Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Google Redirect/ Happili


  • Please log in to reply
5 replies to this topic

#1 mentzerm

mentzerm

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:06:23 PM

Posted 23 April 2012 - 07:21 PM

Approximately three days ago, my google searches on both Chrome and IE interminently redirect searches to happili.com My Norton 360 does not seem to detect any virus. Can anyone help?

Thanks so much.

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:23 PM

Posted 23 April 2012 - 08:59 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)


Please download GMER from here(doesnot work on 64 bit OS)

http://www2.gmer.net/download.php

Temporarily disable any real-time active protection so your security programs will not conflict with gmer's driver.

GMER will open to the Rootkit/Malware tab and perform an automatic Full Scan when first run. (do not use the computer while the scan is in progress)

If you receive a WARNING!!! about rootkit activity and are asked to fully scan your system...click NO.
Now click the Scan button. If you see a rootkit warning window, click OK.
When the scan is finished, click the Save... button to save the scan results to your Desktop. Save the file as gmer.log.
Click the Copy button and paste the results into your next reply.


Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

#3 mentzerm

mentzerm
  • Topic Starter

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:06:23 PM

Posted 23 April 2012 - 09:17 PM

Thank you so much for your assistance. You guys do an awesome job!

TDSS Log:


21:03:26.0619 5200 TDSS rootkit removing tool 2.7.32.0 Apr 23 2012 19:12:34
21:03:27.0219 5200 ============================================================
21:03:27.0219 5200 Current date / time: 2012/04/23 21:03:27.0219
21:03:27.0219 5200 SystemInfo:
21:03:27.0219 5200
21:03:27.0219 5200 OS Version: 6.1.7601 ServicePack: 1.0
21:03:27.0219 5200 Product type: Workstation
21:03:27.0219 5200 ComputerName: MAIN
21:03:27.0219 5200 UserName: Matt Mentzer
21:03:27.0219 5200 Windows directory: C:\Windows
21:03:27.0219 5200 System windows directory: C:\Windows
21:03:27.0219 5200 Running under WOW64
21:03:27.0219 5200 Processor architecture: Intel x64
21:03:27.0219 5200 Number of processors: 8
21:03:27.0219 5200 Page size: 0x1000
21:03:27.0219 5200 Boot type: Normal boot
21:03:27.0219 5200 ============================================================
21:03:28.0703 5200 Drive \Device\Harddisk0\DR0 - Size: 0xAEA8CDE000 (698.64 Gb), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
21:03:28.0717 5200 ============================================================
21:03:28.0717 5200 \Device\Harddisk0\DR0:
21:03:28.0717 5200 MBR partitions:
21:03:28.0717 5200 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x23800, BlocksNum 0x1E00000
21:03:28.0717 5200 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1E23800, BlocksNum 0x55722000
21:03:28.0717 5200 ============================================================
21:03:28.0754 5200 C: <-> \Device\Harddisk0\DR0\Partition1
21:03:28.0776 5200 D: <-> \Device\Harddisk0\DR0\Partition0
21:03:28.0777 5200 ============================================================
21:03:28.0777 5200 Initialize success
21:03:28.0777 5200 ============================================================
21:03:31.0477 6020 ============================================================
21:03:31.0477 6020 Scan started
21:03:31.0477 6020 Mode: Manual;
21:03:31.0477 6020 ============================================================
21:03:32.0645 6020 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
21:03:32.0645 6020 1394ohci - ok
21:03:32.0705 6020 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
21:03:32.0705 6020 ACPI - ok
21:03:32.0725 6020 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
21:03:32.0725 6020 AcpiPmi - ok
21:03:32.0878 6020 AdobeFlashPlayerUpdateSvc (459ac130c6ab892b1cd5d7544626efc5) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
21:03:32.0880 6020 AdobeFlashPlayerUpdateSvc - ok
21:03:32.0946 6020 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
21:03:32.0949 6020 adp94xx - ok
21:03:32.0977 6020 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
21:03:32.0979 6020 adpahci - ok
21:03:32.0994 6020 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
21:03:32.0995 6020 adpu320 - ok
21:03:33.0090 6020 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
21:03:33.0091 6020 AeLookupSvc - ok
21:03:33.0205 6020 AERTFilters (7394641611ef3ab2d041f104f1e8c1b9) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
21:03:33.0206 6020 AERTFilters - ok
21:03:33.0276 6020 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
21:03:33.0280 6020 AFD - ok
21:03:33.0313 6020 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
21:03:33.0313 6020 agp440 - ok
21:03:33.0324 6020 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
21:03:33.0325 6020 ALG - ok
21:03:33.0337 6020 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
21:03:33.0337 6020 aliide - ok
21:03:33.0372 6020 AMD External Events Utility (a359974eaac83a435497c52f62a2e590) C:\Windows\system32\atiesrxx.exe
21:03:33.0374 6020 AMD External Events Utility - ok
21:03:33.0390 6020 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
21:03:33.0391 6020 amdide - ok
21:03:33.0402 6020 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
21:03:33.0402 6020 AmdK8 - ok
21:03:33.0882 6020 amdkmdag (60216b0e704584de6d5a9f59e9c34c47) C:\Windows\system32\DRIVERS\atikmdag.sys
21:03:33.0940 6020 amdkmdag - ok
21:03:34.0044 6020 amdkmdap (6b4e9261b613b047a9a145f328889968) C:\Windows\system32\DRIVERS\atikmpag.sys
21:03:34.0044 6020 amdkmdap - ok
21:03:34.0064 6020 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
21:03:34.0064 6020 AmdPPM - ok
21:03:34.0114 6020 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
21:03:34.0114 6020 amdsata - ok
21:03:34.0124 6020 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
21:03:34.0124 6020 amdsbs - ok
21:03:34.0134 6020 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
21:03:34.0134 6020 amdxata - ok
21:03:34.0174 6020 androidusb (4de0d5d747a73797c95a97dcce5018b5) C:\Windows\system32\Drivers\ssadadb.sys
21:03:34.0174 6020 androidusb - ok
21:03:34.0334 6020 AODService (7e869d0d289358b3dd17fce30e502d3a) C:\Program Files (x86)\AMD\OverDrive\AODAssist.exe
21:03:34.0334 6020 AODService - ok
21:03:34.0394 6020 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
21:03:34.0394 6020 AppID - ok
21:03:34.0434 6020 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
21:03:34.0434 6020 AppIDSvc - ok
21:03:34.0454 6020 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
21:03:34.0454 6020 Appinfo - ok
21:03:34.0544 6020 Apple Mobile Device (7ef47644b74ebe721cc32211d3c35e76) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
21:03:34.0544 6020 Apple Mobile Device - ok
21:03:34.0574 6020 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
21:03:34.0574 6020 arc - ok
21:03:34.0584 6020 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
21:03:34.0584 6020 arcsas - ok
21:03:34.0614 6020 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
21:03:34.0614 6020 AsyncMac - ok
21:03:34.0624 6020 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
21:03:34.0624 6020 atapi - ok
21:03:35.0105 6020 atikmdag (60216b0e704584de6d5a9f59e9c34c47) C:\Windows\system32\DRIVERS\atikmdag.sys
21:03:35.0172 6020 atikmdag - ok
21:03:35.0205 6020 atitray (65c4e1cb1f6643926c1491d4d89a96a8) C:\Program Files (x86)\Ray Adams\ATI Tray Tools\atitray64.sys
21:03:35.0206 6020 atitray - ok
21:03:35.0341 6020 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
21:03:35.0346 6020 AudioEndpointBuilder - ok
21:03:35.0354 6020 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
21:03:35.0358 6020 AudioSrv - ok
21:03:35.0374 6020 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
21:03:35.0376 6020 AxInstSV - ok
21:03:35.0419 6020 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
21:03:35.0422 6020 b06bdrv - ok
21:03:35.0454 6020 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
21:03:35.0456 6020 b57nd60a - ok
21:03:35.0527 6020 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
21:03:35.0528 6020 BDESVC - ok
21:03:35.0535 6020 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
21:03:35.0536 6020 Beep - ok
21:03:35.0601 6020 BFE (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
21:03:35.0607 6020 BFE - ok
21:03:35.0881 6020 BHDrvx64 (5b1fe9d351c284701c8051da2aa81df6) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.1.2.10\Definitions\BASHDefs\20120413.001\BHDrvx64.sys
21:03:35.0889 6020 BHDrvx64 - ok
21:03:36.0071 6020 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\system32\qmgr.dll
21:03:36.0079 6020 BITS - ok
21:03:36.0152 6020 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
21:03:36.0153 6020 blbdrive - ok
21:03:36.0226 6020 Bonjour Service (ebbcd5dfbb1de70e8f4af8fa59e401fd) C:\Program Files\Bonjour\mDNSResponder.exe
21:03:36.0230 6020 Bonjour Service - ok
21:03:36.0269 6020 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
21:03:36.0270 6020 bowser - ok
21:03:36.0280 6020 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
21:03:36.0281 6020 BrFiltLo - ok
21:03:36.0293 6020 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
21:03:36.0293 6020 BrFiltUp - ok
21:03:36.0311 6020 BridgeMP (5c2f352a4e961d72518261257aae204b) C:\Windows\system32\DRIVERS\bridge.sys
21:03:36.0312 6020 BridgeMP - ok
21:03:36.0364 6020 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
21:03:36.0365 6020 Browser - ok
21:03:36.0389 6020 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
21:03:36.0392 6020 Brserid - ok
21:03:36.0406 6020 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
21:03:36.0407 6020 BrSerWdm - ok
21:03:36.0418 6020 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
21:03:36.0418 6020 BrUsbMdm - ok
21:03:36.0433 6020 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
21:03:36.0434 6020 BrUsbSer - ok
21:03:36.0452 6020 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
21:03:36.0453 6020 BTHMODEM - ok
21:03:36.0497 6020 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
21:03:36.0498 6020 bthserv - ok
21:03:36.0575 6020 ccSet_N360 (0e1737a63aec0f6de231bb59836c0a11) C:\Windows\system32\drivers\N360x64\0602000.009\ccSetx64.sys
21:03:36.0577 6020 ccSet_N360 - ok
21:03:36.0596 6020 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
21:03:36.0597 6020 cdfs - ok
21:03:36.0638 6020 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\drivers\cdrom.sys
21:03:36.0639 6020 cdrom - ok
21:03:36.0687 6020 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
21:03:36.0688 6020 CertPropSvc - ok
21:03:36.0702 6020 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
21:03:36.0702 6020 circlass - ok
21:03:36.0739 6020 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
21:03:36.0742 6020 CLFS - ok
21:03:36.0808 6020 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:03:36.0809 6020 clr_optimization_v2.0.50727_32 - ok
21:03:36.0853 6020 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
21:03:36.0853 6020 clr_optimization_v2.0.50727_64 - ok
21:03:36.0934 6020 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
21:03:36.0936 6020 clr_optimization_v4.0.30319_32 - ok
21:03:36.0970 6020 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
21:03:36.0972 6020 clr_optimization_v4.0.30319_64 - ok
21:03:36.0982 6020 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
21:03:36.0982 6020 CmBatt - ok
21:03:36.0988 6020 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
21:03:36.0988 6020 cmdide - ok
21:03:37.0042 6020 CNG (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys
21:03:37.0045 6020 CNG - ok
21:03:37.0061 6020 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
21:03:37.0062 6020 Compbatt - ok
21:03:37.0085 6020 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
21:03:37.0086 6020 CompositeBus - ok
21:03:37.0093 6020 COMSysApp - ok
21:03:37.0114 6020 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
21:03:37.0114 6020 crcdisk - ok
21:03:37.0152 6020 CryptSvc (15597883fbe9b056f276ada3ad87d9af) C:\Windows\system32\cryptsvc.dll
21:03:37.0153 6020 CryptSvc - ok
21:03:37.0195 6020 ctxusbm (ba8e5b2291c01ef71ca80e25f0c79d55) C:\Windows\system32\DRIVERS\ctxusbm.sys
21:03:37.0196 6020 ctxusbm - ok
21:03:37.0316 6020 cvhsvc (72794d112cbaff3bc0c29bf7350d4741) C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
21:03:37.0322 6020 cvhsvc - ok
21:03:37.0385 6020 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
21:03:37.0390 6020 DcomLaunch - ok
21:03:37.0433 6020 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
21:03:37.0435 6020 defragsvc - ok
21:03:37.0508 6020 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
21:03:37.0509 6020 DfsC - ok
21:03:37.0557 6020 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
21:03:37.0559 6020 Dhcp - ok
21:03:37.0570 6020 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
21:03:37.0571 6020 discache - ok
21:03:37.0601 6020 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
21:03:37.0602 6020 Disk - ok
21:03:37.0636 6020 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
21:03:37.0638 6020 Dnscache - ok
21:03:37.0734 6020 DockLoginService (0840abbbdf438691ee65a20040635cbe) C:\Program Files\Dell\DellDock\DockLogin.exe
21:03:37.0736 6020 DockLoginService - ok
21:03:37.0782 6020 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
21:03:37.0784 6020 dot3svc - ok
21:03:37.0805 6020 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
21:03:37.0807 6020 DPS - ok
21:03:37.0816 6020 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
21:03:37.0817 6020 drmkaud - ok
21:03:37.0892 6020 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
21:03:37.0905 6020 DXGKrnl - ok
21:03:37.0944 6020 e1qexpress (acff022b1eb3e608b7cfae61187751a6) C:\Windows\system32\DRIVERS\e1q62x64.sys
21:03:37.0946 6020 e1qexpress - ok
21:03:37.0999 6020 e1yexpress (50ad8fc1dc800ff36087994c8f7fdff2) C:\Windows\system32\DRIVERS\e1y60x64.sys
21:03:38.0002 6020 e1yexpress - ok
21:03:38.0037 6020 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
21:03:38.0039 6020 EapHost - ok
21:03:38.0634 6020 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
21:03:38.0656 6020 ebdrv - ok
21:03:38.0759 6020 eeCtrl (0c3f9eff8ddd9f9eb56d754b4620155f) C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
21:03:38.0762 6020 eeCtrl - ok
21:03:38.0865 6020 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
21:03:38.0867 6020 EFS - ok
21:03:38.0965 6020 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
21:03:38.0970 6020 ehRecvr - ok
21:03:39.0003 6020 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
21:03:39.0004 6020 ehSched - ok
21:03:39.0060 6020 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
21:03:39.0064 6020 elxstor - ok
21:03:39.0129 6020 EraserUtilRebootDrv (8c0f9b877bc0b7ffd327ef55f9efb642) C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
21:03:39.0130 6020 EraserUtilRebootDrv - ok
21:03:39.0162 6020 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
21:03:39.0163 6020 ErrDev - ok
21:03:39.0212 6020 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
21:03:39.0216 6020 EventSystem - ok
21:03:39.0245 6020 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
21:03:39.0247 6020 exfat - ok
21:03:39.0266 6020 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
21:03:39.0268 6020 fastfat - ok
21:03:39.0331 6020 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
21:03:39.0336 6020 Fax - ok
21:03:39.0377 6020 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
21:03:39.0377 6020 fdc - ok
21:03:39.0384 6020 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
21:03:39.0385 6020 fdPHost - ok
21:03:39.0393 6020 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
21:03:39.0394 6020 FDResPub - ok
21:03:39.0410 6020 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
21:03:39.0410 6020 FileInfo - ok
21:03:39.0420 6020 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
21:03:39.0420 6020 Filetrace - ok
21:03:39.0431 6020 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
21:03:39.0431 6020 flpydisk - ok
21:03:39.0461 6020 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
21:03:39.0463 6020 FltMgr - ok
21:03:39.0670 6020 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
21:03:39.0678 6020 FontCache - ok
21:03:39.0789 6020 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
21:03:39.0789 6020 FontCache3.0.0.0 - ok
21:03:39.0833 6020 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
21:03:39.0834 6020 FsDepends - ok
21:03:39.0864 6020 fssfltr (6c06701bf1db05405804d7eb610991ce) C:\Windows\system32\DRIVERS\fssfltr.sys
21:03:39.0865 6020 fssfltr - ok
21:03:40.0045 6020 fsssvc (4ce9dac1518ff7e77bd213e6394b9d77) C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
21:03:40.0055 6020 fsssvc - ok
21:03:40.0168 6020 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
21:03:40.0168 6020 Fs_Rec - ok
21:03:40.0213 6020 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
21:03:40.0215 6020 fvevol - ok
21:03:40.0232 6020 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
21:03:40.0233 6020 gagp30kx - ok
21:03:40.0271 6020 GEARAspiWDM (af4dee5531395dee72b35b36c9671fd0) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
21:03:40.0272 6020 GEARAspiWDM - ok
21:03:40.0339 6020 GoToAssist (d3316f6e3c011435f36e3d6e49b3196c) C:\Program Files (x86)\Citrix\GoToAssist\514\g2aservice.exe
21:03:40.0340 6020 GoToAssist - ok
21:03:40.0412 6020 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
21:03:40.0418 6020 gpsvc - ok
21:03:40.0480 6020 gupdate (8f0de4fef8201e306f9938b0905ac96a) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:03:40.0482 6020 gupdate - ok
21:03:40.0495 6020 gupdatem (8f0de4fef8201e306f9938b0905ac96a) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:03:40.0497 6020 gupdatem - ok
21:03:40.0544 6020 gusvc (cc839e8d766cc31a7710c9f38cf3e375) C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
21:03:40.0545 6020 gusvc - ok
21:03:40.0552 6020 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
21:03:40.0553 6020 hcw85cir - ok
21:03:40.0606 6020 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
21:03:40.0609 6020 HdAudAddService - ok
21:03:40.0632 6020 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
21:03:40.0633 6020 HDAudBus - ok
21:03:40.0640 6020 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
21:03:40.0641 6020 HidBatt - ok
21:03:40.0657 6020 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
21:03:40.0658 6020 HidBth - ok
21:03:40.0680 6020 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
21:03:40.0681 6020 HidIr - ok
21:03:40.0715 6020 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\System32\hidserv.dll
21:03:40.0716 6020 hidserv - ok
21:03:40.0740 6020 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
21:03:40.0741 6020 HidUsb - ok
21:03:40.0773 6020 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
21:03:40.0775 6020 hkmsvc - ok
21:03:40.0822 6020 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
21:03:40.0825 6020 HomeGroupListener - ok
21:03:40.0864 6020 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
21:03:40.0867 6020 HomeGroupProvider - ok
21:03:40.0881 6020 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
21:03:40.0882 6020 HpSAMD - ok
21:03:41.0336 6020 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
21:03:41.0342 6020 HTTP - ok
21:03:41.0386 6020 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
21:03:41.0387 6020 hwpolicy - ok
21:03:41.0423 6020 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
21:03:41.0424 6020 i8042prt - ok
21:03:41.0452 6020 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
21:03:41.0456 6020 iaStorV - ok
21:03:41.0581 6020 IDriverT (1cf03c69b49acb70c722df92755c0c8c) C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
21:03:41.0582 6020 IDriverT - ok
21:03:41.0680 6020 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
21:03:41.0686 6020 idsvc - ok
21:03:41.0971 6020 IDSVia64 (18c40c3f368323b203ace403cb430db1) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.1.2.10\Definitions\IPSDefs\20120423.001\IDSvia64.sys
21:03:41.0975 6020 IDSVia64 - ok
21:03:42.0077 6020 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
21:03:42.0077 6020 iirsp - ok
21:03:42.0152 6020 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
21:03:42.0159 6020 IKEEXT - ok
21:03:42.0277 6020 IntcAzAudAddService (e28edf74900e68184f44cfcdd66f1bc3) C:\Windows\system32\drivers\RTKVHD64.sys
21:03:42.0289 6020 IntcAzAudAddService - ok
21:03:42.0383 6020 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
21:03:42.0383 6020 intelide - ok
21:03:42.0406 6020 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
21:03:42.0407 6020 intelppm - ok
21:03:42.0448 6020 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
21:03:42.0450 6020 IPBusEnum - ok
21:03:42.0490 6020 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:03:42.0491 6020 IpFilterDriver - ok
21:03:42.0554 6020 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
21:03:42.0559 6020 iphlpsvc - ok
21:03:42.0580 6020 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
21:03:42.0580 6020 IPMIDRV - ok
21:03:42.0607 6020 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
21:03:42.0608 6020 IPNAT - ok
21:03:42.0681 6020 iPod Service (755e4ba6dce627a2683bb7640553c8d6) C:\Program Files\iPod\bin\iPodService.exe
21:03:42.0687 6020 iPod Service - ok
21:03:42.0708 6020 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
21:03:42.0708 6020 IRENUM - ok
21:03:42.0730 6020 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
21:03:42.0731 6020 isapnp - ok
21:03:42.0754 6020 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
21:03:42.0756 6020 iScsiPrt - ok
21:03:42.0775 6020 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
21:03:42.0776 6020 kbdclass - ok
21:03:42.0802 6020 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\DRIVERS\kbdhid.sys
21:03:42.0803 6020 kbdhid - ok
21:03:42.0836 6020 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:03:42.0838 6020 KeyIso - ok
21:03:42.0870 6020 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys
21:03:42.0871 6020 KSecDD - ok
21:03:42.0886 6020 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys
21:03:42.0887 6020 KSecPkg - ok
21:03:42.0897 6020 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
21:03:42.0897 6020 ksthunk - ok
21:03:42.0946 6020 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
21:03:42.0950 6020 KtmRm - ok
21:03:42.0978 6020 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\System32\srvsvc.dll
21:03:42.0981 6020 LanmanServer - ok
21:03:43.0014 6020 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
21:03:43.0017 6020 LanmanWorkstation - ok
21:03:43.0134 6020 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
21:03:43.0135 6020 lltdio - ok
21:03:43.0181 6020 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
21:03:43.0184 6020 lltdsvc - ok
21:03:43.0197 6020 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
21:03:43.0198 6020 lmhosts - ok
21:03:43.0218 6020 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
21:03:43.0220 6020 LSI_FC - ok
21:03:43.0232 6020 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
21:03:43.0233 6020 LSI_SAS - ok
21:03:43.0245 6020 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
21:03:43.0246 6020 LSI_SAS2 - ok
21:03:43.0260 6020 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
21:03:43.0261 6020 LSI_SCSI - ok
21:03:43.0277 6020 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
21:03:43.0278 6020 luafv - ok
21:03:43.0312 6020 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
21:03:43.0314 6020 Mcx2Svc - ok
21:03:43.0329 6020 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
21:03:43.0330 6020 megasas - ok
21:03:43.0354 6020 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
21:03:43.0357 6020 MegaSR - ok
21:03:43.0369 6020 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
21:03:43.0370 6020 MMCSS - ok
21:03:43.0384 6020 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
21:03:43.0385 6020 Modem - ok
21:03:43.0414 6020 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
21:03:43.0414 6020 monitor - ok
21:03:43.0436 6020 motccgp (7bd101253058db30c52c6ea8d3911754) C:\Windows\system32\DRIVERS\motccgp.sys
21:03:43.0437 6020 motccgp - ok
21:03:43.0449 6020 motccgpfl (1a700e7063ca7f2b29a4e761da604dfb) C:\Windows\system32\DRIVERS\motccgpfl.sys
21:03:43.0449 6020 motccgpfl - ok
21:03:43.0459 6020 motmodem (940f4da752e28e6c4b1090d21aeb7b80) C:\Windows\system32\DRIVERS\motmodem.sys
21:03:43.0460 6020 motmodem - ok
21:03:43.0465 6020 motport (940f4da752e28e6c4b1090d21aeb7b80) C:\Windows\system32\DRIVERS\motport.sys
21:03:43.0466 6020 motport - ok
21:03:43.0504 6020 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
21:03:43.0505 6020 mouclass - ok
21:03:43.0520 6020 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
21:03:43.0520 6020 mouhid - ok
21:03:43.0555 6020 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
21:03:43.0556 6020 mountmgr - ok
21:03:43.0575 6020 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
21:03:43.0576 6020 mpio - ok
21:03:43.0591 6020 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
21:03:43.0592 6020 mpsdrv - ok
21:03:43.0662 6020 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
21:03:43.0669 6020 MpsSvc - ok
21:03:43.0704 6020 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
21:03:43.0705 6020 MRxDAV - ok
21:03:43.0737 6020 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
21:03:43.0739 6020 mrxsmb - ok
21:03:43.0777 6020 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:03:43.0779 6020 mrxsmb10 - ok
21:03:43.0792 6020 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:03:43.0793 6020 mrxsmb20 - ok
21:03:43.0804 6020 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
21:03:43.0804 6020 msahci - ok
21:03:43.0820 6020 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
21:03:43.0821 6020 msdsm - ok
21:03:43.0858 6020 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
21:03:43.0860 6020 MSDTC - ok
21:03:43.0884 6020 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
21:03:43.0885 6020 Msfs - ok
21:03:43.0888 6020 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
21:03:43.0889 6020 mshidkmdf - ok
21:03:43.0900 6020 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
21:03:43.0901 6020 msisadrv - ok
21:03:43.0945 6020 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
21:03:43.0947 6020 MSiSCSI - ok
21:03:43.0949 6020 msiserver - ok
21:03:43.0971 6020 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
21:03:43.0972 6020 MSKSSRV - ok
21:03:43.0980 6020 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
21:03:43.0980 6020 MSPCLOCK - ok
21:03:43.0984 6020 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
21:03:43.0984 6020 MSPQM - ok
21:03:44.0040 6020 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
21:03:44.0043 6020 MsRPC - ok
21:03:44.0056 6020 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
21:03:44.0057 6020 mssmbios - ok
21:03:44.0209 6020 MSSQL$SQLEXPRESS - ok
21:03:44.0369 6020 MSSQLServerADHelper100 (f1761c8fb2b25a32c6d63e36bb88c3ae) c:\Program Files (x86)\Microsoft SQL Server\100\Shared\SQLADHLP.EXE
21:03:44.0369 6020 MSSQLServerADHelper100 - ok
21:03:44.0369 6020 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
21:03:44.0369 6020 MSTEE - ok
21:03:45.0039 6020 msvsmon90 (cb4a082af58d1a0969f931816d5cfb05) C:\Program Files\Microsoft Visual Studio 9.0\Common7\IDE\Remote Debugger\x64\msvsmon.exe
21:03:45.0069 6020 msvsmon90 - ok
21:03:45.0249 6020 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
21:03:45.0249 6020 MTConfig - ok
21:03:45.0259 6020 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
21:03:45.0259 6020 Mup - ok
21:03:45.0529 6020 N360 (c6948f034d7edabcfa2234d399fc78bc) C:\Program Files (x86)\Norton 360\Engine\6.2.0.9\ccSvcHst.exe
21:03:45.0529 6020 N360 - ok
21:03:45.0649 6020 NAL (b5a7ded4455d6d694091827dc91fed99) C:\Windows\system32\Drivers\iqvw64e.sys
21:03:45.0659 6020 NAL - ok
21:03:45.0779 6020 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
21:03:45.0779 6020 napagent - ok
21:03:45.0849 6020 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
21:03:45.0859 6020 NativeWifiP - ok
21:03:45.0989 6020 NAVENG (2dbe90210de76be6e1653bb20ec70ec2) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.1.2.10\Definitions\VirusDefs\20120423.018\ENG64.SYS
21:03:45.0989 6020 NAVENG - ok
21:03:46.0119 6020 NAVEX15 (346da70e203b8e2c850277713de8f71b) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.1.2.10\Definitions\VirusDefs\20120423.018\EX64.SYS
21:03:46.0129 6020 NAVEX15 - ok
21:03:46.0295 6020 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
21:03:46.0301 6020 NDIS - ok
21:03:46.0307 6020 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
21:03:46.0308 6020 NdisCap - ok
21:03:46.0332 6020 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
21:03:46.0332 6020 NdisTapi - ok
21:03:46.0369 6020 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
21:03:46.0369 6020 Ndisuio - ok
21:03:46.0407 6020 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
21:03:46.0409 6020 NdisWan - ok
21:03:46.0445 6020 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
21:03:46.0446 6020 NDProxy - ok
21:03:46.0461 6020 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
21:03:46.0462 6020 NetBIOS - ok
21:03:46.0488 6020 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
21:03:46.0490 6020 NetBT - ok
21:03:46.0525 6020 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:03:46.0526 6020 Netlogon - ok
21:03:46.0583 6020 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
21:03:46.0587 6020 Netman - ok
21:03:46.0623 6020 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
21:03:46.0627 6020 netprofm - ok
21:03:46.0697 6020 netr7364 (81b8d0c1ce44a7fdbd596b693783950c) C:\Windows\system32\DRIVERS\netr7364.sys
21:03:46.0702 6020 netr7364 - ok
21:03:46.0799 6020 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
21:03:46.0800 6020 NetTcpPortSharing - ok
21:03:46.0831 6020 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
21:03:46.0832 6020 nfrd960 - ok
21:03:46.0866 6020 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
21:03:46.0870 6020 NlaSvc - ok
21:03:46.0885 6020 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
21:03:46.0886 6020 Npfs - ok
21:03:46.0894 6020 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
21:03:46.0895 6020 nsi - ok
21:03:46.0901 6020 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
21:03:46.0902 6020 nsiproxy - ok
21:03:47.0018 6020 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
21:03:47.0029 6020 Ntfs - ok
21:03:47.0146 6020 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
21:03:47.0147 6020 Null - ok
21:03:47.0186 6020 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
21:03:47.0188 6020 nvraid - ok
21:03:47.0206 6020 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
21:03:47.0208 6020 nvstor - ok
21:03:47.0232 6020 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
21:03:47.0233 6020 nv_agp - ok
21:03:47.0349 6020 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
21:03:47.0353 6020 odserv - ok
21:03:47.0385 6020 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
21:03:47.0386 6020 ohci1394 - ok
21:03:47.0415 6020 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:03:47.0415 6020 ose - ok
21:03:47.0715 6020 osppsvc (61bffb5f57ad12f83ab64b7181829b34) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
21:03:47.0745 6020 osppsvc - ok
21:03:47.0845 6020 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
21:03:47.0845 6020 p2pimsvc - ok
21:03:47.0875 6020 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
21:03:47.0885 6020 p2psvc - ok
21:03:47.0925 6020 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
21:03:47.0935 6020 Parport - ok
21:03:47.0965 6020 partmgr (871eadac56b0a4c6512bbe32753ccf79) C:\Windows\system32\drivers\partmgr.sys
21:03:47.0965 6020 partmgr - ok
21:03:47.0985 6020 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
21:03:47.0985 6020 PcaSvc - ok
21:03:47.0995 6020 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
21:03:48.0005 6020 pci - ok
21:03:48.0015 6020 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
21:03:48.0015 6020 pciide - ok
21:03:48.0025 6020 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
21:03:48.0035 6020 pcmcia - ok
21:03:48.0045 6020 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
21:03:48.0045 6020 pcw - ok
21:03:48.0085 6020 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
21:03:48.0095 6020 PEAUTH - ok
21:03:48.0185 6020 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
21:03:48.0185 6020 PerfHost - ok
21:03:48.0350 6020 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
21:03:48.0377 6020 pla - ok
21:03:48.0451 6020 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
21:03:48.0455 6020 PlugPlay - ok
21:03:48.0463 6020 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
21:03:48.0465 6020 PNRPAutoReg - ok
21:03:48.0504 6020 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
21:03:48.0508 6020 PNRPsvc - ok
21:03:48.0546 6020 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
21:03:48.0550 6020 PolicyAgent - ok
21:03:48.0614 6020 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
21:03:48.0618 6020 Power - ok
21:03:48.0669 6020 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
21:03:48.0671 6020 PptpMiniport - ok
21:03:48.0703 6020 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
21:03:48.0704 6020 Processor - ok
21:03:48.0729 6020 ProfSvc (5c78838b4d166d1a27db3a8a820c799a) C:\Windows\system32\profsvc.dll
21:03:48.0732 6020 ProfSvc - ok
21:03:48.0763 6020 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:03:48.0764 6020 ProtectedStorage - ok
21:03:48.0811 6020 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
21:03:48.0813 6020 Psched - ok
21:03:48.0844 6020 PxHlpa64 (46851bc18322da70f3f2299a1007c479) C:\Windows\system32\Drivers\PxHlpa64.sys
21:03:48.0845 6020 PxHlpa64 - ok
21:03:48.0944 6020 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
21:03:48.0954 6020 ql2300 - ok
21:03:49.0038 6020 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
21:03:49.0039 6020 ql40xx - ok
21:03:49.0056 6020 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
21:03:49.0061 6020 QWAVE - ok
21:03:49.0075 6020 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
21:03:49.0076 6020 QWAVEdrv - ok
21:03:49.0088 6020 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
21:03:49.0088 6020 RasAcd - ok
21:03:49.0123 6020 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
21:03:49.0123 6020 RasAgileVpn - ok
21:03:49.0151 6020 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
21:03:49.0154 6020 RasAuto - ok
21:03:49.0173 6020 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
21:03:49.0174 6020 Rasl2tp - ok
21:03:49.0200 6020 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
21:03:49.0204 6020 RasMan - ok
21:03:49.0218 6020 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
21:03:49.0219 6020 RasPppoe - ok
21:03:49.0232 6020 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
21:03:49.0232 6020 RasSstp - ok
21:03:49.0262 6020 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
21:03:49.0262 6020 rdbss - ok
21:03:49.0272 6020 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
21:03:49.0272 6020 rdpbus - ok
21:03:49.0301 6020 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
21:03:49.0301 6020 RDPCDD - ok
21:03:49.0316 6020 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
21:03:49.0316 6020 RDPENCDD - ok
21:03:49.0331 6020 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
21:03:49.0332 6020 RDPREFMP - ok
21:03:49.0365 6020 RDPWD (6d76e6433574b058adcb0c50df834492) C:\Windows\system32\drivers\RDPWD.sys
21:03:49.0367 6020 RDPWD - ok
21:03:49.0407 6020 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
21:03:49.0409 6020 rdyboost - ok
21:03:49.0444 6020 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
21:03:49.0447 6020 RemoteAccess - ok
21:03:49.0467 6020 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
21:03:49.0469 6020 RemoteRegistry - ok
21:03:49.0490 6020 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
21:03:49.0492 6020 RpcEptMapper - ok
21:03:49.0504 6020 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
21:03:49.0505 6020 RpcLocator - ok
21:03:49.0555 6020 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
21:03:49.0560 6020 RpcSs - ok
21:03:49.0615 6020 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
21:03:49.0616 6020 rspndr - ok
21:03:49.0654 6020 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:03:49.0655 6020 SamSs - ok
21:03:49.0695 6020 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
21:03:49.0697 6020 sbp2port - ok
21:03:49.0718 6020 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
21:03:49.0721 6020 SCardSvr - ok
21:03:49.0753 6020 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
21:03:49.0754 6020 scfilter - ok
21:03:49.0844 6020 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
21:03:49.0853 6020 Schedule - ok
21:03:49.0890 6020 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
21:03:49.0891 6020 SCPolicySvc - ok
21:03:49.0908 6020 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
21:03:49.0910 6020 SDRSVC - ok
21:03:50.0004 6020 SeaPort (16a252022535b680046f6e34e136d378) C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
21:03:50.0005 6020 SeaPort - ok
21:03:50.0053 6020 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
21:03:50.0054 6020 secdrv - ok
21:03:50.0061 6020 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
21:03:50.0063 6020 seclogon - ok
21:03:50.0104 6020 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\system32\sens.dll
21:03:50.0106 6020 SENS - ok
21:03:50.0116 6020 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
21:03:50.0118 6020 SensrSvc - ok
21:03:50.0129 6020 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
21:03:50.0129 6020 Serenum - ok
21:03:50.0144 6020 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
21:03:50.0146 6020 Serial - ok
21:03:50.0166 6020 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
21:03:50.0167 6020 sermouse - ok
21:03:50.0196 6020 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
21:03:50.0199 6020 SessionEnv - ok
21:03:50.0223 6020 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
21:03:50.0223 6020 sffdisk - ok
21:03:50.0230 6020 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
21:03:50.0231 6020 sffp_mmc - ok
21:03:50.0241 6020 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
21:03:50.0241 6020 sffp_sd - ok
21:03:50.0252 6020 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
21:03:50.0253 6020 sfloppy - ok
21:03:50.0311 6020 Sftfs (c6cc9297bd53e5229653303e556aa539) C:\Windows\system32\DRIVERS\Sftfslh.sys
21:03:50.0316 6020 Sftfs - ok
21:03:50.0379 6020 sftlist (13693b6354dd6e72dc5131da7d764b90) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
21:03:50.0382 6020 sftlist - ok
21:03:50.0407 6020 Sftplay (390aa7bc52cee43f6790cdea1e776703) C:\Windows\system32\DRIVERS\Sftplaylh.sys
21:03:50.0410 6020 Sftplay - ok
21:03:50.0423 6020 Sftredir (617e29a0b0a2807466560d4c4e338d3e) C:\Windows\system32\DRIVERS\Sftredirlh.sys
21:03:50.0423 6020 Sftredir - ok
21:03:50.0432 6020 Sftvol (8f571f016fa1976f445147e9e6c8ae9b) C:\Windows\system32\DRIVERS\Sftvollh.sys
21:03:50.0432 6020 Sftvol - ok
21:03:50.0449 6020 sftvsa (c3cddd18f43d44ab713cf8c4916f7696) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
21:03:50.0451 6020 sftvsa - ok
21:03:50.0507 6020 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
21:03:50.0511 6020 SharedAccess - ok
21:03:50.0541 6020 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
21:03:50.0546 6020 ShellHWDetection - ok
21:03:50.0600 6020 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
21:03:50.0600 6020 SiSRaid2 - ok
21:03:50.0609 6020 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
21:03:50.0610 6020 SiSRaid4 - ok
21:03:50.0628 6020 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
21:03:50.0630 6020 Smb - ok
21:03:50.0663 6020 SMR250 (27f71f20e87fbf177c82ae924f9317f7) C:\Windows\system32\drivers\SMR250.SYS
21:03:50.0664 6020 SMR250 - ok
21:03:50.0705 6020 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
21:03:50.0707 6020 SNMPTRAP - ok
21:03:50.0801 6020 speedfan (5f9785e7535f8f602cb294a54962c9e7) C:\Windows\syswow64\speedfan.sys
21:03:50.0803 6020 speedfan - ok
21:03:50.0811 6020 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
21:03:50.0812 6020 spldr - ok
21:03:50.0851 6020 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
21:03:50.0857 6020 Spooler - ok
21:03:51.0067 6020 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
21:03:51.0092 6020 sppsvc - ok
21:03:51.0185 6020 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
21:03:51.0187 6020 sppuinotify - ok
21:03:51.0282 6020 sprtsvc_DellSupportCenter (d630b6f2e8379b6f10dc16e82a426552) C:\Program Files (x86)\Dell Support Center\bin\sprtsvc.exe
21:03:51.0284 6020 sprtsvc_DellSupportCenter - ok
21:03:51.0374 6020 SQLAgent$SQLEXPRESS (a892134c28777978ecde8283dc57ac0f) c:\Program Files (x86)\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE
21:03:51.0376 6020 SQLAgent$SQLEXPRESS - ok
21:03:51.0421 6020 SQLBrowser (10d936dced9eacd1a1b3fcdda6d7a4eb) c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
21:03:51.0423 6020 SQLBrowser - ok
21:03:51.0451 6020 SQLWriter (f92e5f93be572b512da3c016b675ede0) c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
21:03:51.0453 6020 SQLWriter - ok
21:03:51.0559 6020 SRTSP (06b9a7ba94356ec5207c5ddb59540378) C:\Windows\System32\Drivers\N360x64\0602000.009\SRTSP64.SYS
21:03:51.0564 6020 SRTSP - ok
21:03:51.0578 6020 SRTSPX (fbb8945a61e55a2345d12487c74a9d76) C:\Windows\system32\drivers\N360x64\0602000.009\SRTSPX64.SYS
21:03:51.0579 6020 SRTSPX - ok
21:03:51.0615 6020 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
21:03:51.0619 6020 srv - ok
21:03:51.0687 6020 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
21:03:51.0690 6020 srv2 - ok
21:03:51.0708 6020 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
21:03:51.0710 6020 srvnet - ok
21:03:51.0737 6020 ssadbus (866f8212ef7e75bac8bca03331e30cb4) C:\Windows\system32\DRIVERS\ssadbus.sys
21:03:51.0738 6020 ssadbus - ok
21:03:51.0764 6020 ssadmdfl (73e2ba39e7eb024dc686412e2e924a74) C:\Windows\system32\DRIVERS\ssadmdfl.sys
21:03:51.0765 6020 ssadmdfl - ok
21:03:51.0782 6020 ssadmdm (74b032d6c1e36ae2f790752fde8ce055) C:\Windows\system32\DRIVERS\ssadmdm.sys
21:03:51.0783 6020 ssadmdm - ok
21:03:51.0833 6020 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
21:03:51.0836 6020 SSDPSRV - ok
21:03:51.0847 6020 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
21:03:51.0849 6020 SstpSvc - ok
21:03:51.0909 6020 Steam Client Service - ok
21:03:51.0941 6020 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
21:03:51.0942 6020 stexstor - ok
21:03:52.0009 6020 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
21:03:52.0015 6020 stisvc - ok
21:03:52.0075 6020 stllssvr (1d0063597c3666404fcf97698abeb019) C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
21:03:52.0076 6020 stllssvr - ok
21:03:52.0103 6020 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
21:03:52.0104 6020 swenum - ok
21:03:52.0137 6020 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
21:03:52.0143 6020 swprv - ok
21:03:52.0214 6020 SymDS (8b2430762099598da40686f754632efd) C:\Windows\system32\drivers\N360x64\0602000.009\SYMDS64.SYS
21:03:52.0217 6020 SymDS - ok
21:03:52.0296 6020 SymEFA (f90c7a190399165d3ab2245048d34786) C:\Windows\system32\drivers\N360x64\0602000.009\SYMEFA64.SYS
21:03:52.0303 6020 SymEFA - ok
21:03:52.0329 6020 SymEvent (898bb48c797483420df523b2bbc1ecdb) C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
21:03:52.0331 6020 SymEvent - ok
21:03:52.0352 6020 SymIRON (5013a76caaa1d7cf1c55214b490b4e35) C:\Windows\system32\drivers\N360x64\0602000.009\Ironx64.SYS
21:03:52.0354 6020 SymIRON - ok
21:03:52.0390 6020 SymNetS (3911bd0e68c010e5438a87706abbe9ab) C:\Windows\System32\Drivers\N360x64\0602000.009\SYMNETS.SYS
21:03:52.0393 6020 SymNetS - ok
21:03:52.0834 6020 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
21:03:52.0848 6020 SysMain - ok
21:03:53.0048 6020 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
21:03:53.0050 6020 TabletInputService - ok
21:03:53.0105 6020 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
21:03:53.0108 6020 TapiSrv - ok
21:03:53.0121 6020 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
21:03:53.0124 6020 TBS - ok
21:03:53.0247 6020 Tcpip (fc62769e7bff2896035aeed399108162) C:\Windows\system32\drivers\tcpip.sys
21:03:53.0260 6020 Tcpip - ok
21:03:53.0421 6020 TCPIP6 (fc62769e7bff2896035aeed399108162) C:\Windows\system32\DRIVERS\tcpip.sys
21:03:53.0423 6020 TCPIP6 - ok
21:03:53.0516 6020 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
21:03:53.0517 6020 tcpipreg - ok
21:03:53.0551 6020 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
21:03:53.0552 6020 TDPIPE - ok
21:03:53.0639 6020 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
21:03:53.0640 6020 TDTCP - ok
21:03:53.0844 6020 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
21:03:53.0846 6020 tdx - ok
21:03:54.0014 6020 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
21:03:54.0015 6020 TermDD - ok
21:03:54.0057 6020 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
21:03:54.0064 6020 TermService - ok
21:03:54.0072 6020 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
21:03:54.0075 6020 Themes - ok
21:03:54.0108 6020 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
21:03:54.0110 6020 THREADORDER - ok
21:03:54.0122 6020 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
21:03:54.0125 6020 TrkWks - ok
21:03:54.0190 6020 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
21:03:54.0191 6020 TrustedInstaller - ok
21:03:54.0224 6020 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
21:03:54.0225 6020 tssecsrv - ok
21:03:54.0255 6020 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
21:03:54.0256 6020 TsUsbFlt - ok
21:03:54.0281 6020 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
21:03:54.0283 6020 tunnel - ok
21:03:54.0292 6020 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
21:03:54.0293 6020 uagp35 - ok
21:03:54.0318 6020 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
21:03:54.0321 6020 udfs - ok
21:03:54.0343 6020 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
21:03:54.0345 6020 UI0Detect - ok
21:03:54.0363 6020 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
21:03:54.0364 6020 uliagpkx - ok
21:03:54.0379 6020 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\DRIVERS\umbus.sys
21:03:54.0380 6020 umbus - ok
21:03:54.0408 6020 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
21:03:54.0409 6020 UmPass - ok
21:03:54.0480 6020 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
21:03:54.0484 6020 upnphost - ok
21:03:54.0515 6020 USBAAPL64 (aa33fc47ed58c34e6e9261e4f850b7eb) C:\Windows\system32\Drivers\usbaapl64.sys
21:03:54.0516 6020 USBAAPL64 - ok
21:03:54.0536 6020 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
21:03:54.0538 6020 usbccgp - ok
21:03:54.0551 6020 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
21:03:54.0552 6020 usbcir - ok
21:03:54.0565 6020 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\drivers\usbehci.sys
21:03:54.0566 6020 usbehci - ok
21:03:54.0595 6020 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
21:03:54.0598 6020 usbhub - ok
21:03:54.0630 6020 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
21:03:54.0631 6020 usbohci - ok
21:03:54.0650 6020 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
21:03:54.0651 6020 usbprint - ok
21:03:54.0665 6020 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
21:03:54.0667 6020 USBSTOR - ok
21:03:54.0676 6020 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
21:03:54.0676 6020 usbuhci - ok
21:03:54.0696 6020 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
21:03:54.0696 6020 UxSms - ok
21:03:54.0736 6020 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:03:54.0736 6020 VaultSvc - ok
21:03:54.0756 6020 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
21:03:54.0756 6020 vdrvroot - ok
21:03:54.0806 6020 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
21:03:54.0816 6020 vds - ok
21:03:54.0826 6020 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
21:03:54.0826 6020 vga - ok
21:03:54.0836 6020 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
21:03:54.0836 6020 VgaSave - ok
21:03:54.0866 6020 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
21:03:54.0866 6020 vhdmp - ok
21:03:54.0876 6020 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
21:03:54.0876 6020 viaide - ok
21:03:54.0946 6020 Viewpoint Manager Service (5f974fde801c73952770736becde11e7) C:\Program Files (x86)\Viewpoint\Common\ViewpointService.exe
21:03:54.0946 6020 Viewpoint Manager Service - ok
21:03:54.0956 6020 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
21:03:54.0956 6020 volmgr - ok
21:03:55.0006 6020 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
21:03:55.0009 6020 volmgrx - ok
21:03:55.0038 6020 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
21:03:55.0041 6020 volsnap - ok
21:03:55.0055 6020 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
21:03:55.0056 6020 vsmraid - ok
21:03:55.0164 6020 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
21:03:55.0177 6020 VSS - ok
21:03:55.0295 6020 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
21:03:55.0296 6020 vwifibus - ok
21:03:55.0331 6020 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
21:03:55.0332 6020 vwififlt - ok
21:03:55.0389 6020 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
21:03:55.0393 6020 W32Time - ok
21:03:55.0429 6020 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
21:03:55.0430 6020 WacomPen - ok
21:03:55.0454 6020 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
21:03:55.0456 6020 WANARP - ok
21:03:55.0459 6020 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
21:03:55.0460 6020 Wanarpv6 - ok
21:03:55.0554 6020 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
21:03:55.0563 6020 WatAdminSvc - ok
21:03:55.0704 6020 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
21:03:55.0716 6020 wbengine - ok
21:03:55.0780 6020 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
21:03:55.0783 6020 WbioSrvc - ok
21:03:55.0827 6020 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
21:03:55.0834 6020 wcncsvc - ok
21:03:55.0847 6020 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
21:03:55.0850 6020 WcsPlugInService - ok
21:03:55.0863 6020 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
21:03:55.0864 6020 Wd - ok
21:03:55.0905 6020 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
21:03:55.0910 6020 Wdf01000 - ok
21:03:55.0923 6020 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
21:03:55.0926 6020 WdiServiceHost - ok
21:03:55.0929 6020 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
21:03:55.0931 6020 WdiSystemHost - ok
21:03:55.0985 6020 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
21:03:55.0991 6020 WebClient - ok
21:03:56.0048 6020 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
21:03:56.0052 6020 Wecsvc - ok
21:03:56.0067 6020 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
21:03:56.0070 6020 wercplsupport - ok
21:03:56.0113 6020 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
21:03:56.0115 6020 WerSvc - ok
21:03:56.0130 6020 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
21:03:56.0131 6020 WfpLwf - ok
21:03:56.0141 6020 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
21:03:56.0142 6020 WIMMount - ok
21:03:56.0156 6020 WinDefend - ok
21:03:56.0163 6020 WinHttpAutoProxySvc - ok
21:03:56.0243 6020 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
21:03:56.0245 6020 Winmgmt - ok
21:03:56.0354 6020 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
21:03:56.0395 6020 WinRM - ok
21:03:56.0500 6020 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
21:03:56.0501 6020 WinUsb - ok
21:03:56.0817 6020 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
21:03:56.0825 6020 Wlansvc - ok
21:03:56.0875 6020 wlcrasvc (06c8fa1cf39de6a735b54d906ba791c6) C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
21:03:56.0875 6020 wlcrasvc - ok
21:03:57.0018 6020 wlidsvc (7e47c328fc4768cb8beafbcfafa70362) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
21:03:57.0034 6020 wlidsvc - ok
21:03:57.0113 6020 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
21:03:57.0114 6020 WmiAcpi - ok
21:03:57.0140 6020 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
21:03:57.0142 6020 wmiApSrv - ok
21:03:57.0176 6020 WMPNetworkSvc - ok
21:03:57.0214 6020 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
21:03:57.0216 6020 WPCSvc - ok
21:03:57.0257 6020 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
21:03:57.0260 6020 WPDBusEnum - ok
21:03:57.0292 6020 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
21:03:57.0293 6020 ws2ifsl - ok
21:03:57.0306 6020 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\system32\wscsvc.dll
21:03:57.0308 6020 wscsvc - ok
21:03:57.0311 6020 WSearch - ok
21:03:57.0469 6020 wuauserv (9df12edbc698b0bc353b3ef84861e430) C:\Windows\system32\wuaueng.dll
21:03:57.0488 6020 wuauserv - ok
21:03:57.0571 6020 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
21:03:57.0573 6020 WudfPf - ok
21:03:57.0599 6020 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
21:03:57.0601 6020 WUDFRd - ok
21:03:57.0628 6020 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
21:03:57.0630 6020 wudfsvc - ok
21:03:57.0659 6020 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
21:03:57.0663 6020 WwanSvc - ok
21:03:57.0689 6020 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
21:03:57.0750 6020 \Device\Harddisk0\DR0 - ok
21:03:57.0766 6020 Boot (0x1200) (aa2bcffdebfe4a03befafe67578bad76) \Device\Harddisk0\DR0\Partition0
21:03:57.0768 6020 \Device\Harddisk0\DR0\Partition0 - ok
21:03:57.0771 6020 Boot (0x1200) (9171b8885af5a134a44991b90d913ed5) \Device\Harddisk0\DR0\Partition1
21:03:57.0773 6020 \Device\Harddisk0\DR0\Partition1 - ok
21:03:57.0773 6020 ============================================================
21:03:57.0773 6020 Scan finished
21:03:57.0773 6020 ============================================================
21:03:57.0784 2100 Detected object count: 0
21:03:57.0784 2100 Actual detected object count: 0



I run the 64 bit version of Windows 7 so I was not able to run the GMER file.

Here is the aswMBR LOG:

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-04-23 21:05:11
-----------------------------
21:05:11.491 OS Version: Windows x64 6.1.7601 Service Pack 1
21:05:11.491 Number of processors: 8 586 0x1A05
21:05:11.492 ComputerName: MAIN UserName:
21:05:13.409 Initialize success
21:06:00.942 AVAST engine defs: 12042301
21:06:32.034 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
21:06:32.038 Disk 0 Vendor: ST3750528AS CC44 Size: 715404MB BusType: 3
21:06:32.055 Disk 0 MBR read successfully
21:06:32.059 Disk 0 MBR scan
21:06:32.066 Disk 0 Windows 7 default MBR code
21:06:32.071 Disk 0 Partition 1 00 DE Dell Utility Dell 8.0 70 MB offset 63
21:06:32.090 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 15360 MB offset 145408
21:06:32.107 Disk 0 Partition 3 80 (A) 07 HPFS/NTFS NTFS 699972 MB offset 31602688
21:06:32.135 Disk 0 scanning C:\Windows\system32\drivers
21:06:42.399 Service scanning
21:07:08.176 Modules scanning
21:07:08.181 Disk 0 trace - called modules:
21:07:08.212 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys ataport.SYS intelide.sys PCIIDEX.SYS hal.dll atapi.sys
21:07:08.555 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8006647790]
21:07:08.564 3 CLASSPNP.SYS[fffff8800180143f] -> nt!IofCallDriver -> [0xfffffa80063e1e40]
21:07:08.574 5 ACPI.sys[fffff88000fa07a1] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0xfffffa8006402060]
21:07:10.154 AVAST engine scan C:\Windows
21:07:13.872 AVAST engine scan C:\Windows\system32
21:10:50.694 AVAST engine scan C:\Windows\system32\drivers
21:11:11.040 AVAST engine scan C:\Users\Matt Mentzer
21:15:25.370 AVAST engine scan C:\ProgramData
21:16:51.468 Scan finished successfully
21:17:04.404 Disk 0 MBR has been saved successfully to "C:\Users\Matt Mentzer\Desktop\MBR.dat"
21:17:04.411 The log file has been saved successfully to "C:\Users\Matt Mentzer\Desktop\aswMBR.txt"

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:23 PM

Posted 23 April 2012 - 09:28 PM

Appreciate your feedback :thumbup2:


Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log


Download

ESET online scanner


Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply


Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.


Let me know if redirects are on a specific browser

#5 mentzerm

mentzerm
  • Topic Starter

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:06:23 PM

Posted 24 April 2012 - 08:54 PM

a

Edited by mentzerm, 25 April 2012 - 08:52 PM.


#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:23 PM

Posted 24 April 2012 - 09:21 PM

Can you reinstall google chrome and see if you still have redirects?

good luck




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users