pooptart1Greg1
Posts: 14 +0
USED MALWAREBYTES AND FINDS PROBLEM, BUT WON'T REMOVE! IT JUST KEEPS COMING BACK AFTER MY RESTART! PLEASE HELP, IT MAKE MY COMPUTER GO SO SLOW!
Inactive SVCHost.exe help remove this bugger!
- Thread starter pooptart1Greg1
- Start date
pooptart1Greg1
Posts: 14 +0
Malwarebytes Anti-Malware 1.65.1.1000
www.malwarebytes.org
Database version: v2012.10.29.12
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Greg :: GREG-PC [administrator]
10/30/2012 4:08:10 PM
mbam-log-2012-10-30 (16-11-31).txt
Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 202393
Time elapsed: 2 minute(s), 43 second(s)
Memory Processes Detected: 1
C:\WINDOWS\svchost.exe (Trojan.Agent) -> 2748 -> No action taken.
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 1
C:\WINDOWS\svchost.exe (Trojan.Agent) -> No action taken.
(end)
www.malwarebytes.org
Database version: v2012.10.29.12
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Greg :: GREG-PC [administrator]
10/30/2012 4:08:10 PM
mbam-log-2012-10-30 (16-11-31).txt
Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 202393
Time elapsed: 2 minute(s), 43 second(s)
Memory Processes Detected: 1
C:\WINDOWS\svchost.exe (Trojan.Agent) -> 2748 -> No action taken.
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 1
C:\WINDOWS\svchost.exe (Trojan.Agent) -> No action taken.
(end)
Jay Pfoutz
Posts: 4,279 +49
Hello, and welcome to TechSpot.
Please see here for the board rules and other FAQ.
Please feel free to introduce yourself, after you follow the steps below to get started.
Information
Also, include this scan:
Download AdwCleaner by Xplode onto your Desktop.
Please feel free to introduce yourself, after you follow the steps below to get started.
Information
- From this point on, please do not make any more changes to your computer; such as install/uninstall programs, use special fix tools, delete files, edit the registry, etc. - unless advised by a malware removal helper.
- Please do not ask for help elsewhere (in this site or other sites). Doing so can result in system changes, which may not show up in the logs you post.
- If you have already asked for help somewhere, please post the link to the topic you were helped.
- We try our best to reply quickly, but for any reason we do not reply in two days, please reply to this topic with the word BUMP!
- Lastly, keep in mind that we are volunteers, so you do not have to pay for malware removal. Persist in this topic until its close, and your computer is declared clean.
Also, include this scan:
Download AdwCleaner by Xplode onto your Desktop.
- Double click on AdwCleaner.exe to run the tool.
- Click on Delete.
- A logfile will automatically open after the scan has finished.
- Please post the content of that logfile in your reply.
- You can find the logfile at C:\AdwCleaner[Rn].txt as well - n is the order number.
pooptart1Greg1
Posts: 14 +0
# AdwCleaner v2.006 - Logfile created 10/30/2012 at 16:47:19
# Updated 30/10/2012 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : Greg - GREG-PC
# Boot Mode : Normal
# Running from : C:\Users\Greg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\N23FLW0H\adwcleaner.exe
# Option [Delete]
***** [Services] *****
***** [Files / Folders] *****
***** [Registry] *****
Key Deleted : HKCU\Software\AppDataLow\Software
***** [Internet Browsers] *****
-\\ Internet Explorer v9.0.8112.16421
[OK] Registry is clean.
-\\ Google Chrome v [Unable to get version]
File : C:\Users\Greg\AppData\Local\Google\Chrome\User Data\Default\Preferences
[OK] File is clean.
*************************
AdwCleaner[S1].txt - [783 octets] - [30/10/2012 16:47:20]
########## EOF - C:\AdwCleaner[S1].txt - [842 octets] ##########
# Updated 30/10/2012 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : Greg - GREG-PC
# Boot Mode : Normal
# Running from : C:\Users\Greg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\N23FLW0H\adwcleaner.exe
# Option [Delete]
***** [Services] *****
***** [Files / Folders] *****
***** [Registry] *****
Key Deleted : HKCU\Software\AppDataLow\Software
***** [Internet Browsers] *****
-\\ Internet Explorer v9.0.8112.16421
[OK] Registry is clean.
-\\ Google Chrome v [Unable to get version]
File : C:\Users\Greg\AppData\Local\Google\Chrome\User Data\Default\Preferences
[OK] File is clean.
*************************
AdwCleaner[S1].txt - [783 octets] - [30/10/2012 16:47:20]
########## EOF - C:\AdwCleaner[S1].txt - [842 octets] ##########
pooptart1Greg1
Posts: 14 +0
GMER 1.0.15.15641 - http://www.gmer.net
Rootkit scan 2012-10-30 17:23:13
Windows 6.1.7601 Service Pack 1
Running: xp32bzdk.exe
---- Files - GMER 1.0.15 ----
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\79X2UZ5G\49493478-5a4e-4a35-baa7-83df349fd0ef[1].swf 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\79X2UZ5G\SkyscraperScreens[1].swf 77646 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\79X2UZ5G\glamadapt_srv[1].htm 6383 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\79X2UZ5G\your-family-prepared-weather-emergency[1].htm 124231 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\8YK09QNE\mytwtv;dcopt=ist;topic=transworld;pos=frame1;kw=;id=;sz=88x31;tile=2;remnant=yes;device=;ord=1031579073[1].js 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\8YK09QNE\service[3].htm 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FXI1YB4Q\PublisherEventServlet[1].txt 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FXI1YB4Q\PublisherEventServlet[2].txt 5 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FXI1YB4Q\cb_blogtitleimage_4262_4e1e3ab8c930f[1].gif 1378 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FXI1YB4Q\jukPlayer[1].swf 101812 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FXI1YB4Q\lookup-theword_com[1].htm 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FXI1YB4Q\pc[1] 43 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FXI1YB4Q\a64016b0-fdd8-4a7a-8cc6-71eef1908839[1].swf 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LF3DMK57\liftgeo[1].js 59 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LF3DMK57\PublisherEventServlet[1].txt 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LF3DMK57\skateboarding;dcopt=ist;topic=transworld;pos=x96;kw=landing;id=15;sz=1565x700;tile=4;remnant=yes;device=;ord=1700158678[1].js 38 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LF3DMK57\features;dcopt=ist;topic=transworld;pos=top;kw=landing,photos;id=;sz=728x90;tile=1;remnant=yes;device=;ord=1221831577[1].js 1022 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LF3DMK57\surly[5].js 2096 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LF3DMK57\logCA5Y423P.gif 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LF3DMK57\Track[5].txt 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LF3DMK57\Track[6].txt 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LF3DMK57\Track[7].txt 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LF3DMK57\medications[1].htm 51520 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LF3DMK57\res[1].js 16271 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LF3DMK57\display_ads[1].htm 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LF3DMK57\okinsider-321203-10-19-2012[1].mp4 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LF3DMK57\optn=64[2].js 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LF3DMK57\optn=64[3].js 681 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LF3DMK57\849586b6a3d53c09bbb1b313c3dbb8f3_d709f38ef758b5066ef31b18039b8ce5x38db3aed920cf82ab059bfccbd02be6a[1].jpg 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LF3DMK57\ros;pos=right3;tile=3;sz=300x250;ord=4591361065783927[1].js 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LF3DMK57\iframe_containing[2].js 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LF3DMK57\httpErrorPagesScripts[2] 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LF3DMK57\Twonescreen;pos=right2;sz=300x250;ord=3925624919428757[1].js 610 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LF3DMK57\maskmask[1].jpg 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\PSAG9NK1\atids[2].htm 469 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\PSAG9NK1\logCALZISKJ.gif 43 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\PSAG9NK1\TidalTV_VPAID_V1_0_04[2].swf 7027 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\PSAG9NK1\CookieSetter[2].swf 868 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\PSAG9NK1\2307822[5].htm 31424 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\PSAG9NK1\the-hangover-movie-picture-51[1].jpg 2732 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\PSAG9NK1\ros;pos=right3;tile=3;sz=300x250;ord=3114562822760659[1].js 385 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\PSAG9NK1\css_Di_0Kjd1VZeAYRjaw8zN4Bhrtk3Hq5FhE-PBxbbKRg4[1].css 4432 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SXMEVIB4\generic_3_fa_fv[1].xml 5451 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SXMEVIB4\image2[1].png 25739 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SXMEVIB4\r-box[1].png 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SXMEVIB4\showad[3].js 23613 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SXMEVIB4\Chickpea_curry_fa_thumb_medium[1].jpg 10279 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SXMEVIB4\logCALV13N8.gif 43 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SXMEVIB4\meta[1].htm 1715 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SXMEVIB4\timthumb[1].jpg 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SXMEVIB4\timthumb[2].jpg 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SXMEVIB4\adsCAGSQ29U.js 9418 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SXMEVIB4\137260_f520_fa_thumb_medium[1].jpg 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SXMEVIB4\smartad[1].js 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SXMEVIB4\the-hangover-movie-picture-50[1].jpg 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SXMEVIB4\ros;tile=1;dcopt=ist;poz=top;!c=f;sz=728x90;ord=425927272[1].js 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SXMEVIB4\crossdomainCADC07PA.xml 269 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UXYRMXSO\cbcpc[1].js 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UXYRMXSO\adsCA0TB0YP.js 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UXYRMXSO\js_S9lXwaNg1LjJKL0IZOH6PAFMy_JFiNySty8jkvvsbzw[1].js 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UXYRMXSO\inthisissue_ad[1].jpg 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UXYRMXSO\logCAULFI38.gif 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UXYRMXSO\xml;length=;campaign=;ord=570146094[1].xml 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UXYRMXSO\xrefid[2].gif 43 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UXYRMXSO\r7ywkg[1].gif 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UXYRMXSO\front[1].js 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UXYRMXSO\image1[1].png 18490 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UXYRMXSO\Track[8].txt 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UXYRMXSO\Track[9].txt 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UXYRMXSO\clear[1].gif 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UXYRMXSO\BirthdayCake_A[1].jpg 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UXYRMXSO\being-happy-and-putting-yourself-first[1].jpg 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UXYRMXSO\the-hangover-movie-picture-49[1].jpg 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UXYRMXSO\timthumb_fa_thumb_medium[1].jpg 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UXYRMXSO\Twonescreen;pos=right3;sz=300x250;ord=4591361065783927[1].js 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UXYRMXSO\1202678_DA_OTU4OTY0MDc=[2].jpg 5296 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UXYRMXSO\1202678_DA_OTU4OTY1NDY=[2].jpg 3356 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UXYRMXSO\1202678_DA_OTU4OTYyMzQ=[2].jpg 4015 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UXYRMXSO\1202678_DA_OTU4OTYyOTE=[1].jpg 3440 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UXYRMXSO\kid-health-tips[1].htm 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UXYRMXSO\drx-breastcancer-th-070312[1].jpg 10363 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UXYRMXSO\skateboarding;pos=right2;sz=300x250;ord=3890948679942845[1].js 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UXYRMXSO\Greek_Potato_Stew_Progress_Web_fa_thumb_medium[1].jpg 10512 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UXYRMXSO\green-salad-tomatoes-bread[1].jpg 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UXYRMXSO\crossdomainCAEIT33N.xml 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\BIJ9V13H.txt 882 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\S7L8WQQR.txt
Rootkit scan 2012-10-30 17:23:13
Windows 6.1.7601 Service Pack 1
Running: xp32bzdk.exe
---- Files - GMER 1.0.15 ----
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\79X2UZ5G\49493478-5a4e-4a35-baa7-83df349fd0ef[1].swf 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\79X2UZ5G\SkyscraperScreens[1].swf 77646 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\79X2UZ5G\glamadapt_srv[1].htm 6383 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\79X2UZ5G\your-family-prepared-weather-emergency[1].htm 124231 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\8YK09QNE\mytwtv;dcopt=ist;topic=transworld;pos=frame1;kw=;id=;sz=88x31;tile=2;remnant=yes;device=;ord=1031579073[1].js 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\8YK09QNE\service[3].htm 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FXI1YB4Q\PublisherEventServlet[1].txt 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FXI1YB4Q\PublisherEventServlet[2].txt 5 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FXI1YB4Q\cb_blogtitleimage_4262_4e1e3ab8c930f[1].gif 1378 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FXI1YB4Q\jukPlayer[1].swf 101812 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FXI1YB4Q\lookup-theword_com[1].htm 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FXI1YB4Q\pc[1] 43 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FXI1YB4Q\a64016b0-fdd8-4a7a-8cc6-71eef1908839[1].swf 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LF3DMK57\liftgeo[1].js 59 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LF3DMK57\PublisherEventServlet[1].txt 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LF3DMK57\skateboarding;dcopt=ist;topic=transworld;pos=x96;kw=landing;id=15;sz=1565x700;tile=4;remnant=yes;device=;ord=1700158678[1].js 38 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LF3DMK57\features;dcopt=ist;topic=transworld;pos=top;kw=landing,photos;id=;sz=728x90;tile=1;remnant=yes;device=;ord=1221831577[1].js 1022 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LF3DMK57\surly[5].js 2096 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LF3DMK57\logCA5Y423P.gif 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LF3DMK57\Track[5].txt 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LF3DMK57\Track[6].txt 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LF3DMK57\Track[7].txt 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LF3DMK57\medications[1].htm 51520 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LF3DMK57\res[1].js 16271 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LF3DMK57\display_ads[1].htm 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LF3DMK57\okinsider-321203-10-19-2012[1].mp4 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LF3DMK57\optn=64[2].js 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LF3DMK57\optn=64[3].js 681 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LF3DMK57\849586b6a3d53c09bbb1b313c3dbb8f3_d709f38ef758b5066ef31b18039b8ce5x38db3aed920cf82ab059bfccbd02be6a[1].jpg 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LF3DMK57\ros;pos=right3;tile=3;sz=300x250;ord=4591361065783927[1].js 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LF3DMK57\iframe_containing[2].js 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LF3DMK57\httpErrorPagesScripts[2] 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LF3DMK57\Twonescreen;pos=right2;sz=300x250;ord=3925624919428757[1].js 610 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LF3DMK57\maskmask[1].jpg 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\PSAG9NK1\atids[2].htm 469 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\PSAG9NK1\logCALZISKJ.gif 43 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\PSAG9NK1\TidalTV_VPAID_V1_0_04[2].swf 7027 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\PSAG9NK1\CookieSetter[2].swf 868 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\PSAG9NK1\2307822[5].htm 31424 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\PSAG9NK1\the-hangover-movie-picture-51[1].jpg 2732 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\PSAG9NK1\ros;pos=right3;tile=3;sz=300x250;ord=3114562822760659[1].js 385 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\PSAG9NK1\css_Di_0Kjd1VZeAYRjaw8zN4Bhrtk3Hq5FhE-PBxbbKRg4[1].css 4432 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SXMEVIB4\generic_3_fa_fv[1].xml 5451 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SXMEVIB4\image2[1].png 25739 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SXMEVIB4\r-box[1].png 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SXMEVIB4\showad[3].js 23613 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SXMEVIB4\Chickpea_curry_fa_thumb_medium[1].jpg 10279 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SXMEVIB4\logCALV13N8.gif 43 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SXMEVIB4\meta[1].htm 1715 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SXMEVIB4\timthumb[1].jpg 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SXMEVIB4\timthumb[2].jpg 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SXMEVIB4\adsCAGSQ29U.js 9418 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SXMEVIB4\137260_f520_fa_thumb_medium[1].jpg 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SXMEVIB4\smartad[1].js 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SXMEVIB4\the-hangover-movie-picture-50[1].jpg 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SXMEVIB4\ros;tile=1;dcopt=ist;poz=top;!c=f;sz=728x90;ord=425927272[1].js 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\SXMEVIB4\crossdomainCADC07PA.xml 269 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UXYRMXSO\cbcpc[1].js 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UXYRMXSO\adsCA0TB0YP.js 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UXYRMXSO\js_S9lXwaNg1LjJKL0IZOH6PAFMy_JFiNySty8jkvvsbzw[1].js 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UXYRMXSO\inthisissue_ad[1].jpg 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UXYRMXSO\logCAULFI38.gif 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UXYRMXSO\xml;length=;campaign=;ord=570146094[1].xml 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UXYRMXSO\xrefid[2].gif 43 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UXYRMXSO\r7ywkg[1].gif 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UXYRMXSO\front[1].js 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UXYRMXSO\image1[1].png 18490 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UXYRMXSO\Track[8].txt 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UXYRMXSO\Track[9].txt 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UXYRMXSO\clear[1].gif 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UXYRMXSO\BirthdayCake_A[1].jpg 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UXYRMXSO\being-happy-and-putting-yourself-first[1].jpg 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UXYRMXSO\the-hangover-movie-picture-49[1].jpg 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UXYRMXSO\timthumb_fa_thumb_medium[1].jpg 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UXYRMXSO\Twonescreen;pos=right3;sz=300x250;ord=4591361065783927[1].js 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UXYRMXSO\1202678_DA_OTU4OTY0MDc=[2].jpg 5296 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UXYRMXSO\1202678_DA_OTU4OTY1NDY=[2].jpg 3356 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UXYRMXSO\1202678_DA_OTU4OTYyMzQ=[2].jpg 4015 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UXYRMXSO\1202678_DA_OTU4OTYyOTE=[1].jpg 3440 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UXYRMXSO\kid-health-tips[1].htm 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UXYRMXSO\drx-breastcancer-th-070312[1].jpg 10363 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UXYRMXSO\skateboarding;pos=right2;sz=300x250;ord=3890948679942845[1].js 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UXYRMXSO\Greek_Potato_Stew_Progress_Web_fa_thumb_medium[1].jpg 10512 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UXYRMXSO\green-salad-tomatoes-bread[1].jpg 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UXYRMXSO\crossdomainCAEIT33N.xml 0 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\BIJ9V13H.txt 882 bytes
File C:\WINDOWS\SysWOW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\S7L8WQQR.txt
pooptart1Greg1
Posts: 14 +0
DDS (Ver_2012-10-19.01)
.
Microsoft Windows 7 Home Premium
Boot Device: \Device\HarddiskVolume2
Install Date: 1/18/2012 2:03:53 PM
System Uptime: 10/30/2012 4:48:07 PM (1 hours ago)
.
Motherboard: Dell Inc. | | 0GDG8Y
Processor: Intel(R) Core(TM) i3-2100 CPU @ 3.10GHz | CPU 1 | 1581/100mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 917 GiB total, 823.741 GiB free.
D: is CDROM ()
E: is Removable
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP63: 10/4/2012 8:25:02 AM - Scheduled Checkpoint
RP64: 10/10/2012 3:00:36 AM - Windows Update
RP65: 10/17/2012 7:23:35 AM - Scheduled Checkpoint
RP66: 10/24/2012 7:36:41 AM - Scheduled Checkpoint
RP67: 10/29/2012 3:19:19 PM - Restore Operation
RP68: 10/30/2012 2:15:35 PM - Installed Java 7 Update 9
.
==== Installed Programs ======================
.
µTorrent
2007 Microsoft Office Suite Service Pack 3 (SP3)
3ivx MPEG-4 5.0.3 (remove only)
Adobe Flash Player 11 ActiveX
Adobe Reader X MUI
Apple Application Support
Apple Mobile Device Support
Apple Software Update
Bejeweled 2 Deluxe
Blackhawk Striker 2
Bonjour
Bounce Symphony
Build-a-lot 2
Cake Mania
Chuzzle Deluxe
Conexant HD Audio
Consumer In-Home Service Agreement
D3DX10
Dell AIO Printer 946
Dell DataSafe Local Backup
Dell DataSafe Local Backup - Support Software
Dell DataSafe Online
Dell Edoc Viewer
Dell Getting Started Guide
Dell Marketplace Webslice IE8
Dell MusicStage
Dell PhotoStage
Dell Stage
Dell VideoStage
Diner Dash 2 Restaurant Rescue
DirectX 9 Runtime
Dora's World Adventure
eBay
Escape Whisper Valley (TM)
Farm Frenzy
FATE
Final Drive Fury
Final Drive Nitro
FlipShare
Free RAR Extract Frog
GoToAssist 8.0.0.514
Intel(R) Processor Graphics
Internet Explorer
iTunes
Java 7 Update 9
Java(TM) 6 Update 24 (64-bit)
Java(TM) 6 Update 30
Jewel Quest
Jewel Quest Solitaire 2
Junk Mail filter update
Luxor
Malwarebytes Anti-Malware version 1.65.1.1000
Mesh Runtime
Microsoft .NET Framework 4 Client Profile
Microsoft .NET Framework 4 Extended
Microsoft Application Error Reporting
Microsoft Office 2010
Microsoft Office Excel MUI (English) 2007
Microsoft Office Office 64-bit Components 2007
Microsoft Office Outlook MUI (English) 2007
Microsoft Office PowerPoint MUI (English) 2007
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (English) 2007
Microsoft Office Shared 64-bit MUI (English) 2007
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office Standard 2007
Microsoft Office Word MUI (English) 2007
Microsoft Silverlight
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
MSVCRT
MSVCRT_amd64
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
Namco All-Stars PAC-MAN
Norton AntiVirus
Norton Bootable Recovery Tool Wizard
Penguins!
PhotoShowExpress
Plants vs. Zombies - Game of the Year
Poker Superstars III
Polar Bowler
Polar Golfer
RBVirtualFolder64Inst
Roxio Activation Module
Roxio BackOnTrack
Roxio Burn
Roxio Creator Starter
Roxio Express Labeler 3
Roxio File Backup
Samantha Swift
Security Update for Microsoft .NET Framework 4 Client Profile (KB2160841)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)
Security Update for Microsoft .NET Framework 4 Extended (KB2487367)
Security Update for Microsoft .NET Framework 4 Extended (KB2656351)
Security Update for Microsoft Office 2007 suites (KB2596615) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596672) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596744) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596785) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596856) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2597162) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2687314) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2687441) 32-Bit Edition
Security Update for Microsoft Office Excel 2007 (KB2597161) 32-Bit Edition
Security Update for Microsoft Office InfoPath 2007 (KB2687440) 32-Bit Edition
Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit Edition
Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition
Security Update for Microsoft Office Word 2007 (KB2687315) 32-Bit Edition
Skype Toolbars
Skype™ 5.10
Sonic CinePlayer Decoder Pack
Spotify
TeacherWorks
TrustedID
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217)
Update for Microsoft .NET Framework 4 Extended (KB2468871)
Update for Microsoft .NET Framework 4 Extended (KB2533523)
Update for Microsoft .NET Framework 4 Extended (KB2600217)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office Outlook 2007 (KB2596598) 32-Bit Edition
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2687407) 32-Bit Edition
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
Update Installer for WildTangent Games App
Virtual Villagers 4 - The Tree of Life
Wedding Dash - Ready, Aim, Love!
WildTangent Games
WildTangent Games App (Dell Games)
Windows Live Communications Platform
Windows Live Essentials
Windows Live ID Sign-in Assistant
Windows Live Installer
Windows Live Language Selector
Windows Live Mail
Windows Live Mesh
Windows Live Mesh ActiveX Control for Remote Connections
Windows Live Messenger
Windows Live MIME IFilter
Windows Live Movie Maker
Windows Live Photo Common
Windows Live Photo Gallery
Windows Live PIMT Platform
Windows Live Remote Client
Windows Live Remote Client Resources
Windows Live Remote Service
Windows Live Remote Service Resources
Windows Live SOXE
Windows Live SOXE Definitions
Windows Live UX Platform
Windows Live UX Platform Language Pack
Windows Live Writer
Windows Live Writer Resources
Wireless-N 150 USB Adapter WNA1000
WNA1000
Zuma Deluxe
.
==== Event Viewer Messages From Past Week ========
.
10/30/2012 3:31:38 PM, Error: Schannel [36888] - The following fatal alert was generated: 40. The internal error state is 107.
10/30/2012 3:31:38 PM, Error: Schannel [36874] - An SSL 3.0 connection request was received from a remote client application, but none of the cipher suites supported by the client application are supported by the server. The SSL connection request has failed.
10/30/2012 11:26:09 AM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x0000000a (0x0000000000000000, 0x0000000000000002, 0x0000000000000000, 0xfffff80002a9f242). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 103012-17456-01.
10/29/2012 9:35:52 AM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x0000001e (0xffffffffc0000005, 0xfffffa8005781bb0, 0x0000000000000000, 0x000000007efa8000). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 102912-39327-01.
10/29/2012 3:36:41 PM, Error: Service Control Manager [7034] - The FlipShare Service service terminated unexpectedly. It has done this 1 time(s).
10/29/2012 3:28:25 PM, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: BHDrvx64
10/28/2012 9:21:39 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x0000001e (0xffffffffc0000005, 0xfffff80002abc66b, 0x0000000000000000, 0x000000007efa0000). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 102812-33243-01.
10/28/2012 8:19:44 PM, Error: Service Control Manager [7034] - The dlci_device service terminated unexpectedly. It has done this 1 time(s).
10/28/2012 8:17:50 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x0000001e (0xffffffffc0000005, 0xfffffa800569fbb0, 0x0000000000000000, 0x000000007efa8000). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 102812-22401-01.
10/25/2012 3:45:20 PM, Error: Service Control Manager [7034] - The dlci_device service terminated unexpectedly. It has done this 9 time(s).
.
==== End Of File ===========================
.
Microsoft Windows 7 Home Premium
Boot Device: \Device\HarddiskVolume2
Install Date: 1/18/2012 2:03:53 PM
System Uptime: 10/30/2012 4:48:07 PM (1 hours ago)
.
Motherboard: Dell Inc. | | 0GDG8Y
Processor: Intel(R) Core(TM) i3-2100 CPU @ 3.10GHz | CPU 1 | 1581/100mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 917 GiB total, 823.741 GiB free.
D: is CDROM ()
E: is Removable
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP63: 10/4/2012 8:25:02 AM - Scheduled Checkpoint
RP64: 10/10/2012 3:00:36 AM - Windows Update
RP65: 10/17/2012 7:23:35 AM - Scheduled Checkpoint
RP66: 10/24/2012 7:36:41 AM - Scheduled Checkpoint
RP67: 10/29/2012 3:19:19 PM - Restore Operation
RP68: 10/30/2012 2:15:35 PM - Installed Java 7 Update 9
.
==== Installed Programs ======================
.
µTorrent
2007 Microsoft Office Suite Service Pack 3 (SP3)
3ivx MPEG-4 5.0.3 (remove only)
Adobe Flash Player 11 ActiveX
Adobe Reader X MUI
Apple Application Support
Apple Mobile Device Support
Apple Software Update
Bejeweled 2 Deluxe
Blackhawk Striker 2
Bonjour
Bounce Symphony
Build-a-lot 2
Cake Mania
Chuzzle Deluxe
Conexant HD Audio
Consumer In-Home Service Agreement
D3DX10
Dell AIO Printer 946
Dell DataSafe Local Backup
Dell DataSafe Local Backup - Support Software
Dell DataSafe Online
Dell Edoc Viewer
Dell Getting Started Guide
Dell Marketplace Webslice IE8
Dell MusicStage
Dell PhotoStage
Dell Stage
Dell VideoStage
Diner Dash 2 Restaurant Rescue
DirectX 9 Runtime
Dora's World Adventure
eBay
Escape Whisper Valley (TM)
Farm Frenzy
FATE
Final Drive Fury
Final Drive Nitro
FlipShare
Free RAR Extract Frog
GoToAssist 8.0.0.514
Intel(R) Processor Graphics
Internet Explorer
iTunes
Java 7 Update 9
Java(TM) 6 Update 24 (64-bit)
Java(TM) 6 Update 30
Jewel Quest
Jewel Quest Solitaire 2
Junk Mail filter update
Luxor
Malwarebytes Anti-Malware version 1.65.1.1000
Mesh Runtime
Microsoft .NET Framework 4 Client Profile
Microsoft .NET Framework 4 Extended
Microsoft Application Error Reporting
Microsoft Office 2010
Microsoft Office Excel MUI (English) 2007
Microsoft Office Office 64-bit Components 2007
Microsoft Office Outlook MUI (English) 2007
Microsoft Office PowerPoint MUI (English) 2007
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (English) 2007
Microsoft Office Shared 64-bit MUI (English) 2007
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office Standard 2007
Microsoft Office Word MUI (English) 2007
Microsoft Silverlight
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
MSVCRT
MSVCRT_amd64
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
Namco All-Stars PAC-MAN
Norton AntiVirus
Norton Bootable Recovery Tool Wizard
Penguins!
PhotoShowExpress
Plants vs. Zombies - Game of the Year
Poker Superstars III
Polar Bowler
Polar Golfer
RBVirtualFolder64Inst
Roxio Activation Module
Roxio BackOnTrack
Roxio Burn
Roxio Creator Starter
Roxio Express Labeler 3
Roxio File Backup
Samantha Swift
Security Update for Microsoft .NET Framework 4 Client Profile (KB2160841)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)
Security Update for Microsoft .NET Framework 4 Extended (KB2487367)
Security Update for Microsoft .NET Framework 4 Extended (KB2656351)
Security Update for Microsoft Office 2007 suites (KB2596615) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596672) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596744) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596785) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596856) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2597162) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2687314) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2687441) 32-Bit Edition
Security Update for Microsoft Office Excel 2007 (KB2597161) 32-Bit Edition
Security Update for Microsoft Office InfoPath 2007 (KB2687440) 32-Bit Edition
Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit Edition
Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition
Security Update for Microsoft Office Word 2007 (KB2687315) 32-Bit Edition
Skype Toolbars
Skype™ 5.10
Sonic CinePlayer Decoder Pack
Spotify
TeacherWorks
TrustedID
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217)
Update for Microsoft .NET Framework 4 Extended (KB2468871)
Update for Microsoft .NET Framework 4 Extended (KB2533523)
Update for Microsoft .NET Framework 4 Extended (KB2600217)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office Outlook 2007 (KB2596598) 32-Bit Edition
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2687407) 32-Bit Edition
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
Update Installer for WildTangent Games App
Virtual Villagers 4 - The Tree of Life
Wedding Dash - Ready, Aim, Love!
WildTangent Games
WildTangent Games App (Dell Games)
Windows Live Communications Platform
Windows Live Essentials
Windows Live ID Sign-in Assistant
Windows Live Installer
Windows Live Language Selector
Windows Live Mail
Windows Live Mesh
Windows Live Mesh ActiveX Control for Remote Connections
Windows Live Messenger
Windows Live MIME IFilter
Windows Live Movie Maker
Windows Live Photo Common
Windows Live Photo Gallery
Windows Live PIMT Platform
Windows Live Remote Client
Windows Live Remote Client Resources
Windows Live Remote Service
Windows Live Remote Service Resources
Windows Live SOXE
Windows Live SOXE Definitions
Windows Live UX Platform
Windows Live UX Platform Language Pack
Windows Live Writer
Windows Live Writer Resources
Wireless-N 150 USB Adapter WNA1000
WNA1000
Zuma Deluxe
.
==== Event Viewer Messages From Past Week ========
.
10/30/2012 3:31:38 PM, Error: Schannel [36888] - The following fatal alert was generated: 40. The internal error state is 107.
10/30/2012 3:31:38 PM, Error: Schannel [36874] - An SSL 3.0 connection request was received from a remote client application, but none of the cipher suites supported by the client application are supported by the server. The SSL connection request has failed.
10/30/2012 11:26:09 AM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x0000000a (0x0000000000000000, 0x0000000000000002, 0x0000000000000000, 0xfffff80002a9f242). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 103012-17456-01.
10/29/2012 9:35:52 AM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x0000001e (0xffffffffc0000005, 0xfffffa8005781bb0, 0x0000000000000000, 0x000000007efa8000). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 102912-39327-01.
10/29/2012 3:36:41 PM, Error: Service Control Manager [7034] - The FlipShare Service service terminated unexpectedly. It has done this 1 time(s).
10/29/2012 3:28:25 PM, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: BHDrvx64
10/28/2012 9:21:39 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x0000001e (0xffffffffc0000005, 0xfffff80002abc66b, 0x0000000000000000, 0x000000007efa0000). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 102812-33243-01.
10/28/2012 8:19:44 PM, Error: Service Control Manager [7034] - The dlci_device service terminated unexpectedly. It has done this 1 time(s).
10/28/2012 8:17:50 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x0000001e (0xffffffffc0000005, 0xfffffa800569fbb0, 0x0000000000000000, 0x000000007efa8000). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 102812-22401-01.
10/25/2012 3:45:20 PM, Error: Service Control Manager [7034] - The dlci_device service terminated unexpectedly. It has done this 9 time(s).
.
==== End Of File ===========================
Jay Pfoutz
Posts: 4,279 +49
Adware Cleaning
Please download AdwCleaner by Xplode onto your Desktop.
TDSSKiller Scan
Please download and run TDSSKiller to your desktop as outlined below:
Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters.
For Windows XP, double-click to start.
For Vista or Windows 7, do a right-click on the program, select Run as Administrator to start, & when prompted Allow to run.
-------------------------
Check the boxes beside Verify Driver Digital Signature and Detect TDLFS file system, then click OK.
------------------------
Click the Start Scan button.
-----------------------
If a suspicious object is detected, the default action will be Skip, click on Continue
If you get the warning about a file UnsignedFile.Multi.Generic or LockedFile.Multi.Generic please choose
Skip and click on Continue
----------------------
If malicious objects are found, they will show in the Scan results and offer three (3) options.
Ensure Cure is selected, then click Continue => Reboot now to finish the cleaning process.
Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.
--------------------
A report will be created in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste its contents on your next reply.
Sometimes these logs can be very large, in that case please attach it or zip it up and attach it.
-------------------
Here's a summary of what to do if you would like to print it out:
If a suspicious object is detected, the default action will be Skip, click on Continue
If you get the warning about a file UnsignedFile.Multi.Generic or LockedFile.Multi.Generic please choose
Skip and click on Continue
If malicious objects are found, they will show in the Scan results and offer three (3) options.
Ensure Cure is selected, then click Continue => Reboot now to finish the cleaning process.
Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.
avast! aswMBR
Please download aswMBR from here
Note: Do not take action against any **Rootkit** entries until I have reviewed the log. Often there are false positives.
Please download AdwCleaner by Xplode onto your Desktop.
- Double click on AdwCleaner.exe to run the tool.
- Click on Delete.
- A logfile will automatically open after the scan has finished.
- Please post the content of that logfile in your reply.
- You can find the logfile at C:\AdwCleaner[Rn].txt as well - n is the order number.
TDSSKiller Scan
Please download and run TDSSKiller to your desktop as outlined below:
Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters.
For Windows XP, double-click to start.
For Vista or Windows 7, do a right-click on the program, select Run as Administrator to start, & when prompted Allow to run.
-------------------------
Check the boxes beside Verify Driver Digital Signature and Detect TDLFS file system, then click OK.
------------------------
Click the Start Scan button.
-----------------------
If a suspicious object is detected, the default action will be Skip, click on Continue
If you get the warning about a file UnsignedFile.Multi.Generic or LockedFile.Multi.Generic please choose
Skip and click on Continue
----------------------
If malicious objects are found, they will show in the Scan results and offer three (3) options.
Ensure Cure is selected, then click Continue => Reboot now to finish the cleaning process.
Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.
--------------------
A report will be created in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste its contents on your next reply.
Sometimes these logs can be very large, in that case please attach it or zip it up and attach it.
-------------------
Here's a summary of what to do if you would like to print it out:
If a suspicious object is detected, the default action will be Skip, click on Continue
If you get the warning about a file UnsignedFile.Multi.Generic or LockedFile.Multi.Generic please choose
Skip and click on Continue
If malicious objects are found, they will show in the Scan results and offer three (3) options.
Ensure Cure is selected, then click Continue => Reboot now to finish the cleaning process.
Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.
avast! aswMBR
Please download aswMBR from here
- Save aswMBR.exe to your Desktop
- Double click aswMBR.exe to run it
- Uncheck "Trace disk IO calls".
- Click the Scan button to start the scan as illustrated below
Note: Do not take action against any **Rootkit** entries until I have reviewed the log. Often there are false positives.
- Once the scan finishes click Save log to save the log to your Desktop
- Copy and paste the contents of aswMBR.txt back here for review
- Please also find MBR.dat on your Desktop, and rename it to MBRscan.txt. Upload that as well. Do not copy and paste MBR.dat/txt, it needs to be uploaded.
pooptart1Greg1
Posts: 14 +0
# AdwCleaner v2.006 - Logfile created 10/31/2012 at 15:23:26
# Updated 30/10/2012 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : Greg - GREG-PC
# Boot Mode : Normal
# Running from : C:\Users\Greg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\WEHTY1HO\adwcleaner.exe
# Option [Delete]
***** [Services] *****
***** [Files / Folders] *****
***** [Registry] *****
Key Deleted : HKCU\Software\AppDataLow\Software
***** [Internet Browsers] *****
-\\ Internet Explorer v9.0.8112.16421
[OK] Registry is clean.
-\\ Google Chrome v [Unable to get version]
File : C:\Users\Greg\AppData\Local\Google\Chrome\User Data\Default\Preferences
[OK] File is clean.
*************************
AdwCleaner[S1].txt - [910 octets] - [30/10/2012 16:47:20]
AdwCleaner[S2].txt - [842 octets] - [31/10/2012 15:23:26]
########## EOF - C:\AdwCleaner[S2].txt - [901 octets] ##########
# Updated 30/10/2012 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : Greg - GREG-PC
# Boot Mode : Normal
# Running from : C:\Users\Greg\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\WEHTY1HO\adwcleaner.exe
# Option [Delete]
***** [Services] *****
***** [Files / Folders] *****
***** [Registry] *****
Key Deleted : HKCU\Software\AppDataLow\Software
***** [Internet Browsers] *****
-\\ Internet Explorer v9.0.8112.16421
[OK] Registry is clean.
-\\ Google Chrome v [Unable to get version]
File : C:\Users\Greg\AppData\Local\Google\Chrome\User Data\Default\Preferences
[OK] File is clean.
*************************
AdwCleaner[S1].txt - [910 octets] - [30/10/2012 16:47:20]
AdwCleaner[S2].txt - [842 octets] - [31/10/2012 15:23:26]
########## EOF - C:\AdwCleaner[S2].txt - [901 octets] ##########
Jay Pfoutz
Posts: 4,279 +49
Good, now waiting on the other tools' logs. 
pooptart1Greg1
Posts: 14 +0
15:31:27.0224 2828 TDSS rootkit removing tool 2.8.13.0 Oct 12 2012 17:26:47
15:31:27.0464 2828 ============================================================
15:31:27.0464 2828 Current date / time: 2012/10/31 15:31:27.0464
15:31:27.0464 2828 SystemInfo:
15:31:27.0464 2828
15:31:27.0464 2828 OS Version: 6.1.7601 ServicePack: 1.0
15:31:27.0464 2828 Product type: Workstation
15:31:27.0464 2828 ComputerName: GREG-PC
15:31:27.0464 2828 UserName: Greg
15:31:27.0464 2828 Windows directory: C:\Windows
15:31:27.0464 2828 System windows directory: C:\Windows
15:31:27.0464 2828 Running under WOW64
15:31:27.0464 2828 Processor architecture: Intel x64
15:31:27.0464 2828 Number of processors: 4
15:31:27.0464 2828 Page size: 0x1000
15:31:27.0464 2828 Boot type: Normal boot
15:31:27.0464 2828 ============================================================
15:31:29.0274 2828 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
15:31:29.0284 2828 ============================================================
15:31:29.0284 2828 \Device\Harddisk0\DR0:
15:31:29.0284 2828 MBR partitions:
15:31:29.0284 2828 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x14000, BlocksNum 0x1D9F000
15:31:29.0284 2828 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1DB3000, BlocksNum 0x72953000
15:31:29.0284 2828 ============================================================
15:31:29.0304 2828 C: <-> \Device\Harddisk0\DR0\Partition2
15:31:29.0304 2828 ============================================================
15:31:29.0304 2828 Initialize success
15:31:29.0304 2828 ============================================================
15:32:30.0795 3376 ============================================================
15:32:30.0795 3376 Scan started
15:32:30.0795 3376 Mode: Manual; SigCheck; TDLFS;
15:32:30.0795 3376 ============================================================
15:32:32.0027 3376 ================ Scan system memory ========================
15:32:32.0027 3376 System memory - ok
15:32:32.0027 3376 ================ Scan services =============================
15:32:32.0137 3376 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
15:32:32.0237 3376 1394ohci - ok
15:32:32.0257 3376 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
15:32:32.0267 3376 ACPI - ok
15:32:32.0277 3376 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
15:32:32.0357 3376 AcpiPmi - ok
15:32:32.0457 3376 [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
15:32:32.0487 3376 AdobeFlashPlayerUpdateSvc - ok
15:32:32.0527 3376 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
15:32:32.0547 3376 adp94xx - ok
15:32:32.0567 3376 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys
15:32:32.0587 3376 adpahci - ok
15:32:32.0607 3376 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
15:32:32.0617 3376 adpu320 - ok
15:32:32.0647 3376 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
15:32:32.0767 3376 AeLookupSvc - ok
15:32:32.0787 3376 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
15:32:32.0847 3376 AFD - ok
15:32:32.0857 3376 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
15:32:32.0877 3376 agp440 - ok
15:32:32.0887 3376 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
15:32:32.0927 3376 ALG - ok
15:32:32.0947 3376 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
15:32:32.0957 3376 aliide - ok
15:32:32.0957 3376 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
15:32:32.0967 3376 amdide - ok
15:32:32.0987 3376 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
15:32:33.0007 3376 AmdK8 - ok
15:32:33.0027 3376 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
15:32:33.0047 3376 AmdPPM - ok
15:32:33.0067 3376 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
15:32:33.0077 3376 amdsata - ok
15:32:33.0097 3376 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
15:32:33.0107 3376 amdsbs - ok
15:32:33.0117 3376 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
15:32:33.0127 3376 amdxata - ok
15:32:33.0147 3376 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
15:32:33.0297 3376 AppID - ok
15:32:33.0317 3376 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
15:32:33.0368 3376 AppIDSvc - ok
15:32:33.0383 3376 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
15:32:33.0430 3376 Appinfo - ok
15:32:33.0508 3376 [ 3DEBBECF665DCDDE3A95D9B902010817 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
15:32:33.0524 3376 Apple Mobile Device - ok
15:32:33.0539 3376 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys
15:32:33.0555 3376 arc - ok
15:32:33.0571 3376 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys
15:32:33.0571 3376 arcsas - ok
15:32:33.0633 3376 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
15:32:33.0664 3376 aspnet_state - ok
15:32:33.0680 3376 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
15:32:33.0758 3376 AsyncMac - ok
15:32:33.0758 3376 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
15:32:33.0773 3376 atapi - ok
15:32:33.0805 3376 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
15:32:33.0867 3376 AudioEndpointBuilder - ok
15:32:33.0883 3376 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
15:32:33.0914 3376 AudioSrv - ok
15:32:33.0914 3376 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
15:32:34.0007 3376 AxInstSV - ok
15:32:34.0023 3376 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
15:32:34.0101 3376 b06bdrv - ok
15:32:34.0117 3376 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
15:32:34.0179 3376 b57nd60a - ok
15:32:34.0195 3376 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
15:32:34.0241 3376 BDESVC - ok
15:32:34.0257 3376 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
15:32:34.0288 3376 Beep - ok
15:32:34.0319 3376 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
15:32:34.0366 3376 BFE - ok
15:32:34.0507 3376 [ 652F4D186325B69FFE80EE18AE9ACC77 ] BHDrvx64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_19.1.1.3
15:31:27.0464 2828 ============================================================
15:31:27.0464 2828 Current date / time: 2012/10/31 15:31:27.0464
15:31:27.0464 2828 SystemInfo:
15:31:27.0464 2828
15:31:27.0464 2828 OS Version: 6.1.7601 ServicePack: 1.0
15:31:27.0464 2828 Product type: Workstation
15:31:27.0464 2828 ComputerName: GREG-PC
15:31:27.0464 2828 UserName: Greg
15:31:27.0464 2828 Windows directory: C:\Windows
15:31:27.0464 2828 System windows directory: C:\Windows
15:31:27.0464 2828 Running under WOW64
15:31:27.0464 2828 Processor architecture: Intel x64
15:31:27.0464 2828 Number of processors: 4
15:31:27.0464 2828 Page size: 0x1000
15:31:27.0464 2828 Boot type: Normal boot
15:31:27.0464 2828 ============================================================
15:31:29.0274 2828 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
15:31:29.0284 2828 ============================================================
15:31:29.0284 2828 \Device\Harddisk0\DR0:
15:31:29.0284 2828 MBR partitions:
15:31:29.0284 2828 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x14000, BlocksNum 0x1D9F000
15:31:29.0284 2828 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1DB3000, BlocksNum 0x72953000
15:31:29.0284 2828 ============================================================
15:31:29.0304 2828 C: <-> \Device\Harddisk0\DR0\Partition2
15:31:29.0304 2828 ============================================================
15:31:29.0304 2828 Initialize success
15:31:29.0304 2828 ============================================================
15:32:30.0795 3376 ============================================================
15:32:30.0795 3376 Scan started
15:32:30.0795 3376 Mode: Manual; SigCheck; TDLFS;
15:32:30.0795 3376 ============================================================
15:32:32.0027 3376 ================ Scan system memory ========================
15:32:32.0027 3376 System memory - ok
15:32:32.0027 3376 ================ Scan services =============================
15:32:32.0137 3376 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
15:32:32.0237 3376 1394ohci - ok
15:32:32.0257 3376 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
15:32:32.0267 3376 ACPI - ok
15:32:32.0277 3376 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
15:32:32.0357 3376 AcpiPmi - ok
15:32:32.0457 3376 [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
15:32:32.0487 3376 AdobeFlashPlayerUpdateSvc - ok
15:32:32.0527 3376 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
15:32:32.0547 3376 adp94xx - ok
15:32:32.0567 3376 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys
15:32:32.0587 3376 adpahci - ok
15:32:32.0607 3376 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
15:32:32.0617 3376 adpu320 - ok
15:32:32.0647 3376 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
15:32:32.0767 3376 AeLookupSvc - ok
15:32:32.0787 3376 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
15:32:32.0847 3376 AFD - ok
15:32:32.0857 3376 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
15:32:32.0877 3376 agp440 - ok
15:32:32.0887 3376 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
15:32:32.0927 3376 ALG - ok
15:32:32.0947 3376 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
15:32:32.0957 3376 aliide - ok
15:32:32.0957 3376 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
15:32:32.0967 3376 amdide - ok
15:32:32.0987 3376 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
15:32:33.0007 3376 AmdK8 - ok
15:32:33.0027 3376 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
15:32:33.0047 3376 AmdPPM - ok
15:32:33.0067 3376 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
15:32:33.0077 3376 amdsata - ok
15:32:33.0097 3376 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
15:32:33.0107 3376 amdsbs - ok
15:32:33.0117 3376 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
15:32:33.0127 3376 amdxata - ok
15:32:33.0147 3376 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
15:32:33.0297 3376 AppID - ok
15:32:33.0317 3376 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
15:32:33.0368 3376 AppIDSvc - ok
15:32:33.0383 3376 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
15:32:33.0430 3376 Appinfo - ok
15:32:33.0508 3376 [ 3DEBBECF665DCDDE3A95D9B902010817 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
15:32:33.0524 3376 Apple Mobile Device - ok
15:32:33.0539 3376 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys
15:32:33.0555 3376 arc - ok
15:32:33.0571 3376 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys
15:32:33.0571 3376 arcsas - ok
15:32:33.0633 3376 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
15:32:33.0664 3376 aspnet_state - ok
15:32:33.0680 3376 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
15:32:33.0758 3376 AsyncMac - ok
15:32:33.0758 3376 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
15:32:33.0773 3376 atapi - ok
15:32:33.0805 3376 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
15:32:33.0867 3376 AudioEndpointBuilder - ok
15:32:33.0883 3376 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
15:32:33.0914 3376 AudioSrv - ok
15:32:33.0914 3376 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
15:32:34.0007 3376 AxInstSV - ok
15:32:34.0023 3376 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
15:32:34.0101 3376 b06bdrv - ok
15:32:34.0117 3376 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
15:32:34.0179 3376 b57nd60a - ok
15:32:34.0195 3376 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
15:32:34.0241 3376 BDESVC - ok
15:32:34.0257 3376 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
15:32:34.0288 3376 Beep - ok
15:32:34.0319 3376 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
15:32:34.0366 3376 BFE - ok
15:32:34.0507 3376 [ 652F4D186325B69FFE80EE18AE9ACC77 ] BHDrvx64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_19.1.1.3
pooptart1Greg1
Posts: 14 +0
15:31:27.0224 2828 TDSS rootkit removing tool 2.8.13.0 Oct 12 2012 17:26:47
15:31:27.0464 2828 ============================================================
15:31:27.0464 2828 Current date / time: 2012/10/31 15:31:27.0464
15:31:27.0464 2828 SystemInfo:
15:31:27.0464 2828
15:31:27.0464 2828 OS Version: 6.1.7601 ServicePack: 1.0
15:31:27.0464 2828 Product type: Workstation
15:31:27.0464 2828 ComputerName: GREG-PC
15:31:27.0464 2828 UserName: Greg
15:31:27.0464 2828 Windows directory: C:\Windows
15:31:27.0464 2828 System windows directory: C:\Windows
15:31:27.0464 2828 Running under WOW64
15:31:27.0464 2828 Processor architecture: Intel x64
15:31:27.0464 2828 Number of processors: 4
15:31:27.0464 2828 Page size: 0x1000
15:31:27.0464 2828 Boot type: Normal boot
15:31:27.0464 2828 ============================================================
15:31:29.0274 2828 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
15:31:29.0284 2828 ============================================================
15:31:29.0284 2828 \Device\Harddisk0\DR0:
15:31:29.0284 2828 MBR partitions:
15:31:29.0284 2828 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x14000, BlocksNum 0x1D9F000
15:31:29.0284 2828 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1DB3000, BlocksNum 0x72953000
15:31:29.0284 2828 ============================================================
15:31:29.0304 2828 C: <-> \Device\Harddisk0\DR0\Partition2
15:31:29.0304 2828 ============================================================
15:31:29.0304 2828 Initialize success
15:31:29.0304 2828 ============================================================
15:32:30.0795 3376 ============================================================
15:32:30.0795 3376 Scan started
15:32:30.0795 3376 Mode: Manual; SigCheck; TDLFS;
15:32:30.0795 3376 ============================================================
15:32:32.0027 3376 ================ Scan system memory ========================
15:32:32.0027 3376 System memory - ok
15:32:32.0027 3376 ================ Scan services =============================
15:32:32.0137 3376 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
15:32:32.0237 3376 1394ohci - ok
15:32:32.0257 3376 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
15:32:32.0267 3376 ACPI - ok
15:32:32.0277 3376 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
15:32:32.0357 3376 AcpiPmi - ok
15:32:32.0457 3376 [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
15:32:32.0487 3376 AdobeFlashPlayerUpdateSvc - ok
15:32:32.0527 3376 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
15:32:32.0547 3376 adp94xx - ok
15:32:32.0567 3376 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys
15:32:32.0587 3376 adpahci - ok
15:32:32.0607 3376 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
15:32:32.0617 3376 adpu320 - ok
15:32:32.0647 3376 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
15:32:32.0767 3376 AeLookupSvc - ok
15:32:32.0787 3376 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
15:32:32.0847 3376 AFD - ok
15:32:32.0857 3376 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
15:32:32.0877 3376 agp440 - ok
15:32:32.0887 3376 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
15:32:32.0927 3376 ALG - ok
15:32:32.0947 3376 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
15:32:32.0957 3376 aliide - ok
15:32:32.0957 3376 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
15:32:32.0967 3376 amdide - ok
15:32:32.0987 3376 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
15:32:33.0007 3376 AmdK8 - ok
15:32:33.0027 3376 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
15:32:33.0047 3376 AmdPPM - ok
15:32:33.0067 3376 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
15:32:33.0077 3376 amdsata - ok
15:32:33.0097 3376 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
15:32:33.0107 3376 amdsbs - ok
15:32:33.0117 3376 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
15:32:33.0127 3376 amdxata - ok
15:32:33.0147 3376 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
15:32:33.0297 3376 AppID - ok
15:32:33.0317 3376 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
15:32:33.0368 3376 AppIDSvc - ok
15:32:33.0383 3376 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
15:32:33.0430 3376 Appinfo - ok
15:32:33.0508 3376 [ 3DEBBECF665DCDDE3A95D9B902010817 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
15:32:33.0524 3376 Apple Mobile Device - ok
15:32:33.0539 3376 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys
15:32:33.0555 3376 arc - ok
15:32:33.0571 3376 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys
15:32:33.0571 3376 arcsas - ok
15:32:33.0633 3376 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
15:32:33.0664 3376 aspnet_state - ok
15:32:33.0680 3376 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
15:32:33.0758 3376 AsyncMac - ok
15:32:33.0758 3376 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
15:32:33.0773 3376 atapi - ok
15:32:33.0805 3376 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
15:32:33.0867 3376 AudioEndpointBuilder - ok
15:32:33.0883 3376 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
15:32:33.0914 3376 AudioSrv - ok
15:32:33.0914 3376 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
15:32:34.0007 3376 AxInstSV - ok
15:32:34.0023 3376 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
15:32:34.0101 3376 b06bdrv - ok
15:32:34.0117 3376 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
15:32:34.0179 3376 b57nd60a - ok
15:32:34.0195 3376 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
15:32:34.0241 3376 BDESVC - ok
15:32:34.0257 3376 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
15:32:34.0288 3376 Beep - ok
15:32:34.0319 3376 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
15:32:34.0366 3376 BFE - ok
15:32:34.0507 3376 [ 652F4D186325B69FFE80EE18AE9ACC77 ] BHDrvx64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_19.1.1.3\Definitions\BASHDefs\20121005.002\BHDrvx64.sys
15:32:34.0538 3376 BHDrvx64 - ok
15:32:34.0585 3376 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
15:32:34.0647 3376 BITS - ok
15:32:34.0663 3376 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
15:32:34.0698 3376 blbdrive - ok
15:32:34.0758 3376 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
15:32:34.0768 3376 Bonjour Service - ok
15:32:34.0788 3376 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
15:32:34.0828 3376 bowser - ok
15:32:34.0848 3376 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
15:32:34.0868 3376 BrFiltLo - ok
15:32:34.0878 3376 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
15:32:34.0898 3376 BrFiltUp - ok
15:32:34.0918 3376 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
15:32:34.0998 3376 Browser - ok
15:32:35.0008 3376 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
15:32:35.0078 3376 Brserid - ok
15:32:35.0088 3376 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
15:32:35.0118 3376 BrSerWdm - ok
15:32:35.0118 3376 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
15:32:35.0138 3376 BrUsbMdm - ok
15:32:35.0138 3376 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
15:32:35.0158 3376 BrUsbSer - ok
15:32:35.0188 3376 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
15:32:35.0208 3376 BTHMODEM - ok
15:32:35.0238 3376 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
15:32:35.0298 3376 bthserv - ok
15:32:35.0388 3376 [ 2C6FFCCA37B002AAB3C7C31A6D780A76 ] ccSet_NAV C:\Windows\system32\drivers\NAVx64\1309000.009\ccSetx64.sys
15:32:35.0408 3376 ccSet_NAV - ok
15:32:35.0438 3376 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
15:32:35.0458 3376 cdfs - ok
15:32:35.0488 3376 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
15:32:35.0528 3376 cdrom - ok
15:32:35.0548 3376 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
15:32:35.0588 3376 CertPropSvc - ok
15:32:35.0608 3376 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\drivers\circlass.sys
15:32:35.0628 3376 circlass - ok
15:32:35.0638 3376 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
15:32:35.0668 3376 CLFS - ok
15:32:35.0728 3376 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
15:32:35.0758 3376 clr_optimization_v2.0.50727_32 - ok
15:32:35.0788 3376 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
15:32:35.0818 3376 clr_optimization_v2.0.50727_64 - ok
15:32:35.0878 3376 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
15:32:35.0888 3376 clr_optimization_v4.0.30319_32 - ok
15:32:35.0918 3376 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
15:32:35.0928 3376 clr_optimization_v4.0.30319_64 - ok
15:32:35.0948 3376 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\drivers\CmBatt.sys
15:32:35.0978 3376 CmBatt - ok
15:32:35.0988 3376 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
15:32:35.0998 3376 cmdide - ok
15:32:36.0028 3376 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
15:32:36.0078 3376 CNG - ok
15:32:36.0128 3376 [ 5C855932E4DF00B1B6F5F6F57E82B6C5 ] CnxtHdAudService C:\Windows\system32\drivers\CHDRT64.sys
15:32:36.0168 3376 CnxtHdAudService - ok
15:32:36.0178 3376 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
15:32:36.0209 3376 Compbatt - ok
15:32:36.0225 3376 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
15:32:36.0256 3376 CompositeBus - ok
15:32:36.0272 3376 COMSysApp - ok
15:32:36.0272 3376 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
15:32:36.0287 3376 crcdisk - ok
15:32:36.0319 3376 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
15:32:36.0365 3376 CryptSvc - ok
15:32:36.0397 3376 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
15:32:36.0459 3376 DcomLaunch - ok
15:32:36.0490 3376 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
15:32:36.0521 3376 defragsvc - ok
15:32:36.0537 3376 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
15:32:36.0599 3376 DfsC - ok
15:32:36.0631 3376 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
15:32:36.0662 3376 Dhcp - ok
15:32:36.0677 3376 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
15:32:36.0709 3376 discache - ok
15:32:36.0740 3376 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\drivers\disk.sys
15:32:36.0771 3376 Disk - ok
15:32:36.0771 3376 dlci_device - ok
15:32:36.0818 3376 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
15:32:36.0849 3376 Dnscache - ok
15:32:36.0865 3376 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
15:32:36.0911 3376 dot3svc - ok
15:32:36.0927 3376 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
15:32:36.0958 3376 DPS - ok
15:32:36.0974 3376 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
15:32:37.0021 3376 drmkaud - ok
15:32:37.0052 3376 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
15:32:37.0067 3376 DXGKrnl - ok
15:32:37.0099 3376 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
15:32:37.0114 3376 EapHost - ok
15:32:37.0177 3376 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\drivers\evbda.sys
15:32:37.0239 3376 ebdrv - ok
15:32:37.0286 3376 [ 4353FF94D47A0A9D52B89ECCF0CDB013 ] eeCtrl C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
15:32:37.0301 3376 eeCtrl - ok
15:32:37.0333 3376 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
15:32:37.0379 3376 EFS - ok
15:32:37.0426 3376 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
15:32:37.0504 3376 ehRecvr - ok
15:32:37.0520 3376 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
15:32:37.0551 3376 ehSched - ok
15:32:37.0582 3376 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys
15:32:37.0598 3376 elxstor - ok
15:32:37.0645 3376 [ C5BCCB378D0A896304A3E71BE7215983 ] EraserUtilRebootDrv C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
15:32:37.0660 3376 EraserUtilRebootDrv - ok
15:32:37.0660 3376 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
15:32:37.0691 3376 ErrDev - ok
15:32:37.0723 3376 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
15:32:37.0769 3376 EventSystem - ok
15:32:37.0785 3376 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
15:32:37.0816 3376 exfat - ok
15:32:37.0816 3376 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
15:32:37.0894 3376 fastfat - ok
15:32:37.0925 3376 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
15:32:37.0972 3376 Fax - ok
15:32:37.0988 3376 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\drivers\fdc.sys
15:32:38.0003 3376 fdc - ok
15:32:38.0019 3376 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
15:32:38.0050 3376 fdPHost - ok
15:32:38.0050 3376 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
15:32:38.0097 3376 FDResPub - ok
15:32:38.0097 3376 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
15:32:38.0113 3376 FileInfo - ok
15:32:38.0113 3376 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
15:32:38.0159 3376 Filetrace - ok
15:32:38.0237 3376 [ E6BA1CEB107AD2663554942A3B090B43 ] FlipShare Service C:\Program Files (x86)\Flip Video\FlipShare\FlipShareService.exe
15:32:38.0253 3376 FlipShare Service - ok
15:32:38.0253 3376 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
15:32:38.0284 3376 flpydisk - ok
15:32:38.0300 3376 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
15:32:38.0315 3376 FltMgr - ok
15:32:38.0331 3376 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
15:32:38.0393 3376 FontCache - ok
15:32:38.0425 3376 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
15:32:38.0456 3376 FontCache3.0.0.0 - ok
15:32:38.0471 3376 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
15:32:38.0503 3376 FsDepends - ok
15:32:38.0534 3376 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
15:32:38.0549 3376 Fs_Rec - ok
15:32:38.0581 3376 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
15:32:38.0612 3376 fvevol - ok
15:32:38.0627 3376 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
15:32:38.0643 3376 gagp30kx - ok
15:32:38.0690 3376 [ C403C5DB49A0F9AAF4F2128EDC0106D8 ] GamesAppService C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
15:32:38.0721 3376 GamesAppService - ok
15:32:38.0737 3376 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
15:32:38.0752 3376 GEARAspiWDM - ok
15:32:38.0783 3376 [ D3316F6E3C011435F36E3D6E49B3196C ] GoToAssist C:\Program Files (x86)\Citrix\GoToAssist\514\g2aservice.exe
15:32:38.0799 3376 GoToAssist - ok
15:32:38.0830 3376 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
15:32:38.0877 3376 gpsvc - ok
15:32:38.0877 3376 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
15:32:38.0908 3376 hcw85cir - ok
15:32:38.0939 3376 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
15:32:38.0971 3376 HDAudBus - ok
15:32:38.0986 3376 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
15:32:39.0002 3376 HidBatt - ok
15:32:39.0017 3376 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\drivers\hidbth.sys
15:32:39.0033 3376 HidBth - ok
15:32:39.0064 3376 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\drivers\hidir.sys
15:32:39.0095 3376 HidIr - ok
15:32:39.0111 3376 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
15:32:39.0158 3376 hidserv - ok
15:32:39.0173 3376 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
15:32:39.0205 3376 HidUsb - ok
15:32:39.0236 3376 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
15:32:39.0267 3376 hkmsvc - ok
15:31:27.0464 2828 ============================================================
15:31:27.0464 2828 Current date / time: 2012/10/31 15:31:27.0464
15:31:27.0464 2828 SystemInfo:
15:31:27.0464 2828
15:31:27.0464 2828 OS Version: 6.1.7601 ServicePack: 1.0
15:31:27.0464 2828 Product type: Workstation
15:31:27.0464 2828 ComputerName: GREG-PC
15:31:27.0464 2828 UserName: Greg
15:31:27.0464 2828 Windows directory: C:\Windows
15:31:27.0464 2828 System windows directory: C:\Windows
15:31:27.0464 2828 Running under WOW64
15:31:27.0464 2828 Processor architecture: Intel x64
15:31:27.0464 2828 Number of processors: 4
15:31:27.0464 2828 Page size: 0x1000
15:31:27.0464 2828 Boot type: Normal boot
15:31:27.0464 2828 ============================================================
15:31:29.0274 2828 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
15:31:29.0284 2828 ============================================================
15:31:29.0284 2828 \Device\Harddisk0\DR0:
15:31:29.0284 2828 MBR partitions:
15:31:29.0284 2828 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x14000, BlocksNum 0x1D9F000
15:31:29.0284 2828 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1DB3000, BlocksNum 0x72953000
15:31:29.0284 2828 ============================================================
15:31:29.0304 2828 C: <-> \Device\Harddisk0\DR0\Partition2
15:31:29.0304 2828 ============================================================
15:31:29.0304 2828 Initialize success
15:31:29.0304 2828 ============================================================
15:32:30.0795 3376 ============================================================
15:32:30.0795 3376 Scan started
15:32:30.0795 3376 Mode: Manual; SigCheck; TDLFS;
15:32:30.0795 3376 ============================================================
15:32:32.0027 3376 ================ Scan system memory ========================
15:32:32.0027 3376 System memory - ok
15:32:32.0027 3376 ================ Scan services =============================
15:32:32.0137 3376 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
15:32:32.0237 3376 1394ohci - ok
15:32:32.0257 3376 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
15:32:32.0267 3376 ACPI - ok
15:32:32.0277 3376 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
15:32:32.0357 3376 AcpiPmi - ok
15:32:32.0457 3376 [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
15:32:32.0487 3376 AdobeFlashPlayerUpdateSvc - ok
15:32:32.0527 3376 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
15:32:32.0547 3376 adp94xx - ok
15:32:32.0567 3376 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys
15:32:32.0587 3376 adpahci - ok
15:32:32.0607 3376 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
15:32:32.0617 3376 adpu320 - ok
15:32:32.0647 3376 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
15:32:32.0767 3376 AeLookupSvc - ok
15:32:32.0787 3376 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
15:32:32.0847 3376 AFD - ok
15:32:32.0857 3376 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
15:32:32.0877 3376 agp440 - ok
15:32:32.0887 3376 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
15:32:32.0927 3376 ALG - ok
15:32:32.0947 3376 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
15:32:32.0957 3376 aliide - ok
15:32:32.0957 3376 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
15:32:32.0967 3376 amdide - ok
15:32:32.0987 3376 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
15:32:33.0007 3376 AmdK8 - ok
15:32:33.0027 3376 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
15:32:33.0047 3376 AmdPPM - ok
15:32:33.0067 3376 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
15:32:33.0077 3376 amdsata - ok
15:32:33.0097 3376 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
15:32:33.0107 3376 amdsbs - ok
15:32:33.0117 3376 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
15:32:33.0127 3376 amdxata - ok
15:32:33.0147 3376 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
15:32:33.0297 3376 AppID - ok
15:32:33.0317 3376 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
15:32:33.0368 3376 AppIDSvc - ok
15:32:33.0383 3376 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
15:32:33.0430 3376 Appinfo - ok
15:32:33.0508 3376 [ 3DEBBECF665DCDDE3A95D9B902010817 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
15:32:33.0524 3376 Apple Mobile Device - ok
15:32:33.0539 3376 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys
15:32:33.0555 3376 arc - ok
15:32:33.0571 3376 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys
15:32:33.0571 3376 arcsas - ok
15:32:33.0633 3376 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
15:32:33.0664 3376 aspnet_state - ok
15:32:33.0680 3376 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
15:32:33.0758 3376 AsyncMac - ok
15:32:33.0758 3376 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
15:32:33.0773 3376 atapi - ok
15:32:33.0805 3376 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
15:32:33.0867 3376 AudioEndpointBuilder - ok
15:32:33.0883 3376 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
15:32:33.0914 3376 AudioSrv - ok
15:32:33.0914 3376 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
15:32:34.0007 3376 AxInstSV - ok
15:32:34.0023 3376 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
15:32:34.0101 3376 b06bdrv - ok
15:32:34.0117 3376 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
15:32:34.0179 3376 b57nd60a - ok
15:32:34.0195 3376 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
15:32:34.0241 3376 BDESVC - ok
15:32:34.0257 3376 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
15:32:34.0288 3376 Beep - ok
15:32:34.0319 3376 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
15:32:34.0366 3376 BFE - ok
15:32:34.0507 3376 [ 652F4D186325B69FFE80EE18AE9ACC77 ] BHDrvx64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_19.1.1.3\Definitions\BASHDefs\20121005.002\BHDrvx64.sys
15:32:34.0538 3376 BHDrvx64 - ok
15:32:34.0585 3376 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
15:32:34.0647 3376 BITS - ok
15:32:34.0663 3376 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
15:32:34.0698 3376 blbdrive - ok
15:32:34.0758 3376 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
15:32:34.0768 3376 Bonjour Service - ok
15:32:34.0788 3376 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
15:32:34.0828 3376 bowser - ok
15:32:34.0848 3376 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
15:32:34.0868 3376 BrFiltLo - ok
15:32:34.0878 3376 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
15:32:34.0898 3376 BrFiltUp - ok
15:32:34.0918 3376 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
15:32:34.0998 3376 Browser - ok
15:32:35.0008 3376 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
15:32:35.0078 3376 Brserid - ok
15:32:35.0088 3376 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
15:32:35.0118 3376 BrSerWdm - ok
15:32:35.0118 3376 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
15:32:35.0138 3376 BrUsbMdm - ok
15:32:35.0138 3376 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
15:32:35.0158 3376 BrUsbSer - ok
15:32:35.0188 3376 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
15:32:35.0208 3376 BTHMODEM - ok
15:32:35.0238 3376 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
15:32:35.0298 3376 bthserv - ok
15:32:35.0388 3376 [ 2C6FFCCA37B002AAB3C7C31A6D780A76 ] ccSet_NAV C:\Windows\system32\drivers\NAVx64\1309000.009\ccSetx64.sys
15:32:35.0408 3376 ccSet_NAV - ok
15:32:35.0438 3376 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
15:32:35.0458 3376 cdfs - ok
15:32:35.0488 3376 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
15:32:35.0528 3376 cdrom - ok
15:32:35.0548 3376 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
15:32:35.0588 3376 CertPropSvc - ok
15:32:35.0608 3376 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\drivers\circlass.sys
15:32:35.0628 3376 circlass - ok
15:32:35.0638 3376 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
15:32:35.0668 3376 CLFS - ok
15:32:35.0728 3376 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
15:32:35.0758 3376 clr_optimization_v2.0.50727_32 - ok
15:32:35.0788 3376 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
15:32:35.0818 3376 clr_optimization_v2.0.50727_64 - ok
15:32:35.0878 3376 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
15:32:35.0888 3376 clr_optimization_v4.0.30319_32 - ok
15:32:35.0918 3376 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
15:32:35.0928 3376 clr_optimization_v4.0.30319_64 - ok
15:32:35.0948 3376 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\drivers\CmBatt.sys
15:32:35.0978 3376 CmBatt - ok
15:32:35.0988 3376 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
15:32:35.0998 3376 cmdide - ok
15:32:36.0028 3376 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
15:32:36.0078 3376 CNG - ok
15:32:36.0128 3376 [ 5C855932E4DF00B1B6F5F6F57E82B6C5 ] CnxtHdAudService C:\Windows\system32\drivers\CHDRT64.sys
15:32:36.0168 3376 CnxtHdAudService - ok
15:32:36.0178 3376 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
15:32:36.0209 3376 Compbatt - ok
15:32:36.0225 3376 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
15:32:36.0256 3376 CompositeBus - ok
15:32:36.0272 3376 COMSysApp - ok
15:32:36.0272 3376 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
15:32:36.0287 3376 crcdisk - ok
15:32:36.0319 3376 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
15:32:36.0365 3376 CryptSvc - ok
15:32:36.0397 3376 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
15:32:36.0459 3376 DcomLaunch - ok
15:32:36.0490 3376 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
15:32:36.0521 3376 defragsvc - ok
15:32:36.0537 3376 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
15:32:36.0599 3376 DfsC - ok
15:32:36.0631 3376 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
15:32:36.0662 3376 Dhcp - ok
15:32:36.0677 3376 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
15:32:36.0709 3376 discache - ok
15:32:36.0740 3376 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\drivers\disk.sys
15:32:36.0771 3376 Disk - ok
15:32:36.0771 3376 dlci_device - ok
15:32:36.0818 3376 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
15:32:36.0849 3376 Dnscache - ok
15:32:36.0865 3376 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
15:32:36.0911 3376 dot3svc - ok
15:32:36.0927 3376 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
15:32:36.0958 3376 DPS - ok
15:32:36.0974 3376 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
15:32:37.0021 3376 drmkaud - ok
15:32:37.0052 3376 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
15:32:37.0067 3376 DXGKrnl - ok
15:32:37.0099 3376 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
15:32:37.0114 3376 EapHost - ok
15:32:37.0177 3376 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\drivers\evbda.sys
15:32:37.0239 3376 ebdrv - ok
15:32:37.0286 3376 [ 4353FF94D47A0A9D52B89ECCF0CDB013 ] eeCtrl C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
15:32:37.0301 3376 eeCtrl - ok
15:32:37.0333 3376 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
15:32:37.0379 3376 EFS - ok
15:32:37.0426 3376 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
15:32:37.0504 3376 ehRecvr - ok
15:32:37.0520 3376 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
15:32:37.0551 3376 ehSched - ok
15:32:37.0582 3376 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys
15:32:37.0598 3376 elxstor - ok
15:32:37.0645 3376 [ C5BCCB378D0A896304A3E71BE7215983 ] EraserUtilRebootDrv C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
15:32:37.0660 3376 EraserUtilRebootDrv - ok
15:32:37.0660 3376 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
15:32:37.0691 3376 ErrDev - ok
15:32:37.0723 3376 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
15:32:37.0769 3376 EventSystem - ok
15:32:37.0785 3376 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
15:32:37.0816 3376 exfat - ok
15:32:37.0816 3376 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
15:32:37.0894 3376 fastfat - ok
15:32:37.0925 3376 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
15:32:37.0972 3376 Fax - ok
15:32:37.0988 3376 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\drivers\fdc.sys
15:32:38.0003 3376 fdc - ok
15:32:38.0019 3376 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
15:32:38.0050 3376 fdPHost - ok
15:32:38.0050 3376 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
15:32:38.0097 3376 FDResPub - ok
15:32:38.0097 3376 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
15:32:38.0113 3376 FileInfo - ok
15:32:38.0113 3376 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
15:32:38.0159 3376 Filetrace - ok
15:32:38.0237 3376 [ E6BA1CEB107AD2663554942A3B090B43 ] FlipShare Service C:\Program Files (x86)\Flip Video\FlipShare\FlipShareService.exe
15:32:38.0253 3376 FlipShare Service - ok
15:32:38.0253 3376 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
15:32:38.0284 3376 flpydisk - ok
15:32:38.0300 3376 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
15:32:38.0315 3376 FltMgr - ok
15:32:38.0331 3376 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
15:32:38.0393 3376 FontCache - ok
15:32:38.0425 3376 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
15:32:38.0456 3376 FontCache3.0.0.0 - ok
15:32:38.0471 3376 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
15:32:38.0503 3376 FsDepends - ok
15:32:38.0534 3376 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
15:32:38.0549 3376 Fs_Rec - ok
15:32:38.0581 3376 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
15:32:38.0612 3376 fvevol - ok
15:32:38.0627 3376 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
15:32:38.0643 3376 gagp30kx - ok
15:32:38.0690 3376 [ C403C5DB49A0F9AAF4F2128EDC0106D8 ] GamesAppService C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
15:32:38.0721 3376 GamesAppService - ok
15:32:38.0737 3376 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
15:32:38.0752 3376 GEARAspiWDM - ok
15:32:38.0783 3376 [ D3316F6E3C011435F36E3D6E49B3196C ] GoToAssist C:\Program Files (x86)\Citrix\GoToAssist\514\g2aservice.exe
15:32:38.0799 3376 GoToAssist - ok
15:32:38.0830 3376 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
15:32:38.0877 3376 gpsvc - ok
15:32:38.0877 3376 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
15:32:38.0908 3376 hcw85cir - ok
15:32:38.0939 3376 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
15:32:38.0971 3376 HDAudBus - ok
15:32:38.0986 3376 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
15:32:39.0002 3376 HidBatt - ok
15:32:39.0017 3376 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\drivers\hidbth.sys
15:32:39.0033 3376 HidBth - ok
15:32:39.0064 3376 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\drivers\hidir.sys
15:32:39.0095 3376 HidIr - ok
15:32:39.0111 3376 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
15:32:39.0158 3376 hidserv - ok
15:32:39.0173 3376 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
15:32:39.0205 3376 HidUsb - ok
15:32:39.0236 3376 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
15:32:39.0267 3376 hkmsvc - ok
pooptart1Greg1
Posts: 14 +0
15:32:39.0283 3376 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
15:32:39.0314 3376 HomeGroupListener - ok
15:32:39.0329 3376 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
15:32:39.0329 3376 HomeGroupProvider - ok
15:32:39.0361 3376 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
15:32:39.0361 3376 HpSAMD - ok
15:32:39.0392 3376 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
15:32:39.0439 3376 HTTP - ok
15:32:39.0454 3376 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
15:32:39.0454 3376 hwpolicy - ok
15:32:39.0485 3376 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
15:32:39.0485 3376 i8042prt - ok
15:32:39.0517 3376 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
15:32:39.0563 3376 iaStorV - ok
15:32:39.0595 3376 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
15:32:39.0636 3376 idsvc - ok
15:32:39.0726 3376 [ A48928D4CCA6F8B731989DB08CF2C0AB ] IDSVia64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_19.1.1.3\Definitions\IPSDefs\20121027.002\IDSvia64.sys
15:32:39.0746 3376 IDSVia64 - ok
15:32:39.0926 3376 [ 0D1B8C64BDF0E5CDC523A1409FFB5EF0 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
15:32:40.0226 3376 igfx - ok
15:32:40.0246 3376 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\drivers\iirsp.sys
15:32:40.0266 3376 iirsp - ok
15:32:40.0296 3376 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
15:32:40.0356 3376 IKEEXT - ok
15:32:40.0386 3376 [ FC727061C0F47C8059E88E05D5C8E381 ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
15:32:40.0436 3376 IntcDAud - ok
15:32:40.0456 3376 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
15:32:40.0456 3376 intelide - ok
15:32:40.0466 3376 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
15:32:40.0496 3376 intelppm - ok
15:32:40.0506 3376 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
15:32:40.0566 3376 IPBusEnum - ok
15:32:40.0586 3376 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
15:32:40.0616 3376 IpFilterDriver - ok
15:32:40.0646 3376 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
15:32:40.0686 3376 iphlpsvc - ok
15:32:40.0706 3376 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
15:32:40.0726 3376 IPMIDRV - ok
15:32:40.0746 3376 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
15:32:40.0766 3376 IPNAT - ok
15:32:40.0796 3376 [ EE4C2A137C7088911A8919EFFC9812E7 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
15:32:40.0836 3376 iPod Service - ok
15:32:40.0866 3376 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
15:32:40.0896 3376 IRENUM - ok
15:32:40.0906 3376 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
15:32:40.0906 3376 isapnp - ok
15:32:40.0926 3376 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
15:32:40.0946 3376 iScsiPrt - ok
15:32:41.0006 3376 [ 78D233D835A8876035AC559AFE02B940 ] jswpsapi C:\Program Files (x86)\NETGEAR\WNA1000\jswpsapi.exe
15:32:41.0056 3376 jswpsapi ( UnsignedFile.Multi.Generic ) - warning
15:32:41.0056 3376 jswpsapi - detected UnsignedFile.Multi.Generic (1)
15:32:41.0086 3376 [ 5BE640E88814B77A9E84B4549B5DCC2C ] JSWPSLWF C:\Windows\system32\DRIVERS\jswpslwfx.sys
15:32:41.0126 3376 JSWPSLWF - ok
15:32:41.0146 3376 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
15:32:41.0166 3376 kbdclass - ok
15:32:41.0186 3376 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
15:32:41.0226 3376 kbdhid - ok
15:32:41.0236 3376 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
15:32:41.0246 3376 KeyIso - ok
15:32:41.0266 3376 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
15:32:41.0306 3376 KSecDD - ok
15:32:41.0326 3376 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
15:32:41.0336 3376 KSecPkg - ok
15:32:41.0346 3376 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
15:32:41.0376 3376 ksthunk - ok
15:32:41.0396 3376 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
15:32:41.0436 3376 KtmRm - ok
15:32:41.0466 3376 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
15:32:41.0506 3376 LanmanServer - ok
15:32:41.0526 3376 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
15:32:41.0566 3376 LanmanWorkstation - ok
15:32:41.0596 3376 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
15:32:41.0626 3376 lltdio - ok
15:32:41.0656 3376 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
15:32:41.0691 3376 lltdsvc - ok
15:32:41.0707 3376 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
15:32:41.0738 3376 lmhosts - ok
15:32:41.0754 3376 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
15:32:41.0754 3376 LSI_FC - ok
15:32:41.0785 3376 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
15:32:41.0816 3376 LSI_SAS - ok
15:32:41.0832 3376 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
15:32:41.0832 3376 LSI_SAS2 - ok
15:32:41.0847 3376 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
15:32:41.0879 3376 LSI_SCSI - ok
15:32:41.0894 3376 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
15:32:41.0941 3376 luafv - ok
15:32:41.0957 3376 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
15:32:41.0972 3376 Mcx2Svc - ok
15:32:42.0050 3376 [ 7CF1B716372B89568AE4C0FE769F5869 ] MDM C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
15:32:42.0066 3376 MDM ( UnsignedFile.Multi.Generic ) - warning
15:32:42.0081 3376 MDM - detected UnsignedFile.Multi.Generic (1)
15:32:42.0097 3376 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\drivers\megasas.sys
15:32:42.0097 3376 megasas - ok
15:32:42.0113 3376 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
15:32:42.0144 3376 MegaSR - ok
15:32:42.0175 3376 [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
15:32:42.0191 3376 MEIx64 - ok
15:32:42.0222 3376 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
15:32:42.0269 3376 MMCSS - ok
15:32:42.0284 3376 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
15:32:42.0300 3376 Modem - ok
15:32:42.0315 3376 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
15:32:42.0347 3376 monitor - ok
15:32:42.0362 3376 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
15:32:42.0362 3376 mouclass - ok
15:32:42.0393 3376 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
15:32:42.0409 3376 mouhid - ok
15:32:42.0419 3376 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
15:32:42.0429 3376 mountmgr - ok
15:32:42.0439 3376 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
15:32:42.0449 3376 mpio - ok
15:32:42.0449 3376 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
15:32:42.0479 3376 mpsdrv - ok
15:32:42.0499 3376 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
15:32:42.0529 3376 MpsSvc - ok
15:32:42.0539 3376 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
15:32:42.0559 3376 MRxDAV - ok
15:32:42.0589 3376 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
15:32:42.0649 3376 mrxsmb - ok
15:32:42.0659 3376 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
15:32:42.0679 3376 mrxsmb10 - ok
15:32:42.0699 3376 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
15:32:42.0709 3376 mrxsmb20 - ok
15:32:42.0709 3376 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
15:32:42.0719 3376 msahci - ok
15:32:42.0739 3376 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
15:32:42.0759 3376 msdsm - ok
15:32:42.0779 3376 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
15:32:42.0799 3376 MSDTC - ok
15:32:42.0809 3376 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
15:32:42.0839 3376 Msfs - ok
15:32:42.0849 3376 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
15:32:42.0899 3376 mshidkmdf - ok
15:32:42.0929 3376 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
15:32:42.0939 3376 msisadrv - ok
15:32:42.0959 3376 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
15:32:42.0999 3376 MSiSCSI - ok
15:32:42.0999 3376 msiserver - ok
15:32:43.0029 3376 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
15:32:43.0069 3376 MSKSSRV - ok
15:32:43.0079 3376 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
15:32:43.0129 3376 MSPCLOCK - ok
15:32:43.0149 3376 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
15:32:43.0179 3376 MSPQM - ok
15:32:43.0199 3376 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
15:32:43.0209 3376 MsRPC - ok
15:32:43.0219 3376 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
15:32:43.0219 3376 mssmbios - ok
15:32:43.0229 3376 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
15:32:43.0259 3376 MSTEE - ok
15:32:43.0269 3376 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
15:32:43.0279 3376 MTConfig - ok
15:32:43.0289 3376 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
15:32:43.0309 3376 Mup - ok
15:32:43.0339 3376 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
15:32:43.0389 3376 napagent - ok
15:32:43.0419 3376 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
15:32:43.0479 3376 NativeWifiP - ok
15:32:43.0539 3376 [ F2840DBFE9322F35557219AE82CC4597 ] NAV C:\Program Files (x86)\Norton AntiVirus\Engine\19.9.0.9\ccSvcHst.exe
15:32:43.0549 3376 NAV - ok
15:32:43.0610 3376 [ C58D8A669D6551F616D90244BD2C2D4F ] NAVENG C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_19.1.1.3\Definitions\VirusDefs\20121030.002\ENG64.SYS
15:32:43.0640 3376 NAVENG - ok
15:32:43.0690 3376 [ A3DBDB412ADFA5882DD6843B11FE0828 ] NAVEX15 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_19.1.1.3\Definitions\VirusDefs\20121030.002\EX64.SYS
15:32:43.0730 3376 NAVEX15 - ok
15:32:43.0780 3376 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
15:32:43.0800 3376 NDIS - ok
15:32:43.0820 3376 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
15:32:43.0850 3376 NdisCap - ok
15:32:43.0870 3376 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
15:32:43.0890 3376 NdisTapi - ok
15:32:43.0900 3376 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
15:32:43.0940 3376 Ndisuio - ok
15:32:43.0950 3376 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
15:32:43.0990 3376 NdisWan - ok
15:32:44.0000 3376 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
15:32:44.0030 3376 NDProxy - ok
15:32:44.0050 3376 [ 6F4607E2333FE21E9E3FF8133A88B35B ] Netaapl C:\Windows\system32\DRIVERS\netaapl64.sys
15:32:44.0100 3376 Netaapl - ok
15:32:44.0120 3376 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
15:32:44.0160 3376 NetBIOS - ok
15:32:44.0170 3376 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
15:32:44.0220 3376 NetBT - ok
15:32:44.0240 3376 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
15:32:44.0250 3376 Netlogon - ok
15:32:44.0280 3376 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
15:32:44.0320 3376 Netman - ok
15:32:44.0340 3376 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:32:44.0340 3376 NetMsmqActivator - ok
15:32:44.0350 3376 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:32:44.0360 3376 NetPipeActivator - ok
15:32:44.0370 3376 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
15:32:44.0410 3376 netprofm - ok
15:32:44.0410 3376 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:32:44.0420 3376 NetTcpActivator - ok
15:32:44.0430 3376 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:32:44.0430 3376 NetTcpPortSharing - ok
15:32:44.0450 3376 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
15:32:44.0470 3376 nfrd960 - ok
15:32:44.0500 3376 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
15:32:44.0550 3376 NlaSvc - ok
15:32:44.0660 3376 [ B9B72FAAAA41D59B73B88FE3DD737ED1 ] NOBU C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe
15:32:44.0780 3376 NOBU - ok
15:32:44.0780 3376 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
15:32:44.0810 3376 Npfs - ok
15:32:44.0820 3376 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
15:32:44.0860 3376 nsi - ok
15:32:44.0880 3376 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
15:32:44.0910 3376 nsiproxy - ok
15:32:44.0960 3376 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
15:32:45.0040 3376 Ntfs - ok
15:32:45.0050 3376 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
15:32:45.0080 3376 Null - ok
15:32:45.0100 3376 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
15:32:45.0140 3376 nvraid - ok
15:32:45.0160 3376 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
15:32:45.0170 3376 nvstor - ok
15:32:45.0190 3376 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
15:32:45.0200 3376 nv_agp - ok
15:32:45.0230 3376 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
15:32:45.0260 3376 odserv - ok
15:32:45.0280 3376 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
15:32:45.0290 3376 ohci1394 - ok
15:32:45.0300 3376 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
15:32:45.0340 3376 ose - ok
15:32:45.0370 3376 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
15:32:45.0420 3376 p2pimsvc - ok
15:32:45.0450 3376 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
15:32:45.0460 3376 p2psvc - ok
15:32:45.0470 3376 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\drivers\parport.sys
15:32:45.0480 3376 Parport - ok
15:32:45.0510 3376 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
15:32:45.0530 3376 partmgr - ok
15:32:45.0560 3376 [ 304E6AC43613A9C43896C4300009442B ] PCAMp50a64 C:\Windows\system32\Drivers\PCAMp50a64.sys
15:32:45.0570 3376 PCAMp50a64 - ok
15:32:45.0600 3376 [ 18B6869E23937175144E6F1D3CB85FC2 ] PCASp50a64 C:\Windows\system32\Drivers\PCASp50a64.sys
15:32:45.0620 3376 PCASp50a64 - ok
15:32:45.0630 3376 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
15:32:45.0660 3376 PcaSvc - ok
15:32:45.0670 3376 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
15:32:45.0680 3376 pci - ok
15:32:45.0700 3376 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
15:32:45.0700 3376 pciide - ok
15:32:45.0720 3376 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
15:32:45.0730 3376 pcmcia - ok
15:32:45.0750 3376 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
15:32:45.0750 3376 pcw - ok
15:32:45.0770 3376 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
15:32:45.0820 3376 PEAUTH - ok
15:32:45.0880 3376 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
15:32:45.0930 3376 PerfHost - ok
15:32:45.0970 3376 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
15:32:46.0010 3376 pla - ok
15:32:46.0050 3376 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
15:32:46.0100 3376 PlugPlay - ok
15:32:46.0100 3376 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
15:32:46.0140 3376 PNRPAutoReg - ok
15:32:46.0150 3376 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
15:32:46.0170 3376 PNRPsvc - ok
15:32:46.0190 3376 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
15:32:46.0220 3376 PolicyAgent - ok
15:32:46.0250 3376 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
15:32:46.0290 3376 Power - ok
15:32:46.0320 3376 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
15:32:46.0380 3376 PptpMiniport - ok
15:32:46.0400 3376 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\drivers\processr.sys
15:32:46.0410 3376 Processor - ok
15:32:46.0450 3376 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
15:32:46.0510 3376 ProfSvc - ok
15:32:46.0520 3376 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
15:32:46.0530 3376 ProtectedStorage - ok
15:32:46.0560 3376 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
15:32:46.0590 3376 Psched - ok
15:32:46.0630 3376 [ 87B04878A6D59D6C79251DC960C674C1 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
15:32:46.0650 3376 PxHlpa64 - ok
15:32:46.0720 3376 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
15:32:46.0760 3376 ql2300 - ok
15:32:46.0770 3376 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
15:32:46.0780 3376 ql40xx - ok
15:32:46.0800 3376 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
15:32:46.0820 3376 QWAVE - ok
15:32:46.0830 3376 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
15:32:46.0850 3376 QWAVEdrv - ok
15:32:46.0860 3376 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
15:32:46.0890 3376 RasAcd - ok
15:32:46.0910 3376 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
15:32:46.0960 3376 RasAgileVpn - ok
15:32:46.0970 3376 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
15:32:47.0040 3376 RasAuto - ok
15:32:47.0050 3376 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
15:32:47.0080 3376 Rasl2tp - ok
15:32:47.0100 3376 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
15:32:47.0130 3376 RasMan - ok
15:32:47.0140 3376 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
15:32:47.0180 3376 RasPppoe - ok
15:32:47.0190 3376 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
15:32:47.0230 3376 RasSstp - ok
15:32:47.0250 3376 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
15:32:47.0280 3376 rdbss - ok
15:32:47.0280 3376 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\drivers\rdpbus.sys
15:32:47.0320 3376 rdpbus - ok
15:32:47.0330 3376 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
15:32:47.0380 3376 RDPCDD - ok
15:32:47.0400 3376 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
15:32:47.0440 3376 RDPENCDD - ok
15:32:47.0450 3376 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
15:32:47.0480 3376 RDPREFMP - ok
15:32:47.0490 3376 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
15:32:47.0530 3376 RDPWD - ok
15:32:47.0540 3376 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
15:32:47.0550 3376 rdyboost - ok
15:32:47.0560 3376 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
15:32:47.0610 3376 RemoteAccess - ok
15:32:47.0620 3376 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
15:32:47.0660 3376 RemoteRegistry - ok
15:32:47.0730 3376 [ 3C957189B31C34D3AD21967B12B6AED7 ] RoxMediaDB12OEM C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe
15:32:47.0790 3376 RoxMediaDB12OEM - ok
15:32:47.0820 3376 [ 2B73088CC2CA757A172B425C9398E5BC ] RoxWatch12 C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe
15:32:47.0840 3376 RoxWatch12 - ok
15:32:47.0850 3376 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
15:32:47.0880 3376 RpcEptMapper - ok
15:32:47.0910 3376 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
15:32:47.0930 3376 RpcLocator - ok
15:32:47.0950 3376 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
15:32:47.0980 3376 RpcSs - ok
15:32:48.0000 3376 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
15:32:48.0030 3376 rspndr - ok
15:32:48.0060 3376 [ EE082E06A82FF630351D1E0EBBD3D8D0 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
15:32:48.0090 3376 RTL8167 - ok
15:32:48.0100 3376 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
15:32:48.0110 3376 SamSs - ok
15:32:39.0314 3376 HomeGroupListener - ok
15:32:39.0329 3376 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
15:32:39.0329 3376 HomeGroupProvider - ok
15:32:39.0361 3376 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
15:32:39.0361 3376 HpSAMD - ok
15:32:39.0392 3376 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
15:32:39.0439 3376 HTTP - ok
15:32:39.0454 3376 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
15:32:39.0454 3376 hwpolicy - ok
15:32:39.0485 3376 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
15:32:39.0485 3376 i8042prt - ok
15:32:39.0517 3376 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
15:32:39.0563 3376 iaStorV - ok
15:32:39.0595 3376 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
15:32:39.0636 3376 idsvc - ok
15:32:39.0726 3376 [ A48928D4CCA6F8B731989DB08CF2C0AB ] IDSVia64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_19.1.1.3\Definitions\IPSDefs\20121027.002\IDSvia64.sys
15:32:39.0746 3376 IDSVia64 - ok
15:32:39.0926 3376 [ 0D1B8C64BDF0E5CDC523A1409FFB5EF0 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
15:32:40.0226 3376 igfx - ok
15:32:40.0246 3376 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\drivers\iirsp.sys
15:32:40.0266 3376 iirsp - ok
15:32:40.0296 3376 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
15:32:40.0356 3376 IKEEXT - ok
15:32:40.0386 3376 [ FC727061C0F47C8059E88E05D5C8E381 ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
15:32:40.0436 3376 IntcDAud - ok
15:32:40.0456 3376 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
15:32:40.0456 3376 intelide - ok
15:32:40.0466 3376 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
15:32:40.0496 3376 intelppm - ok
15:32:40.0506 3376 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
15:32:40.0566 3376 IPBusEnum - ok
15:32:40.0586 3376 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
15:32:40.0616 3376 IpFilterDriver - ok
15:32:40.0646 3376 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
15:32:40.0686 3376 iphlpsvc - ok
15:32:40.0706 3376 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
15:32:40.0726 3376 IPMIDRV - ok
15:32:40.0746 3376 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
15:32:40.0766 3376 IPNAT - ok
15:32:40.0796 3376 [ EE4C2A137C7088911A8919EFFC9812E7 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
15:32:40.0836 3376 iPod Service - ok
15:32:40.0866 3376 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
15:32:40.0896 3376 IRENUM - ok
15:32:40.0906 3376 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
15:32:40.0906 3376 isapnp - ok
15:32:40.0926 3376 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
15:32:40.0946 3376 iScsiPrt - ok
15:32:41.0006 3376 [ 78D233D835A8876035AC559AFE02B940 ] jswpsapi C:\Program Files (x86)\NETGEAR\WNA1000\jswpsapi.exe
15:32:41.0056 3376 jswpsapi ( UnsignedFile.Multi.Generic ) - warning
15:32:41.0056 3376 jswpsapi - detected UnsignedFile.Multi.Generic (1)
15:32:41.0086 3376 [ 5BE640E88814B77A9E84B4549B5DCC2C ] JSWPSLWF C:\Windows\system32\DRIVERS\jswpslwfx.sys
15:32:41.0126 3376 JSWPSLWF - ok
15:32:41.0146 3376 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
15:32:41.0166 3376 kbdclass - ok
15:32:41.0186 3376 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
15:32:41.0226 3376 kbdhid - ok
15:32:41.0236 3376 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
15:32:41.0246 3376 KeyIso - ok
15:32:41.0266 3376 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
15:32:41.0306 3376 KSecDD - ok
15:32:41.0326 3376 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
15:32:41.0336 3376 KSecPkg - ok
15:32:41.0346 3376 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
15:32:41.0376 3376 ksthunk - ok
15:32:41.0396 3376 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
15:32:41.0436 3376 KtmRm - ok
15:32:41.0466 3376 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
15:32:41.0506 3376 LanmanServer - ok
15:32:41.0526 3376 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
15:32:41.0566 3376 LanmanWorkstation - ok
15:32:41.0596 3376 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
15:32:41.0626 3376 lltdio - ok
15:32:41.0656 3376 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
15:32:41.0691 3376 lltdsvc - ok
15:32:41.0707 3376 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
15:32:41.0738 3376 lmhosts - ok
15:32:41.0754 3376 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
15:32:41.0754 3376 LSI_FC - ok
15:32:41.0785 3376 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
15:32:41.0816 3376 LSI_SAS - ok
15:32:41.0832 3376 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
15:32:41.0832 3376 LSI_SAS2 - ok
15:32:41.0847 3376 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
15:32:41.0879 3376 LSI_SCSI - ok
15:32:41.0894 3376 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
15:32:41.0941 3376 luafv - ok
15:32:41.0957 3376 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
15:32:41.0972 3376 Mcx2Svc - ok
15:32:42.0050 3376 [ 7CF1B716372B89568AE4C0FE769F5869 ] MDM C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
15:32:42.0066 3376 MDM ( UnsignedFile.Multi.Generic ) - warning
15:32:42.0081 3376 MDM - detected UnsignedFile.Multi.Generic (1)
15:32:42.0097 3376 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\drivers\megasas.sys
15:32:42.0097 3376 megasas - ok
15:32:42.0113 3376 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
15:32:42.0144 3376 MegaSR - ok
15:32:42.0175 3376 [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
15:32:42.0191 3376 MEIx64 - ok
15:32:42.0222 3376 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
15:32:42.0269 3376 MMCSS - ok
15:32:42.0284 3376 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
15:32:42.0300 3376 Modem - ok
15:32:42.0315 3376 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
15:32:42.0347 3376 monitor - ok
15:32:42.0362 3376 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
15:32:42.0362 3376 mouclass - ok
15:32:42.0393 3376 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
15:32:42.0409 3376 mouhid - ok
15:32:42.0419 3376 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
15:32:42.0429 3376 mountmgr - ok
15:32:42.0439 3376 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
15:32:42.0449 3376 mpio - ok
15:32:42.0449 3376 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
15:32:42.0479 3376 mpsdrv - ok
15:32:42.0499 3376 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
15:32:42.0529 3376 MpsSvc - ok
15:32:42.0539 3376 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
15:32:42.0559 3376 MRxDAV - ok
15:32:42.0589 3376 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
15:32:42.0649 3376 mrxsmb - ok
15:32:42.0659 3376 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
15:32:42.0679 3376 mrxsmb10 - ok
15:32:42.0699 3376 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
15:32:42.0709 3376 mrxsmb20 - ok
15:32:42.0709 3376 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
15:32:42.0719 3376 msahci - ok
15:32:42.0739 3376 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
15:32:42.0759 3376 msdsm - ok
15:32:42.0779 3376 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
15:32:42.0799 3376 MSDTC - ok
15:32:42.0809 3376 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
15:32:42.0839 3376 Msfs - ok
15:32:42.0849 3376 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
15:32:42.0899 3376 mshidkmdf - ok
15:32:42.0929 3376 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
15:32:42.0939 3376 msisadrv - ok
15:32:42.0959 3376 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
15:32:42.0999 3376 MSiSCSI - ok
15:32:42.0999 3376 msiserver - ok
15:32:43.0029 3376 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
15:32:43.0069 3376 MSKSSRV - ok
15:32:43.0079 3376 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
15:32:43.0129 3376 MSPCLOCK - ok
15:32:43.0149 3376 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
15:32:43.0179 3376 MSPQM - ok
15:32:43.0199 3376 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
15:32:43.0209 3376 MsRPC - ok
15:32:43.0219 3376 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
15:32:43.0219 3376 mssmbios - ok
15:32:43.0229 3376 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
15:32:43.0259 3376 MSTEE - ok
15:32:43.0269 3376 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
15:32:43.0279 3376 MTConfig - ok
15:32:43.0289 3376 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
15:32:43.0309 3376 Mup - ok
15:32:43.0339 3376 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
15:32:43.0389 3376 napagent - ok
15:32:43.0419 3376 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
15:32:43.0479 3376 NativeWifiP - ok
15:32:43.0539 3376 [ F2840DBFE9322F35557219AE82CC4597 ] NAV C:\Program Files (x86)\Norton AntiVirus\Engine\19.9.0.9\ccSvcHst.exe
15:32:43.0549 3376 NAV - ok
15:32:43.0610 3376 [ C58D8A669D6551F616D90244BD2C2D4F ] NAVENG C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_19.1.1.3\Definitions\VirusDefs\20121030.002\ENG64.SYS
15:32:43.0640 3376 NAVENG - ok
15:32:43.0690 3376 [ A3DBDB412ADFA5882DD6843B11FE0828 ] NAVEX15 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_19.1.1.3\Definitions\VirusDefs\20121030.002\EX64.SYS
15:32:43.0730 3376 NAVEX15 - ok
15:32:43.0780 3376 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
15:32:43.0800 3376 NDIS - ok
15:32:43.0820 3376 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
15:32:43.0850 3376 NdisCap - ok
15:32:43.0870 3376 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
15:32:43.0890 3376 NdisTapi - ok
15:32:43.0900 3376 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
15:32:43.0940 3376 Ndisuio - ok
15:32:43.0950 3376 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
15:32:43.0990 3376 NdisWan - ok
15:32:44.0000 3376 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
15:32:44.0030 3376 NDProxy - ok
15:32:44.0050 3376 [ 6F4607E2333FE21E9E3FF8133A88B35B ] Netaapl C:\Windows\system32\DRIVERS\netaapl64.sys
15:32:44.0100 3376 Netaapl - ok
15:32:44.0120 3376 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
15:32:44.0160 3376 NetBIOS - ok
15:32:44.0170 3376 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
15:32:44.0220 3376 NetBT - ok
15:32:44.0240 3376 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
15:32:44.0250 3376 Netlogon - ok
15:32:44.0280 3376 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
15:32:44.0320 3376 Netman - ok
15:32:44.0340 3376 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:32:44.0340 3376 NetMsmqActivator - ok
15:32:44.0350 3376 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:32:44.0360 3376 NetPipeActivator - ok
15:32:44.0370 3376 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
15:32:44.0410 3376 netprofm - ok
15:32:44.0410 3376 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:32:44.0420 3376 NetTcpActivator - ok
15:32:44.0430 3376 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:32:44.0430 3376 NetTcpPortSharing - ok
15:32:44.0450 3376 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
15:32:44.0470 3376 nfrd960 - ok
15:32:44.0500 3376 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
15:32:44.0550 3376 NlaSvc - ok
15:32:44.0660 3376 [ B9B72FAAAA41D59B73B88FE3DD737ED1 ] NOBU C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe
15:32:44.0780 3376 NOBU - ok
15:32:44.0780 3376 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
15:32:44.0810 3376 Npfs - ok
15:32:44.0820 3376 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
15:32:44.0860 3376 nsi - ok
15:32:44.0880 3376 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
15:32:44.0910 3376 nsiproxy - ok
15:32:44.0960 3376 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
15:32:45.0040 3376 Ntfs - ok
15:32:45.0050 3376 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
15:32:45.0080 3376 Null - ok
15:32:45.0100 3376 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
15:32:45.0140 3376 nvraid - ok
15:32:45.0160 3376 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
15:32:45.0170 3376 nvstor - ok
15:32:45.0190 3376 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
15:32:45.0200 3376 nv_agp - ok
15:32:45.0230 3376 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
15:32:45.0260 3376 odserv - ok
15:32:45.0280 3376 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
15:32:45.0290 3376 ohci1394 - ok
15:32:45.0300 3376 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
15:32:45.0340 3376 ose - ok
15:32:45.0370 3376 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
15:32:45.0420 3376 p2pimsvc - ok
15:32:45.0450 3376 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
15:32:45.0460 3376 p2psvc - ok
15:32:45.0470 3376 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\drivers\parport.sys
15:32:45.0480 3376 Parport - ok
15:32:45.0510 3376 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
15:32:45.0530 3376 partmgr - ok
15:32:45.0560 3376 [ 304E6AC43613A9C43896C4300009442B ] PCAMp50a64 C:\Windows\system32\Drivers\PCAMp50a64.sys
15:32:45.0570 3376 PCAMp50a64 - ok
15:32:45.0600 3376 [ 18B6869E23937175144E6F1D3CB85FC2 ] PCASp50a64 C:\Windows\system32\Drivers\PCASp50a64.sys
15:32:45.0620 3376 PCASp50a64 - ok
15:32:45.0630 3376 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
15:32:45.0660 3376 PcaSvc - ok
15:32:45.0670 3376 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
15:32:45.0680 3376 pci - ok
15:32:45.0700 3376 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
15:32:45.0700 3376 pciide - ok
15:32:45.0720 3376 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
15:32:45.0730 3376 pcmcia - ok
15:32:45.0750 3376 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
15:32:45.0750 3376 pcw - ok
15:32:45.0770 3376 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
15:32:45.0820 3376 PEAUTH - ok
15:32:45.0880 3376 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
15:32:45.0930 3376 PerfHost - ok
15:32:45.0970 3376 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
15:32:46.0010 3376 pla - ok
15:32:46.0050 3376 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
15:32:46.0100 3376 PlugPlay - ok
15:32:46.0100 3376 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
15:32:46.0140 3376 PNRPAutoReg - ok
15:32:46.0150 3376 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
15:32:46.0170 3376 PNRPsvc - ok
15:32:46.0190 3376 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
15:32:46.0220 3376 PolicyAgent - ok
15:32:46.0250 3376 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
15:32:46.0290 3376 Power - ok
15:32:46.0320 3376 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
15:32:46.0380 3376 PptpMiniport - ok
15:32:46.0400 3376 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\drivers\processr.sys
15:32:46.0410 3376 Processor - ok
15:32:46.0450 3376 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
15:32:46.0510 3376 ProfSvc - ok
15:32:46.0520 3376 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
15:32:46.0530 3376 ProtectedStorage - ok
15:32:46.0560 3376 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
15:32:46.0590 3376 Psched - ok
15:32:46.0630 3376 [ 87B04878A6D59D6C79251DC960C674C1 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
15:32:46.0650 3376 PxHlpa64 - ok
15:32:46.0720 3376 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
15:32:46.0760 3376 ql2300 - ok
15:32:46.0770 3376 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
15:32:46.0780 3376 ql40xx - ok
15:32:46.0800 3376 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
15:32:46.0820 3376 QWAVE - ok
15:32:46.0830 3376 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
15:32:46.0850 3376 QWAVEdrv - ok
15:32:46.0860 3376 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
15:32:46.0890 3376 RasAcd - ok
15:32:46.0910 3376 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
15:32:46.0960 3376 RasAgileVpn - ok
15:32:46.0970 3376 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
15:32:47.0040 3376 RasAuto - ok
15:32:47.0050 3376 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
15:32:47.0080 3376 Rasl2tp - ok
15:32:47.0100 3376 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
15:32:47.0130 3376 RasMan - ok
15:32:47.0140 3376 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
15:32:47.0180 3376 RasPppoe - ok
15:32:47.0190 3376 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
15:32:47.0230 3376 RasSstp - ok
15:32:47.0250 3376 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
15:32:47.0280 3376 rdbss - ok
15:32:47.0280 3376 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\drivers\rdpbus.sys
15:32:47.0320 3376 rdpbus - ok
15:32:47.0330 3376 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
15:32:47.0380 3376 RDPCDD - ok
15:32:47.0400 3376 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
15:32:47.0440 3376 RDPENCDD - ok
15:32:47.0450 3376 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
15:32:47.0480 3376 RDPREFMP - ok
15:32:47.0490 3376 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
15:32:47.0530 3376 RDPWD - ok
15:32:47.0540 3376 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
15:32:47.0550 3376 rdyboost - ok
15:32:47.0560 3376 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
15:32:47.0610 3376 RemoteAccess - ok
15:32:47.0620 3376 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
15:32:47.0660 3376 RemoteRegistry - ok
15:32:47.0730 3376 [ 3C957189B31C34D3AD21967B12B6AED7 ] RoxMediaDB12OEM C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe
15:32:47.0790 3376 RoxMediaDB12OEM - ok
15:32:47.0820 3376 [ 2B73088CC2CA757A172B425C9398E5BC ] RoxWatch12 C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe
15:32:47.0840 3376 RoxWatch12 - ok
15:32:47.0850 3376 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
15:32:47.0880 3376 RpcEptMapper - ok
15:32:47.0910 3376 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
15:32:47.0930 3376 RpcLocator - ok
15:32:47.0950 3376 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
15:32:47.0980 3376 RpcSs - ok
15:32:48.0000 3376 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
15:32:48.0030 3376 rspndr - ok
15:32:48.0060 3376 [ EE082E06A82FF630351D1E0EBBD3D8D0 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
15:32:48.0090 3376 RTL8167 - ok
15:32:48.0100 3376 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
15:32:48.0110 3376 SamSs - ok
pooptart1Greg1
Posts: 14 +0
15:32:48.0120 3376 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
15:32:48.0130 3376 sbp2port - ok
15:32:48.0140 3376 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
15:32:48.0180 3376 SCardSvr - ok
15:32:48.0190 3376 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
15:32:48.0240 3376 scfilter - ok
15:32:48.0270 3376 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
15:32:48.0320 3376 Schedule - ok
15:32:48.0350 3376 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
15:32:48.0370 3376 SCPolicySvc - ok
15:32:48.0380 3376 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
15:32:48.0430 3376 SDRSVC - ok
15:32:48.0440 3376 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
15:32:48.0510 3376 secdrv - ok
15:32:48.0520 3376 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
15:32:48.0550 3376 seclogon - ok
15:32:48.0570 3376 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
15:32:48.0590 3376 SENS - ok
15:32:48.0600 3376 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
15:32:48.0640 3376 SensrSvc - ok
15:32:48.0660 3376 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\drivers\serenum.sys
15:32:48.0680 3376 Serenum - ok
15:32:48.0710 3376 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\drivers\serial.sys
15:32:48.0740 3376 Serial - ok
15:32:48.0770 3376 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\drivers\sermouse.sys
15:32:48.0790 3376 sermouse - ok
15:32:48.0810 3376 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
15:32:48.0840 3376 SessionEnv - ok
15:32:48.0850 3376 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
15:32:48.0870 3376 sffdisk - ok
15:32:48.0870 3376 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
15:32:48.0890 3376 sffp_mmc - ok
15:32:48.0900 3376 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
15:32:48.0930 3376 sffp_sd - ok
15:32:48.0940 3376 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
15:32:48.0950 3376 sfloppy - ok
15:32:49.0030 3376 [ 6F36EE03AF65DE9AEB024809866D19B1 ] SftService C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
15:32:49.0110 3376 SftService - ok
15:32:49.0130 3376 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
15:32:49.0160 3376 SharedAccess - ok
15:32:49.0170 3376 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
15:32:49.0200 3376 ShellHWDetection - ok
15:32:49.0220 3376 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
15:32:49.0230 3376 SiSRaid2 - ok
15:32:49.0240 3376 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
15:32:49.0250 3376 SiSRaid4 - ok
15:32:49.0290 3376 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
15:32:49.0300 3376 SkypeUpdate - ok
15:32:49.0320 3376 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
15:32:49.0360 3376 Smb - ok
15:32:49.0380 3376 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
15:32:49.0410 3376 SNMPTRAP - ok
15:32:49.0420 3376 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
15:32:49.0430 3376 spldr - ok
15:32:49.0460 3376 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
15:32:49.0480 3376 Spooler - ok
15:32:49.0550 3376 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
15:32:49.0660 3376 sppsvc - ok
15:32:49.0670 3376 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
15:32:49.0710 3376 sppuinotify - ok
15:32:49.0780 3376 [ 891793E00432FA055CF040605C260E49 ] SRTSP C:\Windows\System32\Drivers\NAVx64\1309000.009\SRTSP64.SYS
15:32:49.0810 3376 SRTSP - ok
15:32:49.0830 3376 [ 1CB7BB3B0561FB5ECFE37F7731E8BF3E ] SRTSPX C:\Windows\system32\drivers\NAVx64\1309000.009\SRTSPX64.SYS
15:32:49.0850 3376 SRTSPX - ok
15:32:49.0880 3376 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
15:32:49.0950 3376 srv - ok
15:32:49.0960 3376 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
15:32:50.0000 3376 srv2 - ok
15:32:50.0010 3376 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
15:32:50.0030 3376 srvnet - ok
15:32:50.0040 3376 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
15:32:50.0080 3376 SSDPSRV - ok
15:32:50.0100 3376 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
15:32:50.0130 3376 SstpSvc - ok
15:32:50.0160 3376 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\drivers\stexstor.sys
15:32:50.0170 3376 stexstor - ok
15:32:50.0200 3376 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
15:32:50.0220 3376 stisvc - ok
15:32:50.0260 3376 [ 7731F46EC0D687A931CBA063E8F90EF0 ] stllssvr C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
15:32:50.0270 3376 stllssvr - ok
15:32:50.0300 3376 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
15:32:50.0310 3376 swenum - ok
15:32:50.0340 3376 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
15:32:50.0410 3376 swprv - ok
15:32:50.0450 3376 [ 8B2430762099598DA40686F754632EFD ] SymDS C:\Windows\system32\drivers\NAVx64\1309000.009\SYMDS64.SYS
15:32:50.0480 3376 SymDS - ok
15:32:50.0520 3376 [ 5CB7F2FD7E30A0F52F93574BFC3A8041 ] SymEFA C:\Windows\system32\drivers\NAVx64\1309000.009\SYMEFA64.SYS
15:32:50.0560 3376 SymEFA - ok
15:32:50.0581 3376 [ 894579207E39C465737E850A252CE4F2 ] SymEvent C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
15:32:50.0601 3376 SymEvent - ok
15:32:50.0631 3376 [ 5013A76CAAA1D7CF1C55214B490B4E35 ] SymIRON C:\Windows\system32\drivers\NAVx64\1309000.009\Ironx64.SYS
15:32:50.0651 3376 SymIRON - ok
15:32:50.0681 3376 [ 3911BD0E68C010E5438A87706ABBE9AB ] SymNetS C:\Windows\System32\Drivers\NAVx64\1309000.009\SYMNETS.SYS
15:32:50.0711 3376 SymNetS - ok
15:32:50.0741 3376 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
15:32:50.0801 3376 SysMain - ok
15:32:50.0871 3376 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
15:32:50.0941 3376 TabletInputService - ok
15:32:51.0001 3376 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
15:32:51.0061 3376 TapiSrv - ok
15:32:51.0081 3376 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
15:32:51.0101 3376 TBS - ok
15:32:51.0141 3376 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] Tcpip C:\Windows\system32\drivers\tcpip.sys
15:32:51.0191 3376 Tcpip - ok
15:32:51.0221 3376 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
15:32:51.0251 3376 TCPIP6 - ok
15:32:51.0271 3376 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
15:32:51.0291 3376 tcpipreg - ok
15:32:51.0301 3376 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
15:32:51.0341 3376 TDPIPE - ok
15:32:51.0371 3376 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
15:32:51.0421 3376 TDTCP - ok
15:32:51.0441 3376 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
15:32:51.0491 3376 tdx - ok
15:32:51.0501 3376 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
15:32:51.0511 3376 TermDD - ok
15:32:51.0531 3376 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
15:32:51.0581 3376 TermService - ok
15:32:51.0591 3376 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
15:32:51.0621 3376 Themes - ok
15:32:51.0631 3376 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
15:32:51.0661 3376 THREADORDER - ok
15:32:51.0671 3376 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
15:32:51.0701 3376 TrkWks - ok
15:32:51.0751 3376 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
15:32:51.0791 3376 TrustedInstaller - ok
15:32:51.0791 3376 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
15:32:51.0831 3376 tssecsrv - ok
15:32:51.0851 3376 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
15:32:51.0881 3376 TsUsbFlt - ok
15:32:51.0901 3376 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
15:32:51.0911 3376 TsUsbGD - ok
15:32:51.0951 3376 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
15:32:51.0991 3376 tunnel - ok
15:32:52.0011 3376 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
15:32:52.0021 3376 uagp35 - ok
15:32:52.0031 3376 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
15:32:52.0071 3376 udfs - ok
15:32:52.0091 3376 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
15:32:52.0111 3376 UI0Detect - ok
15:32:52.0121 3376 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
15:32:52.0151 3376 uliagpkx - ok
15:32:52.0171 3376 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
15:32:52.0191 3376 umbus - ok
15:32:52.0201 3376 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\drivers\umpass.sys
15:32:52.0231 3376 UmPass - ok
15:32:52.0251 3376 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
15:32:52.0291 3376 upnphost - ok
15:32:52.0311 3376 [ AA33FC47ED58C34E6E9261E4F850B7EB ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
15:32:52.0371 3376 USBAAPL64 - ok
15:32:52.0391 3376 [ 19AD7990C0B67E48DAC5B26F99628223 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
15:32:52.0441 3376 usbccgp - ok
15:32:52.0461 3376 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
15:32:52.0491 3376 usbcir - ok
15:32:52.0511 3376 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys
15:32:52.0541 3376 usbehci - ok
15:32:52.0571 3376 [ 8B892002D7B79312821169A14317AB86 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
15:32:52.0601 3376 usbhub - ok
15:32:52.0611 3376 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
15:32:52.0641 3376 usbohci - ok
15:32:52.0651 3376 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
15:32:52.0671 3376 usbprint - ok
15:32:52.0701 3376 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
15:32:52.0721 3376 usbscan - ok
15:32:52.0731 3376 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
15:32:52.0781 3376 USBSTOR - ok
15:32:52.0791 3376 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
15:32:52.0811 3376 usbuhci - ok
15:32:52.0831 3376 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
15:32:52.0851 3376 UxSms - ok
15:32:52.0871 3376 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
15:32:52.0881 3376 VaultSvc - ok
15:32:52.0881 3376 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
15:32:52.0901 3376 vdrvroot - ok
15:32:52.0931 3376 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
15:32:52.0971 3376 vds - ok
15:32:53.0001 3376 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
15:32:53.0011 3376 vga - ok
15:32:53.0021 3376 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
15:32:53.0051 3376 VgaSave - ok
15:32:53.0071 3376 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
15:32:53.0081 3376 vhdmp - ok
15:32:53.0091 3376 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
15:32:53.0111 3376 viaide - ok
15:32:53.0141 3376 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
15:32:53.0157 3376 volmgr - ok
15:32:53.0188 3376 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
15:32:53.0203 3376 volmgrx - ok
15:32:53.0219 3376 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
15:32:53.0219 3376 volsnap - ok
15:32:53.0250 3376 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
15:32:53.0266 3376 vsmraid - ok
15:32:53.0297 3376 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
15:32:53.0388 3376 VSS - ok
15:32:53.0398 3376 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
15:32:53.0438 3376 vwifibus - ok
15:32:53.0458 3376 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
15:32:53.0488 3376 vwififlt - ok
15:32:53.0508 3376 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
15:32:53.0538 3376 W32Time - ok
15:32:53.0558 3376 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\drivers\wacompen.sys
15:32:53.0568 3376 WacomPen - ok
15:32:53.0598 3376 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
15:32:53.0658 3376 WANARP - ok
15:32:53.0668 3376 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
15:32:53.0688 3376 Wanarpv6 - ok
15:32:53.0758 3376 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
15:32:53.0818 3376 WatAdminSvc - ok
15:32:53.0858 3376 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
15:32:53.0918 3376 wbengine - ok
15:32:53.0938 3376 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
15:32:53.0958 3376 WbioSrvc - ok
15:32:53.0978 3376 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
15:32:54.0008 3376 wcncsvc - ok
15:32:54.0028 3376 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
15:32:54.0048 3376 WcsPlugInService - ok
15:32:54.0078 3376 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\drivers\wd.sys
15:32:54.0098 3376 Wd - ok
15:32:54.0118 3376 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
15:32:54.0138 3376 Wdf01000 - ok
15:32:54.0158 3376 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
15:32:54.0218 3376 WdiServiceHost - ok
15:32:54.0218 3376 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
15:32:54.0238 3376 WdiSystemHost - ok
15:32:54.0258 3376 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
15:32:54.0278 3376 WebClient - ok
15:32:54.0288 3376 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
15:32:54.0328 3376 Wecsvc - ok
15:32:54.0348 3376 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
15:32:54.0368 3376 wercplsupport - ok
15:32:54.0388 3376 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
15:32:54.0448 3376 WerSvc - ok
15:32:54.0458 3376 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
15:32:54.0478 3376 WfpLwf - ok
15:32:54.0518 3376 [ B14EF15BD757FA488F9C970EEE9C0D35 ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys
15:32:54.0548 3376 WimFltr - ok
15:32:54.0568 3376 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
15:32:54.0578 3376 WIMMount - ok
15:32:54.0588 3376 WinDefend - ok
15:32:54.0588 3376 WinHttpAutoProxySvc - ok
15:32:54.0628 3376 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
15:32:54.0668 3376 Winmgmt - ok
15:32:54.0698 3376 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
15:32:54.0778 3376 WinRM - ok
15:32:54.0828 3376 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
15:32:54.0858 3376 WinUsb - ok
15:32:54.0898 3376 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
15:32:54.0948 3376 Wlansvc - ok
15:32:55.0018 3376 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
15:32:55.0028 3376 wlcrasvc - ok
15:32:55.0098 3376 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
15:32:55.0158 3376 wlidsvc - ok
15:32:55.0178 3376 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
15:32:55.0198 3376 WmiAcpi - ok
15:32:55.0218 3376 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
15:32:55.0258 3376 wmiApSrv - ok
15:32:55.0288 3376 WMPNetworkSvc - ok
15:32:55.0338 3376 [ B972C12DE88299E78F6656A31046DD99 ] WNA1000 C:\Windows\system32\DRIVERS\WNA1000w7x.sys
15:32:55.0369 3376 WNA1000 - ok
15:32:55.0385 3376 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
15:32:55.0432 3376 WPCSvc - ok
15:32:55.0432 3376 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
15:32:55.0463 3376 WPDBusEnum - ok
15:32:55.0494 3376 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
15:32:55.0510 3376 ws2ifsl - ok
15:32:55.0525 3376 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
15:32:55.0557 3376 wscsvc - ok
15:32:55.0557 3376 WSearch - ok
15:32:55.0603 3376 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
15:32:55.0666 3376 wuauserv - ok
15:32:55.0666 3376 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
15:32:55.0713 3376 WudfPf - ok
15:32:55.0728 3376 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
15:32:55.0759 3376 WUDFRd - ok
15:32:55.0775 3376 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
15:32:55.0791 3376 wudfsvc - ok
15:32:55.0822 3376 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
15:32:55.0869 3376 WwanSvc - ok
15:32:55.0884 3376 ================ Scan global ===============================
15:32:55.0900 3376 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
15:32:55.0931 3376 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
15:32:55.0962 3376 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
15:32:55.0993 3376 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
15:32:56.0009 3376 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
15:32:56.0025 3376 [Global] - ok
15:32:56.0025 3376 ================ Scan MBR ==================================
15:32:56.0040 3376 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
15:32:56.0307 3376 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
15:32:56.0307 3376 \Device\Harddisk0\DR0 - detected TDSS File System (1)
15:32:56.0307 3376 ================ Scan VBR ==================================
15:32:56.0307 3376 [ D2AA0E8BE6E8ABF7B434352B944A29F0 ] \Device\Harddisk0\DR0\Partition1
15:32:56.0307 3376 \Device\Harddisk0\DR0\Partition1 - ok
15:32:56.0337 3376 [ 7B7919CFC3D71F2C848D0B7B0CEFA671 ] \Device\Harddisk0\DR0\Partition2
15:32:56.0337 3376 \Device\Harddisk0\DR0\Partition2 - ok
15:32:56.0337 3376 ============================================================
15:32:56.0337 3376 Scan finished
15:32:56.0337 3376 ============================================================
15:32:56.0347 2812 Detected object count: 3
15:32:56.0347 2812 Actual detected object count: 3
15:34:38.0983 2812 jswpsapi ( UnsignedFile.Multi.Generic ) - skipped by user
15:34:38.0983 2812 jswpsapi ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:34:38.0983 2812 MDM ( UnsignedFile.Multi.Generic ) - skipped by user
15:34:38.0983 2812 MDM ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:34:38.0983 2812 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
15:34:38.0983 2812 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip
15:32:48.0130 3376 sbp2port - ok
15:32:48.0140 3376 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
15:32:48.0180 3376 SCardSvr - ok
15:32:48.0190 3376 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
15:32:48.0240 3376 scfilter - ok
15:32:48.0270 3376 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
15:32:48.0320 3376 Schedule - ok
15:32:48.0350 3376 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
15:32:48.0370 3376 SCPolicySvc - ok
15:32:48.0380 3376 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
15:32:48.0430 3376 SDRSVC - ok
15:32:48.0440 3376 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
15:32:48.0510 3376 secdrv - ok
15:32:48.0520 3376 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
15:32:48.0550 3376 seclogon - ok
15:32:48.0570 3376 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
15:32:48.0590 3376 SENS - ok
15:32:48.0600 3376 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
15:32:48.0640 3376 SensrSvc - ok
15:32:48.0660 3376 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\drivers\serenum.sys
15:32:48.0680 3376 Serenum - ok
15:32:48.0710 3376 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\drivers\serial.sys
15:32:48.0740 3376 Serial - ok
15:32:48.0770 3376 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\drivers\sermouse.sys
15:32:48.0790 3376 sermouse - ok
15:32:48.0810 3376 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
15:32:48.0840 3376 SessionEnv - ok
15:32:48.0850 3376 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
15:32:48.0870 3376 sffdisk - ok
15:32:48.0870 3376 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
15:32:48.0890 3376 sffp_mmc - ok
15:32:48.0900 3376 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
15:32:48.0930 3376 sffp_sd - ok
15:32:48.0940 3376 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
15:32:48.0950 3376 sfloppy - ok
15:32:49.0030 3376 [ 6F36EE03AF65DE9AEB024809866D19B1 ] SftService C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
15:32:49.0110 3376 SftService - ok
15:32:49.0130 3376 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
15:32:49.0160 3376 SharedAccess - ok
15:32:49.0170 3376 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
15:32:49.0200 3376 ShellHWDetection - ok
15:32:49.0220 3376 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
15:32:49.0230 3376 SiSRaid2 - ok
15:32:49.0240 3376 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
15:32:49.0250 3376 SiSRaid4 - ok
15:32:49.0290 3376 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
15:32:49.0300 3376 SkypeUpdate - ok
15:32:49.0320 3376 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
15:32:49.0360 3376 Smb - ok
15:32:49.0380 3376 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
15:32:49.0410 3376 SNMPTRAP - ok
15:32:49.0420 3376 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
15:32:49.0430 3376 spldr - ok
15:32:49.0460 3376 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
15:32:49.0480 3376 Spooler - ok
15:32:49.0550 3376 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
15:32:49.0660 3376 sppsvc - ok
15:32:49.0670 3376 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
15:32:49.0710 3376 sppuinotify - ok
15:32:49.0780 3376 [ 891793E00432FA055CF040605C260E49 ] SRTSP C:\Windows\System32\Drivers\NAVx64\1309000.009\SRTSP64.SYS
15:32:49.0810 3376 SRTSP - ok
15:32:49.0830 3376 [ 1CB7BB3B0561FB5ECFE37F7731E8BF3E ] SRTSPX C:\Windows\system32\drivers\NAVx64\1309000.009\SRTSPX64.SYS
15:32:49.0850 3376 SRTSPX - ok
15:32:49.0880 3376 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
15:32:49.0950 3376 srv - ok
15:32:49.0960 3376 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
15:32:50.0000 3376 srv2 - ok
15:32:50.0010 3376 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
15:32:50.0030 3376 srvnet - ok
15:32:50.0040 3376 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
15:32:50.0080 3376 SSDPSRV - ok
15:32:50.0100 3376 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
15:32:50.0130 3376 SstpSvc - ok
15:32:50.0160 3376 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\drivers\stexstor.sys
15:32:50.0170 3376 stexstor - ok
15:32:50.0200 3376 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
15:32:50.0220 3376 stisvc - ok
15:32:50.0260 3376 [ 7731F46EC0D687A931CBA063E8F90EF0 ] stllssvr C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
15:32:50.0270 3376 stllssvr - ok
15:32:50.0300 3376 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
15:32:50.0310 3376 swenum - ok
15:32:50.0340 3376 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
15:32:50.0410 3376 swprv - ok
15:32:50.0450 3376 [ 8B2430762099598DA40686F754632EFD ] SymDS C:\Windows\system32\drivers\NAVx64\1309000.009\SYMDS64.SYS
15:32:50.0480 3376 SymDS - ok
15:32:50.0520 3376 [ 5CB7F2FD7E30A0F52F93574BFC3A8041 ] SymEFA C:\Windows\system32\drivers\NAVx64\1309000.009\SYMEFA64.SYS
15:32:50.0560 3376 SymEFA - ok
15:32:50.0581 3376 [ 894579207E39C465737E850A252CE4F2 ] SymEvent C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
15:32:50.0601 3376 SymEvent - ok
15:32:50.0631 3376 [ 5013A76CAAA1D7CF1C55214B490B4E35 ] SymIRON C:\Windows\system32\drivers\NAVx64\1309000.009\Ironx64.SYS
15:32:50.0651 3376 SymIRON - ok
15:32:50.0681 3376 [ 3911BD0E68C010E5438A87706ABBE9AB ] SymNetS C:\Windows\System32\Drivers\NAVx64\1309000.009\SYMNETS.SYS
15:32:50.0711 3376 SymNetS - ok
15:32:50.0741 3376 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
15:32:50.0801 3376 SysMain - ok
15:32:50.0871 3376 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
15:32:50.0941 3376 TabletInputService - ok
15:32:51.0001 3376 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
15:32:51.0061 3376 TapiSrv - ok
15:32:51.0081 3376 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
15:32:51.0101 3376 TBS - ok
15:32:51.0141 3376 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] Tcpip C:\Windows\system32\drivers\tcpip.sys
15:32:51.0191 3376 Tcpip - ok
15:32:51.0221 3376 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
15:32:51.0251 3376 TCPIP6 - ok
15:32:51.0271 3376 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
15:32:51.0291 3376 tcpipreg - ok
15:32:51.0301 3376 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
15:32:51.0341 3376 TDPIPE - ok
15:32:51.0371 3376 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
15:32:51.0421 3376 TDTCP - ok
15:32:51.0441 3376 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
15:32:51.0491 3376 tdx - ok
15:32:51.0501 3376 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
15:32:51.0511 3376 TermDD - ok
15:32:51.0531 3376 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
15:32:51.0581 3376 TermService - ok
15:32:51.0591 3376 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
15:32:51.0621 3376 Themes - ok
15:32:51.0631 3376 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
15:32:51.0661 3376 THREADORDER - ok
15:32:51.0671 3376 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
15:32:51.0701 3376 TrkWks - ok
15:32:51.0751 3376 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
15:32:51.0791 3376 TrustedInstaller - ok
15:32:51.0791 3376 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
15:32:51.0831 3376 tssecsrv - ok
15:32:51.0851 3376 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
15:32:51.0881 3376 TsUsbFlt - ok
15:32:51.0901 3376 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
15:32:51.0911 3376 TsUsbGD - ok
15:32:51.0951 3376 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
15:32:51.0991 3376 tunnel - ok
15:32:52.0011 3376 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
15:32:52.0021 3376 uagp35 - ok
15:32:52.0031 3376 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
15:32:52.0071 3376 udfs - ok
15:32:52.0091 3376 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
15:32:52.0111 3376 UI0Detect - ok
15:32:52.0121 3376 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
15:32:52.0151 3376 uliagpkx - ok
15:32:52.0171 3376 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
15:32:52.0191 3376 umbus - ok
15:32:52.0201 3376 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\drivers\umpass.sys
15:32:52.0231 3376 UmPass - ok
15:32:52.0251 3376 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
15:32:52.0291 3376 upnphost - ok
15:32:52.0311 3376 [ AA33FC47ED58C34E6E9261E4F850B7EB ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
15:32:52.0371 3376 USBAAPL64 - ok
15:32:52.0391 3376 [ 19AD7990C0B67E48DAC5B26F99628223 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
15:32:52.0441 3376 usbccgp - ok
15:32:52.0461 3376 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
15:32:52.0491 3376 usbcir - ok
15:32:52.0511 3376 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys
15:32:52.0541 3376 usbehci - ok
15:32:52.0571 3376 [ 8B892002D7B79312821169A14317AB86 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
15:32:52.0601 3376 usbhub - ok
15:32:52.0611 3376 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
15:32:52.0641 3376 usbohci - ok
15:32:52.0651 3376 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
15:32:52.0671 3376 usbprint - ok
15:32:52.0701 3376 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
15:32:52.0721 3376 usbscan - ok
15:32:52.0731 3376 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
15:32:52.0781 3376 USBSTOR - ok
15:32:52.0791 3376 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
15:32:52.0811 3376 usbuhci - ok
15:32:52.0831 3376 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
15:32:52.0851 3376 UxSms - ok
15:32:52.0871 3376 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
15:32:52.0881 3376 VaultSvc - ok
15:32:52.0881 3376 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
15:32:52.0901 3376 vdrvroot - ok
15:32:52.0931 3376 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
15:32:52.0971 3376 vds - ok
15:32:53.0001 3376 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
15:32:53.0011 3376 vga - ok
15:32:53.0021 3376 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
15:32:53.0051 3376 VgaSave - ok
15:32:53.0071 3376 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
15:32:53.0081 3376 vhdmp - ok
15:32:53.0091 3376 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
15:32:53.0111 3376 viaide - ok
15:32:53.0141 3376 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
15:32:53.0157 3376 volmgr - ok
15:32:53.0188 3376 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
15:32:53.0203 3376 volmgrx - ok
15:32:53.0219 3376 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
15:32:53.0219 3376 volsnap - ok
15:32:53.0250 3376 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
15:32:53.0266 3376 vsmraid - ok
15:32:53.0297 3376 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
15:32:53.0388 3376 VSS - ok
15:32:53.0398 3376 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
15:32:53.0438 3376 vwifibus - ok
15:32:53.0458 3376 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
15:32:53.0488 3376 vwififlt - ok
15:32:53.0508 3376 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
15:32:53.0538 3376 W32Time - ok
15:32:53.0558 3376 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\drivers\wacompen.sys
15:32:53.0568 3376 WacomPen - ok
15:32:53.0598 3376 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
15:32:53.0658 3376 WANARP - ok
15:32:53.0668 3376 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
15:32:53.0688 3376 Wanarpv6 - ok
15:32:53.0758 3376 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
15:32:53.0818 3376 WatAdminSvc - ok
15:32:53.0858 3376 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
15:32:53.0918 3376 wbengine - ok
15:32:53.0938 3376 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
15:32:53.0958 3376 WbioSrvc - ok
15:32:53.0978 3376 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
15:32:54.0008 3376 wcncsvc - ok
15:32:54.0028 3376 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
15:32:54.0048 3376 WcsPlugInService - ok
15:32:54.0078 3376 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\drivers\wd.sys
15:32:54.0098 3376 Wd - ok
15:32:54.0118 3376 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
15:32:54.0138 3376 Wdf01000 - ok
15:32:54.0158 3376 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
15:32:54.0218 3376 WdiServiceHost - ok
15:32:54.0218 3376 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
15:32:54.0238 3376 WdiSystemHost - ok
15:32:54.0258 3376 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
15:32:54.0278 3376 WebClient - ok
15:32:54.0288 3376 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
15:32:54.0328 3376 Wecsvc - ok
15:32:54.0348 3376 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
15:32:54.0368 3376 wercplsupport - ok
15:32:54.0388 3376 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
15:32:54.0448 3376 WerSvc - ok
15:32:54.0458 3376 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
15:32:54.0478 3376 WfpLwf - ok
15:32:54.0518 3376 [ B14EF15BD757FA488F9C970EEE9C0D35 ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys
15:32:54.0548 3376 WimFltr - ok
15:32:54.0568 3376 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
15:32:54.0578 3376 WIMMount - ok
15:32:54.0588 3376 WinDefend - ok
15:32:54.0588 3376 WinHttpAutoProxySvc - ok
15:32:54.0628 3376 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
15:32:54.0668 3376 Winmgmt - ok
15:32:54.0698 3376 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
15:32:54.0778 3376 WinRM - ok
15:32:54.0828 3376 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
15:32:54.0858 3376 WinUsb - ok
15:32:54.0898 3376 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
15:32:54.0948 3376 Wlansvc - ok
15:32:55.0018 3376 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
15:32:55.0028 3376 wlcrasvc - ok
15:32:55.0098 3376 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
15:32:55.0158 3376 wlidsvc - ok
15:32:55.0178 3376 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
15:32:55.0198 3376 WmiAcpi - ok
15:32:55.0218 3376 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
15:32:55.0258 3376 wmiApSrv - ok
15:32:55.0288 3376 WMPNetworkSvc - ok
15:32:55.0338 3376 [ B972C12DE88299E78F6656A31046DD99 ] WNA1000 C:\Windows\system32\DRIVERS\WNA1000w7x.sys
15:32:55.0369 3376 WNA1000 - ok
15:32:55.0385 3376 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
15:32:55.0432 3376 WPCSvc - ok
15:32:55.0432 3376 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
15:32:55.0463 3376 WPDBusEnum - ok
15:32:55.0494 3376 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
15:32:55.0510 3376 ws2ifsl - ok
15:32:55.0525 3376 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
15:32:55.0557 3376 wscsvc - ok
15:32:55.0557 3376 WSearch - ok
15:32:55.0603 3376 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
15:32:55.0666 3376 wuauserv - ok
15:32:55.0666 3376 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
15:32:55.0713 3376 WudfPf - ok
15:32:55.0728 3376 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
15:32:55.0759 3376 WUDFRd - ok
15:32:55.0775 3376 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
15:32:55.0791 3376 wudfsvc - ok
15:32:55.0822 3376 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
15:32:55.0869 3376 WwanSvc - ok
15:32:55.0884 3376 ================ Scan global ===============================
15:32:55.0900 3376 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
15:32:55.0931 3376 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
15:32:55.0962 3376 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
15:32:55.0993 3376 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
15:32:56.0009 3376 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
15:32:56.0025 3376 [Global] - ok
15:32:56.0025 3376 ================ Scan MBR ==================================
15:32:56.0040 3376 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
15:32:56.0307 3376 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
15:32:56.0307 3376 \Device\Harddisk0\DR0 - detected TDSS File System (1)
15:32:56.0307 3376 ================ Scan VBR ==================================
15:32:56.0307 3376 [ D2AA0E8BE6E8ABF7B434352B944A29F0 ] \Device\Harddisk0\DR0\Partition1
15:32:56.0307 3376 \Device\Harddisk0\DR0\Partition1 - ok
15:32:56.0337 3376 [ 7B7919CFC3D71F2C848D0B7B0CEFA671 ] \Device\Harddisk0\DR0\Partition2
15:32:56.0337 3376 \Device\Harddisk0\DR0\Partition2 - ok
15:32:56.0337 3376 ============================================================
15:32:56.0337 3376 Scan finished
15:32:56.0337 3376 ============================================================
15:32:56.0347 2812 Detected object count: 3
15:32:56.0347 2812 Actual detected object count: 3
15:34:38.0983 2812 jswpsapi ( UnsignedFile.Multi.Generic ) - skipped by user
15:34:38.0983 2812 jswpsapi ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:34:38.0983 2812 MDM ( UnsignedFile.Multi.Generic ) - skipped by user
15:34:38.0983 2812 MDM ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:34:38.0983 2812 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
15:34:38.0983 2812 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip
pooptart1Greg1
Posts: 14 +0
aswMBR version 0.9.9.1665 Copyright(c) 2011 AVAST Software
Run date: 2012-10-31 15:45:21
-----------------------------
15:45:21.758 OS Version: Windows x64 6.1.7601 Service Pack 1
15:45:21.758 Number of processors: 4 586 0x2A07
15:45:21.774 ComputerName: GREG-PC UserName: Greg
15:45:24.847 Initialize success
15:52:08.536 AVAST engine defs: 12103100
15:59:21.598 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
15:59:21.598 Disk 0 Vendor: WDC_WD10EALX-759BA1 17.01H17 Size: 953869MB BusType: 3
15:59:21.614 Disk 0 MBR read successfully
15:59:21.614 Disk 0 MBR scan
15:59:21.614 Disk 0 Windows 7 default MBR code
15:59:21.614 Disk 0 Partition 1 00 DE Dell Utility DELL 4.1 39 MB offset 63
15:59:21.629 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 15166 MB offset 81920
15:59:21.645 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 938662 MB offset 31141888
15:59:21.661 Disk 0 scanning C:\Windows\system32\drivers
15:59:27.309 Service scanning
15:59:40.506 Modules scanning
15:59:43.236 AVAST engine scan C:\Windows
15:59:47.121 AVAST engine scan C:\Windows\system32
16:01:55.846 AVAST engine scan C:\Windows\system32\drivers
16:02:07.540 AVAST engine scan C:\Users\Greg
16:03:20.542 Disk 0 MBR has been saved successfully to "C:\Users\Greg\Desktop\MBR.dat"
16:03:20.542 The log file has been saved successfully to "C:\Users\Greg\Desktop\aswMBR.txt"
Run date: 2012-10-31 15:45:21
-----------------------------
15:45:21.758 OS Version: Windows x64 6.1.7601 Service Pack 1
15:45:21.758 Number of processors: 4 586 0x2A07
15:45:21.774 ComputerName: GREG-PC UserName: Greg
15:45:24.847 Initialize success
15:52:08.536 AVAST engine defs: 12103100
15:59:21.598 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
15:59:21.598 Disk 0 Vendor: WDC_WD10EALX-759BA1 17.01H17 Size: 953869MB BusType: 3
15:59:21.614 Disk 0 MBR read successfully
15:59:21.614 Disk 0 MBR scan
15:59:21.614 Disk 0 Windows 7 default MBR code
15:59:21.614 Disk 0 Partition 1 00 DE Dell Utility DELL 4.1 39 MB offset 63
15:59:21.629 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 15166 MB offset 81920
15:59:21.645 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 938662 MB offset 31141888
15:59:21.661 Disk 0 scanning C:\Windows\system32\drivers
15:59:27.309 Service scanning
15:59:40.506 Modules scanning
15:59:43.236 AVAST engine scan C:\Windows
15:59:47.121 AVAST engine scan C:\Windows\system32
16:01:55.846 AVAST engine scan C:\Windows\system32\drivers
16:02:07.540 AVAST engine scan C:\Users\Greg
16:03:20.542 Disk 0 MBR has been saved successfully to "C:\Users\Greg\Desktop\MBR.dat"
16:03:20.542 The log file has been saved successfully to "C:\Users\Greg\Desktop\aswMBR.txt"
pooptart1Greg1
Posts: 14 +0
The MBRScan
Jay Pfoutz
Posts: 4,279 +49
Great. (y)
ESET Online Scan
Please run a free online scan with the ESET Online Scanner
Any more issues?
We need to know any other issues that are plaguing your computer. Kindly give a summary so we know how to continue from here.
Many of the things to note for us would be:
ESET Online Scan
Please run a free online scan with the ESET Online Scanner
- Tick the box next to YES, I accept the Terms of Use
- Click Start
- When asked, allow the ActiveX control to install, or it will ask to download an installer. Please do so an install it.
- Click Start or wait for the scanner to load.
- Make sure that the options Remove found threats and the option Scan unwanted applications are checked.
- Click Scan (This scan can take several hours, so please be patient)
- Once the scan is completed, there are a couple of things to keep in mind:
- 1. If NO threats were found, allow the scanner to Uninstall on close and then close the Window.
- 2. If threats WERE detected, click on List of Threats Found, Export to Text File...save it as ESET-Scan-Log.txt. Click the back button/link, put a checkmark to Uninstall Application on Close and then close the window.
- Open the logfile from wherever you saved it
- Copy and paste the contents in your next reply.
Any more issues?
We need to know any other issues that are plaguing your computer. Kindly give a summary so we know how to continue from here.
Many of the things to note for us would be:
- Slow computer
- Error messages
- Fake antivirus alerts or the icon in the system tray
- svchost.exe running at 100%
- System crashes or blue screen of death
pooptart1Greg1
Posts: 14 +0
C:\TDSSKiller_Quarantine\30.10.2012_20.55.47\mbr0000\tdlfs0000\tsk0001.dta a variant of Win64/Olmarik.AM trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\30.10.2012_20.55.47\mbr0000\tdlfs0000\tsk0002.dta a variant of Win32/Rootkit.Kryptik.PR trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\30.10.2012_20.55.47\mbr0000\tdlfs0000\tsk0003.dta Win64/Olmarik.AN trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\30.10.2012_20.55.47\mbr0000\tdlfs0000\tsk0007.dta Win32/Olmarik.AFK trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\30.10.2012_20.55.47\mbr0000\tdlfs0000\tsk0002.dta a variant of Win32/Rootkit.Kryptik.PR trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\30.10.2012_20.55.47\mbr0000\tdlfs0000\tsk0003.dta Win64/Olmarik.AN trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\30.10.2012_20.55.47\mbr0000\tdlfs0000\tsk0007.dta Win32/Olmarik.AFK trojan cleaned by deleting - quarantined
Jay Pfoutz
Posts: 4,279 +49
Please answer this to best of your ability.
pooptart1Greg1
Posts: 14 +0
As you can see MALWAREBYTES is still finding 1 Trojan on the SCVHOST. My computer is running much better than before, but I want that Trojan removed!
Malwarebytes Anti-Malware 1.65.1.1000
www.malwarebytes.org
Database version: v2012.10.30.08
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Greg :: GREG-PC [administrator]
11/2/2012 4:15:24 PM
mbam-log-2012-11-02 (16-39-20).txt
Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 203503
Time elapsed: 3 minute(s), 26 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 1
C:\WINDOWS\svchost.exe (Trojan.Agent) -> No action taken.
(end)
Malwarebytes Anti-Malware 1.65.1.1000
www.malwarebytes.org
Database version: v2012.10.30.08
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Greg :: GREG-PC [administrator]
11/2/2012 4:15:24 PM
mbam-log-2012-11-02 (16-39-20).txt
Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 203503
Time elapsed: 3 minute(s), 26 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 1
C:\WINDOWS\svchost.exe (Trojan.Agent) -> No action taken.
(end)
Jay Pfoutz
Posts: 4,279 +49
Download new TDSSKiller and run it: http://support.kaspersky.com/downloads/utils/tdsskiller.exe
Post a log once done, please.
Post a log once done, please.
Jay Pfoutz
Posts: 4,279 +49
Hello! Are you still with us? Your topic is now marked inactive, because you have lacked to reply.
However, we'd like to still help. Please update us on the state of your PC.
However, we'd like to still help. Please update us on the state of your PC.
