also @ TechSpot: Next iPad rumored to be 33% lighter and thinner thanks to new touchscreen tech

Computer slow & non-responsive, fast64.dll?

Discussion in 'Virus and Malware Removal' started by Yogin, Oct 8, 2012.

Post New Reply
Page 1 of 4

  1. Yogin Newcomer, in training Posts: 56

    Anyhelp?
    Here is hijackthis log...

    [HJT log removed by Broni]
    Yogin, Oct 8, 2012
    #1

  2. Yogin Newcomer, in training Posts: 56

    I use avast, winpatrol, advanced system care just for boosts & scan, other scanners, mbam, super anti...
    Yogin, Oct 8, 2012
    #2

  3. Yogin Newcomer, in training Posts: 56

    Ps~ couldn't even come to forum w/ firefox, had to use chrome...
    Yogin, Oct 8, 2012
    #3

  4. Broni Malware Annihilator Posts: 39,324   +175

    Welcome aboard [IMG]

    Please, complete all steps listed here: http://www.techspot.com/vb/topic58138.html
    Make sure, you PASTE all logs. If some log exceeds 50,000 characters post limit, split it between couple of replies.
    Attached logs won't be reviewed.

    Please, observe following rules:
    • Read all of my instructions very carefully. Your mistakes during cleaning process may have very serious consequences, like unbootable computer.
    • If you're stuck, or you're not sure about certain step, always ask before doing anything else.
    • Please refrain from running any tools, fixes or applying any changes to your computer other than those I suggest.
    • Never run more than one scan at a time.
    • Keep updating me regarding your computer behavior, good, or bad.
    • The cleaning process, once started, has to be completed. Even if your computer appears to act better, it may still be infected. Once the computer is totally clean, I'll certainly let you know.
    • If you leave the topic without explanation in the middle of a cleaning process, you may not be eligible to receive any more help in malware removal forum.
    • I close my topics if you have not replied in 5 days. If you need more time, simply let me know. If I closed your topic and you need it to be reopened, simply PM me.
    Broni, Oct 8, 2012
    #4

  5. Yogin Newcomer, in training Posts: 56

    Thanks Broni, will do.
    Yogin, Oct 8, 2012
    #5

  6. Yogin Newcomer, in training Posts: 56

    First scan complete, moving to next step...
    Malwarebytes Anti-Malware 1.65.0.1400
    www.malwarebytes.org

    Database version: v2012.10.08.07

    Windows 7 Service Pack 1 x64 NTFS
    Internet Explorer 9.0.8112.16421
    living room :: YOGI-PC [administrator]

    10/8/2012 3:40:15 PM
    mbam-log-2012-10-08 (15-40-15).txt

    Scan type: Quick scan
    Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
    Scan options disabled: P2P
    Objects scanned: 200770
    Time elapsed: 17 minute(s), 35 second(s)

    Memory Processes Detected: 0
    (No malicious items detected)

    Memory Modules Detected: 0
    (No malicious items detected)

    Registry Keys Detected: 0
    (No malicious items detected)

    Registry Values Detected: 0
    (No malicious items detected)

    Registry Data Items Detected: 0
    (No malicious items detected)

    Folders Detected: 0
    (No malicious items detected)

    Files Detected: 0
    (No malicious items detected)

    (end)
    Yogin, Oct 8, 2012
    #6
     

  7. Yogin Newcomer, in training Posts: 56

    Gmer log came up blank.

    dds attach log~
    .
    UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
    IF REQUESTED, ZIP IT UP & ATTACH IT
    .
    DDS (Ver_2011-08-26.01)
    .
    Microsoft Windows 7 Ultimate
    Boot Device: \Device\HarddiskVolume1
    Install Date: 11/24/2011 7:21:44 PM
    System Uptime: 10/5/2012 11:34:03 PM (65 hours ago)
    .
    Motherboard: Dell Inc. | | 0GM819
    Processor: Intel(R) Core(TM)2 Duo CPU E6550 @ 2.33GHz | CPU | 1983/1333mhz
    .
    ==== Disk Partitions =========================
    .
    C: is FIXED (NTFS) - 149 GiB total, 4.879 GiB free.
    D: is CDROM ()
    .
    ==== Disabled Device Manager Items =============
    .
    Class GUID:
    Description:
    Device ID: PCI\VEN_8086&DEV_29B4&SUBSYS_02111028&REV_02\3&172E68DD&0&18
    Manufacturer:
    Name:
    PNP Device ID: PCI\VEN_8086&DEV_29B4&SUBSYS_02111028&REV_02\3&172E68DD&0&18
    Service:
    .
    Class GUID:
    Description: PCI Serial Port
    Device ID: PCI\VEN_8086&DEV_29B7&SUBSYS_02111028&REV_02\3&172E68DD&0&1B
    Manufacturer:
    Name: PCI Serial Port
    PNP Device ID: PCI\VEN_8086&DEV_29B7&SUBSYS_02111028&REV_02\3&172E68DD&0&1B
    Service:
    .
    ==== System Restore Points ===================
    .
    RP207: 10/5/2012 11:28:02 PM - Configured SoundMAX
    RP208: 10/5/2012 11:32:39 PM - Removed SoundMAX
    RP209: 10/8/2012 2:14:07 PM - Windows Modules Installer
    .
    ==== Installed Programs ======================
    .
    AC3Filter 2.1a
    Active@ DVD Eraser v 1.1
    Adobe AIR
    Adobe Flash Player 11 ActiveX
    Adobe Flash Player 11 Plugin
    Adobe Shockwave Player 11.6
    Advanced SystemCare 5
    Akamai NetSession Interface
    Akamai NetSession Interface Service
    All Free ISO Creator 3.1.9
    AMD System Monitor
    Any Video Converter 3.3.5
    ASIO4ALL
    avast! Free Antivirus
    AviSynth 2.5
    AVS Media Player 4.1.8.93
    AVS Screen Capture version 2.0.1
    AVS Update Manager 1.0
    AVS Video Editor 6
    AVS Video Recorder 2.4
    AVS4YOU Software Navigator 1.4
    Borderlands 2
    Burn4Free DVD Burning 5.8.0.0
    CamStudio OSS Desktop Recorder
    Catalyst Control Center
    Catalyst Control Center - Branding
    Catalyst Control Center Graphics Previews Common
    Catalyst Control Center Localization All
    CCC Help Chinese Standard
    CCC Help Chinese Traditional
    CCC Help Czech
    CCC Help Danish
    CCC Help Dutch
    CCC Help English
    CCC Help Finnish
    CCC Help French
    CCC Help German
    CCC Help Greek
    CCC Help Hungarian
    CCC Help Italian
    CCC Help Japanese
    CCC Help Korean
    CCC Help Norwegian
    CCC Help Polish
    CCC Help Portuguese
    CCC Help Russian
    CCC Help Spanish
    CCC Help Swedish
    CCC Help Thai
    CCC Help Turkish
    ClipGrab 3.2.0.9
    Cool Timer 3.7
    D3DX10
    dBpowerAMP Music Converter
    DivX Setup
    DriverMax 6
    DVD Flick 1.3.0.7
    Eusing Free Registry Cleaner
    ffdshow [rev 2583] [2009-01-05]
    Foxit Reader
    Free 3GP Video Converter version 5.0.11.504
    Free Alarm Clock 2.5.0
    Free Picture Resize Starter 4.5
    Game Booster 3
    Google Chrome
    Google Earth Plug-in
    Google Update Helper
    HydraVision
    HyperCam 2
    Image Resizer for Windows
    ImgBurn
    InfraRecorder
    Internet TV for Windows Media Center
    IObit Malware Fighter
    IrfanView (remove only)
    Java Auto Updater
    Java(TM) 6 Update 35
    Junk Mail filter update
    KORG KONTROL Editor
    KORG USB-MIDI Driver Tools for Windows
    Live 8.2.2
    LoopBe1 - Internal MIDI Port
    Magical Jelly Bean KeyFinder
    Malwarebytes Anti-Malware version 1.65.0.1400
    Microsoft Games for Windows - LIVE
    Microsoft Games for Windows - LIVE Redistributable
    Microsoft Silverlight
    Microsoft SQL Server 2005 Compact Edition [ENU]
    Microsoft Visual C++ 2005 Redistributable
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
    Mozilla Firefox 15.0.1 (x86 en-US)
    Mozilla Maintenance Service
    Mp3 Knife 3.2
    MSVCRT
    MSVCRT_amd64
    Native Instruments Audio 8 DJ Driver
    Native Instruments Service Center
    Native Instruments Traktor
    Native Instruments Traktor 2
    Nexus 11.10
    NVIDIA PhysX
    OpenAL
    OpenOffice.org 3.4
    Opera 12.02
    Proteus VX
    Q-Dir
    Readon TV Movie Radio Player 7.5.0.0
    Really Slick Screensavers 0.2
    RealNetworks - Microsoft Visual C++ 2008 Runtime
    RealPlayer
    RealUpgrade 1.1
    RocketDock 1.3.5
    Section 8
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)
    Security Update for Microsoft .NET Framework 4 Extended (KB2487367)
    Security Update for Microsoft .NET Framework 4 Extended (KB2656351)
    Skype Click to Call
    Skype™ 5.10
    Smart Defrag 2
    SMConverter 1.0.9
    SMRecorder 1.2.3
    Sothink Movie DVD Maker
    Sound Blaster Live! Web 2K/XP
    SoundMAX
    Stardock MyColors
    Steam
    swMSM
    The KMPlayer (remove only)
    Theme Manager v 2.0
    TipCam 2.5 Beta
    Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
    Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
    Update for Microsoft .NET Framework 4 Client Profile (KB2600217)
    Update for Microsoft .NET Framework 4 Extended (KB2468871)
    Update for Microsoft .NET Framework 4 Extended (KB2533523)
    Update for Microsoft .NET Framework 4 Extended (KB2600217)
    USB PC Camera Plus
    VC80CRTRedist - 8.0.50727.6195
    Visual C++ 2008 Runtime (x64)
    VLC media player 2.0.3
    Vuze
    Winamp
    Winamp Detector Plug-in
    Windows 7 Codec Pack 4.0.2
    Windows Installer Clean Up
    Windows Live Communications Platform
    Windows Live Essentials
    Windows Live Installer
    Windows Live Mail
    Windows Live Movie Maker
    Windows Live Photo Common
    Windows Live Photo Gallery
    Windows Live PIMT Platform
    Windows Live SOXE
    Windows Live SOXE Definitions
    Windows Live UX Platform
    Windows Live UX Platform Language Pack
    Windows Live Writer
    Windows Live Writer Resources
    Winstep Start Menu Organizer 1.5
    Wisdom-soft ScreenHunter 6.0 Free
    Yahoo! Messenger
    Yahoo! Software Update
    Yahoo! Toolbar
    .
    ==== Event Viewer Messages From Past Week ========
    .
    10/5/2012 11:38:23 PM, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the Steam Client Service service to connect.
    10/5/2012 11:38:23 PM, Error: Service Control Manager [7000] - The Steam Client Service service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
    10/2/2012 7:50:08 PM, Error: volsnap [35] - The shadow copies of volume C: were aborted because the shadow copy storage failed to grow.
    .
    ==== End Of File ===========================
    Yogin, Oct 8, 2012
    #7

  8. Yogin Newcomer, in training Posts: 56

    Dds log ~

    .
    DDS (Ver_2011-08-26.01) - NTFSAMD64
    Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 1.6.0_35
    Run by living room at 16:11:56 on 2012-10-08
    Microsoft Windows 7 Ultimate 6.1.7601.1.1252.1.1033.18.2014.1184 [GMT -5:00]
    .
    AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
    SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
    SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    SP: IObit Malware Fighter *Disabled/Updated* {A751AC20-3B48-5237-898A-78C4436BB78D}
    .
    ============== Running Processes ===============
    .
    C:\Windows\system32\wininit.exe
    C:\Windows\system32\lsm.exe
    C:\Windows\system32\svchost.exe -k DcomLaunch
    C:\Program Files (x86)\IObit\Advanced SystemCare 5\ASCService.exe
    C:\Windows\system32\svchost.exe -k RPCSS
    C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
    C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
    C:\Windows\system32\svchost.exe -k netsvcs
    C:\Windows\system32\svchost.exe -k LocalService
    C:\Program Files (x86)\Stardock\MyColors\VistaSrv.exe
    C:\Program Files (x86)\Stardock\MyColors\WBVista.exe
    C:\Program Files (x86)\Nero\Tools\InCD\InCDSrv.exe
    C:\Windows\system32\svchost.exe -k NetworkService
    C:\Program Files\AVAST Software\Avast\AvastSvc.exe
    C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
    C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
    C:\Windows\system32\taskhost.exe
    C:\Windows\system32\Dwm.exe
    C:\Program Files (x86)\M-Audio\Oxygen\AudioDevMon.exe
    C:\Program Files (x86)\Winstep\WsxService.exe
    C:\Windows\Explorer.EXE
    C:\Windows\system32\SearchIndexer.exe
    C:\Program Files\AVAST Software\Avast\AvastUI.exe
    C:\Program Files (x86)\KORG\KORG USB-MIDI Driver\EsHelper2.exe
    C:\Windows\System32\svchost.exe -k secsvcs
    C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
    C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
    C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
    C:\Program Files\Windows Media Player\wmpnetwk.exe
    C:\Windows\System32\svchost.exe -k LocalServicePeerNet
    C:\Windows\system32\atiesrxx.exe
    C:\Windows\system32\atieclxx.exe
    C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
    C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
    C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe
    C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM64.exe
    C:\Windows\servicing\TrustedInstaller.exe
    C:\Windows\system32\taskhost.exe
    C:\Windows\system32\svchost.exe -k imgsvc
    C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Reader.exe
    C:\Windows\SysWOW64\ctfmon.exe
    C:\Windows\system32\SearchProtocolHost.exe
    C:\Windows\system32\SearchFilterHost.exe
    C:\Windows\SysWOW64\cmd.exe
    C:\Windows\system32\conhost.exe
    C:\Windows\SysWOW64\cscript.exe
    C:\Windows\system32\wbem\wmiprvse.exe
    Yogin, Oct 8, 2012
    #8

  9. Yogin Newcomer, in training Posts: 56

    ============== Pseudo HJT Report ===============
    .
    uInternet Settings,ProxyOverride = <local>
    uURLSearchHooks: H - No File
    BHO: &Yahoo! Toolbar Helper: {02478d38-c3f9-4efb-9b51-7695eca05670} - C:\PROGRA~2\Yahoo!\Companion\Installs\cpn0\yt.dll
    BHO: DivX Plus Web Player HTML5 <video>: {326e768d-4182-46fd-9c16-1449a49795f4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll
    BHO: Java(tm) Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll
    BHO: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
    BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
    TB: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
    TB: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - C:\PROGRA~2\Yahoo!\Companion\Installs\cpn0\yt.dll
    uRun: [RocketDock] "C:\Program Files (x86)\RocketDock\RocketDock.exe"
    uRun: [Nexus] C:\Program Files (x86)\Winstep\Nexus.exe autostart
    uRun: [Wisdom-soft ScreenHunter 5.1 Free] 0
    uRun: [SmartRAM] "C:\Program Files (x86)\IObit\Advanced SystemCare 5\Suo10_SmartRAM.exe" /m
    uRun: [Advanced SystemCare 5] "C:\Program Files (x86)\IObit\Advanced SystemCare 5\ASCTray.exe" /AutoStart
    uRun: [Steam] "C:\Program Files (x86)\Steam\Steam.exe" -silent
    uRun: [HydraVisionDesktopManager] "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"
    mRun: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
    mRun: [AsioReg] REGSVR32 /S CTASIO.DLL
    mRun: [KORG USB-MIDI Driver] C:\Program Files (x86)\KORG\KORG USB-MIDI Driver\EsHelper2.exe /s
    mRun: [tsnpstd3] C:\Windows\tsnpstd3.exe
    mRun: [TkBellExe] "c:\program files (x86)\real\realplayer\Update\realsched.exe" -osboot
    mRun: [WinPatrol] C:\Program Files (x86)\BillP Studios\WinPatrol\winpatrol.exe -expressboot
    mRun: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
    mRun: [AMD AVT] Cmd.exe /c start "AMD Accelerated Video Transcoding device initialization" /min "C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe" aml
    mRunOnce: [Malwarebytes Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent
    mPolicies-explorer: NoActiveDesktop = 1 (0x1)
    mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)
    mPolicies-system: ConsentPromptBehaviorAdmin = 0 (0x0)
    mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
    mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
    mPolicies-system: PromptOnSecureDesktop = 0 (0x0)
    IE: Open Client to monitor &1 - C:\Windows\web\AOpenClient.htm
    IE: Open Client to monitor &2 - C:\Windows\web\AOpenClient.htm
    DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_35-windows-i586.cab
    DPF: {A084A130-28AE-4B32-B51A-1C8CE164BC88} - hxxp://www.convergysworkathome.com/AppHardT.CAB
    DPF: {CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_35-windows-i586.cab
    DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_35-windows-i586.cab
    TCP: DhcpNameServer = 24.217.0.5 24.217.201.67 24.247.15.53
    TCP: Interfaces\{B9486293-EF9D-4EDB-BB9E-72D5A7DA36FE} : DhcpNameServer = 24.217.0.5 24.217.201.67 24.247.15.53
    Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
    Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
    Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
    BHO-X64: &Yahoo! Toolbar Helper: {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\PROGRA~2\Yahoo!\Companion\Installs\cpn0\yt.dll
    BHO-X64: 0x1 - No File
    BHO-X64: DivX Plus Web Player HTML5 <video>: {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll
    BHO-X64: Increase performance and video formats for your HTML5 <video> - No File
    BHO-X64: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll
    BHO-X64: avast! WebRep: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
    BHO-X64: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
    TB-X64: avast! WebRep: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
    TB-X64: Yahoo! Toolbar: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\PROGRA~2\Yahoo!\Companion\Installs\cpn0\yt.dll
    mRun-x64: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
    mRun-x64: [AsioReg] REGSVR32 /S CTASIO.DLL
    mRun-x64: [KORG USB-MIDI Driver] C:\Program Files (x86)\KORG\KORG USB-MIDI Driver\EsHelper2.exe /s
    mRun-x64: [tsnpstd3] C:\Windows\tsnpstd3.exe
    mRun-x64: [TkBellExe] "c:\program files (x86)\real\realplayer\Update\realsched.exe" -osboot
    mRun-x64: [WinPatrol] C:\Program Files (x86)\BillP Studios\WinPatrol\winpatrol.exe -expressboot
    mRun-x64: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
    mRun-x64: [AMD AVT] Cmd.exe /c start "AMD Accelerated Video Transcoding device initialization" /min "C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe" aml
    mRunOnce-x64: [Malwarebytes Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent
    Yogin, Oct 8, 2012
    #9

  10. Yogin Newcomer, in training Posts: 56

    ================= FIREFOX ===================
    .
    FF - ProfilePath - C:\Users\living room\AppData\Roaming\Mozilla\Firefox\Profiles\g7tbw4ca.default\
    FF - prefs.js: browser.startup.homepage - hxxp://www.yahoo.com/
    FF - plugin: C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll
    FF - plugin: C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll
    FF - plugin: C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll
    FF - plugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
    FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll
    FF - plugin: C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll
    FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrlui.dll
    FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\nppl3260.dll
    FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\nprjplug.dll
    FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\nprpplugin.dll
    FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npwachk.dll
    FF - plugin: c:\program files (x86)\real\realplayer\Netscape6\nprpplugin.dll
    FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
    FF - plugin: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll
    FF - plugin: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll
    FF - plugin: C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll
    FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_4_402_278.dll
    FF - plugin: C:\Windows\SysWOW64\npdeployJava1.dll
    FF - plugin: C:\Windows\SysWOW64\npmproxy.dll
    .
    ---- FIREFOX POLICIES ----
    FF - user.js: network.protocol-handler.warn-external.dnupdate - false
    FF - user.js: browser.sessionstore.resume_from_crash - false
    .
    FF - user.js: yahoo.ytff.general.dontshowhpoffer - true
    ============= SERVICES / DRIVERS ===============
    .
    R0 SmartDefragDriver;SmartDefragDriver;C:\Windows\system32\Drivers\SmartDefragDriver.sys --> C:\Windows\system32\Drivers\SmartDefragDriver.sys [?]
    R1 aswSnx;aswSnx;C:\Windows\system32\drivers\aswSnx.sys --> C:\Windows\system32\drivers\aswSnx.sys [?]
    R1 aswSP;aswSP;C:\Windows\system32\drivers\aswSP.sys --> C:\Windows\system32\drivers\aswSP.sys [?]
    R1 SASDIFSV;SASDIFSV;C:\Program Files\SUPERAntiSpyware\sasdifsv64.sys [2011-7-22 14928]
    R1 SASKUTIL;SASKUTIL;C:\Program Files\SUPERAntiSpyware\saskutil64.sys [2011-7-12 12368]
    R2 AdvancedSystemCareService5;Advanced SystemCare Service 5;C:\Program Files (x86)\IObit\Advanced SystemCare 5\ASCService.exe [2011-11-30 913792]
    R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\system32\atiesrxx.exe --> C:\Windows\system32\atiesrxx.exe [?]
    R2 aswFsBlk;aswFsBlk;C:\Windows\system32\drivers\aswFsBlk.sys --> C:\Windows\system32\drivers\aswFsBlk.sys [?]
    R2 aswMonFlt;aswMonFlt;\??\C:\Windows\system32\drivers\aswMonFlt.sys --> C:\Windows\system32\drivers\aswMonFlt.sys [?]
    R2 avast! Antivirus;avast! Antivirus;C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2012-8-9 44808]
    R2 cpuz135;cpuz135;\??\C:\Windows\system32\drivers\cpuz135_x64.sys --> C:\Windows\system32\drivers\cpuz135_x64.sys [?]
    R2 IMFservice;IMF Service;C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe [2012-8-8 821592]
    R2 OxygenAudioDevMon;Oxygen Audio Device Monitor;C:\Program Files (x86)\M-Audio\Oxygen\AudioDevMon.exe [2010-3-4 1632776]
    R3 amdkmdag;amdkmdag;C:\Windows\system32\DRIVERS\atikmdag.sys --> C:\Windows\system32\DRIVERS\atikmdag.sys [?]
    R3 amdkmdap;amdkmdap;C:\Windows\system32\DRIVERS\atikmpag.sys --> C:\Windows\system32\DRIVERS\atikmpag.sys [?]
    R3 dfmirage;dfmirage;C:\Windows\system32\DRIVERS\dfmirage.sys --> C:\Windows\system32\DRIVERS\dfmirage.sys [?]
    R3 WinRing0_1_2_0;WinRing0_1_2_0;C:\Program Files (x86)\IObit\Game Booster 3\Driver\WinRing0x64.sys [2012-8-8 14544]
    S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
    S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
    S2 gupdate;Google Update Service (gupdate);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-11-30 136176]
    S3 !SASCORE;SAS Core Service;C:\Program Files\SUPERAntiSpyware\SASCore64.exe [2011-8-11 140672]
    S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-7-18 250288]
    S3 FileMonitor;FileMonitor;C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys [2012-8-8 21384]
    S3 gupdatem;Google Update Service (gupdatem);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-11-30 136176]
    S3 HECIx64;Intel(R) Management Engine Interface;C:\Windows\system32\DRIVERS\HECIx64.sys --> C:\Windows\system32\DRIVERS\HECIx64.sys [?]
    S3 KORGUMDS;KORG USB-MIDI Driver for Windows;C:\Windows\system32\Drivers\KORGUM64.SYS --> C:\Windows\system32\Drivers\KORGUM64.SYS [?]
    S3 kxwdmdrv;kX WDM Driver Service;C:\Windows\system32\drivers\kx.sys --> C:\Windows\system32\drivers\kx.sys [?]
    S3 NeroRegInCDSrv;Nero Registry InCD Service;C:\Program Files (x86)\Nero\Tools\InCD\NBHRegInCDSrv.exe [2009-10-16 53560]
    S3 OXYGEN;Service for M-Audio Oxygen;C:\Windows\system32\DRIVERS\MAudioOxygen.sys --> C:\Windows\system32\DRIVERS\MAudioOxygen.sys [?]
    S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\system32\drivers\rdpvideominiport.sys --> C:\Windows\system32\drivers\rdpvideominiport.sys [?]
    S3 RegFilter;RegFilter;C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\RegFilter.sys [2012-8-8 33224]
    S3 TrojanKillerDriver;GridinSoft Trojan Killer Driver;C:\Windows\system32\DRIVERS\gtkdrv.sys --> C:\Windows\system32\DRIVERS\gtkdrv.sys [?]
    S3 TsUsbFlt;TsUsbFlt;C:\Windows\system32\drivers\tsusbflt.sys --> C:\Windows\system32\drivers\tsusbflt.sys [?]
    S3 UrlFilter;UrlFilter;C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\UrlFilter.sys [2012-8-8 21904]
    S4 Akamai;Akamai NetSession Interface;C:\Windows\System32\svchost.exe -k Akamai [2009-7-13 20992]
    S4 MozillaMaintenance;Mozilla Maintenance Service;C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-4-28 114144]
    Yogin, Oct 8, 2012
    #10

  11. Yogin Newcomer, in training Posts: 56

    =============== Created Last 30 ================
    .
    2012-10-07 22:45:16--------d-----w-C:\Program Files (x86)\AMD AVT
    2012-10-04 01:38:04--------d-----w-C:\Users\living room\AppData\Local\{95B4EA89-D1FE-4323-9116-52EEDDDFD60E}
    2012-09-23 10:59:0269000----a-w-C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{41F39C86-94F5-4D99-A7E9-DB5A5D595107}\offreg.dll
    2012-09-22 07:14:289308616----a-w-C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{41F39C86-94F5-4D99-A7E9-DB5A5D595107}\mpengine.dll
    2012-09-20 18:37:5949152----a-w-C:\Windows\SysWow64\DSndUp.exe
    2012-09-20 18:37:59--------d-----w-C:\Program Files (x86)\Analog Devices
    2012-09-20 03:49:31--------d-----w-C:\Program Files (x86)\Common Files\Steam
    2012-09-20 03:49:23--------d-----w-C:\Program Files (x86)\Steam
    2012-09-20 03:00:29--------d-----w-C:\Program Files (x86)\2K Games
    2012-09-18 02:11:41--------d-sh--w-C:\Windows\SysWow64\AI_RecycleBin
    2012-09-16 18:33:37108008----a-w-C:\Windows\System32\WindowsAccessBridge-64.dll
    2012-09-16 18:30:54916456----a-w-C:\Windows\System32\deployJava1.dll
    2012-09-16 18:30:541034216----a-w-C:\Windows\System32\npDeployJava1.dll
    2012-09-15 19:31:07--------d-----w-C:\Users\living room\AppData\Local\{B774529A-B455-47C1-9617-70D5C7453A74}
    2012-09-09 02:27:32--------dc-h--w-C:\ProgramData\{3689B77C-90FA-4663-91AB-5AB34383CD81}
    2012-09-09 02:24:12--------dc-h--w-C:\ProgramData\{24E3A4D8-9E57-4B19-9715-6E61513095D7}
    2012-09-09 02:23:53--------dc-h--w-C:\ProgramData\{442B6EC3-77A0-4817-825F-67F47D7A2E54}
    .
    ==================== Find3M ====================
    .
    2012-09-21 05:54:3573136----a-w-C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
    2012-09-21 05:54:35696240----a-w-C:\Windows\SysWow64\FlashPlayerApp.exe
    2012-09-07 22:04:4625928----a-w-C:\Windows\System32\drivers\mbam.sys
    2012-08-29 01:24:56477168----a-w-C:\Windows\SysWow64\npdeployJava1.dll
    2012-08-29 01:24:53473072----a-w-C:\Windows\SysWow64\deployJava1.dll
    2012-07-28 03:47:40187392----a-w-C:\Windows\System32\clinfo.exe
    2012-07-28 03:47:2475776----a-w-C:\Windows\System32\OpenVideo64.dll
    2012-07-28 03:47:1665024----a-w-C:\Windows\SysWow64\OpenVideo.dll
    2012-07-28 03:47:1063488----a-w-C:\Windows\System32\OVDecode64.dll
    2012-07-28 03:47:0656320----a-w-C:\Windows\SysWow64\OVDecode.dll
    2012-07-28 03:46:5616464896----a-w-C:\Windows\System32\amdocl64.dll
    2012-07-28 03:46:0613013504----a-w-C:\Windows\SysWow64\amdocl.dll
    2012-07-13 17:26:31209920----a-w-C:\Windows\System32\profsvc.dll
    2012-07-13 17:26:173216384----a-w-C:\Windows\System32\msi.dll
    2012-07-13 17:26:172342400----a-w-C:\Windows\SysWow64\msi.dll
    2012-07-13 17:25:505559664----a-w-C:\Windows\System32\ntoskrnl.exe
    2012-07-13 17:25:503968368----a-w-C:\Windows\SysWow64\ntkrnlpa.exe
    2012-07-13 17:25:503913072----a-w-C:\Windows\SysWow64\ntoskrnl.exe
    .
    ============= FINISH: 16:13:23.01 ===============
    Yogin, Oct 8, 2012
    #11

  12. Broni Malware Annihilator Posts: 39,324   +175

    Download TDSSKiller and save it to your desktop.
    • Extract (unzip) its contents to your desktop.
    • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
    • If an infected file is detected, the default action will be Cure, click on Continue.
    • If a suspicious file is detected, the default action will be Skip, click on Continue.
    • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
    • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
    • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.

    ==========================

    • Download RogueKiller on the desktop
    • Close all the running programs
    • Windows Vista/7 users: right click on RogueKiller.exe, click Run as Administrator
    • Otherwise just double-click on RogueKiller.exe
    • Pre-scan will start. Let it finish.
    • Click on SCAN button.
    • Wait until the Status box shows Scan Finished
    • Click on Delete.
    • Wait until the Status box shows Deleting Finished.
    • Click on Report and copy/paste the content of the Notepad into your next reply.
    • RKreport.txt could also be found on your desktop.
    • If more than one log is produced post all logs.
    • If RogueKiller has been blocked, do not hesitate to try a few times more. If really won't run, rename it to winlogon.exe (or winlogon.com) and try again

    ==========================

    Download aswMBR to your desktop.
    Double click the aswMBR.exe to run it.
    If you see this question: Would you like to download latest Avast! virus definitions?" say "Yes".
    Click the "Scan" button to start scan.
    On completion of the scan click "Save log", save it to your desktop and post in your next reply.

    NOTE. aswMBR will create MBR.dat file on your desktop. This is a copy of your MBR. Do NOT delete it.
    Broni, Oct 8, 2012
    #12

  13. Yogin Newcomer, in training Posts: 56

    Will do, thank you
    Yogin, Oct 8, 2012
    #13

  14. Yogin Newcomer, in training Posts: 56

    TDSS log~

    16:33:41.0080 1856 TDSS rootkit removing tool 2.8.10.0 Sep 17 2012 19:23:24
    16:33:41.0174 1856 ============================================================
    16:33:41.0174 1856 Current date / time: 2012/10/08 16:33:41.0174
    16:33:41.0174 1856 SystemInfo:
    16:33:41.0174 1856
    16:33:41.0174 1856 OS Version: 6.1.7601 ServicePack: 1.0
    16:33:41.0174 1856 Product type: Workstation
    16:33:41.0174 1856 ComputerName: YOGI-PC
    16:33:41.0174 1856 UserName: living room
    16:33:41.0174 1856 Windows directory: C:\Windows
    16:33:41.0174 1856 System windows directory: C:\Windows
    16:33:41.0174 1856 Running under WOW64
    16:33:41.0174 1856 Processor architecture: Intel x64
    16:33:41.0174 1856 Number of processors: 2
    16:33:41.0174 1856 Page size: 0x1000
    16:33:41.0174 1856 Boot type: Normal boot
    16:33:41.0174 1856 ============================================================
    16:33:43.0701 1856 Drive \Device\Harddisk0\DR0 - Size: 0x2540BE4000 (149.01 Gb), SectorSize: 0x200, Cylinders: 0x4BFC, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
    16:33:43.0732 1856 ============================================================
    16:33:43.0732 1856 \Device\Harddisk0\DR0:
    16:33:43.0732 1856 MBR partitions:
    16:33:43.0732 1856 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
    16:33:43.0732 1856 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x129D2800
    16:33:43.0732 1856 ============================================================
    16:33:43.0763 1856 C: <-> \Device\Harddisk0\DR0\Partition2
    16:33:43.0826 1856 ============================================================
    16:33:43.0826 1856 Initialize success
    16:33:43.0826 1856 ============================================================
    16:33:47.0928 4728 ============================================================
    16:33:47.0928 4728 Scan started
    16:33:47.0928 4728 Mode: Manual;
    16:33:47.0928 4728 ============================================================
    16:33:48.0896 4728 ================ Scan system memory ========================
    16:33:48.0896 4728 System memory - ok
    16:33:48.0896 4728 ================ Scan services =============================
    16:33:49.0005 4728 [ 7D9D615201A483D6FA99491C2E655A5A ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
    16:33:49.0005 4728 !SASCORE - ok
    16:33:49.0145 4728 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
    16:33:49.0145 4728 1394ohci - ok
    16:33:49.0208 4728 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
    16:33:49.0223 4728 ACPI - ok
    16:33:49.0223 4728 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
    16:33:49.0239 4728 AcpiPmi - ok
    16:33:49.0239 4728 ADIHdAudAddService - ok
    16:33:49.0379 4728 [ E12CFCF1DDBFC50948A75E6E38793225 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
    16:33:49.0379 4728 AdobeFlashPlayerUpdateSvc - ok
    16:33:49.0426 4728 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
    16:33:49.0457 4728 adp94xx - ok
    16:33:49.0488 4728 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
    16:33:49.0488 4728 adpahci - ok
    16:33:49.0504 4728 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
    16:33:49.0504 4728 adpu320 - ok
    16:33:49.0676 4728 [ 96D6CDD0B32846E8CFBE592F4F32E608 ] AdvancedSystemCareService5 C:\Program Files (x86)\IObit\Advanced SystemCare 5\ASCService.exe
    16:33:49.0691 4728 AdvancedSystemCareService5 - ok
    16:33:49.0722 4728 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
    16:33:49.0722 4728 AeLookupSvc - ok
    16:33:49.0785 4728 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
    16:33:49.0800 4728 AFD - ok
    16:33:49.0847 4728 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
    16:33:49.0863 4728 agp440 - ok
    16:33:50.0190 4728 [ 1125C7D9FB8898015829C387C1BC87C7 ] Akamai C:/Program Files (x86)/Common Files/Akamai/netsession_win_6c825ce.dll
    16:33:50.0253 4728 Akamai - ok
    16:33:50.0284 4728 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
    16:33:50.0284 4728 ALG - ok
    16:33:50.0331 4728 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
    16:33:50.0331 4728 aliide - ok
    16:33:50.0378 4728 [ E20DDDFBD0DBE7D8EAD4D7A51D654367 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
    16:33:50.0378 4728 AMD External Events Utility - ok
    16:33:50.0409 4728 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
    16:33:50.0409 4728 amdide - ok
    16:33:50.0424 4728 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
    Yogin, Oct 8, 2012
    #14

  15. Yogin Newcomer, in training Posts: 56

    16:33:50.0424 4728 AmdK8 - ok
    16:33:50.0830 4728 [ 4284FB1240537A33E6EC417EFD87D40F ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
    16:33:51.0189 4728 amdkmdag - ok
    16:33:51.0251 4728 [ 6C25C497E05EFD0CB6033A0444FC9B51 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
    16:33:51.0251 4728 amdkmdap - ok
    16:33:51.0298 4728 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
    16:33:51.0298 4728 AmdPPM - ok
    16:33:51.0345 4728 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
    16:33:51.0360 4728 amdsata - ok
    16:33:51.0376 4728 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
    16:33:51.0376 4728 amdsbs - ok
    16:33:51.0392 4728 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
    16:33:51.0392 4728 amdxata - ok
    16:33:51.0438 4728 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
    16:33:51.0438 4728 AppID - ok
    16:33:51.0454 4728 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
    16:33:51.0454 4728 AppIDSvc - ok
    16:33:51.0516 4728 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
    16:33:51.0516 4728 Appinfo - ok
    16:33:51.0516 4728 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\Windows\System32\appmgmts.dll
    16:33:51.0532 4728 AppMgmt - ok
    16:33:51.0548 4728 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
    16:33:51.0548 4728 arc - ok
    16:33:51.0579 4728 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
    16:33:51.0579 4728 arcsas - ok
    16:33:51.0719 4728 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
    16:33:51.0719 4728 aspnet_state - ok
    16:33:51.0735 4728 [ DF59B8E8DF0BD2E0E303778A3806A17D ] aswFsBlk C:\Windows\system32\drivers\aswFsBlk.sys
    16:33:51.0735 4728 aswFsBlk - ok
    16:33:51.0750 4728 [ F8E6AB4F876FEFF69250F2E0C29EF004 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
    16:33:51.0750 4728 aswMonFlt - ok
    16:33:51.0797 4728 [ AA92BC4BCBA40CA3AA3FFD1BE24F0C09 ] aswRdr C:\Windows\System32\Drivers\aswrdr2.sys
    16:33:51.0797 4728 aswRdr - ok
    16:33:51.0844 4728 [ F06E230E1E8CA9437A6474B7B551CD37 ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
    16:33:51.0875 4728 aswSnx - ok
    16:33:51.0922 4728 [ 3610CA74A69E380424F0452DEC5C1317 ] aswSP C:\Windows\system32\drivers\aswSP.sys
    16:33:51.0938 4728 aswSP - ok
    16:33:51.0953 4728 [ 87DE3E31CB0091D22351349869324065 ] aswTdi C:\Windows\system32\drivers\aswTdi.sys
    16:33:51.0953 4728 aswTdi - ok
    16:33:51.0969 4728 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
    16:33:51.0969 4728 AsyncMac - ok
    16:33:52.0016 4728 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
    16:33:52.0016 4728 atapi - ok
    16:33:52.0421 4728 [ 4284FB1240537A33E6EC417EFD87D40F ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
    16:33:52.0484 4728 atikmdag - ok
    16:33:52.0546 4728 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
    16:33:52.0562 4728 AudioEndpointBuilder - ok
    16:33:52.0577 4728 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
    16:33:52.0593 4728 AudioSrv - ok
    16:33:52.0686 4728 [ 2F7C0F3E39C45E0127FB78B2F18A41F3 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
    16:33:52.0686 4728 avast! Antivirus - ok
    16:33:52.0702 4728 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
    16:33:52.0702 4728 AxInstSV - ok
    16:33:52.0733 4728 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
    16:33:52.0749 4728 b06bdrv - ok
    16:33:52.0764 4728 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
    16:33:52.0780 4728 b57nd60a - ok
    16:33:52.0811 4728 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
    16:33:52.0811 4728 BDESVC - ok
    16:33:52.0827 4728 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
    16:33:52.0827 4728 Beep - ok
    16:33:52.0874 4728 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
    16:33:52.0905 4728 BFE - ok
    16:33:52.0952 4728 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
    16:33:52.0967 4728 BITS - ok
    16:33:52.0983 4728 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
    16:33:52.0983 4728 blbdrive - ok
    16:33:53.0030 4728 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
    16:33:53.0030 4728 bowser - ok
    16:33:53.0045 4728 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
    Yogin, Oct 8, 2012
    #15

  16. Yogin Newcomer, in training Posts: 56

    16:33:53.0045 4728 BrFiltLo - ok
    16:33:53.0061 4728 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
    16:33:53.0061 4728 BrFiltUp - ok
    16:33:53.0061 4728 [ 8EF0D5C41EC907751B8429162B1239ED ] Browser C:\Windows\System32\browser.dll
    16:33:53.0061 4728 Browser - ok
    16:33:53.0092 4728 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
    16:33:53.0092 4728 Brserid - ok
    16:33:53.0108 4728 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
    16:33:53.0108 4728 BrSerWdm - ok
    16:33:53.0123 4728 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
    16:33:53.0123 4728 BrUsbMdm - ok
    16:33:53.0123 4728 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
    16:33:53.0123 4728 BrUsbSer - ok
    16:33:53.0139 4728 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
    16:33:53.0139 4728 BTHMODEM - ok
    16:33:53.0170 4728 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
    16:33:53.0170 4728 bthserv - ok
    16:33:53.0186 4728 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
    16:33:53.0186 4728 cdfs - ok
    16:33:53.0232 4728 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
    16:33:53.0232 4728 cdrom - ok
    16:33:53.0295 4728 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
    16:33:53.0295 4728 CertPropSvc - ok
    16:33:53.0295 4728 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
    16:33:53.0295 4728 circlass - ok
    16:33:53.0326 4728 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
    16:33:53.0342 4728 CLFS - ok
    16:33:53.0388 4728 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
    16:33:53.0388 4728 clr_optimization_v2.0.50727_32 - ok
    16:33:53.0435 4728 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
    16:33:53.0435 4728 clr_optimization_v2.0.50727_64 - ok
    16:33:53.0529 4728 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
    16:33:53.0529 4728 clr_optimization_v4.0.30319_32 - ok
    16:33:53.0529 4728 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
    16:33:53.0544 4728 clr_optimization_v4.0.30319_64 - ok
    16:33:53.0576 4728 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
    16:33:53.0576 4728 CmBatt - ok
    16:33:53.0622 4728 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
    16:33:53.0622 4728 cmdide - ok
    16:33:53.0669 4728 [ C4943B6C962E4B82197542447AD599F4 ] CNG C:\Windows\system32\Drivers\cng.sys
    16:33:53.0685 4728 CNG - ok
    16:33:53.0685 4728 COMMONFX.DLL - ok
    16:33:53.0700 4728 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
    16:33:53.0700 4728 Compbatt - ok
    16:33:53.0763 4728 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
    16:33:53.0763 4728 CompositeBus - ok
    16:33:53.0763 4728 COMSysApp - ok
    16:33:53.0825 4728 [ C08063F052308B6F5882482615387F30 ] cpuz135 C:\Windows\system32\drivers\cpuz135_x64.sys
    16:33:53.0825 4728 cpuz135 - ok
    16:33:53.0825 4728 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
    16:33:53.0825 4728 crcdisk - ok
    16:33:53.0888 4728 [ 15597883FBE9B056F276ADA3AD87D9AF ] CryptSvc C:\Windows\system32\cryptsvc.dll
    16:33:53.0888 4728 CryptSvc - ok
    16:33:53.0950 4728 [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC C:\Windows\system32\drivers\csc.sys
    16:33:53.0966 4728 CSC - ok
    16:33:53.0997 4728 [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService C:\Windows\System32\cscsvc.dll
    16:33:54.0012 4728 CscService - ok
    16:33:54.0028 4728 ctac32k - ok
    16:33:54.0028 4728 CTAUDFX.DLL - ok
    16:33:54.0044 4728 CTEAPSFX.DLL - ok
    16:33:54.0044 4728 CTEDSPFX.DLL - ok
    16:33:54.0044 4728 CTEDSPIO.DLL - ok
    16:33:54.0059 4728 CTEDSPSY.DLL - ok
    16:33:54.0059 4728 ctprxy2k - ok
    16:33:54.0059 4728 CTSBLFX.DLL - ok
    16:33:54.0075 4728 ctsfm2k - ok
    16:33:54.0122 4728 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
    16:33:54.0137 4728 DcomLaunch - ok
    16:33:54.0168 4728 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
    16:33:54.0168 4728 defragsvc - ok
    Yogin, Oct 8, 2012
    #16

  17. Yogin Newcomer, in training Posts: 56

    16:33:54.0215 4728 [ 178A6E9A0DCE42959FC5AD129F60CBA9 ] dfmirage C:\Windows\system32\DRIVERS\dfmirage.sys
    16:33:54.0231 4728 dfmirage - ok
    16:33:54.0278 4728 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
    16:33:54.0278 4728 DfsC - ok
    16:33:54.0293 4728 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
    16:33:54.0293 4728 Dhcp - ok
    16:33:54.0324 4728 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
    16:33:54.0324 4728 discache - ok
    16:33:54.0371 4728 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
    16:33:54.0371 4728 Disk - ok
    16:33:54.0434 4728 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
    16:33:54.0434 4728 Dnscache - ok
    16:33:54.0480 4728 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
    16:33:54.0496 4728 dot3svc - ok
    16:33:54.0543 4728 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
    16:33:54.0543 4728 DPS - ok
    16:33:54.0574 4728 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
    16:33:54.0574 4728 drmkaud - ok
    16:33:54.0636 4728 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
    16:33:54.0652 4728 DXGKrnl - ok
    16:33:54.0714 4728 [ 099E01A94167CA8BDA2CF72037AD0E28 ] e1express C:\Windows\system32\DRIVERS\e1e6232e.sys
    16:33:54.0714 4728 e1express - ok
    16:33:54.0746 4728 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
    16:33:54.0746 4728 EapHost - ok
    16:33:54.0824 4728 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
    16:33:54.0902 4728 ebdrv - ok
    16:33:54.0948 4728 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
    16:33:54.0948 4728 EFS - ok
    16:33:55.0026 4728 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
    16:33:55.0042 4728 ehRecvr - ok
    16:33:55.0058 4728 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
    16:33:55.0058 4728 ehSched - ok
    16:33:55.0089 4728 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
    16:33:55.0089 4728 elxstor - ok
    16:33:55.0104 4728 emupia - ok
    16:33:55.0167 4728 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
    16:33:55.0167 4728 ErrDev - ok
    16:33:55.0214 4728 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
    16:33:55.0229 4728 EventSystem - ok
    16:33:55.0245 4728 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
    16:33:55.0245 4728 exfat - ok
    16:33:55.0245 4728 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
    16:33:55.0260 4728 fastfat - ok
    16:33:55.0292 4728 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
    16:33:55.0292 4728 fdc - ok
    16:33:55.0307 4728 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
    16:33:55.0307 4728 fdPHost - ok
    16:33:55.0307 4728 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
    16:33:55.0323 4728 FDResPub - ok
    16:33:55.0354 4728 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
    16:33:55.0354 4728 FileInfo - ok
    16:33:55.0510 4728 [ 060CC45CECAE2FEAFF9C8C52D8FAFAA8 ] FileMonitor C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys
    16:33:55.0510 4728 FileMonitor - ok
    16:33:55.0526 4728 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
    16:33:55.0541 4728 Filetrace - ok
    16:33:55.0572 4728 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
    16:33:55.0572 4728 flpydisk - ok
    16:33:55.0619 4728 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
    16:33:55.0619 4728 FltMgr - ok
    16:33:55.0697 4728 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
    16:33:55.0728 4728 FontCache - ok
    16:33:55.0791 4728 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
    16:33:55.0791 4728 FontCache3.0.0.0 - ok
    16:33:55.0806 4728 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
    16:33:55.0806 4728 FsDepends - ok
    16:33:55.0853 4728 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
    16:33:55.0853 4728 Fs_Rec - ok
    16:33:55.0900 4728 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
    16:33:55.0916 4728 fvevol - ok
    16:33:55.0916 4728 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
    Yogin, Oct 8, 2012
    #17

  18. Yogin Newcomer, in training Posts: 56

    16:33:55.0931 4728 gagp30kx - ok
    16:33:55.0978 4728 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
    16:33:56.0009 4728 gpsvc - ok
    16:33:56.0103 4728 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
    16:33:56.0103 4728 gupdate - ok
    16:33:56.0118 4728 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
    16:33:56.0118 4728 gupdatem - ok
    16:33:56.0134 4728 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
    16:33:56.0134 4728 hcw85cir - ok
    16:33:56.0181 4728 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
    16:33:56.0196 4728 HdAudAddService - ok
    16:33:56.0243 4728 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
    16:33:56.0243 4728 HDAudBus - ok
    16:33:56.0290 4728 [ 806C9235C2FBFB9268B9E9F05165DE5D ] HECIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
    16:33:56.0290 4728 HECIx64 - ok
    16:33:56.0306 4728 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
    16:33:56.0306 4728 HidBatt - ok
    16:33:56.0321 4728 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
    16:33:56.0337 4728 HidBth - ok
    16:33:56.0337 4728 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
    16:33:56.0337 4728 HidIr - ok
    16:33:56.0368 4728 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
    16:33:56.0368 4728 hidserv - ok
    16:33:56.0415 4728 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
    16:33:56.0415 4728 HidUsb - ok
    16:33:56.0477 4728 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
    16:33:56.0477 4728 hkmsvc - ok
    16:33:56.0524 4728 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
    16:33:56.0540 4728 HomeGroupListener - ok
    16:33:56.0555 4728 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
    16:33:56.0555 4728 HomeGroupProvider - ok
    16:33:56.0602 4728 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
    16:33:56.0618 4728 HpSAMD - ok
    16:33:56.0633 4728 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
    16:33:56.0649 4728 HTTP - ok
    16:33:56.0664 4728 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
    16:33:56.0664 4728 hwpolicy - ok
    16:33:56.0711 4728 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
    16:33:56.0711 4728 i8042prt - ok
    16:33:56.0758 4728 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
    16:33:56.0758 4728 iaStorV - ok
    16:33:56.0836 4728 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
    16:33:56.0867 4728 idsvc - ok
    16:33:56.0883 4728 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
    16:33:56.0883 4728 iirsp - ok
    16:33:56.0914 4728 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
    16:33:56.0930 4728 IKEEXT - ok
    16:33:57.0008 4728 [ 8AE99EBE30E8338907361018D9030835 ] IMFservice C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
    16:33:57.0023 4728 IMFservice - ok
    16:33:57.0086 4728 [ 3EB21C4BF2CF274B547A397D140DAB99 ] InCDFs C:\Windows\system32\DRIVERS\InCDFs.sys
    16:33:57.0086 4728 InCDFs - ok
    16:33:57.0132 4728 [ 0A88F26AA60E1952301EAF2558E07617 ] InCDPass C:\Windows\system32\DRIVERS\InCDPass.sys
    16:33:57.0148 4728 InCDPass - ok
    16:33:57.0164 4728 [ 58455B0F5ADFD73AEF55084F8AFE0F74 ] InCDRec C:\Windows\system32\DRIVERS\InCDRec.sys
    16:33:57.0164 4728 InCDRec - ok
    16:33:57.0242 4728 [ C93F4036612F88D36005205E0D84300F ] InCDSrv C:\Program Files (x86)\Nero\Tools\InCD\InCDSrv.exe
    16:33:57.0273 4728 InCDSrv - ok
    16:33:57.0304 4728 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\DRIVERS\intelide.sys
    16:33:57.0304 4728 intelide - ok
    16:33:57.0320 4728 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
    16:33:57.0320 4728 intelppm - ok
    16:33:57.0351 4728 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
    16:33:57.0351 4728 IPBusEnum - ok
    16:33:57.0413 4728 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
    16:33:57.0413 4728 IpFilterDriver - ok
    16:33:57.0476 4728 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
    16:33:57.0491 4728 iphlpsvc - ok
    16:33:57.0538 4728 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
    16:33:57.0538 4728 IPMIDRV - ok
    16:33:57.0538 4728 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
    Yogin, Oct 8, 2012
    #18

  19. Yogin Newcomer, in training Posts: 56

    16:33:57.0554 4728 IPNAT - ok
    16:33:57.0569 4728 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
    16:33:57.0569 4728 IRENUM - ok
    16:33:57.0616 4728 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
    16:33:57.0616 4728 isapnp - ok
    16:33:57.0632 4728 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
    16:33:57.0632 4728 iScsiPrt - ok
    16:33:57.0678 4728 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
    16:33:57.0678 4728 kbdclass - ok
    16:33:57.0741 4728 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
    16:33:57.0741 4728 kbdhid - ok
    16:33:57.0756 4728 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
    16:33:57.0756 4728 KeyIso - ok
    16:33:57.0772 4728 [ B3F33EAD5E5AD0704C4AE8D9CB2D4A2E ] KORGUMDS C:\Windows\system32\Drivers\KORGUM64.SYS
    16:33:57.0772 4728 KORGUMDS - ok
    16:33:57.0834 4728 [ DA1E991A61CFDD755A589E206B97644B ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
    16:33:57.0834 4728 KSecDD - ok
    16:33:57.0881 4728 [ 7E33198D956943A4F11A5474C1E9106F ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
    16:33:57.0881 4728 KSecPkg - ok
    16:33:57.0912 4728 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
    16:33:57.0912 4728 ksthunk - ok
    16:33:57.0944 4728 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
    16:33:57.0944 4728 KtmRm - ok
    16:33:58.0037 4728 [ 807043DBC7ECE990CB5B37A2C4CBE24F ] kxwdmdrv C:\Windows\system32\drivers\kx.sys
    16:33:58.0053 4728 kxwdmdrv - ok
    16:33:58.0100 4728 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
    16:33:58.0115 4728 LanmanServer - ok
    16:33:58.0178 4728 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
    16:33:58.0178 4728 LanmanWorkstation - ok
    16:33:58.0193 4728 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
    16:33:58.0193 4728 lltdio - ok
    16:33:58.0224 4728 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
    16:33:58.0240 4728 lltdsvc - ok
    16:33:58.0240 4728 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
    16:33:58.0240 4728 lmhosts - ok
    16:33:58.0302 4728 [ 37EFB026E1A8A79FBE7044A241281B3E ] LoopBeMidi1 C:\Windows\system32\drivers\loopbe1.sys
    16:33:58.0302 4728 LoopBeMidi1 - ok
    16:33:58.0334 4728 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
    16:33:58.0334 4728 LSI_FC - ok
    16:33:58.0349 4728 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
    16:33:58.0349 4728 LSI_SAS - ok
    16:33:58.0365 4728 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
    16:33:58.0365 4728 LSI_SAS2 - ok
    16:33:58.0380 4728 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
    16:33:58.0380 4728 LSI_SCSI - ok
    16:33:58.0380 4728 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
    16:33:58.0380 4728 luafv - ok
    16:33:58.0427 4728 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
    16:33:58.0427 4728 Mcx2Svc - ok
    16:33:58.0443 4728 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
    16:33:58.0443 4728 megasas - ok
    16:33:58.0458 4728 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
    16:33:58.0458 4728 MegaSR - ok
    16:33:58.0490 4728 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
    16:33:58.0490 4728 MMCSS - ok
    16:33:58.0505 4728 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
    16:33:58.0505 4728 Modem - ok
    16:33:58.0552 4728 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
    16:33:58.0552 4728 monitor - ok
    16:33:58.0599 4728 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
    16:33:58.0599 4728 mouclass - ok
    16:33:58.0630 4728 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
    16:33:58.0630 4728 mouhid - ok
    16:33:58.0677 4728 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
    16:33:58.0677 4728 mountmgr - ok
    16:33:58.0724 4728 [ CB8AF049AC9BE419A77ADAE288673359 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
    16:33:58.0724 4728 MozillaMaintenance - ok
    16:33:58.0786 4728 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
    16:33:58.0786 4728 mpio - ok
    16:33:58.0802 4728 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
    Yogin, Oct 8, 2012
    #19

  20. Yogin Newcomer, in training Posts: 56

    16:33:58.0802 4728 mpsdrv - ok
    16:33:58.0864 4728 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
    16:33:58.0895 4728 MpsSvc - ok
    16:33:58.0942 4728 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
    16:33:58.0942 4728 MRxDAV - ok
    16:33:58.0989 4728 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
    16:33:59.0004 4728 mrxsmb - ok
    16:33:59.0004 4728 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
    16:33:59.0020 4728 mrxsmb10 - ok
    16:33:59.0020 4728 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
    16:33:59.0020 4728 mrxsmb20 - ok
    16:33:59.0067 4728 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
    16:33:59.0067 4728 msahci - ok
    16:33:59.0082 4728 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
    16:33:59.0098 4728 msdsm - ok
    16:33:59.0098 4728 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
    16:33:59.0098 4728 MSDTC - ok
    16:33:59.0129 4728 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
    16:33:59.0129 4728 Msfs - ok
    16:33:59.0145 4728 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
    16:33:59.0145 4728 mshidkmdf - ok
    16:33:59.0192 4728 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
    16:33:59.0192 4728 msisadrv - ok
    16:33:59.0223 4728 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
    16:33:59.0223 4728 MSiSCSI - ok
    16:33:59.0223 4728 msiserver - ok
    16:33:59.0238 4728 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
    16:33:59.0238 4728 MSKSSRV - ok
    16:33:59.0238 4728 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
    16:33:59.0238 4728 MSPCLOCK - ok
    16:33:59.0254 4728 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
    16:33:59.0254 4728 MSPQM - ok
    16:33:59.0316 4728 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
    16:33:59.0316 4728 MsRPC - ok
    16:33:59.0379 4728 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
    16:33:59.0379 4728 mssmbios - ok
    16:33:59.0426 4728 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
    16:33:59.0426 4728 MSTEE - ok
    16:33:59.0441 4728 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
    16:33:59.0441 4728 MTConfig - ok
    16:33:59.0441 4728 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
    16:33:59.0441 4728 Mup - ok
    16:33:59.0504 4728 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
    16:33:59.0519 4728 napagent - ok
    16:33:59.0550 4728 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
    16:33:59.0550 4728 NativeWifiP - ok
    16:33:59.0613 4728 [ 79B47FD40D9A817E932F9D26FAC0A81C ] NDIS C:\Windows\system32\drivers\ndis.sys
    16:33:59.0644 4728 NDIS - ok
    16:33:59.0660 4728 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
    16:33:59.0660 4728 NdisCap - ok
    16:33:59.0675 4728 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
    16:33:59.0675 4728 NdisTapi - ok
    16:33:59.0675 4728 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
    16:33:59.0691 4728 Ndisuio - ok
    16:33:59.0738 4728 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
    16:33:59.0738 4728 NdisWan - ok
    16:33:59.0753 4728 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
    16:33:59.0753 4728 NDProxy - ok
    16:33:59.0800 4728 [ 0AF63FA6BA332E200938982EB9AD14B4 ] NeroRegInCDSrv C:\Program Files (x86)\Nero\Tools\InCD\NBHRegInCDSrv.exe
    16:33:59.0800 4728 NeroRegInCDSrv - ok
    16:33:59.0816 4728 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
    16:33:59.0816 4728 NetBIOS - ok
    16:33:59.0831 4728 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
    16:33:59.0831 4728 NetBT - ok
    16:33:59.0847 4728 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
    16:33:59.0847 4728 Netlogon - ok
    16:33:59.0878 4728 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
    16:33:59.0894 4728 Netman - ok
    16:33:59.0956 4728 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
    16:33:59.0956 4728 NetMsmqActivator - ok
    Yogin, Oct 8, 2012
    #20
Page 1 of 4

Add New Comment

Social Login & Guest Posting

TechSpot Members
Login here or sign up for free,
it takes about a minute.
Get complete access to the TechSpot community. Join thousands of technology enthusiasts that contribute and share knowledge in our forum. Get a private inbox, upload your own photo gallery and more.