Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

svchost trojan + fakesysdef removal


  • Please log in to reply
2 replies to this topic

#1 pb114

pb114

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:04:23 PM

Posted 19 April 2012 - 05:27 PM

So a few days ago my girlfriends computer started popping up with alerts from avast about malicious urls. The process line reads "\\.\globalroot\systemroot\svchost.exe" with the object switching between different pages like christian debt reduction and other ad type things. This alert window from avast pops up every few seconds, regardless of whether a browser is open or not.
After running a quick scan with avast it found a trojan named Win32:FakeSysdefs-A, which was quarantined under the file name wh58.dll.
I ran rkill in normal as well as safe mode, both coming back with no problems.

After rkill i ran Malwarebytes which returned this result
-----------------------------------------------------

Malwarebytes Anti-Malware (Trial) 1.61.0.1400
www.malwarebytes.org

Database version: v2012.04.19.03

Windows 7 Service Pack 1 x64 NTFS (Safe Mode/Networking)
Internet Explorer 8.0.7601.17514
krista :: KRISTA [administrator]

Protection: Disabled

4/19/2012 1:42:58 PM
mbam-log-2012-04-19 (13-42-58).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 201025
Time elapsed: 5 minute(s), 24 second(s)

Memory Processes Detected: 1
C:\Windows\svchost.exe (Trojan.Agent) -> 2044 -> Delete on reboot.

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 1
C:\Windows\svchost.exe (Trojan.Agent) -> Delete on reboot.

(end)
---------------------------------------------------------


After this i ran TDSSKiller, here is the log



--------------------------------------------------------
14:29:43.0888 5564 TDSS rootkit removing tool 2.7.29.0 Apr 18 2012 16:44:20
14:29:44.0417 5564 ============================================================
14:29:44.0417 5564 Current date / time: 2012/04/19 14:29:44.0417
14:29:44.0417 5564 SystemInfo:
14:29:44.0417 5564
14:29:44.0417 5564 OS Version: 6.1.7601 ServicePack: 1.0
14:29:44.0417 5564 Product type: Workstation
14:29:44.0417 5564 ComputerName: KRISTAWHITLATCH
14:29:44.0417 5564 UserName: krista whitlatch
14:29:44.0417 5564 Windows directory: C:\Windows
14:29:44.0417 5564 System windows directory: C:\Windows
14:29:44.0417 5564 Running under WOW64
14:29:44.0417 5564 Processor architecture: Intel x64
14:29:44.0418 5564 Number of processors: 2
14:29:44.0418 5564 Page size: 0x1000
14:29:44.0418 5564 Boot type: Normal boot
14:29:44.0418 5564 ============================================================
14:29:46.0068 5564 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
14:29:46.0079 5564 \Device\Harddisk0\DR0:
14:29:46.0087 5564 MBR partitions:
14:29:46.0087 5564 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x63800
14:29:46.0087 5564 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x64000, BlocksNum 0x23925800
14:29:46.0087 5564 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x23989800, BlocksNum 0x1A71000
14:29:46.0107 5564 C: <-> \Device\Harddisk0\DR0\Partition1
14:29:46.0152 5564 D: <-> \Device\Harddisk0\DR0\Partition2
14:29:46.0152 5564 Initialize success
14:29:46.0152 5564 ============================================================
14:29:48.0633 0644 ============================================================
14:29:48.0633 0644 Scan started
14:29:48.0633 0644 Mode: Manual;
14:29:48.0633 0644 ============================================================
14:29:49.0757 0644 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
14:29:49.0763 0644 1394ohci - ok
14:29:49.0821 0644 Accelerometer (1cffe9c06e66a57dae1452e449a58240) C:\Windows\system32\DRIVERS\Accelerometer.sys
14:29:49.0823 0644 Accelerometer - ok
14:29:49.0887 0644 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
14:29:49.0895 0644 ACPI - ok
14:29:49.0919 0644 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
14:29:49.0921 0644 AcpiPmi - ok
14:29:49.0995 0644 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
14:29:50.0003 0644 adp94xx - ok
14:29:50.0159 0644 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
14:29:50.0165 0644 adpahci - ok
14:29:50.0228 0644 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
14:29:50.0232 0644 adpu320 - ok
14:29:50.0260 0644 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
14:29:50.0263 0644 AeLookupSvc - ok
14:29:50.0383 0644 AESTFilters (a6fb9db8f1a86861d955fd6975977ae0) C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_dc6a6e8ef654da29\AESTSr64.exe
14:29:50.0386 0644 AESTFilters - ok
14:29:50.0524 0644 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
14:29:50.0533 0644 AFD - ok
14:29:50.0648 0644 AgereModemAudio (b65f8dba54f251906bbe8611b5a0e7ab) C:\Program Files\LSI SoftModem\agr64svc.exe
14:29:50.0668 0644 AgereModemAudio - ok
14:29:50.0794 0644 AgereSoftModem (af4748ef93416159459769a24a0053af) C:\Windows\system32\DRIVERS\agrsm64.sys
14:29:50.0827 0644 AgereSoftModem - ok
14:29:50.0965 0644 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
14:29:50.0967 0644 agp440 - ok
14:29:51.0039 0644 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
14:29:51.0042 0644 ALG - ok
14:29:51.0111 0644 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
14:29:51.0113 0644 aliide - ok
14:29:51.0185 0644 AMD External Events Utility (d0d8877969011d1b0ed9c3c55a9a9108) C:\Windows\system32\atiesrxx.exe
14:29:51.0190 0644 AMD External Events Utility - ok
14:29:51.0288 0644 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
14:29:51.0289 0644 amdide - ok
14:29:51.0358 0644 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
14:29:51.0360 0644 AmdK8 - ok
14:29:51.0438 0644 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
14:29:51.0440 0644 AmdPPM - ok
14:29:51.0506 0644 amdsata (6ec6d772eae38dc17c14aed9b178d24b) C:\Windows\system32\drivers\amdsata.sys
14:29:51.0510 0644 amdsata - ok
14:29:51.0570 0644 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
14:29:51.0575 0644 amdsbs - ok
14:29:51.0689 0644 amdxata (1142a21db581a84ea5597b03a26ebaa0) C:\Windows\system32\drivers\amdxata.sys
14:29:51.0691 0644 amdxata - ok
14:29:51.0772 0644 ApfiltrService (05f1a0a81a98cf27e3f028213fb6c36a) C:\Windows\system32\DRIVERS\Apfiltr.sys
14:29:51.0778 0644 ApfiltrService - ok
14:29:51.0851 0644 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
14:29:51.0854 0644 AppID - ok
14:29:51.0881 0644 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
14:29:51.0883 0644 AppIDSvc - ok
14:29:52.0019 0644 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
14:29:52.0023 0644 Appinfo - ok
14:29:52.0192 0644 Apple Mobile Device (4b5ae15e5c73eb4dc8dbec2788230d41) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
14:29:52.0196 0644 Apple Mobile Device - ok
14:29:52.0344 0644 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
14:29:52.0347 0644 arc - ok
14:29:52.0391 0644 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
14:29:52.0394 0644 arcsas - ok
14:29:52.0474 0644 aswFsBlk (b9da213b5271db5fce962d827e6d620d) C:\Windows\system32\drivers\aswFsBlk.sys
14:29:52.0476 0644 aswFsBlk - ok
14:29:52.0619 0644 aswMonFlt (21c9835d0e5ad2ff0f16134bcb32cc71) C:\Windows\system32\drivers\aswMonFlt.sys
14:29:52.0622 0644 aswMonFlt - ok
14:29:52.0653 0644 aswRdr (1b96a5867abd4fa6135d8298fcccf9c6) C:\Windows\System32\Drivers\aswrdr2.sys
14:29:52.0655 0644 aswRdr - ok
14:29:52.0743 0644 aswSnx (6e98bb288696777a3a8a07a52b0eaee9) C:\Windows\system32\drivers\aswSnx.sys
14:29:52.0760 0644 aswSnx - ok
14:29:52.0903 0644 aswSP (d9fb49f16e4eb02efecae8cbfe4bcb4c) C:\Windows\system32\drivers\aswSP.sys
14:29:52.0913 0644 aswSP - ok
14:29:52.0979 0644 aswTdi (7352bb9a564b94bbd7c9cbf165f55006) C:\Windows\system32\drivers\aswTdi.sys
14:29:52.0982 0644 aswTdi - ok
14:29:53.0049 0644 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
14:29:53.0051 0644 AsyncMac - ok
14:29:53.0108 0644 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
14:29:53.0110 0644 atapi - ok
14:29:53.0293 0644 athr (38562a6a9cb10844759eaf2b01a7fcd3) C:\Windows\system32\DRIVERS\athrx.sys
14:29:53.0324 0644 athr - ok
14:29:53.0596 0644 AtiHdmiService (38467ff83c2b4265d51f418812a91e3c) C:\Windows\system32\drivers\AtiHdmi.sys
14:29:53.0600 0644 AtiHdmiService - ok
14:29:53.0833 0644 atikmdag (c5758bf1dfd762a5b17041ff061b7750) C:\Windows\system32\DRIVERS\atikmdag.sys
14:29:53.0939 0644 atikmdag - ok
14:29:54.0092 0644 AtiPcie (7c5d273e29dcc5505469b299c6f29163) C:\Windows\system32\DRIVERS\AtiPcie.sys
14:29:54.0093 0644 AtiPcie - ok
14:29:54.0170 0644 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
14:29:54.0182 0644 AudioEndpointBuilder - ok
14:29:54.0200 0644 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
14:29:54.0209 0644 AudioSrv - ok
14:29:54.0345 0644 avast! Antivirus (4041d31508a2a084dfb42c595854090f) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
14:29:54.0346 0644 avast! Antivirus - ok
14:29:54.0500 0644 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
14:29:54.0503 0644 AxInstSV - ok
14:29:54.0630 0644 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
14:29:54.0639 0644 b06bdrv - ok
14:29:54.0721 0644 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
14:29:54.0726 0644 b57nd60a - ok
14:29:54.0859 0644 BBSvc (2ed050291bc1d7f9e322e328db3aaecf) C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE
14:29:54.0863 0644 BBSvc - ok
14:29:54.0936 0644 BBUpdate (785de7abda13309d6065305542829e76) C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
14:29:54.0941 0644 BBUpdate - ok
14:29:55.0012 0644 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
14:29:55.0015 0644 BDESVC - ok
14:29:55.0110 0644 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
14:29:55.0112 0644 Beep - ok
14:29:55.0188 0644 BFE (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
14:29:55.0205 0644 BFE - ok
14:29:55.0314 0644 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\System32\qmgr.dll
14:29:55.0334 0644 BITS - ok
14:29:55.0419 0644 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
14:29:55.0421 0644 blbdrive - ok
14:29:55.0538 0644 Bonjour Service (3f56903e124e820aeece6d471583c6c1) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
14:29:55.0542 0644 Bonjour Service - ok
14:29:55.0641 0644 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
14:29:55.0644 0644 bowser - ok
14:29:55.0697 0644 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
14:29:55.0699 0644 BrFiltLo - ok
14:29:55.0734 0644 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
14:29:55.0736 0644 BrFiltUp - ok
14:29:55.0786 0644 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
14:29:55.0790 0644 Browser - ok
14:29:55.0828 0644 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
14:29:55.0834 0644 Brserid - ok
14:29:55.0855 0644 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
14:29:55.0859 0644 BrSerWdm - ok
14:29:55.0880 0644 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
14:29:55.0881 0644 BrUsbMdm - ok
14:29:55.0936 0644 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
14:29:55.0938 0644 BrUsbSer - ok
14:29:56.0002 0644 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
14:29:56.0004 0644 BTHMODEM - ok
14:29:56.0043 0644 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
14:29:56.0046 0644 bthserv - ok
14:29:56.0137 0644 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
14:29:56.0140 0644 cdfs - ok
14:29:56.0282 0644 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\drivers\cdrom.sys
14:29:56.0285 0644 cdrom - ok
14:29:56.0375 0644 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
14:29:56.0378 0644 CertPropSvc - ok
14:29:56.0481 0644 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
14:29:56.0482 0644 circlass - ok
14:29:56.0534 0644 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
14:29:56.0542 0644 CLFS - ok
14:29:56.0645 0644 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
14:29:56.0648 0644 clr_optimization_v2.0.50727_32 - ok
14:29:56.0884 0644 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
14:29:56.0887 0644 clr_optimization_v2.0.50727_64 - ok
14:29:57.0009 0644 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
14:29:57.0010 0644 CmBatt - ok
14:29:57.0071 0644 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
14:29:57.0072 0644 cmdide - ok
14:29:57.0133 0644 CNG (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys
14:29:57.0144 0644 CNG - ok
14:29:57.0291 0644 Com4QLBEx (f9a79c5b27037821112c50a9c8fb367a) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
14:29:57.0295 0644 Com4QLBEx - ok
14:29:57.0385 0644 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
14:29:57.0388 0644 Compbatt - ok
14:29:57.0457 0644 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
14:29:57.0459 0644 CompositeBus - ok
14:29:57.0490 0644 COMSysApp - ok
14:29:57.0533 0644 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
14:29:57.0535 0644 crcdisk - ok
14:29:57.0602 0644 CryptSvc (15597883fbe9b056f276ada3ad87d9af) C:\Windows\system32\cryptsvc.dll
14:29:57.0609 0644 CryptSvc - ok
14:29:57.0730 0644 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
14:29:57.0749 0644 DcomLaunch - ok
14:29:57.0817 0644 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
14:29:57.0826 0644 defragsvc - ok
14:29:57.0899 0644 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
14:29:57.0902 0644 DfsC - ok
14:29:58.0048 0644 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
14:29:58.0057 0644 Dhcp - ok
14:29:58.0095 0644 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
14:29:58.0097 0644 discache - ok
14:29:58.0130 0644 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
14:29:58.0133 0644 Disk - ok
14:29:58.0192 0644 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
14:29:58.0199 0644 Dnscache - ok
14:29:58.0265 0644 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
14:29:58.0273 0644 dot3svc - ok
14:29:58.0340 0644 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
14:29:58.0346 0644 DPS - ok
14:29:58.0447 0644 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
14:29:58.0449 0644 drmkaud - ok
14:29:58.0527 0644 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
14:29:58.0547 0644 DXGKrnl - ok
14:29:58.0667 0644 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
14:29:58.0673 0644 EapHost - ok
14:29:58.0814 0644 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
14:29:58.0879 0644 ebdrv - ok
14:29:58.0999 0644 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
14:29:59.0005 0644 EFS - ok
14:29:59.0068 0644 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
14:29:59.0080 0644 elxstor - ok
14:29:59.0139 0644 enecir (a9ec08727c64d985678f5b64c03823f0) C:\Windows\system32\DRIVERS\enecir.sys
14:29:59.0142 0644 enecir - ok
14:29:59.0262 0644 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
14:29:59.0271 0644 ErrDev - ok
14:29:59.0345 0644 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
14:29:59.0357 0644 EventSystem - ok
14:29:59.0399 0644 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
14:29:59.0404 0644 exfat - ok
14:29:59.0433 0644 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
14:29:59.0438 0644 fastfat - ok
14:29:59.0570 0644 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
14:29:59.0587 0644 Fax - ok
14:29:59.0656 0644 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
14:29:59.0660 0644 fdc - ok
14:29:59.0693 0644 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
14:29:59.0698 0644 fdPHost - ok
14:29:59.0755 0644 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
14:29:59.0760 0644 FDResPub - ok
14:29:59.0796 0644 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
14:29:59.0799 0644 FileInfo - ok
14:29:59.0816 0644 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
14:29:59.0819 0644 Filetrace - ok
14:29:59.0839 0644 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
14:29:59.0841 0644 flpydisk - ok
14:29:59.0979 0644 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
14:29:59.0986 0644 FltMgr - ok
14:30:00.0067 0644 FontCache (b4447f606bb19fd8ad0bafb59b90f5d9) C:\Windows\system32\FntCache.dll
14:30:00.0093 0644 FontCache - ok
14:30:00.0206 0644 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
14:30:00.0208 0644 FontCache3.0.0.0 - ok
14:30:00.0265 0644 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
14:30:00.0268 0644 FsDepends - ok
14:30:00.0334 0644 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
14:30:00.0336 0644 Fs_Rec - ok
14:30:00.0431 0644 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
14:30:00.0437 0644 fvevol - ok
14:30:00.0509 0644 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
14:30:00.0513 0644 gagp30kx - ok
14:30:00.0575 0644 GameConsoleService (c44d560e441f091ea3b72f778ec60de2) C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe
14:30:00.0582 0644 GameConsoleService - ok
14:30:00.0690 0644 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
14:30:00.0709 0644 gpsvc - ok
14:30:00.0837 0644 gupdate (8f0de4fef8201e306f9938b0905ac96a) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
14:30:00.0840 0644 gupdate - ok
14:30:00.0892 0644 gupdatem (8f0de4fef8201e306f9938b0905ac96a) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
14:30:00.0896 0644 gupdatem - ok
14:30:00.0941 0644 gusvc (cc839e8d766cc31a7710c9f38cf3e375) C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
14:30:00.0945 0644 gusvc - ok
14:30:01.0042 0644 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
14:30:01.0045 0644 hcw85cir - ok
14:30:01.0117 0644 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
14:30:01.0126 0644 HdAudAddService - ok
14:30:01.0186 0644 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
14:30:01.0189 0644 HDAudBus - ok
14:30:01.0203 0644 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
14:30:01.0206 0644 HidBatt - ok
14:30:01.0247 0644 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
14:30:01.0251 0644 HidBth - ok
14:30:01.0393 0644 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
14:30:01.0396 0644 HidIr - ok
14:30:01.0421 0644 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
14:30:01.0427 0644 hidserv - ok
14:30:01.0493 0644 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\drivers\hidusb.sys
14:30:01.0495 0644 HidUsb - ok
14:30:01.0547 0644 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
14:30:01.0564 0644 hkmsvc - ok
14:30:01.0720 0644 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
14:30:01.0731 0644 HomeGroupListener - ok
14:30:01.0791 0644 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
14:30:01.0803 0644 HomeGroupProvider - ok
14:30:01.0933 0644 HP Health Check Service (0141816a095a3f5a83ffa5b4a47b8023) C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
14:30:01.0935 0644 HP Health Check Service - ok
14:30:02.0041 0644 hpdskflt (05712fddbd45a5864eb326faabc6a4e3) C:\Windows\system32\DRIVERS\hpdskflt.sys
14:30:02.0043 0644 hpdskflt - ok
14:30:02.0152 0644 HpqKbFiltr (9af482d058be59cc28bce52e7c4b747c) C:\Windows\system32\DRIVERS\HpqKbFiltr.sys
14:30:02.0154 0644 HpqKbFiltr - ok
14:30:02.0257 0644 hpqwmiex (fdf273a845f1ffcceadf363aaf47582f) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
14:30:02.0263 0644 hpqwmiex - ok
14:30:02.0392 0644 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
14:30:02.0395 0644 HpSAMD - ok
14:30:02.0491 0644 hpsrv (aa036cc5f5221d9b915f4d4dce74ba9a) C:\Windows\system32\Hpservice.exe
14:30:02.0496 0644 hpsrv - ok
14:30:02.0562 0644 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
14:30:02.0578 0644 HTTP - ok
14:30:02.0703 0644 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
14:30:02.0705 0644 hwpolicy - ok
14:30:02.0767 0644 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
14:30:02.0771 0644 i8042prt - ok
14:30:02.0853 0644 iaStorV (3df4395a7cf8b7a72a5f4606366b8c2d) C:\Windows\system32\drivers\iaStorV.sys
14:30:02.0863 0644 iaStorV - ok
14:30:02.0930 0644 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
14:30:02.0949 0644 idsvc - ok
14:30:03.0235 0644 igfx (a87261ef1546325b559374f5689cf5bc) C:\Windows\system32\DRIVERS\igdkmd64.sys
14:30:03.0360 0644 igfx - ok
14:30:03.0461 0644 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
14:30:03.0464 0644 iirsp - ok
14:30:03.0604 0644 IJPLMSVC (e5e6a7d13bbc0f80b866d021f306bf6c) C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
14:30:03.0608 0644 IJPLMSVC - ok
14:30:03.0680 0644 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
14:30:03.0701 0644 IKEEXT - ok
14:30:03.0836 0644 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
14:30:03.0839 0644 intelide - ok
14:30:03.0867 0644 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
14:30:03.0871 0644 intelppm - ok
14:30:03.0907 0644 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
14:30:03.0914 0644 IPBusEnum - ok
14:30:03.0971 0644 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
14:30:03.0975 0644 IpFilterDriver - ok
14:30:04.0041 0644 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
14:30:04.0056 0644 iphlpsvc - ok
14:30:04.0183 0644 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
14:30:04.0187 0644 IPMIDRV - ok
14:30:04.0229 0644 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
14:30:04.0233 0644 IPNAT - ok
14:30:04.0291 0644 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
14:30:04.0293 0644 IRENUM - ok
14:30:04.0314 0644 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
14:30:04.0319 0644 isapnp - ok
14:30:04.0372 0644 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
14:30:04.0379 0644 iScsiPrt - ok
14:30:04.0527 0644 JMCR (02bd12c2ee52f0849a5d6f9a2fa67b4e) C:\Windows\system32\DRIVERS\jmcr.sys
14:30:04.0532 0644 JMCR - ok
14:30:04.0596 0644 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\drivers\kbdclass.sys
14:30:04.0598 0644 kbdclass - ok
14:30:04.0630 0644 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\drivers\kbdhid.sys
14:30:04.0632 0644 kbdhid - ok
14:30:04.0683 0644 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
14:30:04.0689 0644 KeyIso - ok
14:30:04.0736 0644 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys
14:30:04.0740 0644 KSecDD - ok
14:30:04.0760 0644 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys
14:30:04.0765 0644 KSecPkg - ok
14:30:04.0834 0644 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
14:30:04.0836 0644 ksthunk - ok
14:30:04.0879 0644 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
14:30:04.0893 0644 KtmRm - ok
14:30:04.0968 0644 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\system32\srvsvc.dll
14:30:04.0981 0644 LanmanServer - ok
14:30:05.0083 0644 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
14:30:05.0096 0644 LanmanWorkstation - ok
14:30:05.0202 0644 LightScribeService (83d8be94e1cbcbe2ea8372db1a95a159) C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
14:30:05.0206 0644 LightScribeService - ok
14:30:05.0325 0644 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
14:30:05.0328 0644 lltdio - ok
14:30:05.0389 0644 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
14:30:05.0401 0644 lltdsvc - ok
14:30:05.0421 0644 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
14:30:05.0429 0644 lmhosts - ok
14:30:05.0467 0644 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
14:30:05.0472 0644 LSI_FC - ok
14:30:05.0497 0644 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
14:30:05.0501 0644 LSI_SAS - ok
14:30:05.0571 0644 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
14:30:05.0574 0644 LSI_SAS2 - ok
14:30:05.0607 0644 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
14:30:05.0612 0644 LSI_SCSI - ok
14:30:05.0656 0644 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
14:30:05.0660 0644 luafv - ok
14:30:05.0736 0644 MBAMProtector (dbc08862a71459e74f7538b432c114cc) C:\Windows\system32\drivers\mbam.sys
14:30:05.0738 0644 MBAMProtector - ok
14:30:05.0851 0644 MBAMService (ba400ed640bca1eae5c727ae17c10207) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
14:30:05.0862 0644 MBAMService - ok
14:30:05.0970 0644 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
14:30:05.0973 0644 megasas - ok
14:30:06.0041 0644 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
14:30:06.0049 0644 MegaSR - ok
14:30:06.0106 0644 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
14:30:06.0114 0644 MMCSS - ok
14:30:06.0180 0644 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
14:30:06.0182 0644 Modem - ok
14:30:06.0270 0644 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
14:30:06.0272 0644 monitor - ok
14:30:06.0341 0644 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\drivers\mouclass.sys
14:30:06.0344 0644 mouclass - ok
14:30:06.0442 0644 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
14:30:06.0445 0644 mouhid - ok
14:30:06.0525 0644 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
14:30:06.0529 0644 mountmgr - ok
14:30:06.0633 0644 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
14:30:06.0638 0644 mpio - ok
14:30:06.0671 0644 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
14:30:06.0675 0644 mpsdrv - ok
14:30:06.0747 0644 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
14:30:06.0769 0644 MpsSvc - ok
14:30:06.0895 0644 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
14:30:06.0899 0644 MRxDAV - ok
14:30:06.0955 0644 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
14:30:06.0960 0644 mrxsmb - ok
14:30:07.0024 0644 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
14:30:07.0032 0644 mrxsmb10 - ok
14:30:07.0056 0644 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
14:30:07.0060 0644 mrxsmb20 - ok
14:30:07.0120 0644 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
14:30:07.0123 0644 msahci - ok
14:30:07.0181 0644 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
14:30:07.0186 0644 msdsm - ok
14:30:07.0274 0644 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
14:30:07.0283 0644 MSDTC - ok
14:30:07.0334 0644 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
14:30:07.0336 0644 Msfs - ok
14:30:07.0384 0644 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
14:30:07.0389 0644 mshidkmdf - ok
14:30:07.0440 0644 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
14:30:07.0443 0644 msisadrv - ok
14:30:07.0483 0644 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
14:30:07.0491 0644 MSiSCSI - ok
14:30:07.0560 0644 msiserver - ok
14:30:07.0610 0644 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
14:30:07.0612 0644 MSKSSRV - ok
14:30:07.0630 0644 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
14:30:07.0633 0644 MSPCLOCK - ok
14:30:07.0653 0644 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
14:30:07.0655 0644 MSPQM - ok
14:30:07.0716 0644 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
14:30:07.0726 0644 MsRPC - ok
14:30:07.0782 0644 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
14:30:07.0784 0644 mssmbios - ok
14:30:07.0876 0644 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
14:30:07.0879 0644 MSTEE - ok
14:30:07.0907 0644 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
14:30:07.0909 0644 MTConfig - ok
14:30:07.0939 0644 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
14:30:07.0942 0644 Mup - ok
14:30:08.0012 0644 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
14:30:08.0029 0644 napagent - ok
14:30:08.0170 0644 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
14:30:08.0177 0644 NativeWifiP - ok
14:30:08.0270 0644 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
14:30:08.0290 0644 NDIS - ok
14:30:08.0439 0644 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
14:30:08.0442 0644 NdisCap - ok
14:30:08.0508 0644 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
14:30:08.0510 0644 NdisTapi - ok
14:30:08.0578 0644 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
14:30:08.0582 0644 Ndisuio - ok
14:30:08.0635 0644 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
14:30:08.0641 0644 NdisWan - ok
14:30:08.0696 0644 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
14:30:08.0699 0644 NDProxy - ok
14:30:08.0840 0644 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
14:30:08.0843 0644 NetBIOS - ok
14:30:08.0900 0644 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
14:30:08.0907 0644 NetBT - ok
14:30:08.0967 0644 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
14:30:08.0973 0644 Netlogon - ok
14:30:09.0040 0644 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
14:30:09.0055 0644 Netman - ok
14:30:09.0116 0644 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
14:30:09.0133 0644 netprofm - ok
14:30:09.0192 0644 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
14:30:09.0196 0644 NetTcpPortSharing - ok
14:30:09.0425 0644 netw5v64 (64428dfdaf6e88366cb51f45a79c5f69) C:\Windows\system32\DRIVERS\netw5v64.sys
14:30:09.0538 0644 netw5v64 - ok
14:30:09.0716 0644 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
14:30:09.0720 0644 nfrd960 - ok
14:30:09.0790 0644 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
14:30:09.0803 0644 NlaSvc - ok
14:30:09.0840 0644 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
14:30:09.0843 0644 Npfs - ok
14:30:09.0875 0644 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
14:30:09.0883 0644 nsi - ok
14:30:09.0971 0644 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
14:30:09.0973 0644 nsiproxy - ok
14:30:10.0077 0644 Ntfs (05d78aa5cb5f3f5c31160bdb955d0b7c) C:\Windows\system32\drivers\Ntfs.sys
14:30:10.0112 0644 Ntfs - ok
14:30:10.0213 0644 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
14:30:10.0215 0644 Null - ok
14:30:10.0275 0644 nvraid (5d9fd91f3d38dc9da01e3cb5fa89cd48) C:\Windows\system32\drivers\nvraid.sys
14:30:10.0280 0644 nvraid - ok
14:30:10.0304 0644 nvstor (f7cd50fe7139f07e77da8ac8033d1832) C:\Windows\system32\drivers\nvstor.sys
14:30:10.0310 0644 nvstor - ok
14:30:10.0381 0644 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
14:30:10.0386 0644 nv_agp - ok
14:30:10.0511 0644 NWADI (6eeb54e34603dd417ece187c8402320a) C:\Windows\system32\DRIVERS\NWADIenum.sys
14:30:10.0517 0644 NWADI - ok
14:30:10.0644 0644 NWHelper (cfd6c86499ddcfa795a5f312102d05aa) C:\Program Files (x86)\Novatel Wireless\MiFi4510\Drivers\NWHelper.exe
14:30:10.0651 0644 NWHelper - ok
14:30:10.0804 0644 NWRmNet_022 (264123e0d43bf7be249218db087876eb) C:\Windows\system32\DRIVERS\NWRmNet_022.sys
14:30:10.0812 0644 NWRmNet_022 - ok
14:30:10.0873 0644 NWUSBCDFIL64 (d944d4341429093f55cb7f0ec87c86b3) C:\Windows\system32\DRIVERS\NwUsbCdFil64.sys
14:30:10.0876 0644 NWUSBCDFIL64 - ok
14:30:10.0966 0644 NWUSBModem_000 (877ce72712d7860fd815884438d824b8) C:\Windows\system32\DRIVERS\nwusbmdm_000.sys
14:30:10.0973 0644 NWUSBModem_000 - ok
14:30:11.0090 0644 NWUSBModem_022 (a66e23d2684af82930486749584491e3) C:\Windows\system32\DRIVERS\nwusbmdm_022.sys
14:30:11.0096 0644 NWUSBModem_022 - ok
14:30:11.0143 0644 NWUSBPort2_000 (877ce72712d7860fd815884438d824b8) C:\Windows\system32\DRIVERS\nwusbser2_000.sys
14:30:11.0149 0644 NWUSBPort2_000 - ok
14:30:11.0254 0644 NWUSBPort2_022 (a66e23d2684af82930486749584491e3) C:\Windows\system32\DRIVERS\nwusbser2_022.sys
14:30:11.0261 0644 NWUSBPort2_022 - ok
14:30:11.0321 0644 NWUSBPort_000 (877ce72712d7860fd815884438d824b8) C:\Windows\system32\DRIVERS\nwusbser_000.sys
14:30:11.0327 0644 NWUSBPort_000 - ok
14:30:11.0388 0644 NWUSBPort_022 (a66e23d2684af82930486749584491e3) C:\Windows\system32\DRIVERS\nwusbser_022.sys
14:30:11.0395 0644 NWUSBPort_022 - ok
14:30:11.0573 0644 NWVZHelper (6f67805ebe1c879de008ed21bfcf2f02) C:\Program Files (x86)\Novatel Wireless\Verizon\Drivers\NWHelper_001.exe
14:30:11.0581 0644 NWVZHelper - ok
14:30:11.0711 0644 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
14:30:11.0715 0644 ohci1394 - ok
14:30:11.0790 0644 ose (7a56cf3e3f12e8af599963b16f50fb6a) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
14:30:11.0793 0644 ose - ok
14:30:11.0840 0644 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
14:30:11.0853 0644 p2pimsvc - ok
14:30:11.0912 0644 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
14:30:11.0929 0644 p2psvc - ok
14:30:12.0011 0644 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
14:30:12.0015 0644 Parport - ok
14:30:12.0071 0644 partmgr (871eadac56b0a4c6512bbe32753ccf79) C:\Windows\system32\drivers\partmgr.sys
14:30:12.0075 0644 partmgr - ok
14:30:12.0112 0644 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
14:30:12.0124 0644 PcaSvc - ok
14:30:12.0199 0644 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
14:30:12.0204 0644 pci - ok
14:30:12.0225 0644 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
14:30:12.0228 0644 pciide - ok
14:30:12.0259 0644 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
14:30:12.0265 0644 pcmcia - ok
14:30:12.0350 0644 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
14:30:12.0354 0644 pcw - ok
14:30:12.0399 0644 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
14:30:12.0414 0644 PEAUTH - ok
14:30:12.0519 0644 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
14:30:12.0526 0644 PerfHost - ok
14:30:12.0645 0644 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
14:30:12.0680 0644 pla - ok
14:30:12.0832 0644 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
14:30:12.0850 0644 PlugPlay - ok
14:30:12.0881 0644 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
14:30:12.0889 0644 PNRPAutoReg - ok
14:30:12.0923 0644 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
14:30:12.0936 0644 PNRPsvc - ok
14:30:13.0001 0644 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
14:30:13.0017 0644 PolicyAgent - ok
14:30:13.0115 0644 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
14:30:13.0128 0644 Power - ok
14:30:13.0231 0644 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
14:30:13.0235 0644 PptpMiniport - ok
14:30:13.0268 0644 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
14:30:13.0272 0644 Processor - ok
14:30:13.0338 0644 ProfSvc (5c78838b4d166d1a27db3a8a820c799a) C:\Windows\system32\profsvc.dll
14:30:13.0350 0644 ProfSvc - ok
14:30:13.0467 0644 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
14:30:13.0473 0644 ProtectedStorage - ok
14:30:13.0615 0644 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
14:30:13.0620 0644 Psched - ok
14:30:13.0694 0644 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
14:30:13.0726 0644 ql2300 - ok
14:30:13.0823 0644 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
14:30:13.0828 0644 ql40xx - ok
14:30:13.0858 0644 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
14:30:13.0873 0644 QWAVE - ok
14:30:13.0904 0644 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
14:30:13.0907 0644 QWAVEdrv - ok
14:30:13.0936 0644 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
14:30:13.0939 0644 RasAcd - ok
14:30:14.0027 0644 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
14:30:14.0030 0644 RasAgileVpn - ok
14:30:14.0068 0644 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
14:30:14.0081 0644 RasAuto - ok
14:30:14.0215 0644 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
14:30:14.0218 0644 Rasl2tp - ok
14:30:14.0277 0644 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
14:30:14.0288 0644 RasMan - ok
14:30:14.0351 0644 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
14:30:14.0354 0644 RasPppoe - ok
14:30:14.0399 0644 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
14:30:14.0402 0644 RasSstp - ok
14:30:14.0545 0644 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
14:30:14.0554 0644 rdbss - ok
14:30:14.0590 0644 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
14:30:14.0593 0644 rdpbus - ok
14:30:14.0621 0644 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
14:30:14.0623 0644 RDPCDD - ok
14:30:14.0684 0644 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
14:30:14.0686 0644 RDPENCDD - ok
14:30:14.0730 0644 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
14:30:14.0732 0644 RDPREFMP - ok
14:30:14.0819 0644 RDPWD (6d76e6433574b058adcb0c50df834492) C:\Windows\system32\drivers\RDPWD.sys
14:30:14.0825 0644 RDPWD - ok
14:30:14.0927 0644 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
14:30:14.0934 0644 rdyboost - ok
14:30:14.0969 0644 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
14:30:14.0977 0644 RemoteAccess - ok
14:30:15.0020 0644 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
14:30:15.0031 0644 RemoteRegistry - ok
14:30:15.0115 0644 RichVideo (498eb62a160674e793fa40fd65390625) C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
14:30:15.0122 0644 RichVideo - ok
14:30:15.0244 0644 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
14:30:15.0254 0644 RpcEptMapper - ok
14:30:15.0279 0644 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
14:30:15.0288 0644 RpcLocator - ok
14:30:15.0349 0644 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
14:30:15.0365 0644 RpcSs - ok
14:30:15.0469 0644 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
14:30:15.0472 0644 rspndr - ok
14:30:15.0530 0644 RTL8167 (b49dc435ae3695bac5623dd94b05732d) C:\Windows\system32\DRIVERS\Rt64win7.sys
14:30:15.0543 0644 RTL8167 - ok
14:30:15.0600 0644 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
14:30:15.0607 0644 SamSs - ok
14:30:15.0674 0644 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
14:30:15.0679 0644 sbp2port - ok
14:30:15.0718 0644 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
14:30:15.0731 0644 SCardSvr - ok
14:30:15.0852 0644 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
14:30:15.0855 0644 scfilter - ok
14:30:15.0932 0644 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
14:30:15.0965 0644 Schedule - ok
14:30:16.0077 0644 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
14:30:16.0081 0644 SCPolicySvc - ok
14:30:16.0192 0644 sdbus (111e0ebc0ad79cb0fa014b907b231cf0) C:\Windows\system32\drivers\sdbus.sys
14:30:16.0197 0644 sdbus - ok
14:30:16.0255 0644 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
14:30:16.0269 0644 SDRSVC - ok
14:30:16.0349 0644 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
14:30:16.0352 0644 secdrv - ok
14:30:16.0457 0644 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
14:30:16.0468 0644 seclogon - ok
14:30:16.0506 0644 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
14:30:16.0516 0644 SENS - ok
14:30:16.0606 0644 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
14:30:16.0615 0644 SensrSvc - ok
14:30:16.0657 0644 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
14:30:16.0660 0644 Serenum - ok
14:30:16.0690 0644 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
14:30:16.0694 0644 Serial - ok
14:30:16.0792 0644 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
14:30:16.0795 0644 sermouse - ok
14:30:16.0875 0644 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
14:30:16.0886 0644 SessionEnv - ok
14:30:16.0943 0644 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
14:30:16.0946 0644 sffdisk - ok
14:30:16.0979 0644 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
14:30:16.0982 0644 sffp_mmc - ok
14:30:17.0028 0644 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
14:30:17.0031 0644 sffp_sd - ok
14:30:17.0073 0644 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
14:30:17.0076 0644 sfloppy - ok
14:30:17.0159 0644 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
14:30:17.0172 0644 SharedAccess - ok
14:30:17.0251 0644 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
14:30:17.0270 0644 ShellHWDetection - ok
14:30:17.0321 0644 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
14:30:17.0323 0644 SiSRaid2 - ok
14:30:17.0350 0644 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
14:30:17.0355 0644 SiSRaid4 - ok
14:30:17.0392 0644 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
14:30:17.0395 0644 Smb - ok
14:30:17.0518 0644 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
14:30:17.0525 0644 SNMPTRAP - ok
14:30:17.0561 0644 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
14:30:17.0573 0644 spldr - ok
14:30:17.0639 0644 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
14:30:17.0654 0644 Spooler - ok
14:30:17.0918 0644 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
14:30:17.0999 0644 sppsvc - ok
14:30:18.0098 0644 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
14:30:18.0109 0644 sppuinotify - ok
14:30:18.0185 0644 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
14:30:18.0197 0644 srv - ok
14:30:18.0224 0644 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
14:30:18.0235 0644 srv2 - ok
14:30:18.0352 0644 SrvHsfHDA (0c4540311e11664b245a263e1154cef8) C:\Windows\system32\DRIVERS\VSTAZL6.SYS
14:30:18.0360 0644 SrvHsfHDA - ok
14:30:18.0439 0644 SrvHsfV92 (02071d207a9858fbe3a48cbfd59c4a04) C:\Windows\system32\DRIVERS\VSTDPV6.SYS
14:30:18.0470 0644 SrvHsfV92 - ok
14:30:18.0631 0644 SrvHsfWinac (18e40c245dbfaf36fd0134a7ef2df396) C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
14:30:18.0648 0644 SrvHsfWinac - ok
14:30:18.0704 0644 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
14:30:18.0711 0644 srvnet - ok
14:30:18.0843 0644 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
14:30:18.0856 0644 SSDPSRV - ok
14:30:18.0901 0644 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
14:30:18.0913 0644 SstpSvc - ok
14:30:19.0001 0644 STacSV (444109453a2b87e6c16bcda5953e81a9) C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_dc6a6e8ef654da29\STacSV64.exe
14:30:19.0008 0644 STacSV - ok
14:30:19.0059 0644 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
14:30:19.0062 0644 stexstor - ok
14:30:19.0203 0644 STHDA (02e784fa49032f84964db90a3ed81890) C:\Windows\system32\DRIVERS\stwrt64.sys
14:30:19.0214 0644 STHDA - ok
14:30:19.0318 0644 StillCam (decacb6921ded1a38642642685d77dac) C:\Windows\system32\DRIVERS\serscan.sys
14:30:19.0321 0644 StillCam - ok
14:30:19.0401 0644 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
14:30:19.0423 0644 stisvc - ok
14:30:19.0549 0644 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
14:30:19.0552 0644 swenum - ok
14:30:19.0608 0644 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
14:30:19.0628 0644 swprv - ok
14:30:19.0719 0644 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
14:30:19.0764 0644 SysMain - ok
14:30:19.0883 0644 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
14:30:19.0894 0644 TabletInputService - ok
14:30:19.0924 0644 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
14:30:19.0941 0644 TapiSrv - ok
14:30:19.0974 0644 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
14:30:19.0986 0644 TBS - ok
14:30:20.0136 0644 Tcpip (fc62769e7bff2896035aeed399108162) C:\Windows\system32\drivers\tcpip.sys
14:30:20.0177 0644 Tcpip - ok
14:30:20.0393 0644 TCPIP6 (fc62769e7bff2896035aeed399108162) C:\Windows\system32\DRIVERS\tcpip.sys
14:30:20.0424 0644 TCPIP6 - ok
14:30:20.0469 0644 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
14:30:20.0473 0644 tcpipreg - ok
14:30:20.0638 0644 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
14:30:20.0641 0644 TDPIPE - ok
14:30:20.0703 0644 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
14:30:20.0706 0644 TDTCP - ok
14:30:20.0769 0644 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
14:30:20.0773 0644 tdx - ok
14:30:20.0836 0644 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
14:30:20.0840 0644 TermDD - ok
14:30:20.0877 0644 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
14:30:20.0901 0644 TermService - ok
14:30:21.0000 0644 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
14:30:21.0011 0644 Themes - ok
14:30:21.0041 0644 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
14:30:21.0049 0644 THREADORDER - ok
14:30:21.0072 0644 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
14:30:21.0084 0644 TrkWks - ok
14:30:21.0160 0644 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
14:30:21.0164 0644 TrustedInstaller - ok
14:30:21.0242 0644 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
14:30:21.0246 0644 tssecsrv - ok
14:30:21.0364 0644 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
14:30:21.0368 0644 TsUsbFlt - ok
14:30:21.0440 0644 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
14:30:21.0444 0644 tunnel - ok
14:30:21.0475 0644 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
14:30:21.0479 0644 uagp35 - ok
14:30:21.0562 0644 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
14:30:21.0571 0644 udfs - ok
14:30:21.0629 0644 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
14:30:21.0639 0644 UI0Detect - ok
14:30:21.0770 0644 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
14:30:21.0774 0644 uliagpkx - ok
14:30:21.0800 0644 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys
14:30:21.0804 0644 umbus - ok
14:30:21.0827 0644 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
14:30:21.0830 0644 UmPass - ok
14:30:21.0862 0644 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
14:30:21.0879 0644 upnphost - ok
14:30:21.0994 0644 usbaudio (82e8f44688e6fac57b5b7c6fc7adbc2a) C:\Windows\system32\drivers\usbaudio.sys
14:30:21.0999 0644 usbaudio - ok
14:30:22.0054 0644 usbccgp (481dff26b4dca8f4cbac1f7dce1d6829) C:\Windows\system32\DRIVERS\usbccgp.sys
14:30:22.0058 0644 usbccgp - ok
14:30:22.0162 0644 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
14:30:22.0167 0644 usbcir - ok
14:30:22.0196 0644 usbehci (74ee782b1d9c241efe425565854c661c) C:\Windows\system32\drivers\usbehci.sys
14:30:22.0200 0644 usbehci - ok
14:30:22.0260 0644 usbfilter (6648c6d7323a2ce0c4776c36cefbcb14) C:\Windows\system32\DRIVERS\usbfilter.sys
14:30:22.0263 0644 usbfilter - ok
14:30:22.0308 0644 usbhub (dc96bd9ccb8403251bcf25047573558e) C:\Windows\system32\drivers\usbhub.sys
14:30:22.0320 0644 usbhub - ok
14:30:22.0406 0644 usbohci (58e546bbaf87664fc57e0f6081e4f609) C:\Windows\system32\drivers\usbohci.sys
14:30:22.0408 0644 usbohci - ok
14:30:22.0544 0644 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
14:30:22.0547 0644 usbprint - ok
14:30:22.0689 0644 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
14:30:22.0692 0644 usbscan - ok
14:30:22.0744 0644 USBSTOR (d76510cfa0fc09023077f22c2f979d86) C:\Windows\system32\DRIVERS\USBSTOR.SYS
14:30:22.0748 0644 USBSTOR - ok
14:30:22.0801 0644 usbuhci (81fb2216d3a60d1284455d511797db3d) C:\Windows\system32\drivers\usbuhci.sys
14:30:22.0804 0644 usbuhci - ok
14:30:22.0941 0644 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\Windows\System32\Drivers\usbvideo.sys
14:30:22.0947 0644 usbvideo - ok
14:30:22.0983 0644 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
14:30:22.0994 0644 UxSms - ok
14:30:23.0052 0644 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
14:30:23.0058 0644 VaultSvc - ok
14:30:23.0100 0644 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
14:30:23.0104 0644 vdrvroot - ok
14:30:23.0172 0644 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
14:30:23.0192 0644 vds - ok
14:30:23.0327 0644 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
14:30:23.0330 0644 vga - ok
14:30:23.0369 0644 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
14:30:23.0372 0644 VgaSave - ok
14:30:23.0432 0644 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
14:30:23.0439 0644 vhdmp - ok
14:30:23.0470 0644 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
14:30:23.0473 0644 viaide - ok
14:30:23.0496 0644 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
14:30:23.0500 0644 volmgr - ok
14:30:23.0565 0644 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
14:30:23.0576 0644 volmgrx - ok
14:30:23.0674 0644 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
14:30:23.0682 0644 volsnap - ok
14:30:23.0731 0644 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
14:30:23.0737 0644 vsmraid - ok
14:30:23.0835 0644 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
14:30:23.0880 0644 VSS - ok
14:30:23.0981 0644 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
14:30:23.0984 0644 vwifibus - ok
14:30:24.0016 0644 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
14:30:24.0019 0644 vwififlt - ok
14:30:24.0135 0644 VZWConfigService (16c746cc481e9d1d77df3ca3aedf78cd) C:\Program Files (x86)\Novatel Wireless\LTE Support\VZWMSConfig.exe
14:30:24.0142 0644 VZWConfigService - ok
14:30:24.0188 0644 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
14:30:24.0206 0644 W32Time - ok
14:30:24.0311 0644 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
14:30:24.0314 0644 WacomPen - ok
14:30:24.0418 0644 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
14:30:24.0422 0644 WANARP - ok
14:30:24.0431 0644 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
14:30:24.0435 0644 Wanarpv6 - ok
14:30:24.0555 0644 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
14:30:24.0593 0644 WatAdminSvc - ok
14:30:24.0737 0644 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
14:30:24.0779 0644 wbengine - ok
14:30:24.0832 0644 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
14:30:24.0846 0644 WbioSrvc - ok
14:30:24.0958 0644 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
14:30:24.0976 0644 wcncsvc - ok
14:30:24.0994 0644 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
14:30:25.0006 0644 WcsPlugInService - ok
14:30:25.0055 0644 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
14:30:25.0059 0644 Wd - ok
14:30:25.0119 0644 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
14:30:25.0135 0644 Wdf01000 - ok
14:30:25.0209 0644 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
14:30:25.0220 0644 WdiServiceHost - ok
14:30:25.0229 0644 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
14:30:25.0240 0644 WdiSystemHost - ok
14:30:25.0322 0644 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
14:30:25.0337 0644 WebClient - ok
14:30:25.0366 0644 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
14:30:25.0381 0644 Wecsvc - ok
14:30:25.0405 0644 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
14:30:25.0417 0644 wercplsupport - ok
14:30:25.0475 0644 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
14:30:25.0487 0644 WerSvc - ok
14:30:25.0534 0644 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
14:30:25.0537 0644 WfpLwf - ok
14:30:25.0620 0644 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
14:30:25.0623 0644 WIMMount - ok
14:30:25.0645 0644 WinDefend - ok
14:30:25.0665 0644 WinHttpAutoProxySvc - ok
14:30:25.0726 0644 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
14:30:25.0733 0644 Winmgmt - ok
14:30:25.0910 0644 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
14:30:25.0962 0644 WinRM - ok
14:30:26.0134 0644 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
14:30:26.0138 0644 WinUsb - ok
14:30:26.0193 0644 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
14:30:26.0221 0644 Wlansvc - ok
14:30:26.0243 0644 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
14:30:26.0246 0644 WmiAcpi - ok
14:30:26.0361 0644 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
14:30:26.0367 0644 wmiApSrv - ok
14:30:26.0437 0644 WMPNetworkSvc - ok
14:30:26.0462 0644 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
14:30:26.0473 0644 WPCSvc - ok
14:30:26.0536 0644 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
14:30:26.0549 0644 WPDBusEnum - ok
14:30:26.0626 0644 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
14:30:26.0629 0644 ws2ifsl - ok
14:30:26.0654 0644 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\System32\wscsvc.dll
14:30:26.0667 0644 wscsvc - ok
14:30:26.0681 0644 WSearch - ok
14:30:26.0803 0644 wuauserv (9df12edbc698b0bc353b3ef84861e430) C:\Windows\system32\wuaueng.dll
14:30:26.0863 0644 wuauserv - ok
14:30:26.0986 0644 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
14:30:26.0991 0644 WudfPf - ok
14:30:27.0048 0644 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
14:30:27.0054 0644 WUDFRd - ok
14:30:27.0114 0644 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
14:30:27.0126 0644 wudfsvc - ok
14:30:27.0163 0644 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
14:30:27.0179 0644 WwanSvc - ok
14:30:27.0311 0644 YahooAUService (dd0042f0c3b606a6a8b92d49afb18ad6) C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
14:30:27.0323 0644 YahooAUService - ok
14:30:27.0468 0644 yukonw7 (b3eeacf62445e24fbb2cd4b0fb4db026) C:\Windows\system32\DRIVERS\yk62x64.sys
14:30:27.0478 0644 yukonw7 - ok
14:30:27.0549 0644 MBR (0x1B8) (dec1d91a56af1af766d8737c5be2c288) \Device\Harddisk0\DR0
14:30:27.0587 0644 \Device\Harddisk0\DR0 - ok
14:30:27.0617 0644 Boot (0x1200) (215d60d70d1d338b0ae368fb6b41056f) \Device\Harddisk0\DR0\Partition0
14:30:27.0620 0644 \Device\Harddisk0\DR0\Partition0 - ok
14:30:27.0635 0644 Boot (0x1200) (22fb15c8cbc53768d594fe38053866a2) \Device\Harddisk0\DR0\Partition1
14:30:27.0637 0644 \Device\Harddisk0\DR0\Partition1 - ok
14:30:27.0670 0644 Boot (0x1200) (ffe9b6294d996db51fb4dfdfef2a5202) \Device\Harddisk0\DR0\Partition2
14:30:27.0672 0644 \Device\Harddisk0\DR0\Partition2 - ok
14:30:27.0673 0644 ============================================================
14:30:27.0673 0644 Scan finished
14:30:27.0673 0644 ============================================================
14:30:27.0699 5764 Detected object count: 0
14:30:27.0700 5764 Actual detected object count: 0
------------------------------------------------------------------------------------


I also ran the aswMBR program which returned this


-----------------------------------------------------------------------


aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-04-19 13:08:06
-----------------------------
13:08:06.301 OS Version: Windows x64 6.1.7601 Service Pack 1
13:08:06.301 Number of processors: 2 586 0x602
13:08:06.301 ComputerName: KRISTAWHITLATCH UserName:
13:08:07.720 Initialize success
13:08:08.235 AVAST engine defs: 12041900
13:08:10.497 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
13:08:10.513 Disk 0 Vendor: Hitachi_HTS725032A9A364 PC3OC70E Size: 305245MB BusType: 11
13:08:10.513 Device \Driver\atapi -> MajorFunction fffffa80047d55e8
13:08:10.559 Disk 0 MBR read successfully
13:08:10.559 Disk 0 MBR scan
13:08:10.575 Disk 0 unknown MBR code
13:08:10.575 Disk 0 MBR hidden
13:08:10.591 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 199 MB offset 2048
13:08:10.622 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 291403 MB offset 409600
13:08:10.653 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 13538 MB offset 597202944
13:08:10.700 Disk 0 scanning C:\Windows\system32\drivers
13:08:37.041 Service scanning
13:09:10.041 Modules scanning
13:09:10.057 Disk 0 trace - called modules:
13:09:10.088 ntoskrnl.exe CLASSPNP.SYS disk.sys hpdskflt.sys ACPI.sys >>UNKNOWN [0xfffffa80047d55e8]<<
13:09:10.088 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8004372060]
13:09:10.104 3 CLASSPNP.SYS[fffff880010ca43f] -> nt!IofCallDriver -> [0xfffffa8004371040]
13:09:10.119 5 hpdskflt.sys[fffff88002358289] -> nt!IofCallDriver -> [0xfffffa80042bd040]
13:09:10.135 7 ACPI.sys[fffff88000f707a1] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0xfffffa80042ea060]
13:09:10.151 \Driver\atapi[0xfffffa800470f460] -> IRP_MJ_CREATE -> 0xfffffa80047d55e8
13:09:11.742 AVAST engine scan C:\Windows
13:09:16.406 AVAST engine scan C:\Windows\system32
13:13:45.153 AVAST engine scan C:\Windows\system32\drivers
13:13:59.661 AVAST engine scan C:\Users\krista whitlatch
13:31:55.013 AVAST engine scan C:\ProgramData
13:34:18.966 Scan finished successfully
13:35:02.388 Disk 0 MBR has been saved successfully to "C:\Users\krista whitlatch\Documents\meh\MBR.dat"
13:35:02.404 The log file has been saved successfully to "C:\Users\krista whitlatch\Documents\meh\aswMBR134.txt"


-----------------------------------------------------------------------------------------------------------







So thats as far as i have gotten, so far nothing has really helped at all. still getting the malicious url alerts as im typing now. Im also occasionally getting an alert from Malwarebytes about with the process saying outgoing to avastsvc.exe.

Any help would be greatly appreciated, this is absolutely driving me crazy

Edited by hamluis, 19 April 2012 - 05:35 PM.
Moved from Win 7 to Am i Infected.


BC AdBot (Login to Remove)

 


#2 pb114

pb114
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:04:23 PM

Posted 19 April 2012 - 05:30 PM

Forgot to mention, i restarted the comp every time it was suggested by the scans

#3 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,663 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:05:23 PM

Posted 19 April 2012 - 06:23 PM

Please follow the instructions in ==>This Guide<== starting at Step 6. If you cannot complete a step, skip it and continue.

Once the proper logs are created, then make a NEW TOPIC and post it ==>HERE<== Please include a description of your computer issues, what you have done to resolve them, and a link to this topic.

If you can produce at least some of the logs, then please create the new topic and explain what happens when you try to create the log(s) that you couldn't get. If you cannot produce any of the logs, then still post the topic and explain that you followed the Prep. Guide, were unable to create the logs, and describe what happens when you try to create the logs.

It would be helpful if you post a note here once you have completed the steps in the guide and have started your topic in malware removal. Good luck and be patient.

If HelpBot replies to your topic, PLEASE follow Step One so it will report your topic to the team members.

My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users