svchost.exe

ElegantlyWasted
ElegantlyWasted Posts: 381 Forumite
in Techie Stuff
Hi

I did a factory reset on my laptop a few days ago, and since then, MalwareBytes has had a few pop-up windows that say "MalwareBytes has successfully blocked access to a malicious website" with the code "svchost.exe".

I've run a MalwareBytes scan, and it came back clear.

I've looked online though and apparently this svchost thing can be a virus disguising itself, or something to that effect.

Does anyone have any ideas what I should do now?

Thanks :)
Everyday I am asked to be a magician, in a world where magic does not exist.
«1

Comments

  • macman
    macman Posts: 53,129 Forumite
    Part of the Furniture 10,000 Posts Name Dropper
    Since it's been blocked, you don't need to do anything. But stay away from the website in question.
    Any executable fie is potentially malicious if downloaded.
    svchost.exe is a Windows system file, or series of system files.
    No free lunch, and no free laptop ;)
  • ElegantlyWasted
    ElegantlyWasted Posts: 381 Forumite
    It didn't seem to be website-specific, happened once on MSE, once on twitter, and twice on other websites (can't remember which, possibly the BBC/hotmail).
    One of the websites I read said that virus' could call themselves svchost in order to bypass firewalls, or something to that effect.

    I am ridiculously paranoid about computer-y things at the best of times, so things like this make me far more anxious than they should! Thank you for the help :)
    Everyday I am asked to be a magician, in a world where magic does not exist.
  • waddler_8
    waddler_8 Posts: 3,588 Forumite
    We should investigate it further. If mbam was blocking websites whilst browsing I would expect the browser process to be the one being blocked, not svchost.

    It's true that malware can inject code into trusted processes to bypass firewalls. Malware may also name itself svchost in an attempt to hide itself.

    The real svchost will be located in system32 folder.

    Download DDS from the link below and save it to your desktop:

    Link

    After you've downloaded it and saved it to your desktop:
    • Double click DDS to run it.
    • When it's finished, DDS will open two logs:
    1. DDS.txt
    2. Attach.txt
    Save both reports to your desktop.

    Copy & paste the contents of just DDS.txt for now and post it here (you may need to split the log over separate posts)
  • ElegantlyWasted
    ElegantlyWasted Posts: 381 Forumite
    DDS (Ver_2012-11-07.01) - NTFS_AMD64
    Internet Explorer: 9.0.8112.16455 BrowserJavaVersion: 10.9.2
    Run by Lisa at 13:03:21 on 2012-11-18
    Microsoft Windows 7 Home Premium 6.1.7600.0.1252.44.1033.18.4029.1131 [GMT 0:00]
    .
    AV: AVG Anti-Virus Free Edition 2013 *Enabled/Updated* {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
    SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    SP: Spybot - Search and Destroy *Enabled/Updated* {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
    SP: AVG Anti-Virus Free Edition 2013 *Enabled/Updated* {B5F5C120-2089-702E-0001-553BB0D5A664}
    .
    ============== Running Processes ===============
    .
    C:\PROGRA~2\AVG\AVG2013\avgrsa.exe
    C:\Program Files (x86)\AVG\AVG2013\avgcsrva.exe
    C:\windows\system32\lsm.exe
    C:\windows\system32\svchost.exe -k DcomLaunch
    C:\windows\system32\svchost.exe -k RPCSS
    C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
    C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
    C:\windows\system32\svchost.exe -k netsvcs
    C:\windows\servicing\TrustedInstaller.exe
    C:\windows\system32\svchost.exe -k LocalService
    C:\windows\system32\svchost.exe -k NetworkService
    C:\windows\system32\WLANExt.exe
    C:\windows\System32\spoolsv.exe
    C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
    C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
    C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe
    C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
    C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
    C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
    C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
    C:\Program Files (x86)\AVG\AVG2013\avgnsa.exe
    C:\Program Files (x86)\AVG\AVG2013\avgemca.exe
    C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
    C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe
    C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
    C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
    C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
    C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
    C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
    C:\windows\system32\SearchIndexer.exe
    C:\windows\system32\taskhost.exe
    C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
    C:\windows\system32\Dwm.exe
    C:\windows\Explorer.EXE
    C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler.exe
    C:\Program Files (x86)\Google\Update\1.3.21.123\GoogleCrashHandler64.exe
    C:\windows\system32\taskeng.exe
    C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe
    C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
    C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
    C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
    C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
    c:\PROGRA~2\mcafee\SITEAD~1\McSACore.exe
    C:\windows\system32\rundll32.exe
    C:\windows\system32\rundll32.exe
    C:\windows\SysWOW64\rundll32.exe
    C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
    C:\Program Files\Windows Media Player\wmpnetwk.exe
    C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
    C:\Windows\System32\igfxtray.exe
    C:\Windows\System32\hkcmd.exe
    C:\Windows\System32\igfxpers.exe
    C:\Program Files\Elantech\ETDCtrl.exe
    C:\Program Files (x86)\Lenovo\Energy Management\utility.exe
    C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe
    C:\Program Files\Windows Sidebar\sidebar.exe
    C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
    C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
    C:\Program Files (x86)\Lenovo\VeriFace\PManage.exe
    C:\Program Files (x86)\AVG\AVG2013\avgui.exe
    C:\Program Files (x86)\AVG Secure Search\vprot.exe
    C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
    C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
    C:\Program Files\Elantech\ETDCtrlHelper.exe
    C:\windows\System32\svchost.exe -k LocalServicePeerNet
    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    C:\windows\system32\wuauclt.exe
    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    c:\PROGRA~2\mcafee\SITEAD~1\saui.exe
    C:\windows\system32\wuauclt.exe
    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    C:\Program Files (x86)\Mozilla Firefox\firefox.exe
    C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
    C:\windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_5_502_110.exe
    C:\windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_5_502_110.exe
    C:\Program Files (x86)\Java\jre7\bin\jp2launcher.exe
    C:\Program Files (x86)\Java\jre7\bin\java.exe
    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    C:\windows\system32\taskhost.exe
    C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    C:\windows\system32\taskeng.exe
    C:\windows\system32\SearchProtocolHost.exe
    C:\windows\system32\SearchFilterHost.exe
    C:\windows\system32\taskhost.exe
    C:\windows\system32\wbem\wmiprvse.exe
    C:\windows\System32\cscript.exe
    .

    ============== Pseudo HJT Report ===============
    .
    uStart Page = hxxp://lenovo.msn.com
    mStart Page = hxxp://lenovo.msn.com
    uURLSearchHooks: McAfee SiteAdvisor Toolbar: {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll
    mWinlogon: Userinit = userinit.exe
    BHO: Spybot-S&D IE Protection: {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDHelper.dll
    BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
    BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    BHO: AVG Security Toolbar: {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\13.2.0.5\AVG Secure Search_toolbar.dll
    BHO: McAfee SiteAdvisor BHO: {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll
    BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
    TB: McAfee SiteAdvisor Toolbar: {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll
    TB: AVG Security Toolbar: {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\13.2.0.5\AVG Secure Search_toolbar.dll
    uRun: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
    uRun: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
    uRun: [Spybot-S&D Cleaning] "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe" /autoclean
    mRun: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
    mRun: [UpdateP2GShortCut] "C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Lenovo\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\5.0"
    mRun: [VeriFaceManager] C:\Program Files (x86)\Lenovo\VeriFace\PManage.exe
    mRun: [YouCam Mirage] "C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe"
    mRun: [YouCam Tray] "C:\Program Files (x86)\Lenovo\YouCam\YouCam.exe" /s
    mRun: [UpdatePRCShortCut] "C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MUITransfer\MUIStartMenu.exe" "C:\Program Files\Lenovo\OneKey App\OneKey Recovery" UpdateWithCreateOnce "Software\Lenovo\OneKey App\OneKey Recovery"
    mRun: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2013\avgui.exe" /TRAYONLY
    mRun: [vProt] "C:\Program Files (x86)\AVG Secure Search\vprot.exe"
    mRun: [ROC_roc_ssl_v12] "C:\Program Files (x86)\AVG Secure Search\ROC_roc_ssl_v12.exe" / /PROMPT /CMPID=roc_ssl_v12
    mRun: [SDTray] "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
    mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
    mPolicies-Explorer: NoActiveDesktop = dword:1
    mPolicies-Explorer: NoActiveDesktopChanges = dword:1
    mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
    mPolicies-System: ConsentPromptBehaviorUser = dword:3
    mPolicies-System: EnableUIADesktopToggle = dword:0
    IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
    IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDHelper.dll
    .
    INFO: HKCU has more than 50 listed domains.
    If you wish to scan all of them, select the 'Force scan all domains' option.
    .
    .
    INFO: HKLM has more than 50 listed domains.
    If you wish to scan all of them, select the 'Force scan all domains' option.
    .
    TCP: NameServer = 192.168.1.1
    TCP: Interfaces\{D1173001-7769-4967-AD06-A34FD77DDF2D} : DHCPNameServer = 192.168.1.1
    Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll
    Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\McIEPlg.dll
    Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\13.2.0\ViProtocol.dll
    Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
    Notify: SDWinLogon - SDWinLogon.dll
    SSODL: WebCheck - <orphaned>
    x64-mStart Page = hxxp://lenovo.msn.com
    x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    x64-BHO: McAfee SiteAdvisor BHO: {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll
    x64-TB: McAfee SiteAdvisor Toolbar: {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll
    x64-Run: [IgfxTray] C:\windows\System32\igfxtray.exe
    x64-Run: [HotKeysCmds] C:\windows\System32\hkcmd.exe
    x64-Run: [Persistence] C:\windows\System32\igfxpers.exe
    x64-Run: [ETDCtrl] C:\Program Files (x86)\Elantech\ETDCtrl.exe
    x64-Run: [UpdatePRCShortCut] "C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MUITransfer\MUIStartMenu.exe" "C:\Program Files\Lenovo\OneKey App\OneKey Recovery" UpdateWithCreateOnce "Software\Lenovo\OneKey App\OneKey Recovery"
    x64-Run: [Lenovo EE Boot Optimizer] C:\Program Files (x86)\Lenovo\Boot Optimizer\PopWnd.exe
    x64-Run: [EnergyUtility] C:\Program Files (x86)\Lenovo\Energy Management\utility.exe
    x64-Run: [Energy Management] C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe
    .
    INFO: x64-HKLM has more than 50 listed domains.
    If you wish to scan all of them, select the 'Force scan all domains' option.
    .
    x64-Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll
    x64-Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files (x86)\McAfee\SiteAdvisor\x64\McIEPlg.dll
    x64-Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - <orphaned>
    x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
    x64-Notify: igfxcui - igfxdev.dll
    x64-SSODL: WebCheck - <orphaned>
    Hosts: 127.0.0.1 https://www.spywareinfo.com
    .
    ================= FIREFOX ===================
    .
    FF - ProfilePath - C:\Users\Lisa\AppData\Roaming\Mozilla\Firefox\Profiles\cfc8axd3.default\
    FF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL
    FF - plugin: C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\13.2.0\npsitesafety.dll
    FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll
    FF - plugin: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
    FF - plugin: C:\Program Files (x86)\McAfee\SiteAdvisor\NPMcFFPlg32.dll
    FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrlui.dll
    FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
    FF - plugin: C:\windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_110.dll
    FF - plugin: C:\windows\SysWOW64\npDeployJava1.dll
    FF - plugin: C:\windows\SysWOW64\npmproxy.dll
    FF - ExtSQL: 2012-11-15 15:13; avg@toolbar; C:\ProgramData\AVG Secure Search\FireFoxExt\13.2.0.5
    FF - ExtSQL: 2012-11-15 21:55; {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}; C:\Users\Lisa\AppData\Roaming\Mozilla\Firefox\Profiles\cfc8axd3.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
    FF - ExtSQL: 2012-11-17 12:40; {4ED1F68A-5463-4931-9384-8FFF5ED91D92}; C:\Program Files (x86)\McAfee\SiteAdvisor
    .
    Everyday I am asked to be a magician, in a world where magic does not exist.
  • ElegantlyWasted
    ElegantlyWasted Posts: 381 Forumite
    ============= SERVICES / DRIVERS ===============
    .
    R0 AVGIDSHA;AVGIDSHA;C:\windows\System32\drivers\avgidsha.sys [2012-10-15 63328]
    R0 Avgloga;AVG Logging Driver;C:\windows\System32\drivers\avgloga.sys [2012-9-21 225120]
    R0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;C:\windows\System32\drivers\avgmfx64.sys [2012-10-5 111456]
    R0 Avgrkx64;AVG Anti-Rootkit Driver;C:\windows\System32\drivers\avgrkx64.sys [2012-9-14 40800]
    R0 fbfmon;fbfmon;C:\windows\System32\drivers\fbfmon.sys [2011-3-21 57952]
    R0 LHDmgr;LHDmgr;C:\windows\System32\drivers\LhdX64.sys [2011-3-21 39008]
    R1 AVGIDSDriver;AVGIDSDriver;C:\windows\System32\drivers\avgidsdrivera.sys [2012-10-22 154464]
    R1 Avgldx64;AVG AVI Loader Driver;C:\windows\System32\drivers\avgldx64.sys [2012-10-2 185696]
    R1 Avgtdia;AVG TDI Driver;C:\windows\System32\drivers\avgtdia.sys [2012-9-21 200032]
    R1 avgtp;avgtp;C:\windows\System32\drivers\avgtpx64.sys [2012-11-15 30568]
    R1 BPntDrv;BPntDrv;C:\windows\System32\drivers\BPntDrv.sys [2011-3-21 13408]
    R1 SASDIFSV;SASDIFSV;C:\Program Files\SUPERAntiSpyware\sasdifsv64.sys [2011-7-22 14928]
    R1 SASKUTIL;SASKUTIL;C:\Program Files\SUPERAntiSpyware\saskutil64.sys [2011-7-12 12368]
    R2 !SASCORE;SAS Core Service;C:\Program Files\SUPERAntiSpyware\SASCore64.exe [2012-7-11 140672]
    R2 AVGIDSAgent;AVGIDSAgent;C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe [2012-11-6 5814392]
    R2 avgwd;AVG WatchDog;C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe [2012-10-22 196664]
    R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
    R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
    R2 cvhsvc;Client Virtualization Handler;C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE [2012-1-4 822624]
    R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-3-21 13336]
    R2 MBAMScheduler;MBAMScheduler;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2012-11-15 399432]
    R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-11-15 676936]
    R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service;C:\PROGRA~2\mcafee\SITEAD~1\McSACore.exe [2012-11-16 103472]
    R3 ACPIVPC;Lenovo Virtual Power Controller Driver;C:\windows\System32\drivers\AcpiVpc.sys [2011-3-21 29792]
    R3 clwvd;CyberLink WebCam Virtual Driver;C:\windows\System32\drivers\clwvd.sys [2010-12-5 31088]
    R3 ETD;ELAN PS/2 Port Input Device;C:\windows\System32\drivers\ETD.sys [2011-3-21 138024]
    R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;C:\windows\System32\drivers\L1C62x64.sys [2011-3-21 76912]
    R3 MBAMProtector;MBAMProtector;C:\windows\System32\drivers\mbam.sys [2012-11-15 25928]
    R3 Sftfs;Sftfs;C:\windows\System32\drivers\Sftfslh.sys [2011-10-1 764264]
    R3 Sftplay;Sftplay;C:\windows\System32\drivers\Sftplaylh.sys [2011-10-1 268648]
    R3 Sftredir;Sftredir;C:\windows\System32\drivers\Sftredirlh.sys [2011-10-1 25960]
    R3 Sftvol;Sftvol;C:\windows\System32\drivers\Sftvollh.sys [2011-10-1 22376]
    S3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0;C:\windows\System32\drivers\k57nd60a.sys [2009-6-10 270848]
    S3 netw5v64;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit;C:\windows\System32\drivers\netw5v64.sys [2009-6-10 5434368]
    S3 RSUSBVSTOR;RtsUVStor.Sys Realtek USB Card Reader;C:\windows\System32\drivers\rtsuvstor.sys [2011-3-21 307304]
    S3 wsvd;wsvd;C:\windows\System32\drivers\wsvd.sys [2009-7-21 121840]
    .
    =============== Created Last 30 ================
    .
    2012-11-18 12:47:29
    d
    w- C:\windows\System32\SPReview
    2012-11-18 12:46:12
    d
    w- C:\windows\System32\EventProviders
    2012-11-18 04:00:12
    d
    w- C:\windows\SysWow64\Wat
    2012-11-18 04:00:12
    d
    w- C:\windows\System32\Wat
    2012-11-17 12:50:26 5505904 ----a-w- C:\windows\System32\ntoskrnl.exe
    2012-11-17 03:42:39 367104 ----a-w- C:\windows\System32\wcncsvc.dll
    2012-11-17 03:42:39 276992 ----a-w- C:\windows\SysWow64\wcncsvc.dll
    2012-11-17 03:28:17 9728 ----a-w- C:\windows\System32\Wdfres.dll
    2012-11-17 03:28:17 785512 ----a-w- C:\windows\System32\drivers\Wdf01000.sys
    2012-11-17 03:28:17 54376 ----a-w- C:\windows\System32\drivers\WdfLdr.sys
    2012-11-17 03:28:17 2560 ----a-w- C:\windows\System32\drivers\en-US\wdf01000.sys.mui
    2012-11-17 03:22:12 99176 ----a-w- C:\windows\SysWow64\PresentationHostProxy.dll
    2012-11-17 03:22:12 49472 ----a-w- C:\windows\SysWow64\netfxperf.dll
    2012-11-17 03:22:12 48960 ----a-w- C:\windows\System32\netfxperf.dll
    2012-11-17 03:22:12 444752 ----a-w- C:\windows\System32\mscoree.dll
    2012-11-17 03:22:12 320352 ----a-w- C:\windows\System32\PresentationHost.exe
    2012-11-17 03:22:12 297808 ----a-w- C:\windows\SysWow64\mscoree.dll
    2012-11-17 03:22:12 295264 ----a-w- C:\windows\SysWow64\PresentationHost.exe
    2012-11-17 03:22:12 1942856 ----a-w- C:\windows\System32\dfshim.dll
    2012-11-17 03:22:12 1130824 ----a-w- C:\windows\SysWow64\dfshim.dll
    2012-11-17 03:22:12 109912 ----a-w- C:\windows\System32\PresentationHostProxy.dll
    2012-11-17 03:21:24 294912 ----a-w- C:\windows\System32\browserchoice.exe
    2012-11-17 03:13:45 87040 ----a-w- C:\windows\System32\drivers\WUDFPf.sys
    2012-11-17 03:13:45 198656 ----a-w- C:\windows\System32\drivers\WUDFRd.sys
    2012-11-17 03:13:44 84992 ----a-w- C:\windows\System32\WUDFSvc.dll
    2012-11-17 03:13:44 194048 ----a-w- C:\windows\System32\WUDFPlatform.dll
    2012-11-17 03:13:43 744448 ----a-w- C:\windows\System32\WUDFx.dll
    2012-11-17 03:13:43 45056 ----a-w- C:\windows\System32\WUDFCoinstaller.dll
    2012-11-17 03:13:43 229888 ----a-w- C:\windows\System32\WUDFHost.exe
    2012-11-17 03:08:58 22896 ----a-w- C:\windows\System32\drivers\fs_rec.sys
    2012-11-17 03:08:57 80896 ----a-w- C:\windows\System32\imagehlp.dll
    2012-11-17 03:08:57 5120 ----a-w- C:\windows\System32\wmi.dll
    2012-11-17 03:08:57 158720 ----a-w- C:\windows\SysWow64\imagehlp.dll
    2012-11-17 03:08:56 5120 ----a-w- C:\windows\SysWow64\wmi.dll
    2012-11-17 03:06:09
    d-sh--w- C:\windows\SysWow64\%APPDATA%
    2012-11-16 21:25:50
    d
    w- C:\Program Files\VideoLAN
    2012-11-16 21:21:23
    d
    w- C:\Program Files (x86)\Hot Dish 2 - Cross Country Cook Off
    2012-11-16 21:19:46
    d
    w- C:\Program Files (x86)\Mystery Case Files - Ravenhearst
    2012-11-16 21:17:52
    d
    w- C:\Program Files (x86)\Awakening - The Dreamless Castle
    2012-11-16 21:15:04
    d
    w- C:\Program Files (x86)\Peggle Deluxe
    2012-11-16 21:14:29
    d
    w- C:\Program Files (x86)\Jojo's Fashion Show
    2012-11-16 21:12:44
    d
    w- C:\ProgramData\Big Fish Games
    2012-11-16 21:12:42
    d
    w- C:\Program Files (x86)\bfgclient
    2012-11-16 21:10:32
    d
    w- C:\BigFishGamesCache
    2012-11-16 12:34:31 1328640 ----a-w- C:\windows\SysWow64\quartz.dll
    2012-11-16 12:33:58 287744 ----a-w- C:\windows\System32\drivers\mrxsmb10.sys
    2012-11-16 12:33:57 157696 ----a-w- C:\windows\System32\drivers\mrxsmb.sys
    2012-11-16 12:33:57 126464 ----a-w- C:\windows\System32\drivers\mrxsmb20.sys
    2012-11-16 12:33:54 3147264 ----a-w- C:\windows\System32\win32k.sys
    2012-11-16 12:33:48 395776 ----a-w- C:\windows\System32\webio.dll
    2012-11-16 12:33:47 314368 ----a-w- C:\windows\SysWow64\webio.dll
    2012-11-16 12:33:40 2003968 ----a-w- C:\windows\System32\msxml6.dll
    2012-11-16 12:33:39 1880064 ----a-w- C:\windows\System32\msxml3.dll
    2012-11-16 12:33:39 1389568 ----a-w- C:\windows\SysWow64\msxml6.dll
    2012-11-16 12:33:38 1236992 ----a-w- C:\windows\SysWow64\msxml3.dll
    2012-11-16 12:31:58 425984 ----a-w- C:\windows\System32\KernelBase.dll
    2012-11-16 12:30:50 340992 ----a-w- C:\windows\System32\schannel.dll
    2012-11-16 12:29:33 220160 ----a-w- C:\windows\System32\wintrust.dll
    2012-11-16 12:29:33 172544 ----a-w- C:\windows\SysWow64\wintrust.dll
    2012-11-16 12:29:24 2048 ----a-w- C:\windows\SysWow64\tzres.dll
    2012-11-16 12:29:24 2048 ----a-w- C:\windows\System32\tzres.dll
    2012-11-16 12:27:26 64512 ----a-w- C:\windows\SysWow64\devobj.dll
    2012-11-16 12:26:58 690688 ----a-w- C:\windows\SysWow64\msvcrt.dll
    2012-11-16 12:25:59 140288 ----a-w- C:\windows\System32\cryptnet.dll
    2012-11-16 12:25:59 139264 ----a-w- C:\windows\SysWow64\cryptsvc.dll
    2012-11-16 12:25:58 103936 ----a-w- C:\windows\SysWow64\cryptnet.dll
    2012-11-16 12:25:32 77312 ----a-w- C:\windows\System32\packager.dll
    2012-11-16 12:25:32 67072 ----a-w- C:\windows\SysWow64\packager.dll
    2012-11-16 00:45:09
    d
    w- C:\ProgramData\VirtualizedApplications
    2012-11-15 23:54:07 821736 ----a-w- C:\windows\SysWow64\npDeployJava1.dll
    2012-11-15 23:54:07 746984 ----a-w- C:\windows\SysWow64\deployJava1.dll
    2012-11-15 23:53:46 95208 ----a-w- C:\windows\SysWow64\WindowsAccessBridge-32.dll
    2012-11-15 22:17:31
    d
    w- C:\Users\Lisa\AppData\Local\SoftGrid Client
    2012-11-15 22:17:30
    d
    w- C:\Users\Lisa\AppData\Roaming\SoftGrid Client
    2012-11-15 22:16:23
    d
    w- C:\Program Files (x86)\Microsoft Application Virtualization Client
    2012-11-15 22:16:09
    d
    w- C:\Users\Lisa\AppData\Roaming\TP
    2012-11-15 21:28:20
    d
    w- C:\Users\Lisa\AppData\Local\Macromedia
    2012-11-15 21:25:22 73656 ----a-w- C:\windows\SysWow64\FlashPlayerCPLApp.cpl
    2012-11-15 21:25:22 697272 ----a-w- C:\windows\SysWow64\FlashPlayerApp.exe
    2012-11-15 19:51:38
    d
    w- C:\Users\Lisa\AppData\Local\Mozilla
    2012-11-15 19:27:54
    d-sh--w- C:\windows\System32\%APPDATA%
    2012-11-15 16:33:22
    d
    w- C:\ProgramData\Spybot - Search & Destroy
    2012-11-15 16:33:09 17272 ----a-w- C:\windows\System32\sdnclean64.exe
    2012-11-15 16:33:03
    d
    w- C:\Program Files (x86)\Spybot - Search & Destroy 2
    2012-11-15 16:32:50
    d
    w- C:\Users\Lisa\AppData\Local\Programs
    2012-11-15 15:56:49
    d
    w- C:\Users\Lisa\AppData\Roaming\SUPERAntiSpyware.com
    2012-11-15 15:56:44
    d
    w- C:\ProgramData\SUPERAntiSpyware.com
    2012-11-15 15:56:44
    d
    w- C:\Program Files\SUPERAntiSpyware
    2012-11-15 15:35:22
    d
    w- C:\Users\Lisa\AppData\Roaming\Malwarebytes
    2012-11-15 15:35:19 25928 ----a-w- C:\windows\System32\drivers\mbam.sys
    2012-11-15 15:35:19
    d
    w- C:\ProgramData\Malwarebytes
    2012-11-15 15:35:19
    d
    w- C:\Program Files (x86)\Malwarebytes' Anti-Malware
    2012-11-15 15:14:05
    d
    w- C:\Users\Lisa\AppData\Roaming\AVG2013
    2012-11-15 15:13:24
    d
    w- C:\Users\Lisa\AppData\Local\AVG Secure Search
    2012-11-15 15:13:22
    d
    w- C:\Users\Lisa\AppData\Roaming\TuneUp Software
    2012-11-15 15:13:21
    d
    w- C:\ProgramData\AVG Secure Search
    2012-11-15 15:13:19 30568 ----a-w- C:\windows\System32\drivers\avgtpx64.sys
    2012-11-15 15:13:18
    d
    w- C:\Program Files (x86)\Common Files\AVG Secure Search
    2012-11-15 15:13:17
    d
    w- C:\Program Files (x86)\AVG Secure Search
    2012-11-15 15:12:53
    d--h--w- C:\$AVG
    2012-11-15 15:12:53
    d
    w- C:\ProgramData\AVG2013
    2012-11-15 15:12:23
    d
    w- C:\Program Files (x86)\AVG
    2012-11-15 15:11:35
    d--h--w- C:\ProgramData\Common Files
    2012-11-15 15:11:35
    d
    w- C:\Users\Lisa\AppData\Local\MFAData
    2012-11-15 15:11:35
    d
    w- C:\Users\Lisa\AppData\Local\Avg2013
    2012-11-15 15:11:35
    d
    w- C:\ProgramData\MFAData
    2012-11-15 14:59:03 826368 ----a-w- C:\windows\SysWow64\rdpcore.dll
    2012-11-15 14:59:03 23552 ----a-w- C:\windows\System32\drivers\tdtcp.sys
    2012-11-15 14:59:03 1031680 ----a-w- C:\windows\System32\rdpcore.dll
    2012-11-15 14:56:20
    d
    w- C:\Users\Lisa\AppData\Local\Google
    2012-11-15 14:55:17
    d
    w- C:\Users\Lisa\AppData\Local\Deployment
    2012-11-15 14:55:17
    d
    w- C:\Users\Lisa\AppData\Local\Apps
    2012-11-15 14:55:09 2622464 ----a-w- C:\windows\System32\wucltux.dll
    2012-11-15 14:55:04 99840 ----a-w- C:\windows\System32\wudriver.dll
    2012-11-15 14:54:55 36864 ----a-w- C:\windows\System32\wuapp.exe
    2012-11-15 14:54:55 186752 ----a-w- C:\windows\System32\wuwebv.dll
    2012-11-15 14:53:15
    d
    w- C:\Users\Lisa\AppData\Roaming\Intel Corporation
    2012-11-15 14:52:03
    d-sh--w- C:\$RECYCLE.BIN
    2012-11-15 14:52:01
    d
    w- C:\Users\Lisa\AppData\Local\VirtualStore
    2012-11-15 14:50:20
    d-sh--w- C:\Recovery
    2012-10-22 13:02:44 154464 ----a-w- C:\windows\System32\drivers\avgidsdrivera.sys
    .
    ==================== Find3M ====================
    .
    2012-10-15 03:48:50 63328 ----a-w- C:\windows\System32\drivers\avgidsha.sys
    2012-10-05 03:32:50 111456 ----a-w- C:\windows\System32\drivers\avgmfx64.sys
    2012-10-02 03:30:38 185696 ----a-w- C:\windows\System32\drivers\avgldx64.sys
    2012-09-25 22:39:14 95744 ----a-w- C:\windows\System32\synceng.dll
    2012-09-25 21:55:17 78336 ----a-w- C:\windows\SysWow64\synceng.dll
    2012-09-21 03:46:04 200032 ----a-w- C:\windows\System32\drivers\avgtdia.sys
    2012-09-21 03:46:00 225120 ----a-w- C:\windows\System32\drivers\avgloga.sys
    2012-09-14 03:05:18 40800 ----a-w- C:\windows\System32\drivers\avgrkx64.sys
    2012-08-31 18:02:20 1656688 ----a-w- C:\windows\System32\drivers\ntfs.sys
    2012-08-30 17:18:33 3958128 ----a-w- C:\windows\SysWow64\ntkrnlpa.exe
    2012-08-30 17:18:33 3902832 ----a-w- C:\windows\SysWow64\ntoskrnl.exe
    .
    ============= FINISH: 13:06:39.26 ===============
    Everyday I am asked to be a magician, in a world where magic does not exist.
  • waddler_8
    waddler_8 Posts: 3,588 Forumite
    Thanks. Whilst I go through that...

    Download aswMBR and save it to your Desktop.

    http://public.avast.com/~gmerek/aswMBR.exe
    • Right click aswMBR.exe & choose "Run as Administrator" to run it.
    • Click YES to the prompt to download Avast virus definitions
    • When the virus definitions have downloaded, click the Scan button.
    • Wait till the scan reports "Scan finished successfully"
    • Click Save log & save the log to your desktop.
    • Click OK
    • Two files will be created, aswMBR.txt & a file named MBR.dat
    • Click EXIT.
    • Copy & Paste the contents of aswMBR.txt into your next reply.
    Don't click to fix anything, just post the log
  • ElegantlyWasted
    ElegantlyWasted Posts: 381 Forumite
    aswMBR version 0.9.9.1707 Copyright(c) 2011 AVAST Software
    Run date: 2012-11-18 13:54:57
    13:54:57.096 OS Version: Windows x64 6.1.7600
    13:54:57.097 Number of processors: 2 586 0x170A
    13:54:57.098 ComputerName: MURRAY UserName: Lisa
    13:55:15.441 Initialize success
    13:57:14.567 AVAST engine defs: 12111800
    13:57:20.711 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
    13:57:20.714 Disk 0 Vendor: ST950032 0011 Size: 476940MB BusType: 3
    13:57:20.729 Disk 0 MBR read successfully
    13:57:20.733 Disk 0 MBR scan
    13:57:20.738 Disk 0 Windows 7 default MBR code
    13:57:20.757 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 200 MB offset 2048
    13:57:20.785 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 431938 MB offset 411648
    13:57:20.791 Disk 0 Partition - 00 0F Extended LBA 29692 MB offset 885020672
    13:57:20.821 Disk 0 Partition 3 00 12 Compaq diag NTFS 15109 MB offset 945829888
    13:57:20.853 Disk 0 Partition 4 00 07 HPFS/NTFS NTFS 29691 MB offset 885022720
    13:57:20.902 Disk 0 scanning C:\windows\system32\drivers
    13:57:33.847 Service scanning
    13:58:23.400 Modules scanning
    13:58:23.759 Disk 0 trace - called modules:
    13:58:23.776 ntoskrnl.exe CLASSPNP.SYS disk.sys iaStor.sys hal.dll
    13:58:23.784 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8004c323a0]
    13:58:23.792 3 CLASSPNP.SYS[fffff88001a7f43f] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8004756050]
    13:58:26.141 AVAST engine scan C:\windows
    13:58:30.043 AVAST engine scan C:\windows\system32
    14:04:31.419 AVAST engine scan C:\windows\system32\drivers
    14:04:54.484 AVAST engine scan C:\Users\Lisa
    14:07:44.417 AVAST engine scan C:\ProgramData
    14:08:24.897 Scan finished successfully
    14:08:44.692 Disk 0 MBR has been saved successfully to "C:\Users\Lisa\Desktop\MBR.dat"
    14:08:44.699 The log file has been saved successfully to "C:\Users\Lisa\Desktop\aswMBR.txt"



    Thanks so much for your help :)
    Everyday I am asked to be a magician, in a world where magic does not exist.
  • waddler_8
    waddler_8 Posts: 3,588 Forumite
    Not much showing so far. One other check.

    Download TDSSkiller from the link below and save it to your desktop

    LINK

    • Right click TDSSKiller.exe and choose "Run as Administrator" to run it.
    • Allow any UAC prompt
    • Click Change parameters
    • Under Objects to scan check Loaded modules in addition to those already checked.
    • Click Reboot now when prompted.
    • After reboot when TDSSKiller has re-loaded, click Start scan and allow it to scan.
    • If Malicious objects are detected, the default action will be Cure, ensure Cure is selected then click Continue
    • If suspicious objects are detected, the default action will be Skip, ensure Skip is selected then click Continue
    • It may ask you to reboot the computer to complete the process. Click on Reboot Now and allow the computer to reboot.
    • A log will be created at the root of your C: drive: TDSSKiller.Version_Date_Time_log.txt.:
    • If no reboot is required, click on Report. A log file should appear.
    • Post the contents in your next reply
  • ElegantlyWasted
    ElegantlyWasted Posts: 381 Forumite
    15:19:22.0500 3820 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
    15:19:22.0828 3820 ============================================================
    15:19:22.0828 3820 Current date / time: 2012/11/18 15:19:22.0828
    15:19:22.0828 3820 SystemInfo:
    15:19:22.0828 3820
    15:19:22.0828 3820 OS Version: 6.1.7601 ServicePack: 1.0
    15:19:22.0828 3820 Product type: Workstation
    15:19:22.0828 3820 ComputerName: MURRAY
    15:19:22.0828 3820 UserName: Lisa
    15:19:22.0828 3820 Windows directory: C:\windows
    15:19:22.0828 3820 System windows directory: C:\windows
    15:19:22.0828 3820 Running under WOW64
    15:19:22.0828 3820 Processor architecture: Intel x64
    15:19:22.0828 3820 Number of processors: 2
    15:19:22.0828 3820 Page size: 0x1000
    15:19:22.0828 3820 Boot type: Normal boot
    15:19:22.0828 3820 ============================================================
    15:19:29.0068 3820 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
    15:19:29.0083 3820 ============================================================
    15:19:29.0083 3820 \Device\Harddisk0\DR0:
    15:19:29.0083 3820 MBR partitions:
    15:19:29.0083 3820 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x64000
    15:19:29.0083 3820 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x64800, BlocksNum 0x34BA1000
    15:19:29.0114 3820 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x34C06000, BlocksNum 0x39FD800
    15:19:29.0114 3820 ============================================================
    15:19:29.0192 3820 C: <-> \Device\Harddisk0\DR0\Partition2
    15:19:29.0239 3820 D: <-> \Device\Harddisk0\DR0\Partition3
    15:19:29.0239 3820 ============================================================
    15:19:29.0239 3820 Initialize success
    15:19:29.0239 3820 ============================================================
    15:21:14.0441 5728 ============================================================
    15:21:14.0441 5728 Scan started
    15:21:14.0441 5728 Mode: Manual;
    15:21:14.0441 5728 ============================================================
    15:21:16.0532 5728 ================ Scan system memory ========================
    15:21:16.0532 5728 System memory - ok
    15:21:16.0532 5728 ================ Scan services =============================
    15:21:16.0688 5728 [ 581D88B25C4D4121824FED2CA38E562F ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
    15:21:16.0688 5728 !SASCORE - ok
    15:21:19.0012 5728 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\windows\system32\drivers\1394ohci.sys
    15:21:19.0028 5728 1394ohci - ok
    15:21:19.0262 5728 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\windows\system32\drivers\ACPI.sys
    15:21:19.0324 5728 ACPI - ok
    15:21:19.0402 5728 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\windows\system32\drivers\acpipmi.sys
    15:21:19.0418 5728 AcpiPmi - ok
    15:21:19.0496 5728 [ 5BBFF8B826EC38D32C26334E079C7EFC ] ACPIVPC C:\windows\system32\DRIVERS\AcpiVpc.sys
    15:21:19.0511 5728 ACPIVPC - ok
    15:21:21.0477 5728 [ 0CB0AA071C7B86A64F361DCFDF357329 ] AdobeFlashPlayerUpdateSvc C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
    15:21:21.0477 5728 AdobeFlashPlayerUpdateSvc - ok
    15:21:21.0586 5728 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\windows\system32\DRIVERS\adp94xx.sys
    15:21:21.0602 5728 adp94xx - ok
    15:21:21.0695 5728 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\windows\system32\DRIVERS\adpahci.sys
    15:21:21.0695 5728 adpahci - ok
    15:21:21.0773 5728 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\windows\system32\DRIVERS\adpu320.sys
    15:21:21.0820 5728 adpu320 - ok
    15:21:21.0929 5728 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\windows\System32\aelupsvc.dll
    15:21:21.0929 5728 AeLookupSvc - ok
    15:21:21.0976 5728 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\windows\system32\drivers\afd.sys
    15:21:22.0007 5728 AFD - ok
    15:21:22.0085 5728 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\windows\system32\drivers\agp440.sys
    15:21:22.0085 5728 agp440 - ok
    15:21:22.0148 5728 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\windows\System32\alg.exe
    15:21:22.0148 5728 ALG - ok
    15:21:22.0241 5728 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\windows\system32\drivers\aliide.sys
    15:21:22.0257 5728 aliide - ok
    15:21:22.0257 5728 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\windows\system32\drivers\amdide.sys
    15:21:22.0366 5728 amdide - ok
    15:21:22.0475 5728 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\windows\system32\DRIVERS\amdk8.sys
    15:21:22.0475 5728 AmdK8 - ok
    15:21:22.0491 5728 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\windows\system32\DRIVERS\amdppm.sys
    15:21:22.0491 5728 AmdPPM - ok
    15:21:22.0553 5728 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\windows\system32\drivers\amdsata.sys
    15:21:22.0553 5728 amdsata - ok
    15:21:22.0585 5728 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\windows\system32\DRIVERS\amdsbs.sys
    15:21:22.0600 5728 amdsbs - ok
    15:21:22.0803 5728 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\windows\system32\drivers\amdxata.sys
    15:21:22.0819 5728 amdxata - ok
    15:21:22.0943 5728 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\windows\system32\drivers\appid.sys
    15:21:22.0975 5728 AppID - ok
    15:21:23.0053 5728 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\windows\System32\appidsvc.dll
    15:21:23.0068 5728 AppIDSvc - ok
    15:21:23.0131 5728 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\windows\System32\appinfo.dll
    15:21:23.0131 5728 Appinfo - ok
    15:21:23.0318 5728 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\windows\system32\DRIVERS\arc.sys
    15:21:23.0318 5728 arc - ok
    15:21:23.0365 5728 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\windows\system32\DRIVERS\arcsas.sys
    15:21:23.0365 5728 arcsas - ok
    15:21:23.0396 5728 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\windows\system32\DRIVERS\asyncmac.sys
    15:21:23.0396 5728 AsyncMac - ok
    15:21:23.0489 5728 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\windows\system32\drivers\atapi.sys
    15:21:23.0489 5728 atapi - ok
    15:21:23.0599 5728 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\windows\System32\Audiosrv.dll
    15:21:23.0599 5728 AudioEndpointBuilder - ok
    15:21:23.0723 5728 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\windows\System32\Audiosrv.dll
    15:21:23.0723 5728 AudioSrv - ok
    15:21:24.0457 5728 [ 56C73C5BC1656656CAC38A23B4310466 ] AVGIDSAgent C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe
    15:21:24.0503 5728 AVGIDSAgent - ok
    15:21:24.0597 5728 [ 388056EBD5FE6718FE669078DBE37897 ] AVGIDSDriver C:\windows\system32\DRIVERS\avgidsdrivera.sys
    15:21:24.0597 5728 AVGIDSDriver - ok
    15:21:24.0691 5728 [ 550E981747D6A6C55078C77346FFC2C6 ] AVGIDSHA C:\windows\system32\DRIVERS\avgidsha.sys
    15:21:24.0691 5728 AVGIDSHA - ok
    15:21:24.0831 5728 [ 5989592A91A17587799792A81E1541D4 ] Avgldx64 C:\windows\system32\DRIVERS\avgldx64.sys
    15:21:24.0831 5728 Avgldx64 - ok
    15:21:24.0956 5728 [ 3FC43AA02545FCDDC22817829114DEC8 ] Avgloga C:\windows\system32\DRIVERS\avgloga.sys
    15:21:25.0034 5728 Avgloga - ok
    15:21:25.0159 5728 [ 767B4A485FB22AA0FC0BF5EEF00572B9 ] Avgmfx64 C:\windows\system32\DRIVERS\avgmfx64.sys
    15:21:25.0159 5728 Avgmfx64 - ok
    15:21:25.0221 5728 [ FE4F444DBE4BBBDFD8FECF49398DEFC7 ] Avgrkx64 C:\windows\system32\DRIVERS\avgrkx64.sys
    15:21:25.0221 5728 Avgrkx64 - ok
    15:21:25.0268 5728 [ 6E634525613D48A1D1657FB21F21F3B2 ] Avgtdia C:\windows\system32\DRIVERS\avgtdia.sys
    15:21:26.0375 5728 Avgtdia - ok
    15:21:26.0563 5728 [ BFD698CC6E1DE2E0D23155DECC513D2F ] avgtp C:\windows\system32\drivers\avgtpx64.sys
    15:21:26.0641 5728 avgtp - ok
    15:21:26.0719 5728 [ 6B72E1E329C4E98C6B6FDD2D265E3BA3 ] avgwd C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
    15:21:26.0719 5728 avgwd - ok
    15:21:26.0812 5728 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\windows\System32\AxInstSV.dll
    15:21:26.0875 5728 AxInstSV - ok
    15:21:27.0124 5728 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\windows\system32\DRIVERS\bxvbda.sys
    15:21:27.0343 5728 b06bdrv - ok
    15:21:27.0935 5728 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\windows\system32\DRIVERS\b57nd60a.sys
    15:21:27.0951 5728 b57nd60a - ok
    15:21:28.0996 5728 [ B5D54119CE0BB77872C33A717CB76386 ] BCM43XX C:\windows\system32\DRIVERS\bcmwl664.sys
    15:21:29.0027 5728 BCM43XX - ok
    15:21:29.0105 5728 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\windows\System32\bdesvc.dll
    15:21:29.0105 5728 BDESVC - ok
    15:21:29.0293 5728 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\windows\system32\drivers\Beep.sys
    15:21:29.0293 5728 Beep - ok
    15:21:29.0558 5728 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\windows\System32\bfe.dll
    15:21:29.0573 5728 BFE - ok
    15:21:29.0683 5728 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\windows\System32\qmgr.dll
    15:21:29.0683 5728 BITS - ok
    15:21:29.0714 5728 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\windows\system32\DRIVERS\blbdrive.sys
    15:21:29.0729 5728 blbdrive - ok
    15:21:29.0776 5728 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\windows\system32\DRIVERS\bowser.sys
    15:21:29.0776 5728 bowser - ok
    15:21:29.0854 5728 [ AAA4F992F879977A000FE8B8C730CD2C ] BPntDrv C:\windows\system32\drivers\BPntDrv.sys
    15:21:29.0963 5728 BPntDrv - ok
    15:21:30.0166 5728 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\windows\system32\DRIVERS\BrFiltLo.sys
    15:21:30.0182 5728 BrFiltLo - ok
    15:21:30.0213 5728 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\windows\system32\DRIVERS\BrFiltUp.sys
    15:21:30.0213 5728 BrFiltUp - ok
    15:21:30.0244 5728 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\windows\System32\browser.dll
    15:21:30.0244 5728 Browser - ok
    15:21:30.0307 5728 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\windows\System32\Drivers\Brserid.sys
    15:21:30.0400 5728 Brserid - ok
    15:21:30.0416 5728 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\windows\System32\Drivers\BrSerWdm.sys
    15:21:30.0463 5728 BrSerWdm - ok
    15:21:30.0478 5728 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\windows\System32\Drivers\BrUsbMdm.sys
    15:21:30.0494 5728 BrUsbMdm - ok
    15:21:30.0509 5728 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\windows\System32\Drivers\BrUsbSer.sys
    15:21:30.0509 5728 BrUsbSer - ok
    15:21:30.0603 5728 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\windows\system32\drivers\BthEnum.sys
    15:21:30.0634 5728 BthEnum - ok
    15:21:30.0728 5728 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\windows\system32\DRIVERS\bthmodem.sys
    15:21:30.0821 5728 BTHMODEM - ok
    15:21:30.0868 5728 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\windows\system32\DRIVERS\bthpan.sys
    15:21:30.0899 5728 BthPan - ok
    15:21:30.0993 5728 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT C:\windows\System32\Drivers\BTHport.sys
    15:21:31.0055 5728 BTHPORT - ok
    15:21:31.0102 5728 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\windows\system32\bthserv.dll
    15:21:31.0102 5728 bthserv - ok
    15:21:31.0149 5728 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\windows\System32\Drivers\BTHUSB.sys
    15:21:31.0180 5728 BTHUSB - ok
    15:21:31.0274 5728 [ 27C684D57A49DAB19BCE9D69529E8BE7 ] Cam5607 C:\windows\system32\Drivers\BisonC07.sys
    15:21:31.0305 5728 Cam5607 - ok
    15:21:31.0321 5728 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\windows\system32\DRIVERS\cdfs.sys
    15:21:31.0367 5728 cdfs - ok
    15:21:31.0445 5728 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\windows\system32\drivers\cdrom.sys
    15:21:31.0477 5728 cdrom - ok
    15:21:31.0523 5728 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\windows\System32\certprop.dll
    15:21:31.0555 5728 CertPropSvc - ok
    15:21:31.0586 5728 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\windows\system32\DRIVERS\circlass.sys
    15:21:31.0648 5728 circlass - ok
    15:21:31.0679 5728 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\windows\system32\CLFS.sys
    15:21:31.0679 5728 CLFS - ok
    15:21:31.0898 5728 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
    15:21:32.0038 5728 clr_optimization_v2.0.50727_32 - ok
    15:21:32.0132 5728 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
    15:21:32.0225 5728 clr_optimization_v2.0.50727_64 - ok
    15:21:32.0444 5728 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
    15:21:32.0444 5728 clr_optimization_v4.0.30319_32 - ok
    15:21:33.0224 5728 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
    15:21:33.0271 5728 clr_optimization_v4.0.30319_64 - ok
    15:21:33.0317 5728 [ 50F92C943F18B070F166D019DFAB3D9A ] clwvd C:\windows\system32\DRIVERS\clwvd.sys
    15:21:33.0317 5728 clwvd - ok
    15:21:33.0411 5728 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\windows\system32\DRIVERS\CmBatt.sys
    15:21:33.0458 5728 CmBatt - ok
    15:21:33.0505 5728 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\windows\system32\drivers\cmdide.sys
    15:21:33.0520 5728 cmdide - ok
    15:21:33.0583 5728 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\windows\system32\Drivers\cng.sys
    15:21:33.0614 5728 CNG - ok
    15:21:33.0692 5728 [ B07061EA7B00333BE213C9D0758D59AD ] CnxtHdAudService C:\windows\system32\drivers\CHDRT64.sys
    15:21:33.0707 5728 CnxtHdAudService - ok
    15:21:33.0723 5728 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\windows\system32\DRIVERS\compbatt.sys
    15:21:33.0723 5728 Compbatt - ok
    15:21:33.0770 5728 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\windows\system32\drivers\CompositeBus.sys
    15:21:33.0801 5728 CompositeBus - ok
    15:21:33.0817 5728 COMSysApp - ok
    15:21:33.0848 5728 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\windows\system32\DRIVERS\crcdisk.sys
    15:21:33.0863 5728 crcdisk - ok
    15:21:33.0895 5728 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\windows\system32\cryptsvc.dll
    15:21:33.0895 5728 CryptSvc - ok
    15:21:34.0004 5728 [ 72794D112CBAFF3BC0C29BF7350D4741 ] cvhsvc C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
    15:21:34.0004 5728 cvhsvc - ok
    15:21:34.0066 5728 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\windows\system32\rpcss.dll
    15:21:34.0066 5728 DcomLaunch - ok
    15:21:34.0097 5728 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\windows\System32\defragsvc.dll
    15:21:34.0113 5728 defragsvc - ok
    15:21:34.0160 5728 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\windows\system32\Drivers\dfsc.sys
    15:21:34.0285 5728 DfsC - ok
    15:21:34.0347 5728 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\windows\system32\dhcpcore.dll
    15:21:34.0347 5728 Dhcp - ok
    15:21:34.0378 5728 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\windows\system32\drivers\discache.sys
    15:21:34.0441 5728 discache - ok
    15:21:34.0456 5728 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\windows\system32\DRIVERS\disk.sys
    15:21:34.0472 5728 Disk - ok
    15:21:34.0503 5728 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\windows\System32\dnsrslvr.dll
    15:21:34.0503 5728 Dnscache - ok
    15:21:34.0550 5728 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\windows\System32\dot3svc.dll
    15:21:34.0612 5728 dot3svc - ok
    Everyday I am asked to be a magician, in a world where magic does not exist.
  • ElegantlyWasted
    ElegantlyWasted Posts: 381 Forumite
    15:21:34.0659 5728 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\windows\system32\dps.dll
    15:21:34.0659 5728 DPS - ok
    15:21:34.0737 5728 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\windows\system32\drivers\drmkaud.sys
    15:21:34.0753 5728 drmkaud - ok
    15:21:34.0862 5728 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\windows\System32\drivers\dxgkrnl.sys
    15:21:34.0955 5728 DXGKrnl - ok
    15:21:35.0002 5728 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\windows\System32\eapsvc.dll
    15:21:35.0158 5728 EapHost - ok
    15:21:35.0439 5728 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\windows\system32\DRIVERS\evbda.sys
    15:21:35.0548 5728 ebdrv - ok
    15:21:35.0579 5728 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\windows\System32\lsass.exe
    15:21:35.0579 5728 EFS - ok
    15:21:35.0829 5728 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\windows\ehome\ehRecvr.exe
    15:21:36.0032 5728 ehRecvr - ok
    15:21:36.0063 5728 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\windows\ehome\ehsched.exe
    15:21:36.0063 5728 ehSched - ok
    15:21:36.0125 5728 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\windows\system32\DRIVERS\elxstor.sys
    15:21:36.0141 5728 elxstor - ok
    15:21:36.0157 5728 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\windows\system32\drivers\errdev.sys
    15:21:36.0157 5728 ErrDev - ok
    15:21:36.0188 5728 [ 2A8783FDF0CE02A310BB2DFA5E489396 ] ETD C:\windows\system32\DRIVERS\ETD.sys
    15:21:36.0203 5728 ETD - ok
    15:21:36.0281 5728 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\windows\system32\es.dll
    15:21:36.0281 5728 EventSystem - ok
    15:21:36.0297 5728 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\windows\system32\drivers\exfat.sys
    15:21:36.0313 5728 exfat - ok
    15:21:36.0328 5728 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\windows\system32\drivers\fastfat.sys
    15:21:36.0437 5728 fastfat - ok
    15:21:36.0500 5728 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\windows\system32\fxssvc.exe
    15:21:36.0515 5728 Fax - ok
    15:21:36.0578 5728 [ 3191ACA33088EE2481044FC0DB736442 ] fbfmon C:\windows\system32\drivers\fbfmon.sys
    15:21:36.0578 5728 fbfmon - ok
    15:21:36.0609 5728 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\windows\system32\DRIVERS\fdc.sys
    15:21:36.0625 5728 fdc - ok
    15:21:36.0687 5728 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\windows\system32\fdPHost.dll
    15:21:36.0687 5728 fdPHost - ok
    15:21:36.0703 5728 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\windows\system32\fdrespub.dll
    15:21:36.0703 5728 FDResPub - ok
    15:21:36.0703 5728 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\windows\system32\drivers\fileinfo.sys
    15:21:36.0703 5728 FileInfo - ok
    15:21:36.0718 5728 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\windows\system32\drivers\filetrace.sys
    15:21:36.0749 5728 Filetrace - ok
    15:21:36.0796 5728 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\windows\system32\DRIVERS\flpydisk.sys
    15:21:36.0812 5728 flpydisk - ok
    15:21:36.0921 5728 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\windows\system32\drivers\fltmgr.sys
    15:21:36.0937 5728 FltMgr - ok
    15:21:37.0124 5728 [ B4447F606BB19FD8AD0BAFB59B90F5D9 ] FontCache C:\windows\system32\FntCache.dll
    15:21:37.0139 5728 FontCache - ok
    15:21:37.0249 5728 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
    15:21:37.0249 5728 FontCache3.0.0.0 - ok
    15:21:37.0295 5728 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\windows\system32\drivers\FsDepends.sys
    15:21:37.0327 5728 FsDepends - ok
    15:21:37.0405 5728 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\windows\system32\drivers\Fs_Rec.sys
    15:21:37.0405 5728 Fs_Rec - ok
    15:21:37.0467 5728 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\windows\system32\DRIVERS\fvevol.sys
    15:21:37.0467 5728 fvevol - ok
    15:21:37.0514 5728 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\windows\system32\DRIVERS\gagp30kx.sys
    15:21:37.0529 5728 gagp30kx - ok
    15:21:37.0607 5728 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\windows\System32\gpsvc.dll
    15:21:37.0607 5728 gpsvc - ok
    15:21:37.0639 5728 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
    15:21:37.0639 5728 gupdate - ok
    15:21:37.0654 5728 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
    15:21:37.0654 5728 gupdatem - ok
    15:21:37.0670 5728 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\windows\system32\drivers\hcw85cir.sys
    15:21:37.0685 5728 hcw85cir - ok
    15:21:37.0826 5728 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys
    15:21:37.0888 5728 HdAudAddService - ok
    15:21:37.0951 5728 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\windows\system32\drivers\HDAudBus.sys
    15:21:37.0951 5728 HDAudBus - ok
    15:21:37.0982 5728 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\windows\system32\DRIVERS\HidBatt.sys
    15:21:37.0982 5728 HidBatt - ok
    15:21:37.0997 5728 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\windows\system32\DRIVERS\hidbth.sys
    15:21:37.0997 5728 HidBth - ok
    15:21:38.0029 5728 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\windows\system32\DRIVERS\hidir.sys
    15:21:38.0029 5728 HidIr - ok
    15:21:38.0060 5728 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\windows\system32\hidserv.dll
    15:21:38.0060 5728 hidserv - ok
    15:21:38.0122 5728 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\windows\system32\drivers\hidusb.sys
    15:21:38.0403 5728 HidUsb - ok
    15:21:38.0434 5728 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\windows\system32\kmsvc.dll
    15:21:38.0481 5728 hkmsvc - ok
    15:21:38.0543 5728 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\windows\system32\ListSvc.dll
    15:21:38.0684 5728 HomeGroupListener - ok
    15:21:38.0699 5728 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\windows\system32\provsvc.dll
    15:21:38.0715 5728 HomeGroupProvider - ok
    15:21:38.0777 5728 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\windows\system32\drivers\HpSAMD.sys
    15:21:38.0777 5728 HpSAMD - ok
    15:21:38.0855 5728 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\windows\system32\drivers\HTTP.sys
    15:21:38.0871 5728 HTTP - ok
    15:21:38.0918 5728 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\windows\system32\drivers\hwpolicy.sys
    15:21:38.0918 5728 hwpolicy - ok
    15:21:38.0949 5728 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\windows\system32\drivers\i8042prt.sys
    15:21:38.0965 5728 i8042prt - ok
    15:21:39.0058 5728 [ F7CE9BE72EDAC499B713ECA6DAE5D26F ] iaStor C:\windows\system32\DRIVERS\iaStor.sys
    15:21:39.0058 5728 iaStor - ok
    15:21:39.0167 5728 [ B25F192EA1F84A316EB7C19EFCCCF33D ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
    15:21:39.0167 5728 IAStorDataMgrSvc - ok
    15:21:39.0230 5728 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\windows\system32\drivers\iaStorV.sys
    15:21:39.0323 5728 iaStorV - ok
    15:21:39.0511 5728 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
    15:21:39.0542 5728 idsvc - ok
    15:21:40.0213 5728 [ 677AA5991026A65ADA128C4B59CF2BAD ] igfx C:\windows\system32\DRIVERS\igdkmd64.sys
    15:21:40.0415 5728 igfx - ok
    15:21:40.0478 5728 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\windows\system32\DRIVERS\iirsp.sys
    15:21:40.0509 5728 iirsp - ok
    15:21:40.0790 5728 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\windows\System32\ikeext.dll
    15:21:40.0790 5728 IKEEXT - ok
    15:21:40.0977 5728 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\windows\system32\drivers\intelide.sys
    15:21:40.0977 5728 intelide - ok
    15:21:41.0055 5728 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\windows\system32\DRIVERS\intelppm.sys
    15:21:41.0055 5728 intelppm - ok
    15:21:41.0071 5728 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\windows\system32\ipbusenum.dll
    15:21:41.0086 5728 IPBusEnum - ok
    15:21:41.0117 5728 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\windows\system32\DRIVERS\ipfltdrv.sys
    15:21:41.0149 5728 IpFilterDriver - ok
    15:21:41.0273 5728 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\windows\System32\iphlpsvc.dll
    15:21:41.0351 5728 iphlpsvc - ok
    15:21:41.0398 5728 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\windows\system32\drivers\IPMIDrv.sys
    15:21:41.0507 5728 IPMIDRV - ok
    15:21:41.0539 5728 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\windows\system32\drivers\ipnat.sys
    15:21:41.0539 5728 IPNAT - ok
    15:21:41.0585 5728 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\windows\system32\drivers\irenum.sys
    15:21:41.0585 5728 IRENUM - ok
    15:21:41.0632 5728 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\windows\system32\drivers\isapnp.sys
    15:21:41.0648 5728 isapnp - ok
    15:21:41.0679 5728 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\windows\system32\drivers\msiscsi.sys
    15:21:41.0679 5728 iScsiPrt - ok
    15:21:41.0741 5728 [ 7DBAFE10C1B777305C80BEA42FBDA710 ] k57nd60a C:\windows\system32\DRIVERS\k57nd60a.sys
    15:21:41.0757 5728 k57nd60a - ok
    15:21:41.0804 5728 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\windows\system32\drivers\kbdclass.sys
    15:21:41.0819 5728 kbdclass - ok
    15:21:41.0851 5728 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\windows\system32\drivers\kbdhid.sys
    15:21:41.0866 5728 kbdhid - ok
    15:21:41.0897 5728 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\windows\system32\lsass.exe
    15:21:41.0897 5728 KeyIso - ok
    15:21:41.0929 5728 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\windows\system32\Drivers\ksecdd.sys
    15:21:41.0929 5728 KSecDD - ok
    15:21:41.0944 5728 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\windows\system32\Drivers\ksecpkg.sys
    15:21:41.0960 5728 KSecPkg - ok
    15:21:41.0991 5728 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\windows\system32\drivers\ksthunk.sys
    15:21:42.0007 5728 ksthunk - ok
    15:21:42.0131 5728 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\windows\system32\msdtckrm.dll
    15:21:42.0178 5728 KtmRm - ok
    15:21:42.0256 5728 [ 0E154DA6CA9105354A07D0C576804037 ] L1C C:\windows\system32\DRIVERS\L1C62x64.sys
    15:21:42.0303 5728 L1C - ok
    15:21:42.0350 5728 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\windows\system32\srvsvc.dll
    15:21:42.0365 5728 LanmanServer - ok
    15:21:42.0397 5728 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\windows\System32\wkssvc.dll
    15:21:42.0397 5728 LanmanWorkstation - ok
    15:21:42.0475 5728 [ BE166935083F9C38EDFDC21B9A7A679B ] LHDmgr C:\windows\system32\DRIVERS\LhdX64.sys
    15:21:42.0475 5728 LHDmgr - ok
    15:21:42.0490 5728 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\windows\system32\DRIVERS\lltdio.sys
    15:21:42.0490 5728 lltdio - ok
    15:21:42.0521 5728 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\windows\System32\lltdsvc.dll
    15:21:42.0662 5728 lltdsvc - ok
    15:21:42.0755 5728 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\windows\System32\lmhsvc.dll
    15:21:42.0755 5728 lmhosts - ok
    15:21:42.0911 5728 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\windows\system32\DRIVERS\lsi_fc.sys
    15:21:42.0989 5728 LSI_FC - ok
    15:21:43.0083 5728 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\windows\system32\DRIVERS\lsi_sas.sys
    15:21:43.0099 5728 LSI_SAS - ok
    15:21:43.0114 5728 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\windows\system32\DRIVERS\lsi_sas2.sys
    15:21:43.0130 5728 LSI_SAS2 - ok
    15:21:43.0130 5728 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\windows\system32\DRIVERS\lsi_scsi.sys
    15:21:43.0145 5728 LSI_SCSI - ok
    15:21:43.0177 5728 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\windows\system32\drivers\luafv.sys
    15:21:43.0177 5728 luafv - ok
    15:21:43.0223 5728 [ A8FE8F2783B2929B56F5370A89356CE9 ] MBAMProtector C:\windows\system32\drivers\mbam.sys
    15:21:43.0223 5728 MBAMProtector - ok
    15:21:43.0442 5728 [ 85B16A92B117A5A800032ECD904B86DB ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
    15:21:43.0442 5728 MBAMScheduler - ok
    15:21:43.0598 5728 [ 20E2469DB709FC675E655CEAA11BE312 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
    15:21:43.0598 5728 MBAMService - ok
    15:21:43.0769 5728 [ B891E3920F24FF1A3BEAD6CD2B42ED99 ] McAfee SiteAdvisor Service c:\PROGRA~2\mcafee\SITEAD~1\McSACore.exe
    15:21:43.0769 5728 McAfee SiteAdvisor Service - ok
    15:21:43.0816 5728 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\windows\system32\Mcx2Svc.dll
    15:21:43.0832 5728 Mcx2Svc - ok
    15:21:43.0879 5728 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\windows\system32\DRIVERS\megasas.sys
    15:21:43.0894 5728 megasas - ok
    15:21:43.0910 5728 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\windows\system32\DRIVERS\MegaSR.sys
    15:21:43.0910 5728 MegaSR - ok
    15:21:44.0003 5728 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\windows\system32\mmcss.dll
    15:21:44.0003 5728 MMCSS - ok
    15:21:44.0035 5728 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\windows\system32\drivers\modem.sys
    15:21:44.0035 5728 Modem - ok
    15:21:44.0066 5728 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\windows\system32\DRIVERS\monitor.sys
    15:21:44.0066 5728 monitor - ok
    15:21:44.0113 5728 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\windows\system32\drivers\mouclass.sys
    15:21:44.0113 5728 mouclass - ok
    15:21:44.0159 5728 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\windows\system32\DRIVERS\mouhid.sys
    15:21:44.0175 5728 mouhid - ok
    15:21:44.0191 5728 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\windows\system32\drivers\mountmgr.sys
    15:21:44.0191 5728 mountmgr - ok
    15:21:44.0269 5728 [ 8BE15F71DE6FF33FC56DCDE7B2B9EFE8 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
    15:21:44.0284 5728 MozillaMaintenance - ok
    15:21:44.0331 5728 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\windows\system32\drivers\mpio.sys
    15:21:44.0347 5728 mpio - ok
    15:21:44.0378 5728 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\windows\system32\drivers\mpsdrv.sys
    15:21:44.0378 5728 mpsdrv - ok
    15:21:44.0471 5728 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\windows\system32\mpssvc.dll
    15:21:44.0471 5728 MpsSvc - ok
    15:21:44.0518 5728 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\windows\system32\drivers\mrxdav.sys
    15:21:44.0534 5728 MRxDAV - ok
    15:21:44.0565 5728 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\windows\system32\DRIVERS\mrxsmb.sys
    15:21:44.0581 5728 mrxsmb - ok
    15:21:44.0612 5728 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\windows\system32\DRIVERS\mrxsmb10.sys
    15:21:44.0612 5728 mrxsmb10 - ok
    15:21:44.0643 5728 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\windows\system32\DRIVERS\mrxsmb20.sys
    15:21:44.0643 5728 mrxsmb20 - ok
    15:21:44.0768 5728 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\windows\system32\drivers\msahci.sys
    15:21:44.0768 5728 msahci - ok
    15:21:44.0924 5728 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\windows\system32\drivers\msdsm.sys
    15:21:45.0017 5728 msdsm - ok
    15:21:45.0095 5728 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\windows\System32\msdtc.exe
    15:21:45.0111 5728 MSDTC - ok
    15:21:45.0158 5728 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\windows\system32\drivers\Msfs.sys
    15:21:45.0189 5728 Msfs - ok
    15:21:45.0205 5728 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\windows\System32\drivers\mshidkmdf.sys
    15:21:45.0220 5728 mshidkmdf - ok
    15:21:45.0298 5728 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\windows\system32\drivers\msisadrv.sys
    15:21:45.0298 5728 msisadrv - ok
    15:21:45.0423 5728 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\windows\system32\iscsiexe.dll
    15:21:45.0439 5728 MSiSCSI - ok
    15:21:45.0454 5728 msiserver - ok
    15:21:45.0563 5728 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\windows\system32\drivers\MSKSSRV.sys
    15:21:45.0563 5728 MSKSSRV - ok
    15:21:45.0579 5728 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\windows\system32\drivers\MSPCLOCK.sys
    15:21:45.0595 5728 MSPCLOCK - ok
    15:21:45.0610 5728 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\windows\system32\drivers\MSPQM.sys
    15:21:45.0610 5728 MSPQM - ok
    15:21:45.0751 5728 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\windows\system32\drivers\MsRPC.sys
    15:21:45.0782 5728 MsRPC - ok
    15:21:45.0813 5728 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\windows\system32\drivers\mssmbios.sys
    15:21:45.0813 5728 mssmbios - ok
    15:21:45.0860 5728 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\windows\system32\drivers\MSTEE.sys
    15:21:45.0860 5728 MSTEE - ok
    15:21:45.0875 5728 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\windows\system32\DRIVERS\MTConfig.sys
    15:21:45.0875 5728 MTConfig - ok
    15:21:45.0891 5728 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\windows\system32\Drivers\mup.sys
    15:21:45.0891 5728 Mup - ok
    15:21:45.0985 5728 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\windows\system32\qagentRT.dll
    15:21:46.0000 5728 napagent - ok
    15:21:46.0109 5728 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\windows\system32\DRIVERS\nwifi.sys
    15:21:46.0109 5728 NativeWifiP - ok
    15:21:46.0172 5728 [ 79B47FD40D9A817E932F9D26FAC0A81C ] NDIS C:\windows\system32\drivers\ndis.sys
    15:21:46.0219 5728 NDIS - ok
    15:21:46.0250 5728 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\windows\system32\DRIVERS\ndiscap.sys
    15:21:46.0250 5728 NdisCap - ok
    15:21:46.0281 5728 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\windows\system32\DRIVERS\ndistapi.sys
    15:21:46.0281 5728 NdisTapi - ok
    15:21:46.0328 5728 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\windows\system32\DRIVERS\ndisuio.sys
    15:21:46.0328 5728 Ndisuio - ok
    15:21:46.0359 5728 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\windows\system32\DRIVERS\ndiswan.sys
    15:21:46.0375 5728 NdisWan - ok
    15:21:46.0421 5728 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\windows\system32\drivers\NDProxy.sys
    15:21:46.0437 5728 NDProxy - ok
    15:21:46.0499 5728 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\windows\system32\DRIVERS\netbios.sys
    15:21:46.0499 5728 NetBIOS - ok
    15:21:46.0531 5728 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\windows\system32\DRIVERS\netbt.sys
    15:21:46.0562 5728 NetBT - ok
    15:21:46.0624 5728 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\windows\system32\lsass.exe
    15:21:46.0624 5728 Netlogon - ok
    15:21:46.0765 5728 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\windows\System32\netman.dll
    15:21:46.0765 5728 Netman - ok
    15:21:47.0123 5728 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\windows\System32\netprofm.dll
    15:21:47.0123 5728 netprofm - ok
    15:21:47.0186 5728 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
    15:21:47.0326 5728 NetTcpPortSharing - ok
    15:21:47.0716 5728 [ 64428DFDAF6E88366CB51F45A79C5F69 ] netw5v64 C:\windows\system32\DRIVERS\netw5v64.sys
    15:21:47.0841 5728 netw5v64 - ok
    15:21:47.0857 5728 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\windows\system32\DRIVERS\nfrd960.sys
    15:21:47.0857 5728 nfrd960 - ok
    15:21:47.0966 5728 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\windows\System32\nlasvc.dll
    15:21:47.0966 5728 NlaSvc - ok
    15:21:48.0013 5728 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\windows\system32\drivers\Npfs.sys
    15:21:48.0013 5728 Npfs - ok
    15:21:48.0044 5728 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\windows\system32\nsisvc.dll
    15:21:48.0044 5728 nsi - ok
    15:21:48.0044 5728 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\windows\system32\drivers\nsiproxy.sys
    15:21:48.0044 5728 nsiproxy - ok
    15:21:48.0153 5728 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\windows\system32\drivers\Ntfs.sys
    15:21:48.0215 5728 Ntfs - ok
    15:21:48.0247 5728 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\windows\system32\drivers\Null.sys
    15:21:48.0247 5728 Null - ok
    Everyday I am asked to be a magician, in a world where magic does not exist.
This discussion has been closed.
Meet your Ambassadors

🚀 Getting Started

Hi new member!

Our Getting Started Guide will help you get the most out of the Forum

Categories

  • All Categories
  • 349.9K Banking & Borrowing
  • 252.6K Reduce Debt & Boost Income
  • 453K Spending & Discounts
  • 242.8K Work, Benefits & Business
  • 619.6K Mortgages, Homes & Bills
  • 176.4K Life & Family
  • 255.7K Travel & Transport
  • 1.5M Hobbies & Leisure
  • 16.1K Discuss & Feedback
  • 15.1K Coronavirus Support Boards

Is this how you want to be seen?

We see you are using a default avatar. It takes only a few seconds to pick a picture.
Update Your Picture