Welcome guest. Before posting on our computer help forum, you must register. Click here it's easy and free.

« previous next »
Pages: 1 [2]  All   Go Down

Author Topic: Am I infected.. My PC is VERY VERY SLOOOOW!  (Read 26005 times)

0 Members and 1 Guest are viewing this topic.

SuperDave

  • Malware Removal Specialist


    • Genius
    • Thanked: 1020
  • Certifications: List
  • Experience: Expert
  • OS: Windows 10
Re: Am I infected.. My PC is VERY VERY SLOOOOW!
« Reply #15 on: February 08, 2012, 12:11:38 PM »
Is it still running slowly? Is it slow at booting up?

Please download aswMBR.exe ( 511KB ) to your desktop.

Double click the aswMBR.exe to run it



Click the "Scan" button to start scan

Note: Do not take action against any **Rootkit** entries until I have reviewed the log. Often there are false positives



On completion of the scan click save log, save it to your desktop and post in your next reply
Logged
Windows 8 and Windows 10 dual boot with two SSD's

Northenlad60

    Topic Starter


    Rookie

    • Yes
  • Experience: Experienced
  • OS: Windows 7
Re: Am I infected.. My PC is VERY VERY SLOOOOW!
« Reply #16 on: February 09, 2012, 11:54:11 AM »
Hi,

Ok, the PC does still take a while to boot into windows and load all the applications.

I ran the "aswMBR.exe" (althought the sereenshot is a bit outdated) and selected the option "Quickscan", instead of specific drives (as I have more than one drive).

Contents of the log are shown below:

aswMBR version 0.9.9.1532 Copyright(c) 2011 AVAST Software
Run date: 2012-02-09 18:37:01
-----------------------------
18:37:01.175    OS Version: Windows x64 6.1.7601 Service Pack 1
18:37:01.175    Number of processors: 4 586 0x403
18:37:01.175    ComputerName: MYRNAS-PICS  UserName: Richard
18:38:04.554    Initialize success
18:39:37.066    AVAST engine defs: 12020902
18:40:50.667    Disk 0  \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP2T0L0-2
18:40:50.682    Disk 0 Vendor: ST3200822A 3.01 Size: 190778MB BusType: 3
18:40:50.682    Disk 1  \Device\Harddisk1\DR1 -> \Device\Ide\IdeDeviceP2T1L0-5
18:40:50.682    Disk 1 Vendor: Maxtor_2B020H1 WAK21R90 Size: 19541MB BusType: 3
18:40:50.698    Disk 2 (boot) \Device\Harddisk2\DR2 -> \Device\Ide\IdeDeviceP0T0L0-0
18:40:50.698    Disk 2 Vendor: Hitachi_HDS721050CLA362 JP2OA3MA Size: 476940MB BusType: 3
18:40:50.714    Disk 2 MBR read successfully
18:40:50.714    Disk 2 MBR scan
18:40:50.714    Disk 2 Windows 7 default MBR code
18:40:50.729    Disk 2 Partition 1 80 (A) 07    HPFS/NTFS NTFS          100 MB offset 2048
18:40:50.745    Disk 2 Partition 2 00     07    HPFS/NTFS NTFS       476838 MB offset 206848
18:40:50.745    Service scanning
18:40:52.040    Service kl1 C:\Windows\system32\DRIVERS\kl1.sys **LOCKED** 5
18:40:52.055    Service kl2 C:\Windows\system32\DRIVERS\kl2.sys **LOCKED** 5
18:40:52.102    Service KLIM6 C:\Windows\system32\DRIVERS\klim6.sys **LOCKED** 5
18:40:52.118    Service klmouflt C:\Windows\system32\DRIVERS\klmouflt.sys **LOCKED** 5
18:40:53.849    Modules scanning
18:40:53.849    Disk 2 trace - called modules:
18:40:53.880    ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys ataport.SYS pciide.sys PCIIDEX.SYS hal.dll atapi.sys
18:40:53.896    1 nt!IofCallDriver -> \Device\Harddisk2\DR2[0xfffffa8004a56790]
18:40:53.912    3 CLASSPNP.SYS[fffff88001a1743f] -> nt!IofCallDriver -> [0xfffffa8003abcd10]
18:40:53.912    5 ACPI.sys[fffff88000e8a7a1] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0xfffffa8003aca060]
18:40:54.707    AVAST engine scan C:\Windows
18:40:58.748    AVAST engine scan C:\Windows\system32
18:44:39.254    AVAST engine scan C:\Windows\system32\drivers
18:44:54.417    AVAST engine scan C:\Users\Richard
18:50:43.515    Disk 2 MBR has been saved successfully to "C:\Users\Richard\Desktop\MBR.dat"
18:50:43.515    The log file has been saved successfully to "C:\Users\Richard\Desktop\aswMBR.txt"




I will also run again, selecting each drive, and repost each one after this.

Logged

Northenlad60

    Topic Starter


    Rookie

    • Yes
  • Experience: Experienced
  • OS: Windows 7
Re: Am I infected.. My PC is VERY VERY SLOOOOW!
« Reply #17 on: February 09, 2012, 12:00:38 PM »
Each of the drives logs are below:

C Drive

aswMBR version 0.9.9.1532 Copyright(c) 2011 AVAST Software
Run date: 2012-02-09 18:55:38
-----------------------------
18:55:38.421    OS Version: Windows x64 6.1.7601 Service Pack 1
18:55:38.421    Number of processors: 4 586 0x403
18:55:38.421    ComputerName: MYRNAS-PICS  UserName: Richard
18:55:39.653    Initialize success
18:55:43.054    AVAST engine defs: 12020902
18:55:50.355    Disk 0  \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP2T0L0-2
18:55:50.355    Disk 0 Vendor: ST3200822A 3.01 Size: 190778MB BusType: 3
18:55:50.355    Disk 1  \Device\Harddisk1\DR1 -> \Device\Ide\IdeDeviceP2T1L0-5
18:55:50.355    Disk 1 Vendor: Maxtor_2B020H1 WAK21R90 Size: 19541MB BusType: 3
18:55:50.371    Disk 2 (boot) \Device\Harddisk2\DR2 -> \Device\Ide\IdeDeviceP0T0L0-0
18:55:50.371    Disk 2 Vendor: Hitachi_HDS721050CLA362 JP2OA3MA Size: 476940MB BusType: 3
18:55:50.386    Disk 2 MBR read successfully
18:55:50.402    Disk 2 MBR scan
18:55:50.402    Disk 2 Windows 7 default MBR code
18:55:50.402    Disk 2 Partition 1 80 (A) 07    HPFS/NTFS NTFS          100 MB offset 2048
18:55:50.417    Disk 2 Partition 2 00     07    HPFS/NTFS NTFS       476838 MB offset 206848
18:55:50.433    Service scanning
18:55:51.104    Service kl1 C:\Windows\system32\DRIVERS\kl1.sys **LOCKED** 5
18:55:51.119    Service kl2 C:\Windows\system32\DRIVERS\kl2.sys **LOCKED** 5
18:55:51.119    Service KLIM6 C:\Windows\system32\DRIVERS\klim6.sys **LOCKED** 5
18:55:51.119    Service klmouflt C:\Windows\system32\DRIVERS\klmouflt.sys **LOCKED** 5
18:55:51.759    Modules scanning
18:55:51.775    Disk 2 trace - called modules:
18:55:51.821    ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys ataport.SYS pciide.sys PCIIDEX.SYS hal.dll atapi.sys
18:55:51.837    1 nt!IofCallDriver -> \Device\Harddisk2\DR2[0xfffffa8004a56790]
18:55:51.853    3 CLASSPNP.SYS[fffff88001a1743f] -> nt!IofCallDriver -> [0xfffffa8003abcd10]
18:55:51.868    5 ACPI.sys[fffff88000e8a7a1] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0xfffffa8003aca060]
18:55:52.945    AVAST engine scan C:\
18:56:29.948    Disk 2 MBR has been saved successfully to "C:\Users\Richard\Desktop\MBR.dat"
18:56:29.948    The log file has been saved successfully to "C:\Users\Richard\Desktop\aswMBR - c drive.txt"




Logged

Northenlad60

    Topic Starter


    Rookie

    • Yes
  • Experience: Experienced
  • OS: Windows 7
Re: Am I infected.. My PC is VERY VERY SLOOOOW!
« Reply #18 on: February 09, 2012, 12:04:13 PM »
D,  E and G drives all said the same thing (except for the drive location, where it stated "AVAST engine scan <DRIVE>"
Logged

SuperDave

  • Malware Removal Specialist


    • Genius
    • Thanked: 1020
  • Certifications: List
  • Experience: Expert
  • OS: Windows 10
Re: Am I infected.. My PC is VERY VERY SLOOOOW!
« Reply #19 on: February 09, 2012, 12:09:24 PM »
Did you try running StartUpLite?

Please download MBRCheck.exe by a_d_13 from one of the links provided below and save it to your desktop.

Link 1
Link 2
Link 3

•Double-click on MBRCheck.exe to run it.

•It will open a black window...please do not fix anything (if it gives you an option).

•When complete, you should see Done! Press ENTER to exit.... Press Enter on the keyboard.

•A log named MBRCheck_date_time.txt (i.e. MBRCheck_07.21.10_10.22.51.txt) will appear on the desktop.
•Please copy and paste the contents of that log in your next reply.
Logged
Windows 8 and Windows 10 dual boot with two SSD's

HELPHELPHELP



    Greenhorn

    • Certifications: List
    • Computer: Specs
    • Experience: Experienced
    • OS: Windows XP
    Re: Am I infected.. My PC is VERY VERY SLOOOOW!
    « Reply #20 on: February 09, 2012, 12:30:01 PM »
    Comments removed.
    « Last Edit: February 09, 2012, 12:31:57 PM by SuperDave »
    Logged

    Northenlad60

      Topic Starter


      Rookie

      • Yes
    • Experience: Experienced
    • OS: Windows 7
    Re: Am I infected.. My PC is VERY VERY SLOOOOW!
    « Reply #21 on: February 10, 2012, 12:25:42 AM »
    Hi,

    Ok, first things first. My PC does seem a bit faster in boot up and loading all application. I had run the StartUpLite when you requested this last time... Did you want me to run it again?

    Anyway. The log from the MBRCheck is below:

    MBRCheck, version 1.2.3
    (c) 2010, AD

    Command-line:         
    Windows Version:      Windows 7 Home Premium Edition
    Windows Information:      Service Pack 1 (build 7601), 64-bit
    Base Board Manufacturer:   Gigabyte Technology Co., Ltd.
    BIOS Manufacturer:      Award Software International, Inc.
    System Manufacturer:      Gigabyte Technology Co., Ltd.
    System Product Name:      GA-MA770T-UD3
    Logical Drives Mask:      0x0000007c

    Kernel Drivers (total 190):
      0x0321B000 \SystemRoot\system32\ntoskrnl.exe
      0x03804000 \SystemRoot\system32\hal.dll
      0x00BA4000 \SystemRoot\system32\kdcom.dll
      0x00CAE000 \SystemRoot\system32\mcupdate_AuthenticAMD.dll
      0x00CBB000 \SystemRoot\system32\PSHED.dll
      0x00CCF000 \SystemRoot\system32\CLFS.SYS
      0x00D2D000 \SystemRoot\system32\CI.dll
      0x00C00000 \SystemRoot\system32\drivers\Wdf01000.sys
      0x00DED000 \SystemRoot\system32\drivers\WDFLDR.SYS
      0x00EC0000 \SystemRoot\system32\drivers\ACPI.sys
      0x00F17000 \SystemRoot\system32\drivers\WMILIB.SYS
      0x00F20000 \SystemRoot\system32\drivers\msisadrv.sys
      0x00F2A000 \SystemRoot\system32\drivers\pci.sys
      0x00F5D000 \SystemRoot\system32\drivers\vdrvroot.sys
      0x00F6A000 \SystemRoot\System32\drivers\partmgr.sys
      0x00F7F000 \SystemRoot\system32\drivers\volmgr.sys
      0x00F94000 \SystemRoot\System32\drivers\volmgrx.sys
      0x00FF0000 \SystemRoot\system32\drivers\pciide.sys
      0x00E00000 \SystemRoot\system32\drivers\PCIIDEX.SYS
      0x00E10000 \SystemRoot\System32\drivers\mountmgr.sys
      0x00E2A000 \SystemRoot\system32\drivers\atapi.sys
      0x00E33000 \SystemRoot\system32\drivers\ataport.SYS
      0x00E5D000 \SystemRoot\system32\drivers\amdxata.sys
      0x00E68000 \SystemRoot\system32\drivers\fltmgr.sys
      0x01086000 \SystemRoot\system32\drivers\fileinfo.sys
      0x0121E000 \SystemRoot\System32\Drivers\Ntfs.sys
      0x0109A000 \SystemRoot\System32\Drivers\msrpc.sys
      0x013C1000 \SystemRoot\System32\Drivers\ksecdd.sys
      0x010F8000 \SystemRoot\System32\Drivers\cng.sys
      0x013DC000 \SystemRoot\System32\drivers\pcw.sys
      0x013ED000 \SystemRoot\System32\Drivers\Fs_Rec.sys
      0x0145C000 \SystemRoot\system32\drivers\ndis.sys
      0x0154F000 \SystemRoot\system32\drivers\NETIO.SYS
      0x015AF000 \SystemRoot\System32\Drivers\ksecpkg.sys
      0x01623000 \SystemRoot\System32\drivers\tcpip.sys
      0x01827000 \SystemRoot\System32\drivers\fwpkclnt.sys
      0x01871000 \SystemRoot\system32\drivers\volsnap.sys
      0x018BD000 \SystemRoot\System32\Drivers\spldr.sys
      0x018C5000 \SystemRoot\System32\drivers\rdyboost.sys
      0x018FF000 \SystemRoot\System32\Drivers\mup.sys
      0x01A96000 \SystemRoot\system32\DRIVERS\kl1.sys
      0x021F5000 \SystemRoot\System32\drivers\hwpolicy.sys
      0x01A00000 \SystemRoot\System32\DRIVERS\fvevol.sys
      0x01A3A000 \SystemRoot\system32\DRIVERS\disk.sys
      0x01A50000 \SystemRoot\system32\DRIVERS\CLASSPNP.SYS
      0x01939000 \SystemRoot\system32\drivers\cdrom.sys
      0x046FD000 \SystemRoot\system32\DRIVERS\klif.sys
      0x047A0000 \SystemRoot\System32\Drivers\Null.SYS
      0x047A9000 \SystemRoot\System32\Drivers\Beep.SYS
      0x047B0000 \SystemRoot\System32\drivers\vga.sys
      0x047BE000 \SystemRoot\System32\drivers\VIDEOPRT.SYS
      0x047E3000 \SystemRoot\System32\drivers\watchdog.sys
      0x047F3000 \SystemRoot\System32\DRIVERS\RDPCDD.sys
      0x04600000 \SystemRoot\system32\drivers\rdpencdd.sys
      0x04609000 \SystemRoot\system32\drivers\rdprefmp.sys
      0x04612000 \SystemRoot\System32\Drivers\Msfs.SYS
      0x0461D000 \SystemRoot\System32\Drivers\Npfs.SYS
      0x0462E000 \SystemRoot\system32\DRIVERS\tdx.sys
      0x04650000 \SystemRoot\system32\DRIVERS\TDI.SYS
      0x0465D000 \SystemRoot\system32\DRIVERS\kl2.sys
      0x04664000 \SystemRoot\system32\drivers\afd.sys
      0x01963000 \SystemRoot\System32\DRIVERS\netbt.sys
      0x046ED000 \SystemRoot\system32\drivers\ws2ifsl.sys
      0x019A8000 \SystemRoot\system32\DRIVERS\wfplwf.sys
      0x019B1000 \SystemRoot\system32\DRIVERS\pacer.sys
      0x019D7000 \SystemRoot\system32\DRIVERS\klim6.sys
      0x019E0000 \SystemRoot\system32\DRIVERS\netbios.sys
      0x01600000 \SystemRoot\system32\DRIVERS\serial.sys
      0x015DA000 \SystemRoot\system32\DRIVERS\wanarp.sys
      0x01400000 \SystemRoot\system32\drivers\termdd.sys
      0x019EF000 \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
      0x01414000 \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
      0x0116A000 \SystemRoot\system32\DRIVERS\rdbss.sys
      0x0141E000 \SystemRoot\system32\drivers\nsiproxy.sys
      0x0142A000 \SystemRoot\system32\drivers\mssmbios.sys
      0x01435000 \SystemRoot\System32\drivers\discache.sys
      0x01200000 \SystemRoot\System32\Drivers\dfsc.sys
      0x01444000 \SystemRoot\system32\DRIVERS\blbdrive.sys
      0x011BB000 \SystemRoot\system32\DRIVERS\tunnel.sys
      0x011E1000 \SystemRoot\system32\DRIVERS\amdppm.sys
      0x015F5000 \SystemRoot\system32\drivers\wmiacpi.sys
      0x138CC000 \SystemRoot\system32\DRIVERS\nvlddmkm.sys
      0x034F8000 \SystemRoot\System32\drivers\dxgkrnl.sys
      0x03400000 \SystemRoot\System32\drivers\dxgmms1.sys
      0x03446000 \SystemRoot\system32\drivers\HDAudBus.sys
      0x0346A000 \SystemRoot\system32\DRIVERS\Rt64win7.sys
      0x034A9000 \SystemRoot\system32\DRIVERS\GEARAspiWDM.sys
      0x034B6000 \SystemRoot\system32\DRIVERS\usbohci.sys
      0x14530000 \SystemRoot\system32\DRIVERS\USBPORT.SYS
      0x034C1000 \SystemRoot\system32\DRIVERS\usbehci.sys
      0x14586000 \SystemRoot\system32\drivers\1394ohci.sys
      0x034D2000 \SystemRoot\system32\DRIVERS\serenum.sys
      0x145C4000 \SystemRoot\system32\DRIVERS\parport.sys
      0x145E1000 \SystemRoot\system32\drivers\i8042prt.sys
      0x034DE000 \SystemRoot\system32\drivers\kbdclass.sys
      0x035EC000 \SystemRoot\system32\drivers\CompositeBus.sys
      0x13800000 \SystemRoot\system32\DRIVERS\AgileVpn.sys
      0x13816000 \SystemRoot\system32\DRIVERS\rasl2tp.sys
      0x1383A000 \SystemRoot\system32\DRIVERS\ndistapi.sys
      0x13846000 \SystemRoot\system32\DRIVERS\ndiswan.sys
      0x13875000 \SystemRoot\system32\DRIVERS\raspppoe.sys
      0x13890000 \SystemRoot\system32\DRIVERS\raspptp.sys
      0x138B1000 \SystemRoot\system32\DRIVERS\rassstp.sys
      0x01000000 \SystemRoot\system32\DRIVERS\mouclass.sys
      0x035FC000 \SystemRoot\system32\drivers\swenum.sys
      0x0100F000 \SystemRoot\system32\drivers\ks.sys
      0x05099000 \SystemRoot\system32\DRIVERS\MarvinBus64.sys
      0x050DD000 \SystemRoot\system32\drivers\umbus.sys
      0x050EF000 \SystemRoot\system32\DRIVERS\usbhub.sys
      0x05149000 \SystemRoot\System32\Drivers\NDProxy.SYS
      0x0515E000 \SystemRoot\system32\drivers\nvhda64v.sys
      0x0518B000 \SystemRoot\system32\drivers\portcls.sys
      0x051C8000 \SystemRoot\system32\drivers\drmk.sys
      0x051EA000 \SystemRoot\system32\drivers\ksthunk.sys
      0x06246000 \SystemRoot\system32\drivers\RTKVHD64.sys
      0x06464000 \SystemRoot\System32\Drivers\crashdmp.sys
      0x06472000 \SystemRoot\System32\Drivers\dump_dumpata.sys
      0x0647E000 \SystemRoot\System32\Drivers\dump_atapi.sys
      0x06487000 \SystemRoot\System32\Drivers\dump_dumpfve.sys
      0x00000000 \SystemRoot\System32\win32k.sys
      0x0649A000 \SystemRoot\System32\drivers\Dxapi.sys
      0x064A6000 \SystemRoot\system32\DRIVERS\monitor.sys
      0x064B4000 \SystemRoot\system32\DRIVERS\hidusb.sys
      0x064C2000 \SystemRoot\system32\DRIVERS\HIDCLASS.SYS
      0x064DB000 \SystemRoot\system32\DRIVERS\HIDPARSE.SYS
      0x064E4000 \SystemRoot\system32\DRIVERS\USBD.SYS
      0x064E6000 \SystemRoot\system32\DRIVERS\mouhid.sys
      0x064F3000 \SystemRoot\system32\DRIVERS\klmouflt.sys
      0x00590000 \SystemRoot\System32\TSDDD.dll
      0x00760000 \SystemRoot\System32\cdd.dll
      0x00920000 \SystemRoot\System32\ATMFD.DLL
      0x064FD000 \SystemRoot\system32\drivers\luafv.sys
      0x06520000 \SystemRoot\system32\drivers\WudfPf.sys
      0x06541000 \SystemRoot\system32\DRIVERS\lltdio.sys
      0x06556000 \SystemRoot\system32\DRIVERS\rspndr.sys
      0x06609000 \SystemRoot\system32\drivers\HTTP.sys
      0x066D2000 \SystemRoot\system32\DRIVERS\bowser.sys
      0x066F0000 \SystemRoot\System32\drivers\mpsdrv.sys
      0x06708000 \SystemRoot\system32\DRIVERS\mrxsmb.sys
      0x06735000 \SystemRoot\system32\DRIVERS\mrxsmb10.sys
      0x06783000 \SystemRoot\system32\DRIVERS\mrxsmb20.sys
      0x07023000 \SystemRoot\system32\drivers\peauth.sys
      0x070C9000 \SystemRoot\System32\Drivers\secdrv.SYS
      0x070D4000 \SystemRoot\System32\DRIVERS\srvnet.sys
      0x07105000 \SystemRoot\System32\drivers\tcpipreg.sys
      0x07117000 \SystemRoot\System32\DRIVERS\srv2.sys
      0x05000000 \SystemRoot\System32\DRIVERS\srv.sys
      0x07180000 \??\C:\Windows\system32\drivers\mbam.sys
      0x0718A000 \SystemRoot\system32\drivers\spsys.sys
      0x07000000 \SystemRoot\system32\DRIVERS\asyncmac.sys
      0x77020000 \Windows\System32\ntdll.dll
      0x47740000 \Windows\System32\smss.exe
      0xFF340000 \Windows\System32\apisetschema.dll
      0xFFF20000 \Windows\System32\autochk.exe
      0xFF200000 \Windows\System32\rpcrt4.dll
      0xFF190000 \Windows\System32\gdi32.dll
      0xFE400000 \Windows\System32\shell32.dll
      0xFE380000 \Windows\System32\shlwapi.dll
      0xFE350000 \Windows\System32\imm32.dll
      0xFE140000 \Windows\System32\ole32.dll
      0xFE0A0000 \Windows\System32\clbcatq.dll
      0xFE040000 \Windows\System32\Wldap32.dll
      0xFDFC0000 \Windows\System32\difxapi.dll
      0x76F00000 \Windows\System32\kernel32.dll
      0xFDEE0000 \Windows\System32\oleaut32.dll
      0xFDE40000 \Windows\System32\comdlg32.dll
      0xFDCC0000 \Windows\System32\urlmon.dll
      0xFDBB0000 \Windows\System32\msctf.dll
      0xFDB10000 \Windows\System32\msvcrt.dll
      0xFDAC0000 \Windows\System32\ws2_32.dll
      0xFDAB0000 \Windows\System32\lpk.dll
      0xFDAA0000 \Windows\System32\nsi.dll
      0xFDA80000 \Windows\System32\sechost.dll
      0x76E00000 \Windows\System32\user32.dll
      0x771F0000 \Windows\System32\normaliz.dll
      0xFD820000 \Windows\System32\iertutil.dll
      0xFD6F0000 \Windows\System32\wininet.dll
      0xFD6D0000 \Windows\System32\imagehlp.dll
      0xFD5F0000 \Windows\System32\advapi32.dll
      0x771E0000 \Windows\System32\psapi.dll
      0xFD520000 \Windows\System32\usp10.dll
      0xFD340000 \Windows\System32\setupapi.dll
      0xFD2D0000 \Windows\System32\KernelBase.dll
      0xFD160000 \Windows\System32\crypt32.dll
      0xFD120000 \Windows\System32\wintrust.dll
      0xFD080000 \Windows\System32\comctl32.dll
      0xFD040000 \Windows\System32\cfgmgr32.dll
      0xFD020000 \Windows\System32\devobj.dll
      0xFD010000 \Windows\System32\msasn1.dll
      0x754B0000 \Windows\SysWOW64\normaliz.dll

    Processes (total 85):
           0 System Idle Process
           4 System
         376 C:\Windows\System32\smss.exe
         556 csrss.exe
         616 C:\Windows\System32\wininit.exe
         648 csrss.exe
         680 C:\Windows\System32\services.exe
         712 C:\Windows\System32\winlogon.exe
         740 C:\Windows\System32\lsass.exe
         752 C:\Windows\System32\lsm.exe
         844 C:\Windows\System32\svchost.exe
         912 C:\Windows\System32\nvvsvc.exe
         936 C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
         980 C:\Windows\System32\svchost.exe
         420 C:\Windows\System32\svchost.exe
         488 C:\Windows\System32\svchost.exe
         804 C:\Windows\System32\svchost.exe
        1076 C:\Windows\System32\audiodg.exe
        1124 C:\Windows\System32\svchost.exe
        1264 C:\Windows\System32\svchost.exe
        1396 C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
        1408 C:\Windows\System32\nvvsvc.exe
        1492 C:\Windows\System32\spoolsv.exe
        1520 C:\Windows\System32\svchost.exe
        1696 C:\Program Files\SUPERAntiSpyware\SASCore64.exe
        1720 C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
        1744 C:\Windows\SysWOW64\svchost.exe
        1764 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
        1972 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\avp.exe
        2012 C:\Program Files\Bonjour\mDNSResponder.exe
        1064 C:\ProgramData\EPSON\EPW!3 SSRP\E_S30RP1.EXE
        1156 C:\Windows\System32\svchost.exe
        1556 C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
        1776 C:\Program Files (x86)\Common Files\microsoft shared\VS7DEBUG\MDM.EXE
        1884 C:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe
        1476 C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
        2080 C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
        2144 C:\Windows\System32\svchost.exe
        2316 C:\Program Files (x86)\Canon\CAL\CALMAIN.exe
        3012 C:\Windows\System32\taskhost.exe
        1644 C:\Windows\explorer.exe
        1604 C:\Windows\System32\dwm.exe
        3112 C:\Windows\System32\svchost.exe
        3276 C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
        3564 C:\Program Files (x86)\Adobe\Adobe Bridge CS5\Bridge.exe
        3576 C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
        3584 C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
        3664 C:\Program Files (x86)\ScanSoft\OmniPageSE4.0\OpWareSE4.exe
        3752 C:\Program Files (x86)\Adobe\Acrobat 7.0\Reader\reader_sl.exe
        3792 C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
        3816 C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ArcCon.ac
        3900 C:\Windows\System32\taskeng.exe
        4072 C:\Program Files (x86)\iTunes\iTunesHelper.exe
        4080 C:\Program Files (x86)\QuickTime\QTTask.exe
        3872 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\avp.exe
        3828 C:\Windows\System32\SearchIndexer.exe
        4136 C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
        4236 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
        4512 C:\Program Files\iPod\bin\iPodService.exe
        5048 C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
        5080 C:\Program Files\Windows Media Player\wmpnetwk.exe
        4688 C:\Program Files (x86)\Internet Explorer\iexplore.exe
        4904 C:\Program Files (x86)\Internet Explorer\iexplore.exe
        3172 C:\Program Files (x86)\Yahoo!\Messenger\Ymsgr_tray.exe
        2644 WmiPrvSE.exe
        4752 C:\Windows\System32\SearchProtocolHost.exe
        1380 C:\Windows\System32\svchost.exe
        4056 C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
        1536 C:\Windows\SysWOW64\Macromed\Flash\FlashUtil11e_ActiveX.exe
        4184 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2012\x64\klwtblfs.exe
        5888 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
        5172 C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
        5244 C:\Windows\System32\sppsvc.exe
        6120 C:\Windows\System32\svchost.exe
        5736 taskhost.exe
        5924 WmiPrvSE.exe
        5352 C:\Program Files (x86)\Internet Explorer\iexplore.exe
        5848 C:\Windows\servicing\TrustedInstaller.exe
        4400 C:\Users\Richard\Desktop\MBRCheck.exe
        1464 C:\Windows\System32\conhost.exe
        5008 C:\Windows\System32\dllhost.exe
         188 C:\Windows\System32\VSSVC.exe
        5372 C:\Windows\System32\svchost.exe
        3216 C:\Windows\System32\SearchProtocolHost.exe
        3176 C:\Windows\System32\SearchFilterHost.exe

    \\.\C: --> \\.\PhysicalDrive0 at offset 0x00000000`06500000  (NTFS)
    \\.\D: --> \\.\PhysicalDrive1 at offset 0x00000000`00007e00  (NTFS)
    \\.\E: --> \\.\PhysicalDrive2 at offset 0x00000000`00007e00  (NTFS)
    \\.\G: --> \\.\PhysicalDrive0 at offset 0x00000000`00100000  (NTFS)

    PhysicalDrive0 Model Number: HitachiHDS721050CLA362, Rev: JP2OA3MA
    PhysicalDrive1 Model Number: ST3200822A, Rev: 3.01   
    PhysicalDrive2 Model Number: Maxtor2B020H1, Rev: WAK21R90

          Size  Device Name          MBR Status
      --------------------------------------------
        465 GB  \\.\PhysicalDrive0   Windows 7 MBR code detected
                SHA1: 4379A3D43019B46FA357F7DD6A53B45A3CA8FB7 9
        186 GB  \\.\PhysicalDrive1   Windows 7 MBR code detected
                SHA1: 4379A3D43019B46FA357F7DD6A53B45A3CA8FB7 9
         19 GB  \\.\PhysicalDrive2   Windows XP MBR code detected
                SHA1: DA38B874B7713D1B51CBC449F4EF809B0DEC644 A


    Done!
    Logged

    SuperDave

    • Malware Removal Specialist


      • Genius
      • Thanked: 1020
    • Certifications: List
    • Experience: Expert
    • OS: Windows 10
    Re: Am I infected.. My PC is VERY VERY SLOOOOW!
    « Reply #22 on: February 10, 2012, 12:33:14 PM »
    • Download TDSSKiller and save it to your Desktop.
    • Extract its contents to your desktop.
    • Once extracted, open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
    • If an infected file is detected, the default action will be Cure, click on Continue.
    • If a suspicious file is detected, the default action will be Skip, click on Continue.
    • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
    • Click the Report button and copy/paste the contents of it into your next reply
    Note:It will also create a log in the C:\ directory..
    Logged
    Windows 8 and Windows 10 dual boot with two SSD's

    Northenlad60

      Topic Starter


      Rookie

      • Yes
    • Experience: Experienced
    • OS: Windows 7
    Re: Am I infected.. My PC is VERY VERY SLOOOOW!
    « Reply #23 on: February 11, 2012, 01:30:29 AM »
    Hi,

    I have run the application and the log is posted below. I would like to say thanks for this, as I do think the PC is running better. The fact that the last 2 scans picked nothing up, seems to show everything is ok.

    08:27:42.0788 1984   TDSS rootkit removing tool 2.7.11.0 Feb  9 2012 10:12:57
    08:27:42.0975 1984   ============================================================
    08:27:42.0975 1984   Current date / time: 2012/02/11 08:27:42.0975
    08:27:42.0975 1984   SystemInfo:
    08:27:42.0975 1984   
    08:27:42.0975 1984   OS Version: 6.1.7601 ServicePack: 1.0
    08:27:42.0975 1984   Product type: Workstation
    08:27:42.0975 1984   ComputerName: MYRNAS-PICS
    08:27:42.0975 1984   UserName: Richard
    08:27:42.0975 1984   Windows directory: C:\Windows
    08:27:42.0975 1984   System windows directory: C:\Windows
    08:27:42.0975 1984   Running under WOW64
    08:27:42.0975 1984   Processor architecture: Intel x64
    08:27:42.0975 1984   Number of processors: 4
    08:27:42.0975 1984   Page size: 0x1000
    08:27:42.0975 1984   Boot type: Normal boot
    08:27:42.0975 1984   ============================================================
    08:27:44.0301 1984   Drive \Device\Harddisk2\DR2 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xFC59, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000040
    08:27:44.0301 1984   Drive \Device\Harddisk0\DR0 - Size: 0x2E93A2DE00 (186.31 Gb), SectorSize: 0x200, Cylinders: 0x5F00, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
    08:27:44.0301 1984   Drive \Device\Harddisk1\DR1 - Size: 0x4C5552000 (19.08 Gb), SectorSize: 0x200, Cylinders: 0x9BB, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
    08:27:44.0317 1984   \Device\Harddisk2\DR2:
    08:27:44.0317 1984   MBR used
    08:27:44.0317 1984   \Device\Harddisk2\DR2\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
    08:27:44.0317 1984   \Device\Harddisk2\DR2\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x3A353000
    08:27:44.0317 1984   \Device\Harddisk0\DR0:
    08:27:44.0317 1984   MBR used
    08:27:44.0317 1984   \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x1749D131
    08:27:44.0317 1984   \Device\Harddisk1\DR1:
    08:27:44.0317 1984   MBR used
    08:27:44.0317 1984   \Device\Harddisk1\DR1\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x26260FB
    08:27:44.0364 1984   Initialize success
    08:27:44.0364 1984   ============================================================
    08:27:46.0548 2428   ============================================================
    08:27:46.0548 2428   Scan started
    08:27:46.0548 2428   Mode: Manual;
    08:27:46.0548 2428   ============================================================
    08:27:48.0326 2428   1394ohci        (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
    08:27:48.0326 2428   1394ohci - ok
    08:27:48.0357 2428   ACPI            (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
    08:27:48.0373 2428   ACPI - ok
    08:27:48.0466 2428   AcpiPmi         (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
    08:27:48.0482 2428   AcpiPmi - ok
    08:27:48.0498 2428   ACRUSBTM - ok
    08:27:48.0591 2428   adp94xx         (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
    08:27:48.0607 2428   adp94xx - ok
    08:27:48.0669 2428   adpahci         (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
    08:27:48.0669 2428   adpahci - ok
    08:27:48.0763 2428   adpu320         (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
    08:27:48.0763 2428   adpu320 - ok
    08:27:48.0872 2428   AFD             (d5b031c308a409a0a576bff4cf083d30) C:\Windows\system32\drivers\afd.sys
    08:27:48.0872 2428   AFD - ok
    08:27:49.0012 2428   agp440          (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
    08:27:49.0012 2428   agp440 - ok
    08:27:49.0215 2428   aliide          (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
    08:27:49.0215 2428   aliide - ok
    08:27:49.0246 2428   amdide          (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
    08:27:49.0246 2428   amdide - ok
    08:27:49.0324 2428   AmdK8           (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
    08:27:49.0324 2428   AmdK8 - ok
    08:27:49.0356 2428   AmdPPM          (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
    08:27:49.0356 2428   AmdPPM - ok
    08:27:49.0418 2428   amdsata         (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
    08:27:49.0434 2428   amdsata - ok
    08:27:49.0512 2428   amdsbs          (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
    08:27:49.0512 2428   amdsbs - ok
    08:27:49.0590 2428   amdxata         (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
    08:27:49.0590 2428   amdxata - ok
    08:27:49.0714 2428   AODDriver       (f160ecce1500a5a5877c123584e86b17) C:\Program Files (x86)\Gigabyte\ET6\amd64\AODDriver.sys
    08:27:49.0714 2428   AODDriver - ok
    08:27:49.0808 2428   AppID           (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
    08:27:49.0808 2428   AppID - ok
    08:27:49.0933 2428   arc             (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
    08:27:49.0933 2428   arc - ok
    08:27:49.0948 2428   arcsas          (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
    08:27:49.0948 2428   arcsas - ok
    08:27:50.0011 2428   ASAPIW2k - ok
    08:27:50.0042 2428   AsyncMac        (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
    08:27:50.0042 2428   AsyncMac - ok
    08:27:50.0104 2428   atapi           (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
    08:27:50.0104 2428   atapi - ok
    08:27:50.0198 2428   b06bdrv         (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
    08:27:50.0214 2428   b06bdrv - ok
    08:27:50.0260 2428   b57nd60a        (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
    08:27:50.0260 2428   b57nd60a - ok
    08:27:50.0354 2428   Beep            (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
    08:27:50.0354 2428   Beep - ok
    08:27:50.0401 2428   blbdrive        (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
    08:27:50.0401 2428   blbdrive - ok
    08:27:50.0510 2428   bowser          (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
    08:27:50.0526 2428   bowser - ok
    08:27:50.0541 2428   BrFiltLo        (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
    08:27:50.0541 2428   BrFiltLo - ok
    08:27:50.0588 2428   BrFiltUp        (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
    08:27:50.0588 2428   BrFiltUp - ok
    08:27:50.0697 2428   BridgeMP        (5c2f352a4e961d72518261257aae204b) C:\Windows\system32\DRIVERS\bridge.sys
    08:27:50.0697 2428   BridgeMP - ok
    08:27:50.0744 2428   Brserid         (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
    08:27:50.0760 2428   Brserid - ok
    08:27:50.0775 2428   BrSerWdm        (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
    08:27:50.0775 2428   BrSerWdm - ok
    08:27:50.0838 2428   BrUsbMdm        (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
    08:27:50.0853 2428   BrUsbMdm - ok
    08:27:50.0947 2428   BrUsbSer        (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
    08:27:50.0947 2428   BrUsbSer - ok
    08:27:50.0962 2428   BTHMODEM        (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
    08:27:50.0978 2428   BTHMODEM - ok
    08:27:50.0978 2428   catchme - ok
    08:27:51.0072 2428   cdfs            (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
    08:27:51.0072 2428   cdfs - ok
    08:27:51.0150 2428   cdrom           (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\drivers\cdrom.sys
    08:27:51.0165 2428   cdrom - ok
    08:27:51.0243 2428   circlass        (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
    08:27:51.0243 2428   circlass - ok
    08:27:51.0274 2428   CLFS            (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
    08:27:51.0274 2428   CLFS - ok
    08:27:51.0384 2428   CmBatt          (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
    08:27:51.0384 2428   CmBatt - ok
    08:27:51.0446 2428   cmdide          (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
    08:27:51.0446 2428   cmdide - ok
    08:27:51.0508 2428   CNG             (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys
    08:27:51.0508 2428   CNG - ok
    08:27:51.0586 2428   Compbatt        (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
    08:27:51.0586 2428   Compbatt - ok
    08:27:51.0696 2428   CompositeBus    (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
    08:27:51.0696 2428   CompositeBus - ok
    08:27:51.0774 2428   crcdisk         (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
    08:27:51.0774 2428   crcdisk - ok
    08:27:51.0867 2428   DfsC            (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
    08:27:51.0867 2428   DfsC - ok
    08:27:51.0945 2428   discache        (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
    08:27:51.0945 2428   discache - ok
    08:27:51.0976 2428   Disk            (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
    08:27:51.0976 2428   Disk - ok
    08:27:52.0070 2428   drmkaud         (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
    08:27:52.0070 2428   drmkaud - ok
    08:27:52.0148 2428   DXGKrnl         (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
    08:27:52.0164 2428   DXGKrnl - ok
    08:27:52.0304 2428   ebdrv           (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
    08:27:52.0320 2428   ebdrv - ok
    08:27:52.0413 2428   elxstor         (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
    08:27:52.0413 2428   elxstor - ok
    08:27:52.0538 2428   ErrDev          (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
    08:27:52.0554 2428   ErrDev - ok
    08:27:52.0585 2428   etdrv           (84486624268e078255bc7aa47f0960bc) C:\Windows\etdrv.sys
    08:27:52.0585 2428   etdrv - ok
    08:27:52.0694 2428   exfat           (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
    08:27:52.0694 2428   exfat - ok
    08:27:52.0725 2428   fastfat         (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
    08:27:52.0741 2428   fastfat - ok
    08:27:52.0834 2428   fdc             (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
    08:27:52.0834 2428   fdc - ok
    08:27:52.0897 2428   FileInfo        (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
    08:27:52.0912 2428   FileInfo - ok
    08:27:52.0928 2428   Filetrace       (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
    08:27:52.0928 2428   Filetrace - ok
    08:27:53.0068 2428   flpydisk        (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
    08:27:53.0068 2428   flpydisk - ok
    08:27:53.0162 2428   FltMgr          (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
    08:27:53.0162 2428   FltMgr - ok
    08:27:53.0224 2428   FsDepends       (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
    08:27:53.0224 2428   FsDepends - ok
    08:27:53.0271 2428   Fs_Rec          (e95ef8547de20cf0603557c0cf7a9462) C:\Windows\system32\drivers\Fs_Rec.sys
    08:27:53.0271 2428   Fs_Rec - ok
    08:27:53.0365 2428   fvevol          (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
    08:27:53.0365 2428   fvevol - ok
    08:27:53.0412 2428   gagp30kx        (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
    08:27:53.0412 2428   gagp30kx - ok
    08:27:53.0474 2428   gdrv            (7907e14f9bcf3a4689c9a74a1a873cb6) C:\Windows\gdrv.sys
    08:27:53.0474 2428   gdrv - ok
    08:27:53.0568 2428   GEARAspiWDM     (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
    08:27:53.0568 2428   GEARAspiWDM - ok
    08:27:53.0692 2428   GVTDrv64        (8126331fbd4ed29eb3b356f9c905064d) C:\Windows\GVTDrv64.sys
    08:27:53.0692 2428   GVTDrv64 - ok
    08:27:53.0755 2428   hcw85cir        (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
    08:27:53.0755 2428   hcw85cir - ok
    08:27:53.0848 2428   HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
    08:27:53.0864 2428   HdAudAddService - ok
    08:27:53.0942 2428   HDAudBus        (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
    08:27:53.0942 2428   HDAudBus - ok
    08:27:53.0989 2428   HidBatt         (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
    08:27:53.0989 2428   HidBatt - ok
    08:27:54.0020 2428   HidBth          (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
    08:27:54.0020 2428   HidBth - ok
    08:27:54.0067 2428   HidIr           (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
    08:27:54.0067 2428   HidIr - ok
    08:27:54.0176 2428   HidUsb          (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
    08:27:54.0176 2428   HidUsb - ok
    08:27:54.0254 2428   HpSAMD          (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
    08:27:54.0254 2428   HpSAMD - ok
    08:27:54.0348 2428   HTTP            (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
    08:27:54.0363 2428   HTTP - ok
    08:27:54.0410 2428   hwpolicy        (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
    08:27:54.0410 2428   hwpolicy - ok
    08:27:54.0535 2428   i8042prt        (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
    08:27:54.0535 2428   i8042prt - ok
    08:27:54.0582 2428   iaStorV         (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
    08:27:54.0582 2428   iaStorV - ok
    08:27:54.0706 2428   iirsp           (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
    08:27:54.0706 2428   iirsp - ok
    08:27:54.0800 2428   IntcAzAudAddService (76877dd763a2287f58908795f3f5cccb) C:\Windows\system32\drivers\RTKVHD64.sys
    08:27:54.0800 2428   IntcAzAudAddService - ok
    08:27:54.0925 2428   intelide        (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
    08:27:54.0940 2428   intelide - ok
    08:27:54.0972 2428   intelppm        (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
    08:27:54.0972 2428   intelppm - ok
    08:27:55.0081 2428   IpFilterDriver  (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
    08:27:55.0081 2428   IpFilterDriver - ok
    08:27:55.0143 2428   IPMIDRV         (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
    08:27:55.0143 2428   IPMIDRV - ok
    08:27:55.0221 2428   IPNAT           (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
    08:27:55.0221 2428   IPNAT - ok
    08:27:55.0315 2428   IRENUM          (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
    08:27:55.0315 2428   IRENUM - ok
    08:27:55.0377 2428   isapnp          (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
    08:27:55.0377 2428   isapnp - ok
    08:27:55.0440 2428   iScsiPrt        (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
    08:27:55.0455 2428   iScsiPrt - ok
    08:27:55.0533 2428   kbdclass        (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\drivers\kbdclass.sys
    08:27:55.0533 2428   kbdclass - ok
    08:27:55.0611 2428   kbdhid          (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\drivers\kbdhid.sys
    08:27:55.0611 2428   kbdhid - ok
    08:27:55.0720 2428   kl1             (e656fe10d6d27794afa08136685a69e8) C:\Windows\system32\DRIVERS\kl1.sys
    08:27:55.0720 2428   kl1 - ok
    08:27:55.0830 2428   kl2             (d865dd8b0448e3f963d68c04c532858f) C:\Windows\system32\DRIVERS\kl2.sys
    08:27:55.0830 2428   kl2 - ok
    08:27:55.0876 2428   KLIF            (c7d4f357c482dd37e2b05f34093b7b0c) C:\Windows\system32\DRIVERS\klif.sys
    08:27:55.0892 2428   KLIF - ok
    08:27:55.0954 2428   KLIM6           (89fb5a33d7171b6d84f5eb721d5055e1) C:\Windows\system32\DRIVERS\klim6.sys
    08:27:55.0954 2428   KLIM6 - ok
    08:27:56.0032 2428   klmouflt        (9468d07e91ba136d82415f5dfc1fe168) C:\Windows\system32\DRIVERS\klmouflt.sys
    08:27:56.0032 2428   klmouflt - ok
    08:27:56.0095 2428   KSecDD          (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys
    08:27:56.0095 2428   KSecDD - ok
    08:27:56.0188 2428   KSecPkg         (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys
    08:27:56.0204 2428   KSecPkg - ok
    08:27:56.0235 2428   ksthunk         (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
    08:27:56.0235 2428   ksthunk - ok
    08:27:56.0344 2428   lltdio          (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
    08:27:56.0360 2428   lltdio - ok
    08:27:56.0422 2428   LSI_FC          (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
    08:27:56.0422 2428   LSI_FC - ok
    08:27:56.0500 2428   LSI_SAS         (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
    08:27:56.0500 2428   LSI_SAS - ok
    08:27:56.0532 2428   LSI_SAS2        (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
    08:27:56.0532 2428   LSI_SAS2 - ok
    08:27:56.0563 2428   LSI_SCSI        (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
    08:27:56.0563 2428   LSI_SCSI - ok
    08:27:56.0656 2428   luafv           (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
    08:27:56.0672 2428   luafv - ok
    08:27:56.0734 2428   MarvinBus       (024da28053d57e9e32bee52600576bbb) C:\Windows\system32\DRIVERS\MarvinBus64.sys
    08:27:56.0750 2428   MarvinBus - ok
    08:27:56.0875 2428   MBAMProtector   (79da94b35371b9e7104460c7693dcb2c) C:\Windows\system32\drivers\mbam.sys
    08:27:56.0875 2428   MBAMProtector - ok
    08:27:56.0968 2428   megasas         (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
    08:27:56.0968 2428   megasas - ok
    08:27:57.0015 2428   MegaSR          (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
    08:27:57.0031 2428   MegaSR - ok
    08:27:57.0109 2428   Modem           (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
    08:27:57.0109 2428   Modem - ok
    08:27:57.0140 2428   monitor         (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
    08:27:57.0140 2428   monitor - ok
    08:27:57.0218 2428   mouclass        (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
    08:27:57.0218 2428   mouclass - ok
    08:27:57.0265 2428   mouhid          (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
    08:27:57.0265 2428   mouhid - ok
    08:27:57.0327 2428   mountmgr        (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
    08:27:57.0327 2428   mountmgr - ok
    08:27:57.0405 2428   mpio            (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
    08:27:57.0405 2428   mpio - ok
    08:27:57.0468 2428   mpsdrv          (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
    08:27:57.0468 2428   mpsdrv - ok
    08:27:57.0561 2428   MRxDAV          (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
    08:27:57.0561 2428   MRxDAV - ok
    08:27:57.0670 2428   mrxsmb          (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
    08:27:57.0670 2428   mrxsmb - ok
    08:27:57.0748 2428   mrxsmb10        (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
    08:27:57.0748 2428   mrxsmb10 - ok
    08:27:57.0858 2428   mrxsmb20        (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
    08:27:57.0858 2428   mrxsmb20 - ok
    08:27:57.0920 2428   msahci          (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
    08:27:57.0920 2428   msahci - ok
    08:27:58.0014 2428   msdsm           (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
    08:27:58.0014 2428   msdsm - ok
    08:27:58.0076 2428   Msfs            (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
    08:27:58.0076 2428   Msfs - ok
    08:27:58.0138 2428   mshidkmdf       (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
    08:27:58.0138 2428   mshidkmdf - ok
    08:27:58.0201 2428   msisadrv        (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
    08:27:58.0201 2428   msisadrv - ok
    08:27:58.0294 2428   MSKSSRV         (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
    08:27:58.0294 2428   MSKSSRV - ok
    08:27:58.0310 2428   MSPCLOCK        (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
    08:27:58.0310 2428   MSPCLOCK - ok
    08:27:58.0326 2428   MSPQM           (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
    08:27:58.0326 2428   MSPQM - ok
    08:27:58.0388 2428   MsRPC           (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
    08:27:58.0388 2428   MsRPC - ok
    08:27:58.0497 2428   mssmbios        (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
    08:27:58.0497 2428   mssmbios - ok
    08:27:58.0606 2428   MSTEE           (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
    08:27:58.0606 2428   MSTEE - ok
    08:27:58.0653 2428   MTConfig        (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
    08:27:58.0653 2428   MTConfig - ok
    08:27:58.0716 2428   Mup             (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
    08:27:58.0716 2428   Mup - ok
    08:27:58.0778 2428   NativeWifiP     (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
    08:27:58.0794 2428   NativeWifiP - ok
    08:27:58.0950 2428   NDIS            (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
    08:27:58.0965 2428   NDIS - ok
    08:27:59.0059 2428   NdisCap         (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
    08:27:59.0059 2428   NdisCap - ok
    08:27:59.0152 2428   NdisTapi        (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
    08:27:59.0152 2428   NdisTapi - ok
    08:27:59.0215 2428   Ndisuio         (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
    08:27:59.0215 2428   Ndisuio - ok
    08:27:59.0324 2428   NdisWan         (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
    08:27:59.0324 2428   NdisWan - ok
    08:27:59.0386 2428   NDProxy         (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
    08:27:59.0386 2428   NDProxy - ok
    08:27:59.0433 2428   NetBIOS         (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
    08:27:59.0433 2428   NetBIOS - ok
    08:27:59.0527 2428   NetBT           (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
    08:27:59.0527 2428   NetBT - ok
    08:27:59.0605 2428   nfrd960         (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
    08:27:59.0605 2428   nfrd960 - ok
    08:27:59.0652 2428   Npfs            (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
    08:27:59.0652 2428   Npfs - ok
    08:27:59.0667 2428   nsiproxy        (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
    08:27:59.0667 2428   nsiproxy - ok
    08:27:59.0776 2428   Ntfs            (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
    08:27:59.0792 2428   Ntfs - ok
    08:27:59.0870 2428   Null            (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
    08:27:59.0870 2428   Null - ok
    08:27:59.0948 2428   NVHDA           (960e39a54e525df58cb29193147dffa1) C:\Windows\system32\drivers\nvhda64v.sys
    08:27:59.0948 2428   NVHDA - ok
    08:28:00.0229 2428   nvlddmkm        (cc1efea1f0ab17e59bd4b5baff3e5cb0) C:\Windows\system32\DRIVERS\nvlddmkm.sys
    08:28:00.0276 2428   nvlddmkm - ok
    08:28:00.0369 2428   nvraid          (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
    08:28:00.0385 2428   nvraid - ok
    08:28:00.0400 2428   nvstor          (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
    08:28:00.0400 2428   nvstor - ok
    08:28:00.0541 2428   nv_agp          (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
    08:28:00.0541 2428   nv_agp - ok
    08:28:00.0572 2428   ohci1394        (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
    08:28:00.0572 2428   ohci1394 - ok
    08:28:00.0681 2428   Parport         (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
    08:28:00.0681 2428   Parport - ok
    08:28:00.0744 2428   partmgr         (871eadac56b0a4c6512bbe32753ccf79) C:\Windows\system32\drivers\partmgr.sys
    08:28:00.0744 2428   partmgr - ok
    08:28:00.0884 2428   pci             (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
    08:28:00.0884 2428   pci - ok
    08:28:00.0915 2428   pciide          (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
    08:28:00.0915 2428   pciide - ok
    08:28:00.0962 2428   PCLEPCI - ok
    08:28:01.0009 2428   pcmcia          (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
    08:28:01.0009 2428   pcmcia - ok
    08:28:01.0040 2428   pcw             (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
    08:28:01.0040 2428   pcw - ok
    08:28:01.0134 2428   PEAUTH          (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
    08:28:01.0134 2428   PEAUTH - ok
    08:28:01.0258 2428   PptpMiniport    (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
    08:28:01.0258 2428   PptpMiniport - ok
    08:28:01.0336 2428   Processor       (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
    08:28:01.0336 2428   Processor - ok
    08:28:01.0414 2428   Psched          (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
    08:28:01.0414 2428   Psched - ok
    08:28:01.0539 2428   ql2300          (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
    08:28:01.0555 2428   ql2300 - ok
    08:28:01.0570 2428   ql40xx          (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
    08:28:01.0570 2428   ql40xx - ok
    08:28:01.0680 2428   QWAVEdrv        (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
    08:28:01.0680 2428   QWAVEdrv - ok
    08:28:01.0695 2428   RasAcd          (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
    08:28:01.0695 2428   RasAcd - ok
    08:28:01.0742 2428   RasAgileVpn     (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
    08:28:01.0742 2428   RasAgileVpn - ok
    08:28:01.0836 2428   Rasl2tp         (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
    08:28:01.0836 2428   Rasl2tp - ok
    08:28:01.0898 2428   RasPppoe        (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
    08:28:01.0898 2428   RasPppoe - ok
    08:28:01.0945 2428   RasSstp         (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
    08:28:01.0945 2428   RasSstp - ok
    08:28:02.0023 2428   rdbss           (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
    08:28:02.0038 2428   rdbss - ok
    08:28:02.0054 2428   rdpbus          (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
    08:28:02.0054 2428   rdpbus - ok
    08:28:02.0101 2428   RDPCDD          (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
    08:28:02.0101 2428   RDPCDD - ok
    08:28:02.0163 2428   RDPENCDD        (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
    08:28:02.0163 2428   RDPENCDD - ok
    08:28:02.0194 2428   RDPREFMP        (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
    08:28:02.0194 2428   RDPREFMP - ok
    08:28:02.0288 2428   RDPWD           (15b66c206b5cb095bab980553f38ed23) C:\Windows\system32\drivers\RDPWD.sys
    08:28:02.0288 2428   RDPWD - ok
    08:28:02.0397 2428   rdyboost        (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
    08:28:02.0397 2428   rdyboost - ok
    08:28:02.0491 2428   rspndr          (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
    08:28:02.0491 2428   rspndr - ok
    08:28:02.0522 2428   RTL8167         (3b01789ee4eaee97f5eb46b711387d5e) C:\Windows\system32\DRIVERS\Rt64win7.sys
    08:28:02.0538 2428   RTL8167 - ok
    08:28:02.0600 2428   SASDIFSV        (3289766038db2cb14d07dc84392138d5) C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
    08:28:02.0600 2428   SASDIFSV - ok
    08:28:02.0631 2428   SASKUTIL        (58a38e75f3316a83c23df6173d41f2b5) C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
    08:28:02.0631 2428   SASKUTIL - ok
    08:28:02.0725 2428   sbp2port        (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
    08:28:02.0740 2428   sbp2port - ok
    08:28:02.0787 2428   scfilter        (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
    08:28:02.0787 2428   scfilter - ok
    08:28:02.0912 2428   secdrv          (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
    08:28:02.0912 2428   secdrv - ok
    08:28:02.0959 2428   Serenum         (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
    08:28:02.0959 2428   Serenum - ok
    08:28:02.0974 2428   Serial          (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
    08:28:02.0990 2428   Serial - ok
    08:28:03.0084 2428   sermouse        (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
    08:28:03.0084 2428   sermouse - ok
    08:28:03.0130 2428   sffdisk         (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
    08:28:03.0130 2428   sffdisk - ok
    08:28:03.0146 2428   sffp_mmc        (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
    08:28:03.0146 2428   sffp_mmc - ok
    08:28:03.0224 2428   sffp_sd         (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
    08:28:03.0224 2428   sffp_sd - ok
    08:28:03.0271 2428   sfloppy         (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
    08:28:03.0271 2428   sfloppy - ok
    08:28:03.0302 2428   SiSRaid2        (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
    08:28:03.0302 2428   SiSRaid2 - ok
    08:28:03.0364 2428   SiSRaid4        (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
    08:28:03.0364 2428   SiSRaid4 - ok
    08:28:03.0411 2428   Smb             (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
    08:28:03.0411 2428   Smb - ok
    08:28:03.0489 2428   spldr           (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
    08:28:03.0505 2428   spldr - ok
    08:28:03.0661 2428   srv             (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
    08:28:03.0676 2428   srv - ok
    08:28:03.0708 2428   srv2            (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
    08:28:03.0708 2428   srv2 - ok
    08:28:03.0739 2428   srvnet          (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
    08:28:03.0739 2428   srvnet - ok
    08:28:03.0848 2428   stexstor        (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
    08:28:03.0848 2428   stexstor - ok
    08:28:03.0926 2428   swenum          (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
    08:28:03.0926 2428   swenum - ok
    08:28:04.0004 2428   TBPanel - ok
    08:28:04.0113 2428   Tcpip           (fc62769e7bff2896035aeed399108162) C:\Windows\system32\drivers\tcpip.sys
    08:28:04.0144 2428   Tcpip - ok
    08:28:04.0285 2428   TCPIP6          (fc62769e7bff2896035aeed399108162) C:\Windows\system32\DRIVERS\tcpip.sys
    08:28:04.0300 2428   TCPIP6 - ok
    08:28:04.0363 2428   tcpipreg        (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
    08:28:04.0363 2428   tcpipreg - ok
    08:28:04.0441 2428   TDPIPE          (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
    08:28:04.0456 2428   TDPIPE - ok
    08:28:04.0472 2428   TDTCP           (e4245bda3190a582d55ed09e137401a9) C:\Windows\system32\drivers\tdtcp.sys
    08:28:04.0472 2428   TDTCP - ok
    08:28:04.0581 2428   tdx             (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
    08:28:04.0581 2428   tdx - ok
    08:28:04.0659 2428   TermDD          (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
    08:28:04.0659 2428   TermDD - ok
    08:28:04.0753 2428   tssecsrv        (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
    08:28:04.0768 2428   tssecsrv - ok
    08:28:04.0893 2428   TsUsbFlt        (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
    08:28:04.0893 2428   TsUsbFlt - ok
    08:28:04.0987 2428   tunnel          (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
    08:28:04.0987 2428   tunnel - ok
    08:28:05.0065 2428   uagp35          (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
    08:28:05.0065 2428   uagp35 - ok
    08:28:05.0127 2428   udfs            (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
    08:28:05.0143 2428   udfs - ok
    08:28:05.0268 2428   uliagpkx        (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
    08:28:05.0268 2428   uliagpkx - ok
    08:28:05.0299 2428   umbus           (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys
    08:28:05.0299 2428   umbus - ok
    08:28:05.0330 2428   UmPass          (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
    08:28:05.0330 2428   UmPass - ok
    08:28:05.0424 2428   USBAAPL64       (aa33fc47ed58c34e6e9261e4f850b7eb) C:\Windows\system32\Drivers\usbaapl64.sys
    08:28:05.0439 2428   USBAAPL64 - ok
    08:28:05.0486 2428   usbccgp         (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
    08:28:05.0502 2428   usbccgp - ok
    08:28:05.0564 2428   usbcir          (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
    08:28:05.0564 2428   usbcir - ok
    08:28:05.0595 2428   usbehci         (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\DRIVERS\usbehci.sys
    08:28:05.0595 2428   usbehci - ok
    08:28:05.0689 2428   usbhub          (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
    08:28:05.0689 2428   usbhub - ok
    08:28:05.0798 2428   usbohci         (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\DRIVERS\usbohci.sys
    08:28:05.0798 2428   usbohci - ok
    08:28:05.0829 2428   usbprint        (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
    08:28:05.0829 2428   usbprint - ok
    08:28:05.0938 2428   usbscan         (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
    08:28:05.0938 2428   usbscan - ok
    08:28:06.0001 2428   USBSTOR         (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
    08:28:06.0001 2428   USBSTOR - ok
    08:28:06.0048 2428   usbuhci         (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
    08:28:06.0063 2428   usbuhci - ok
    08:28:06.0157 2428   vdrvroot        (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
    08:28:06.0157 2428   vdrvroot - ok
    08:28:06.0219 2428   vga             (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
    08:28:06.0219 2428   vga - ok
    08:28:06.0250 2428   VgaSave         (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
    08:28:06.0250 2428   VgaSave - ok
    08:28:06.0313 2428   vhdmp           (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
    08:28:06.0313 2428   vhdmp - ok
    08:28:06.0375 2428   viaide          (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
    08:28:06.0375 2428   viaide - ok
    08:28:06.0422 2428   volmgr          (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
    08:28:06.0422 2428   volmgr - ok
    08:28:06.0500 2428   volmgrx         (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
    08:28:06.0500 2428   volmgrx - ok
    08:28:06.0609 2428   volsnap         (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
    08:28:06.0609 2428   volsnap - ok
    08:28:06.0656 2428   vsmraid         (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
    08:28:06.0672 2428   vsmraid - ok
    08:28:06.0952 2428   VSPerfDrv90     (858c3833cd5a359b110bc5ec1f760cbd) C:\Program Files (x86)\Microsoft Visual Studio 9.0\Team Tools\Performance Tools\x64\VSPerfDrv90.sys
    08:28:06.0968 2428   VSPerfDrv90 - ok
    08:28:07.0046 2428   vwifibus        (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\System32\drivers\vwifibus.sys
    08:28:07.0046 2428   vwifibus - ok
    08:28:07.0077 2428   WacomPen        (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
    08:28:07.0077 2428   WacomPen - ok
    08:28:07.0186 2428   WANARP          (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
    08:28:07.0186 2428   WANARP - ok
    08:28:07.0202 2428   Wanarpv6        (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
    08:28:07.0202 2428   Wanarpv6 - ok
    08:28:07.0264 2428   Wd              (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
    08:28:07.0264 2428   Wd - ok
    08:28:07.0342 2428   Wdf01000        (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
    08:28:07.0342 2428   Wdf01000 - ok
    08:28:07.0420 2428   WfpLwf          (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
    08:28:07.0420 2428   WfpLwf - ok
    08:28:07.0452 2428   WIMMount        (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
    08:28:07.0452 2428   WIMMount - ok
    08:28:07.0623 2428   WinUsb          (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
    08:28:07.0623 2428   WinUsb - ok
    08:28:07.0654 2428   WmiAcpi         (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
    08:28:07.0654 2428   WmiAcpi - ok
    08:28:07.0686 2428   ws2ifsl         (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
    08:28:07.0686 2428   ws2ifsl - ok
    08:28:07.0810 2428   WudfPf          (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
    08:28:07.0810 2428   WudfPf - ok
    08:28:07.0857 2428   WUDFRd          (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
    08:28:07.0857 2428   WUDFRd - ok
    08:28:07.0904 2428   MBR (0x1B8)     (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk2\DR2
    08:28:07.0966 2428   \Device\Harddisk2\DR2 - ok
    08:28:07.0982 2428   MBR (0x1B8)     (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
    08:28:07.0982 2428   \Device\Harddisk0\DR0 - ok
    08:28:07.0982 2428   MBR (0x1B8)     (8f558eb6672622401da993e1e865c861) \Device\Harddisk1\DR1
    08:28:08.0122 2428   \Device\Harddisk1\DR1 - ok
    08:28:08.0122 2428   Boot (0x1200)   (c2877de7c93f52526b07de6e34c19ffe) \Device\Harddisk2\DR2\Partition0
    08:28:08.0122 2428   \Device\Harddisk2\DR2\Partition0 - ok
    08:28:08.0169 2428   Boot (0x1200)   (3e7ca51556514d05f4394dd1ae1e3ab3) \Device\Harddisk2\DR2\Partition1
    08:28:08.0169 2428   \Device\Harddisk2\DR2\Partition1 - ok
    08:28:08.0169 2428   Boot (0x1200)   (1c1dcb712a572d798d2587ac298deb6b) \Device\Harddisk0\DR0\Partition0
    08:28:08.0169 2428   \Device\Harddisk0\DR0\Partition0 - ok
    08:28:08.0185 2428   Boot (0x1200)   (a5a9019076538a675005bf7370defce2) \Device\Harddisk1\DR1\Partition0
    08:28:08.0185 2428   \Device\Harddisk1\DR1\Partition0 - ok
    08:28:08.0185 2428   ============================================================
    08:28:08.0185 2428   Scan finished
    08:28:08.0185 2428   ============================================================
    08:28:08.0200 5936   Detected object count: 0
    08:28:08.0200 5936   Actual detected object count: 0
    Logged

    SuperDave

    • Malware Removal Specialist


      • Genius
      • Thanked: 1020
    • Certifications: List
    • Experience: Expert
    • OS: Windows 10
    Re: Am I infected.. My PC is VERY VERY SLOOOOW!
    « Reply #24 on: February 11, 2012, 11:22:26 AM »
    Please give me an update on how your computer is running.
    Logged
    Windows 8 and Windows 10 dual boot with two SSD's

    Northenlad60

      Topic Starter


      Rookie

      • Yes
    • Experience: Experienced
    • OS: Windows 7
    Re: Am I infected.. My PC is VERY VERY SLOOOOW!
    « Reply #25 on: February 12, 2012, 03:02:49 AM »
    Hi,

    It does seem to boot and run faster.. Whatever was causing the issue seems to either be gone, or has stopped. I'm very grateful for the help here. Thanks
    Logged

    SuperDave

    • Malware Removal Specialist


      • Genius
      • Thanked: 1020
    • Certifications: List
    • Experience: Expert
    • OS: Windows 10
    Re: Am I infected.. My PC is VERY VERY SLOOOOW!
    « Reply #26 on: February 12, 2012, 11:13:48 AM »
    Quote
    It does seem to boot and run faster.. Whatever was causing the issue seems to either be gone, or has stopped. I'm very grateful for the help here. Thanks
    You're welcome. Now we should do some cleanup.

    To uninstall ComboFix

    • Click the Start button. Click Run. For Vista: type in Run in the Start search, and click on Run in the results pane.
    • In the field, type in ComboFix /uninstall


    (Note: Make sure there's a space between the word ComboFix and the forward-slash.)

    • Then, press Enter, or click OK.
    • This will uninstall ComboFix, delete its folders and files, hides System files and folders, and resets System Restore.
    *****************************************************
    To remove all of the tools we used and the files and folders they created do the following:
    Double click OTL.exe.
    • Click the CleanUp button.
    • Select Yes when the "Begin cleanup Process?" prompt appears.
    • If you are prompted to Reboot during the cleanup, select Yes.
    • The tool will delete itself once it finishes.
    Note: If any tool, file or folder (belonging to the program we have used) hasn't been deleted, please delete it manually.
    *****************************************************
    Clean out your temporary internet files and temp files.

    Download TFC by OldTimer to your desktop.

    Double-click TFC.exe to run it.

    Note: If you are running on Vista, right-click on the file and choose Run As Administrator

    TFC will close all programs when run, so make sure you have saved all your work before you begin.

    * Click the Start button to begin the cleaning process.
    * Depending on how often you clean temp files, execution time should be anywhere from a few seconds to a minute or two.
    * Please let TFC run uninterrupted until it is finished.

    Once TFC is finished it should restart your computer. If it does not, please manually restart the computer yourself to ensure a complete cleaning.
    *****************************************************

    Go to Microsoft Windows Update and get all critical updates.

    ----------

    I suggest using WOT - Web of Trust. WOT is a free Internet security addon for your browser. It will keep you safe from online scams, identity theft, spyware, spam, viruses and unreliable shopping sites. WOT warns you before you interact with a risky website. It's easy and it's free.

    SpywareBlaster- Secure your Internet Explorer to make it harder for ActiveX programs to run on your computer. Also stop certain cookies from being added to your computer when running Mozilla based browsers like Firefox.
    * Using SpywareBlaster to protect your computer from Spyware and Malware
    * If you don't know what ActiveX controls are, see here

    Protect yourself against spyware using the Immunize feature in Spybot - Search & Destroy. Guide: Use Spybot's Immunize Feature to prevent spyware infection in real-time. Note: To ensure you have the latest Immunizations always update Spybot - Search & Destroy before Immunizing. Spybot - Search & Destroy FAQ

    Check out Keeping Yourself Safe On The Web for tips and free tools to help keep you safe in the future.

    Also see Slow Computer? It may not be Malware for free cleaning/maintenance tools to help keep your computer running smoothly.
    Safe Surfing!
    Logged
    Windows 8 and Windows 10 dual boot with two SSD's
    Pages: 1 [2]  All   Go Up
    « previous next »