Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

WIN7 Booting Directly to Startup Repair After NAV Update


  • Please log in to reply
9 replies to this topic

#1 thorn969

thorn969

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:02:09 PM

Posted 20 October 2012 - 04:37 PM

After installing an update for Norton Antivirus, Windows 7 will not boot in normal or safemode and instead goes directly to Start-up Repair with no blue screen.

Start-up Repair runs and give inconsistent messages, but often says that a required driver is corrupt - D:\Windows\System32\Drivers\NAVX64\1401010.005\SymDS64.sys .

I have tried renaming the file and have run chkdsk twice and neither thing has done anything to help boot the computer. I've also run Norton's bootable recovery tool and haven't found anything.

Is this malware? What do I do? :P

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:02:09 PM

Posted 20 October 2012 - 05:05 PM

Did you try system restore from recovery console?

#3 thorn969

thorn969
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:02:09 PM

Posted 20 October 2012 - 05:14 PM

Sorry... forgot to include that.

System Restore shows no restore points, even though I have had and used restore points in the past.

"No restore points have been created on your computer's system drive. To create a restore point open System Protection."

Thanks for your quick reply.

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:02:09 PM

Posted 20 October 2012 - 05:24 PM

Select COMMAND PROMPT and type

NOTEPAD and press <ENTER>

Click on FILE-OPEN and browse to

C:\windows\system32\drivers folder and rename Norton drivers like SymDS64.sys to .old extensions.

Try to boot into normal mode now

#5 thorn969

thorn969
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:02:09 PM

Posted 20 October 2012 - 06:04 PM

I called Symantec\Norton and they suggested booting with Last Known Good Configuration. I'd tried Safe Mode... I guessed if that didn't work, Last Known Good Configuration wouldn't but it did.

That worked, although Norton wasn't working after the reboot.

Should I keep checking for viruses or just reinstall Norton and be done with it?

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:02:09 PM

Posted 20 October 2012 - 06:10 PM

Lets see if you're infected

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here.If you get crashes in normal mode,run it in safemode with networking

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#7 thorn969

thorn969
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:02:09 PM

Posted 21 October 2012 - 01:27 AM

TDSSKiller Log:
00:25:19.0582 5232  TDSS rootkit removing tool 2.8.13.0 Oct 12 2012 17:26:47
00:25:19.0862 5232  ============================================================
00:25:19.0862 5232  Current date / time: 2012/10/21 00:25:19.0862
00:25:19.0862 5232  SystemInfo:
00:25:19.0862 5232  
00:25:19.0862 5232  OS Version: 6.1.7601 ServicePack: 1.0
00:25:19.0862 5232  Product type: Workstation
00:25:19.0862 5232  ComputerName: MJM-IBPPC
00:25:19.0862 5232  UserName: Matthew
00:25:19.0862 5232  Windows directory: C:\Windows
00:25:19.0862 5232  System windows directory: C:\Windows
00:25:19.0862 5232  Running under WOW64
00:25:19.0862 5232  Processor architecture: Intel x64
00:25:19.0862 5232  Number of processors: 4
00:25:19.0862 5232  Page size: 0x1000
00:25:19.0862 5232  Boot type: Normal boot
00:25:19.0862 5232  ============================================================
00:25:20.0837 5232  Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
00:25:20.0847 5232  Drive \Device\Harddisk1\DR1 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
00:25:20.0867 5232  ============================================================
00:25:20.0867 5232  \Device\Harddisk0\DR0:
00:25:20.0867 5232  MBR partitions:
00:25:20.0867 5232  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
00:25:20.0867 5232  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x746D3800
00:25:20.0867 5232  \Device\Harddisk1\DR1:
00:25:20.0867 5232  MBR partitions:
00:25:20.0867 5232  \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x74705982
00:25:20.0867 5232  ============================================================
00:25:20.0892 5232  C: <-> \Device\Harddisk0\DR0\Partition2
00:25:20.0902 5232  E: <-> \Device\Harddisk1\DR1\Partition1
00:25:20.0902 5232  ============================================================
00:25:20.0902 5232  Initialize success
00:25:20.0902 5232  ============================================================
00:25:40.0685 1800  ============================================================
00:25:40.0685 1800  Scan started
00:25:40.0685 1800  Mode: Manual; TDLFS; 
00:25:40.0685 1800  ============================================================
00:25:43.0815 1800  ================ Scan system memory ========================
00:25:43.0815 1800  System memory - ok
00:25:43.0815 1800  ================ Scan services =============================
00:25:44.0050 1800  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
00:25:44.0055 1800  1394ohci - ok
00:25:44.0145 1800  [ 309E130E78BAF666D65395D950F30885 ] ABBYY.Licensing.FineReader.Professional.10.0 C:\Program Files (x86)\Common Files\ABBYY\FineReader\10.00\Licensing\PE\NetworkLicenseServer.exe
00:25:44.0165 1800  ABBYY.Licensing.FineReader.Professional.10.0 - ok
00:25:44.0273 1800  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
00:25:44.0275 1800  ACPI - ok
00:25:44.0285 1800  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
00:25:44.0286 1800  AcpiPmi - ok
00:25:44.0389 1800  [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
00:25:44.0390 1800  AdobeARMservice - ok
00:25:44.0553 1800  [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
00:25:44.0576 1800  AdobeFlashPlayerUpdateSvc - ok
00:25:44.0602 1800  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
00:25:44.0606 1800  adp94xx - ok
00:25:44.0665 1800  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\drivers\adpahci.sys
00:25:44.0667 1800  adpahci - ok
00:25:44.0682 1800  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
00:25:44.0683 1800  adpu320 - ok
00:25:44.0734 1800  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
00:25:44.0735 1800  AeLookupSvc - ok
00:25:44.0832 1800  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD             C:\Windows\system32\drivers\afd.sys
00:25:44.0834 1800  AFD - ok
00:25:44.0890 1800  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\drivers\agp440.sys
00:25:44.0891 1800  agp440 - ok
00:25:44.0903 1800  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
00:25:44.0904 1800  ALG - ok
00:25:44.0913 1800  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\drivers\aliide.sys
00:25:44.0914 1800  aliide - ok
00:25:44.0976 1800  [ B3B263B419FC9E7B1D41E61FDAE45BD9 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
00:25:44.0979 1800  AMD External Events Utility - ok
00:25:44.0984 1800  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\drivers\amdide.sys
00:25:44.0984 1800  amdide - ok
00:25:44.0997 1800  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
00:25:44.0998 1800  AmdK8 - ok
00:25:45.0129 1800  [ 9A6E9363F7A5E5A06629D9DDC76EE6B5 ] amdkmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
00:25:45.0173 1800  amdkmdag - ok
00:25:45.0237 1800  [ 957A4C13E1981B1701E600EF1E823C68 ] amdkmdap        C:\Windows\system32\DRIVERS\atikmpag.sys
00:25:45.0239 1800  amdkmdap - ok
00:25:45.0285 1800  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
00:25:45.0286 1800  AmdPPM - ok
00:25:45.0307 1800  [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
00:25:45.0314 1800  amdsata - ok
00:25:45.0353 1800  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
00:25:45.0354 1800  amdsbs - ok
00:25:45.0363 1800  [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
00:25:45.0364 1800  amdxata - ok
00:25:45.0420 1800  [ 4DE0D5D747A73797C95A97DCCE5018B5 ] androidusb      C:\Windows\system32\Drivers\ssadadb.sys
00:25:45.0421 1800  androidusb - ok
00:25:45.0431 1800  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\Windows\system32\drivers\appid.sys
00:25:45.0432 1800  AppID - ok
00:25:45.0476 1800  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
00:25:45.0477 1800  AppIDSvc - ok
00:25:45.0488 1800  [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo         C:\Windows\System32\appinfo.dll
00:25:45.0489 1800  Appinfo - ok
00:25:45.0503 1800  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\drivers\arc.sys
00:25:45.0504 1800  arc - ok
00:25:45.0512 1800  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\drivers\arcsas.sys
00:25:45.0513 1800  arcsas - ok
00:25:45.0598 1800  [ 6E3F4538B33BC19259E99BE1826286A3 ] asComSvc        C:\Program Files (x86)\ASUS\AXSP\1.00.14\atkexComSvc.exe
00:25:45.0602 1800  asComSvc - ok
00:25:45.0634 1800  [ A63173897EA1A73A75D0E65036DE5B15 ] asHmComSvc      C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe
00:25:45.0638 1800  asHmComSvc - ok
00:25:45.0688 1800  [ FEF9DD9EA587F8886ADE43C1BEFBDAFE ] AsIO            C:\Windows\syswow64\drivers\AsIO.sys
00:25:45.0689 1800  AsIO - ok
00:25:45.0762 1800  [ 6D9C024AA8F24065A6DBEAB1F431D854 ] asmthub3        C:\Windows\system32\DRIVERS\asmthub3.sys
00:25:45.0763 1800  asmthub3 - ok
00:25:45.0819 1800  [ ECAD22F15D8F17CC04F24E9A6FB00F2F ] asmtxhci        C:\Windows\system32\DRIVERS\asmtxhci.sys
00:25:45.0821 1800  asmtxhci - ok
00:25:45.0846 1800  [ 5C31DFB196CB3A488A041881634D86D2 ] AsSysCtrlService C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe
00:25:45.0849 1800  AsSysCtrlService - ok
00:25:45.0894 1800  [ A5E4CDB420540095D1293C874B5F89AA ] ASUSFILTER      C:\Windows\syswow64\drivers\ASUSFILTER.sys
00:25:45.0900 1800  ASUSFILTER - ok
00:25:45.0933 1800  [ 7882BB401553008C3D17251D98474412 ] ASUSstpt        C:\Windows\system32\DRIVERS\ASUSstpt.sys
00:25:45.0938 1800  ASUSstpt - ok
00:25:46.0015 1800  [ 23041D6FADF1287457E12CDBE2466554 ] ASUSumsc        C:\Windows\system32\DRIVERS\ASUSumsc.sys
00:25:46.0021 1800  ASUSumsc - ok
00:25:46.0061 1800  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
00:25:46.0062 1800  AsyncMac - ok
00:25:46.0080 1800  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\drivers\atapi.sys
00:25:46.0081 1800  atapi - ok
00:25:46.0165 1800  [ B0790FF0E25B7A2674296052F2162C1A ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
00:25:46.0197 1800  AtiHDAudioService - ok
00:25:46.0256 1800  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
00:25:46.0260 1800  AudioEndpointBuilder - ok
00:25:46.0267 1800  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
00:25:46.0270 1800  AudioSrv - ok
00:25:46.0279 1800  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\Windows\System32\AxInstSV.dll
00:25:46.0280 1800  AxInstSV - ok
00:25:46.0298 1800  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
00:25:46.0301 1800  b06bdrv - ok
00:25:46.0314 1800  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
00:25:46.0316 1800  b57nd60a - ok
00:25:46.0326 1800  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
00:25:46.0327 1800  BDESVC - ok
00:25:46.0336 1800  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
00:25:46.0336 1800  Beep - ok
00:25:46.0361 1800  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE             C:\Windows\System32\bfe.dll
00:25:46.0365 1800  BFE - ok
00:25:46.0608 1800  [ A45BE4E091636F6C86D6E4FC945D5A26 ] BHDrvx64        C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_20.1.1.5\Definitions\BASHDefs\20120928.001\BHDrvx64.sys
00:25:46.0614 1800  BHDrvx64 - ok
00:25:46.0687 1800  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\Windows\System32\qmgr.dll
00:25:46.0692 1800  BITS - ok
00:25:46.0699 1800  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
00:25:46.0700 1800  blbdrive - ok
00:25:46.0821 1800  [ F832F1505AD8B83474BD9A5B1B985E01 ] Bonjour Service C:\Program Files (x86)\Bonjour\mDNSResponder.exe
00:25:46.0823 1800  Bonjour Service - ok
00:25:46.0911 1800  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
00:25:46.0912 1800  bowser - ok
00:25:46.0921 1800  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
00:25:46.0921 1800  BrFiltLo - ok
00:25:46.0934 1800  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
00:25:46.0935 1800  BrFiltUp - ok
00:25:47.0069 1800  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\Windows\System32\browser.dll
00:25:47.0071 1800  Browser - ok
00:25:47.0093 1800  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
00:25:47.0097 1800  Brserid - ok
00:25:47.0168 1800  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
00:25:47.0169 1800  BrSerWdm - ok
00:25:47.0179 1800  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
00:25:47.0180 1800  BrUsbMdm - ok
00:25:47.0190 1800  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
00:25:47.0190 1800  BrUsbSer - ok
00:25:47.0199 1800  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
00:25:47.0200 1800  BTHMODEM - ok
00:25:47.0251 1800  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
00:25:47.0252 1800  bthserv - ok
00:25:47.0373 1800  [ A5C13600F63EB92F8D15123D64BA9895 ] ccSet_NAV       C:\Windows\system32\drivers\NAVx64\1401010.005\ccSetx64.sys
00:25:47.0374 1800  ccSet_NAV - ok
00:25:47.0440 1800  [ A5C13600F63EB92F8D15123D64BA9895 ] ccSet_NST       C:\Windows\system32\drivers\NSTx64\7DD01010.007\ccSetx64.sys
00:25:47.0441 1800  ccSet_NST - ok
00:25:47.0451 1800  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
00:25:47.0453 1800  cdfs - ok
00:25:47.0500 1800  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
00:25:47.0501 1800  cdrom - ok
00:25:47.0514 1800  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\Windows\System32\certprop.dll
00:25:47.0515 1800  CertPropSvc - ok
00:25:47.0528 1800  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\drivers\circlass.sys
00:25:47.0529 1800  circlass - ok
00:25:47.0702 1800  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
00:25:47.0704 1800  CLFS - ok
00:25:48.0015 1800  [ 524DC3807CB1746225F9D26ADD19C319 ] CLKMSVC10_38F51D56 C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe
00:25:48.0017 1800  CLKMSVC10_38F51D56 - ok
00:25:48.0323 1800  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
00:25:48.0369 1800  clr_optimization_v2.0.50727_32 - ok
00:25:48.0744 1800  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
00:25:48.0781 1800  clr_optimization_v2.0.50727_64 - ok
00:25:49.0083 1800  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
00:25:49.0085 1800  clr_optimization_v4.0.30319_32 - ok
00:25:49.0213 1800  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
00:25:49.0215 1800  clr_optimization_v4.0.30319_64 - ok
00:25:49.0270 1800  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\drivers\CmBatt.sys
00:25:49.0271 1800  CmBatt - ok
00:25:49.0286 1800  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\drivers\cmdide.sys
00:25:49.0286 1800  cmdide - ok
00:25:49.0416 1800  [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG             C:\Windows\system32\Drivers\cng.sys
00:25:49.0419 1800  CNG - ok
00:25:49.0435 1800  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
00:25:49.0436 1800  Compbatt - ok
00:25:49.0460 1800  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
00:25:49.0461 1800  CompositeBus - ok
00:25:49.0464 1800  COMSysApp - ok
00:25:49.0574 1800  cpuz135 - ok
00:25:49.0582 1800  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
00:25:49.0590 1800  crcdisk - ok
00:25:49.0671 1800  [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc        C:\Windows\system32\cryptsvc.dll
00:25:49.0673 1800  CryptSvc - ok
00:25:49.0853 1800  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\Windows\system32\rpcss.dll
00:25:49.0856 1800  DcomLaunch - ok
00:25:49.0950 1800  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
00:25:49.0952 1800  defragsvc - ok
00:25:49.0989 1800  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
00:25:49.0990 1800  DfsC - ok
00:25:50.0077 1800  [ 6060106CE00F32F63F1A73160E46E9D2 ] dg_ssudbus      C:\Windows\system32\DRIVERS\ssudbus.sys
00:25:50.0085 1800  dg_ssudbus - ok
00:25:50.0134 1800  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\Windows\system32\dhcpcore.dll
00:25:50.0136 1800  Dhcp - ok
00:25:50.0167 1800  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
00:25:50.0168 1800  discache - ok
00:25:50.0260 1800  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\drivers\disk.sys
00:25:50.0261 1800  Disk - ok
00:25:50.0336 1800  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
00:25:50.0338 1800  Dnscache - ok
00:25:50.0370 1800  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\Windows\System32\dot3svc.dll
00:25:50.0372 1800  dot3svc - ok
00:25:50.0456 1800  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\Windows\system32\dps.dll
00:25:50.0457 1800  DPS - ok
00:25:50.0575 1800  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
00:25:50.0576 1800  drmkaud - ok
00:25:50.0841 1800  [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
00:25:50.0846 1800  DXGKrnl - ok
00:25:50.0933 1800  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
00:25:50.0935 1800  EapHost - ok
00:25:51.0279 1800  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\drivers\evbda.sys
00:25:51.0355 1800  ebdrv - ok
00:25:51.0616 1800  [ 4353FF94D47A0A9D52B89ECCF0CDB013 ] eeCtrl          C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
00:25:51.0624 1800  eeCtrl - ok
00:25:51.0676 1800  [ C118A82CD78818C29AB228366EBF81C3 ] EFS             C:\Windows\System32\lsass.exe
00:25:51.0677 1800  EFS - ok
00:25:51.0869 1800  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
00:25:51.0875 1800  ehRecvr - ok
00:25:51.0913 1800  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
00:25:51.0914 1800  ehSched - ok
00:25:52.0075 1800  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
00:25:52.0097 1800  elxstor - ok
00:25:52.0198 1800  [ C5BCCB378D0A896304A3E71BE7215983 ] EraserUtilDrv11220 C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilDrv11220.sys
00:25:52.0205 1800  EraserUtilDrv11220 - ok
00:25:52.0285 1800  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\drivers\errdev.sys
00:25:52.0286 1800  ErrDev - ok
00:25:52.0512 1800  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
00:25:52.0515 1800  EventSystem - ok
00:25:52.0572 1800  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
00:25:52.0574 1800  exfat - ok
00:25:52.0693 1800  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
00:25:52.0695 1800  fastfat - ok
00:25:52.0766 1800  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\Windows\system32\fxssvc.exe
00:25:52.0773 1800  Fax - ok
00:25:52.0797 1800  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\drivers\fdc.sys
00:25:52.0798 1800  fdc - ok
00:25:52.0846 1800  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
00:25:52.0848 1800  fdPHost - ok
00:25:52.0886 1800  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
00:25:52.0887 1800  FDResPub - ok
00:25:52.0958 1800  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
00:25:52.0959 1800  FileInfo - ok
00:25:52.0984 1800  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
00:25:52.0985 1800  Filetrace - ok
00:25:53.0010 1800  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
00:25:53.0011 1800  flpydisk - ok
00:25:53.0061 1800  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
00:25:53.0062 1800  FltMgr - ok
00:25:53.0344 1800  [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache       C:\Windows\system32\FntCache.dll
00:25:53.0350 1800  FontCache - ok
00:25:53.0558 1800  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
00:25:53.0559 1800  FontCache3.0.0.0 - ok
00:25:53.0727 1800  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
00:25:53.0728 1800  FsDepends - ok
00:25:53.0747 1800  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
00:25:53.0748 1800  Fs_Rec - ok
00:25:53.0782 1800  [ 1F7B25B858FA27015169FE95E54108ED ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
00:25:53.0784 1800  fvevol - ok
00:25:53.0805 1800  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
00:25:53.0806 1800  gagp30kx - ok
00:25:53.0966 1800  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\Windows\System32\gpsvc.dll
00:25:53.0971 1800  gpsvc - ok
00:25:54.0008 1800  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
00:25:54.0009 1800  hcw85cir - ok
00:25:54.0087 1800  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
00:25:54.0090 1800  HdAudAddService - ok
00:25:54.0113 1800  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
00:25:54.0115 1800  HDAudBus - ok
00:25:54.0130 1800  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
00:25:54.0131 1800  HidBatt - ok
00:25:54.0138 1800  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
00:25:54.0139 1800  HidBth - ok
00:25:54.0152 1800  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\drivers\hidir.sys
00:25:54.0153 1800  HidIr - ok
00:25:54.0256 1800  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\system32\hidserv.dll
00:25:54.0261 1800  hidserv - ok
00:25:54.0316 1800  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
00:25:54.0316 1800  HidUsb - ok
00:25:54.0371 1800  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\Windows\system32\kmsvc.dll
00:25:54.0371 1800  hkmsvc - ok
00:25:54.0421 1800  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
00:25:54.0426 1800  HomeGroupListener - ok
00:25:54.0536 1800  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
00:25:54.0536 1800  HomeGroupProvider - ok
00:25:54.0596 1800  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
00:25:54.0596 1800  HpSAMD - ok
00:25:54.0686 1800  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
00:25:54.0691 1800  HTTP - ok
00:25:54.0741 1800  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
00:25:54.0741 1800  hwpolicy - ok
00:25:54.0776 1800  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
00:25:54.0776 1800  i8042prt - ok
00:25:55.0021 1800  [ D1E30259353E7D8D1B713A76CDDEB88B ] iaStor          C:\Windows\system32\DRIVERS\iaStor.sys
00:25:55.0026 1800  iaStor - ok
00:25:55.0251 1800  [ 2F74D37E4D7D0B04136261C969F1D23D ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
00:25:55.0251 1800  IAStorDataMgrSvc - ok
00:25:55.0326 1800  [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
00:25:55.0336 1800  iaStorV - ok
00:25:55.0666 1800  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
00:25:55.0696 1800  idsvc - ok
00:25:56.0061 1800  [ A48928D4CCA6F8B731989DB08CF2C0AB ] IDSVia64        C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_20.1.1.5\Definitions\IPSDefs\20121019.001\IDSvia64.sys
00:25:56.0061 1800  IDSVia64 - ok
00:25:56.0241 1800  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
00:25:56.0241 1800  iirsp - ok
00:25:56.0551 1800  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\Windows\System32\ikeext.dll
00:25:56.0561 1800  IKEEXT - ok
00:25:57.0221 1800  [ 150AC23F21DBDBF8488408BA944B0D65 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
00:25:57.0241 1800  IntcAzAudAddService - ok
00:25:57.0296 1800  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\drivers\intelide.sys
00:25:57.0296 1800  intelide - ok
00:25:57.0346 1800  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
00:25:57.0351 1800  intelppm - ok
00:25:57.0401 1800  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
00:25:57.0401 1800  IPBusEnum - ok
00:25:57.0406 1800  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
00:25:57.0406 1800  IpFilterDriver - ok
00:25:57.0426 1800  [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
00:25:57.0426 1800  iphlpsvc - ok
00:25:57.0441 1800  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
00:25:57.0441 1800  IPMIDRV - ok
00:25:57.0456 1800  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
00:25:57.0456 1800  IPNAT - ok
00:25:57.0466 1800  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
00:25:57.0466 1800  IRENUM - ok
00:25:57.0476 1800  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
00:25:57.0476 1800  isapnp - ok
00:25:57.0486 1800  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
00:25:57.0491 1800  iScsiPrt - ok
00:25:57.0501 1800  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
00:25:57.0501 1800  kbdclass - ok
00:25:57.0506 1800  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\Windows\system32\drivers\kbdhid.sys
00:25:57.0506 1800  kbdhid - ok
00:25:57.0516 1800  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\Windows\system32\lsass.exe
00:25:57.0516 1800  KeyIso - ok
00:25:57.0591 1800  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
00:25:57.0591 1800  KSecDD - ok
00:25:57.0651 1800  [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
00:25:57.0651 1800  KSecPkg - ok
00:25:57.0706 1800  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
00:25:57.0706 1800  ksthunk - ok
00:25:57.0731 1800  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
00:25:57.0736 1800  KtmRm - ok
00:25:57.0981 1800  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\Windows\system32\srvsvc.dll
00:25:57.0981 1800  LanmanServer - ok
00:25:57.0991 1800  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
00:25:57.0996 1800  LanmanWorkstation - ok
00:25:58.0101 1800  [ C34411A244029F1C08687F7C752C4563 ] LightScribeService C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
00:25:58.0101 1800  LightScribeService - ok
00:25:58.0106 1800  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
00:25:58.0111 1800  lltdio - ok
00:25:58.0126 1800  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
00:25:58.0126 1800  lltdsvc - ok
00:25:58.0136 1800  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
00:25:58.0136 1800  lmhosts - ok
00:25:58.0251 1800  [ 7F32D4C47A50E7223491E8FB9359907D ] LMS             C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
00:25:58.0256 1800  LMS - ok
00:25:58.0316 1800  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
00:25:58.0316 1800  LSI_FC - ok
00:25:58.0361 1800  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
00:25:58.0361 1800  LSI_SAS - ok
00:25:58.0381 1800  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
00:25:58.0381 1800  LSI_SAS2 - ok
00:25:58.0426 1800  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
00:25:58.0426 1800  LSI_SCSI - ok
00:25:58.0441 1800  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
00:25:58.0441 1800  luafv - ok
00:25:58.0496 1800  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
00:25:58.0531 1800  Mcx2Svc - ok
00:25:58.0546 1800  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\drivers\megasas.sys
00:25:58.0546 1800  megasas - ok
00:25:58.0561 1800  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
00:25:58.0561 1800  MegaSR - ok
00:25:58.0671 1800  [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64          C:\Windows\system32\DRIVERS\HECIx64.sys
00:25:58.0676 1800  MEIx64 - ok
00:25:58.0836 1800  [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
00:25:58.0846 1800  Microsoft Office Groove Audit Service - ok
00:25:58.0886 1800  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
00:25:58.0886 1800  MMCSS - ok
00:25:58.0941 1800  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
00:25:58.0946 1800  Modem - ok
00:25:58.0996 1800  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
00:25:58.0996 1800  monitor - ok
00:25:59.0006 1800  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
00:25:59.0011 1800  mouclass - ok
00:25:59.0031 1800  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
00:25:59.0031 1800  mouhid - ok
00:25:59.0041 1800  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
00:25:59.0041 1800  mountmgr - ok
00:25:59.0431 1800  [ CB8AF049AC9BE419A77ADAE288673359 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
00:25:59.0431 1800  MozillaMaintenance - ok
00:25:59.0486 1800  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\Windows\system32\drivers\mpio.sys
00:25:59.0486 1800  mpio - ok
00:25:59.0506 1800  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
00:25:59.0506 1800  mpsdrv - ok
00:25:59.0611 1800  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc          C:\Windows\system32\mpssvc.dll
00:25:59.0616 1800  MpsSvc - ok
00:25:59.0636 1800  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
00:25:59.0636 1800  MRxDAV - ok
00:25:59.0686 1800  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
00:25:59.0686 1800  mrxsmb - ok
00:25:59.0846 1800  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
00:25:59.0851 1800  mrxsmb10 - ok
00:25:59.0876 1800  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
00:25:59.0876 1800  mrxsmb20 - ok
00:25:59.0886 1800  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\Windows\system32\drivers\msahci.sys
00:25:59.0886 1800  msahci - ok
00:25:59.0901 1800  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
00:25:59.0901 1800  msdsm - ok
00:25:59.0926 1800  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
00:25:59.0931 1800  MSDTC - ok
00:25:59.0951 1800  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
00:25:59.0951 1800  Msfs - ok
00:25:59.0961 1800  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
00:25:59.0961 1800  mshidkmdf - ok
00:25:59.0976 1800  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
00:25:59.0976 1800  msisadrv - ok
00:26:00.0026 1800  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
00:26:00.0026 1800  MSiSCSI - ok
00:26:00.0031 1800  msiserver - ok
00:26:00.0041 1800  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
00:26:00.0041 1800  MSKSSRV - ok
00:26:00.0041 1800  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
00:26:00.0046 1800  MSPCLOCK - ok
00:26:00.0046 1800  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
00:26:00.0046 1800  MSPQM - ok
00:26:00.0066 1800  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
00:26:00.0071 1800  MsRPC - ok
00:26:00.0081 1800  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
00:26:00.0081 1800  mssmbios - ok
00:26:00.0086 1800  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
00:26:00.0086 1800  MSTEE - ok
00:26:00.0096 1800  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
00:26:00.0096 1800  MTConfig - ok
00:26:00.0111 1800  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
00:26:00.0111 1800  Mup - ok
00:26:00.0141 1800  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\Windows\system32\qagentRT.dll
00:26:00.0146 1800  napagent - ok
00:26:00.0166 1800  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
00:26:00.0166 1800  NativeWifiP - ok
00:26:00.0681 1800  [ DFD8873E4DC08E621A8366C6CD98AB28 ] NAV             C:\Program Files (x86)\Norton AntiVirus\Engine\20.1.1.5\ccSvcHst.exe
00:26:00.0681 1800  NAV - ok
00:26:00.0781 1800  [ C58D8A669D6551F616D90244BD2C2D4F ] NAVENG          C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_20.1.1.5\Definitions\VirusDefs\20121020.007\ENG64.SYS
00:26:00.0781 1800  NAVENG - ok
00:26:00.0946 1800  [ A3DBDB412ADFA5882DD6843B11FE0828 ] NAVEX15         C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_20.1.1.5\Definitions\VirusDefs\20121020.007\EX64.SYS
00:26:00.0956 1800  NAVEX15 - ok
00:26:01.0161 1800  [ 8D11DA92F83D8C8281689739BEF05FD5 ] NCO             C:\Program Files (x86)\Norton Identity Safe\Engine\2013.1.1.7\ccSvcHst.exe
00:26:01.0161 1800  NCO - ok
00:26:01.0351 1800  [ 760E38053BF56E501D562B70AD796B88 ] NDIS            C:\Windows\system32\drivers\ndis.sys
00:26:01.0356 1800  NDIS - ok
00:26:01.0431 1800  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
00:26:01.0431 1800  NdisCap - ok
00:26:01.0481 1800  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
00:26:01.0481 1800  NdisTapi - ok
00:26:01.0621 1800  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
00:26:01.0621 1800  Ndisuio - ok
00:26:01.0711 1800  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
00:26:01.0711 1800  NdisWan - ok
00:26:01.0801 1800  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
00:26:01.0801 1800  NDProxy - ok
00:26:01.0866 1800  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
00:26:01.0866 1800  NetBIOS - ok
00:26:01.0901 1800  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
00:26:01.0901 1800  NetBT - ok
00:26:01.0916 1800  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\Windows\system32\lsass.exe
00:26:01.0916 1800  Netlogon - ok
00:26:01.0966 1800  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
00:26:01.0971 1800  Netman - ok
00:26:01.0986 1800  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
00:26:01.0991 1800  netprofm - ok
00:26:02.0061 1800  [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
00:26:02.0131 1800  NetTcpPortSharing - ok
00:26:02.0171 1800  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
00:26:02.0171 1800  nfrd960 - ok
00:26:02.0186 1800  [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc          C:\Windows\System32\nlasvc.dll
00:26:02.0186 1800  NlaSvc - ok
00:26:02.0191 1800  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
00:26:02.0191 1800  Npfs - ok
00:26:02.0256 1800  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
00:26:02.0256 1800  nsi - ok
00:26:02.0316 1800  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
00:26:02.0316 1800  nsiproxy - ok
00:26:02.0556 1800  [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
00:26:02.0566 1800  Ntfs - ok
00:26:02.0571 1800  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
00:26:02.0571 1800  Null - ok
00:26:02.0596 1800  [ 0A92CB65770442ED0DC44834632F66AD ] nvraid          C:\Windows\system32\drivers\nvraid.sys
00:26:02.0601 1800  nvraid - ok
00:26:02.0616 1800  [ DAB0E87525C10052BF65F06152F37E4A ] nvstor          C:\Windows\system32\drivers\nvstor.sys
00:26:02.0621 1800  nvstor - ok
00:26:02.0636 1800  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
00:26:02.0636 1800  nv_agp - ok
00:26:02.0761 1800  [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv          C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
00:26:02.0781 1800  odserv - ok
00:26:02.0841 1800  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
00:26:02.0841 1800  ohci1394 - ok
00:26:02.0901 1800  [ 5A432A042DAE460ABE7199B758E8606C ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
00:26:02.0901 1800  ose - ok
00:26:02.0936 1800  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
00:26:02.0941 1800  p2pimsvc - ok
00:26:02.0956 1800  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
00:26:02.0961 1800  p2psvc - ok
00:26:02.0991 1800  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\drivers\parport.sys
00:26:02.0991 1800  Parport - ok
00:26:03.0031 1800  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\Windows\system32\drivers\partmgr.sys
00:26:03.0031 1800  partmgr - ok
00:26:03.0036 1800  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
00:26:03.0036 1800  PcaSvc - ok
00:26:03.0046 1800  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\Windows\system32\drivers\pci.sys
00:26:03.0046 1800  pci - ok
00:26:03.0087 1800  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\drivers\pciide.sys
00:26:03.0087 1800  pciide - ok
00:26:03.0098 1800  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
00:26:03.0099 1800  pcmcia - ok
00:26:03.0117 1800  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
00:26:03.0118 1800  pcw - ok
00:26:03.0136 1800  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
00:26:03.0139 1800  PEAUTH - ok
00:26:03.0254 1800  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
00:26:03.0255 1800  PerfHost - ok
00:26:03.0382 1800  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\Windows\system32\pla.dll
00:26:03.0398 1800  pla - ok
00:26:03.0452 1800  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
00:26:03.0455 1800  PlugPlay - ok
00:26:03.0511 1800  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
00:26:03.0513 1800  PNRPAutoReg - ok
00:26:03.0545 1800  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
00:26:03.0547 1800  PNRPsvc - ok
00:26:03.0651 1800  [ 4F0878FD62D5F7444C5F1C4C66D9D293 ] Point64         C:\Windows\system32\DRIVERS\point64.sys
00:26:03.0652 1800  Point64 - ok
00:26:03.0816 1800  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
00:26:03.0862 1800  PolicyAgent - ok
00:26:03.0988 1800  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
00:26:03.0990 1800  Power - ok
00:26:04.0005 1800  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
00:26:04.0006 1800  PptpMiniport - ok
00:26:04.0025 1800  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\drivers\processr.sys
00:26:04.0026 1800  Processor - ok
00:26:04.0110 1800  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc         C:\Windows\system32\profsvc.dll
00:26:04.0113 1800  ProfSvc - ok
00:26:04.0133 1800  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
00:26:04.0134 1800  ProtectedStorage - ok
00:26:04.0154 1800  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
00:26:04.0155 1800  Psched - ok
00:26:04.0307 1800  [ 56A12BEA2DADBE6460EB51F7D199A7AA ] PSMounter       C:\Windows\system32\drivers\psmounter.sys
00:26:04.0313 1800  PSMounter - ok
00:26:04.0328 1800  [ D94380ABE29EABBA84C825158B74D857 ] PSVolAcc        C:\Windows\system32\drivers\PSVolAcc.sys
00:26:04.0333 1800  PSVolAcc - ok
00:26:04.0403 1800  [ DEFD557D9B8C0FA3CEA6CC576400114E ] pwdrvio         C:\Windows\system32\pwdrvio.sys
00:26:04.0458 1800  pwdrvio - ok
00:26:04.0496 1800  [ A2EE3B70A9E05F651B888078726C2787 ] pwdspio         C:\Windows\system32\pwdspio.sys
00:26:04.0502 1800  pwdspio - ok
00:26:04.0596 1800  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
00:26:04.0646 1800  ql2300 - ok
00:26:04.0661 1800  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
00:26:04.0661 1800  ql40xx - ok
00:26:04.0751 1800  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
00:26:04.0756 1800  QWAVE - ok
00:26:04.0766 1800  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
00:26:04.0766 1800  QWAVEdrv - ok
00:26:04.0801 1800  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
00:26:04.0801 1800  RasAcd - ok
00:26:04.0911 1800  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
00:26:04.0911 1800  RasAgileVpn - ok
00:26:04.0921 1800  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
00:26:04.0921 1800  RasAuto - ok
00:26:04.0926 1800  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
00:26:04.0931 1800  Rasl2tp - ok
00:26:05.0001 1800  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\Windows\System32\rasmans.dll
00:26:05.0011 1800  RasMan - ok
00:26:05.0031 1800  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
00:26:05.0031 1800  RasPppoe - ok
00:26:05.0056 1800  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
00:26:05.0061 1800  RasSstp - ok
00:26:05.0206 1800  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
00:26:05.0206 1800  rdbss - ok
00:26:05.0241 1800  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\drivers\rdpbus.sys
00:26:05.0241 1800  rdpbus - ok
00:26:05.0256 1800  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
00:26:05.0256 1800  RDPCDD - ok
00:26:05.0266 1800  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
00:26:05.0266 1800  RDPENCDD - ok
00:26:05.0311 1800  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
00:26:05.0311 1800  RDPREFMP - ok
00:26:05.0366 1800  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
00:26:05.0371 1800  RDPWD - ok
00:26:05.0391 1800  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
00:26:05.0396 1800  rdyboost - ok
00:26:05.0751 1800  [ 943ADE1DD6789432419A87BB85884322 ] ReflectService.exe C:\Program Files\Macrium\Reflect\ReflectService.exe
00:26:05.0766 1800  ReflectService.exe - ok
00:26:05.0801 1800  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
00:26:05.0801 1800  RemoteAccess - ok
00:26:05.0846 1800  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
00:26:05.0846 1800  RemoteRegistry - ok
00:26:05.0861 1800  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
00:26:05.0861 1800  RpcEptMapper - ok
00:26:05.0866 1800  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
00:26:05.0866 1800  RpcLocator - ok
00:26:05.0951 1800  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\Windows\system32\rpcss.dll
00:26:05.0951 1800  RpcSs - ok
00:26:05.0966 1800  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
00:26:05.0971 1800  rspndr - ok
00:26:06.0051 1800  [ 7F4F11527AF5A7E4526CB6A146B3E40C ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
00:26:06.0056 1800  RTL8167 - ok
00:26:06.0106 1800  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs           C:\Windows\system32\lsass.exe
00:26:06.0111 1800  SamSs - ok
00:26:06.0176 1800  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
00:26:06.0176 1800  sbp2port - ok
00:26:06.0266 1800  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
00:26:06.0266 1800  SCardSvr - ok
00:26:06.0281 1800  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
00:26:06.0281 1800  scfilter - ok
00:26:06.0631 1800  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\Windows\system32\schedsvc.dll
00:26:06.0636 1800  Schedule - ok
00:26:06.0701 1800  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\Windows\System32\certprop.dll
00:26:06.0701 1800  SCPolicySvc - ok
00:26:06.0716 1800  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
00:26:06.0716 1800  SDRSVC - ok
00:26:06.0741 1800  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
00:26:06.0741 1800  secdrv - ok
00:26:06.0766 1800  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\Windows\system32\seclogon.dll
00:26:06.0766 1800  seclogon - ok
00:26:06.0811 1800  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\System32\sens.dll
00:26:06.0811 1800  SENS - ok
00:26:06.0856 1800  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
00:26:06.0856 1800  SensrSvc - ok
00:26:06.0876 1800  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
00:26:06.0876 1800  Serenum - ok
00:26:06.0921 1800  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\DRIVERS\serial.sys
00:26:06.0921 1800  Serial - ok
00:26:06.0961 1800  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\drivers\sermouse.sys
00:26:06.0961 1800  sermouse - ok
00:26:06.0996 1800  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\Windows\system32\sessenv.dll
00:26:06.0996 1800  SessionEnv - ok
00:26:07.0031 1800  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
00:26:07.0036 1800  sffdisk - ok
00:26:07.0071 1800  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
00:26:07.0071 1800  sffp_mmc - ok
00:26:07.0086 1800  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
00:26:07.0086 1800  sffp_sd - ok
00:26:07.0116 1800  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
00:26:07.0116 1800  sfloppy - ok
00:26:07.0241 1800  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll
00:26:07.0251 1800  SharedAccess - ok
00:26:07.0316 1800  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
00:26:07.0321 1800  ShellHWDetection - ok
00:26:07.0341 1800  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
00:26:07.0341 1800  SiSRaid2 - ok
00:26:07.0366 1800  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
00:26:07.0366 1800  SiSRaid4 - ok
00:26:07.0386 1800  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
00:26:07.0386 1800  Smb - ok
00:26:07.0456 1800  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
00:26:07.0456 1800  SNMPTRAP - ok
00:26:07.0506 1800  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
00:26:07.0506 1800  spldr - ok
00:26:07.0631 1800  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler         C:\Windows\System32\spoolsv.exe
00:26:07.0636 1800  Spooler - ok
00:26:08.0141 1800  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\Windows\system32\sppsvc.exe
00:26:08.0156 1800  sppsvc - ok
00:26:08.0186 1800  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
00:26:08.0186 1800  sppuinotify - ok
00:26:08.0461 1800  [ B2FE88C5E621C8345CC9BAC5CFD366B0 ] SRTSP           C:\Windows\system32\drivers\NAVx64\1401010.005\SRTSP64.SYS
00:26:08.0516 1800  SRTSP - ok
00:26:08.0596 1800  [ 1B884D876E87EABF5A3356BBD7321412 ] SRTSPX          C:\Windows\system32\drivers\NAVx64\1401010.005\SRTSPX64.SYS
00:26:08.0596 1800  SRTSPX - ok
00:26:08.0736 1800  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\Windows\system32\DRIVERS\srv.sys
00:26:08.0741 1800  srv - ok
00:26:08.0901 1800  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
00:26:08.0906 1800  srv2 - ok
00:26:08.0911 1800  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
00:26:08.0916 1800  srvnet - ok
00:26:08.0946 1800  [ 8F8324ED1DE63FFC7B1A02CD2D963C72 ] ssadbus         C:\Windows\system32\DRIVERS\ssadbus.sys
00:26:08.0951 1800  ssadbus - ok
00:26:08.0961 1800  [ 58221EFCB74167B73667F0024C661CE0 ] ssadmdfl        C:\Windows\system32\DRIVERS\ssadmdfl.sys
00:26:08.0966 1800  ssadmdfl - ok
00:26:08.0981 1800  [ 4DA7C71BFAC5AD71255B7E4CAB980163 ] ssadmdm         C:\Windows\system32\DRIVERS\ssadmdm.sys
00:26:08.0991 1800  ssadmdm - ok
00:26:09.0121 1800  [ ED161B91FDF7EAA39469D72D463D5F4E ] sscdbus         C:\Windows\system32\DRIVERS\sscdbus.sys
00:26:09.0126 1800  sscdbus - ok
00:26:09.0136 1800  [ 4CB09E77593DBD8D7AF33B37375CA715 ] sscdmdfl        C:\Windows\system32\DRIVERS\sscdmdfl.sys
00:26:09.0141 1800  sscdmdfl - ok
00:26:09.0166 1800  [ C7B4CF53497A6E5363F3439427663882 ] sscdmdm         C:\Windows\system32\DRIVERS\sscdmdm.sys
00:26:09.0171 1800  sscdmdm - ok
00:26:09.0231 1800  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
00:26:09.0236 1800  SSDPSRV - ok
00:26:09.0391 1800  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
00:26:09.0391 1800  SstpSvc - ok
00:26:09.0426 1800  [ 855335BF5792E56164F98C012E3D92DD ] ssudmdm         C:\Windows\system32\DRIVERS\ssudmdm.sys
00:26:09.0441 1800  ssudmdm - ok
00:26:09.0511 1800  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\drivers\stexstor.sys
00:26:09.0516 1800  stexstor - ok
00:26:09.0666 1800  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\Windows\System32\wiaservc.dll
00:26:09.0666 1800  stisvc - ok
00:26:09.0691 1800  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
00:26:09.0691 1800  swenum - ok
00:26:09.0776 1800  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
00:26:09.0781 1800  swprv - ok
00:26:09.0891 1800  [ 688BBE78970E639BC1D66AE733394DCF ] SymDS           C:\Windows\system32\drivers\NAVx64\1401010.005\SYMDS64.SYS
00:26:09.0896 1800  SymDS - ok
00:26:10.0216 1800  [ A17EE0D0D762CC9B56FB9218D7089AFB ] SymEFA          C:\Windows\system32\drivers\NAVx64\1401010.005\SYMEFA64.SYS
00:26:10.0221 1800  SymEFA - ok
00:26:10.0321 1800  [ F5D6D3B7468C46EA2DDC1D19D2A6DA0F ] SymEvent        C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
00:26:10.0321 1800  SymEvent - ok
00:26:10.0456 1800  [ ADF37F1A715D6C56C8E065FD8569A9A4 ] SymIRON         C:\Windows\system32\drivers\NAVx64\1401010.005\Ironx64.SYS
00:26:10.0456 1800  SymIRON - ok
00:26:10.0566 1800  [ 1605EBD8CB86AFC4430116065995279A ] SymNetS         C:\Windows\system32\drivers\NAVx64\1401010.005\SYMNETS.SYS
00:26:10.0571 1800  SymNetS - ok
00:26:10.0646 1800  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\Windows\system32\sysmain.dll
00:26:10.0651 1800  SysMain - ok
00:26:10.0726 1800  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
00:26:10.0726 1800  TabletInputService - ok
00:26:10.0741 1800  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\Windows\System32\tapisrv.dll
00:26:10.0746 1800  TapiSrv - ok
00:26:10.0751 1800  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
00:26:10.0756 1800  TBS - ok
00:26:10.0801 1800  [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
00:26:10.0806 1800  Tcpip - ok
00:26:10.0866 1800  [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
00:26:10.0876 1800  TCPIP6 - ok
00:26:10.0936 1800  [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
00:26:10.0936 1800  tcpipreg - ok
00:26:10.0966 1800  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
00:26:10.0966 1800  TDPIPE - ok
00:26:11.0041 1800  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
00:26:11.0046 1800  TDTCP - ok
00:26:11.0081 1800  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
00:26:11.0086 1800  tdx - ok
00:26:11.0231 1800  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
00:26:11.0231 1800  TermDD - ok
00:26:11.0281 1800  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\Windows\System32\termsrv.dll
00:26:11.0286 1800  TermService - ok
00:26:11.0346 1800  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
00:26:11.0351 1800  Themes - ok
00:26:11.0361 1800  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
00:26:11.0361 1800  THREADORDER - ok
00:26:11.0406 1800  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
00:26:11.0406 1800  TrkWks - ok
00:26:11.0551 1800  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
00:26:11.0556 1800  TrustedInstaller - ok
00:26:11.0566 1800  [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
00:26:11.0566 1800  tssecsrv - ok
00:26:11.0621 1800  [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
00:26:11.0621 1800  TsUsbFlt - ok
00:26:11.0641 1800  [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
00:26:11.0641 1800  TsUsbGD - ok
00:26:11.0651 1800  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
00:26:11.0651 1800  tunnel - ok
00:26:11.0671 1800  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
00:26:11.0671 1800  uagp35 - ok
00:26:11.0686 1800  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
00:26:11.0686 1800  udfs - ok
00:26:11.0706 1800  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
00:26:11.0706 1800  UI0Detect - ok
00:26:11.0726 1800  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
00:26:11.0726 1800  uliagpkx - ok
00:26:11.0781 1800  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
00:26:11.0781 1800  umbus - ok
00:26:11.0826 1800  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\drivers\umpass.sys
00:26:11.0826 1800  UmPass - ok
00:26:11.0976 1800  [ 9DC07E73A4ABB9ACF692113B36A5009F ] UnlockerDriver5 C:\Program Files\Unlocker\UnlockerDriver5.sys
00:26:11.0981 1800  UnlockerDriver5 - ok
00:26:12.0746 1800  [ 2C16648A12999AE69A9EBF41974B0BA2 ] UNS             C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
00:26:12.0756 1800  UNS - ok
00:26:13.0066 1800  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
00:26:13.0076 1800  upnphost - ok
00:26:13.0101 1800  [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
00:26:13.0101 1800  usbaudio - ok
00:26:13.0116 1800  [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
00:26:13.0121 1800  usbccgp - ok
00:26:13.0171 1800  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
00:26:13.0171 1800  usbcir - ok
00:26:13.0186 1800  [ C025055FE7B87701EB042095DF1A2D7B ] usbehci         C:\Windows\system32\drivers\usbehci.sys
00:26:13.0186 1800  usbehci - ok
00:26:13.0216 1800  [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
00:26:13.0216 1800  usbhub - ok
00:26:13.0266 1800  [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
00:26:13.0271 1800  usbohci - ok
00:26:13.0281 1800  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\drivers\usbprint.sys
00:26:13.0281 1800  usbprint - ok
00:26:13.0331 1800  [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
00:26:13.0336 1800  USBSTOR - ok
00:26:13.0351 1800  [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
00:26:13.0356 1800  usbuhci - ok
00:26:13.0426 1800  [ 70D05EE263568A742D14E1876DF80532 ] usb_rndisx      C:\Windows\system32\DRIVERS\usb8023x.sys
00:26:13.0431 1800  usb_rndisx - ok
00:26:13.0481 1800  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
00:26:13.0486 1800  UxSms - ok
00:26:13.0491 1800  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\Windows\system32\lsass.exe
00:26:13.0491 1800  VaultSvc - ok
00:26:13.0531 1800  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
00:26:13.0536 1800  vdrvroot - ok
00:26:13.0601 1800  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\Windows\System32\vds.exe
00:26:13.0606 1800  vds - ok
00:26:13.0636 1800  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
00:26:13.0636 1800  vga - ok
00:26:13.0651 1800  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
00:26:13.0651 1800  VgaSave - ok
00:26:13.0686 1800  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
00:26:13.0691 1800  vhdmp - ok
00:26:13.0701 1800  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\drivers\viaide.sys
00:26:13.0701 1800  viaide - ok
00:26:13.0716 1800  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
00:26:13.0716 1800  volmgr - ok
00:26:13.0731 1800  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
00:26:13.0736 1800  volmgrx - ok
00:26:13.0786 1800  [ DF8126BD41180351A093A3AD2FC8903B ] volsnap         C:\Windows\system32\drivers\volsnap.sys
00:26:13.0786 1800  volsnap - ok
00:26:13.0801 1800  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
00:26:13.0801 1800  vsmraid - ok
00:26:13.0831 1800  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\Windows\system32\vssvc.exe
00:26:13.0856 1800  VSS - ok
00:26:13.0891 1800  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
00:26:13.0896 1800  vwifibus - ok
00:26:13.0951 1800  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
00:26:13.0956 1800  W32Time - ok
00:26:13.0986 1800  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
00:26:13.0991 1800  WacomPen - ok
00:26:14.0006 1800  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
00:26:14.0006 1800  WANARP - ok
00:26:14.0006 1800  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
00:26:14.0011 1800  Wanarpv6 - ok
00:26:14.0071 1800  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
00:26:14.0086 1800  WatAdminSvc - ok
00:26:14.0131 1800  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\Windows\system32\wbengine.exe
00:26:14.0151 1800  wbengine - ok
00:26:14.0316 1800  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
00:26:14.0321 1800  WbioSrvc - ok
00:26:14.0431 1800  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\Windows\System32\wcncsvc.dll
00:26:14.0431 1800  wcncsvc - ok
00:26:14.0441 1800  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
00:26:14.0441 1800  WcsPlugInService - ok
00:26:14.0496 1800  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\drivers\wd.sys
00:26:14.0501 1800  Wd - ok
00:26:14.0671 1800  [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
00:26:14.0671 1800  Wdf01000 - ok
00:26:14.0761 1800  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
00:26:14.0761 1800  WdiServiceHost - ok
00:26:14.0791 1800  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
00:26:14.0791 1800  WdiSystemHost - ok
00:26:14.0816 1800  [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient       C:\Windows\System32\webclnt.dll
00:26:14.0821 1800  WebClient - ok
00:26:14.0836 1800  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
00:26:14.0836 1800  Wecsvc - ok
00:26:14.0881 1800  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
00:26:14.0881 1800  wercplsupport - ok
00:26:14.0916 1800  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
00:26:14.0916 1800  WerSvc - ok
00:26:14.0981 1800  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
00:26:14.0981 1800  WfpLwf - ok
00:26:14.0991 1800  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
00:26:14.0996 1800  WIMMount - ok
00:26:15.0021 1800  WinDefend - ok
00:26:15.0026 1800  WinHttpAutoProxySvc - ok
00:26:15.0346 1800  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
00:26:15.0346 1800  Winmgmt - ok
00:26:15.0708 1800  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\Windows\system32\WsmSvc.dll
00:26:16.0049 1800  WinRM - ok
00:26:16.0165 1800  [ FE88B288356E7B47B74B13372ADD906D ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
00:26:16.0166 1800  WinUsb - ok
00:26:16.0797 1800  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
00:26:16.0857 1800  Wlansvc - ok
00:26:17.0159 1800  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\DRIVERS\wmiacpi.sys
00:26:17.0159 1800  WmiAcpi - ok
00:26:17.0305 1800  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
00:26:17.0307 1800  wmiApSrv - ok
00:26:17.0460 1800  WMPNetworkSvc - ok
00:26:17.0525 1800  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
00:26:17.0526 1800  WPCSvc - ok
00:26:17.0538 1800  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
00:26:17.0540 1800  WPDBusEnum - ok
00:26:17.0609 1800  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
00:26:17.0619 1800  ws2ifsl - ok
00:26:17.0659 1800  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\Windows\System32\wscsvc.dll
00:26:17.0661 1800  wscsvc - ok
00:26:17.0664 1800  WSearch - ok
00:26:17.0864 1800  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
00:26:17.0876 1800  wuauserv - ok
00:26:17.0908 1800  [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
00:26:17.0944 1800  WudfPf - ok
00:26:18.0044 1800  [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
00:26:18.0045 1800  wudfsvc - ok
00:26:18.0065 1800  [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc         C:\Windows\System32\wwansvc.dll
00:26:18.0068 1800  WwanSvc - ok
00:26:18.0071 1800  ================ Scan global ===============================
00:26:18.0140 1800  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
00:26:18.0857 1800  [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
00:26:18.0865 1800  [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
00:26:18.0974 1800  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
00:26:19.0056 1800  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
00:26:19.0059 1800  [Global] - ok
00:26:19.0059 1800  ================ Scan MBR ==================================
00:26:19.0071 1800  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
00:26:25.0753 1800  \Device\Harddisk0\DR0 - ok
00:26:25.0753 1800  [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk1\DR1
00:26:25.0878 1800  \Device\Harddisk1\DR1 - ok
00:26:25.0878 1800  ================ Scan VBR ==================================
00:26:26.0163 1800  [ 193408A95FFB5AD7B1A32E9F9E488DA5 ] \Device\Harddisk0\DR0\Partition1
00:26:26.0168 1800  \Device\Harddisk0\DR0\Partition1 - ok
00:26:26.0208 1800  [ 7C999257AD1FA51C01C7DA24E6F5A772 ] \Device\Harddisk0\DR0\Partition2
00:26:26.0213 1800  \Device\Harddisk0\DR0\Partition2 - ok
00:26:26.0213 1800  [ 2989E1FC42D82F855EACF931DEB1A126 ] \Device\Harddisk1\DR1\Partition1
00:26:26.0218 1800  \Device\Harddisk1\DR1\Partition1 - ok
00:26:26.0218 1800  ============================================================
00:26:26.0218 1800  Scan finished
00:26:26.0218 1800  ============================================================
00:26:26.0223 2004  Detected object count: 0
00:26:26.0223 2004  Actual detected object count: 0
00:29:16.0469 3884  Deinitialize success

aswMBR log
aswMBR version 0.9.9.1665 Copyright(c) 2011 AVAST Software
Run date: 2012-10-21 00:30:09
-----------------------------
00:30:09.901    OS Version: Windows x64 6.1.7601 Service Pack 1
00:30:09.901    Number of processors: 4 586 0x2A07
00:30:09.901    ComputerName: MJM-IBPPC  UserName: Matthew
00:30:11.346    Initialize success
00:31:10.954    AVAST engine defs: 12102001
00:34:33.883    Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
00:34:33.886    Disk 0 Vendor: ST1000DM CC9C Size: 953869MB BusType: 3
00:34:33.915    Disk 0 MBR read successfully
00:34:33.916    Disk 0 MBR scan
00:34:33.920    Disk 0 Windows 7 default MBR code
00:34:33.929    Disk 0 Partition 1 80 (A) 07    HPFS/NTFS NTFS          100 MB offset 2048
00:34:33.940    Disk 0 Partition 2 00     07    HPFS/NTFS NTFS       953767 MB offset 206848
00:34:33.956    Disk 0 scanning C:\Windows\system32\drivers
00:34:44.318    Service scanning
00:35:03.600    Modules scanning
00:35:03.604    Disk 0 trace - called modules:
00:35:03.629    ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys iaStor.sys hal.dll 
00:35:03.631    1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8007718060]
00:35:03.957    3 CLASSPNP.SYS[fffff8800163b43f] -> nt!IofCallDriver -> [0xfffffa80074e9960]
00:35:03.961    5 ACPI.sys[fffff88000fb07a1] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa80074ee050]
00:35:05.453    AVAST engine scan C:\Windows
00:35:08.950    AVAST engine scan C:\Windows\system32
00:38:40.461    AVAST engine scan C:\Windows\system32\drivers
00:39:00.856    AVAST engine scan C:\Users\Matthew
00:58:45.828    AVAST engine scan C:\ProgramData
00:59:49.424    Scan finished successfully
01:02:46.597    Disk 0 MBR has been saved successfully to "C:\Users\Matthew\Desktop\MBR.dat"
01:02:46.600    The log file has been saved successfully to "C:\Users\Matthew\Desktop\aswMBR.txt"

ESET didn't detect any threats.

#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:02:09 PM

Posted 21 October 2012 - 10:04 AM

Download

Malwarebytes

Install,update and run a full scan

Click on Show results.Right click on the list ,select all and remove them.

Post the generated log here

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size
List restore points

Click Go and post the result.

Download

Farbar service scanner

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.

Download

adware cleaner

Launch it click on Delete

A log should be generated after scan ,post it here

Download

Junkware removal tool

For vista and windows 7 right click on the tool and select run as administrator

After scan gets completed,post the generated log here.

#9 thorn969

thorn969
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:02:09 PM

Posted 21 October 2012 - 03:11 PM

Malwarebytes:

Malwarebytes Anti-Malware 1.65.1.1000
www.malwarebytes.org

Database version: v2012.10.21.05

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Matthew :: MJM-IBPPC [administrator]

10/21/2012 12:53:02 PM
mbam-log-2012-10-21 (15-32-56).txt

Scan type: Full scan (C:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 431336
Time elapsed: 44 minute(s), 4 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

MiniToolBox

MiniToolBox by Farbar Version: 23-07-2012
Ran by Matthew (administrator) on 21-10-2012 at 15:36:10
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
ProxyServer: http=127.0.0.1:8118;https=127.0.0.1:8118;ftp=127.0.0.1:8118;socks=127.0.0.1:9050

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

127.0.0.1 adobe-dns-2.adobe.de
127.0.0.1 hl2rcv.adobe.com
127.0.0.1 adobeereg.com
127.0.0.1 activate.adobe.com
127.0.0.1 practivate.adobe.com
127.0.0.1 ereg.adobe.com
127.0.0.1 activate.wip3.adobe.com
127.0.0.1 ereg.wip3.adobe.com
127.0.0.1 wip3.adobe.com
127.0.0.1 activate-sea.adobe.com
127.0.0.1 wwis-dubc1-vip60.adobe.com
127.0.0.1 activate-sjc0.adobe.com
127.0.0.1 3dns.adobe.com
127.0.0.1 3dns-1.adobe.com
127.0.0.1 3dns-2.adobe.com
127.0.0.1 3dns-3.adobe.com
127.0.0.1 3dns-4.adobe.com
127.0.0.1 adobe-dns.adobe.com
127.0.0.1 adobe-dns-1.adobe.com
127.0.0.1 adobe-dns-2.adobe.com

There are 13 more lines starting with "127.0.0.1"

========================= IP Configuration: ================================

Realtek PCIe GBE Family Controller = Local Area Connection (Connected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : MJM-IBPPC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : home

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . : home
Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
Physical Address. . . . . . . . . : C8-60-00-6A-2E-1D
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::197:f05b:c596:5184%11(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.7(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Sunday, October 21, 2012 2:58:44 AM
Lease Expires . . . . . . . . . . : Monday, October 22, 2012 2:58:45 PM
Default Gateway . . . . . . . . . : 192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 248012800
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-17-09-B3-20-C8-60-00-6A-2E-1D
DNS Servers . . . . . . . . . . . : 208.67.222.222
8.8.4.4
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.home:

Connection-specific DNS Suffix . : home
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::5efe:192.168.1.7%12(Preferred)
Default Gateway . . . . . . . . . :
DNS Servers . . . . . . . . . . . : 208.67.222.222
8.8.4.4
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:9d38:953c:c80:16e6:52be:b69b(Preferred)
Link-local IPv6 Address . . . . . : fe80::c80:16e6:52be:b69b%13(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled
Server: resolver1.opendns.com
Address: 208.67.222.222

Name: google.com.home
Address: 67.215.65.132


Pinging google.com [74.125.228.105] with 32 bytes of data:
Reply from 74.125.228.105: bytes=32 time=42ms TTL=55
Reply from 74.125.228.105: bytes=32 time=37ms TTL=55

Ping statistics for 74.125.228.105:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 37ms, Maximum = 42ms, Average = 39ms
Server: resolver1.opendns.com
Address: 208.67.222.222

Name: yahoo.com.home
Address: 67.215.65.132


Pinging yahoo.com [98.139.183.24] with 32 bytes of data:
Reply from 98.139.183.24: bytes=32 time=200ms TTL=49
Reply from 98.139.183.24: bytes=32 time=267ms TTL=49

Ping statistics for 98.139.183.24:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 200ms, Maximum = 267ms, Average = 233ms
Server: resolver1.opendns.com
Address: 208.67.222.222

Name: bleepingcomputer.com.home
Address: 67.215.65.132


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
11...c8 60 00 6a 2e 1d ......Realtek PCIe GBE Family Controller
1...........................Software Loopback Interface 1
12...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
13...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.7 20
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.7 276
192.168.1.7 255.255.255.255 On-link 192.168.1.7 276
192.168.1.255 255.255.255.255 On-link 192.168.1.7 276
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.7 276
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.7 276
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
13 58 ::/0 On-link
1 306 ::1/128 On-link
13 58 2001::/32 On-link
13 306 2001:0:9d38:953c:c80:16e6:52be:b69b/128
On-link
11 276 fe80::/64 On-link
13 306 fe80::/64 On-link
12 281 fe80::5efe:192.168.1.7/128
On-link
11 276 fe80::197:f05b:c596:5184/128
On-link
13 306 fe80::c80:16e6:52be:b69b/128
On-link
1 306 ff00::/8 On-link
13 306 ff00::/8 On-link
11 276 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [152864] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [193824] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (10/21/2012 03:00:20 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/21/2012 03:00:07 AM) (Source: Bonjour Service) (User: )
Description: Bad service type in MJM-IBPPC._plexmediaserver_lge._tcp.local. Application protocol name must be underscore plus 1-14 characters. See <http://www.dns-sd.org/ServiceTypes.html>

Error: (10/21/2012 03:00:07 AM) (Source: Bonjour Service) (User: )
Description: Bad service type in ._plexmediaserver_lge._tcp.local. Application protocol name must be underscore plus 1-14 characters. See <http://www.dns-sd.org/ServiceTypes.html>

Error: (10/21/2012 03:00:07 AM) (Source: Bonjour Service) (User: )
Description: Bad service type in MJM-IBPPC._plexmediaserver_lge._tcp.local. Application protocol name must be underscore plus 1-14 characters. See <http://www.dns-sd.org/ServiceTypes.html>

Error: (10/21/2012 02:21:05 AM) (Source: MsiInstaller) (User: MJM-IBPPC)MJM-IBPPC
Description: Product: Microsoft Mouse and Keyboard Center -- Error 1712. One or more of the files required to restore your computer to its previous state could not be found. Restoration will not be possible.

Error: (10/21/2012 01:04:49 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (10/21/2012 01:04:45 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (10/20/2012 07:06:36 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/20/2012 07:06:11 PM) (Source: Bonjour Service) (User: )
Description: Bad service type in MJM-IBPPC._plexmediaserver_lge._tcp.local. Application protocol name must be underscore plus 1-14 characters. See <http://www.dns-sd.org/ServiceTypes.html>

Error: (10/20/2012 07:06:11 PM) (Source: Bonjour Service) (User: )
Description: Bad service type in ._plexmediaserver_lge._tcp.local. Application protocol name must be underscore plus 1-14 characters. See <http://www.dns-sd.org/ServiceTypes.html>


System errors:
=============
Error: (10/21/2012 03:01:51 AM) (Source: BROWSER) (User: )
Description: The browser service has failed to retrieve the backup list too many times on transport \Device\NetBT_Tcpip_{322A3A52-C1E8-4702-9A7B-E8285864D6DC}.
The backup browser is stopping.

Error: (10/21/2012 03:01:18 AM) (Source: WMPNetworkSvc) (User: )
Description: WMPNetworkSvc0x80070422

Error: (10/21/2012 02:59:53 AM) (Source: WMPNetworkSvc) (User: )
Description: WMPNetworkSvc0x80070422

Error: (10/21/2012 02:58:30 AM) (Source: volmgr) (User: )
Description: Configuring the Page file for crash dump failed. Make sure there is a page
file on the boot partition and that is large enough to contain all physical
memory.

Error: (10/21/2012 02:58:24 AM) (Source: volmgr) (User: )
Description: Configuring the Page file for crash dump failed. Make sure there is a page
file on the boot partition and that is large enough to contain all physical
memory.

Error: (10/21/2012 01:47:33 AM) (Source: iaStor) (User: )
Description: The device, \Device\Ide\iaStor0, did not respond within the timeout period.

Error: (10/21/2012 01:47:05 AM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Windows Error Reporting Service service to connect.

Error: (10/21/2012 01:30:32 AM) (Source: iaStor) (User: )
Description: The device, \Device\Ide\iaStor0, did not respond within the timeout period.

Error: (10/21/2012 01:25:32 AM) (Source: iaStor) (User: )
Description: The device, \Device\Ide\iaStor0, did not respond within the timeout period.

Error: (10/21/2012 01:12:30 AM) (Source: iaStor) (User: )
Description: The device, \Device\Ide\iaStor0, did not respond within the timeout period.


Microsoft Office Sessions:
=========================
Error: (04/21/2012 06:48:27 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6607.1000, Microsoft Office Version: 12.0.6612.1000. This session lasted 27 seconds with 0 seconds of active time. This session ended with a crash.

Error: (04/21/2012 06:47:53 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6607.1000, Microsoft Office Version: 12.0.6612.1000. This session lasted 16 seconds with 0 seconds of active time. This session ended with a crash.


=========================== Installed Programs ============================

Update for Microsoft Office 2007 (KB2508958)
7-Zip 9.20 (x64 edition) (Version: 9.20.00.0)
ABBYY FineReader 10 Professional Edition (Version: 10.501.338.70023)
Adobe Acrobat 9 Pro Extended 64-bit Add-On (Version: 9.0.0)
Adobe Digital Editions
Adobe Flash Player 11 ActiveX (Version: 11.4.402.287)
Adobe Flash Player 11 Plugin (Version: 11.4.402.287)
Adobe Reader X (10.1.4) (Version: 10.1.4)
AI Suite II (Version: 1.02.03)
Amazon Kindle
AMD Accelerated Video Transcoding (Version: 2.00.0002)
AMD APP SDK Runtime (Version: 10.0.938.2)
AMD Catalyst Install Manager (Version: 8.0.881.0)
AMD Drag and Drop Transcoding (Version: 2.00.0000)
AMD Media Foundation Decoders (Version: 1.0.70727.2220)
Asmedia ASM104x USB 3.0 Host Controller Driver (Version: 1.14.1.0)
ATI AVIVO64 Codecs (Version: 11.6.0.10524)
Audacity 2.0
Avidemux 2.5 (Version: 2.5.6.7716)
AviSynth 2.5
AVS2AVI wrapper (Remove Only)
Bonjour (Version: 2.0.4.0)
calibre (Version: 0.9.0)
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center (Version: 2012.0806.1213.19931)
Catalyst Control Center Graphics Previews Common (Version: 2012.0806.1213.19931)
Catalyst Control Center InstallProxy (Version: 2012.0806.1213.19931)
Catalyst Control Center Localization All (Version: 2012.0806.1213.19931)
ccc-utility64 (Version: 2012.0806.1213.19931)
CCC Help Chinese Standard (Version: 2012.0806.1212.19931)
CCC Help Chinese Traditional (Version: 2012.0806.1212.19931)
CCC Help Czech (Version: 2012.0806.1212.19931)
CCC Help Danish (Version: 2012.0806.1212.19931)
CCC Help Dutch (Version: 2012.0806.1212.19931)
CCC Help English (Version: 2012.0806.1212.19931)
CCC Help Finnish (Version: 2012.0806.1212.19931)
CCC Help French (Version: 2012.0806.1212.19931)
CCC Help German (Version: 2012.0806.1212.19931)
CCC Help Greek (Version: 2012.0806.1212.19931)
CCC Help Hungarian (Version: 2012.0806.1212.19931)
CCC Help Italian (Version: 2012.0806.1212.19931)
CCC Help Japanese (Version: 2012.0806.1212.19931)
CCC Help Korean (Version: 2012.0806.1212.19931)
CCC Help Norwegian (Version: 2012.0806.1212.19931)
CCC Help Polish (Version: 2012.0806.1212.19931)
CCC Help Portuguese (Version: 2012.0806.1212.19931)
CCC Help Russian (Version: 2012.0806.1212.19931)
CCC Help Spanish (Version: 2012.0806.1212.19931)
CCC Help Swedish (Version: 2012.0806.1212.19931)
CCC Help Thai (Version: 2012.0806.1212.19931)
CCC Help Turkish (Version: 2012.0806.1212.19931)
CCE SP Trial Version
CCleaner (Version: 3.17)
Disk Space Fan 4 Free (4.0.2.102)
Dropbox (Version: 1.4.7)
DVD Decrypter (Remove Only)
DVD Rebuilder (Version: PRO v1.28.2)
DVD Shrink 3.2
dvdisaster-0.72.3
EPSON Printer Software
EPSON WorkForce 630 Series Printer Uninstall
ESET Online Scanner v3
Everything 1.2.1.371
Exact Audio Copy 1.0beta3 (Version: 1.0beta3)
Free Download Manager 3.8
Google Chrome (Version: 22.0.1229.94)
Graph 4.3
HandBrake 0.9.6 (Version: 0.9.6)
HDD Regenerator (Version: 1.71.0012)
HydraIRC (Version: 0.3.165)
HydraVision (Version: 4.2.206.0)
IceChat 9 RC3 (Build 20120209) (Version: 9.00)
ImgBurn (Version: 2.5.7.0)
Intel(R) Management Engine Components (Version: 7.0.0.1144)
Intel(R) Rapid Storage Technology (Version: 10.5.1.1001)
IsoBuster 2.8 (Version: 2.8)
Java Auto Updater (Version: 2.0.7.1)
Java(TM) 6 Update 35 (Version: 6.0.350)
JDownloader 0.9 (Version: 0.9)
K-Lite Mega Codec Pack 8.7.0 (Version: 8.7.0)
LastPass (uninstall only)
LG CyberLink BD Advisor (Version: 2.0.4606)
LG CyberLink LabelPrint (Version: 2.5.3624)
LG CyberLink Media Suite (Version: 8.0.2820)
LG CyberLink PowerDVD (Version: 10.0.3424.52)
LG CyberLink PowerProducer (Version: 5.0.2.2820a)
LG CyberLink YouCam (Version: 2.0.3718)
LightScribe System Software (Version: 1.18.22.2)
Macrium Reflect Free Edition (Version: 5.0.4368)
Malwarebytes Anti-Malware version 1.65.1.1000 (Version: 1.65.1.1000)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Mouse and Keyboard Center (Version: 2.0.161.0)
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Access MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Enterprise 2007 (Version: 12.0.6612.1000)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Groove MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Groove Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office InfoPath MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (Version: 10.0.30319)
MiniTool Partition Wizard Home Edition 7.6
MKVToolNix 5.4.0 (Version: 5.4.0)
Mozilla Firefox 15.0.1 (x86 en-US) (Version: 15.0.1)
Mozilla Firefox 16.0.1 (x86 en-US) (Version: 16.0.1)
Mozilla Maintenance Service (Version: 16.0.1)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MusicBrainz Picard (Version: 0.16)
Norton AntiVirus (Version: 20.1.1.5)
Norton Identity Safe (Version: 2013.1.1.7)
Notepad++ (Version: 6.0)
OXD Software Movie Organizer (Version: 2.7.7)
Paint.NET v3.5.10 (Version: 3.60.0)
PdfMasher (Version: 0.6.3)
Picture Ripper 3: Fast Media Downloader And Viewer
Pidgin (Version: 2.10.3)
Plex (Version: 0.9.502)
Plex Media Server (Version: 0.9.607)
RAR Password Recovery v1.1 RC16 (remove only)
Realtek Ethernet Controller Driver (Version: 7.49.927.2011)
Realtek High Definition Audio Driver (Version: 6.0.1.6526)
Recuva (Version: 1.42)
Samsung Kies (Version: 2.0.0.11014_49)
SAMSUNG USB Driver for Mobile Phones (Version: 1.5.5.0)
ScummVM 1.4.1
Skype 5.8 (Version: 5.8.158)
SP TimeSync 2.4 (Version: 2.4)
SpywareBlaster 4.6 (Version: 4.6.0)
SumatraPDF (Version: 1.9)
System Requirements Lab for Intel (Version: 4.5.5.0)
Unity Web Player (Version: )
Unlocker 1.9.1-x64 (Version: 1.9.1)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft Office Access 2007 Help (KB963663)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office Infopath 2007 Help (KB963662)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Outlook 2007 (KB2596598) 32-Bit Edition
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2687407) 32-Bit Edition
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Publisher 2007 Help (KB963667)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
VLC media player 2.0.1 (Version: 2.0.1)

========================= Memory info: ===================================

Percentage of memory in use: 45%
Total physical RAM: 8159.13 MB
Available physical RAM: 4419.34 MB
Total Pagefile: 10757.32 MB
Available Pagefile: 6519 MB
Total Virtual: 4095.88 MB
Available Virtual: 3957.86 MB

========================= Partitions: =====================================

1 Drive c: (Windows) (Fixed) (Total:931.41 GB) (Free:390.75 GB) NTFS
3 Drive e: (FreeAgent Drive) (Fixed) (Total:931.51 GB) (Free:444.47 GB) NTFS
4 Drive f: () (Fixed) (Total:298.09 GB) (Free:8.59 GB) NTFS

========================= Users: ========================================

User accounts for \\MJM-IBPPC

Administrator Guest Matthew
Matthew

========================= Restore Points ==================================

20-10-2012 23:41:24 Scheduled Checkpoint
21-10-2012 06:18:44 Windows Update
21-10-2012 06:19:46 DCInstallRestorePoint

**** End of log ****

FSS:

Farbar Service Scanner Version: 19-10-2012
Ran by Matthew (administrator) on 21-10-2012 at 15:40:40
Running from "C:\Users\Matthew\Downloads"
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****

AdwCleaner

# AdwCleaner v2.005 - Logfile created 10/21/2012 at 15:59:54
# Updated 14/10/2012 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : Matthew - MJM-IBPPC
# Boot Mode : Normal
# Running from : C:\Users\Matthew\Downloads\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

Folder Deleted : C:\ProgramData\boost_interprocess

***** [Registry] *****

Key Deleted : HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{11549FE4-7C5A-4C17-9FC3-56FC5162A994}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16421

[OK] Registry is clean.

-\\ Mozilla Firefox v15.0.1 (en-US)

Profile name : Default User [Profil par défaut]
File : C:\Users\Matthew\AppData\Roaming\Mozilla\Firefox\Profiles\b3feg8m3.default\prefs.js

[OK] File is clean.

Profile name : default
File : C:\Users\Matthew\AppData\Roaming\Mozilla\Firefox\Profiles\6frdgn6h.default\prefs.js

[OK] File is clean.

-\\ Google Chrome v22.0.1229.94

File : C:\Users\Matthew\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[S2].txt - [2055 octets] - [21/10/2012 15:59:54]

########## EOF - C:\AdwCleaner[S2].txt - [2115 octets] ##########

JRT

Junkware Removal Tool (JRT) by Thisisu
Version: 1.9.0 (10.21.2012)
OS: Windows 7 Home Premium x64
Ran by Matthew on Sun 10/21/2012 at 15:42:46.93
Blog: http://thisisudax.blogspot.com
**************************************************************




*** Services: 0 Detections



*** Registry Values: 0 Detections



*** Registry Keys:

Successfully deleted: [KEY] hkey_current_user\software\microsoft\internet explorer\searchscopes\{171debeb-c3d4-40b7-ac73-056a5eba4a7e}



*** Files: 0 Detections



*** Folders: 0 Detections



*** Ask Toolbar Cleanup:

Successfully deleted: [PROFILE XML] C:\Users\Matthew\AppData\Roaming\Mozilla\Firefox\Profiles\b3feg8m3.default\searchplugins\"askcom.xml"



*** FireFox detected and repaired

Successfully deleted: C:\user.js


*** Event Viewer Logs - Cleared





**************************************************************
Scan was completed on Sun 10/21/2012 at 15:53:39.22
End of Report

Edited by Queen-Evie, 14 November 2013 - 12:10 AM.
edited at the request of the poster


#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:02:09 PM

Posted 21 October 2012 - 05:45 PM

You should reinstall norton.I'm not finding anything malicious in your logs

Download

http://www.bleepingcomputer.com/download/rkill/

Run it and after scan finishes,post the contents of RKILL log located on the desktop here


Download

Autoruns

Extract and launch autoruns.exe

Allow the scan to get finished

Now click on FILE-SAVE

Filename:Autoruns.txt
Save as :Text

Paste the contents of text here




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users