Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Slow PC - Grandpa's got Adware/Virus


  • Please log in to reply
58 replies to this topic

#1 MCorlione

MCorlione

  • Members
  • 68 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Minnesota
  • Local time:06:23 AM

Posted 29 January 2013 - 12:05 PM

Hello,
Grandpa's virus protection ran out quite some time ago. I ran a simple Spybot - Search & Destroy, and it had many, many Adware/Viruses that it could not remove. Going to need some help on this project. Let me know what you want me to run first to give you a better idea what you are facing. Thank-you!!!

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:23 AM

Posted 29 January 2013 - 01:39 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here.If you get crashes in normal mode,run it in safemode with networking

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 MCorlione

MCorlione
  • Topic Starter

  • Members
  • 68 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Minnesota
  • Local time:06:23 AM

Posted 29 January 2013 - 02:50 PM

Here is TDSSkiller:
12:59:56.0147 3824 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
12:59:56.0541 3824 ============================================================
12:59:56.0541 3824 Current date / time: 2013/01/29 12:59:56.0541
12:59:56.0541 3824 SystemInfo:
12:59:56.0541 3824
12:59:56.0541 3824 OS Version: 6.0.6002 ServicePack: 2.0
12:59:56.0541 3824 Product type: Workstation
12:59:56.0542 3824 ComputerName: DAN-PC
12:59:56.0542 3824 UserName: Dan
12:59:56.0542 3824 Windows directory: C:\Windows
12:59:56.0542 3824 System windows directory: C:\Windows
12:59:56.0542 3824 Running under WOW64
12:59:56.0542 3824 Processor architecture: Intel x64
12:59:56.0542 3824 Number of processors: 2
12:59:56.0542 3824 Page size: 0x1000
12:59:56.0542 3824 Boot type: Normal boot
12:59:56.0542 3824 ============================================================
12:59:58.0578 3824 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
12:59:58.0585 3824 ============================================================
12:59:58.0585 3824 \Device\Harddisk0\DR0:
12:59:58.0585 3824 MBR partitions:
12:59:58.0585 3824 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x3878EFC1
12:59:58.0585 3824 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x3878F000, BlocksNum 0x1BF5800
12:59:58.0585 3824 ============================================================
12:59:58.0594 3824 C: <-> \Device\Harddisk0\DR0\Partition1
12:59:58.0639 3824 D: <-> \Device\Harddisk0\DR0\Partition2
12:59:58.0639 3824 ============================================================
12:59:58.0639 3824 Initialize success
12:59:58.0639 3824 ============================================================
13:00:49.0950 3944 ============================================================
13:00:49.0950 3944 Scan started
13:00:49.0950 3944 Mode: Manual;
13:00:49.0950 3944 ============================================================
13:00:50.0432 3944 ================ Scan system memory ========================
13:00:50.0433 3944 System memory - ok
13:00:50.0433 3944 ================ Scan services =============================
13:00:50.0583 3944 [ 60FBB29CCCE48B4C3A6517CAF42C3496 ] Accelerometer C:\Windows\system32\DRIVERS\Accelerometer.sys
13:00:50.0585 3944 Accelerometer - ok
13:00:50.0627 3944 [ 1965AAFFAB07E3FB03C77F81BEBA3547 ] ACPI C:\Windows\system32\drivers\acpi.sys
13:00:50.0633 3944 ACPI - ok
13:00:50.0794 3944 [ 3927397AC60D943DAF8808AFFED582B7 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
13:00:50.0844 3944 AdobeARMservice - ok
13:00:51.0009 3944 [ 424877CB9D5517F980FF7BACA2EB379D ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
13:00:51.0013 3944 AdobeFlashPlayerUpdateSvc - ok
13:00:51.0095 3944 [ F14215E37CF124104575073F782111D2 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
13:00:51.0103 3944 adp94xx - ok
13:00:51.0125 3944 [ 7D05A75E3066861A6610F7EE04FF085C ] adpahci C:\Windows\system32\drivers\adpahci.sys
13:00:51.0131 3944 adpahci - ok
13:00:51.0137 3944 [ 820A201FE08A0C345B3BEDBC30E1A77C ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
13:00:51.0140 3944 adpu160m - ok
13:00:51.0164 3944 [ 9B4AB6854559DC168FBB4C24FC52E794 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
13:00:51.0167 3944 adpu320 - ok
13:00:51.0224 3944 [ 0F421175574BFE0BF2F4D8E910A253BB ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
13:00:51.0225 3944 AeLookupSvc - ok
13:00:51.0358 3944 [ 7F66523A27754AFCFECAE2F5EB643A4A ] AESTFilters C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_bd5387da\AESTSr64.exe
13:00:51.0360 3944 AESTFilters - ok
13:00:51.0440 3944 [ C4F6CE6087760AD70960C9EB130E7943 ] AFD C:\Windows\system32\drivers\afd.sys
13:00:51.0447 3944 AFD - ok
13:00:51.0508 3944 [ 8B0D8B5BAFD4C9D57B41426BC68B32F9 ] AgereModemAudio C:\Windows\system32\agr64svc.exe
13:00:51.0509 3944 AgereModemAudio - ok
13:00:51.0550 3944 [ 3627A62B10284FFBF862BFD49928EDF4 ] AgereSoftModem C:\Windows\system32\DRIVERS\agrsm64.sys
13:00:51.0584 3944 AgereSoftModem - ok
13:00:51.0663 3944 [ F6F6793B7F17B550ECFDBD3B229173F7 ] agp440 C:\Windows\system32\drivers\agp440.sys
13:00:51.0664 3944 agp440 - ok
13:00:51.0708 3944 [ 222CB641B4B8A1D1126F8033F9FD6A00 ] aic78xx C:\Windows\system32\drivers\djsvs.sys
13:00:51.0710 3944 aic78xx - ok
13:00:51.0723 3944 [ 5922F4F59B7868F3D74BBBBEB7B825A3 ] ALG C:\Windows\System32\alg.exe
13:00:51.0725 3944 ALG - ok
13:00:51.0766 3944 [ E0CA5BB8E6C79533DC6B1DA7361A201E ] aliide C:\Windows\system32\drivers\aliide.sys
13:00:51.0767 3944 aliide - ok
13:00:51.0771 3944 [ 7034F8D1B9703D711D3F92C95DEB377D ] amdide C:\Windows\system32\drivers\amdide.sys
13:00:51.0773 3944 amdide - ok
13:00:51.0805 3944 [ CDC3632A3A5EA4DBB83E46076A3165A1 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
13:00:51.0807 3944 AmdK8 - ok
13:00:51.0877 3944 [ 85180CF88C5EBAD73B452A43A004CA51 ] AOL ACS C:\Program Files (x86)\Common Files\AOL\ACS\AOLAcsd.exe
13:00:51.0878 3944 AOL ACS - ok
13:00:51.0933 3944 [ 9C37B3FD5615477CB9A0CD116CF43F5C ] Appinfo C:\Windows\System32\appinfo.dll
13:00:51.0935 3944 Appinfo - ok
13:00:51.0945 3944 [ BA8417D4765F3988FF921F30F630E303 ] arc C:\Windows\system32\drivers\arc.sys
13:00:51.0947 3944 arc - ok
13:00:51.0953 3944 [ 9D41C435619733B34CC16A511E644B11 ] arcsas C:\Windows\system32\drivers\arcsas.sys
13:00:51.0955 3944 arcsas - ok
13:00:52.0005 3944 [ 22D13FF3DAFEC2A80634752B1EAA2DE6 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
13:00:52.0006 3944 AsyncMac - ok
13:00:52.0059 3944 [ E68D9B3A3905619732F7FE039466A623 ] atapi C:\Windows\system32\drivers\atapi.sys
13:00:52.0060 3944 atapi - ok
13:00:52.0105 3944 [ 79318C744693EC983D20E9337A2F8196 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
13:00:52.0112 3944 AudioEndpointBuilder - ok
13:00:52.0128 3944 [ 79318C744693EC983D20E9337A2F8196 ] AudioSrv C:\Windows\System32\Audiosrv.dll
13:00:52.0130 3944 AudioSrv - ok
13:00:52.0187 3944 [ 95AED7BB68CF3381AF19DA81BC7DD3FB ] avgtp C:\Windows\system32\drivers\avgtpx64.sys
13:00:52.0188 3944 avgtp - ok
13:00:52.0282 3944 [ FFB96C2589FFA60473EAD78B39FBDE29 ] BFE C:\Windows\System32\bfe.dll
13:00:52.0288 3944 BFE - ok
13:00:52.0471 3944 [ 5B1FE9D351C284701C8051DA2AA81DF6 ] BHDrvx64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_18.1.0.37\Definitions\BASHDefs\20120413.001\BHDrvx64.sys
13:00:52.0493 3944 BHDrvx64 - ok
13:00:52.0578 3944 [ 6D316F4859634071CC25C4FD4589AD2C ] BITS C:\Windows\System32\qmgr.dll
13:00:52.0600 3944 BITS - ok
13:00:52.0655 3944 [ 79FEEB40056683F8F61398D81DDA65D2 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
13:00:52.0657 3944 blbdrive - ok
13:00:52.0686 3944 [ 2348447A80920B2493A9B582A23E81E1 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
13:00:52.0688 3944 bowser - ok
13:00:52.0735 3944 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
13:00:52.0737 3944 BrFiltLo - ok
13:00:52.0750 3944 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
13:00:52.0751 3944 BrFiltUp - ok
13:00:52.0799 3944 [ A1B39DE453433B115B4EA69EE0343816 ] Browser C:\Windows\System32\browser.dll
13:00:52.0801 3944 Browser - ok
13:00:52.0843 3944 [ F0F0BA4D815BE446AA6A4583CA3BCA9B ] Brserid C:\Windows\system32\drivers\brserid.sys
13:00:52.0845 3944 Brserid - ok
13:00:52.0871 3944 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
13:00:52.0872 3944 BrSerWdm - ok
13:00:52.0884 3944 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
13:00:52.0885 3944 BrUsbMdm - ok
13:00:52.0901 3944 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
13:00:52.0902 3944 BrUsbSer - ok
13:00:52.0974 3944 [ EA7E57F87D6FEE5FD6C5F813C04E8CD2 ] BrYNSvc C:\Program Files (x86)\Browny02\BrYNSvc.exe
13:00:52.0975 3944 BrYNSvc - ok
13:00:53.0033 3944 [ 471FF09330A53177BBE9FD6DDF8A8259 ] BthEnum C:\Windows\system32\DRIVERS\BthEnum.sys
13:00:53.0034 3944 BthEnum - ok
13:00:53.0067 3944 [ E0777B34E05F8A82A21856EFC900C29F ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
13:00:53.0070 3944 BTHMODEM - ok
13:00:53.0083 3944 [ BEFC5311736B475AC5B60C14FF7C775A ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
13:00:53.0085 3944 BthPan - ok
13:00:53.0146 3944 [ 7D104F22C04A76F0D2F96F789AC07FCB ] BTHPORT C:\Windows\system32\Drivers\BTHport.sys
13:00:53.0168 3944 BTHPORT - ok
13:00:53.0210 3944 [ 22E65FFD640F16968F855F5B3528D366 ] BthServ C:\Windows\System32\bthserv.dll
13:00:53.0211 3944 BthServ - ok
13:00:53.0223 3944 [ D9324F0C142267961CE900BFC3798BB1 ] BTHUSB C:\Windows\system32\Drivers\BTHUSB.sys
13:00:53.0224 3944 BTHUSB - ok
13:00:53.0231 3944 [ B4D787DB8D30793A4D4DF9FEED18F136 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
13:00:53.0233 3944 cdfs - ok
13:00:53.0286 3944 [ C025AA69BE3D0D25C7A2E746EF6F94FC ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
13:00:53.0288 3944 cdrom - ok
13:00:53.0343 3944 [ 5A268127633C7EE2A7FB87F39D748D56 ] CertPropSvc C:\Windows\System32\certprop.dll
13:00:53.0344 3944 CertPropSvc - ok
13:00:53.0424 3944 [ 622FCF264119F7DF127BE353F796B319 ] CieoNetUtilities_0eService C:\PROGRA~2\CIEONE~2\bar\1.bin\0ebarsvc.exe
13:00:53.0425 3944 CieoNetUtilities_0eService - ok
13:00:53.0432 3944 [ 02EA568D498BBDD4BA55BF3FCE34D456 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
13:00:53.0433 3944 circlass - ok
13:00:53.0478 3944 [ 3DCA9A18B204939CFB24BEA53E31EB48 ] CLFS C:\Windows\system32\CLFS.sys
13:00:53.0484 3944 CLFS - ok
13:00:53.0585 3944 [ 8EE772032E2FE80A924F3B8DD5082194 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
13:00:53.0587 3944 clr_optimization_v2.0.50727_32 - ok
13:00:53.0661 3944 [ CE07A466201096F021CD09D631B21540 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
13:00:53.0663 3944 clr_optimization_v2.0.50727_64 - ok
13:00:53.0725 3944 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
13:00:53.0728 3944 clr_optimization_v4.0.30319_32 - ok
13:00:53.0799 3944 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
13:00:53.0802 3944 clr_optimization_v4.0.30319_64 - ok
13:00:53.0855 3944 [ B52D9A14CE4101577900A364BA86F3DF ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
13:00:53.0856 3944 CmBatt - ok
13:00:53.0871 3944 [ 8C6AA24C1D7273A02284588426AB8CE3 ] cmdide C:\Windows\system32\drivers\cmdide.sys
13:00:53.0872 3944 cmdide - ok
13:00:53.0946 3944 [ F9A79C5B27037821112C50A9C8FB367A ] Com4QLBEx C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
13:00:53.0950 3944 Com4QLBEx - ok
13:00:53.0957 3944 [ 7FB8AD01DB0EABE60C8A861531A8F431 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
13:00:53.0958 3944 Compbatt - ok
13:00:53.0963 3944 COMSysApp - ok
13:00:54.0002 3944 [ A8585B6412253803CE8EFCBD6D6DC15C ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
13:00:54.0003 3944 crcdisk - ok
13:00:54.0056 3944 [ CA78B312C44E4D52E842C2C8BD48E452 ] CryptSvc C:\Windows\system32\cryptsvc.dll
13:00:54.0059 3944 CryptSvc - ok
13:00:54.0146 3944 [ CF8B9A3A5E7DC57724A89D0C3E8CF9EF ] DcomLaunch C:\Windows\system32\rpcss.dll
13:00:54.0169 3944 DcomLaunch - ok
13:00:54.0238 3944 [ D0B322012EBAB1F29E3AD4A8568B2DBA ] DefaultTabSearch C:\Program Files (x86)\DefaultTab\DefaultTabSearch.exe
13:00:54.0242 3944 DefaultTabSearch - ok
13:00:54.0378 3944 [ 34AE0DFA3EE3B5B9975042D87332D0B7 ] DefaultTabUpdate C:\Users\Dan\AppData\Roaming\DefaultTab\DefaultTab\DTUpdate.exe
13:00:54.0380 3944 DefaultTabUpdate - ok
13:00:54.0421 3944 [ 8B722BA35205C71E7951CDC4CDBADE19 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
13:00:54.0423 3944 DfsC - ok
13:00:54.0541 3944 [ C647F468F7DE343DF8C143655C5557D4 ] DFSR C:\Windows\system32\DFSR.exe
13:00:54.0640 3944 DFSR - ok
13:00:54.0743 3944 [ 3ED0321127CE70ACDAABBF77E157C2A7 ] Dhcp C:\Windows\System32\dhcpcsvc.dll
13:00:54.0748 3944 Dhcp - ok
13:00:54.0775 3944 [ B0107E40ECDB5FA692EBF832F295D905 ] disk C:\Windows\system32\drivers\disk.sys
13:00:54.0777 3944 disk - ok
13:00:54.0804 3944 [ 06230F1B721494A6DF8D47FD395BB1B0 ] Dnscache C:\Windows\System32\dnsrslvr.dll
13:00:54.0807 3944 Dnscache - ok
13:00:54.0841 3944 [ 1A7156DD1E850E9914E5E991E3225B94 ] dot3svc C:\Windows\System32\dot3svc.dll
13:00:54.0845 3944 dot3svc - ok
13:00:54.0923 3944 [ 74C02B1717740C3B8039539E23E4B53F ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys
13:00:54.0925 3944 Dot4 - ok
13:00:54.0951 3944 [ 08321D1860235BF42CF2854234337AEA ] Dot4Print C:\Windows\system32\DRIVERS\Dot4Prt.sys
13:00:54.0953 3944 Dot4Print - ok
13:00:54.0982 3944 [ 4ADCCF0124F2B6911D3786A5D0E779E5 ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
13:00:54.0984 3944 dot4usb - ok
13:00:55.0036 3944 [ 1583B39790DB3EAEC7EDB0CB0140C708 ] DPS C:\Windows\system32\dps.dll
13:00:55.0038 3944 DPS - ok
13:00:55.0069 3944 dqpndtli - ok
13:00:55.0121 3944 [ F1A78A98CFC2EE02144C6BEC945447E6 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
13:00:55.0122 3944 drmkaud - ok
13:00:55.0171 3944 [ B8E554E502D5123BC111F99D6A2181B4 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
13:00:55.0193 3944 DXGKrnl - ok
13:00:55.0212 3944 [ 264CEE7B031A9D6C827F3D0CB031F2FE ] E1G60 C:\Windows\system32\DRIVERS\E1G6032E.sys
13:00:55.0215 3944 E1G60 - ok
13:00:55.0241 3944 [ C2303883FD9BE49DC36A6400643002EA ] EapHost C:\Windows\System32\eapsvc.dll
13:00:55.0273 3944 EapHost - ok
13:00:55.0338 3944 [ 5F94962BE5A62DB6E447FF6470C4F48A ] Ecache C:\Windows\system32\drivers\ecache.sys
13:00:55.0340 3944 Ecache - ok
13:00:55.0411 3944 [ 0C3F9EFF8DDD9F9EB56D754B4620155F ] eeCtrl C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
13:00:55.0419 3944 eeCtrl - ok
13:00:55.0461 3944 [ 14CE384D2E27B64C256BDA4DC39C312D ] ehRecvr C:\Windows\ehome\ehRecvr.exe
13:00:55.0467 3944 ehRecvr - ok
13:00:55.0481 3944 [ B93159C1313D66FDFBBE876F5189CD52 ] ehSched C:\Windows\ehome\ehsched.exe
13:00:55.0484 3944 ehSched - ok
13:00:55.0529 3944 [ F5EE2527D74449868E3C3227A59BCD28 ] ehstart C:\Windows\ehome\ehstart.dll
13:00:55.0530 3944 ehstart - ok
13:00:55.0552 3944 [ C4636D6E10469404AB5308D9FD45ED07 ] elxstor C:\Windows\system32\drivers\elxstor.sys
13:00:55.0559 3944 elxstor - ok
13:00:55.0631 3944 [ A9B18B63A4FD6BAAB83326706D857FAB ] EMDMgmt C:\Windows\system32\emdmgmt.dll
13:00:55.0638 3944 EMDMgmt - ok
13:00:55.0664 3944 [ 0E3F3301052673CF16813E65D5DE98AD ] enecir C:\Windows\system32\DRIVERS\enecir.sys
13:00:55.0666 3944 enecir - ok
13:00:55.0726 3944 [ 8C0F9B877BC0B7FFD327EF55F9EFB642 ] EraserUtilRebootDrv C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
13:00:55.0728 3944 EraserUtilRebootDrv - ok
13:00:55.0745 3944 [ BC3A58E938BB277E46BF4B3003B01ABD ] ErrDev C:\Windows\system32\drivers\errdev.sys
13:00:55.0746 3944 ErrDev - ok
13:00:55.0780 3944 [ E12F22B73F153DECE721CD45EC05B4AF ] EventSystem C:\Windows\system32\es.dll
13:00:55.0786 3944 EventSystem - ok
13:00:55.0813 3944 [ 486844F47B6636044A42454614ED4523 ] exfat C:\Windows\system32\drivers\exfat.sys
13:00:55.0816 3944 exfat - ok
13:00:55.0853 3944 [ 1A4BEE34277784619DDAF0422C0C6E23 ] fastfat C:\Windows\system32\drivers\fastfat.sys
13:00:55.0857 3944 fastfat - ok
13:00:55.0873 3944 [ 81B79B6DF71FA1D2C6D688D830616E39 ] fdc C:\Windows\system32\DRIVERS\fdc.sys
13:00:55.0875 3944 fdc - ok
13:00:55.0910 3944 [ BB9267ACACD8B7533DD936C34A0CBA5E ] fdPHost C:\Windows\system32\fdPHost.dll
13:00:55.0912 3944 fdPHost - ok
13:00:55.0920 3944 [ 300C80931EABBE1DB7591C516EFE8D0F ] FDResPub C:\Windows\system32\fdrespub.dll
13:00:55.0922 3944 FDResPub - ok
13:00:55.0940 3944 [ 457B7D1D533E4BD62A99AED9C7BB4C59 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
13:00:55.0942 3944 FileInfo - ok
13:00:55.0958 3944 [ D421327FD6EFCCAF884A54C58E1B0D7F ] Filetrace C:\Windows\system32\drivers\filetrace.sys
13:00:55.0959 3944 Filetrace - ok
13:00:55.0975 3944 [ 230923EA2B80F79B0F88D90F87B87EBD ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
13:00:55.0976 3944 flpydisk - ok
13:00:56.0010 3944 [ E3041BC26D6930D61F42AEDB79C91720 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
13:00:56.0015 3944 FltMgr - ok
13:00:56.0101 3944 [ BE1C5BD1CA7ED015BC6FA1AE67E592C8 ] FontCache C:\Windows\system32\FntCache.dll
13:00:56.0134 3944 FontCache - ok
13:00:56.0230 3944 [ BC5B0BE5AF3510B0FD8C140EE42C6D3E ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
13:00:56.0232 3944 FontCache3.0.0.0 - ok
13:00:56.0255 3944 [ 5779B86CD8B32519FBECB136394D946A ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
13:00:56.0256 3944 Fs_Rec - ok
13:00:56.0272 3944 [ C8E416668D3DC2BE3D4FE4C79224997F ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
13:00:56.0275 3944 gagp30kx - ok
13:00:56.0372 3944 [ 617DC2877015270914CA3C03873560D5 ] GameConsoleService C:\Program Files (x86)\HP Games\My HP Game Console\GameConsoleService.exe
13:00:56.0438 3944 GameConsoleService - ok
13:00:56.0507 3944 [ A0E1B575BA8F504968CD40C0FAEB2384 ] gpsvc C:\Windows\System32\gpsvc.dll
13:00:56.0529 3944 gpsvc - ok
13:00:56.0617 3944 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
13:00:56.0620 3944 gupdate - ok
13:00:56.0642 3944 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
13:00:56.0643 3944 gupdatem - ok
13:00:56.0694 3944 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
13:00:56.0697 3944 gusvc - ok
13:00:56.0767 3944 [ DF45F8142DC6DF9D18C39B3EFFBD0409 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
13:00:56.0773 3944 HdAudAddService - ok
13:00:56.0829 3944 [ F942C5820205F2FB453243EDFEC82A3D ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
13:00:56.0852 3944 HDAudBus - ok
13:00:56.0868 3944 [ B4881C84A180E75B8C25DC1D726C375F ] HidBth C:\Windows\system32\drivers\hidbth.sys
13:00:56.0870 3944 HidBth - ok
13:00:56.0906 3944 [ 5F47839455D01FF6403B008D481A6F5B ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
13:00:56.0907 3944 HidIr - ok
13:00:56.0950 3944 [ 59361D38A297755D46A540E450202B2A ] hidserv C:\Windows\system32\hidserv.dll
13:00:56.0951 3944 hidserv - ok
13:00:56.0977 3944 [ 443BDD2D30BB4F00795C797E2CF99EDF ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
13:00:56.0978 3944 HidUsb - ok
13:00:57.0008 3944 [ B12F367EA39C0795FD57E31242CE1A5A ] hkmsvc C:\Windows\system32\kmsvc.dll
13:00:57.0010 3944 hkmsvc - ok
13:00:57.0045 3944 [ A19B0BB5A7EB6DF2DD4A0711D36955EE ] HP Health Check Service c:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
13:00:57.0047 3944 HP Health Check Service - ok
13:00:57.0097 3944 [ D7109A1E6BD2DFDBCBA72A6BC626A13B ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
13:00:57.0098 3944 HpCISSs - ok
13:00:57.0169 3944 [ 4A435CA815A54639CA09DDF75D751EBC ] hpdskflt C:\Windows\system32\DRIVERS\hpdskflt.sys
13:00:57.0170 3944 hpdskflt - ok
13:00:57.0297 3944 [ 0A3C6AA4A9FC38C20BA4EAC2C3351C05 ] hpqcxs08 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
13:00:57.0302 3944 hpqcxs08 - ok
13:00:57.0347 3944 [ DF446BA625CC441617843E87798CE048 ] hpqddsvc C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
13:00:57.0350 3944 hpqddsvc - ok
13:00:57.0411 3944 [ 9AF482D058BE59CC28BCE52E7C4B747C ] HpqKbFiltr C:\Windows\system32\DRIVERS\HpqKbFiltr.sys
13:00:57.0412 3944 HpqKbFiltr - ok
13:00:57.0467 3944 [ FDF273A845F1FFCCEADF363AAF47582F ] hpqwmiex C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
13:00:57.0471 3944 hpqwmiex - ok
13:00:57.0484 3944 [ 6BF024EA61D7894BF4AF0B10A90B546E ] hpsrv C:\Windows\system32\Hpservice.exe
13:00:57.0486 3944 hpsrv - ok
13:00:57.0513 3944 [ 098F1E4E5C9CB5B0063A959063631610 ] HTTP C:\Windows\system32\drivers\HTTP.sys
13:00:57.0536 3944 HTTP - ok
13:00:57.0576 3944 [ DA94C854CEA5FAC549D4E1F6E88349E8 ] i2omp C:\Windows\system32\drivers\i2omp.sys
13:00:57.0577 3944 i2omp - ok
13:00:57.0619 3944 [ CBB597659A2713CE0C9CC20C88C7591F ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
13:00:57.0620 3944 i8042prt - ok
13:00:57.0636 3944 [ 3E3BF3627D886736D0B4E90054F929F6 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
13:00:57.0641 3944 iaStorV - ok
13:00:57.0717 3944 [ 6F95324909B502E2651442C1548AB12F ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
13:00:57.0720 3944 IDriverT - ok
13:00:57.0819 3944 [ 749F5F8CEDCA70F2A512945325FC489D ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
13:00:57.0837 3944 idsvc - ok
13:00:57.0968 3944 [ 18C40C3F368323B203ACE403CB430DB1 ] IDSVia64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_18.1.0.37\Definitions\IPSDefs\20120420.001\IDSvia64.sys
13:00:57.0975 3944 IDSVia64 - ok
13:00:58.0002 3944 [ 8C3951AD2FE886EF76C7B5027C3125D3 ] iirsp C:\Windows\system32\drivers\iirsp.sys
13:00:58.0003 3944 iirsp - ok
13:00:58.0050 3944 [ 0C9EA6E654E7B0471741E343A6C671AF ] IKEEXT C:\Windows\System32\ikeext.dll
13:00:58.0072 3944 IKEEXT - ok
13:00:58.0110 3944 [ 475490CAF376E55E6E8B37BBDFEB2E81 ] intelide C:\Windows\system32\drivers\intelide.sys
13:00:58.0111 3944 intelide - ok
13:00:58.0121 3944 [ BFD84AF32FA1BAD6231C4585CB469630 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
13:00:58.0122 3944 intelppm - ok
13:00:58.0148 3944 [ 5624BC1BC5EEB49C0AB76A8114F05EA3 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
13:00:58.0150 3944 IPBusEnum - ok
13:00:58.0178 3944 [ D8AABC341311E4780D6FCE8C73C0AD81 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
13:00:58.0180 3944 IpFilterDriver - ok
13:00:58.0221 3944 [ BF0DBFA9792C5C14FA00F61C75116C1B ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
13:00:58.0225 3944 iphlpsvc - ok
13:00:58.0229 3944 IpInIp - ok
13:00:58.0262 3944 [ 9C2EE2E6E5A7203BFAE15C299475EC67 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
13:00:58.0264 3944 IPMIDRV - ok
13:00:58.0285 3944 [ B7E6212F581EA5F6AB0C3A6CEEEB89BE ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
13:00:58.0288 3944 IPNAT - ok
13:00:58.0302 3944 [ 8C42CA155343A2F11D29FECA67FAA88D ] IRENUM C:\Windows\system32\drivers\irenum.sys
13:00:58.0303 3944 IRENUM - ok
13:00:58.0346 3944 [ 0672BFCEDC6FC468A2B0500D81437F4F ] isapnp C:\Windows\system32\drivers\isapnp.sys
13:00:58.0347 3944 isapnp - ok
13:00:58.0376 3944 [ E4FDF99599F27EC25D2CF6D754243520 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
13:00:58.0380 3944 iScsiPrt - ok
13:00:58.0391 3944 [ 63C766CDC609FF8206CB447A65ABBA4A ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
13:00:58.0393 3944 iteatapi - ok
13:00:58.0439 3944 [ 1281FE73B17664631D12F643CBEA3F59 ] iteraid C:\Windows\system32\drivers\iteraid.sys
13:00:58.0441 3944 iteraid - ok
13:00:58.0505 3944 [ 15371306D1ADBBF35E475C8DA516A956 ] JMCR C:\Windows\system32\DRIVERS\jmcr.sys
13:00:58.0508 3944 JMCR - ok
13:00:58.0522 3944 [ 423696F3BA6472DD17699209B933BC26 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
13:00:58.0524 3944 kbdclass - ok
13:00:58.0555 3944 [ DBDF75D51464FBC47D0104EC3D572C05 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
13:00:58.0556 3944 kbdhid - ok
13:00:58.0578 3944 [ 260BF9C43EE12C6898A9F5AAB0FB0E5D ] KeyIso C:\Windows\system32\lsass.exe
13:00:58.0580 3944 KeyIso - ok
13:00:58.0625 3944 [ 88956AD9FA510848AD176777A6C6C1F5 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
13:00:58.0634 3944 KSecDD - ok
13:00:58.0643 3944 [ 1D419CF43DB29396ECD7113D129D94EB ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
13:00:58.0645 3944 ksthunk - ok
13:00:58.0704 3944 [ 1FAF6926F3416D3DA05C5B265491BDAE ] KtmRm C:\Windows\system32\msdtckrm.dll
13:00:58.0711 3944 KtmRm - ok
13:00:58.0769 3944 [ 50C7A3CB427E9BB5ED0708A669956AB5 ] LanmanServer C:\Windows\system32\srvsvc.dll
13:00:58.0773 3944 LanmanServer - ok
13:00:58.0806 3944 [ CAF86FC1388BE1E470F1A7B43E348ADB ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
13:00:58.0811 3944 LanmanWorkstation - ok
13:00:58.0881 3944 [ 9188D073CD14F886790D6037D1986063 ] LightScribeService C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
13:00:58.0883 3944 LightScribeService - ok
13:00:58.0897 3944 [ 96ECE2659B6654C10A0C310AE3A6D02C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
13:00:58.0898 3944 lltdio - ok
13:00:58.0922 3944 [ 961CCBD0B1CCB5675D64976FAE37D092 ] lltdsvc C:\Windows\System32\lltdsvc.dll
13:00:58.0928 3944 lltdsvc - ok
13:00:58.0940 3944 [ A47F8080CACC23C91FE823AD19AA5612 ] lmhosts C:\Windows\System32\lmhsvc.dll
13:00:58.0941 3944 lmhosts - ok
13:00:58.0962 3944 [ ACBE1AF32D3123E330A07BFBC5EC4A9B ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
13:00:58.0965 3944 LSI_FC - ok
13:00:58.0971 3944 [ 799FFB2FC4729FA46D2157C0065B3525 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
13:00:58.0974 3944 LSI_SAS - ok
13:00:59.0015 3944 [ F445FF1DAAD8A226366BFAF42551226B ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
13:00:59.0017 3944 LSI_SCSI - ok
13:00:59.0023 3944 [ 52F87B9CC8932C2A7375C3B2A9BE5E3E ] luafv C:\Windows\system32\drivers\luafv.sys
13:00:59.0025 3944 luafv - ok
13:00:59.0065 3944 [ 76A58DF02BD4EA29F189B82D0BEF17F8 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
13:00:59.0067 3944 Mcx2Svc - ok
13:00:59.0094 3944 [ 5C5CD6AACED32FB26C3FB34B3DCF972F ] megasas C:\Windows\system32\drivers\megasas.sys
13:00:59.0095 3944 megasas - ok
13:00:59.0120 3944 [ 859BC2436B076C77C159ED694ACFE8F8 ] MegaSR C:\Windows\system32\drivers\megasr.sys
13:00:59.0127 3944 MegaSR - ok
13:00:59.0158 3944 [ 3CBE4995E80E13CCFBC42E5DCF3AC81A ] MMCSS C:\Windows\system32\mmcss.dll
13:00:59.0160 3944 MMCSS - ok
13:00:59.0173 3944 [ 59848D5CC74606F0EE7557983BB73C2E ] Modem C:\Windows\system32\drivers\modem.sys
13:00:59.0175 3944 Modem - ok
13:00:59.0179 3944 [ C247CC2A57E0A0C8C6DCCF7807B3E9E5 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
13:00:59.0181 3944 monitor - ok
13:00:59.0186 3944 [ 9367304E5E412B120CF5F4EA14E4E4F1 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
13:00:59.0188 3944 mouclass - ok
13:00:59.0201 3944 [ C2C2BD5C5CE5AAF786DDD74B75D2AC69 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
13:00:59.0203 3944 mouhid - ok
13:00:59.0209 3944 [ 11BC9B1E8801B01F7F6ADB9EAD30019B ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
13:00:59.0212 3944 MountMgr - ok
13:00:59.0239 3944 [ 05BF204EC0E82CC4A054DB189C8A3D84 ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
13:00:59.0242 3944 MpFilter - ok
13:00:59.0272 3944 [ F8276EB8698142884498A528DFEA8478 ] mpio C:\Windows\system32\drivers\mpio.sys
13:00:59.0275 3944 mpio - ok
13:00:59.0334 3944 MpKsld577dd6d - ok
13:00:59.0344 3944 [ C92B9ABDB65A5991E00C28F13491DBA2 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
13:00:59.0346 3944 mpsdrv - ok
13:00:59.0384 3944 [ 897E3BAF68BA406A61682AE39C83900C ] MpsSvc C:\Windows\system32\mpssvc.dll
13:00:59.0407 3944 MpsSvc - ok
13:00:59.0452 3944 [ 3C200630A89EF2C0864D515B7A75802E ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
13:00:59.0453 3944 Mraid35x - ok
13:00:59.0490 3944 [ 7C1DE4AA96DC0C071611F9E7DE02A68D ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
13:00:59.0493 3944 MRxDAV - ok
13:00:59.0524 3944 [ 1485811B320FF8C7EDAD1CAEBB1C6C2B ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
13:00:59.0527 3944 mrxsmb - ok
13:00:59.0562 3944 [ 3B929A60C833FC615FD97FBA82BC7632 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
13:00:59.0567 3944 mrxsmb10 - ok
13:00:59.0574 3944 [ C64AB3E1F53B4F5B5BB6D796B2D7BEC3 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
13:00:59.0576 3944 mrxsmb20 - ok
13:00:59.0636 3944 [ AA459F2AB3AB603C357FF117CAE3D818 ] msahci C:\Windows\system32\drivers\msahci.sys
13:00:59.0637 3944 msahci - ok
13:00:59.0667 3944 [ 264BBB4AAF312A485F0E44B65A6B7202 ] msdsm C:\Windows\system32\drivers\msdsm.sys
13:00:59.0670 3944 msdsm - ok
13:00:59.0704 3944 [ 7EC02CE772F068ED0BEAFA3DA341A9BC ] MSDTC C:\Windows\System32\msdtc.exe
13:00:59.0707 3944 MSDTC - ok
13:00:59.0731 3944 [ 704F59BFC4512D2BB0146AEC31B10A7C ] Msfs C:\Windows\system32\drivers\Msfs.sys
13:00:59.0733 3944 Msfs - ok
13:00:59.0770 3944 [ 00EBC952961664780D43DCA157E79B27 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
13:00:59.0771 3944 msisadrv - ok
13:00:59.0795 3944 [ 366B0C1F4478B519C181E37D43DCDA32 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
13:00:59.0799 3944 MSiSCSI - ok
13:00:59.0802 3944 msiserver - ok
13:00:59.0854 3944 [ 0EA73E498F53B96D83DBFCA074AD4CF8 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
13:00:59.0855 3944 MSKSSRV - ok
13:00:59.0972 3944 [ CC8E4F72F21340A4D3A3D4DB50313EF5 ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
13:00:59.0973 3944 MsMpSvc - ok
13:00:59.0985 3944 [ 52E59B7E992A58E740AA63F57EDBAE8B ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
13:00:59.0987 3944 MSPCLOCK - ok
13:01:00.0000 3944 [ 49084A75BAE043AE02D5B44D02991BB2 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
13:01:00.0001 3944 MSPQM - ok
13:01:00.0028 3944 [ DC6CCF440CDEDE4293DB41C37A5060A5 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
13:01:00.0033 3944 MsRPC - ok
13:01:00.0051 3944 [ 855796E59DF77EA93AF46F20155BF55B ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
13:01:00.0052 3944 mssmbios - ok
13:01:00.0102 3944 [ 86D632D75D05D5B7C7C043FA3564AE86 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
13:01:00.0103 3944 MSTEE - ok
13:01:00.0117 3944 [ 0CC49F78D8ACA0877D885F149084E543 ] Mup C:\Windows\system32\Drivers\mup.sys
13:01:00.0119 3944 Mup - ok
13:01:00.0178 3944 [ A5B10C845E7538C60C0F5D87A57CB3F5 ] napagent C:\Windows\system32\qagentRT.dll
13:01:00.0185 3944 napagent - ok
13:01:00.0244 3944 [ 2007B826C4ACD94AE32232B41F0842B9 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
13:01:00.0247 3944 NativeWifiP - ok
13:01:00.0314 3944 [ E78A365CC3E0FBFC018A33DCE01909F8 ] NAV C:\Program Files (x86)\Norton AntiVirus\Engine\18.7.1.3\ccSvcHst.exe
13:01:00.0316 3944 NAV - ok
13:01:00.0379 3944 [ 2DBE90210DE76BE6E1653BB20EC70EC2 ] NAVENG C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_18.1.0.37\Definitions\VirusDefs\20120420.002\ENG64.SYS
13:01:00.0381 3944 NAVENG - ok
13:01:00.0440 3944 [ 346DA70E203B8E2C850277713DE8F71B ] NAVEX15 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_18.1.0.37\Definitions\VirusDefs\20120420.002\EX64.SYS
13:01:00.0484 3944 NAVEX15 - ok
13:01:00.0604 3944 [ 65950E07329FCEE8E6516B17C8D0ABB6 ] NDIS C:\Windows\system32\drivers\ndis.sys
13:01:00.0626 3944 NDIS - ok
13:01:00.0668 3944 [ 64DF698A425478E321981431AC171334 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
13:01:00.0669 3944 NdisTapi - ok
13:01:00.0685 3944 [ 8BAA43196D7B5BB972C9A6B2BBF61A19 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
13:01:00.0687 3944 Ndisuio - ok
13:01:00.0730 3944 [ F8158771905260982CE724076419EF19 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
13:01:00.0733 3944 NdisWan - ok
13:01:00.0741 3944 [ 9CB77ED7CB72850253E973A2D6AFDF49 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
13:01:00.0743 3944 NDProxy - ok
13:01:00.0815 3944 [ BD94210175C488F18ADD3E189EE9304C ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
13:01:00.0818 3944 Net Driver HPZ12 - ok
13:01:00.0825 3944 [ A499294F5029A7862ADC115BDA7371CE ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
13:01:00.0827 3944 NetBIOS - ok
13:01:00.0852 3944 [ FC2C792EBDDC8E28DF939D6A92C83D61 ] netbt C:\Windows\system32\DRIVERS\netbt.sys
13:01:00.0856 3944 netbt - ok
13:01:00.0867 3944 [ 260BF9C43EE12C6898A9F5AAB0FB0E5D ] Netlogon C:\Windows\system32\lsass.exe
13:01:00.0869 3944 Netlogon - ok
13:01:00.0895 3944 [ 9B63B29DEFC0F3115A559D2597BF5D75 ] Netman C:\Windows\System32\netman.dll
13:01:00.0901 3944 Netman - ok
13:01:00.0918 3944 [ 7846D0136CC2B264926A73047BA7688A ] netprofm C:\Windows\System32\netprofm.dll
13:01:00.0924 3944 netprofm - ok
13:01:00.0951 3944 [ 74751DDA198165947FD7454D83F49825 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
13:01:00.0954 3944 NetTcpPortSharing - ok
13:01:01.0056 3944 [ C86984AEE87900C1EEB6942EDE3BF4B6 ] NETw3v64 C:\Windows\system32\DRIVERS\NETw3v64.sys
13:01:01.0123 3944 NETw3v64 - ok
13:01:01.0235 3944 [ 2BDCB7B7917380794C9D87AC2153CE33 ] NETw5v64 C:\Windows\system32\DRIVERS\NETw5v64.sys
13:01:01.0359 3944 NETw5v64 - ok
13:01:01.0393 3944 [ 4AC08BD6AF2DF42E0C3196D826C8AEA7 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
13:01:01.0395 3944 nfrd960 - ok
13:01:01.0435 3944 [ 5FF89F20317309D28AC1EDEB0CD1BA72 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
13:01:01.0437 3944 NisDrv - ok
13:01:01.0479 3944 [ 79E80B10FE8F6662E0C9162A68C43444 ] NisSrv c:\Program Files\Microsoft Security Client\NisSrv.exe
13:01:01.0481 3944 NisSrv - ok
13:01:01.0496 3944 [ F145BF4C4668E7E312069F81EF847CFC ] NlaSvc C:\Windows\System32\nlasvc.dll
13:01:01.0501 3944 NlaSvc - ok
13:01:01.0530 3944 [ B298874F8E0EA93F06EC40AA8D146478 ] Npfs C:\Windows\system32\drivers\Npfs.sys
13:01:01.0531 3944 Npfs - ok
13:01:01.0548 3944 [ ACB62BAA1C319B17752553DF3026EEEB ] nsi C:\Windows\system32\nsisvc.dll
13:01:01.0549 3944 nsi - ok
13:01:01.0577 3944 [ 1523AF19EE8B030BA682F7A53537EAEB ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
13:01:01.0579 3944 nsiproxy - ok
13:01:01.0635 3944 [ BAC869DFB98E499BA4D9BB1FB43270E1 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
13:01:01.0669 3944 Ntfs - ok
13:01:01.0682 3944 [ DD5D684975352B85B52E3FD5347C20CB ] Null C:\Windows\system32\drivers\Null.sys
13:01:01.0684 3944 Null - ok
13:01:01.0733 3944 [ 6E022D5F44CD8B029CF799807BB31269 ] NVHDA C:\Windows\system32\drivers\nvhda64v.sys
13:01:01.0734 3944 NVHDA - ok
13:01:01.0929 3944 [ 9433BAC10DEB18FE9F6220D5E984D999 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
13:01:02.0106 3944 nvlddmkm - ok
13:01:02.0129 3944 [ 2C040B7ADA5B06F6FACADAC8514AA034 ] nvraid C:\Windows\system32\drivers\nvraid.sys
13:01:02.0132 3944 nvraid - ok
13:01:02.0140 3944 [ F7EA0FE82842D05EDA3EFDD376DBFDBA ] nvstor C:\Windows\system32\drivers\nvstor.sys
13:01:02.0142 3944 nvstor - ok
13:01:02.0157 3944 [ 48D7DE9766F5B17588D6A2259C20D60F ] nvsvc C:\Windows\system32\nvvsvc.exe
13:01:02.0164 3944 nvsvc - ok
13:01:02.0185 3944 [ 19067CA93075EF4823E3938A686F532F ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
13:01:02.0188 3944 nv_agp - ok
13:01:02.0191 3944 NwlnkFlt - ok
13:01:02.0196 3944 NwlnkFwd - ok
13:01:02.0277 3944 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
13:01:02.0285 3944 odserv - ok
13:01:02.0333 3944 [ B5B1CE65AC15BBD11C0619E3EF7CFC28 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
13:01:02.0335 3944 ohci1394 - ok
13:01:02.0375 3944 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
13:01:02.0378 3944 ose - ok
13:01:02.0426 3944 [ 9AE31D2E1D15C10D91318E0EC149CEAC ] p2pimsvc C:\Windows\system32\p2psvc.dll
13:01:02.0448 3944 p2pimsvc - ok
13:01:02.0487 3944 [ 9AE31D2E1D15C10D91318E0EC149CEAC ] p2psvc C:\Windows\system32\p2psvc.dll
13:01:02.0492 3944 p2psvc - ok
13:01:02.0551 3944 [ AECD57F94C887F58919F307C35498EA0 ] Parport C:\Windows\system32\drivers\parport.sys
13:01:02.0553 3944 Parport - ok
13:01:02.0586 3944 [ B43751085E2ABE389DA466BC62A4B987 ] partmgr C:\Windows\system32\drivers\partmgr.sys
13:01:02.0588 3944 partmgr - ok
13:01:02.0611 3944 [ 9AB157B374192FF276C1628FBDBA2B0E ] PcaSvc C:\Windows\System32\pcasvc.dll
13:01:02.0613 3944 PcaSvc - ok
13:01:02.0626 3944 [ 47AB1E0FC9D0E12BB53BA246E3A0906D ] pci C:\Windows\system32\drivers\pci.sys
13:01:02.0630 3944 pci - ok
13:01:02.0648 3944 [ 15E5C3F89A3452EFBDA3B39816DBC4EE ] pciide C:\Windows\system32\drivers\pciide.sys
13:01:02.0650 3944 pciide - ok
13:01:02.0664 3944 [ 037661F3D7C507C9993B7010CEEE6288 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
13:01:02.0668 3944 pcmcia - ok
13:01:02.0775 3944 [ C1C3BAF078BE5A14384A4BA2D730817D ] PDFProFiltSrvPP C:\Program Files (x86)\Nuance\PaperPort\PDFProFiltSrvPP.exe
13:01:02.0778 3944 PDFProFiltSrvPP - ok
13:01:02.0805 3944 [ 58865916F53592A61549B04941BFD80D ] PEAUTH C:\Windows\system32\drivers\peauth.sys
13:01:02.0828 3944 PEAUTH - ok
13:01:02.0935 3944 [ 0ED8727EA0172860F47258456C06CAEA ] PerfHost C:\Windows\SysWow64\perfhost.exe
13:01:02.0936 3944 PerfHost - ok
13:01:02.0997 3944 [ E9E68C1A0F25CF4A7AC966EEA74EE89E ] pla C:\Windows\system32\pla.dll
13:01:03.0030 3944 pla - ok
13:01:03.0062 3944 [ FE6B0F59215C9FD9F9D26539C58C8B82 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
13:01:03.0068 3944 PlugPlay - ok
13:01:03.0150 3944 [ 7FE2AFB17D91CF39843D6766EA31CFC7 ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
13:01:03.0153 3944 Pml Driver HPZ12 - ok
13:01:03.0180 3944 [ 9AE31D2E1D15C10D91318E0EC149CEAC ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
13:01:03.0185 3944 PNRPAutoReg - ok
13:01:03.0214 3944 [ 9AE31D2E1D15C10D91318E0EC149CEAC ] PNRPsvc C:\Windows\system32\p2psvc.dll
13:01:03.0219 3944 PNRPsvc - ok
13:01:03.0255 3944 [ 89A5560671C2D8B4A4B51F3E1AA069D8 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
13:01:03.0277 3944 PolicyAgent - ok
13:01:03.0334 3944 [ 23386E9952025F5F21C368971E2E7301 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
13:01:03.0337 3944 PptpMiniport - ok
13:01:03.0361 3944 [ 5080E59ECEE0BC923F14018803AA7A01 ] Processor C:\Windows\system32\drivers\processr.sys
13:01:03.0362 3944 Processor - ok
13:01:03.0396 3944 [ E058CE4FC2449D8BFA14739C83B7FF2A ] ProfSvc C:\Windows\system32\profsvc.dll
13:01:03.0401 3944 ProfSvc - ok
13:01:03.0411 3944 [ 260BF9C43EE12C6898A9F5AAB0FB0E5D ] ProtectedStorage C:\Windows\system32\lsass.exe
13:01:03.0413 3944 ProtectedStorage - ok
13:01:03.0443 3944 [ C5AB7F0809392D0DA027F4A2A81BFA31 ] PSched C:\Windows\system32\DRIVERS\pacer.sys
13:01:03.0444 3944 PSched - ok
13:01:03.0481 3944 [ 0B83F4E681062F3839BE2EC1D98FD94A ] ql2300 C:\Windows\system32\drivers\ql2300.sys
13:01:03.0515 3944 ql2300 - ok
13:01:03.0568 3944 [ E1C80F8D4D1E39EF9595809C1369BF2A ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
13:01:03.0570 3944 ql40xx - ok
13:01:03.0591 3944 [ 90574842C3DA781E279061A3EFF91F07 ] QWAVE C:\Windows\system32\qwave.dll
13:01:03.0597 3944 QWAVE - ok
13:01:03.0611 3944 [ E8D76EDAB77EC9C634C27B8EAC33ADC5 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
13:01:03.0612 3944 QWAVEdrv - ok
13:01:03.0623 3944 [ 1013B3B663A56D3DDD784F581C1BD005 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
13:01:03.0624 3944 RasAcd - ok
13:01:03.0673 3944 [ B2AE18F847D07F0044404DDF7CB04497 ] RasAuto C:\Windows\System32\rasauto.dll
13:01:03.0675 3944 RasAuto - ok
13:01:03.0705 3944 [ AC7BC4D42A7E558718DFDEC599BBFC2C ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
13:01:03.0708 3944 Rasl2tp - ok
13:01:03.0752 3944 [ 3AD83E4046C43BE510DE681588ACB8AF ] RasMan C:\Windows\System32\rasmans.dll
13:01:03.0758 3944 RasMan - ok
13:01:03.0794 3944 [ 4517FBF8B42524AFE4EDE1DE102AAE3E ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
13:01:03.0796 3944 RasPppoe - ok
13:01:03.0821 3944 [ C6A593B51F34C33E5474539544072527 ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
13:01:03.0823 3944 RasSstp - ok
13:01:03.0863 3944 [ 322DB5C6B55E8D8EE8D6F358B2AAABB1 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
13:01:03.0868 3944 rdbss - ok
13:01:03.0894 3944 [ 603900CC05F6BE65CCBF373800AF3716 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
13:01:03.0895 3944 RDPCDD - ok
13:01:03.0920 3944 [ C045D1FB111C28DF0D1BE8D4BDA22C06 ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
13:01:03.0925 3944 rdpdr - ok
13:01:03.0930 3944 [ CAB9421DAF3D97B33D0D055858E2C3AB ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
13:01:03.0931 3944 RDPENCDD - ok
13:01:03.0969 3944 [ AE4BD9E1C33D351D8E607FC81F15160C ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
13:01:03.0972 3944 RDPWD - ok
13:01:04.0026 3944 [ D5F08CC3D19B1C7F49619B9DAD43C0CE ] Recovery Service for Windows C:\Program Files (x86)\SMINST\BLService.exe
13:01:04.0029 3944 Recovery Service for Windows - ok
13:01:04.0051 3944 [ C612B9557DA73F70D41F8A6FBC8E5344 ] RemoteAccess C:\Windows\System32\mprdim.dll
13:01:04.0053 3944 RemoteAccess - ok
13:01:04.0077 3944 [ 44B9D8EC2F3EF3A0EFB00857AF70D861 ] RemoteRegistry C:\Windows\system32\regsvc.dll
13:01:04.0082 3944 RemoteRegistry - ok
13:01:04.0119 3944 [ 72C35598BA591ABDDC37FCE7D26FE1C4 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
13:01:04.0122 3944 RFCOMM - ok
13:01:04.0223 3944 [ 805AE1F90C64758D19AAA001CF8CBA12 ] RichVideo C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
13:01:04.0227 3944 RichVideo - ok
13:01:04.0245 3944 [ F46C457840D4B7A4DAAFEE739CE04102 ] RpcLocator C:\Windows\system32\locator.exe
13:01:04.0247 3944 RpcLocator - ok
13:01:04.0313 3944 [ CF8B9A3A5E7DC57724A89D0C3E8CF9EF ] RpcSs C:\Windows\system32\rpcss.dll
13:01:04.0318 3944 RpcSs - ok
13:01:04.0350 3944 [ 22A9CB08B1A6707C1550C6BF099AAE73 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
13:01:04.0352 3944 rspndr - ok
13:01:04.0411 3944 [ AF7074E1D6A8A66204067EE8B2A8327A ] RTL8169 C:\Windows\system32\DRIVERS\Rtlh64.sys
13:01:04.0414 3944 RTL8169 - ok
13:01:04.0423 3944 [ 260BF9C43EE12C6898A9F5AAB0FB0E5D ] SamSs C:\Windows\system32\lsass.exe
13:01:04.0424 3944 SamSs - ok
13:01:04.0435 3944 [ CD9C693589C60AD59BBBCFB0E524E01B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
13:01:04.0437 3944 sbp2port - ok
13:01:04.0531 3944 [ 794D4B48DFB6E999537C7C3947863463 ] SBSDWSCService C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
13:01:04.0552 3944 SBSDWSCService - ok
13:01:04.0638 3944 [ FD1CDCF108D5EF3366F00D18B70FB89B ] SCardSvr C:\Windows\System32\SCardSvr.dll
13:01:04.0641 3944 SCardSvr - ok
13:01:04.0696 3944 [ 0F838C811AD295D2A4489B9993096C63 ] Schedule C:\Windows\system32\schedsvc.dll
13:01:04.0718 3944 Schedule - ok
13:01:04.0765 3944 [ 5A268127633C7EE2A7FB87F39D748D56 ] SCPolicySvc C:\Windows\System32\certprop.dll
13:01:04.0765 3944 SCPolicySvc - ok
13:01:04.0795 3944 [ B42EE50F7D24F837F925332EB349ECA5 ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
13:01:04.0797 3944 sdbus - ok
13:01:04.0823 3944 [ 4FF71B076A7760FE75EA5AE2D0EE0018 ] SDRSVC C:\Windows\System32\SDRSVC.dll
13:01:04.0827 3944 SDRSVC - ok
13:01:04.0834 3944 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
13:01:04.0835 3944 secdrv - ok
13:01:04.0850 3944 [ 5ACDCBC67FCF894A1815B9F96D704490 ] seclogon C:\Windows\system32\seclogon.dll
13:01:04.0852 3944 seclogon - ok
13:01:04.0869 3944 [ 90973A64B96CD647FF81C79443618EED ] SENS C:\Windows\System32\sens.dll
13:01:04.0872 3944 SENS - ok
13:01:04.0891 3944 [ F71BFE7AC6C52273B7C82CBF1BB2A222 ] Serenum C:\Windows\system32\drivers\serenum.sys
13:01:04.0892 3944 Serenum - ok
13:01:04.0921 3944 [ E62FAC91EE288DB29A9696A9D279929C ] Serial C:\Windows\system32\drivers\serial.sys
13:01:04.0923 3944 Serial - ok
13:01:04.0940 3944 [ A842F04833684BCEEA7336211BE478DF ] sermouse C:\Windows\system32\drivers\sermouse.sys
13:01:04.0942 3944 sermouse - ok
13:01:04.0965 3944 [ A8E4A4407A09F35DCCC3771AF590B0C4 ] SessionEnv C:\Windows\system32\sessenv.dll
13:01:04.0967 3944 SessionEnv - ok
13:01:04.0980 3944 [ 14D4B4465193A87C127933978E8C4106 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
13:01:04.0981 3944 sffdisk - ok
13:01:04.0994 3944 [ 7073AEE3F82F3D598E3825962AA98AB2 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
13:01:04.0996 3944 sffp_mmc - ok
13:01:05.0012 3944 [ 35E59EBE4A01A0532ED67975161C7B82 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
13:01:05.0013 3944 sffp_sd - ok
13:01:05.0025 3944 [ 6B7838C94135768BD455CBDC23E39E5F ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
13:01:05.0026 3944 sfloppy - ok
13:01:05.0053 3944 [ 4C5AEE179DA7E1EE9A9CCB9DA289AF34 ] SharedAccess C:\Windows\System32\ipnathlp.dll
13:01:05.0059 3944 SharedAccess - ok
13:01:05.0086 3944 [ 56793271ECDEDD350C5ADD305603E963 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
13:01:05.0092 3944 ShellHWDetection - ok
13:01:05.0100 3944 [ 7A5DE502AEB719D4594C6471060A78B3 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
13:01:05.0102 3944 SiSRaid2 - ok
13:01:05.0117 3944 [ 3A2F769FAB9582BC720E11EA1DFB184D ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
13:01:05.0120 3944 SiSRaid4 - ok
13:01:05.0245 3944 [ 183F04C6742902F33039913A96F5B574 ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
13:01:05.0344 3944 Skype C2C Service - ok
13:01:05.0461 3944 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
13:01:05.0464 3944 SkypeUpdate - ok
13:01:05.0550 3944 [ A9A27A8E257B45A604FDAD4F26FE7241 ] slsvc C:\Windows\system32\SLsvc.exe
13:01:05.0605 3944 slsvc - ok
13:01:05.0651 3944 [ FD74B4B7C2088E390A30C85A896FC3AF ] SLUINotify C:\Windows\system32\SLUINotify.dll
13:01:05.0654 3944 SLUINotify - ok
13:01:05.0692 3944 [ 290B6F6A0EC4FCDFC90F5CB6D7020473 ] Smb C:\Windows\system32\DRIVERS\smb.sys
13:01:05.0694 3944 Smb - ok
13:01:05.0747 3944 [ F8F47F38909823B1AF28D60B96340CFF ] SNMPTRAP C:\Windows\System32\snmptrap.exe
13:01:05.0749 3944 SNMPTRAP - ok
13:01:05.0784 3944 [ 386C3C63F00A7040C7EC5E384217E89D ] spldr C:\Windows\system32\drivers\spldr.sys
13:01:05.0785 3944 spldr - ok
13:01:05.0831 3944 [ F66FF751E7EFC816D266977939EF5DC3 ] Spooler C:\Windows\System32\spoolsv.exe
13:01:05.0837 3944 Spooler - ok
13:01:05.0934 3944 [ 90EF30C3867BCDE4579C01A6D6E75A7A ] SRTSP C:\Windows\System32\Drivers\NAVx64\1207010.003\SRTSP64.SYS
13:01:05.0957 3944 SRTSP - ok
13:01:05.0990 3944 [ C513E8A5E7978DA49077F5484344EE1B ] SRTSPX C:\Windows\system32\drivers\NAVx64\1207010.003\SRTSPX64.SYS
13:01:05.0991 3944 SRTSPX - ok
13:01:06.0019 3944 [ 880A57FCCB571EBD063D4DD50E93E46D ] srv C:\Windows\system32\DRIVERS\srv.sys
13:01:06.0026 3944 srv - ok
13:01:06.0056 3944 [ A1AD14A6D7A37891FFFECA35EBBB0730 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
13:01:06.0059 3944 srv2 - ok
13:01:06.0085 3944 [ 4BED62F4FA4D8300973F1151F4C4D8A7 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
13:01:06.0088 3944 srvnet - ok
13:01:06.0111 3944 [ 192C74646EC5725AEF3F80D19FF75F6A ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
13:01:06.0115 3944 SSDPSRV - ok
13:01:06.0159 3944 [ 2EE3FA0308E6185BA64A9A7F2E74332B ] SstpSvc C:\Windows\system32\sstpsvc.dll
13:01:06.0163 3944 SstpSvc - ok
13:01:06.0251 3944 [ 3FB66E86BA667D627A613E1D677469B0 ] STacSV C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_bd5387da\STacSV64.exe
13:01:06.0256 3944 STacSV - ok
13:01:06.0320 3944 [ E01797A54F8A61512B7E590FDE6D1988 ] STHDA C:\Windows\system32\DRIVERS\stwrt64.sys
13:01:06.0328 3944 STHDA - ok
13:01:06.0360 3944 [ 14B4DB4381E4A55F570D8BB699B791D6 ] StillCam C:\Windows\system32\DRIVERS\serscan.sys
13:01:06.0360 3944 StillCam - ok
13:01:06.0389 3944 [ 15825C1FBFB8779992CB65087F316AF5 ] stisvc C:\Windows\System32\wiaservc.dll
13:01:06.0411 3944 stisvc - ok
13:01:06.0451 3944 [ 8A851CA908B8B974F89C50D2E18D4F0C ] swenum C:\Windows\system32\DRIVERS\swenum.sys
13:01:06.0453 3944 swenum - ok
13:01:06.0500 3944 [ 6DE37F4DE19D4EFD9C48C43ADDBC949A ] swprv C:\Windows\System32\swprv.dll
13:01:06.0522 3944 swprv - ok
13:01:06.0580 3944 [ 2F26A2C6FC96B29BEFF5D8ED74E6625B ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
13:01:06.0581 3944 Symc8xx - ok
13:01:06.0608 3944 [ 6160145C7A87FC7672E8E3B886888176 ] SymDS C:\Windows\system32\drivers\NAVx64\1207010.003\SYMDS64.SYS
13:01:06.0615 3944 SymDS - ok
13:01:06.0655 3944 [ 96AEED40D4D3521568B42027687E69E0 ] SymEFA C:\Windows\system32\drivers\NAVx64\1207010.003\SYMEFA64.SYS
13:01:06.0677 3944 SymEFA - ok
13:01:06.0725 3944 [ 21A1C2D694C3CF962D31F5E873AB3D6F ] SymEvent C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
13:01:06.0728 3944 SymEvent - ok
13:01:06.0754 3944 SYMFW - ok
13:01:06.0793 3944 [ BD0D711D8CBFCAA19CA123306EAF53A5 ] SymIRON C:\Windows\system32\drivers\NAVx64\1207010.003\Ironx64.SYS
13:01:06.0796 3944 SymIRON - ok
13:01:06.0799 3944 SYMNDISV - ok
13:01:06.0864 3944 [ 61D06BE74FA23EBB7D816E4468EDD19E ] SYMTDIv C:\Windows\System32\Drivers\NAVx64\1207010.003\SYMTDIV.SYS
13:01:06.0871 3944 SYMTDIv - ok
13:01:06.0892 3944 [ A909667976D3BCCD1DF813FED517D837 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
13:01:06.0894 3944 Sym_hi - ok
13:01:06.0910 3944 [ 36887B56EC2D98B9C362F6AE4DE5B7B0 ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
13:01:06.0912 3944 Sym_u3 - ok
13:01:06.0980 3944 [ B432C6063D4C621241C2B6E05CA0C3E3 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
13:01:06.0985 3944 SynTP - ok
13:01:07.0028 3944 [ 92D7A8B0F87B036F17D25885937897A6 ] SysMain C:\Windows\system32\sysmain.dll
13:01:07.0051 3944 SysMain - ok
13:01:07.0076 3944 [ 005CE42567F9113A3BCCB3B20073B029 ] TabletInputService C:\Windows\System32\TabSvc.dll
13:01:07.0079 3944 TabletInputService - ok
13:01:07.0120 3944 [ CC2562B4D55E0B6A4758C65407F63B79 ] TapiSrv C:\Windows\System32\tapisrv.dll
13:01:07.0126 3944 TapiSrv - ok
13:01:07.0132 3944 [ CDBE8D7C1E201B911CDC346D06617FB5 ] TBS C:\Windows\System32\tbssvc.dll
13:01:07.0134 3944 TBS - ok
13:01:07.0185 3944 [ AC8D5728E6AD6A7C4819D9A67008337A ] Tcpip C:\Windows\system32\drivers\tcpip.sys
13:01:07.0218 3944 Tcpip - ok
13:01:07.0246 3944 [ AC8D5728E6AD6A7C4819D9A67008337A ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
13:01:07.0254 3944 Tcpip6 - ok
13:01:07.0313 3944 [ FD8FDE859E38E40A20085EBB0C22B416 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
13:01:07.0315 3944 tcpipreg - ok
13:01:07.0331 3944 [ 1D8BF4AAA5FB7A2761475781DC1195BC ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
13:01:07.0333 3944 TDPIPE - ok
13:01:07.0345 3944 [ 7F7E00CDF609DF657F4CDA02DD1C9BB1 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
13:01:07.0347 3944 TDTCP - ok
13:01:07.0383 3944 [ 458919C8C42E398DC4802178D5FFEE27 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
13:01:07.0385 3944 tdx - ok
13:01:07.0429 3944 [ 8C19678D22649EC002EF2282EAE92F98 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
13:01:07.0431 3944 TermDD - ok
13:01:07.0493 3944 [ 5CDD30BC217082DAC71A9878D9BFD566 ] TermService C:\Windows\System32\termsrv.dll
13:01:07.0516 3944 TermService - ok
13:01:07.0564 3944 [ 56793271ECDEDD350C5ADD305603E963 ] Themes C:\Windows\system32\shsvcs.dll
13:01:07.0566 3944 Themes - ok
13:01:07.0591 3944 [ 3CBE4995E80E13CCFBC42E5DCF3AC81A ] THREADORDER C:\Windows\system32\mmcss.dll
13:01:07.0592 3944 THREADORDER - ok
13:01:07.0629 3944 [ F4689F05AF472A651A7B1B7B02D200E7 ] TrkWks C:\Windows\System32\trkwks.dll
13:01:07.0632 3944 TrkWks - ok
13:01:07.0669 3944 [ 66328B08EF5A9305D8EDE36B93930369 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
13:01:07.0670 3944 TrustedInstaller - ok
13:01:07.0717 3944 [ 9E5409CD17C8BEF193AAD498F3BC2CB8 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
13:01:07.0718 3944 tssecsrv - ok
13:01:07.0731 3944 [ 89EC74A9E602D16A75A4170511029B3C ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
13:01:07.0733 3944 tunmp - ok
13:01:07.0775 3944 [ 30A9B3F45AD081BFFC3BCAA9C812B609 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
13:01:07.0777 3944 tunnel - ok
13:01:07.0912 3944 [ BB313AE85EC95B7CB87FC5ED53F3A22B ] TVCapSvc C:\Program Files (x86)\Hewlett-Packard\Media\TV\Kernel\TV\TVCapSvc.exe
13:01:07.0917 3944 TVCapSvc - ok
13:01:07.0927 3944 [ 0C66E48654AFD8A6BCFBCE22E7FAB251 ] TVSched C:\Program Files (x86)\Hewlett-Packard\Media\TV\Kernel\TV\TVSched.exe
13:01:07.0929 3944 TVSched - ok
13:01:07.0970 3944 [ FEC266EF401966311744BD0F359F7F56 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
13:01:07.0971 3944 uagp35 - ok
13:01:08.0013 3944 [ FAF2640A2A76ED03D449E443194C4C34 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
13:01:08.0018 3944 udfs - ok
13:01:08.0056 3944 [ 060507C4113391394478F6953A79EEDC ] UI0Detect C:\Windows\system32\UI0Detect.exe
13:01:08.0058 3944 UI0Detect - ok
13:01:08.0078 3944 [ 4EC9447AC3AB462647F60E547208CA00 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
13:01:08.0080 3944 uliagpkx - ok
13:01:08.0104 3944 [ 697F0446134CDC8F99E69306184FBBB4 ] uliahci C:\Windows\system32\drivers\uliahci.sys
13:01:08.0110 3944 uliahci - ok
13:01:08.0119 3944 [ 31707F09846056651EA2C37858F5DDB0 ] UlSata C:\Windows\system32\drivers\ulsata.sys
13:01:08.0122 3944 UlSata - ok
13:01:08.0129 3944 [ 85E5E43ED5B48C8376281BAB519271B7 ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
13:01:08.0132 3944 ulsata2 - ok
13:01:08.0140 3944 [ 46E9A994C4FED537DD951F60B86AD3F4 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
13:01:08.0142 3944 umbus - ok
13:01:08.0164 3944 [ 7093799FF80E9DECA0680D2E3535BE60 ] upnphost C:\Windows\System32\upnphost.dll
13:01:08.0171 3944 upnphost - ok
13:01:08.0201 3944 [ 07E3498FC60834219D2356293DA0FECC ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
13:01:08.0203 3944 usbccgp - ok
13:01:08.0230 3944 [ 9247F7E0B65852C1F6631480984D6ED2 ] usbcir C:\Windows\system32\drivers\usbcir.sys
13:01:08.0232 3944 usbcir - ok
13:01:08.0289 3944 [ 827E44DE934A736EA31E91D353EB126F ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
13:01:08.0291 3944 usbehci - ok
13:01:08.0315 3944 [ BB35CD80A2ECECFADC73569B3D70C7D1 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
13:01:08.0320 3944 usbhub - ok
13:01:08.0336 3944 [ EBA14EF0C07CEC233F1529C698D0D154 ] usbohci C:\Windows\system32\drivers\usbohci.sys
13:01:08.0338 3944 usbohci - ok
13:01:08.0361 3944 [ 28B693B6D31E7B9332C1BDCEFEF228C1 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
13:01:08.0362 3944 usbprint - ok
13:01:08.0416 3944 [ EA0BF666868964FBE8CB10E50C97B9F1 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
13:01:08.0417 3944 usbscan - ok
13:01:08.0439 3944 [ B854C1558FCA0C269A38663E8B59B581 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
13:01:08.0441 3944 USBSTOR - ok
13:01:08.0470 3944 [ B2872CBF9F47316ABD0E0C74A1ABA507 ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
13:01:08.0471 3944 usbuhci - ok
13:01:08.0496 3944 [ FC33099877790D51B0927B7039059855 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
13:01:08.0500 3944 usbvideo - ok
13:01:08.0518 3944 [ D76E231E4850BB3F88A3D9A78DF191E3 ] UxSms C:\Windows\System32\uxsms.dll
13:01:08.0521 3944 UxSms - ok
13:01:08.0565 3944 [ 294945381DFA7CE58CECF0A9896AF327 ] vds C:\Windows\System32\vds.exe
13:01:08.0585 3944 vds - ok
13:01:08.0637 3944 [ 916B94BCF1E09873FFF2D5FB11767BBC ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
13:01:08.0639 3944 vga - ok
13:01:08.0653 3944 [ B83AB16B51FEDA65DD81B8C59D114D63 ] VgaSave C:\Windows\System32\drivers\vga.sys
13:01:08.0654 3944 VgaSave - ok
13:01:08.0669 3944 [ 4F964E6828156F0EF3FA8D3A9A7895DE ] viaide C:\Windows\system32\drivers\viaide.sys
13:01:08.0670 3944 viaide - ok
13:01:08.0706 3944 [ 2B7E885ED951519A12C450D24535DFCA ] volmgr C:\Windows\system32\drivers\volmgr.sys
13:01:08.0708 3944 volmgr - ok
13:01:08.0751 3944 [ CEC5AC15277D75D9E5DEC2E1C6EAF877 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
13:01:08.0758 3944 volmgrx - ok
13:01:08.0811 3944 [ 582F710097B46140F5A89A19A6573D4B ] volsnap C:\Windows\system32\drivers\volsnap.sys
13:01:08.0815 3944 volsnap - ok
13:01:08.0836 3944 [ A68F455ED2673835209318DD61BFBB0E ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
13:01:08.0839 3944 vsmraid - ok
13:01:08.0886 3944 [ B75232DAD33BFD95BF6F0A3E6BFF51E1 ] VSS C:\Windows\system32\vssvc.exe
13:01:08.0920 3944 VSS - ok
13:01:09.0076 3944 [ 50D3941555FEFDF46424431702EC5FB6 ] vToolbarUpdater14.0.1 C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\14.0.1\ToolbarUpdater.exe
13:01:09.0098 3944 vToolbarUpdater14.0.1 - ok
13:01:09.0171 3944 [ F14A7DE2EA41883E250892E1E5230A9A ] W32Time C:\Windows\system32\w32time.dll
13:01:09.0178 3944 W32Time - ok
13:01:09.0198 3944 [ FEF8FE5923FEAD2CEE4DFABFCE3393A7 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
13:01:09.0199 3944 WacomPen - ok
13:01:09.0233 3944 [ B8E7049622300D20BA6D8BE0C47C0CFD ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
13:01:09.0235 3944 Wanarp - ok
13:01:09.0239 3944 [ B8E7049622300D20BA6D8BE0C47C0CFD ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
13:01:09.0240 3944 Wanarpv6 - ok
13:01:09.0295 3944 [ ECEB715BECE47E101DDEC06B11126066 ] wanatw C:\Windows\system32\DRIVERS\wanatw64.sys
13:01:09.0296 3944 wanatw - ok
13:01:09.0322 3944 [ B4E4C37D0AA6100090A53213EE2BF1C1 ] wcncsvc C:\Windows\System32\wcncsvc.dll
13:01:09.0344 3944 wcncsvc - ok
13:01:09.0396 3944 [ EA4B369560E986F19D93F45A881484AC ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
13:01:09.0399 3944 WcsPlugInService - ok
13:01:09.0412 3944 [ 0C17A0816F65B89E362E682AD5E7266E ] Wd C:\Windows\system32\drivers\wd.sys
13:01:09.0414 3944 Wd - ok
13:01:09.0465 3944 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
13:01:09.0488 3944 Wdf01000 - ok
13:01:09.0531 3944 [ C5EFDA73EBFCA8B02A094898DE0A9276 ] WdiServiceHost C:\Windows\system32\wdi.dll
13:01:09.0534 3944 WdiServiceHost - ok
13:01:09.0538 3944 [ C5EFDA73EBFCA8B02A094898DE0A9276 ] WdiSystemHost C:\Windows\system32\wdi.dll
13:01:09.0541 3944 WdiSystemHost - ok
13:01:09.0581 3944 [ BE6D3E2156D68A08F8B1828D92D672A6 ] WeatherBlinkService C:\PROGRA~2\WEATHE~2\bar\1.bin\gcbarsvc.exe
13:01:09.0581 3944 WeatherBlinkService - ok
13:01:09.0597 3944 [ 3E6D05381CF35F75EBB055544A8ED9AC ] WebClient C:\Windows\System32\webclnt.dll
13:01:09.0602 3944 WebClient - ok
13:01:09.0626 3944 [ 8D40BC587993F876658BF9FB0F7D3462 ] Wecsvc C:\Windows\system32\wecsvc.dll
13:01:09.0630 3944 Wecsvc - ok
13:01:09.0644 3944 [ 9C980351D7E96288EA0C23AE232BD065 ] wercplsupport C:\Windows\System32\wercplsupport.dll
13:01:09.0647 3944 wercplsupport - ok
13:01:09.0660 3944 [ 66B9ECEBC46683F47EDC06333C075FEF ] WerSvc C:\Windows\System32\WerSvc.dll
13:01:09.0664 3944 WerSvc - ok
13:01:09.0680 3944 WinDefend - ok
13:01:09.0686 3944 WinHttpAutoProxySvc - ok
13:01:09.0739 3944 [ D2E7296ED1BD26D8DB2799770C077A02 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
13:01:09.0744 3944 Winmgmt - ok
13:01:09.0819 3944 [ 6CBB0C68F13B9C2EC1B16F5FA5E7C869 ] WinRM C:\Windows\system32\WsmSvc.dll
13:01:09.0864 3944 WinRM - ok
13:01:09.0918 3944 [ EC339C8115E91BAED835957E9A677F16 ] Wlansvc C:\Windows\System32\wlansvc.dll
13:01:09.0940 3944 Wlansvc - ok
13:01:09.0960 3944 [ E18AEBAAA5A773FE11AA2C70F65320F5 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
13:01:09.0962 3944 WmiAcpi - ok
13:01:10.0009 3944 [ 21FA389E65A852698B6A1341F36EE02D ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
13:01:10.0013 3944 wmiApSrv - ok
13:01:10.0031 3944 WMPNetworkSvc - ok
13:01:10.0069 3944 [ CBC156C913F099E6680D1DF9307DB7A8 ] WPCSvc C:\Windows\System32\wpcsvc.dll
13:01:10.0073 3944 WPCSvc - ok
13:01:10.0129 3944 [ 490A18B4E4D53DC10879DEAA8E8B70D9 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
13:01:10.0132 3944 WPDBusEnum - ok
13:01:10.0205 3944 [ 5E2401B3FC1089C90E081291357371A9 ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys
13:01:10.0206 3944 WpdUsb - ok
13:01:10.0353 3944 [ 991E2C2CF3BC204C2BB2EE1476149E4E ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\WPF\WPFFontCache_v0400.exe
13:01:10.0373 3944 WPFFontCache_v0400 - ok
13:01:10.0415 3944 [ 8A900348370E359B6BFF6A550E4649E1 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
13:01:10.0417 3944 ws2ifsl - ok
13:01:10.0461 3944 [ 9EA3E6D0EF7A5C2B9181961052A4B01A ] wscsvc C:\Windows\System32\wscsvc.dll
13:01:10.0463 3944 wscsvc - ok
13:01:10.0467 3944 WSearch - ok
13:01:10.0579 3944 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
13:01:10.0623 3944 wuauserv - ok
13:01:10.0670 3944 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
13:01:10.0672 3944 WudfPf - ok
13:01:10.0733 3944 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
13:01:10.0737 3944 WUDFRd - ok
13:01:10.0789 3944 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
13:01:10.0792 3944 wudfsvc - ok
13:01:10.0862 3944 [ 07F7285220307AAFB755D890295F0F9A ] yukonx64 C:\Windows\system32\DRIVERS\yk60x64.sys
13:01:10.0867 3944 yukonx64 - ok
13:01:10.0907 3944 [ 15CC7077D2DC28776CD430ECABBFFD66 ] {55662437-DA8C-40c0-AADA-2C816A897A49} C:\Program Files (x86)\Hewlett-Packard\Media\DVD\000.fcl
13:01:10.0909 3944 {55662437-DA8C-40c0-AADA-2C816A897A49} - ok
13:01:10.0939 3944 ================ Scan global ===============================
13:01:10.0998 3944 [ 060DC3A7A9A2626031EB23D90151428D ] C:\Windows\system32\basesrv.dll
13:01:11.0035 3944 [ AA137104CDFC81818A309CDE32ABB74A ] C:\Windows\system32\winsrv.dll
13:01:11.0058 3944 [ AA137104CDFC81818A309CDE32ABB74A ] C:\Windows\system32\winsrv.dll
13:01:11.0097 3944 [ 934E0B7D77FF78C18D9F8891221B6DE3 ] C:\Windows\system32\services.exe
13:01:11.0103 3944 [Global] - ok
13:01:11.0104 3944 ================ Scan MBR ==================================
13:01:11.0119 3944 [ 5C86ADEC17B739C437E145E3B3FC2E6D ] \Device\Harddisk0\DR0
13:01:11.0439 3944 \Device\Harddisk0\DR0 - ok
13:01:11.0440 3944 ================ Scan VBR ==================================
13:01:11.0442 3944 [ 000D21224CE5886DE11C1D8546ADD8E6 ] \Device\Harddisk0\DR0\Partition1
13:01:11.0444 3944 \Device\Harddisk0\DR0\Partition1 - ok
13:01:11.0448 3944 [ FC4C4260CBE2EB3B740AC195D394139C ] \Device\Harddisk0\DR0\Partition2
13:01:11.0450 3944 \Device\Harddisk0\DR0\Partition2 - ok
13:01:11.0450 3944 ============================================================
13:01:11.0450 3944 Scan finished
13:01:11.0450 3944 ============================================================
13:01:11.0459 5684 Detected object count: 0
13:01:11.0459 5684 Actual detected object count: 0



Here is aswMBR
aswMBR version 0.9.9.1707 Copyright© 2011 AVAST Software
Run date: 2013-01-29 13:04:52
-----------------------------
13:04:52.197 OS Version: Windows x64 6.0.6002 Service Pack 2
13:04:52.197 Number of processors: 2 586 0x1706
13:04:52.198 ComputerName: DAN-PC UserName: Dan
13:04:54.533 Initialize success
13:05:25.365 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
13:05:25.368 Disk 0 Vendor: WDC_WD5000BEVT-60ZAT0 01.01A01 Size: 476940MB BusType: 3
13:05:25.398 Disk 0 MBR read successfully
13:05:25.401 Disk 0 MBR scan
13:05:25.403 Disk 0 unknown MBR code
13:05:25.406 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 462621 MB offset 63
13:05:25.449 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 14315 MB offset 947449856
13:05:25.454 Disk 0 scanning C:\Windows\system32\drivers
13:05:31.956 Service scanning
13:05:49.420 Modules scanning
13:05:49.426 Disk 0 trace - called modules:
13:05:49.441 ntoskrnl.exe CLASSPNP.SYS disk.sys hpdskflt.sys ataport.SYS PCIIDEX.SYS hal.dll msahci.sys
13:05:49.445 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa80078c1530]
13:05:49.450 3 CLASSPNP.SYS[fffffa6000a48c33] -> nt!IofCallDriver -> [0xfffffa80077bc650]
13:05:49.781 5 hpdskflt.sys[fffffa6001a020ee] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0xfffffa800645c060]
13:05:49.789 Scan finished successfully
13:06:00.523 Disk 0 MBR has been saved successfully to "C:\Users\Dan\Desktop\MBR.dat"
13:06:00.533 The log file has been saved successfully to "C:\Users\Dan\Desktop\aswMBR.txt"



Here is ESET:
In progress will post upon completion....40 minutes into scanning at it's not even a 1/3 of the way through.

#4 MCorlione

MCorlione
  • Topic Starter

  • Members
  • 68 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Minnesota
  • Local time:06:23 AM

Posted 29 January 2013 - 07:23 PM

ESET as promised:
C:\Users\Dan\AppData\Local\Microsoft\Windows\Temporary Internet Files\Virtualized\C\Users\Dan\1567271.exe Win32/TrojanClicker.Agent.NSC trojan cleaned by deleting - quarantined
C:\Users\Dan\AppData\Local\Microsoft\Windows\Temporary Internet Files\Virtualized\C\Users\Dan\3544188.exe Win32/TrojanClicker.Agent.NSC trojan cleaned by deleting - quarantined

#5 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:23 AM

Posted 29 January 2013 - 07:29 PM

Download

Malwarebytes

Install,update and run a full scan

Click on Show results.Right click on the list ,select all and remove them.

Post the generated log here

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size
List restore points

Click Go and post the result.

Download

Farbar service scanner

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.

Download

adware cleaner

Launch it click on Delete

A log should be generated after scan ,post it here

Download

Junkware removal tool

For vista and windows 7 right click on the tool and select run as administrator

After scan gets completed,post the generated log here.



Download

http://www.bleepingcomputer.com/download/rkill/

Run it and after scan finishes,post the contents of RKILL log located on the desktop here


Download

Autoruns

Extract and launch autoruns.exe

Allow the scan to get finished

Now click on FILE-SAVE

Filename:Autoruns.txt
Save as :Text

Paste the contents of text here

#6 MCorlione

MCorlione
  • Topic Starter

  • Members
  • 68 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Minnesota
  • Local time:06:23 AM

Posted 30 January 2013 - 08:14 AM

Hello,
I ran error check on the system last night. This morning it started fine, then Vista started downloading a Nvidia driver. It will not start up now. This is a new problem. Startup Repair is not doing anything when I select that as an option. Can you help?

#7 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:23 AM

Posted 30 January 2013 - 08:44 AM

Why did you run CHKDSK?

Did you follow any of my instructions?

On boot up,press F8 and select REPAIR YOUR COMPUTER

Do you have option called SYSTEM RESTORE in recovery console?

#8 MCorlione

MCorlione
  • Topic Starter

  • Members
  • 68 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Minnesota
  • Local time:06:23 AM

Posted 30 January 2013 - 09:56 AM

Yes I ran CHKDSK last night before I went to bed.

No I was unable to do any of the instructions.

I hit repair several times, but nothing.

I have an option SYSTEM RESTORE, but it does nothing.

Update...after letting it sit for the last hour it booted. Shall I proceed with your instructions?

#9 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:23 AM

Posted 30 January 2013 - 10:05 AM

Yes,please follow my instructions alone.

#10 MCorlione

MCorlione
  • Topic Starter

  • Members
  • 68 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Minnesota
  • Local time:06:23 AM

Posted 30 January 2013 - 10:17 AM

IE is not responding, and when I chose to close and restart it, the screen has gone black. Can you advise?

#11 MCorlione

MCorlione
  • Topic Starter

  • Members
  • 68 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Minnesota
  • Local time:06:23 AM

Posted 30 January 2013 - 10:22 AM

I have switched to google chrome and am proceeding with the previous steps.

#12 MCorlione

MCorlione
  • Topic Starter

  • Members
  • 68 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Minnesota
  • Local time:06:23 AM

Posted 30 January 2013 - 12:08 PM

FYI I am not making any progress as half way through the Malwarebytes the screen went black, and it again is having trouble booting up. It just stalls at a black screen once I select the recover option.

#13 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:23 AM

Posted 30 January 2013 - 12:18 PM

This may be a hardware issue.Please backup your important datas.

Ignore malwarebytes and run other scans.

#14 MCorlione

MCorlione
  • Topic Starter

  • Members
  • 68 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Minnesota
  • Local time:06:23 AM

Posted 30 January 2013 - 04:24 PM

I am unable to boot the machine. It appears to be booting, then just goes to a black screen. I can move the cursor around on the screen, but nothing happens. Can you advise?

#15 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:23 AM

Posted 30 January 2013 - 08:25 PM

What about safemode?

Can you get into recovery console by pressing F8-REPAIR YOUR COMPUTER?




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users