Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

HDD error


  • Please log in to reply
6 replies to this topic

#1 aszymczyk

aszymczyk

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:07:46 PM

Posted 26 October 2012 - 09:54 PM

While browsing the web tonight Firefox shut down and then a bunch of messages popped up about sectors of my hard drive being unreadable, etc. I pulled the plug on the network connection and immediately restarted in Safemode, then ran Malwarebytes from a USB drive that I keep updated for just these issues.

Without getting too far ahead of myself - I know MB needs to finish, I'm doing a full scan and it's found only 3 objects - I did notice that my files are hidden. I had to access the USB drive through keyboard commands.

I'll update again once MB is finished - at that point I'm sure I'll need more help!

I can't offer much other info as of yet, other than the operating system (Win7 Home Premium).

Thanks!

Edited by aszymczyk, 26 October 2012 - 09:55 PM.


BC AdBot (Login to Remove)

 


#2 aszymczyk

aszymczyk
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:07:46 PM

Posted 26 October 2012 - 09:59 PM

Almost on cue, MB is done.

Found:
Trojan.Foury (two files, one registry value)
PUM.Hijack.StartMenu (two registry values)

Edited by aszymczyk, 26 October 2012 - 10:01 PM.


#3 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,416 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:07:46 PM

Posted 26 October 2012 - 10:30 PM

Hello and welcome.

To make your files visible again, please download the following program to your desktop:

Unhide.exe

Once the program has been downloaded, double-click on the Unhide.exe icon on your desktop and allow the program to run. This program will remove the +H, or hidden, attribute from all the files on your hard drives. If there are any files that were purposely hidden by you, you will need to hide them again after this tool is run.


Please download Rkill by Grinler and save it to your desktop.Link 1
Link 2
  • Double-click on the Rkill desktop icon to run the tool.
  • If using Vista, right-click on it and Run As Administrator.
  • A black DOS box will briefly flash and then disappear. This is normal and indicates the tool ran successfully.
  • If not, delete the file, then download and use the one provided in Link 2.
  • If it does not work, repeat the process and attempt to use one of the remaining links until the tool runs.
  • If the tool does not run from any of the links provided, please let me know.
Do not reboot the computer, you will need to run the application again.



Please Download

TDSSkiller


Launch it. Click on change parameters-Select TDLFS file system

Click on "Scan".
Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results.



Rerun MBAM (MalwareBytes) like this:

Open MBAM in normal mode and click Update tab, select Check for Updates,when done
click Scanner tab,select Quick scan and scan (normal mode).
After scan click Remove Selected, Post new scan log and Reboot into normal mode.



Posted Image Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista or Seven, right-mouse click it and select Run as Administrator.
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.

Please ask any needed questions,post logs and Let us know how the PC is running now.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#4 aszymczyk

aszymczyk
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:07:46 PM

Posted 26 October 2012 - 11:04 PM

23:40:24.0570 5772 TDSS rootkit removing tool 2.8.13.0 Oct 12 2012 17:26:47
23:40:24.0773 5772 ============================================================
23:40:24.0773 5772 Current date / time: 2012/10/26 23:40:24.0773
23:40:24.0773 5772 SystemInfo:
23:40:24.0773 5772
23:40:24.0773 5772 OS Version: 6.1.7601 ServicePack: 1.0
23:40:24.0773 5772 Product type: Workstation
23:40:24.0773 5772 ComputerName: ANDY-LAPTOP
23:40:24.0773 5772 UserName: Andy
23:40:24.0773 5772 Windows directory: C:\windows
23:40:24.0773 5772 System windows directory: C:\windows
23:40:24.0773 5772 Running under WOW64
23:40:24.0773 5772 Processor architecture: Intel x64
23:40:24.0773 5772 Number of processors: 4
23:40:24.0773 5772 Page size: 0x1000
23:40:24.0773 5772 Boot type: Normal boot
23:40:24.0773 5772 ============================================================
23:40:26.0099 5772 BG loaded
23:40:26.0411 5772 Drive \Device\Harddisk0\DR0 - Size: 0xAEA8CDE000 (698.64 Gb), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
23:40:26.0411 5772 Drive \Device\Harddisk1\DR2 - Size: 0x1E6C60000 (7.61 Gb), SectorSize: 0x200, Cylinders: 0x3E0, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
23:40:26.0426 5772 ============================================================
23:40:26.0426 5772 \Device\Harddisk0\DR0:
23:40:26.0426 5772 MBR partitions:
23:40:26.0426 5772 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2EE800, BlocksNum 0x55740000
23:40:26.0426 5772 \Device\Harddisk1\DR2:
23:40:26.0426 5772 MBR partitions:
23:40:26.0426 5772 \Device\Harddisk1\DR2\Partition1: MBR, Type 0xC, StartLBA 0x2D78, BlocksNum 0xF33588
23:40:26.0426 5772 ============================================================
23:40:26.0457 5772 C: <-> \Device\Harddisk0\DR0\Partition1
23:40:26.0457 5772 ============================================================
23:40:26.0457 5772 Initialize success
23:40:26.0457 5772 ============================================================
23:40:47.0954 6128 ============================================================
23:40:47.0954 6128 Scan started
23:40:47.0954 6128 Mode: Manual; TDLFS;
23:40:47.0954 6128 ============================================================
23:40:48.0251 6128 ================ Scan system memory ========================
23:40:48.0251 6128 System memory - ok
23:40:48.0251 6128 ================ Scan services =============================
23:40:48.0453 6128 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\windows\system32\drivers\1394ohci.sys
23:40:48.0453 6128 1394ohci - ok
23:40:48.0485 6128 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\windows\system32\drivers\ACPI.sys
23:40:48.0485 6128 ACPI - ok
23:40:48.0500 6128 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\windows\system32\drivers\acpipmi.sys
23:40:48.0500 6128 AcpiPmi - ok
23:40:48.0656 6128 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
23:40:48.0656 6128 AdobeARMservice - ok
23:40:48.0750 6128 [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
23:40:48.0765 6128 AdobeFlashPlayerUpdateSvc - ok
23:40:48.0812 6128 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\windows\system32\drivers\adp94xx.sys
23:40:48.0812 6128 adp94xx - ok
23:40:48.0875 6128 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\windows\system32\drivers\adpahci.sys
23:40:48.0875 6128 adpahci - ok
23:40:48.0890 6128 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\windows\system32\drivers\adpu320.sys
23:40:48.0890 6128 adpu320 - ok
23:40:48.0999 6128 [ 0D1875B197567FA5FC78E4913977B600 ] AE1000 C:\windows\system32\DRIVERS\ae1000w7.sys
23:40:49.0015 6128 AE1000 - ok
23:40:49.0062 6128 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\windows\System32\aelupsvc.dll
23:40:49.0062 6128 AeLookupSvc - ok
23:40:49.0109 6128 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\windows\system32\drivers\afd.sys
23:40:49.0124 6128 AFD - ok
23:40:49.0140 6128 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\windows\system32\drivers\agp440.sys
23:40:49.0140 6128 agp440 - ok
23:40:49.0171 6128 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\windows\System32\alg.exe
23:40:49.0171 6128 ALG - ok
23:40:49.0202 6128 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\windows\system32\drivers\aliide.sys
23:40:49.0202 6128 aliide - ok
23:40:49.0280 6128 [ 63204B7C361D44DA791B70F4E31E5220 ] AMD External Events Utility C:\windows\system32\atiesrxx.exe
23:40:49.0280 6128 AMD External Events Utility - ok
23:40:49.0343 6128 [ C17BAFA60F941A1AF5C2B10D8632C409 ] amdhub30 C:\windows\system32\DRIVERS\amdhub30.sys
23:40:49.0343 6128 amdhub30 - ok
23:40:49.0358 6128 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\windows\system32\drivers\amdide.sys
23:40:49.0358 6128 amdide - ok
23:40:49.0405 6128 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\windows\system32\drivers\amdk8.sys
23:40:49.0405 6128 AmdK8 - ok
23:40:49.0655 6128 [ 0468FB7AE99626524F9BDE3E1E030F63 ] amdkmdag C:\windows\system32\DRIVERS\atikmdag.sys
23:40:49.0717 6128 amdkmdag - ok
23:40:49.0779 6128 [ 41DF60B783AF496C93AB22B3B30518E1 ] amdkmdap C:\windows\system32\DRIVERS\atikmpag.sys
23:40:49.0779 6128 amdkmdap - ok
23:40:49.0842 6128 [ 554FB0F28C411FB1EAFD4EA46A8CAAA4 ] amdkmpfd C:\windows\system32\DRIVERS\amdkmpfd.sys
23:40:49.0842 6128 amdkmpfd - ok
23:40:49.0857 6128 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\windows\system32\DRIVERS\amdppm.sys
23:40:49.0857 6128 AmdPPM - ok
23:40:49.0889 6128 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\windows\system32\drivers\amdsata.sys
23:40:49.0889 6128 amdsata - ok
23:40:49.0920 6128 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\windows\system32\drivers\amdsbs.sys
23:40:49.0920 6128 amdsbs - ok
23:40:49.0935 6128 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\windows\system32\drivers\amdxata.sys
23:40:49.0935 6128 amdxata - ok
23:40:49.0967 6128 [ 3DC51308F5E7A4BB8020D16E64E9D882 ] amdxhc C:\windows\system32\DRIVERS\amdxhc.sys
23:40:49.0967 6128 amdxhc - ok
23:40:49.0998 6128 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\windows\system32\drivers\appid.sys
23:40:49.0998 6128 AppID - ok
23:40:50.0029 6128 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\windows\System32\appidsvc.dll
23:40:50.0029 6128 AppIDSvc - ok
23:40:50.0029 6128 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\windows\System32\appinfo.dll
23:40:50.0029 6128 Appinfo - ok
23:40:50.0076 6128 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\windows\system32\drivers\arc.sys
23:40:50.0076 6128 arc - ok
23:40:50.0091 6128 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\windows\system32\drivers\arcsas.sys
23:40:50.0091 6128 arcsas - ok
23:40:50.0201 6128 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
23:40:50.0201 6128 aspnet_state - ok
23:40:50.0263 6128 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\windows\system32\DRIVERS\asyncmac.sys
23:40:50.0263 6128 AsyncMac - ok
23:40:50.0263 6128 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\windows\system32\drivers\atapi.sys
23:40:50.0263 6128 atapi - ok
23:40:50.0325 6128 [ 2B3B05C0A7768BF033217EB8F33F9C35 ] AtiHDAudioService C:\windows\system32\drivers\AtihdW76.sys
23:40:50.0325 6128 AtiHDAudioService - ok
23:40:50.0388 6128 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\windows\System32\Audiosrv.dll
23:40:50.0388 6128 AudioEndpointBuilder - ok
23:40:50.0403 6128 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\windows\System32\Audiosrv.dll
23:40:50.0419 6128 AudioSrv - ok
23:40:50.0450 6128 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\windows\System32\AxInstSV.dll
23:40:50.0450 6128 AxInstSV - ok
23:40:50.0513 6128 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\windows\system32\drivers\bxvbda.sys
23:40:50.0513 6128 b06bdrv - ok
23:40:50.0544 6128 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\windows\system32\DRIVERS\b57nd60a.sys
23:40:50.0544 6128 b57nd60a - ok
23:40:50.0606 6128 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\windows\System32\bdesvc.dll
23:40:50.0606 6128 BDESVC - ok
23:40:50.0622 6128 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\windows\system32\drivers\Beep.sys
23:40:50.0622 6128 Beep - ok
23:40:50.0684 6128 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\windows\System32\bfe.dll
23:40:50.0684 6128 BFE - ok
23:40:50.0747 6128 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\windows\System32\qmgr.dll
23:40:50.0747 6128 BITS - ok
23:40:50.0809 6128 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\windows\system32\DRIVERS\blbdrive.sys
23:40:50.0809 6128 blbdrive - ok
23:40:50.0840 6128 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\windows\system32\DRIVERS\bowser.sys
23:40:50.0840 6128 bowser - ok
23:40:50.0871 6128 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\windows\system32\drivers\BrFiltLo.sys
23:40:50.0871 6128 BrFiltLo - ok
23:40:50.0871 6128 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\windows\system32\drivers\BrFiltUp.sys
23:40:50.0871 6128 BrFiltUp - ok
23:40:50.0903 6128 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\windows\System32\browser.dll
23:40:50.0903 6128 Browser - ok
23:40:50.0965 6128 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\windows\System32\Drivers\Brserid.sys
23:40:50.0981 6128 Brserid - ok
23:40:50.0981 6128 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\windows\System32\Drivers\BrSerWdm.sys
23:40:50.0981 6128 BrSerWdm - ok
23:40:50.0996 6128 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\windows\System32\Drivers\BrUsbMdm.sys
23:40:50.0996 6128 BrUsbMdm - ok
23:40:50.0996 6128 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\windows\System32\Drivers\BrUsbSer.sys
23:40:50.0996 6128 BrUsbSer - ok
23:40:51.0043 6128 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\windows\system32\drivers\BthEnum.sys
23:40:51.0043 6128 BthEnum - ok
23:40:51.0059 6128 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\windows\system32\drivers\bthmodem.sys
23:40:51.0059 6128 BTHMODEM - ok
23:40:51.0090 6128 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\windows\system32\DRIVERS\bthpan.sys
23:40:51.0090 6128 BthPan - ok
23:40:51.0121 6128 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT C:\windows\System32\Drivers\BTHport.sys
23:40:51.0121 6128 BTHPORT - ok
23:40:51.0168 6128 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\windows\system32\bthserv.dll
23:40:51.0168 6128 bthserv - ok
23:40:51.0199 6128 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\windows\System32\Drivers\BTHUSB.sys
23:40:51.0199 6128 BTHUSB - ok
23:40:51.0246 6128 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\windows\system32\DRIVERS\cdfs.sys
23:40:51.0246 6128 cdfs - ok
23:40:51.0261 6128 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\windows\system32\DRIVERS\cdrom.sys
23:40:51.0261 6128 cdrom - ok
23:40:51.0308 6128 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\windows\System32\certprop.dll
23:40:51.0308 6128 CertPropSvc - ok
23:40:51.0308 6128 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\windows\system32\drivers\circlass.sys
23:40:51.0308 6128 circlass - ok
23:40:51.0355 6128 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\windows\system32\CLFS.sys
23:40:51.0355 6128 CLFS - ok
23:40:51.0417 6128 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
23:40:51.0417 6128 clr_optimization_v2.0.50727_32 - ok
23:40:51.0449 6128 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
23:40:51.0449 6128 clr_optimization_v2.0.50727_64 - ok
23:40:51.0589 6128 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
23:40:51.0589 6128 clr_optimization_v4.0.30319_32 - ok
23:40:51.0636 6128 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
23:40:51.0636 6128 clr_optimization_v4.0.30319_64 - ok
23:40:51.0683 6128 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\windows\system32\DRIVERS\CmBatt.sys
23:40:51.0683 6128 CmBatt - ok
23:40:51.0683 6128 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\windows\system32\drivers\cmdide.sys
23:40:51.0683 6128 cmdide - ok
23:40:51.0745 6128 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\windows\system32\Drivers\cng.sys
23:40:51.0745 6128 CNG - ok
23:40:51.0776 6128 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\windows\system32\drivers\compbatt.sys
23:40:51.0776 6128 Compbatt - ok
23:40:51.0807 6128 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\windows\system32\DRIVERS\CompositeBus.sys
23:40:51.0807 6128 CompositeBus - ok
23:40:51.0839 6128 COMSysApp - ok
23:40:51.0839 6128 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\windows\system32\drivers\crcdisk.sys
23:40:51.0839 6128 crcdisk - ok
23:40:51.0885 6128 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\windows\system32\cryptsvc.dll
23:40:51.0885 6128 CryptSvc - ok
23:40:51.0932 6128 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\windows\system32\rpcss.dll
23:40:51.0932 6128 DcomLaunch - ok
23:40:52.0010 6128 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\windows\System32\defragsvc.dll
23:40:52.0010 6128 defragsvc - ok
23:40:52.0057 6128 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\windows\system32\Drivers\dfsc.sys
23:40:52.0057 6128 DfsC - ok
23:40:52.0119 6128 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\windows\system32\dhcpcore.dll
23:40:52.0119 6128 Dhcp - ok
23:40:52.0166 6128 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\windows\system32\drivers\discache.sys
23:40:52.0166 6128 discache - ok
23:40:52.0197 6128 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\windows\system32\drivers\disk.sys
23:40:52.0197 6128 Disk - ok
23:40:52.0244 6128 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\windows\System32\dnsrslvr.dll
23:40:52.0244 6128 Dnscache - ok
23:40:52.0275 6128 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\windows\System32\dot3svc.dll
23:40:52.0275 6128 dot3svc - ok
23:40:52.0291 6128 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\windows\system32\dps.dll
23:40:52.0291 6128 DPS - ok
23:40:52.0338 6128 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\windows\system32\drivers\drmkaud.sys
23:40:52.0338 6128 drmkaud - ok
23:40:52.0385 6128 [ 85DBF6EC7BDFA6187F4A1EC8F3145CD0 ] DXGKrnl C:\windows\System32\drivers\dxgkrnl.sys
23:40:52.0400 6128 DXGKrnl - ok
23:40:52.0447 6128 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\windows\System32\eapsvc.dll
23:40:52.0447 6128 EapHost - ok
23:40:52.0556 6128 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\windows\system32\drivers\evbda.sys
23:40:52.0572 6128 ebdrv - ok
23:40:52.0619 6128 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\windows\System32\lsass.exe
23:40:52.0619 6128 EFS - ok
23:40:52.0681 6128 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\windows\ehome\ehRecvr.exe
23:40:52.0681 6128 ehRecvr - ok
23:40:52.0712 6128 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\windows\ehome\ehsched.exe
23:40:52.0712 6128 ehSched - ok
23:40:52.0775 6128 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\windows\system32\drivers\elxstor.sys
23:40:52.0775 6128 elxstor - ok
23:40:52.0790 6128 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\windows\system32\drivers\errdev.sys
23:40:52.0790 6128 ErrDev - ok
23:40:52.0837 6128 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\windows\system32\es.dll
23:40:52.0853 6128 EventSystem - ok
23:40:52.0884 6128 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\windows\system32\drivers\exfat.sys
23:40:52.0884 6128 exfat - ok
23:40:52.0899 6128 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\windows\system32\drivers\fastfat.sys
23:40:52.0899 6128 fastfat - ok
23:40:52.0977 6128 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\windows\system32\fxssvc.exe
23:40:52.0977 6128 Fax - ok
23:40:52.0993 6128 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\windows\system32\drivers\fdc.sys
23:40:52.0993 6128 fdc - ok
23:40:53.0118 6128 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\windows\system32\fdPHost.dll
23:40:53.0118 6128 fdPHost - ok
23:40:53.0149 6128 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\windows\system32\fdrespub.dll
23:40:53.0149 6128 FDResPub - ok
23:40:53.0243 6128 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\windows\system32\drivers\fileinfo.sys
23:40:53.0258 6128 FileInfo - ok
23:40:53.0258 6128 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\windows\system32\drivers\filetrace.sys
23:40:53.0258 6128 Filetrace - ok
23:40:53.0274 6128 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\windows\system32\drivers\flpydisk.sys
23:40:53.0274 6128 flpydisk - ok
23:40:53.0305 6128 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\windows\system32\drivers\fltmgr.sys
23:40:53.0305 6128 FltMgr - ok
23:40:53.0383 6128 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\windows\system32\FntCache.dll
23:40:53.0399 6128 FontCache - ok
23:40:53.0461 6128 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
23:40:53.0461 6128 FontCache3.0.0.0 - ok
23:40:53.0508 6128 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\windows\system32\drivers\FsDepends.sys
23:40:53.0508 6128 FsDepends - ok
23:40:53.0508 6128 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\windows\system32\drivers\Fs_Rec.sys
23:40:53.0508 6128 Fs_Rec - ok
23:40:53.0523 6128 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\windows\system32\DRIVERS\fvevol.sys
23:40:53.0523 6128 fvevol - ok
23:40:53.0555 6128 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\windows\system32\drivers\gagp30kx.sys
23:40:53.0555 6128 gagp30kx - ok
23:40:53.0617 6128 [ FA07EC01952729DDDDC5BF4BAE06B09E ] GFNEXSrv C:\Windows\System32\GFNEXSrv.exe
23:40:53.0617 6128 GFNEXSrv - ok
23:40:53.0664 6128 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\windows\System32\gpsvc.dll
23:40:53.0679 6128 gpsvc - ok
23:40:53.0711 6128 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\windows\system32\drivers\hcw85cir.sys
23:40:53.0711 6128 hcw85cir - ok
23:40:53.0742 6128 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys
23:40:53.0757 6128 HdAudAddService - ok
23:40:53.0773 6128 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\windows\system32\DRIVERS\HDAudBus.sys
23:40:53.0773 6128 HDAudBus - ok
23:40:53.0773 6128 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\windows\system32\drivers\HidBatt.sys
23:40:53.0773 6128 HidBatt - ok
23:40:53.0789 6128 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\windows\system32\drivers\hidbth.sys
23:40:53.0789 6128 HidBth - ok
23:40:53.0804 6128 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\windows\system32\drivers\hidir.sys
23:40:53.0804 6128 HidIr - ok
23:40:53.0835 6128 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\windows\system32\hidserv.dll
23:40:53.0835 6128 hidserv - ok
23:40:53.0882 6128 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\windows\system32\DRIVERS\hidusb.sys
23:40:53.0882 6128 HidUsb - ok
23:40:53.0898 6128 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\windows\system32\kmsvc.dll
23:40:53.0898 6128 hkmsvc - ok
23:40:53.0913 6128 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\windows\system32\ListSvc.dll
23:40:53.0913 6128 HomeGroupListener - ok
23:40:53.0960 6128 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\windows\system32\provsvc.dll
23:40:53.0960 6128 HomeGroupProvider - ok
23:40:53.0976 6128 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\windows\system32\drivers\HpSAMD.sys
23:40:53.0976 6128 HpSAMD - ok
23:40:54.0054 6128 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\windows\system32\drivers\HTTP.sys
23:40:54.0054 6128 HTTP - ok
23:40:54.0069 6128 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\windows\system32\drivers\hwpolicy.sys
23:40:54.0069 6128 hwpolicy - ok
23:40:54.0101 6128 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\windows\system32\DRIVERS\i8042prt.sys
23:40:54.0101 6128 i8042prt - ok
23:40:54.0132 6128 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\windows\system32\drivers\iaStorV.sys
23:40:54.0132 6128 iaStorV - ok
23:40:54.0210 6128 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
23:40:54.0210 6128 idsvc - ok
23:40:54.0225 6128 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\windows\system32\drivers\iirsp.sys
23:40:54.0241 6128 iirsp - ok
23:40:54.0288 6128 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\windows\System32\ikeext.dll
23:40:54.0288 6128 IKEEXT - ok
23:40:54.0428 6128 [ 112A84BD9A31C59826AC2979D451F0DA ] IntcAzAudAddService C:\windows\system32\drivers\RTKVHD64.sys
23:40:54.0459 6128 IntcAzAudAddService - ok
23:40:54.0475 6128 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\windows\system32\drivers\intelide.sys
23:40:54.0475 6128 intelide - ok
23:40:54.0506 6128 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\windows\system32\drivers\intelppm.sys
23:40:54.0506 6128 intelppm - ok
23:40:54.0537 6128 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\windows\system32\ipbusenum.dll
23:40:54.0537 6128 IPBusEnum - ok
23:40:54.0553 6128 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\windows\system32\DRIVERS\ipfltdrv.sys
23:40:54.0553 6128 IpFilterDriver - ok
23:40:54.0584 6128 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\windows\System32\iphlpsvc.dll
23:40:54.0600 6128 iphlpsvc - ok
23:40:54.0615 6128 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\windows\system32\drivers\IPMIDrv.sys
23:40:54.0615 6128 IPMIDRV - ok
23:40:54.0647 6128 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\windows\system32\drivers\ipnat.sys
23:40:54.0647 6128 IPNAT - ok
23:40:54.0662 6128 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\windows\system32\drivers\irenum.sys
23:40:54.0662 6128 IRENUM - ok
23:40:54.0678 6128 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\windows\system32\drivers\isapnp.sys
23:40:54.0678 6128 isapnp - ok
23:40:54.0693 6128 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\windows\system32\drivers\msiscsi.sys
23:40:54.0693 6128 iScsiPrt - ok
23:40:54.0693 6128 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\windows\system32\DRIVERS\kbdclass.sys
23:40:54.0693 6128 kbdclass - ok
23:40:54.0709 6128 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\windows\system32\drivers\kbdhid.sys
23:40:54.0709 6128 kbdhid - ok
23:40:54.0725 6128 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\windows\system32\lsass.exe
23:40:54.0725 6128 KeyIso - ok
23:40:54.0740 6128 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\windows\system32\Drivers\ksecdd.sys
23:40:54.0740 6128 KSecDD - ok
23:40:54.0771 6128 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\windows\system32\Drivers\ksecpkg.sys
23:40:54.0771 6128 KSecPkg - ok
23:40:54.0818 6128 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\windows\system32\drivers\ksthunk.sys
23:40:54.0818 6128 ksthunk - ok
23:40:54.0865 6128 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\windows\system32\msdtckrm.dll
23:40:54.0865 6128 KtmRm - ok
23:40:54.0912 6128 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\windows\system32\srvsvc.dll
23:40:54.0912 6128 LanmanServer - ok
23:40:54.0943 6128 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\windows\System32\wkssvc.dll
23:40:54.0943 6128 LanmanWorkstation - ok
23:40:54.0974 6128 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\windows\system32\DRIVERS\lltdio.sys
23:40:54.0974 6128 lltdio - ok
23:40:55.0021 6128 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\windows\System32\lltdsvc.dll
23:40:55.0021 6128 lltdsvc - ok
23:40:55.0037 6128 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\windows\System32\lmhsvc.dll
23:40:55.0037 6128 lmhosts - ok
23:40:55.0052 6128 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\windows\system32\drivers\lsi_fc.sys
23:40:55.0052 6128 LSI_FC - ok
23:40:55.0099 6128 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\windows\system32\drivers\lsi_sas.sys
23:40:55.0099 6128 LSI_SAS - ok
23:40:55.0099 6128 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\windows\system32\drivers\lsi_sas2.sys
23:40:55.0099 6128 LSI_SAS2 - ok
23:40:55.0099 6128 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\windows\system32\drivers\lsi_scsi.sys
23:40:55.0099 6128 LSI_SCSI - ok
23:40:55.0115 6128 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\windows\system32\drivers\luafv.sys
23:40:55.0115 6128 luafv - ok
23:40:55.0130 6128 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\windows\system32\Mcx2Svc.dll
23:40:55.0130 6128 Mcx2Svc - ok
23:40:55.0130 6128 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\windows\system32\drivers\megasas.sys
23:40:55.0146 6128 megasas - ok
23:40:55.0177 6128 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\windows\system32\drivers\MegaSR.sys
23:40:55.0177 6128 MegaSR - ok
23:40:55.0208 6128 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\windows\system32\mmcss.dll
23:40:55.0208 6128 MMCSS - ok
23:40:55.0208 6128 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\windows\system32\drivers\modem.sys
23:40:55.0208 6128 Modem - ok
23:40:55.0239 6128 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\windows\system32\DRIVERS\monitor.sys
23:40:55.0239 6128 monitor - ok
23:40:55.0239 6128 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\windows\system32\DRIVERS\mouclass.sys
23:40:55.0239 6128 mouclass - ok
23:40:55.0255 6128 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\windows\system32\DRIVERS\mouhid.sys
23:40:55.0255 6128 mouhid - ok
23:40:55.0271 6128 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\windows\system32\drivers\mountmgr.sys
23:40:55.0271 6128 mountmgr - ok
23:40:55.0349 6128 [ 4D7F2682D29B92A6251B17957AA0B985 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
23:40:55.0349 6128 MozillaMaintenance - ok
23:40:55.0411 6128 [ 05BF204EC0E82CC4A054DB189C8A3D84 ] MpFilter C:\windows\system32\DRIVERS\MpFilter.sys
23:40:55.0411 6128 MpFilter - ok
23:40:55.0473 6128 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\windows\system32\drivers\mpio.sys
23:40:55.0473 6128 mpio - ok
23:40:55.0489 6128 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\windows\system32\drivers\mpsdrv.sys
23:40:55.0489 6128 mpsdrv - ok
23:40:55.0536 6128 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\windows\system32\mpssvc.dll
23:40:55.0551 6128 MpsSvc - ok
23:40:55.0551 6128 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\windows\system32\drivers\mrxdav.sys
23:40:55.0551 6128 MRxDAV - ok
23:40:55.0567 6128 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\windows\system32\DRIVERS\mrxsmb.sys
23:40:55.0567 6128 mrxsmb - ok
23:40:55.0583 6128 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\windows\system32\DRIVERS\mrxsmb10.sys
23:40:55.0583 6128 mrxsmb10 - ok
23:40:55.0598 6128 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\windows\system32\DRIVERS\mrxsmb20.sys
23:40:55.0598 6128 mrxsmb20 - ok
23:40:55.0598 6128 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\windows\system32\DRIVERS\msahci.sys
23:40:55.0598 6128 msahci - ok
23:40:55.0614 6128 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\windows\system32\drivers\msdsm.sys
23:40:55.0614 6128 msdsm - ok
23:40:55.0629 6128 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\windows\System32\msdtc.exe
23:40:55.0629 6128 MSDTC - ok
23:40:55.0661 6128 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\windows\system32\drivers\Msfs.sys
23:40:55.0661 6128 Msfs - ok
23:40:55.0676 6128 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\windows\System32\drivers\mshidkmdf.sys
23:40:55.0676 6128 mshidkmdf - ok
23:40:55.0676 6128 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\windows\system32\drivers\msisadrv.sys
23:40:55.0676 6128 msisadrv - ok
23:40:55.0707 6128 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\windows\system32\iscsiexe.dll
23:40:55.0707 6128 MSiSCSI - ok
23:40:55.0707 6128 msiserver - ok
23:40:55.0739 6128 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\windows\system32\drivers\MSKSSRV.sys
23:40:55.0739 6128 MSKSSRV - ok
23:40:55.0879 6128 [ CC8E4F72F21340A4D3A3D4DB50313EF5 ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
23:40:55.0879 6128 MsMpSvc - ok
23:40:55.0910 6128 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\windows\system32\drivers\MSPCLOCK.sys
23:40:55.0910 6128 MSPCLOCK - ok
23:40:55.0926 6128 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\windows\system32\drivers\MSPQM.sys
23:40:55.0941 6128 MSPQM - ok
23:40:55.0957 6128 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\windows\system32\drivers\MsRPC.sys
23:40:55.0973 6128 MsRPC - ok
23:40:55.0973 6128 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\windows\system32\DRIVERS\mssmbios.sys
23:40:55.0973 6128 mssmbios - ok
23:40:55.0973 6128 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\windows\system32\drivers\MSTEE.sys
23:40:55.0973 6128 MSTEE - ok
23:40:55.0988 6128 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\windows\system32\drivers\MTConfig.sys
23:40:55.0988 6128 MTConfig - ok
23:40:55.0988 6128 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\windows\system32\Drivers\mup.sys
23:40:55.0988 6128 Mup - ok
23:40:56.0019 6128 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\windows\system32\qagentRT.dll
23:40:56.0019 6128 napagent - ok
23:40:56.0097 6128 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\windows\system32\DRIVERS\nwifi.sys
23:40:56.0097 6128 NativeWifiP - ok
23:40:56.0160 6128 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\windows\system32\drivers\ndis.sys
23:40:56.0175 6128 NDIS - ok
23:40:56.0222 6128 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\windows\system32\DRIVERS\ndiscap.sys
23:40:56.0222 6128 NdisCap - ok
23:40:56.0238 6128 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\windows\system32\DRIVERS\ndistapi.sys
23:40:56.0238 6128 NdisTapi - ok
23:40:56.0253 6128 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\windows\system32\DRIVERS\ndisuio.sys
23:40:56.0253 6128 Ndisuio - ok
23:40:56.0269 6128 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\windows\system32\DRIVERS\ndiswan.sys
23:40:56.0269 6128 NdisWan - ok
23:40:56.0269 6128 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\windows\system32\drivers\NDProxy.sys
23:40:56.0269 6128 NDProxy - ok
23:40:56.0285 6128 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\windows\system32\DRIVERS\netbios.sys
23:40:56.0285 6128 NetBIOS - ok
23:40:56.0285 6128 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\windows\system32\DRIVERS\netbt.sys
23:40:56.0285 6128 NetBT - ok
23:40:56.0316 6128 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\windows\system32\lsass.exe
23:40:56.0316 6128 Netlogon - ok
23:40:56.0363 6128 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\windows\System32\netman.dll
23:40:56.0378 6128 Netman - ok
23:40:56.0441 6128 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:40:56.0441 6128 NetMsmqActivator - ok
23:40:56.0456 6128 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:40:56.0456 6128 NetPipeActivator - ok
23:40:56.0472 6128 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\windows\System32\netprofm.dll
23:40:56.0487 6128 netprofm - ok
23:40:56.0487 6128 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:40:56.0487 6128 NetTcpActivator - ok
23:40:56.0487 6128 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:40:56.0487 6128 NetTcpPortSharing - ok
23:40:56.0534 6128 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\windows\system32\drivers\nfrd960.sys
23:40:56.0534 6128 nfrd960 - ok
23:40:56.0581 6128 [ 5FF89F20317309D28AC1EDEB0CD1BA72 ] NisDrv C:\windows\system32\DRIVERS\NisDrvWFP.sys
23:40:56.0581 6128 NisDrv - ok
23:40:56.0628 6128 [ 79E80B10FE8F6662E0C9162A68C43444 ] NisSrv c:\Program Files\Microsoft Security Client\NisSrv.exe
23:40:56.0628 6128 NisSrv - ok
23:40:56.0690 6128 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\windows\System32\nlasvc.dll
23:40:56.0690 6128 NlaSvc - ok
23:40:56.0706 6128 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\windows\system32\drivers\Npfs.sys
23:40:56.0706 6128 Npfs - ok
23:40:56.0721 6128 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\windows\system32\nsisvc.dll
23:40:56.0721 6128 nsi - ok
23:40:56.0737 6128 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\windows\system32\drivers\nsiproxy.sys
23:40:56.0753 6128 nsiproxy - ok
23:40:56.0799 6128 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\windows\system32\drivers\Ntfs.sys
23:40:56.0815 6128 Ntfs - ok
23:40:56.0831 6128 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\windows\system32\drivers\Null.sys
23:40:56.0831 6128 Null - ok
23:40:56.0846 6128 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\windows\system32\drivers\nvraid.sys
23:40:56.0846 6128 nvraid - ok
23:40:56.0877 6128 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\windows\system32\drivers\nvstor.sys
23:40:56.0877 6128 nvstor - ok
23:40:56.0893 6128 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\windows\system32\drivers\nv_agp.sys
23:40:56.0893 6128 nv_agp - ok
23:40:56.0909 6128 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\windows\system32\drivers\ohci1394.sys
23:40:56.0909 6128 ohci1394 - ok
23:40:56.0940 6128 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\windows\system32\pnrpsvc.dll
23:40:56.0940 6128 p2pimsvc - ok
23:40:56.0971 6128 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\windows\system32\p2psvc.dll
23:40:56.0971 6128 p2psvc - ok
23:40:56.0987 6128 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\windows\system32\drivers\parport.sys
23:40:56.0987 6128 Parport - ok
23:40:57.0018 6128 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\windows\system32\drivers\partmgr.sys
23:40:57.0018 6128 partmgr - ok
23:40:57.0049 6128 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\windows\System32\pcasvc.dll
23:40:57.0049 6128 PcaSvc - ok
23:40:57.0080 6128 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\windows\system32\drivers\pci.sys
23:40:57.0080 6128 pci - ok
23:40:57.0080 6128 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\windows\system32\DRIVERS\pciide.sys
23:40:57.0080 6128 pciide - ok
23:40:57.0096 6128 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\windows\system32\drivers\pcmcia.sys
23:40:57.0096 6128 pcmcia - ok
23:40:57.0111 6128 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\windows\system32\drivers\pcw.sys
23:40:57.0111 6128 pcw - ok
23:40:57.0127 6128 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\windows\system32\drivers\peauth.sys
23:40:57.0127 6128 PEAUTH - ok
23:40:57.0205 6128 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\windows\SysWow64\perfhost.exe
23:40:57.0205 6128 PerfHost - ok
23:40:57.0236 6128 [ 91111CEBBDE8015E822C46120ED9537C ] PGEffect C:\windows\system32\DRIVERS\pgeffect.sys
23:40:57.0236 6128 PGEffect - ok
23:40:57.0283 6128 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\windows\system32\pla.dll
23:40:57.0299 6128 pla - ok
23:40:57.0408 6128 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\windows\system32\umpnpmgr.dll
23:40:57.0423 6128 PlugPlay - ok
23:40:57.0439 6128 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\windows\system32\pnrpauto.dll
23:40:57.0455 6128 PNRPAutoReg - ok
23:40:57.0455 6128 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\windows\system32\pnrpsvc.dll
23:40:57.0470 6128 PNRPsvc - ok
23:40:57.0517 6128 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\windows\System32\ipsecsvc.dll
23:40:57.0533 6128 PolicyAgent - ok
23:40:57.0548 6128 [ A2CCA4FB273E6050F17A0A416CFF2FCD ] Power C:\windows\system32\umpo.dll
23:40:57.0564 6128 Power - ok
23:40:57.0595 6128 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\windows\system32\DRIVERS\raspptp.sys
23:40:57.0595 6128 PptpMiniport - ok
23:40:57.0626 6128 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\windows\system32\drivers\processr.sys
23:40:57.0626 6128 Processor - ok
23:40:57.0673 6128 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\windows\system32\profsvc.dll
23:40:57.0673 6128 ProfSvc - ok
23:40:57.0689 6128 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\windows\system32\lsass.exe
23:40:57.0689 6128 ProtectedStorage - ok
23:40:57.0720 6128 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\windows\system32\DRIVERS\pacer.sys
23:40:57.0735 6128 Psched - ok
23:40:57.0798 6128 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\windows\system32\drivers\ql2300.sys
23:40:57.0813 6128 ql2300 - ok
23:40:57.0813 6128 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\windows\system32\drivers\ql40xx.sys
23:40:57.0813 6128 ql40xx - ok
23:40:57.0860 6128 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\windows\system32\qwave.dll
23:40:57.0860 6128 QWAVE - ok
23:40:57.0876 6128 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\windows\system32\drivers\qwavedrv.sys
23:40:57.0876 6128 QWAVEdrv - ok
23:40:57.0876 6128 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\windows\system32\DRIVERS\rasacd.sys
23:40:57.0891 6128 RasAcd - ok
23:40:57.0938 6128 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\windows\system32\DRIVERS\AgileVpn.sys
23:40:57.0938 6128 RasAgileVpn - ok
23:40:57.0954 6128 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\windows\System32\rasauto.dll
23:40:57.0954 6128 RasAuto - ok
23:40:57.0969 6128 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\windows\system32\DRIVERS\rasl2tp.sys
23:40:57.0985 6128 Rasl2tp - ok
23:40:58.0032 6128 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\windows\System32\rasmans.dll
23:40:58.0032 6128 RasMan - ok
23:40:58.0063 6128 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\windows\system32\DRIVERS\raspppoe.sys
23:40:58.0063 6128 RasPppoe - ok
23:40:58.0079 6128 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\windows\system32\DRIVERS\rassstp.sys
23:40:58.0079 6128 RasSstp - ok
23:40:58.0079 6128 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\windows\system32\DRIVERS\rdbss.sys
23:40:58.0094 6128 rdbss - ok
23:40:58.0110 6128 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\windows\system32\drivers\rdpbus.sys
23:40:58.0110 6128 rdpbus - ok
23:40:58.0141 6128 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\windows\system32\DRIVERS\RDPCDD.sys
23:40:58.0141 6128 RDPCDD - ok
23:40:58.0141 6128 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\windows\system32\drivers\rdpencdd.sys
23:40:58.0141 6128 RDPENCDD - ok
23:40:58.0157 6128 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\windows\system32\drivers\rdprefmp.sys
23:40:58.0157 6128 RDPREFMP - ok
23:40:58.0188 6128 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\windows\system32\drivers\RDPWD.sys
23:40:58.0188 6128 RDPWD - ok
23:40:58.0219 6128 [ A115F49BEA840A5F049BC6310F35F776 ] rdyboost C:\windows\system32\drivers\rdyboost.sys
23:40:58.0219 6128 rdyboost - ok
23:40:58.0250 6128 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\windows\System32\mprdim.dll
23:40:58.0250 6128 RemoteAccess - ok
23:40:58.0281 6128 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\windows\system32\regsvc.dll
23:40:58.0297 6128 RemoteRegistry - ok
23:40:58.0344 6128 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\windows\system32\DRIVERS\rfcomm.sys
23:40:58.0344 6128 RFCOMM - ok
23:40:58.0359 6128 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\windows\System32\RpcEpMap.dll
23:40:58.0359 6128 RpcEptMapper - ok
23:40:58.0406 6128 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\windows\system32\locator.exe
23:40:58.0406 6128 RpcLocator - ok
23:40:58.0422 6128 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\windows\system32\rpcss.dll
23:40:58.0437 6128 RpcSs - ok
23:40:58.0484 6128 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\windows\system32\DRIVERS\rspndr.sys
23:40:58.0484 6128 rspndr - ok
23:40:58.0547 6128 [ BB1C3DF1D6CC0972E9C7268A19E62D2E ] RSUSBSTOR C:\windows\system32\Drivers\RtsUStor.sys
23:40:58.0547 6128 RSUSBSTOR - ok
23:40:58.0609 6128 [ B708BBAB80C60EE613DEE52A1A0A8538 ] RtkBtFilter C:\windows\system32\DRIVERS\RtkBtfilter.sys
23:40:58.0609 6128 RtkBtFilter - ok
23:40:58.0656 6128 [ 9140DB0911DE035FED0A9A77A2D156EA ] RTL8167 C:\windows\system32\DRIVERS\Rt64win7.sys
23:40:58.0656 6128 RTL8167 - ok
23:40:58.0718 6128 [ 8328468053CEDFD7198BEE178C501989 ] RTL8192Ce C:\windows\system32\DRIVERS\rtwlane.sys
23:40:58.0734 6128 RTL8192Ce - ok
23:40:58.0749 6128 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\windows\system32\lsass.exe
23:40:58.0749 6128 SamSs - ok
23:40:58.0781 6128 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\windows\system32\drivers\sbp2port.sys
23:40:58.0781 6128 sbp2port - ok
23:40:58.0812 6128 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\windows\System32\SCardSvr.dll
23:40:58.0812 6128 SCardSvr - ok
23:40:58.0827 6128 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\windows\system32\DRIVERS\scfilter.sys
23:40:58.0827 6128 scfilter - ok
23:40:58.0874 6128 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\windows\system32\schedsvc.dll
23:40:58.0890 6128 Schedule - ok
23:40:58.0905 6128 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\windows\System32\certprop.dll
23:40:58.0905 6128 SCPolicySvc - ok
23:40:58.0937 6128 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\windows\System32\SDRSVC.dll
23:40:58.0952 6128 SDRSVC - ok
23:40:58.0983 6128 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\windows\system32\drivers\secdrv.sys
23:40:58.0999 6128 secdrv - ok
23:40:59.0015 6128 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\windows\system32\seclogon.dll
23:40:59.0015 6128 seclogon - ok
23:40:59.0030 6128 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\windows\System32\sens.dll
23:40:59.0030 6128 SENS - ok
23:40:59.0077 6128 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\windows\system32\sensrsvc.dll
23:40:59.0077 6128 SensrSvc - ok
23:40:59.0093 6128 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\windows\system32\drivers\serenum.sys
23:40:59.0093 6128 Serenum - ok
23:40:59.0139 6128 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\windows\system32\drivers\serial.sys
23:40:59.0139 6128 Serial - ok
23:40:59.0155 6128 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\windows\system32\drivers\sermouse.sys
23:40:59.0155 6128 sermouse - ok
23:40:59.0186 6128 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\windows\system32\sessenv.dll
23:40:59.0202 6128 SessionEnv - ok
23:40:59.0202 6128 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\windows\system32\drivers\sffdisk.sys
23:40:59.0202 6128 sffdisk - ok
23:40:59.0202 6128 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\windows\system32\drivers\sffp_mmc.sys
23:40:59.0202 6128 sffp_mmc - ok
23:40:59.0217 6128 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\windows\system32\drivers\sffp_sd.sys
23:40:59.0217 6128 sffp_sd - ok
23:40:59.0217 6128 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\windows\system32\drivers\sfloppy.sys
23:40:59.0217 6128 sfloppy - ok
23:40:59.0249 6128 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\windows\System32\ipnathlp.dll
23:40:59.0249 6128 SharedAccess - ok
23:40:59.0295 6128 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\windows\System32\shsvcs.dll
23:40:59.0295 6128 ShellHWDetection - ok
23:40:59.0342 6128 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\windows\system32\drivers\SiSRaid2.sys
23:40:59.0342 6128 SiSRaid2 - ok
23:40:59.0342 6128 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\windows\system32\drivers\sisraid4.sys
23:40:59.0358 6128 SiSRaid4 - ok
23:40:59.0373 6128 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\windows\system32\DRIVERS\smb.sys
23:40:59.0373 6128 Smb - ok
23:40:59.0436 6128 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\windows\System32\snmptrap.exe
23:40:59.0436 6128 SNMPTRAP - ok
23:40:59.0451 6128 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\windows\system32\drivers\spldr.sys
23:40:59.0451 6128 spldr - ok
23:40:59.0498 6128 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\windows\System32\spoolsv.exe
23:40:59.0498 6128 Spooler - ok
23:40:59.0592 6128 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\windows\system32\sppsvc.exe
23:40:59.0623 6128 sppsvc - ok
23:40:59.0623 6128 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\windows\system32\sppuinotify.dll
23:40:59.0623 6128 sppuinotify - ok
23:40:59.0670 6128 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\windows\system32\DRIVERS\srv.sys
23:40:59.0670 6128 srv - ok
23:40:59.0685 6128 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\windows\system32\DRIVERS\srv2.sys
23:40:59.0701 6128 srv2 - ok
23:40:59.0701 6128 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\windows\system32\DRIVERS\srvnet.sys
23:40:59.0701 6128 srvnet - ok
23:40:59.0748 6128 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\windows\System32\ssdpsrv.dll
23:40:59.0748 6128 SSDPSRV - ok
23:40:59.0763 6128 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\windows\system32\sstpsvc.dll
23:40:59.0763 6128 SstpSvc - ok
23:40:59.0810 6128 Steam Client Service - ok
23:40:59.0841 6128 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\windows\system32\drivers\stexstor.sys
23:40:59.0841 6128 stexstor - ok
23:40:59.0904 6128 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\windows\System32\wiaservc.dll
23:40:59.0904 6128 stisvc - ok
23:40:59.0919 6128 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\windows\system32\DRIVERS\swenum.sys
23:40:59.0919 6128 swenum - ok
23:41:00.0107 6128 [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
23:41:00.0107 6128 SwitchBoard - ok
23:41:00.0169 6128 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\windows\System32\swprv.dll
23:41:00.0169 6128 swprv - ok
23:41:00.0231 6128 [ B868E292FBA5B62B9FC71572A5FAEF5C ] SynTP C:\windows\system32\DRIVERS\SynTP.sys
23:41:00.0231 6128 SynTP - ok
23:41:00.0294 6128 [ 7BE4CDEA6BC7832BFE3112A350D8B9EA ] SysMain C:\windows\system32\sysmain.dll
23:41:00.0309 6128 SysMain - ok
23:41:00.0341 6128 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\windows\System32\TabSvc.dll
23:41:00.0341 6128 TabletInputService - ok
23:41:00.0372 6128 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\windows\System32\tapisrv.dll
23:41:00.0372 6128 TapiSrv - ok
23:41:00.0387 6128 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\windows\System32\tbssvc.dll
23:41:00.0387 6128 TBS - ok
23:41:00.0450 6128 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] Tcpip C:\windows\system32\drivers\tcpip.sys
23:41:00.0465 6128 Tcpip - ok
23:41:00.0512 6128 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] TCPIP6 C:\windows\system32\DRIVERS\tcpip.sys
23:41:00.0512 6128 TCPIP6 - ok
23:41:00.0559 6128 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\windows\system32\drivers\tcpipreg.sys
23:41:00.0559 6128 tcpipreg - ok
23:41:00.0621 6128 [ FD542B661BD22FA69CA789AD0AC58C29 ] tdcmdpst C:\windows\system32\DRIVERS\tdcmdpst.sys
23:41:00.0621 6128 tdcmdpst - ok
23:41:00.0668 6128 TDEIO - ok
23:41:00.0699 6128 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\windows\system32\drivers\tdpipe.sys
23:41:00.0699 6128 TDPIPE - ok
23:41:00.0699 6128 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\windows\system32\drivers\tdtcp.sys
23:41:00.0699 6128 TDTCP - ok
23:41:00.0715 6128 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\windows\system32\DRIVERS\tdx.sys
23:41:00.0715 6128 tdx - ok
23:41:00.0715 6128 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\windows\system32\DRIVERS\termdd.sys
23:41:00.0715 6128 TermDD - ok
23:41:00.0777 6128 [ 2E648163254233755035B46DD7B89123 ] TermService C:\windows\System32\termsrv.dll
23:41:00.0777 6128 TermService - ok
23:41:00.0793 6128 [ F0344071948D1A1FA732231785A0664C ] Themes C:\windows\system32\themeservice.dll
23:41:00.0793 6128 Themes - ok
23:41:00.0809 6128 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\windows\system32\mmcss.dll
23:41:00.0809 6128 THREADORDER - ok
23:41:00.0902 6128 [ 71C321649B28638EE80A2EEB164C1DC8 ] TMachInfo C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
23:41:00.0902 6128 TMachInfo - ok
23:41:00.0965 6128 [ 8E2C799D3476EAC32C3BA0DF7CE6AF19 ] TODDSrv C:\windows\system32\TODDSrv.exe
23:41:00.0965 6128 TODDSrv - ok
23:41:01.0074 6128 [ A7EFE68D424A55FA84CCB6099D1D93C0 ] TosCoSrv C:\Program Files\Toshiba\Power Saver\TosCoSrv.exe
23:41:01.0074 6128 TosCoSrv - ok
23:41:01.0230 6128 [ A22DEB5EC05FEBFDCA1D3FF70FA1FF46 ] TOSHIBA Bluetooth Service C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
23:41:01.0230 6128 TOSHIBA Bluetooth Service - ok
23:41:01.0323 6128 [ 97B57ED45C001E2AB3ABA68F7BA8555A ] TOSHIBA eco Utility Service C:\Program Files\TOSHIBA\TECO\TecoService.exe
23:41:01.0339 6128 TOSHIBA eco Utility Service - ok
23:41:01.0417 6128 [ 17DB352FA977DAAABB6E61A4DED245D9 ] TOSHIBA HDD SSD Alert Service C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
23:41:01.0417 6128 TOSHIBA HDD SSD Alert Service - ok
23:41:01.0479 6128 [ 8021F63311797085949FA387F7C83583 ] tosporte C:\windows\system32\DRIVERS\tosporte.sys
23:41:01.0479 6128 tosporte - ok
23:41:01.0526 6128 [ B9FA0498F6CC596FFA5CF47A04CD1785 ] tosrfbd C:\windows\system32\DRIVERS\tosrfbd.sys
23:41:01.0526 6128 tosrfbd - ok
23:41:01.0557 6128 [ 90F0B1745ABF13F44C2A6ED79F7CE9FB ] tosrfbnp C:\windows\system32\Drivers\tosrfbnp.sys
23:41:01.0557 6128 tosrfbnp - ok
23:41:01.0604 6128 [ 9E4E65EA51E34647340BD6007467AC54 ] Tosrfcom C:\windows\system32\Drivers\tosrfcom.sys
23:41:01.0604 6128 Tosrfcom - ok
23:41:01.0604 6128 [ F5E3AC4CBCD154EE80849B21887FD0B0 ] tosrfec C:\windows\system32\DRIVERS\tosrfec.sys
23:41:01.0620 6128 tosrfec - ok
23:41:01.0635 6128 [ 7D2467D3EB9BAA4B69AE4A28C83DE57A ] Tosrfhid C:\windows\system32\DRIVERS\Tosrfhid.sys
23:41:01.0635 6128 Tosrfhid - ok
23:41:01.0682 6128 [ B6FDC3C76FFE9C5171EEA9C37EA367C2 ] tosrfnds C:\windows\system32\DRIVERS\tosrfnds.sys
23:41:01.0682 6128 tosrfnds - ok
23:41:01.0729 6128 [ 7052B10E54B48AF12BD5606596A8E039 ] TosRfSnd C:\windows\system32\drivers\tosrfsnd.sys
23:41:01.0729 6128 TosRfSnd - ok
23:41:01.0745 6128 [ AF8A0D2E2A41043A77CA77CCBDB8D9C2 ] Tosrfusb C:\windows\system32\DRIVERS\tosrfusb.sys
23:41:01.0760 6128 Tosrfusb - ok
23:41:01.0823 6128 [ 09FF7B0B1B5C3D225495CB6F5A9B39F8 ] tos_sps64 C:\windows\system32\DRIVERS\tos_sps64.sys
23:41:01.0838 6128 tos_sps64 - ok
23:41:01.0869 6128 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\windows\System32\trkwks.dll
23:41:01.0869 6128 TrkWks - ok
23:41:01.0932 6128 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe
23:41:01.0932 6128 TrustedInstaller - ok
23:41:01.0979 6128 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\windows\system32\DRIVERS\tssecsrv.sys
23:41:01.0979 6128 tssecsrv - ok
23:41:01.0994 6128 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\windows\system32\drivers\tsusbflt.sys
23:41:01.0994 6128 TsUsbFlt - ok
23:41:02.0010 6128 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\windows\system32\drivers\TsUsbGD.sys
23:41:02.0010 6128 TsUsbGD - ok
23:41:02.0025 6128 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\windows\system32\DRIVERS\tunnel.sys
23:41:02.0025 6128 tunnel - ok
23:41:02.0088 6128 [ 550B567F9364D8F7684C3FB3EA665A72 ] TVALZ C:\windows\system32\DRIVERS\TVALZ_O.SYS
23:41:02.0088 6128 TVALZ - ok
23:41:02.0103 6128 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\windows\system32\drivers\uagp35.sys
23:41:02.0103 6128 uagp35 - ok
23:41:02.0135 6128 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\windows\system32\DRIVERS\udfs.sys
23:41:02.0135 6128 udfs - ok
23:41:02.0181 6128 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\windows\system32\UI0Detect.exe
23:41:02.0181 6128 UI0Detect - ok
23:41:02.0181 6128 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\windows\system32\drivers\uliagpkx.sys
23:41:02.0197 6128 uliagpkx - ok
23:41:02.0197 6128 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\windows\system32\DRIVERS\umbus.sys
23:41:02.0213 6128 umbus - ok
23:41:02.0213 6128 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\windows\system32\drivers\umpass.sys
23:41:02.0213 6128 UmPass - ok
23:41:02.0228 6128 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\windows\System32\upnphost.dll
23:41:02.0244 6128 upnphost - ok
23:41:02.0259 6128 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\windows\system32\DRIVERS\usbccgp.sys
23:41:02.0259 6128 usbccgp - ok
23:41:02.0275 6128 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\windows\system32\drivers\usbcir.sys
23:41:02.0275 6128 usbcir - ok
23:41:02.0291 6128 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\windows\system32\DRIVERS\usbehci.sys
23:41:02.0291 6128 usbehci - ok
23:41:02.0369 6128 [ 33A58C5630200E17B51C8D73DD64181B ] usbfilter C:\windows\system32\DRIVERS\usbfilter.sys
23:41:02.0369 6128 usbfilter - ok
23:41:02.0431 6128 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\windows\system32\DRIVERS\usbhub.sys
23:41:02.0431 6128 usbhub - ok
23:41:02.0447 6128 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\windows\system32\DRIVERS\usbohci.sys
23:41:02.0447 6128 usbohci - ok
23:41:02.0462 6128 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\windows\system32\drivers\usbprint.sys
23:41:02.0462 6128 usbprint - ok
23:41:02.0462 6128 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\windows\system32\DRIVERS\USBSTOR.SYS
23:41:02.0462 6128 USBSTOR - ok
23:41:02.0462 6128 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\windows\system32\drivers\usbuhci.sys
23:41:02.0462 6128 usbuhci - ok
23:41:02.0493 6128 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\windows\system32\Drivers\usbvideo.sys
23:41:02.0493 6128 usbvideo - ok
23:41:02.0525 6128 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\windows\System32\uxsms.dll
23:41:02.0525 6128 UxSms - ok
23:41:02.0540 6128 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\windows\system32\lsass.exe
23:41:02.0540 6128 VaultSvc - ok
23:41:02.0556 6128 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\windows\system32\drivers\vdrvroot.sys
23:41:02.0556 6128 vdrvroot - ok
23:41:02.0587 6128 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\windows\System32\vds.exe
23:41:02.0587 6128 vds - ok
23:41:02.0634 6128 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\windows\system32\DRIVERS\vgapnp.sys
23:41:02.0634 6128 vga - ok
23:41:02.0634 6128 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\windows\System32\drivers\vga.sys
23:41:02.0634 6128 VgaSave - ok
23:41:02.0649 6128 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\windows\system32\drivers\vhdmp.sys
23:41:02.0649 6128 vhdmp - ok
23:41:02.0649 6128 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\windows\system32\drivers\viaide.sys
23:41:02.0649 6128 viaide - ok
23:41:02.0649 6128 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\windows\system32\drivers\volmgr.sys
23:41:02.0649 6128 volmgr - ok
23:41:02.0665 6128 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\windows\system32\drivers\volmgrx.sys
23:41:02.0665 6128 volmgrx - ok
23:41:02.0681 6128 [ DF8126BD41180351A093A3AD2FC8903B ] volsnap C:\windows\system32\drivers\volsnap.sys
23:41:02.0681 6128 volsnap - ok
23:41:02.0712 6128 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\windows\system32\drivers\vsmraid.sys
23:41:02.0712 6128 vsmraid - ok
23:41:02.0774 6128 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\windows\system32\vssvc.exe
23:41:02.0805 6128 VSS - ok
23:41:02.0805 6128 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\windows\system32\DRIVERS\vwifibus.sys
23:41:02.0821 6128 vwifibus - ok
23:41:02.0821 6128 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\windows\system32\DRIVERS\vwififlt.sys
23:41:02.0821 6128 vwififlt - ok
23:41:02.0852 6128 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\windows\system32\w32time.dll
23:41:02.0852 6128 W32Time - ok
23:41:02.0899 6128 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\windows\system32\drivers\wacompen.sys
23:41:02.0899 6128 WacomPen - ok
23:41:02.0915 6128 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\windows\system32\DRIVERS\wanarp.sys
23:41:02.0930 6128 WANARP - ok
23:41:02.0930 6128 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\windows\system32\DRIVERS\wanarp.sys
23:41:02.0930 6128 Wanarpv6 - ok
23:41:03.0008 6128 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\windows\system32\Wat\WatAdminSvc.exe
23:41:03.0024 6128 WatAdminSvc - ok
23:41:03.0102 6128 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\windows\system32\wbengine.exe
23:41:03.0102 6128 wbengine - ok
23:41:03.0117 6128 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\windows\System32\wbiosrvc.dll
23:41:03.0117 6128 WbioSrvc - ok
23:41:03.0133 6128 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\windows\System32\wcncsvc.dll
23:41:03.0133 6128 wcncsvc - ok
23:41:03.0149 6128 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll
23:41:03.0149 6128 WcsPlugInService - ok
23:41:03.0180 6128 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\windows\system32\drivers\wd.sys
23:41:03.0180 6128 Wd - ok
23:41:03.0195 6128 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\windows\system32\drivers\Wdf01000.sys
23:41:03.0211 6128 Wdf01000 - ok
23:41:03.0227 6128 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\windows\system32\wdi.dll
23:41:03.0227 6128 WdiServiceHost - ok
23:41:03.0227 6128 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\windows\system32\wdi.dll
23:41:03.0227 6128 WdiSystemHost - ok
23:41:03.0273 6128 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\windows\System32\webclnt.dll
23:41:03.0273 6128 WebClient - ok
23:41:03.0289 6128 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\windows\system32\wecsvc.dll
23:41:03.0289 6128 Wecsvc - ok
23:41:03.0305 6128 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\windows\System32\wercplsupport.dll
23:41:03.0305 6128 wercplsupport - ok
23:41:03.0336 6128 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\windows\System32\WerSvc.dll
23:41:03.0336 6128 WerSvc - ok
23:41:03.0383 6128 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\windows\system32\DRIVERS\wfplwf.sys
23:41:03.0383 6128 WfpLwf - ok
23:41:03.0398 6128 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\windows\system32\drivers\wimmount.sys
23:41:03.0398 6128 WIMMount - ok
23:41:03.0461 6128 WinDefend - ok
23:41:03.0476 6128 WinHttpAutoProxySvc - ok
23:41:03.0539 6128 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\windows\system32\wbem\WMIsvc.dll
23:41:03.0539 6128 Winmgmt - ok
23:41:03.0632 6128 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\windows\system32\WsmSvc.dll
23:41:03.0648 6128 WinRM - ok
23:41:03.0710 6128 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\windows\System32\wlansvc.dll
23:41:03.0726 6128 Wlansvc - ok
23:41:03.0788 6128 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
23:41:03.0788 6128 wlcrasvc - ok
23:41:03.0866 6128 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
23:41:03.0882 6128 wlidsvc - ok
23:41:03.0913 6128 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\windows\system32\DRIVERS\wmiacpi.sys
23:41:03.0929 6128 WmiAcpi - ok
23:41:03.0960 6128 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\windows\system32\wbem\WmiApSrv.exe
23:41:03.0960 6128 wmiApSrv - ok
23:41:04.0007 6128 WMPNetworkSvc - ok
23:41:04.0038 6128 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\windows\System32\wpcsvc.dll
23:41:04.0038 6128 WPCSvc - ok
23:41:04.0053 6128 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\windows\system32\wpdbusenum.dll
23:41:04.0053 6128 WPDBusEnum - ok
23:41:04.0085 6128 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\windows\system32\drivers\ws2ifsl.sys
23:41:04.0085 6128 ws2ifsl - ok
23:41:04.0116 6128 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\windows\System32\wscsvc.dll
23:41:04.0116 6128 wscsvc - ok
23:41:04.0116 6128 WSearch - ok
23:41:04.0209 6128 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\windows\system32\wuaueng.dll
23:41:04.0225 6128 wuauserv - ok
23:41:04.0241 6128 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\windows\system32\drivers\WudfPf.sys
23:41:04.0241 6128 WudfPf - ok
23:41:04.0287 6128 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\windows\system32\DRIVERS\WUDFRd.sys
23:41:04.0287 6128 WUDFRd - ok
23:41:04.0303 6128 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\windows\System32\WUDFSvc.dll
23:41:04.0319 6128 wudfsvc - ok
23:41:04.0334 6128 [ F0B1D8725FAB9F4A559CCC91A960FCE0 ] WwanSvc C:\windows\System32\wwansvc.dll
23:41:04.0350 6128 WwanSvc - ok
23:41:04.0397 6128 ================ Scan global ===============================
23:41:04.0428 6128 [ BA0CD8C393E8C9F83354106093832C7B ] C:\windows\system32\basesrv.dll
23:41:04.0459 6128 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\windows\system32\winsrv.dll
23:41:04.0475 6128 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\windows\system32\winsrv.dll
23:41:04.0506 6128 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\windows\system32\sxssrv.dll
23:41:04.0537 6128 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\windows\system32\services.exe
23:41:04.0537 6128 [Global] - ok
23:41:04.0537 6128 ================ Scan MBR ==================================
23:41:04.0568 6128 [ 5B5E648D12FCADC244C1EC30318E1EB9 ] \Device\Harddisk0\DR0
23:41:05.0629 6128 \Device\Harddisk0\DR0 - ok
23:41:05.0629 6128 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk1\DR2
23:41:07.0875 6128 \Device\Harddisk1\DR2 - ok
23:41:07.0875 6128 ================ Scan VBR ==================================
23:41:07.0907 6128 [ F083896DDBCC89227C162E1511C29E72 ] \Device\Harddisk0\DR0\Partition1
23:41:07.0907 6128 \Device\Harddisk0\DR0\Partition1 - ok
23:41:07.0907 6128 [ 30A9E3711BC91ED00626C9239B1A4C7B ] \Device\Harddisk1\DR2\Partition1
23:41:07.0922 6128 \Device\Harddisk1\DR2\Partition1 - ok
23:41:07.0922 6128 ============================================================
23:41:07.0922 6128 Scan finished
23:41:07.0922 6128 ============================================================
23:41:07.0938 6048 Detected object count: 0
23:41:07.0938 6048 Actual detected object count: 0
23:41:37.0687 5896 Deinitialize success

Malwarebytes Anti-Malware 1.65.1.1000
www.malwarebytes.org

Database version: v2012.10.27.03

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Andy :: ANDY-LAPTOP [administrator]

10/26/2012 11:43:29 PM
mbam-log-2012-10-26 (23-43-29).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 195949
Time elapsed: 41 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

Junkware Removal Tool (JRT) by Thisisu
Version: 2.2.1 (10.26.2012)
OS: Windows 7 Home Premium x64
Ran by Andy on Fri 10/26/2012 at 23:46:24.67
Blog: http://thisisudax.blogspot.com
**************************************************************




*** Services: 0 Detections



*** Registry Values: 0 Detections



*** Registry Keys: 0 Detections



*** Files: 0 Detections



*** Folders: 0 Detections



*** FireFox detected and repaired



*** Event Viewer Logs - Cleared





**************************************************************
Scan was completed on Sat 10/27/2012 at 0:00:06.88
End of Report

#5 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,416 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:07:46 PM

Posted 27 October 2012 - 05:40 PM

There doesn't appear to be any malware there... we'll check one more. If this is clean we will need you to post the exact error inthe Win 7 forum.



Please download mbr.exe and save it to the root directory, usually C:\ <- (Important!).
  • Go to Start > Run and type: cmd.exe
  • press Ok.
  • At the command prompt type: c:\mbr.exe >>"C:\mbr.log"
  • press Enter.
  • The process is automatic...a black DOS window will open and quickly disappear. This is normal.
  • A log file named mbr.log will be created and saved to the root of the system drive (usually C:\).
  • Copy and paste the results of the mbr.log in your next reply.
If you have a problem using the command prompt, you can just double-click on mbr.exe to run the tool.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#6 aszymczyk

aszymczyk
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:07:46 PM

Posted 27 October 2012 - 05:51 PM

When I ran MB last night for the first time, I think I clicked the button to fix the issues that popped up, not just diagnose it. Sorry. I haven't been experiencing any issues, but I've only used the laptop sparingly since the issue popped up

Here's the log from MBR. I can't run it from the command prompt and this is what I get when I doubleclick it to run.

Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net
Windows 6.1.7601

device: opened successfully
user: error reading MBR
error: Read The handle is invalid.
kernel: error reading MBR

Thanks again for the help.

#7 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,416 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:07:46 PM

Posted 27 October 2012 - 08:15 PM

OK, let us know if you have issues at another time.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users