Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Windows 7 Internet Issue- redirect virus?


  • Please log in to reply
8 replies to this topic

#1 nbauman

nbauman

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:01:26 PM

Posted 08 January 2013 - 11:47 PM

Hi Bleeping Computer!

I have an HP laptop that awhile back was infected with some sort of self installing ad-ware program that installed itself into the tool bar and partially disabled internet access. It did a self scan pop up that directed me to buy the fake software. I'm not positive, but it was something like Windows defender or Windows fortress. Using Malware Bytes, I was able to get rid of toolbar pop ups and thought the virus was gone, but I am still unable to browse the internet. I can access Google and run internet and image searches, but I am unable to connect to the actual websites. The progress bar loads to 75% and gets stuck. I've used Bleeping Computer for years to solve all of my virus problems, but I could not figure this one out. Most recently, I used the recovery suite provided with the HP laptop to re-set the PC to it's factory state. To my disappointment, the problem remains on IE7 and Firefox and I can not connect online. Their is also a HP provided trial of Norton Internet security that cannot run live update so it appears something is preventing only some connections to the internet. Any help would be much appreciated, Thanks in advance!

Edited by hamluis, 09 January 2013 - 05:08 AM.
Moved from XP to Am I infected - Hamluis.


BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,072 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:05:26 PM

Posted 09 January 2013 - 08:44 PM

Hello and welcome lets try it this way.

Reboot into Safe Mode with Networking
How to enter safe mode(XP/Vista)
Using the F8 Method
Restart your computer.
When the machine first starts again it will generally list some equipment that is installed in your machine, amount of memory, hard drives installed etc. At this point you should gently tap the F8 key repeatedly until you are presented with a Windows XP Advanced Options menu.
Select the option for Safe Mode with Networking using the arrow keys.
Then press enter on your keyboard to boot into Safe Mode
.

Please login as the user that is infected. When your Windows desktop appears, start right-click on the Internet Explorer, or your other browser of choice, and select Run As or Run as Administrator. If Windows prompts you for the Administrator password, please enter it and then Internet Explorer should launch. Now go to the follow page:

http://www.bleepingcomputer.com/download/fixexec/

When you get to the above page, click on the button and save the file to your C:\ drive.

Please note: If you are unable to login as Administrator, then you will need to download the file onto a USB flash drive or CDROM from a clean computer. Then in a later step we will copy them to the infected computer. Then proceed to Step 5.


Once FixExec has been downloaded to your computer or is stored on a flash drive/CDROM, log off from the Administrator account, but stay in Safe Mode.



If the malware is running on your desktop, just minimize it and any other programs so that you can see your desktop. Navigate to the C:\ folder and double-click on the FixExec.com program. Allow the program to run and when its done, Smart Fortress 2012 should no longer be running and you can now launch your executables again. If you would like more information on what FixExec did on your computer, please read the FixExec.txt log on your desktop.

Note: If you received a message that FixExec was not able to extract a file, then please move the FixExec.com file to your Windows desktop and try again

This infection may change your Windows settings to use a proxy server that will not allow you to browse so.....


Please click Start > Run, type inetcpl.cpl in the runbox and press enter.
Click the Connections tab and click the LAN settings option.
Verify if "Use a proxy..." is checked, if so, UNcheck it and click OK/OK to exit.


Please download Rkill by Grinler and save it to your desktop.Link 1
Link 2
  • Double-click on the Rkill desktop icon to run the tool.
  • If using Vista, right-click on it and Run As Administrator.
  • A black DOS box will briefly flash and then disappear. This is normal and indicates the tool ran successfully.
  • If not, delete the file, then download and use the one provided in Link 2.
  • If it does not work, repeat the process and attempt to use one of the remaining links until the tool runs.
  • If the tool does not run from any of the links provided, please let me know.
Do not reboot the computer, you will need to run the application again.


Rerun MBAM (MalwareBytes) like this:

Open MBAM in normal mode and click Update tab, select Check for Updates,when done
click Scanner tab,select Quick scan and scan (normal mode).
After scan click Remove Selected, Post new scan log and Reboot into normal mode.

Please ask any needed questions,post logs and Let us know how the PC is running now.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 nbauman

nbauman
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:01:26 PM

Posted 10 January 2013 - 12:32 AM

Thanks for the instructions!

Ok followed all steps. 1-ran Rkill successfully. 2-The proxy server checkbox was not checked, so I left settings as is in the LAN settings box. 3-Ran MBAM but could not connect to server to update. Progress bar was frozen with no visable progress. Had to open task manager to end task on the "Updating Malwarebytes.." entry which froze for a minute and disapeared.Performed the quickscan as instructed. Re-started, issue remains, cannot connect to the internet at all. The laptop I am typing on is connected, but eventhough the HP says it is conncected to the correct wireless network and can run Google searches, I can click on the links and get anywhere. See logs below;

FixExec by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2013 BleepingComputer.com
More Information about FixExec can be found at this link:
http://www.bleepingcomputer.com/download/windows/utilities/fixexec

Program started at: 01/09/2013 08:13:11 PM in x64 mode.
Windows Version: Windows 7

Checking for processes to terminate before fixing executable associations.
* No processes found to kill.

Rkill 2.4.5 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2013 BleepingComputer.com
More Information about Rkill can be found at this link:
http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 01/09/2013 08:15:09 PM in x64 mode.
Windows Version: Windows 7 Home Premium

Checking for Windows services to stop:

* No malware services found to stop.

Checking for processes to terminate:

* No malware processes found to kill.

Checking Registry for malware related settings:

* No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

* Windows Defender Disabled

[HKLM\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware" = dword:00000001

Checking Windows Service Integrity:

* COM+ Event System (EventSystem) is not Running.
Startup Type set to: Automatic

* Windows Defender (WinDefend) is not Running.
Startup Type set to: Manual

* Security Center (wscsvc) is not Running.
Startup Type set to: Automatic (Delayed Start)

* Windows Update (wuauserv) is not Running.
Startup Type set to: Automatic (Delayed Start)

Searching for Missing Digital Signatures:

* No issues found.

Checking HOSTS File:

* No issues found.

Program finished at: 01/09/2013 08:15:16 PM
Execution time: 0 hours(s), 0 minute(s), and 7 seconds(s)

Malwarebytes Anti-Malware 1.70.0.1100
www.malwarebytes.org

Database version: v2012.12.14.11

Windows 7 x64 NTFS (Safe Mode/Networking)
Internet Explorer 8.0.7600.16385
Justine :: JUSTINE-PC [administrator]

1/9/2013 8:28:10 PM
mbam-log-2013-01-09 (20-28-10).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 200409
Time elapsed: 1 minute(s), 39 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,072 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:05:26 PM

Posted 10 January 2013 - 10:16 AM

Ok for the connection,if you cannot connect using Safe Mode with Networking you may have to use a flash drive to transfer files.
How to start Windows 7 in Safe Mode[/u

Please Download this file, Click Me
Right-click on winsockfix.bat and click on Run as Administrator

Please Download TDSSkiller
Launch it.
Click on change parameters-Select TDLFS file system
Click on "Scan".
Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results.



Please download [url=http://public.avast.com/~gmerek/aswMBR.exe]aswMBR ( 4.5MB ) to your desktop.
  • Double click the aswMBR.exe icon, and click Run.
  • When asked if you'd like to "download the latest Avast! virus definitions", click Yes.
  • Click the Scan button to start the scan.
  • On completion of the scan, click the save log button, save it to your desktop, then copy and paste it in your next reply.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#5 nbauman

nbauman
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:01:26 PM

Posted 10 January 2013 - 10:28 PM

Click me link does not work, can you please re-post? Thanks!

#6 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,072 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:05:26 PM

Posted 10 January 2013 - 10:34 PM

Please Download this file, Click Me
Right-click on winsockfix.bat and click on Run as Administrator
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#7 nbauman

nbauman
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:01:26 PM

Posted 14 January 2013 - 01:02 AM

Thanks very much, I'll run the scans tomorrow.

#8 nbauman

nbauman
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:01:26 PM

Posted 14 January 2013 - 10:02 PM

Ok, followed all instructions-

1- ran winsocfix successfully. (Did not restart)

ran TDSkiller using options above

18:49:09.0440 2636 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
18:49:11.0266 2636 ============================================================
18:49:11.0266 2636 Current date / time: 2013/01/14 18:49:11.0266
18:49:11.0266 2636 SystemInfo:
18:49:11.0266 2636
18:49:11.0266 2636 OS Version: 6.1.7600 ServicePack: 0.0
18:49:11.0266 2636 Product type: Workstation
18:49:11.0266 2636 ComputerName: JUSTINE-PC
18:49:11.0266 2636 UserName: Justine
18:49:11.0266 2636 Windows directory: C:\Windows
18:49:11.0266 2636 System windows directory: C:\Windows
18:49:11.0266 2636 Running under WOW64
18:49:11.0266 2636 Processor architecture: Intel x64
18:49:11.0266 2636 Number of processors: 2
18:49:11.0266 2636 Page size: 0x1000
18:49:11.0266 2636 Boot type: Normal boot
18:49:11.0266 2636 ============================================================
18:49:13.0075 2636 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:49:13.0075 2636 Drive \Device\Harddisk1\DR1 - Size: 0x7BFFA00 (0.12 Gb), SectorSize: 0x200, Cylinders: 0xF, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
18:49:13.0075 2636 ============================================================
18:49:13.0075 2636 \Device\Harddisk0\DR0:
18:49:13.0075 2636 MBR partitions:
18:49:13.0075 2636 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x63800
18:49:13.0075 2636 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x64000, BlocksNum 0x23A43000
18:49:13.0075 2636 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x23AA7000, BlocksNum 0x1953800
18:49:13.0075 2636 \Device\Harddisk0\DR0\Partition4: MBR, Type 0xC, StartLBA 0x253FA800, BlocksNum 0x33AB0
18:49:13.0075 2636 \Device\Harddisk1\DR1:
18:49:13.0075 2636 MBR partitions:
18:49:13.0075 2636 ============================================================
18:49:13.0106 2636 C: <-> \Device\Harddisk0\DR0\Partition2
18:49:13.0153 2636 D: <-> \Device\Harddisk0\DR0\Partition3
18:49:13.0153 2636 ============================================================
18:49:13.0153 2636 Initialize success
18:49:13.0153 2636 ============================================================
18:49:43.0729 0644 ============================================================
18:49:43.0729 0644 Scan started
18:49:43.0729 0644 Mode: Manual; TDLFS;
18:49:43.0729 0644 ============================================================
18:49:44.0775 0644 ================ Scan system memory ========================
18:49:44.0775 0644 System memory - ok
18:49:44.0775 0644 ================ Scan services =============================
18:49:44.0946 0644 [ 1B00662092F9F9568B995902F0CC40D5 ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
18:49:44.0993 0644 1394ohci - ok
18:49:45.0024 0644 [ 1CFFE9C06E66A57DAE1452E449A58240 ] Accelerometer C:\Windows\system32\DRIVERS\Accelerometer.sys
18:49:45.0040 0644 Accelerometer - ok
18:49:45.0055 0644 [ 6F11E88748CDEFD2F76AA215F97DDFE5 ] ACPI C:\Windows\system32\DRIVERS\ACPI.sys
18:49:45.0071 0644 ACPI - ok
18:49:45.0087 0644 [ 63B05A0420CE4BF0E4AF6DCC7CADA254 ] AcpiPmi C:\Windows\system32\DRIVERS\acpipmi.sys
18:49:45.0087 0644 AcpiPmi - ok
18:49:45.0118 0644 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
18:49:45.0133 0644 adp94xx - ok
18:49:45.0149 0644 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
18:49:45.0165 0644 adpahci - ok
18:49:45.0180 0644 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
18:49:45.0180 0644 adpu320 - ok
18:49:45.0211 0644 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
18:49:45.0211 0644 AeLookupSvc - ok
18:49:45.0289 0644 [ A6FB9DB8F1A86861D955FD6975977AE0 ] AESTFilters C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_b87ff64c8b56b7db\AESTSr64.exe
18:49:45.0289 0644 AESTFilters - ok
18:49:45.0336 0644 [ B9384E03479D2506BC924C16A3DB87BC ] AFD C:\Windows\system32\drivers\afd.sys
18:49:45.0352 0644 AFD - ok
18:49:45.0383 0644 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\DRIVERS\agp440.sys
18:49:45.0430 0644 agp440 - ok
18:49:45.0430 0644 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
18:49:45.0445 0644 ALG - ok
18:49:45.0445 0644 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\DRIVERS\aliide.sys
18:49:45.0445 0644 aliide - ok
18:49:45.0492 0644 [ 17E08CE1FAEA6D4BA6A155D56D18CC49 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
18:49:45.0492 0644 AMD External Events Utility - ok
18:49:45.0508 0644 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\DRIVERS\amdide.sys
18:49:45.0508 0644 amdide - ok
18:49:45.0523 0644 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
18:49:45.0523 0644 AmdK8 - ok
18:49:45.0539 0644 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
18:49:45.0539 0644 AmdPPM - ok
18:49:45.0555 0644 [ 7A4B413614C055935567CF88A9734D38 ] amdsata C:\Windows\system32\DRIVERS\amdsata.sys
18:49:45.0555 0644 amdsata - ok
18:49:45.0570 0644 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
18:49:45.0570 0644 amdsbs - ok
18:49:45.0586 0644 [ B4AD0CACBAB298671DD6F6EF7E20679D ] amdxata C:\Windows\system32\DRIVERS\amdxata.sys
18:49:45.0586 0644 amdxata - ok
18:49:45.0633 0644 [ 9815014F3E30357168DA272088C6F12F ] ApfiltrService C:\Windows\system32\DRIVERS\Apfiltr.sys
18:49:45.0633 0644 ApfiltrService - ok
18:49:45.0664 0644 [ 42FD751B27FA0E9C69BB39F39E409594 ] AppID C:\Windows\system32\drivers\appid.sys
18:49:45.0679 0644 AppID - ok
18:49:45.0711 0644 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
18:49:45.0711 0644 AppIDSvc - ok
18:49:45.0726 0644 [ D065BE66822847B7F127D1F90158376E ] Appinfo C:\Windows\System32\appinfo.dll
18:49:45.0726 0644 Appinfo - ok
18:49:45.0742 0644 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
18:49:45.0742 0644 arc - ok
18:49:45.0742 0644 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
18:49:45.0757 0644 arcsas - ok
18:49:45.0757 0644 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
18:49:45.0773 0644 AsyncMac - ok
18:49:45.0789 0644 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\DRIVERS\atapi.sys
18:49:45.0789 0644 atapi - ok
18:49:45.0851 0644 [ 5D4529AC4156E16BEDB01441AE0CF984 ] athr C:\Windows\system32\DRIVERS\athrx.sys
18:49:45.0898 0644 athr - ok
18:49:45.0945 0644 [ 506934DF94E3197F4A1BBE8FBEAB0CCD ] AtiHdmiService C:\Windows\system32\drivers\AtiHdmi.sys
18:49:45.0945 0644 AtiHdmiService - ok
18:49:46.0101 0644 [ 58564C9A3DA71C633A236A791EE5ACA4 ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
18:49:46.0194 0644 atikmdag - ok
18:49:46.0210 0644 [ 7C5D273E29DCC5505469B299C6F29163 ] AtiPcie C:\Windows\system32\DRIVERS\AtiPcie.sys
18:49:46.0210 0644 AtiPcie - ok
18:49:46.0257 0644 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
18:49:46.0272 0644 AudioEndpointBuilder - ok
18:49:46.0288 0644 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioSrv C:\Windows\System32\Audiosrv.dll
18:49:46.0288 0644 AudioSrv - ok
18:49:46.0319 0644 [ B20B5FA5CA050E9926E4D1DB81501B32 ] AxInstSV C:\Windows\System32\AxInstSV.dll
18:49:46.0319 0644 AxInstSV - ok
18:49:46.0366 0644 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
18:49:46.0397 0644 b06bdrv - ok
18:49:46.0428 0644 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
18:49:46.0444 0644 b57nd60a - ok
18:49:46.0459 0644 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
18:49:46.0475 0644 BDESVC - ok
18:49:46.0491 0644 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
18:49:46.0491 0644 Beep - ok
18:49:46.0522 0644 [ 4992C609A6315671463E30F6512BC022 ] BFE C:\Windows\System32\bfe.dll
18:49:46.0537 0644 BFE - ok
18:49:46.0600 0644 [ 935F824448CB3440F935423745CB4BCD ] BHDrvx64 C:\Windows\system32\drivers\NISx64\1007000.01E\BHDrvx64.sys
18:49:46.0615 0644 BHDrvx64 - ok
18:49:46.0662 0644 [ 7F0C323FE3DA28AA4AA1BDA3F575707F ] BITS C:\Windows\System32\qmgr.dll
18:49:46.0678 0644 BITS - ok
18:49:46.0709 0644 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
18:49:46.0709 0644 blbdrive - ok
18:49:46.0725 0644 [ 91CE0D3DC57DD377E690A2D324022B08 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
18:49:46.0725 0644 bowser - ok
18:49:46.0756 0644 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
18:49:46.0771 0644 BrFiltLo - ok
18:49:46.0787 0644 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
18:49:46.0803 0644 BrFiltUp - ok
18:49:46.0834 0644 [ 94FBC06F294D58D02361918418F996E3 ] Browser C:\Windows\System32\browser.dll
18:49:46.0834 0644 Browser - ok
18:49:46.0865 0644 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
18:49:46.0881 0644 Brserid - ok
18:49:46.0896 0644 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
18:49:46.0912 0644 BrSerWdm - ok
18:49:46.0912 0644 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
18:49:46.0927 0644 BrUsbMdm - ok
18:49:46.0943 0644 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
18:49:46.0943 0644 BrUsbSer - ok
18:49:46.0959 0644 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
18:49:46.0974 0644 BTHMODEM - ok
18:49:46.0990 0644 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
18:49:46.0990 0644 bthserv - ok
18:49:47.0037 0644 [ 1B79EFC84B924A6932BB9D2A549DE5C9 ] ccHP C:\Windows\system32\drivers\NISx64\1007000.01E\ccHPx64.sys
18:49:47.0052 0644 ccHP - ok
18:49:47.0115 0644 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
18:49:47.0130 0644 cdfs - ok
18:49:47.0177 0644 [ 83D2D75E1EFB81B3450C18131443F7DB ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
18:49:47.0193 0644 cdrom - ok
18:49:47.0208 0644 [ 312E2F82AF11E79906898AC3E3D58A1F ] CertPropSvc C:\Windows\System32\certprop.dll
18:49:47.0224 0644 CertPropSvc - ok
18:49:47.0224 0644 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
18:49:47.0239 0644 circlass - ok
18:49:47.0286 0644 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
18:49:47.0286 0644 CLFS - ok
18:49:47.0333 0644 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:49:47.0333 0644 clr_optimization_v2.0.50727_32 - ok
18:49:47.0364 0644 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
18:49:47.0380 0644 clr_optimization_v2.0.50727_64 - ok
18:49:47.0395 0644 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
18:49:47.0395 0644 CmBatt - ok
18:49:47.0395 0644 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\DRIVERS\cmdide.sys
18:49:47.0411 0644 cmdide - ok
18:49:47.0427 0644 [ F95FD4CB7DA00BA2A63CE9F6B5C053E1 ] CNG C:\Windows\system32\Drivers\cng.sys
18:49:47.0442 0644 CNG - ok
18:49:47.0536 0644 [ F9A79C5B27037821112C50A9C8FB367A ] Com4QLBEx C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
18:49:47.0536 0644 Com4QLBEx - ok
18:49:47.0567 0644 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
18:49:47.0567 0644 Compbatt - ok
18:49:47.0598 0644 [ F26B3A86F6FA87CA360B879581AB4123 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
18:49:47.0598 0644 CompositeBus - ok
18:49:47.0614 0644 COMSysApp - ok
18:49:47.0629 0644 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
18:49:47.0661 0644 crcdisk - ok
18:49:47.0692 0644 [ 8C57411B66282C01533CB776F98AD384 ] CryptSvc C:\Windows\system32\cryptsvc.dll
18:49:47.0692 0644 CryptSvc - ok
18:49:47.0739 0644 [ 7266972E86890E2B30C0C322E906B027 ] DcomLaunch C:\Windows\system32\rpcss.dll
18:49:47.0754 0644 DcomLaunch - ok
18:49:47.0785 0644 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
18:49:47.0785 0644 defragsvc - ok
18:49:47.0801 0644 [ 3F1DC527070ACB87E40AFE46EF6DA749 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
18:49:47.0801 0644 DfsC - ok
18:49:47.0832 0644 [ CE3B9562D997F69B330D181A8875960F ] Dhcp C:\Windows\system32\dhcpcore.dll
18:49:47.0863 0644 Dhcp - ok
18:49:47.0879 0644 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
18:49:47.0879 0644 discache - ok
18:49:47.0926 0644 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
18:49:47.0926 0644 Disk - ok
18:49:47.0941 0644 [ 676108C4E3AA6F6B34633748BD0BEBD9 ] Dnscache C:\Windows\System32\dnsrslvr.dll
18:49:47.0941 0644 Dnscache - ok
18:49:47.0957 0644 [ 14452ACDB09B70964C8C21BF80A13ACB ] dot3svc C:\Windows\System32\dot3svc.dll
18:49:47.0957 0644 dot3svc - ok
18:49:47.0973 0644 [ 8C2BA6BEA949EE6E68385F5692BAFB94 ] DPS C:\Windows\system32\dps.dll
18:49:47.0973 0644 DPS - ok
18:49:48.0004 0644 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
18:49:48.0019 0644 drmkaud - ok
18:49:48.0097 0644 [ 7CB7D2B73813CE05C7BC0F5F95D27CEC ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
18:49:48.0129 0644 DXGKrnl - ok
18:49:48.0160 0644 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
18:49:48.0175 0644 EapHost - ok
18:49:48.0269 0644 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
18:49:48.0331 0644 ebdrv - ok
18:49:48.0394 0644 [ A7FBC38C1F6F3DF3F1E21B8933E76E7C ] eeCtrl C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
18:49:48.0394 0644 eeCtrl - ok
18:49:48.0425 0644 [ 0793F40B9B8A1BDD266296409DBD91EA ] EFS C:\Windows\System32\lsass.exe
18:49:48.0425 0644 EFS - ok
18:49:48.0472 0644 [ B91D81B3B54A54CCAFC03733DBC2E29E ] ehRecvr C:\Windows\ehome\ehRecvr.exe
18:49:48.0487 0644 ehRecvr - ok
18:49:48.0503 0644 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
18:49:48.0503 0644 ehSched - ok
18:49:48.0550 0644 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
18:49:48.0550 0644 elxstor - ok
18:49:48.0597 0644 [ 541357E1A4D632C5C0440CCFB95606E7 ] EraserUtilDrv10910 C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilDrv10910.sys
18:49:48.0597 0644 EraserUtilDrv10910 - ok
18:49:48.0612 0644 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\DRIVERS\errdev.sys
18:49:48.0643 0644 ErrDev - ok
18:49:48.0675 0644 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
18:49:48.0690 0644 EventSystem - ok
18:49:48.0721 0644 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
18:49:48.0737 0644 exfat - ok
18:49:48.0753 0644 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
18:49:48.0768 0644 fastfat - ok
18:49:48.0799 0644 [ D607B2F1BEE3992AA6C2C92C0A2F0855 ] Fax C:\Windows\system32\fxssvc.exe
18:49:48.0831 0644 Fax - ok
18:49:48.0846 0644 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
18:49:48.0877 0644 fdc - ok
18:49:48.0909 0644 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
18:49:48.0909 0644 fdPHost - ok
18:49:48.0924 0644 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
18:49:48.0924 0644 FDResPub - ok
18:49:48.0940 0644 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
18:49:48.0940 0644 FileInfo - ok
18:49:48.0955 0644 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
18:49:48.0955 0644 Filetrace - ok
18:49:48.0971 0644 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
18:49:48.0987 0644 flpydisk - ok
18:49:49.0018 0644 [ F7866AF72ABBAF84B1FA5AA195378C59 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
18:49:49.0018 0644 FltMgr - ok
18:49:49.0096 0644 [ 8AC4CB4EA61E41009FAE9AE7B2B5DA3A ] FontCache C:\Windows\system32\FntCache.dll
18:49:49.0111 0644 FontCache - ok
18:49:49.0158 0644 [ 8D89E3131C27FDD6932189CB785E1B7A ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
18:49:49.0174 0644 FontCache3.0.0.0 - ok
18:49:49.0189 0644 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
18:49:49.0205 0644 FsDepends - ok
18:49:49.0283 0644 [ E95EF8547DE20CF0603557C0CF7A9462 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
18:49:49.0299 0644 Fs_Rec - ok
18:49:49.0314 0644 [ B8B2A6E1558F8F5DE5CE431C5B2C7B09 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
18:49:49.0330 0644 fvevol - ok
18:49:49.0455 0644 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
18:49:49.0517 0644 gagp30kx - ok
18:49:49.0579 0644 [ C44D560E441F091EA3B72F778EC60DE2 ] GameConsoleService C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe
18:49:49.0595 0644 GameConsoleService - ok
18:49:49.0626 0644 [ FE5AB4525BC2EC68B9119A6E5D40128B ] gpsvc C:\Windows\System32\gpsvc.dll
18:49:49.0642 0644 gpsvc - ok
18:49:49.0673 0644 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
18:49:49.0689 0644 hcw85cir - ok
18:49:49.0720 0644 [ 6410F6F415B2A5A9037224C41DA8BF12 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
18:49:49.0735 0644 HdAudAddService - ok
18:49:49.0751 0644 [ 0A49913402747A0B67DE940FB42CBDBB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
18:49:49.0751 0644 HDAudBus - ok
18:49:49.0767 0644 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
18:49:49.0782 0644 HidBatt - ok
18:49:49.0782 0644 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
18:49:49.0798 0644 HidBth - ok
18:49:49.0813 0644 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
18:49:49.0813 0644 HidIr - ok
18:49:49.0829 0644 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
18:49:49.0829 0644 hidserv - ok
18:49:49.0860 0644 [ B3BF6B5B50006DEF50B66306D99FCF6F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
18:49:49.0860 0644 HidUsb - ok
18:49:49.0907 0644 [ EFA58EDE58DD74388FFD04CB32681518 ] hkmsvc C:\Windows\system32\kmsvc.dll
18:49:49.0907 0644 hkmsvc - ok
18:49:49.0923 0644 [ 046B2673767CA626E2CFB7FDF735E9E8 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
18:49:49.0938 0644 HomeGroupListener - ok
18:49:49.0969 0644 [ 06A7422224D9865A5613710A089987DF ] HomeGroupProvider C:\Windows\system32\provsvc.dll
18:49:49.0985 0644 HomeGroupProvider - ok
18:49:50.0016 0644 [ 0141816A095A3F5A83FFA5B4A47B8023 ] HP Health Check Service C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
18:49:50.0016 0644 HP Health Check Service - ok
18:49:50.0079 0644 [ 05712FDDBD45A5864EB326FAABC6A4E3 ] hpdskflt C:\Windows\system32\DRIVERS\hpdskflt.sys
18:49:50.0094 0644 hpdskflt - ok
18:49:50.0125 0644 [ 9AF482D058BE59CC28BCE52E7C4B747C ] HpqKbFiltr C:\Windows\system32\DRIVERS\HpqKbFiltr.sys
18:49:50.0125 0644 HpqKbFiltr - ok
18:49:50.0203 0644 [ FDF273A845F1FFCCEADF363AAF47582F ] hpqwmiex C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
18:49:50.0203 0644 hpqwmiex - ok
18:49:50.0235 0644 [ 0886D440058F203EBA0E1825E4355914 ] HpSAMD C:\Windows\system32\DRIVERS\HpSAMD.sys
18:49:50.0235 0644 HpSAMD - ok
18:49:50.0250 0644 [ AA036CC5F5221D9B915F4D4DCE74BA9A ] hpsrv C:\Windows\system32\Hpservice.exe
18:49:50.0250 0644 hpsrv - ok
18:49:50.0297 0644 [ CEE049CAC4EFA7F4E1E4AD014414A5D4 ] HTTP C:\Windows\system32\drivers\HTTP.sys
18:49:50.0313 0644 HTTP - ok
18:49:50.0328 0644 [ F17766A19145F111856378DF337A5D79 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
18:49:50.0328 0644 hwpolicy - ok
18:49:50.0344 0644 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
18:49:50.0344 0644 i8042prt - ok
18:49:50.0375 0644 [ D83EFB6FD45DF9D55E9A1AFC63640D50 ] iaStorV C:\Windows\system32\DRIVERS\iaStorV.sys
18:49:50.0375 0644 iaStorV - ok
18:49:50.0437 0644 [ 2F2BE70D3E02B6FA877921AB9516D43C ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
18:49:50.0484 0644 idsvc - ok
18:49:50.0547 0644 [ BFB776B66CC89AB66AE97FFA40B25F45 ] IDSVia64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20090712.001\IDSVia64.sys
18:49:50.0562 0644 IDSVia64 - ok
18:49:50.0749 0644 [ A87261EF1546325B559374F5689CF5BC ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
18:49:50.0874 0644 igfx - ok
18:49:50.0890 0644 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
18:49:50.0890 0644 iirsp - ok
18:49:50.0937 0644 [ C5B4683680DF085B57BC53E5EF34861F ] IKEEXT C:\Windows\System32\ikeext.dll
18:49:50.0952 0644 IKEEXT - ok
18:49:50.0983 0644 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\DRIVERS\intelide.sys
18:49:50.0983 0644 intelide - ok
18:49:50.0999 0644 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
18:49:51.0015 0644 intelppm - ok
18:49:51.0046 0644 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
18:49:51.0046 0644 IPBusEnum - ok
18:49:51.0093 0644 [ 722DD294DF62483CECAAE6E094B4D695 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
18:49:51.0093 0644 IpFilterDriver - ok
18:49:51.0124 0644 [ F8E058D17363EC580E4B7232778B6CB5 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
18:49:51.0139 0644 iphlpsvc - ok
18:49:51.0155 0644 [ E2B4A4494DB7CB9B89B55CA268C337C5 ] IPMIDRV C:\Windows\system32\DRIVERS\IPMIDrv.sys
18:49:51.0171 0644 IPMIDRV - ok
18:49:51.0186 0644 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
18:49:51.0202 0644 IPNAT - ok
18:49:51.0202 0644 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
18:49:51.0217 0644 IRENUM - ok
18:49:51.0233 0644 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\DRIVERS\isapnp.sys
18:49:51.0233 0644 isapnp - ok
18:49:51.0249 0644 [ FA4D2557DE56D45B0A346F93564BE6E1 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
18:49:51.0295 0644 iScsiPrt - ok
18:49:51.0295 0644 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
18:49:51.0295 0644 kbdclass - ok
18:49:51.0327 0644 [ 6DEF98F8541E1B5DCEB2C822A11F7323 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
18:49:51.0342 0644 kbdhid - ok
18:49:51.0358 0644 [ 0793F40B9B8A1BDD266296409DBD91EA ] KeyIso C:\Windows\system32\lsass.exe
18:49:51.0358 0644 KeyIso - ok
18:49:51.0373 0644 [ E8B6FCC9C83535C67F835D407620BD27 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
18:49:51.0373 0644 KSecDD - ok
18:49:51.0405 0644 [ BBE1BF6D9B661C354D4857D5FADB943B ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
18:49:51.0405 0644 KSecPkg - ok
18:49:51.0420 0644 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
18:49:51.0420 0644 ksthunk - ok
18:49:51.0451 0644 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
18:49:51.0483 0644 KtmRm - ok
18:49:51.0514 0644 [ C926920B8978DE6ACFE9E15C709E9B57 ] LanmanServer C:\Windows\system32\srvsvc.dll
18:49:51.0514 0644 LanmanServer - ok
18:49:51.0545 0644 [ 27026EAC8818E8A6C00A1CAD2F11D29A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
18:49:51.0545 0644 LanmanWorkstation - ok
18:49:51.0576 0644 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
18:49:51.0576 0644 lltdio - ok
18:49:51.0592 0644 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
18:49:51.0623 0644 lltdsvc - ok
18:49:51.0654 0644 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
18:49:51.0654 0644 lmhosts - ok
18:49:51.0670 0644 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
18:49:51.0685 0644 LSI_FC - ok
18:49:51.0701 0644 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
18:49:51.0701 0644 LSI_SAS - ok
18:49:51.0717 0644 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
18:49:51.0717 0644 LSI_SAS2 - ok
18:49:51.0717 0644 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
18:49:51.0732 0644 LSI_SCSI - ok
18:49:51.0748 0644 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
18:49:51.0748 0644 luafv - ok
18:49:51.0779 0644 [ F84C8F1000BC11E3B7B23CBD3BAFF111 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
18:49:51.0826 0644 Mcx2Svc - ok
18:49:51.0857 0644 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
18:49:51.0857 0644 megasas - ok
18:49:51.0888 0644 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
18:49:51.0904 0644 MegaSR - ok
18:49:51.0919 0644 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
18:49:51.0919 0644 MMCSS - ok
18:49:51.0935 0644 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
18:49:51.0951 0644 Modem - ok
18:49:51.0951 0644 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
18:49:51.0966 0644 monitor - ok
18:49:51.0966 0644 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
18:49:51.0966 0644 mouclass - ok
18:49:51.0997 0644 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
18:49:51.0997 0644 mouhid - ok
18:49:52.0013 0644 [ 791AF66C4D0E7C90A3646066386FB571 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
18:49:52.0013 0644 mountmgr - ok
18:49:52.0091 0644 [ 8C7336950F1E69CDFD811CBBD9CF00A2 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
18:49:52.0091 0644 MozillaMaintenance - ok
18:49:52.0122 0644 [ 609D1D87649ECC19796F4D76D4C15CEA ] mpio C:\Windows\system32\DRIVERS\mpio.sys
18:49:52.0122 0644 mpio - ok
18:49:52.0138 0644 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
18:49:52.0138 0644 mpsdrv - ok
18:49:52.0185 0644 [ AECAB449567D1846DAD63ECE49E893E3 ] MpsSvc C:\Windows\system32\mpssvc.dll
18:49:52.0200 0644 MpsSvc - ok
18:49:52.0216 0644 [ 30524261BB51D96D6FCBAC20C810183C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
18:49:52.0247 0644 MRxDAV - ok
18:49:52.0294 0644 [ CFDCD8CA87C2A657DEBC150AC35B5E08 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
18:49:52.0325 0644 mrxsmb - ok
18:49:52.0419 0644 [ 1BEE517B220B7F024F411AEC1571DD5A ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
18:49:52.0419 0644 mrxsmb10 - ok
18:49:52.0434 0644 [ 6B2D5FEF385828B6E485C1C90AFB8195 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
18:49:52.0434 0644 mrxsmb20 - ok
18:49:52.0450 0644 [ 5C37497276E3B3A5488B23A326A754B7 ] msahci C:\Windows\system32\DRIVERS\msahci.sys
18:49:52.0450 0644 msahci - ok
18:49:52.0465 0644 [ 8D27B597229AED79430FB9DB3BCBFBD0 ] msdsm C:\Windows\system32\DRIVERS\msdsm.sys
18:49:52.0465 0644 msdsm - ok
18:49:52.0481 0644 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
18:49:52.0512 0644 MSDTC - ok
18:49:52.0528 0644 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
18:49:52.0528 0644 Msfs - ok
18:49:52.0543 0644 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
18:49:52.0543 0644 mshidkmdf - ok
18:49:52.0543 0644 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\DRIVERS\msisadrv.sys
18:49:52.0559 0644 msisadrv - ok
18:49:52.0590 0644 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
18:49:52.0621 0644 MSiSCSI - ok
18:49:52.0621 0644 msiserver - ok
18:49:52.0637 0644 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
18:49:52.0653 0644 MSKSSRV - ok
18:49:52.0668 0644 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
18:49:52.0684 0644 MSPCLOCK - ok
18:49:52.0684 0644 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
18:49:52.0699 0644 MSPQM - ok
18:49:52.0715 0644 [ 89CB141AA8616D8C6A4610FA26C60964 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
18:49:52.0715 0644 MsRPC - ok
18:49:52.0731 0644 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
18:49:52.0731 0644 mssmbios - ok
18:49:52.0762 0644 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
18:49:52.0762 0644 MSTEE - ok
18:49:52.0777 0644 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
18:49:52.0793 0644 MTConfig - ok
18:49:52.0793 0644 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
18:49:52.0793 0644 Mup - ok
18:49:52.0840 0644 [ 4987E079A4530FA737A128BE54B63B12 ] napagent C:\Windows\system32\qagentRT.dll
18:49:52.0855 0644 napagent - ok
18:49:52.0871 0644 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
18:49:52.0887 0644 NativeWifiP - ok
18:49:52.0933 0644 [ 79A7C43A8485048248AEF380BBF205B8 ] NAVENG C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20090713.024\ENG64.SYS
18:49:52.0933 0644 NAVENG - ok
18:49:52.0965 0644 [ 1CF800012D1DCFED157751AFA7343D0E ] NAVEX15 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20090713.024\EX64.SYS
18:49:52.0980 0644 NAVEX15 - ok
18:49:53.0011 0644 [ CAD515DBD07D082BB317D9928CE8962C ] NDIS C:\Windows\system32\drivers\ndis.sys
18:49:53.0043 0644 NDIS - ok
18:49:53.0105 0644 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
18:49:53.0105 0644 NdisCap - ok
18:49:53.0121 0644 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
18:49:53.0136 0644 NdisTapi - ok
18:49:53.0152 0644 [ F105BA1E22BF1F2EE8F005D4305E4BEC ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
18:49:53.0152 0644 Ndisuio - ok
18:49:53.0183 0644 [ 557DFAB9CA1FCB036AC77564C010DAD3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
18:49:53.0183 0644 NdisWan - ok
18:49:53.0199 0644 [ 659B74FB74B86228D6338D643CD3E3CF ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
18:49:53.0199 0644 NDProxy - ok
18:49:53.0214 0644 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
18:49:53.0214 0644 NetBIOS - ok
18:49:53.0230 0644 [ 9162B273A44AB9DCE5B44362731D062A ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
18:49:53.0245 0644 NetBT - ok
18:49:53.0261 0644 [ 0793F40B9B8A1BDD266296409DBD91EA ] Netlogon C:\Windows\system32\lsass.exe
18:49:53.0261 0644 Netlogon - ok
18:49:53.0292 0644 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
18:49:53.0308 0644 Netman - ok
18:49:53.0323 0644 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
18:49:53.0339 0644 netprofm - ok
18:49:53.0370 0644 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
18:49:53.0417 0644 NetTcpPortSharing - ok
18:49:53.0573 0644 [ 64428DFDAF6E88366CB51F45A79C5F69 ] netw5v64 C:\Windows\system32\DRIVERS\netw5v64.sys
18:49:53.0682 0644 netw5v64 - ok
18:49:53.0713 0644 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
18:49:53.0713 0644 nfrd960 - ok
18:49:53.0760 0644 [ D9A0CE66046D6EFA0C61BAA885CBA0A8 ] NlaSvc C:\Windows\System32\nlasvc.dll
18:49:53.0776 0644 NlaSvc - ok
18:49:53.0823 0644 [ EE215321E83BE72AB77B6627FD149EAE ] Norton Internet Security C:\Program Files (x86)\Norton Internet Security\Engine\16.7.0.30\ccSvcHst.exe
18:49:53.0823 0644 Norton Internet Security - ok
18:49:53.0838 0644 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
18:49:53.0838 0644 Npfs - ok
18:49:53.0854 0644 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
18:49:53.0854 0644 nsi - ok
18:49:53.0869 0644 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
18:49:53.0869 0644 nsiproxy - ok
18:49:53.0932 0644 [ 356698A13C4630D5B31C37378D469196 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
18:49:53.0963 0644 Ntfs - ok
18:49:53.0963 0644 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
18:49:53.0963 0644 Null - ok
18:49:53.0979 0644 [ 3E38712941E9BB4DDBEE00AFFE3FED3D ] nvraid C:\Windows\system32\DRIVERS\nvraid.sys
18:49:53.0994 0644 nvraid - ok
18:49:54.0010 0644 [ 477DC4D6DEB99BE37084C9AC6D013DA1 ] nvstor C:\Windows\system32\DRIVERS\nvstor.sys
18:49:54.0010 0644 nvstor - ok
18:49:54.0025 0644 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\DRIVERS\nv_agp.sys
18:49:54.0057 0644 nv_agp - ok
18:49:54.0072 0644 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
18:49:54.0088 0644 ohci1394 - ok
18:49:54.0119 0644 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
18:49:54.0119 0644 p2pimsvc - ok
18:49:54.0150 0644 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
18:49:54.0166 0644 p2psvc - ok
18:49:54.0181 0644 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
18:49:54.0197 0644 Parport - ok
18:49:54.0213 0644 [ 7DAA117143316C4A1537E074A5A9EAF0 ] partmgr C:\Windows\system32\drivers\partmgr.sys
18:49:54.0213 0644 partmgr - ok
18:49:54.0228 0644 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
18:49:54.0244 0644 PcaSvc - ok
18:49:54.0259 0644 [ F36F6504009F2FB0DFD1B17A116AD74B ] pci C:\Windows\system32\DRIVERS\pci.sys
18:49:54.0259 0644 pci - ok
18:49:54.0259 0644 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\DRIVERS\pciide.sys
18:49:54.0275 0644 pciide - ok
18:49:54.0291 0644 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
18:49:54.0306 0644 pcmcia - ok
18:49:54.0322 0644 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
18:49:54.0322 0644 pcw - ok
18:49:54.0353 0644 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
18:49:54.0369 0644 PEAUTH - ok
18:49:54.0447 0644 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
18:49:54.0462 0644 PerfHost - ok
18:49:54.0556 0644 [ 557E9A86F65F0DE18C9B6751DFE9D3F1 ] pla C:\Windows\system32\pla.dll
18:49:54.0587 0644 pla - ok
18:49:54.0618 0644 [ 23157D583244400E1D7FBAEE2E4B31B7 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
18:49:54.0634 0644 PlugPlay - ok
18:49:54.0649 0644 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
18:49:54.0649 0644 PNRPAutoReg - ok
18:49:54.0665 0644 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
18:49:54.0665 0644 PNRPsvc - ok
18:49:54.0696 0644 [ 166EB40D1F5B47E615DE3D0FFFE5F243 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
18:49:54.0712 0644 PolicyAgent - ok
18:49:54.0727 0644 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
18:49:54.0743 0644 Power - ok
18:49:54.0774 0644 [ 27CC19E81BA5E3403C48302127BDA717 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
18:49:54.0774 0644 PptpMiniport - ok
18:49:54.0790 0644 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
18:49:54.0821 0644 Processor - ok
18:49:54.0852 0644 [ F381975E1F4346DE875CB07339CE8D3A ] ProfSvc C:\Windows\system32\profsvc.dll
18:49:54.0852 0644 ProfSvc - ok
18:49:54.0868 0644 [ 0793F40B9B8A1BDD266296409DBD91EA ] ProtectedStorage C:\Windows\system32\lsass.exe
18:49:54.0883 0644 ProtectedStorage - ok
18:49:54.0899 0644 [ EE992183BD8EAEFD9973F352E587A299 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
18:49:54.0899 0644 Psched - ok
18:49:54.0946 0644 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
18:49:54.0977 0644 ql2300 - ok
18:49:54.0993 0644 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
18:49:54.0993 0644 ql40xx - ok
18:49:55.0024 0644 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
18:49:55.0039 0644 QWAVE - ok
18:49:55.0039 0644 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
18:49:55.0039 0644 QWAVEdrv - ok
18:49:55.0071 0644 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
18:49:55.0086 0644 RasAcd - ok
18:49:55.0102 0644 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
18:49:55.0117 0644 RasAgileVpn - ok
18:49:55.0133 0644 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
18:49:55.0149 0644 RasAuto - ok
18:49:55.0180 0644 [ 87A6E852A22991580D6D39ADC4790463 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
18:49:55.0180 0644 Rasl2tp - ok
18:49:55.0211 0644 [ 47394ED3D16D053F5906EFE5AB51CC83 ] RasMan C:\Windows\System32\rasmans.dll
18:49:55.0227 0644 RasMan - ok
18:49:55.0227 0644 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
18:49:55.0227 0644 RasPppoe - ok
18:49:55.0242 0644 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
18:49:55.0242 0644 RasSstp - ok
18:49:55.0258 0644 [ 3BAC8142102C15D59A87757C1D41DCE5 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
18:49:55.0273 0644 rdbss - ok
18:49:55.0289 0644 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
18:49:55.0305 0644 rdpbus - ok
18:49:55.0336 0644 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
18:49:55.0336 0644 RDPCDD - ok
18:49:55.0351 0644 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
18:49:55.0351 0644 RDPENCDD - ok
18:49:55.0383 0644 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
18:49:55.0383 0644 RDPREFMP - ok
18:49:55.0383 0644 [ 8A3E6BEA1C53EA6177FE2B6EBA2C80D7 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
18:49:55.0398 0644 RDPWD - ok
18:49:55.0414 0644 [ 634B9A2181D98F15941236886164EC8B ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
18:49:55.0429 0644 rdyboost - ok
18:49:55.0445 0644 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
18:49:55.0461 0644 RemoteAccess - ok
18:49:55.0461 0644 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
18:49:55.0476 0644 RemoteRegistry - ok
18:49:55.0539 0644 [ 498EB62A160674E793FA40FD65390625 ] RichVideo C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
18:49:55.0539 0644 RichVideo - ok
18:49:55.0570 0644 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
18:49:55.0585 0644 RpcEptMapper - ok
18:49:55.0617 0644 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
18:49:55.0617 0644 RpcLocator - ok
18:49:55.0632 0644 [ 7266972E86890E2B30C0C322E906B027 ] RpcSs C:\Windows\system32\rpcss.dll
18:49:55.0648 0644 RpcSs - ok
18:49:55.0679 0644 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
18:49:55.0679 0644 rspndr - ok
18:49:55.0726 0644 [ 3B01789EE4EAEE97F5EB46B711387D5E ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
18:49:55.0726 0644 RTL8167 - ok
18:49:55.0741 0644 [ 0793F40B9B8A1BDD266296409DBD91EA ] SamSs C:\Windows\system32\lsass.exe
18:49:55.0741 0644 SamSs - ok
18:49:55.0757 0644 [ E3BBB89983DAF5622C1D50CF49F28227 ] sbp2port C:\Windows\system32\DRIVERS\sbp2port.sys
18:49:55.0757 0644 sbp2port - ok
18:49:55.0788 0644 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
18:49:55.0788 0644 SCardSvr - ok
18:49:55.0804 0644 [ C94DA20C7E3BA1DCA269BC8460D98387 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
18:49:55.0804 0644 scfilter - ok
18:49:55.0835 0644 [ EC56B171F85C7E855E7B0588AC503EEA ] Schedule C:\Windows\system32\schedsvc.dll
18:49:55.0866 0644 Schedule - ok
18:49:55.0897 0644 [ 312E2F82AF11E79906898AC3E3D58A1F ] SCPolicySvc C:\Windows\System32\certprop.dll
18:49:55.0897 0644 SCPolicySvc - ok
18:49:55.0929 0644 [ 54E47AD086782D3AE9417C155CDCEB9B ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
18:49:55.0944 0644 sdbus - ok
18:49:55.0991 0644 [ 765A27C3279CE11D14CB9E4F5869FCA5 ] SDRSVC C:\Windows\System32\SDRSVC.dll
18:49:55.0991 0644 SDRSVC - ok
18:49:56.0022 0644 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
18:49:56.0022 0644 secdrv - ok
18:49:56.0038 0644 [ 463B386EBC70F98DA5DFF85F7E654346 ] seclogon C:\Windows\system32\seclogon.dll
18:49:56.0038 0644 seclogon - ok
18:49:56.0053 0644 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
18:49:56.0053 0644 SENS - ok
18:49:56.0069 0644 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
18:49:56.0069 0644 SensrSvc - ok
18:49:56.0085 0644 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
18:49:56.0100 0644 Serenum - ok
18:49:56.0131 0644 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
18:49:56.0131 0644 Serial - ok
18:49:56.0131 0644 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
18:49:56.0147 0644 sermouse - ok
18:49:56.0178 0644 [ C3BC61CE47FF6F4E88AB8A3B429A36AF ] SessionEnv C:\Windows\system32\sessenv.dll
18:49:56.0178 0644 SessionEnv - ok
18:49:56.0194 0644 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
18:49:56.0209 0644 sffdisk - ok
18:49:56.0209 0644 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\DRIVERS\sffp_mmc.sys
18:49:56.0225 0644 sffp_mmc - ok
18:49:56.0241 0644 [ 5588B8C6193EB1522490C122EB94DFFA ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
18:49:56.0241 0644 sffp_sd - ok
18:49:56.0256 0644 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
18:49:56.0272 0644 sfloppy - ok
18:49:56.0303 0644 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
18:49:56.0319 0644 SharedAccess - ok
18:49:56.0334 0644 [ 0298AC45D0EFFFB2DB4BAA7DD186E7BF ] ShellHWDetection C:\Windows\System32\shsvcs.dll
18:49:56.0350 0644 ShellHWDetection - ok
18:49:56.0365 0644 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
18:49:56.0365 0644 SiSRaid2 - ok
18:49:56.0365 0644 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
18:49:56.0381 0644 SiSRaid4 - ok
18:49:56.0397 0644 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
18:49:56.0412 0644 Smb - ok
18:49:56.0443 0644 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
18:49:56.0443 0644 SNMPTRAP - ok
18:49:56.0459 0644 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
18:49:56.0459 0644 spldr - ok
18:49:56.0475 0644 [ 89E8550C5862999FCF482EA562B0E98E ] Spooler C:\Windows\System32\spoolsv.exe
18:49:56.0490 0644 Spooler - ok
18:49:56.0615 0644 [ 913D843498553A1BC8F8DBAD6358E49F ] sppsvc C:\Windows\system32\sppsvc.exe
18:49:56.0677 0644 sppsvc - ok
18:49:56.0677 0644 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
18:49:56.0693 0644 sppuinotify - ok
18:49:56.0740 0644 [ 9E399476E5D5E0D3C8822C857A7E9A9A ] SRTSP C:\Windows\system32\drivers\NISx64\1007000.01E\SRTSP64.SYS
18:49:56.0740 0644 SRTSP - ok
18:49:56.0755 0644 [ 3D7717B582F0365E75071556936E5A6B ] SRTSPX C:\Windows\system32\drivers\NISx64\1007000.01E\SRTSPX64.SYS
18:49:56.0755 0644 SRTSPX - ok
18:49:56.0787 0644 [ EC8F67289105BF270498095F14963464 ] srv C:\Windows\system32\DRIVERS\srv.sys
18:49:56.0802 0644 srv - ok
18:49:56.0818 0644 [ F773D2ED090B7BAA1C1A034F3CA476C8 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
18:49:56.0833 0644 srv2 - ok
18:49:56.0849 0644 [ 0C4540311E11664B245A263E1154CEF8 ] SrvHsfHDA C:\Windows\system32\DRIVERS\VSTAZL6.SYS
18:49:56.0880 0644 SrvHsfHDA - ok
18:49:56.0943 0644 [ 02071D207A9858FBE3A48CBFD59C4A04 ] SrvHsfV92 C:\Windows\system32\DRIVERS\VSTDPV6.SYS
18:49:56.0974 0644 SrvHsfV92 - ok
18:49:57.0005 0644 [ 18E40C245DBFAF36FD0134A7EF2DF396 ] SrvHsfWinac C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
18:49:57.0036 0644 SrvHsfWinac - ok
18:49:57.0067 0644 [ 26E84D3649019C3244622E654DFCD75B ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
18:49:57.0067 0644 srvnet - ok
18:49:57.0130 0644 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
18:49:57.0130 0644 SSDPSRV - ok
18:49:57.0145 0644 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
18:49:57.0145 0644 SstpSvc - ok
18:49:57.0223 0644 [ 2185595C6663660FDC90F5A2A79E2155 ] STacSV C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_b87ff64c8b56b7db\STacSV64.exe
18:49:57.0223 0644 STacSV - ok
18:49:57.0239 0644 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
18:49:57.0239 0644 stexstor - ok
18:49:57.0286 0644 [ 8D1CE4322A35F840711B87927CB57C05 ] STHDA C:\Windows\system32\DRIVERS\stwrt64.sys
18:49:57.0301 0644 STHDA - ok
18:49:57.0348 0644 [ 52D0E33B681BD0F33FDC08812FEE4F7D ] stisvc C:\Windows\System32\wiaservc.dll
18:49:57.0364 0644 stisvc - ok
18:49:57.0379 0644 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
18:49:57.0395 0644 swenum - ok
18:49:57.0426 0644 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
18:49:57.0442 0644 swprv - ok
18:49:57.0489 0644 [ 4F87BB5389A93778EBC363B28271A65B ] SymEFA C:\Windows\system32\drivers\NISx64\1007000.01E\SYMEFA64.SYS
18:49:57.0504 0644 SymEFA - ok
18:49:57.0567 0644 [ 7E4D281982E19ABD06728C7EE9AC40A8 ] SymEvent C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
18:49:57.0567 0644 SymEvent - ok
18:49:57.0598 0644 [ 6320BF296B62D324890866A13A296FC0 ] SYMFW C:\Windows\system32\drivers\NISx64\1007000.01E\SYMFW.SYS
18:49:57.0598 0644 SYMFW - ok
18:49:57.0613 0644 [ 212BBF5A964513980D5DE9397381534F ] SymIM C:\Windows\system32\DRIVERS\SymIMv.sys
18:49:57.0613 0644 SymIM - ok
18:49:57.0645 0644 [ 21DCC664A1E0AF7BF4C8ADED8C9FF9D5 ] SYMNDISV C:\Windows\system32\drivers\NISx64\1007000.01E\SYMNDISV.SYS
18:49:57.0645 0644 SYMNDISV - ok
18:49:57.0660 0644 [ 56A1CB71B8BB7BA9C41D2C9706DF43CD ] SYMTDI C:\Windows\system32\drivers\NISx64\1007000.01E\SYMTDI.SYS
18:49:57.0676 0644 SYMTDI - ok
18:49:57.0723 0644 [ 3C1284516A62078FB68F768DE4F1A7BE ] SysMain C:\Windows\system32\sysmain.dll
18:49:57.0754 0644 SysMain - ok
18:49:57.0785 0644 [ 238935C3CF2854886DC7CBB2A0E2CC66 ] TabletInputService C:\Windows\System32\TabSvc.dll
18:49:57.0785 0644 TabletInputService - ok
18:49:57.0801 0644 [ 884264AC597B690C5707C89723BB8E7B ] TapiSrv C:\Windows\System32\tapisrv.dll
18:49:57.0816 0644 TapiSrv - ok
18:49:57.0816 0644 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
18:49:57.0832 0644 TBS - ok
18:49:57.0894 0644 [ 912107716BAB424C7870E8E6AF5E07E1 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
18:49:57.0925 0644 Tcpip - ok
18:49:57.0972 0644 [ 912107716BAB424C7870E8E6AF5E07E1 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
18:49:57.0988 0644 TCPIP6 - ok
18:49:58.0003 0644 [ 76D078AF6F587B162D50210F761EB9ED ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
18:49:58.0003 0644 tcpipreg - ok
18:49:58.0035 0644 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
18:49:58.0066 0644 TDPIPE - ok
18:49:58.0081 0644 [ E4245BDA3190A582D55ED09E137401A9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
18:49:58.0097 0644 TDTCP - ok
18:49:58.0097 0644 [ 079125C4B17B01FCAEEBCE0BCB290C0F ] tdx C:\Windows\system32\DRIVERS\tdx.sys
18:49:58.0097 0644 tdx - ok
18:49:58.0113 0644 [ C448651339196C0E869A355171875522 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
18:49:58.0113 0644 TermDD - ok
18:49:58.0159 0644 [ 0F05EC2887BFE197AD82A13287D2F404 ] TermService C:\Windows\System32\termsrv.dll
18:49:58.0175 0644 TermService - ok
18:49:58.0191 0644 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
18:49:58.0191 0644 Themes - ok
18:49:58.0222 0644 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
18:49:58.0222 0644 THREADORDER - ok
18:49:58.0237 0644 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
18:49:58.0237 0644 TrkWks - ok
18:49:58.0284 0644 [ 840F7FB849F5887A49BA18C13B2DA920 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
18:49:58.0284 0644 TrustedInstaller - ok
18:49:58.0315 0644 [ 61B96C26131E37B24E93327A0BD1FB95 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
18:49:58.0315 0644 tssecsrv - ok
18:49:58.0347 0644 [ 3836171A2CDF3AF8EF10856DB9835A70 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
18:49:58.0347 0644 tunnel - ok
18:49:58.0362 0644 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
18:49:58.0378 0644 uagp35 - ok
18:49:58.0393 0644 [ D47BAEAD86C65D4F4069D7CE0A4EDCEB ] udfs C:\Windows\system32\DRIVERS\udfs.sys
18:49:58.0409 0644 udfs - ok
18:49:58.0440 0644 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
18:49:58.0440 0644 UI0Detect - ok
18:49:58.0456 0644 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\DRIVERS\uliagpkx.sys
18:49:58.0471 0644 uliagpkx - ok
18:49:58.0487 0644 [ EAB6C35E62B1B0DB0D1B48B671D3A117 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
18:49:58.0487 0644 umbus - ok
18:49:58.0503 0644 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
18:49:58.0518 0644 UmPass - ok
18:49:58.0549 0644 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
18:49:58.0565 0644 upnphost - ok
18:49:58.0581 0644 [ B26AFB54A534D634523C4FB66765B026 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
18:49:58.0581 0644 usbccgp - ok
18:49:58.0596 0644 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\DRIVERS\usbcir.sys
18:49:58.0612 0644 usbcir - ok
18:49:58.0627 0644 [ 2EA4AFF7BE7EB4632E3AA8595B0803B5 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
18:49:58.0627 0644 usbehci - ok
18:49:58.0659 0644 [ 6648C6D7323A2CE0C4776C36CEFBCB14 ] usbfilter C:\Windows\system32\DRIVERS\usbfilter.sys
18:49:58.0659 0644 usbfilter - ok
18:49:58.0690 0644 [ 4C9042B8DF86C1E8E6240C218B99B39B ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
18:49:58.0705 0644 usbhub - ok
18:49:58.0705 0644 [ 58E546BBAF87664FC57E0F6081E4F609 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
18:49:58.0705 0644 usbohci - ok
18:49:58.0721 0644 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
18:49:58.0737 0644 usbprint - ok
18:49:58.0768 0644 [ 080D3820DA6C046BE82FC8B45A893E83 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
18:49:58.0768 0644 USBSTOR - ok
18:49:58.0768 0644 [ 81FB2216D3A60D1284455D511797DB3D ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
18:49:58.0783 0644 usbuhci - ok
18:49:58.0799 0644 [ D501E12614B00A3252073101D6A1A74B ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
18:49:58.0799 0644 usbvideo - ok
18:49:58.0830 0644 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
18:49:58.0830 0644 UxSms - ok
18:49:58.0846 0644 [ 0793F40B9B8A1BDD266296409DBD91EA ] VaultSvc C:\Windows\system32\lsass.exe
18:49:58.0846 0644 VaultSvc - ok
18:49:58.0861 0644 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\DRIVERS\vdrvroot.sys
18:49:58.0861 0644 vdrvroot - ok
18:49:58.0893 0644 [ 44D73E0BBC1D3C8981304BA15135C2F2 ] vds C:\Windows\System32\vds.exe
18:49:58.0908 0644 vds - ok
18:49:58.0924 0644 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
18:49:58.0939 0644 vga - ok
18:49:58.0955 0644 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
18:49:58.0955 0644 VgaSave - ok
18:49:58.0971 0644 [ C82E748660F62A242B2DFAC1442F22A4 ] vhdmp C:\Windows\system32\DRIVERS\vhdmp.sys
18:49:58.0986 0644 vhdmp - ok
18:49:58.0986 0644 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\DRIVERS\viaide.sys
18:49:58.0986 0644 viaide - ok
18:49:59.0002 0644 [ 2B1A3DAE2B4E70DBBA822B7A03FBD4A3 ] volmgr C:\Windows\system32\DRIVERS\volmgr.sys
18:49:59.0002 0644 volmgr - ok
18:49:59.0033 0644 [ 99B0CBB569CA79ACAED8C91461D765FB ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
18:49:59.0033 0644 volmgrx - ok
18:49:59.0080 0644 [ 58F82EED8CA24B461441F9C3E4F0BF5C ] volsnap C:\Windows\system32\DRIVERS\volsnap.sys
18:49:59.0080 0644 volsnap - ok
18:49:59.0111 0644 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
18:49:59.0111 0644 vsmraid - ok
18:49:59.0173 0644 [ 787898BF9FB6D7BD87A36E2D95C899BA ] VSS C:\Windows\system32\vssvc.exe
18:49:59.0205 0644 VSS - ok
18:49:59.0205 0644 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
18:49:59.0205 0644 vwifibus - ok
18:49:59.0220 0644 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
18:49:59.0220 0644 vwififlt - ok
18:49:59.0251 0644 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
18:49:59.0251 0644 W32Time - ok
18:49:59.0283 0644 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
18:49:59.0298 0644 WacomPen - ok
18:49:59.0376 0644 [ 47CA49400643EFFD3F1C9A27E1D69324 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
18:49:59.0392 0644 WANARP - ok
18:49:59.0407 0644 [ 47CA49400643EFFD3F1C9A27E1D69324 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
18:49:59.0423 0644 Wanarpv6 - ok
18:49:59.0454 0644 [ 5AB1BB85BD8B5089CC5D64200DEDAE68 ] wbengine C:\Windows\system32\wbengine.exe
18:49:59.0470 0644 wbengine - ok
18:49:59.0485 0644 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
18:49:59.0501 0644 WbioSrvc - ok
18:49:59.0517 0644 [ 8321C2CA3B62B61B293CDA3451984468 ] wcncsvc C:\Windows\System32\wcncsvc.dll
18:49:59.0532 0644 wcncsvc - ok
18:49:59.0532 0644 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
18:49:59.0548 0644 WcsPlugInService - ok
18:49:59.0563 0644 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
18:49:59.0563 0644 Wd - ok
18:49:59.0579 0644 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
18:49:59.0595 0644 Wdf01000 - ok
18:49:59.0610 0644 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
18:49:59.0610 0644 WdiServiceHost - ok
18:49:59.0626 0644 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
18:49:59.0626 0644 WdiSystemHost - ok
18:49:59.0641 0644 [ 8A438CBB8C032A0C798B0C642FFBE572 ] WebClient C:\Windows\System32\webclnt.dll
18:49:59.0657 0644 WebClient - ok
18:49:59.0673 0644 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
18:49:59.0673 0644 Wecsvc - ok
18:49:59.0704 0644 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
18:49:59.0719 0644 wercplsupport - ok
18:49:59.0719 0644 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
18:49:59.0735 0644 WerSvc - ok
18:49:59.0735 0644 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
18:49:59.0735 0644 WfpLwf - ok
18:49:59.0766 0644 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
18:49:59.0813 0644 WIMMount - ok
18:49:59.0829 0644 WinDefend - ok
18:49:59.0844 0644 WinHttpAutoProxySvc - ok
18:49:59.0891 0644 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
18:49:59.0891 0644 Winmgmt - ok
18:49:59.0953 0644 [ 41FBB751936B387F9179E7F03A74FE29 ] WinRM C:\Windows\system32\WsmSvc.dll
18:50:00.0000 0644 WinRM - ok
18:50:00.0047 0644 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
18:50:00.0094 0644 Wlansvc - ok
18:50:00.0109 0644 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
18:50:00.0125 0644 WmiAcpi - ok
18:50:00.0172 0644 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
18:50:00.0172 0644 wmiApSrv - ok
18:50:00.0203 0644 WMPNetworkSvc - ok
18:50:00.0234 0644 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
18:50:00.0234 0644 WPCSvc - ok
18:50:00.0250 0644 [ 2E57DDF2880A7E52E76F41C7E96D327B ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
18:50:00.0250 0644 WPDBusEnum - ok
18:50:00.0265 0644 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
18:50:00.0265 0644 ws2ifsl - ok
18:50:00.0297 0644 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
18:50:00.0297 0644 wscsvc - ok
18:50:00.0312 0644 WSearch - ok
18:50:00.0375 0644 [ 38340204A2D0228F1E87740FC5E554A7 ] wuauserv C:\Windows\system32\wuaueng.dll
18:50:00.0421 0644 wuauserv - ok
18:50:00.0437 0644 [ 7CADC74271DD6461C452C271B30BD378 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
18:50:00.0437 0644 WudfPf - ok
18:50:00.0468 0644 [ 3B197AF0FFF08AA66B6B2241CA538D64 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
18:50:00.0484 0644 WUDFRd - ok
18:50:00.0499 0644 [ B551D6637AA0E132C18AC6E504F7B79B ] wudfsvc C:\Windows\System32\WUDFSvc.dll
18:50:00.0499 0644 wudfsvc - ok
18:50:00.0546 0644 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
18:50:00.0546 0644 WwanSvc - ok
18:50:00.0577 0644 [ B3EEACF62445E24FBB2CD4B0FB4DB026 ] yukonw7 C:\Windows\system32\DRIVERS\yk62x64.sys
18:50:00.0593 0644 yukonw7 - ok
18:50:00.0609 0644 ================ Scan global ===============================
18:50:00.0624 0644 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
18:50:00.0640 0644 [ 457B44AB6D502E55F64A867D4F35C76C ] C:\Windows\system32\winsrv.dll
18:50:00.0655 0644 [ 457B44AB6D502E55F64A867D4F35C76C ] C:\Windows\system32\winsrv.dll
18:50:00.0671 0644 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
18:50:00.0702 0644 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
18:50:00.0702 0644 [Global] - ok
18:50:00.0702 0644 ================ Scan MBR ==================================
18:50:00.0718 0644 [ 58030563F89AE7CE3A8345D12E4FC82F ] \Device\Harddisk0\DR0
18:50:01.0123 0644 \Device\Harddisk0\DR0 - ok
18:50:01.0139 0644 [ 86B3F2E5E3D4215943DE08BC5A4613D0 ] \Device\Harddisk1\DR1
18:50:04.0259 0644 \Device\Harddisk1\DR1 - ok
18:50:04.0259 0644 ================ Scan VBR ==================================
18:50:04.0259 0644 [ EDA2936852966D12CC3821644C68CD2C ] \Device\Harddisk0\DR0\Partition1
18:50:04.0259 0644 \Device\Harddisk0\DR0\Partition1 - ok
18:50:04.0290 0644 [ 1530ED6407F903F8F0AD609407B4A799 ] \Device\Harddisk0\DR0\Partition2
18:50:04.0290 0644 \Device\Harddisk0\DR0\Partition2 - ok
18:50:04.0321 0644 [ DBB32291C8AA2957CF3290F462648AAB ] \Device\Harddisk0\DR0\Partition3
18:50:04.0321 0644 \Device\Harddisk0\DR0\Partition3 - ok
18:50:04.0337 0644 [ AE67D5D94948951086AF2E51BCA1A481 ] \Device\Harddisk0\DR0\Partition4
18:50:04.0337 0644 \Device\Harddisk0\DR0\Partition4 - ok
18:50:04.0337 0644 ============================================================
18:50:04.0337 0644 Scan finished
18:50:04.0337 0644 ============================================================
18:50:04.0368 4668 Detected object count: 0
18:50:04.0368 4668 Actual detected object count: 0

3- Ran aswMBR. Log;

aswMBR version 0.9.9.1707 Copyright© 2011 AVAST Software
Run date: 2013-01-14 18:51:13
-----------------------------
18:51:13.540 OS Version: Windows x64 6.1.7600
18:51:13.540 Number of processors: 2 586 0x6B02
18:51:13.556 ComputerName: JUSTINE-PC UserName: Justine
18:51:15.428 Initialize success
18:52:14.204 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
18:52:14.204 Disk 0 Vendor: Hitachi_HTS723232L9A360 FC4OC60D Size: 305245MB BusType: 11
18:52:14.219 Disk 1 \Device\Harddisk1\DR1 -> \Device\0000009f
18:52:14.219 Disk 1 Vendor: Size: 305245MB BusType: 0
18:52:14.266 Disk 0 MBR read successfully
18:52:14.282 Disk 0 MBR scan
18:52:14.282 Disk 0 unknown MBR code
18:52:14.297 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 199 MB offset 2048
18:52:14.313 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 291974 MB offset 409600
18:52:14.344 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 12967 MB offset 598372352
18:52:14.360 Disk 0 Partition 4 00 0C FAT32 LBA MSDOS5.0 103 MB offset 624928768
18:52:14.391 Disk 0 scanning C:\Windows\system32\drivers
18:52:18.712 Service scanning
18:52:29.320 Modules scanning
18:52:29.351 Disk 0 trace - called modules:
18:52:29.382 ntoskrnl.exe CLASSPNP.SYS disk.sys hpdskflt.sys ACPI.sys ataport.SYS PCIIDEX.SYS hal.dll msahci.sys
18:52:29.398 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8002d48060]
18:52:29.398 3 CLASSPNP.SYS[fffff880010d043f] -> nt!IofCallDriver -> [0xfffffa8002d43040]
18:52:29.414 5 hpdskflt.sys[fffff88001dc2289] -> nt!IofCallDriver -> [0xfffffa8002ca4950]
18:52:29.414 7 ACPI.sys[fffff88000e36781] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0xfffffa8002ceb060]
18:52:29.429 Scan finished successfully
18:52:53.110 Disk 0 MBR has been saved successfully to "C:\Users\Justine\Desktop\MBR.dat"
18:52:53.110 The log file has been saved successfully to "C:\Users\Justine\Desktop\aswMBR.txt"



Thanks,

Nathan

#9 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,072 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:05:26 PM

Posted 15 January 2013 - 11:15 AM

Sorry Nathan ,appears we need to get a deeper look to find this annoyance. Please follow this Preparation Guide and post in a new topic.

Let me know if all went well.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users