609f16 - ok
13:29:53.0041 2228 MpKslbca94baf - ok
13:29:53.0056 2228 MpKslbe195d65 - ok
13:29:53.0071 2228 MpKslbe54df6c - ok
13:29:53.0085 2228 MpKslbf71dc21 - ok
13:29:53.0100 2228 MpKslbfa7e5aa - ok
13:29:53.0115 2228 MpKslc1072ff0 - ok
13:29:53.0128 2228 MpKslc171cc96 - ok
13:29:53.0148 2228 MpKslc1840fc9 - ok
13:29:53.0164 2228 MpKslc1c92391 - ok
13:29:53.0176 2228 MpKslc2ab7382 - ok
13:29:53.0191 2228 MpKslc37e1ed3 - ok
13:29:53.0217 2228 MpKslc4ac2ea1 - ok
13:29:53.0233 2228 MpKslc4adf391 - ok
13:29:53.0248 2228 MpKslc52bdf49 - ok
13:29:53.0277 2228 MpKslc5453ab0 - ok
13:29:53.0315 2228 MpKslc58c40f1 - ok
13:29:53.0333 2228 MpKslc6013440 - ok
13:29:53.0355 2228 MpKslc62aae9a - ok
13:29:53.0369 2228 MpKslc634f8e3 - ok
13:29:53.0383 2228 MpKslc658aa12 - ok
13:29:53.0404 2228 MpKslc6a5114e - ok
13:29:53.0425 2228 MpKslc71b9f49 - ok
13:29:53.0440 2228 MpKslc7341191 - ok
13:29:53.0454 2228 MpKslc83a50f5 - ok
13:29:53.0469 2228 MpKslc846111c - ok
13:29:53.0485 2228 MpKslc85ec639 - ok
13:29:53.0500 2228 MpKslca06f885 - ok
13:29:53.0513 2228 MpKslca307a87 - ok
13:29:53.0529 2228 MpKslcb0c552f - ok
13:29:53.0543 2228 MpKslcb1c1f83 - ok
13:29:53.0570 2228 MpKslcb40c284 - ok
13:29:53.0584 2228 MpKslcc14e28a - ok
13:29:53.0599 2228 MpKslcc1c87fc - ok
13:29:53.0668 2228 MpKslcd26b4fd (5f53edfead46fa7adb78eee9ecce8fdf) c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{46887EEC-534C-4A38-ADE9-B6E3AF0FCD60}\MpKslcd26b4fd.sys
13:29:53.0708 2228 MpKslcd26b4fd - ok
13:29:53.0729 2228 MpKslcd6b3aa2 - ok
13:29:53.0749 2228 MpKslcdaf90e3 - ok
13:29:53.0787 2228 MpKslce3707c4 (5f53edfead46fa7adb78eee9ecce8fdf) c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{46887EEC-534C-4A38-ADE9-B6E3AF0FCD60}\MpKslce3707c4.sys
13:29:53.0830 2228 MpKslce3707c4 - ok
13:29:53.0843 2228 MpKslce71d43b - ok
13:29:53.0858 2228 MpKslce98da34 - ok
13:29:53.0872 2228 MpKslcedea2a1 - ok
13:29:53.0887 2228 MpKslcff3e07e - ok
13:29:53.0902 2228 MpKslcff5de14 - ok
13:29:53.0937 2228 MpKsld0a08722 - ok
13:29:53.0955 2228 MpKsld284f922 - ok
13:29:53.0969 2228 MpKsld2c01de7 - ok
13:29:53.0984 2228 MpKsld3c97615 - ok
13:29:53.0999 2228 MpKsld433720f - ok
13:29:54.0013 2228 MpKsld4f61d61 - ok
13:29:54.0028 2228 MpKsld56f2705 - ok
13:29:54.0058 2228 MpKsld5967995 - ok
13:29:54.0074 2228 MpKsld5b6b1d0 - ok
13:29:54.0088 2228 MpKsld5b81ef1 - ok
13:29:54.0115 2228 MpKsld5e92893 - ok
13:29:54.0130 2228 MpKsld5fd5a0a - ok
13:29:54.0146 2228 MpKsld77714a9 - ok
13:29:54.0161 2228 MpKsld7829b81 - ok
13:29:54.0180 2228 MpKsld78802be - ok
13:29:54.0195 2228 MpKsld84792f6 - ok
13:29:54.0216 2228 MpKsld862fc8c - ok
13:29:54.0236 2228 MpKsld871a691 - ok
13:29:54.0251 2228 MpKsld94ddb6c - ok
13:29:54.0267 2228 MpKsldaf41ce8 - ok
13:29:54.0280 2228 MpKsldb6b2ca3 - ok
13:29:54.0294 2228 MpKsldba962e5 - ok
13:29:54.0318 2228 MpKsldbcb4054 - ok
13:29:54.0343 2228 MpKsldc39061c - ok
13:29:54.0364 2228 MpKsldc5335d3 - ok
13:29:54.0379 2228 MpKsldd9c861b - ok
13:29:54.0400 2228 MpKslde429d12 - ok
13:29:54.0415 2228 MpKslde507222 - ok
13:29:54.0434 2228 MpKsldedf7d93 - ok
13:29:54.0448 2228 MpKsldf4c051b - ok
13:29:54.0463 2228 MpKsle0c41377 - ok
13:29:54.0478 2228 MpKsle0f17719 - ok
13:29:54.0494 2228 MpKsle1068f9b - ok
13:29:54.0512 2228 MpKsle10a9e28 - ok
13:29:54.0527 2228 MpKsle24bddf3 - ok
13:29:54.0542 2228 MpKsle2d8916d - ok
13:29:54.0557 2228 MpKsle3c0cd2b - ok
13:29:54.0577 2228 MpKsle4f03a40 - ok
13:29:54.0592 2228 MpKsle5285248 - ok
13:29:54.0606 2228 MpKsle52b7202 - ok
13:29:54.0621 2228 MpKsle624360d - ok
13:29:54.0685 2228 MpKsle78055c4 (5f53edfead46fa7adb78eee9ecce8fdf) c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{46887EEC-534C-4A38-ADE9-B6E3AF0FCD60}\MpKsle78055c4.sys
13:29:54.0977 2228 MpKsle78055c4 - ok
13:29:55.0045 2228 MpKsle7ee0f90 - ok
13:29:55.0059 2228 MpKsle8598173 - ok
13:29:55.0074 2228 MpKsle8f99e6c - ok
13:29:55.0089 2228 MpKsle91c359b - ok
13:29:55.0164 2228 MpKsle948e510 (5f53edfead46fa7adb78eee9ecce8fdf) c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{46887EEC-534C-4A38-ADE9-B6E3AF0FCD60}\MpKsle948e510.sys
13:29:55.0166 2228 MpKsle948e510 - ok
13:29:55.0180 2228 MpKsle98a008c - ok
13:29:55.0205 2228 MpKslea8d6ba2 - ok
13:29:55.0219 2228 MpKsleae8c1ee - ok
13:29:55.0239 2228 MpKsleb21de65 - ok
13:29:55.0267 2228 MpKslec12d8cc - ok
13:29:55.0281 2228 MpKslec396f7e - ok
13:29:55.0307 2228 MpKslec95b338 - ok
13:29:55.0336 2228 MpKsled343532 - ok
13:29:55.0351 2228 MpKsleeedafb2 - ok
13:29:55.0390 2228 MpKsleef47bca (5f53edfead46fa7adb78eee9ecce8fdf) c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{46887EEC-534C-4A38-ADE9-B6E3AF0FCD60}\MpKsleef47bca.sys
13:29:55.0410 2228 MpKsleef47bca - ok
13:29:55.0423 2228 MpKslf0a44463 - ok
13:29:55.0438 2228 MpKslf0d1be9c - ok
13:29:55.0457 2228 MpKslf0ef798c - ok
13:29:55.0472 2228 MpKslf1226ba2 - ok
13:29:55.0486 2228 MpKslf168ccf7 - ok
13:29:55.0506 2228 MpKslf1df0a97 - ok
13:29:55.0521 2228 MpKslf1e9412a - ok
13:29:55.0535 2228 MpKslf24682d2 - ok
13:29:55.0552 2228 MpKslf3ad4669 - ok
13:29:55.0566 2228 MpKslf3cbae01 - ok
13:29:55.0589 2228 MpKslf5a4e72c - ok
13:29:55.0613 2228 MpKslf5b1b4e5 - ok
13:29:55.0628 2228 MpKslf5fb5cdb - ok
13:29:55.0643 2228 MpKslf707d689 - ok
13:29:55.0658 2228 MpKslf78498e6 - ok
13:29:55.0673 2228 MpKslf8378821 - ok
13:29:55.0686 2228 MpKslf84c8764 - ok
13:29:55.0702 2228 MpKslf92aaa49 - ok
13:29:55.0722 2228 MpKslf94388f0 - ok
13:29:55.0738 2228 MpKslf946a322 - ok
13:29:55.0751 2228 MpKslfa12d73d - ok
13:29:55.0781 2228 MpKslfa41d336 - ok
13:29:55.0812 2228 MpKslfa576bc8 - ok
13:29:55.0827 2228 MpKslfa5dd8d7 - ok
13:29:55.0842 2228 MpKslfa6365ee - ok
13:29:55.0857 2228 MpKslfb50ecd7 - ok
13:29:55.0871 2228 MpKslfbb83b80 - ok
13:29:55.0948 2228 MpKslfe8df3a0 (5f53edfead46fa7adb78eee9ecce8fdf) c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{46887EEC-534C-4A38-ADE9-B6E3AF0FCD60}\MpKslfe8df3a0.sys
13:29:55.0996 2228 MpKslfe8df3a0 - ok
13:29:56.0009 2228 MpKslff387eb2 - ok
13:29:56.0023 2228 MpKslff826689 - ok
13:29:56.0038 2228 MpKslffa88891 - ok
13:29:56.0053 2228 MpKslffb451a4 - ok
13:29:56.0160 2228 MpNWMon (2c3489660d4a8d514c123c3f0d67df46) C:\Windows\system32\DRIVERS\MpNWMon.sys
13:29:56.0162 2228 MpNWMon - ok
13:29:56.0238 2228 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\Windows\system32\drivers\mpsdrv.sys
13:29:56.0260 2228 mpsdrv - ok
13:29:56.0330 2228 MRxDAV (ceb46ab7c01c9f825f8cc6babc18166a) C:\Windows\system32\drivers\mrxdav.sys
13:29:56.0351 2228 MRxDAV - ok
13:29:56.0392 2228 mrxsmb (5d16c921e3671636c0eba3bbaac5fd25) C:\Windows\system32\DRIVERS\mrxsmb.sys
13:29:56.0441 2228 mrxsmb - ok
13:29:56.0481 2228 mrxsmb10 (6d17a4791aca19328c685d256349fefc) C:\Windows\system32\DRIVERS\mrxsmb10.sys
13:29:56.0542 2228 mrxsmb10 - ok
13:29:56.0578 2228 mrxsmb20 (b81f204d146000be76651a50670a5e9e) C:\Windows\system32\DRIVERS\mrxsmb20.sys
13:29:56.0631 2228 mrxsmb20 - ok
13:29:56.0689 2228 msahci (012c5f4e9349e711e11e0f19a8589f0a) C:\Windows\system32\drivers\msahci.sys
13:29:56.0692 2228 msahci - ok
13:29:56.0749 2228 msdsm (55055f8ad8be27a64c831322a780a228) C:\Windows\system32\drivers\msdsm.sys
13:29:56.0769 2228 msdsm - ok
13:29:56.0842 2228 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\Windows\system32\drivers\Msfs.sys
13:29:56.0875 2228 Msfs - ok
13:29:56.0905 2228 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\Windows\System32\drivers\mshidkmdf.sys
13:29:56.0940 2228 mshidkmdf - ok
13:29:56.0991 2228 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\Windows\system32\drivers\msisadrv.sys
13:29:56.0993 2228 msisadrv - ok
13:29:57.0060 2228 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\Windows\system32\drivers\MSKSSRV.sys
13:29:57.0108 2228 MSKSSRV - ok
13:29:57.0165 2228 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\Windows\system32\drivers\MSPCLOCK.sys
13:29:57.0193 2228 MSPCLOCK - ok
13:29:57.0230 2228 MSPQM (f456e973590d663b1073e9c463b40932) C:\Windows\system32\drivers\MSPQM.sys
13:29:57.0232 2228 MSPQM - ok
13:29:57.0279 2228 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\Windows\system32\drivers\MsRPC.sys
13:29:57.0297 2228 MsRPC - ok
13:29:57.0387 2228 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\Windows\system32\drivers\mssmbios.sys
13:29:57.0390 2228 mssmbios - ok
13:29:57.0487 2228 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\Windows\system32\drivers\MSTEE.sys
13:29:57.0514 2228 MSTEE - ok
13:29:57.0551 2228 MTConfig (33599130f44e1f34631cea241de8ac84) C:\Windows\system32\DRIVERS\MTConfig.sys
13:29:57.0590 2228 MTConfig - ok
13:29:57.0654 2228 Mup (159fad02f64e6381758c990f753bcc80) C:\Windows\system32\Drivers\mup.sys
13:29:57.0656 2228 Mup - ok
13:29:57.0744 2228 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\Windows\system32\DRIVERS\nwifi.sys
13:29:57.0774 2228 NativeWifiP - ok
13:29:57.0832 2228 NDIS (e7c54812a2aaf43316eb6930c1ffa108) C:\Windows\system32\drivers\ndis.sys
13:29:57.0852 2228 NDIS - ok
13:29:57.0932 2228 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\Windows\system32\DRIVERS\ndiscap.sys
13:29:57.0950 2228 NdisCap - ok
13:29:57.0984 2228 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\Windows\system32\DRIVERS\ndistapi.sys
13:29:57.0987 2228 NdisTapi - ok
13:29:58.0043 2228 Ndisuio (d8a65dafb3eb41cbb622745676fcd072) C:\Windows\system32\DRIVERS\ndisuio.sys
13:29:58.0046 2228 Ndisuio - ok
13:29:58.0090 2228 NdisWan (38fbe267e7e6983311179230facb1017) C:\Windows\system32\DRIVERS\ndiswan.sys
13:29:58.0150 2228 NdisWan - ok
13:29:58.0202 2228 NDProxy (a4bdc541e69674fbff1a8ff00be913f2) C:\Windows\system32\drivers\NDProxy.sys
13:29:58.0221 2228 NDProxy - ok
13:29:58.0269 2228 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\Windows\system32\DRIVERS\netbios.sys
13:29:58.0303 2228 NetBIOS - ok
13:29:58.0359 2228 NetBT (280122ddcf04b378edd1ad54d71c1e54) C:\Windows\system32\DRIVERS\netbt.sys
13:29:58.0363 2228 NetBT - ok
13:29:58.0463 2228 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\Windows\system32\DRIVERS\nfrd960.sys
13:29:58.0466 2228 nfrd960 - ok
13:29:58.0541 2228 NisDrv (7b01c6172cfd0b10116175e09200d4b4) C:\Windows\system32\DRIVERS\NisDrvWFP.sys
13:29:58.0564 2228 NisDrv - ok
13:29:58.0620 2228 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\Windows\system32\drivers\Npfs.sys
13:29:58.0641 2228 Npfs - ok
13:29:58.0688 2228 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\Windows\system32\drivers\nsiproxy.sys
13:29:58.0690 2228 nsiproxy - ok
13:29:58.0776 2228 Ntfs (81189c3d7763838e55c397759d49007a) C:\Windows\system32\drivers\Ntfs.sys
13:29:58.0862 2228 Ntfs - ok
13:29:58.0936 2228 NTIDrvr (6dcaa65f49ef3b97a5cffc0cb5de1c2f) C:\Windows\system32\drivers\NTIDrvr.sys
13:29:58.0984 2228 NTIDrvr - ok
13:29:59.0040 2228 Null (f9756a98d69098dca8945d62858a812c) C:\Windows\system32\drivers\Null.sys
13:29:59.0043 2228 Null - ok
13:29:59.0092 2228 nvraid (b3e25ee28883877076e0e1ff877d02e0) C:\Windows\system32\drivers\nvraid.sys
13:29:59.0117 2228 nvraid - ok
13:29:59.0155 2228 nvstor (4380e59a170d88c4f1022eff6719a8a4) C:\Windows\system32\drivers\nvstor.sys
13:29:59.0161 2228 nvstor - ok
13:29:59.0190 2228 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\Windows\system32\drivers\nv_agp.sys
13:29:59.0216 2228 nv_agp - ok
13:29:59.0280 2228 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\Windows\system32\drivers\ohci1394.sys
13:29:59.0324 2228 ohci1394 - ok
13:29:59.0429 2228 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\Windows\system32\DRIVERS\parport.sys
13:29:59.0433 2228 Parport - ok
13:29:59.0478 2228 partmgr (bf8f6af06da75b336f07e23aef97d93b) C:\Windows\system32\drivers\partmgr.sys
13:29:59.0497 2228 partmgr - ok
13:29:59.0531 2228 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\Windows\system32\DRIVERS\parvdm.sys
13:29:59.0534 2228 Parvdm - ok
13:29:59.0593 2228 pci (673e55c3498eb970088e812ea820aa8f) C:\Windows\system32\drivers\pci.sys
13:29:59.0596 2228 pci - ok
13:29:59.0649 2228 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\Windows\system32\drivers\pciide.sys
13:29:59.0652 2228 pciide - ok
13:29:59.0691 2228 pcmcia (f396431b31693e71e8a80687ef523506) C:\Windows\system32\DRIVERS\pcmcia.sys
13:29:59.0716 2228 pcmcia - ok
13:29:59.0760 2228 pcw (250f6b43d2b613172035c6747aeeb19f) C:\Windows\system32\drivers\pcw.sys
13:29:59.0784 2228 pcw - ok
13:29:59.0834 2228 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\Windows\system32\drivers\peauth.sys
13:29:59.0895 2228 PEAUTH - ok
13:30:00.0042 2228 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\Windows\system32\DRIVERS\raspptp.sys
13:30:00.0045 2228 PptpMiniport - ok
13:30:00.0088 2228 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\Windows\system32\DRIVERS\processr.sys
13:30:00.0124 2228 Processor - ok
13:30:00.0257 2228 Psched (6270ccae2a86de6d146529fe55b3246a) C:\Windows\system32\DRIVERS\pacer.sys
13:30:00.0322 2228 Psched - ok
13:30:00.0384 2228 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\Windows\system32\DRIVERS\ql2300.sys
13:30:00.0430 2228 ql2300 - ok
13:30:00.0496 2228 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\Windows\system32\DRIVERS\ql40xx.sys
13:30:00.0502 2228 ql40xx - ok
13:30:00.0598 2228 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\Windows\system32\drivers\qwavedrv.sys
13:30:00.0649 2228 QWAVEdrv - ok
13:30:00.0775 2228 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\Windows\system32\DRIVERS\rasacd.sys
13:30:00.0839 2228 RasAcd - ok
13:30:00.0934 2228 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\Windows\system32\DRIVERS\AgileVpn.sys
13:30:00.0964 2228 RasAgileVpn - ok
13:30:01.0003 2228 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\Windows\system32\DRIVERS\rasl2tp.sys
13:30:01.0107 2228 Rasl2tp - ok
13:30:01.0323 2228 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\Windows\system32\DRIVERS\raspppoe.sys
13:30:01.0326 2228 RasPppoe - ok
13:30:01.0366 2228 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\Windows\system32\DRIVERS\rassstp.sys
13:30:01.0370 2228 RasSstp - ok
13:30:01.0423 2228 rdbss (d528bc58a489409ba40334ebf96a311b) C:\Windows\system32\DRIVERS\rdbss.sys
13:30:01.0446 2228 rdbss - ok
13:30:01.0482 2228 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\Windows\system32\DRIVERS\rdpbus.sys
13:30:01.0503 2228 rdpbus - ok
13:30:01.0542 2228 RDPCDD (23dae03f29d253ae74c44f99e515f9a1) C:\Windows\system32\DRIVERS\RDPCDD.sys
13:30:01.0576 2228 RDPCDD - ok
13:30:01.0627 2228 RDPDR (b973fcfc50dc1434e1970a146f7e3885) C:\Windows\system32\drivers\rdpdr.sys
13:30:01.0657 2228 RDPDR - ok
13:30:01.0724 2228 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\Windows\system32\drivers\rdpencdd.sys
13:30:01.0727 2228 RDPENCDD - ok
13:30:01.0764 2228 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\Windows\system32\drivers\rdprefmp.sys
13:30:01.0767 2228 RDPREFMP - ok
13:30:01.0815 2228 RDPWD (288b06960d78428ff89e811632684e20) C:\Windows\system32\drivers\RDPWD.sys
13:30:01.0839 2228 RDPWD - ok
13:30:01.0907 2228 rdyboost (518395321dc96fe2c9f0e96ac743b656) C:\Windows\system32\drivers\rdyboost.sys
13:30:01.0912 2228 rdyboost - ok
13:30:02.0014 2228 RsFx0102 (fedd2710b75be3ecf078adace790c423) C:\Windows\system32\DRIVERS\RsFx0102.sys
13:30:02.0031 2228 RsFx0102 - ok
13:30:02.0090 2228 rspndr (032b0d36ad92b582d869879f5af5b928) C:\Windows\system32\DRIVERS\rspndr.sys
13:30:02.0140 2228 rspndr - ok
13:30:02.0200 2228 RSUSBSTOR (96f8dd546677aa5102150acc140377b3) C:\Windows\system32\Drivers\RtsUStor.sys
13:30:02.0204 2228 RSUSBSTOR - ok
13:30:02.0233 2228 RtsUIR - ok
13:30:02.0311 2228 s3cap (7fa7f2e249a5dcbb7970630e15e1f482) C:\Windows\system32\drivers\vms3cap.sys
13:30:02.0314 2228 s3cap - ok
13:30:02.0369 2228 sbp2port (05d860da1040f111503ac416ccef2bca) C:\Windows\system32\drivers\sbp2port.sys
13:30:02.0378 2228 sbp2port - ok
13:30:02.0450 2228 scfilter (0693b5ec673e34dc147e195779a4dcf6) C:\Windows\system32\DRIVERS\scfilter.sys
13:30:02.0468 2228 scfilter - ok
13:30:02.0554 2228 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
13:30:02.0557 2228 secdrv - ok
13:30:02.0632 2228 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\Windows\system32\DRIVERS\serenum.sys
13:30:02.0638 2228 Serenum - ok
13:30:02.0670 2228 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\Windows\system32\DRIVERS\serial.sys
13:30:02.0690 2228 Serial - ok
13:30:02.0730 2228 sermouse (79bffb520327ff916a582dfea17aa813) C:\Windows\system32\DRIVERS\sermouse.sys
13:30:02.0762 2228 sermouse - ok
13:30:02.0852 2228 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\Windows\system32\drivers\sffdisk.sys
13:30:02.0855 2228 sffdisk - ok
13:30:02.0885 2228 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\Windows\system32\drivers\sffp_mmc.sys
13:30:02.0921 2228 sffp_mmc - ok
13:30:02.0950 2228 sffp_sd (6d4ccaedc018f1cf52866bbbaa235982) C:\Windows\system32\drivers\sffp_sd.sys
13:30:03.0014 2228 sffp_sd - ok
13:30:03.0070 2228 sfloppy (db96666cc8312ebc45032f30b007a547) C:\Windows\system32\DRIVERS\sfloppy.sys
13:30:03.0073 2228 sfloppy - ok
13:30:03.0124 2228 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\Windows\system32\drivers\sisagp.sys
13:30:03.0141 2228 sisagp - ok
13:30:03.0185 2228 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\Windows\system32\DRIVERS\SiSRaid2.sys
13:30:03.0189 2228 SiSRaid2 - ok
13:30:03.0225 2228 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\Windows\system32\DRIVERS\sisraid4.sys
13:30:03.0253 2228 SiSRaid4 - ok
13:30:03.0307 2228 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\Windows\system32\DRIVERS\smb.sys
13:30:03.0370 2228 Smb - ok
13:30:03.0448 2228 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\Windows\system32\drivers\spldr.sys
13:30:03.0451 2228 spldr - ok
13:30:03.0564 2228 srv (e4c2764065d66ea1d2d3ebc28fe99c46) C:\Windows\system32\DRIVERS\srv.sys
13:30:03.0626 2228 srv - ok
13:30:03.0667 2228 srv2 (03f0545bd8d4c77fa0ae1ceedfcc71ab) C:\Windows\system32\DRIVERS\srv2.sys
13:30:03.0709 2228 srv2 - ok
13:30:03.0758 2228 srvnet (be6bd660caa6f291ae06a718a4fa8abc) C:\Windows\system32\DRIVERS\srvnet.sys
13:30:03.0762 2228 srvnet - ok
13:30:03.0836 2228 stexstor (db32d325c192b801df274bfd12a7e72b) C:\Windows\system32\DRIVERS\stexstor.sys
13:30:03.0839 2228 stexstor - ok
13:30:03.0927 2228 storflt (472af0311073dceceaa8fa18ba2bdf89) C:\Windows\system32\drivers\vmstorfl.sys
13:30:03.0948 2228 storflt - ok
13:30:03.0995 2228 storvsc (dcaffd62259e0bdb433dd67b5bb37619) C:\Windows\system32\drivers\storvsc.sys
13:30:03.0998 2228 storvsc - ok
13:30:04.0033 2228 swenum (e58c78a848add9610a4db6d214af5224) C:\Windows\system32\drivers\swenum.sys
13:30:04.0045 2228 swenum - ok
13:30:04.0124 2228 SynTP (c93aa00fb1386cc00d0a66ba41847421) C:\Windows\system32\DRIVERS\SynTP.sys
13:30:04.0129 2228 SynTP - ok
13:30:04.0262 2228 Tcpip (65d10b191c59c5501a1263fc33f6894b) C:\Windows\system32\drivers\tcpip.sys
13:30:04.0296 2228 Tcpip - ok
13:30:04.0378 2228 TCPIP6 (65d10b191c59c5501a1263fc33f6894b) C:\Windows\system32\DRIVERS\tcpip.sys
13:30:04.0386 2228 TCPIP6 - ok
13:30:04.0443 2228 tcpipreg (cca24162e055c3714ce5a88b100c64ed) C:\Windows\system32\drivers\tcpipreg.sys
13:30:04.0446 2228 tcpipreg - ok
13:30:04.0504 2228 TDPIPE (1cb91b2bd8f6dd367dfc2ef26fd751b2) C:\Windows\system32\drivers\tdpipe.sys
13:30:04.0507 2228 TDPIPE - ok
13:30:04.0537 2228 TDTCP (2c10395baa4847f83042813c515cc289) C:\Windows\system32\drivers\tdtcp.sys
13:30:04.0571 2228 TDTCP - ok
13:30:04.0620 2228 tdx (b459575348c20e8121d6039da063c704) C:\Windows\system32\DRIVERS\tdx.sys
13:30:04.0623 2228 tdx - ok
13:30:04.0677 2228 TermDD (04dbf4b01ea4bf25a9a3e84affac9b20) C:\Windows\system32\drivers\termdd.sys
13:30:04.0680 2228 TermDD - ok
13:30:04.0784 2228 tssecsrv (254bb140eee3c59d6114c1a86b636877) C:\Windows\system32\DRIVERS\tssecsrv.sys
13:30:04.0788 2228 tssecsrv - ok
13:30:04.0869 2228 TsUsbFlt (fd1d6c73e6333be727cbcc6054247654) C:\Windows\system32\drivers\tsusbflt.sys
13:30:04.0902 2228 TsUsbFlt - ok
13:30:04.0960 2228 tunnel (b2fa25d9b17a68bb93d58b0556e8c90d) C:\Windows\system32\DRIVERS\tunnel.sys
13:30:04.0964 2228 tunnel - ok
13:30:05.0026 2228 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\Windows\system32\DRIVERS\uagp35.sys
13:30:05.0088 2228 uagp35 - ok
13:30:05.0141 2228 UBHelper (d79c0b9bb011218b93705cbf77fa3e5e) C:\Windows\system32\drivers\UBHelper.sys
13:30:05.0165 2228 UBHelper - ok
13:30:05.0218 2228 udfs (ee43346c7e4b5e63e54f927babbb32ff) C:\Windows\system32\DRIVERS\udfs.sys
13:30:05.0265 2228 udfs - ok
13:30:05.0340 2228 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\Windows\system32\drivers\uliagpkx.sys
13:30:05.0343 2228 uliagpkx - ok
13:30:05.0400 2228 umbus (d295bed4b898f0fd999fcfa9b32b071b) C:\Windows\system32\drivers\umbus.sys
13:30:05.0441 2228 umbus - ok
13:30:05.0484 2228 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\Windows\system32\DRIVERS\umpass.sys
13:30:05.0495 2228 UmPass - ok
13:30:05.0584 2228 usbccgp (bd9c55d7023c5de374507acc7a14e2ac) C:\Windows\system32\DRIVERS\usbccgp.sys
13:30:05.0627 2228 usbccgp - ok
13:30:05.0669 2228 USBCCID - ok
13:30:05.0730 2228 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\Windows\system32\drivers\usbcir.sys
13:30:05.0733 2228 usbcir - ok
13:30:05.0786 2228 usbehci (f92de757e4b7ce9c07c5e65423f3ae3b) C:\Windows\system32\DRIVERS\usbehci.sys
13:30:05.0815 2228 usbehci - ok
13:30:05.0868 2228 usbhub (8dc94aec6a7e644a06135ae7506dc2e9) C:\Windows\system32\DRIVERS\usbhub.sys
13:30:05.0895 2228 usbhub - ok
13:30:05.0937 2228 usbohci (e185d44fac515a18d9deddc23c2cdf44) C:\Windows\system32\drivers\usbohci.sys
13:30:05.0940 2228 usbohci - ok
13:30:05.0976 2228 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\Windows\system32\DRIVERS\usbprint.sys
13:30:05.0978 2228 usbprint - ok
13:30:06.0018 2228 USBSTOR (f991ab9cc6b908db552166768176896a) C:\Windows\system32\DRIVERS\USBSTOR.SYS
13:30:06.0103 2228 USBSTOR - ok
13:30:06.0142 2228 usbuhci (68df884cf41cdada664beb01daf67e3d) C:\Windows\system32\DRIVERS\usbuhci.sys
13:30:06.0164 2228 usbuhci - ok
13:30:06.0229 2228 usbvideo (45f4e7bf43db40a6c6b4d92c76cbc3f2) C:\Windows\System32\Drivers\usbvideo.sys
13:30:06.0234 2228 usbvideo - ok
13:30:06.0307 2228 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\Windows\system32\drivers\vdrvroot.sys
13:30:06.0330 2228 vdrvroot - ok
13:30:06.0395 2228 vga (17c408214ea61696cec9c66e388b14f3) C:\Windows\system32\DRIVERS\vgapnp.sys
13:30:06.0398 2228 vga - ok
13:30:06.0432 2228 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\Windows\System32\drivers\vga.sys
13:30:06.0466 2228 VgaSave - ok
13:30:06.0519 2228 vhdmp (5461686cca2fda57b024547733ab42e3) C:\Windows\system32\drivers\vhdmp.sys
13:30:06.0523 2228 vhdmp - ok
13:30:06.0569 2228 viaagp (c829317a37b4bea8f39735d4b076e923) C:\Windows\system32\drivers\viaagp.sys
13:30:06.0573 2228 viaagp - ok
13:30:06.0607 2228 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\Windows\system32\DRIVERS\viac7.sys
13:30:06.0611 2228 ViaC7 - ok
13:30:06.0661 2228 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\Windows\system32\drivers\viaide.sys
13:30:06.0679 2228 viaide - ok
13:30:06.0720 2228 vmbus (c2f2911156fdc7817c52829c86da494e) C:\Windows\system32\drivers\vmbus.sys
13:30:06.0726 2228 vmbus - ok
13:30:06.0761 2228 VMBusHID (d4d77455211e204f370d08f4963063ce) C:\Windows\system32\drivers\VMBusHID.sys
13:30:06.0764 2228 VMBusHID - ok
13:30:06.0801 2228 volmgr (4c63e00f2f4b5f86ab48a58cd990f212) C:\Windows\system32\drivers\volmgr.sys
13:30:06.0804 2228 volmgr - ok
13:30:06.0855 2228 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\Windows\system32\drivers\volmgrx.sys
13:30:06.0861 2228 volmgrx - ok
13:30:06.0899 2228 volsnap (f497f67932c6fa693d7de2780631cfe7) C:\Windows\system32\drivers\volsnap.sys
13:30:06.0904 2228 volsnap - ok
13:30:06.0953 2228 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\Windows\system32\DRIVERS\vsmraid.sys
13:30:06.0957 2228 vsmraid - ok
13:30:07.0000 2228 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\Windows\system32\DRIVERS\vwifibus.sys
13:30:07.0003 2228 vwifibus - ok
13:30:07.0060 2228 vwififlt (7090d3436eeb4e7da3373090a23448f7) C:\Windows\system32\DRIVERS\vwififlt.sys
13:30:07.0063 2228 vwififlt - ok
13:30:07.0112 2228 WacomPen (de3721e89c653aa281428c8a69745d90) C:\Windows\system32\DRIVERS\wacompen.sys
13:30:07.0115 2228 WacomPen - ok
13:30:07.0170 2228 WANARP (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys
13:30:07.0173 2228 WANARP - ok
13:30:07.0187 2228 Wanarpv6 (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys
13:30:07.0188 2228 Wanarpv6 - ok
13:30:07.0270 2228 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\Windows\system32\DRIVERS\wd.sys
13:30:07.0273 2228 Wd - ok
13:30:07.0332 2228 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys
13:30:07.0349 2228 Wdf01000 - ok
13:30:07.0478 2228 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\Windows\system32\DRIVERS\wfplwf.sys
13:30:07.0504 2228 WfpLwf - ok
13:30:07.0541 2228 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\Windows\system32\drivers\wimmount.sys
13:30:07.0544 2228 WIMMount - ok
13:30:07.0665 2228 WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\Windows\system32\drivers\wmiacpi.sys
13:30:07.0668 2228 WmiAcpi - ok
13:30:07.0748 2228 ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\Windows\system32\drivers\ws2ifsl.sys
13:30:07.0751 2228 ws2ifsl - ok
13:30:07.0837 2228 WudfPf (e714a1c0354636837e20ccbf00888ee7) C:\Windows\system32\drivers\WudfPf.sys
13:30:07.0841 2228 WudfPf - ok
13:30:07.0884 2228 WUDFRd (1023ee888c9b47178c5293ed5336ab69) C:\Windows\system32\DRIVERS\WUDFRd.sys
13:30:07.0888 2228 WUDFRd - ok
13:30:07.0997 2228 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
13:30:08.0020 2228 \Device\Harddisk0\DR0 - ok
13:30:08.0028 2228 Boot (0x1200) (83fcd8cad04745dbd71e780609f4f47e) \Device\Harddisk0\DR0\Partition0
13:30:08.0029 2228 \Device\Harddisk0\DR0\Partition0 - ok
13:30:08.0047 2228 Boot (0x1200) (f9bb8134a8a42ea997904c6df9c9d26c) \Device\Harddisk0\DR0\Partition1
13:30:08.0048 2228 \Device\Harddisk0\DR0\Partition1 - ok
13:30:08.0053 2228 ============================================================
13:30:08.0053 2228 Scan finished
13:30:08.0053 2228 ============================================================
13:30:08.0072 5368 Detected object count: 0
13:30:08.0072 5368 Actual detected object count: 0
13:50:48.0587 5332 Deinitialize success
How about that error message?
How about that error message?
still getting same error on start up / when pc running if left alone for about 15 mins pc restarts on own but normal reboot to password screen .
all power options set to "never ".:confused:
Hi
Please visit this webpage for download links, and instructions for running ComboFix tool:
http://www.bleepingcomputer.com/combofix/how-to-use-combofix
Please ensure you read this guide carefully first.
Please continue as follows:
Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix, link (http://www.bleepingcomputer.com/forums/topic114351.html)
Remember to re-enable them afterwards.
Click Yes to allow ComboFix to continue scanning for malware.
When the tool is finished, it will produce a report for you.
Please include the following reports for further review, and so we may continue cleansing the system:
C:\ComboFix.txt
New dds log.
A word of warning: Neither I nor sUBs are responsible for any damage you may have caused your machine by running ComboFix. This tool is not a toy and not for everyday use.
Hi
Please visit this webpage for download links, and instructions for running ComboFix tool:
http://www.bleepingcomputer.com/combofix/how-to-use-combofix
Please ensure you read this guide carefully first.
Please continue as follows:
Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix, link (http://www.bleepingcomputer.com/forums/topic114351.html)
Remember to re-enable them afterwards.
Click Yes to allow ComboFix to continue scanning for malware.
When the tool is finished, it will produce a report for you.
Please include the following reports for further review, and so we may continue cleansing the system:
C:\ComboFix.txt
New dds log.
A word of warning: Neither I nor sUBs are responsible for any damage you may have caused your machine by running ComboFix. This tool is not a toy and not for everyday use.
put combofix on said machine and when trying to bring up browser it lock up with sending request "youtube locked" and flashing like mad ,,,, so set machine back to factory settings and things seem to be normal at presant you sergested to me when you sorted mine to put "secunia psi" to keep everything upto date can you recommend it for this machine ?and any final checks to be done :thanks:
Hi,
Yes, I suggest installing PSI.
Help ! after recover install see thread :64327
every thing seemed fine and went on to install windows updates 91 in all, installed and it ask for a reboot;
on reboot a message came up reading "the computer restarted unexpectedly or encountered an unexpected error windows installation cannot proceed to install windows ,click ok to restart the computer and then restart the installation "
this repeats its self on a loop .
ive tried a safe mode restart only to get a fail " windows cannot complete windows install in safe mode please restart "
if i press an f key on reboot i get windows boot manger dos screen with an f8 advanced option and "tools " for memory diagnostics
on pressing f8 win 7 advanced menu comes up ive tryed last known good config (advanced ) to no avail and restore mode ,but trys to boot up in safe mode and then back to square 1 this is not good i can not send any loggs as i cannot get past this win7 install fail please help :confused:
Hi,
It doesn't sound good at all. You may try Startup Repair (http://www.sevenforums.com/tutorials/681-startup-repair.html) to see if it's able to help.
Hi,
It doesn't sound good at all. You may try Startup Repair (http://www.sevenforums.com/tutorials/681-startup-repair.html) to see if it's able to help.
can not perform this as there is no option to restore /repair
Hi,
Do you have the Windows 7 installation media available?
:oops:sorry never subscribed to thread for last answer asking me to use repair windows from advanced boot menu
can not do as requested because there is no "repair" option in can you surgest any thing else ????
please help .....
Hi,
Do you have the Windows 7 installation media available?
sorry no machine was from comet and no and back up media come with it any suggestions ??????
where can i get a copy ????
ive tried Microsoft but only upgrade or buy option available...
Hi,
Without disc it looks like restoring back to factory default state is the only option.
Hi,
Without disc it looks like restoring back to factory default state is the only option.
can you please tell me how to do that with a dos prompt as can not access restore from a safe or normal boot .
I mean doing like you did here (http://forums.spybot.info/showpost.php?p=416394&postcount=13). If that isn't possible then you have to reinstall the operating system.
I mean doing like you did here (http://forums.spybot.info/showpost.php?p=416394&postcount=13). If that isn't possible then you have to reinstall the operating system.
i want to reinstall the o/s but cart do it the way i did before because i can not get past the aforementioned loop i need to know how to gain access to the partition with the factory reset exe file on, using a dos command promnt
eg: "c:/ windows install exe " .etc
i know its not on c drive but on the hidden partition .:confused:
Sorry but I don't have personal experience of reinstalling operating system other than from normal installation disc. I recommend to take system to local computer repair shop if you can't launch restoring to factory default state like you did earlier.
Sorry but I don't have personal experience of reinstalling operating system other than from normal installation disc. I recommend to take system to local computer repair shop if you can't launch restoring to factory default state like you did earlier.
a friend came down and used something like "key something" to restore back to factory can you give me the link for "psi" to keep upto date thanx for your help keep up the good work :thanks:
Hi,
PSI can be downloaded here (http://secunia.com/vulnerability_scanning/personal/) :)