Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Happili Redirect Virus


  • Please log in to reply
5 replies to this topic

#1 sweetdaughter99

sweetdaughter99

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Indiana
  • Local time:10:36 AM

Posted 27 April 2012 - 03:42 PM

Did not know if I should start a new thread or add this to someone else's. Results from the security check notepad:

Results of screen317's Security Check version 0.99.24
Windows 7 x64 (UAC is enabled)
Internet Explorer 8 Out of date!
``````````````````````````````
Antivirus/Firewall Check:

Windows Security Center service is not running! This report may not be accurate!
AVG PC Tuneup
WMI entry may not exist for antivirus; attempting automatic update.
```````````````````````````````
Anti-malware/Other Utilities Check:

AVG PC Tuneup
Java™ 6 Update 17
Out of date Java installed!
Adobe Reader X (10.1.3)
````````````````````````````````
Process Check:
objlist.exe by Laurent

Norton ccSvcHst.exe
AVG avgwdsvc.exe
AVG avgtray.exe
Bitdefender Bitdefender 2012 vsserv.exe
Bitdefender Bitdefender 2012 bdagent.exe
``````````End of Log````````````

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:36 AM

Posted 27 April 2012 - 03:58 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)


Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Does happili redirect occur on a specific browser?

#3 sweetdaughter99

sweetdaughter99
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Indiana
  • Local time:10:36 AM

Posted 27 April 2012 - 05:40 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)


Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Does happili redirect occur on a specific browser?


Sorry did not see your response til now. I only use internet explorer. It occurs whenever I go to google and click on a link. Also everything on my computer has underlined words ie: if you scroll over them it is something called text enhance. I will follow your steps as you have outlined above and get back to you.

Thanks for your time and help!

18:41:21.0551 7336 TDSS rootkit removing tool 2.7.33.0 Apr 24 2012 18:43:43
18:41:21.0908 7336 ============================================================
18:41:21.0909 7336 Current date / time: 2012/04/27 18:41:21.0908
18:41:21.0909 7336 SystemInfo:
18:41:21.0909 7336
18:41:21.0909 7336 OS Version: 6.1.7601 ServicePack: 1.0
18:41:21.0909 7336 Product type: Workstation
18:41:21.0909 7336 ComputerName: BETH-PC
18:41:21.0909 7336 UserName: Beth
18:41:21.0909 7336 Windows directory: C:\windows
18:41:21.0909 7336 System windows directory: C:\windows
18:41:21.0909 7336 Running under WOW64
18:41:21.0909 7336 Processor architecture: Intel x64
18:41:21.0909 7336 Number of processors: 2
18:41:21.0909 7336 Page size: 0x1000
18:41:21.0910 7336 Boot type: Normal boot
18:41:21.0910 7336 ============================================================
18:41:22.0663 7336 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:41:22.0672 7336 ============================================================
18:41:22.0672 7336 \Device\Harddisk0\DR0:
18:41:22.0672 7336 MBR partitions:
18:41:22.0672 7336 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x2EE800, BlocksNum 0x38926800
18:41:22.0672 7336 ============================================================
18:41:22.0721 7336 C: <-> \Device\Harddisk0\DR0\Partition0
18:41:22.0721 7336 ============================================================
18:41:22.0721 7336 Initialize success
18:41:22.0721 7336 ============================================================
18:42:14.0810 4896 ============================================================
18:42:14.0810 4896 Scan started
18:42:14.0810 4896 Mode: Manual; SigCheck; TDLFS;
18:42:14.0810 4896 ============================================================
18:42:16.0691 4896 !SASCORE (7d9d615201a483d6fa99491c2e655a5a) C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
18:42:16.0815 4896 !SASCORE - ok
18:42:17.0045 4896 1394ohci (a87d604aea360176311474c87a63bb88) C:\windows\system32\drivers\1394ohci.sys
18:42:17.0181 4896 1394ohci - ok
18:42:17.0293 4896 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\windows\system32\drivers\ACPI.sys
18:42:17.0337 4896 ACPI - ok
18:42:17.0387 4896 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\windows\system32\drivers\acpipmi.sys
18:42:17.0481 4896 AcpiPmi - ok
18:42:17.0574 4896 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
18:42:17.0599 4896 AdobeARMservice - ok
18:42:17.0754 4896 AdobeFlashPlayerUpdateSvc (459ac130c6ab892b1cd5d7544626efc5) C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
18:42:17.0785 4896 AdobeFlashPlayerUpdateSvc - ok
18:42:17.0867 4896 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\windows\system32\DRIVERS\adp94xx.sys
18:42:17.0915 4896 adp94xx - ok
18:42:17.0966 4896 adpahci (597f78224ee9224ea1a13d6350ced962) C:\windows\system32\DRIVERS\adpahci.sys
18:42:18.0007 4896 adpahci - ok
18:42:18.0058 4896 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\windows\system32\DRIVERS\adpu320.sys
18:42:18.0092 4896 adpu320 - ok
18:42:18.0121 4896 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\windows\System32\aelupsvc.dll
18:42:18.0302 4896 AeLookupSvc - ok
18:42:18.0375 4896 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\windows\system32\drivers\afd.sys
18:42:18.0467 4896 AFD - ok
18:42:18.0517 4896 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\windows\system32\drivers\agp440.sys
18:42:18.0547 4896 agp440 - ok
18:42:18.0595 4896 ALG (3290d6946b5e30e70414990574883ddb) C:\windows\System32\alg.exe
18:42:18.0670 4896 ALG - ok
18:42:18.0728 4896 aliide (5812713a477a3ad7363c7438ca2ee038) C:\windows\system32\drivers\aliide.sys
18:42:18.0755 4896 aliide - ok
18:42:18.0760 4896 amdide (1ff8b4431c353ce385c875f194924c0c) C:\windows\system32\drivers\amdide.sys
18:42:18.0788 4896 amdide - ok
18:42:18.0842 4896 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\windows\system32\DRIVERS\amdk8.sys
18:42:18.0902 4896 AmdK8 - ok
18:42:18.0909 4896 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\windows\system32\DRIVERS\amdppm.sys
18:42:18.0953 4896 AmdPPM - ok
18:42:18.0995 4896 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\windows\system32\drivers\amdsata.sys
18:42:19.0026 4896 amdsata - ok
18:42:19.0056 4896 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\windows\system32\DRIVERS\amdsbs.sys
18:42:19.0092 4896 amdsbs - ok
18:42:19.0137 4896 amdxata (540daf1cea6094886d72126fd7c33048) C:\windows\system32\drivers\amdxata.sys
18:42:19.0165 4896 amdxata - ok
18:42:19.0232 4896 AppID (89a69c3f2f319b43379399547526d952) C:\windows\system32\drivers\appid.sys
18:42:19.0418 4896 AppID - ok
18:42:19.0449 4896 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\windows\System32\appidsvc.dll
18:42:19.0558 4896 AppIDSvc - ok
18:42:19.0613 4896 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\windows\System32\appinfo.dll
18:42:19.0720 4896 Appinfo - ok
18:42:19.0779 4896 arc (c484f8ceb1717c540242531db7845c4e) C:\windows\system32\DRIVERS\arc.sys
18:42:19.0809 4896 arc - ok
18:42:19.0818 4896 arcsas (019af6924aefe7839f61c830227fe79c) C:\windows\system32\DRIVERS\arcsas.sys
18:42:19.0852 4896 arcsas - ok
18:42:19.0882 4896 AsyncMac (769765ce2cc62867468cea93969b2242) C:\windows\system32\DRIVERS\asyncmac.sys
18:42:19.0992 4896 AsyncMac - ok
18:42:20.0025 4896 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\windows\system32\drivers\atapi.sys
18:42:20.0053 4896 atapi - ok
18:42:20.0131 4896 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\windows\System32\Audiosrv.dll
18:42:20.0267 4896 AudioEndpointBuilder - ok
18:42:20.0280 4896 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\windows\System32\Audiosrv.dll
18:42:20.0387 4896 AudioSrv - ok
18:42:20.0483 4896 avc3 (5d2f10cac77cd76e355f5466d597ee63) C:\windows\system32\DRIVERS\avc3.sys
18:42:20.0559 4896 avc3 - ok
18:42:20.0606 4896 avchv (4c6bcc638798abe1f70afca70d889c3f) C:\windows\system32\DRIVERS\avchv.sys
18:42:20.0639 4896 avchv - ok
18:42:20.0698 4896 avckf (6dc4cca415bbf2fc629beb532aa0e6cd) C:\windows\system32\DRIVERS\avckf.sys
18:42:20.0741 4896 avckf - ok
18:42:21.0090 4896 AVGIDSAgent (6d440ff3f44ca72edfd6176c6d6a89c0) C:\Program Files (x86)\AVG\AVG2012\AVGIDSAgent.exe
18:42:21.0352 4896 AVGIDSAgent - ok
18:42:21.0498 4896 AVGIDSDriver (e29ea1a0ec7ab9fa2dc7e75a03f12a4f) C:\windows\system32\DRIVERS\AVGIDSDriver.Sys
18:42:21.0523 4896 AVGIDSDriver - ok
18:42:21.0548 4896 AVGIDSEH (f823d184b8e8ffb8da3ead45dbf5bd6a) C:\windows\system32\DRIVERS\AVGIDSEH.Sys
18:42:21.0569 4896 AVGIDSEH - ok
18:42:21.0588 4896 AVGIDSFilter (ed2b25bd7fe35d1944211968842d30da) C:\windows\system32\DRIVERS\AVGIDSFilter.Sys
18:42:21.0609 4896 AVGIDSFilter - ok
18:42:21.0651 4896 Avgldx64 (979cf8912449a10b987218bff80a1fa3) C:\windows\system32\DRIVERS\avgldx64.sys
18:42:21.0682 4896 Avgldx64 - ok
18:42:21.0699 4896 Avgmfx64 (36b1a5843695766eac714daffc5b84d1) C:\windows\system32\DRIVERS\avgmfx64.sys
18:42:21.0721 4896 Avgmfx64 - ok
18:42:21.0770 4896 Avgrkx64 (1102239fb724527f1febbbbccf6bf313) C:\windows\system32\DRIVERS\avgrkx64.sys
18:42:21.0790 4896 Avgrkx64 - ok
18:42:21.0840 4896 Avgtdia (11f36d3ea82d9db9aa05a476a210551b) C:\windows\system32\DRIVERS\avgtdia.sys
18:42:21.0876 4896 Avgtdia - ok
18:42:21.0977 4896 avgwd (6699ece24fe4b3f752a66c66a602ee86) C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe
18:42:22.0004 4896 avgwd - ok
18:42:22.0060 4896 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\windows\System32\AxInstSV.dll
18:42:22.0151 4896 AxInstSV - ok
18:42:22.0228 4896 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\windows\system32\DRIVERS\bxvbda.sys
18:42:22.0308 4896 b06bdrv - ok
18:42:22.0366 4896 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\windows\system32\DRIVERS\b57nd60a.sys
18:42:22.0426 4896 b57nd60a - ok
18:42:22.0466 4896 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\windows\System32\bdesvc.dll
18:42:22.0535 4896 BDESVC - ok
18:42:22.0652 4896 BdfNdisf (707ac68f86f97c17c30498aaf3c7e27e) c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys
18:42:22.0676 4896 BdfNdisf - ok
18:42:22.0759 4896 bdfsfltr (ea195950fa5dd4a8f7bc00822213a363) C:\windows\system32\DRIVERS\bdfsfltr.sys
18:42:22.0798 4896 bdfsfltr - ok
18:42:22.0834 4896 bdfwfpf (4ce4b0098fc315c237fa8867f07886c4) C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys
18:42:22.0864 4896 bdfwfpf - ok
18:42:22.0914 4896 bdsandbox (31571d77c6186ad228f52ee4ebdf8ee9) C:\windows\system32\drivers\bdsandbox.sys
18:42:22.0937 4896 bdsandbox - ok
18:42:22.0961 4896 BDVEDISK (b89deff4817b4cc6fc2bcd8f83b4e75d) C:\windows\system32\DRIVERS\bdvedisk.sys
18:42:22.0986 4896 BDVEDISK - ok
18:42:23.0032 4896 Beep (16a47ce2decc9b099349a5f840654746) C:\windows\system32\drivers\Beep.sys
18:42:23.0138 4896 Beep - ok
18:42:23.0211 4896 BITS (1ea7969e3271cbc59e1730697dc74682) C:\windows\System32\qmgr.dll
18:42:23.0347 4896 BITS - ok
18:42:23.0399 4896 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\windows\system32\DRIVERS\blbdrive.sys
18:42:23.0439 4896 blbdrive - ok
18:42:23.0490 4896 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\windows\system32\DRIVERS\bowser.sys
18:42:23.0563 4896 bowser - ok
18:42:23.0585 4896 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\windows\system32\DRIVERS\BrFiltLo.sys
18:42:23.0658 4896 BrFiltLo - ok
18:42:23.0685 4896 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\windows\system32\DRIVERS\BrFiltUp.sys
18:42:23.0732 4896 BrFiltUp - ok
18:42:23.0776 4896 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\windows\System32\browser.dll
18:42:23.0904 4896 Browser - ok
18:42:23.0949 4896 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\windows\System32\Drivers\Brserid.sys
18:42:24.0025 4896 Brserid - ok
18:42:24.0032 4896 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\windows\System32\Drivers\BrSerWdm.sys
18:42:24.0087 4896 BrSerWdm - ok
18:42:24.0130 4896 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\windows\System32\Drivers\BrUsbMdm.sys
18:42:24.0181 4896 BrUsbMdm - ok
18:42:24.0186 4896 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\windows\System32\Drivers\BrUsbSer.sys
18:42:24.0221 4896 BrUsbSer - ok
18:42:24.0268 4896 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\windows\system32\DRIVERS\bthmodem.sys
18:42:24.0364 4896 BTHMODEM - ok
18:42:24.0409 4896 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\windows\system32\bthserv.dll
18:42:24.0543 4896 bthserv - ok
18:42:24.0594 4896 BVRPMPR5a64 (9887ca12f407d7fbc7f48f3678f5f0b6) C:\windows\system32\drivers\BVRPMPR5a64.SYS
18:42:24.0616 4896 BVRPMPR5a64 - ok
18:42:24.0673 4896 cdfs (b8bd2bb284668c84865658c77574381a) C:\windows\system32\DRIVERS\cdfs.sys
18:42:24.0842 4896 cdfs - ok
18:42:24.0901 4896 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\windows\system32\drivers\cdrom.sys
18:42:24.0945 4896 cdrom - ok
18:42:24.0999 4896 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\windows\System32\certprop.dll
18:42:25.0370 4896 CertPropSvc - ok
18:42:25.0420 4896 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\windows\system32\DRIVERS\circlass.sys
18:42:25.0467 4896 circlass - ok
18:42:25.0533 4896 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\windows\system32\CLFS.sys
18:42:25.0574 4896 CLFS - ok
18:42:25.0647 4896 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:42:25.0676 4896 clr_optimization_v2.0.50727_32 - ok
18:42:25.0724 4896 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
18:42:25.0750 4896 clr_optimization_v2.0.50727_64 - ok
18:42:25.0815 4896 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:42:25.0862 4896 clr_optimization_v4.0.30319_32 - ok
18:42:25.0888 4896 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
18:42:25.0915 4896 clr_optimization_v4.0.30319_64 - ok
18:42:25.0961 4896 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\windows\system32\DRIVERS\CmBatt.sys
18:42:26.0052 4896 CmBatt - ok
18:42:26.0082 4896 cmdide (e19d3f095812725d88f9001985b94edd) C:\windows\system32\drivers\cmdide.sys
18:42:26.0109 4896 cmdide - ok
18:42:26.0189 4896 CNG (c4943b6c962e4b82197542447ad599f4) C:\windows\system32\Drivers\cng.sys
18:42:26.0291 4896 CNG - ok
18:42:26.0373 4896 CnxtHdAudService (25c58ee97be0416a373e3e4f855206b5) C:\windows\system32\drivers\CHDRT64.sys
18:42:26.0425 4896 CnxtHdAudService - ok
18:42:26.0481 4896 Compbatt (102de219c3f61415f964c88e9085ad14) C:\windows\system32\DRIVERS\compbatt.sys
18:42:26.0509 4896 Compbatt - ok
18:42:26.0548 4896 CompositeBus (03edb043586cceba243d689bdda370a8) C:\windows\system32\drivers\CompositeBus.sys
18:42:26.0607 4896 CompositeBus - ok
18:42:26.0619 4896 COMSysApp - ok
18:42:26.0650 4896 crcdisk (1c827878a998c18847245fe1f34ee597) C:\windows\system32\DRIVERS\crcdisk.sys
18:42:26.0678 4896 crcdisk - ok
18:42:26.0740 4896 CryptSvc (15597883fbe9b056f276ada3ad87d9af) C:\windows\system32\cryptsvc.dll
18:42:26.0856 4896 CryptSvc - ok
18:42:26.0935 4896 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\windows\system32\rpcss.dll
18:42:27.0062 4896 DcomLaunch - ok
18:42:27.0104 4896 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\windows\System32\defragsvc.dll
18:42:27.0217 4896 defragsvc - ok
18:42:27.0247 4896 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\windows\system32\Drivers\dfsc.sys
18:42:27.0356 4896 DfsC - ok
18:42:27.0428 4896 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\windows\system32\dhcpcore.dll
18:42:27.0547 4896 Dhcp - ok
18:42:27.0568 4896 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\windows\system32\drivers\discache.sys
18:42:27.0674 4896 discache - ok
18:42:27.0713 4896 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\windows\system32\DRIVERS\disk.sys
18:42:27.0742 4896 Disk - ok
18:42:27.0802 4896 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\windows\System32\dnsrslvr.dll
18:42:27.0895 4896 Dnscache - ok
18:42:27.0957 4896 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\windows\System32\dot3svc.dll
18:42:28.0063 4896 dot3svc - ok
18:42:28.0085 4896 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\windows\system32\dps.dll
18:42:28.0195 4896 DPS - ok
18:42:28.0236 4896 drmkaud (9b19f34400d24df84c858a421c205754) C:\windows\system32\drivers\drmkaud.sys
18:42:28.0281 4896 drmkaud - ok
18:42:28.0371 4896 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\windows\System32\drivers\dxgkrnl.sys
18:42:28.0440 4896 DXGKrnl - ok
18:42:28.0469 4896 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\windows\System32\eapsvc.dll
18:42:28.0575 4896 EapHost - ok
18:42:28.0775 4896 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\windows\system32\DRIVERS\evbda.sys
18:42:28.0970 4896 ebdrv - ok
18:42:29.0087 4896 EFS (c118a82cd78818c29ab228366ebf81c3) C:\windows\System32\lsass.exe
18:42:29.0166 4896 EFS - ok
18:42:29.0244 4896 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\windows\ehome\ehRecvr.exe
18:42:29.0342 4896 ehRecvr - ok
18:42:29.0368 4896 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\windows\ehome\ehsched.exe
18:42:29.0417 4896 ehSched - ok
18:42:29.0509 4896 elxstor (0e5da5369a0fcaea12456dd852545184) C:\windows\system32\DRIVERS\elxstor.sys
18:42:29.0558 4896 elxstor - ok
18:42:29.0577 4896 ErrDev (34a3c54752046e79a126e15c51db409b) C:\windows\system32\drivers\errdev.sys
18:42:29.0623 4896 ErrDev - ok
18:42:29.0677 4896 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\windows\system32\es.dll
18:42:29.0801 4896 EventSystem - ok
18:42:29.0863 4896 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\windows\system32\drivers\exfat.sys
18:42:29.0974 4896 exfat - ok
18:42:29.0991 4896 fastfat (0adc83218b66a6db380c330836f3e36d) C:\windows\system32\drivers\fastfat.sys
18:42:30.0093 4896 fastfat - ok
18:42:30.0189 4896 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\windows\system32\fxssvc.exe
18:42:30.0277 4896 Fax - ok
18:42:30.0307 4896 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\windows\system32\DRIVERS\fdc.sys
18:42:30.0348 4896 fdc - ok
18:42:30.0376 4896 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\windows\system32\fdPHost.dll
18:42:30.0483 4896 fdPHost - ok
18:42:30.0505 4896 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\windows\system32\fdrespub.dll
18:42:30.0614 4896 FDResPub - ok
18:42:30.0638 4896 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\windows\system32\drivers\fileinfo.sys
18:42:30.0668 4896 FileInfo - ok
18:42:30.0693 4896 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\windows\system32\drivers\filetrace.sys
18:42:30.0808 4896 Filetrace - ok
18:42:30.0854 4896 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\windows\system32\DRIVERS\flpydisk.sys
18:42:30.0884 4896 flpydisk - ok
18:42:30.0929 4896 FltMgr (da6b67270fd9db3697b20fce94950741) C:\windows\system32\drivers\fltmgr.sys
18:42:30.0968 4896 FltMgr - ok
18:42:31.0055 4896 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\windows\system32\FntCache.dll
18:42:31.0173 4896 FontCache - ok
18:42:31.0229 4896 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
18:42:31.0252 4896 FontCache3.0.0.0 - ok
18:42:31.0309 4896 FsDepends (d43703496149971890703b4b1b723eac) C:\windows\system32\drivers\FsDepends.sys
18:42:31.0339 4896 FsDepends - ok
18:42:31.0366 4896 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\windows\system32\drivers\Fs_Rec.sys
18:42:31.0393 4896 Fs_Rec - ok
18:42:31.0448 4896 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\windows\system32\DRIVERS\fvevol.sys
18:42:31.0490 4896 fvevol - ok
18:42:31.0545 4896 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\windows\system32\DRIVERS\gagp30kx.sys
18:42:31.0575 4896 gagp30kx - ok
18:42:31.0703 4896 GameConsoleService (1fda0df739234c4023851a282dd28704) C:\Program Files (x86)\TOSHIBA Games\TOSHIBA Game Console\GameConsoleService.exe
18:42:31.0744 4896 GameConsoleService - ok
18:42:31.0814 4896 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\windows\System32\gpsvc.dll
18:42:31.0946 4896 gpsvc - ok
18:42:32.0038 4896 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:42:32.0063 4896 gupdate - ok
18:42:32.0100 4896 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:42:32.0122 4896 gupdatem - ok
18:42:32.0170 4896 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\windows\system32\drivers\hcw85cir.sys
18:42:32.0238 4896 hcw85cir - ok
18:42:32.0309 4896 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\windows\system32\drivers\HdAudio.sys
18:42:32.0371 4896 HdAudAddService - ok
18:42:32.0431 4896 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\windows\system32\drivers\HDAudBus.sys
18:42:32.0485 4896 HDAudBus - ok
18:42:32.0528 4896 HECIx64 (b6ac71aaa2b10848f57fc49d55a651af) C:\windows\system32\DRIVERS\HECIx64.sys
18:42:32.0551 4896 HECIx64 - ok
18:42:32.0573 4896 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\windows\system32\DRIVERS\HidBatt.sys
18:42:32.0622 4896 HidBatt - ok
18:42:32.0632 4896 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\windows\system32\DRIVERS\hidbth.sys
18:42:32.0679 4896 HidBth - ok
18:42:32.0712 4896 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\windows\system32\DRIVERS\hidir.sys
18:42:32.0761 4896 HidIr - ok
18:42:32.0797 4896 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\windows\system32\hidserv.dll
18:42:32.0904 4896 hidserv - ok
18:42:32.0959 4896 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\windows\system32\drivers\hidusb.sys
18:42:32.0989 4896 HidUsb - ok
18:42:33.0024 4896 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\windows\system32\kmsvc.dll
18:42:33.0134 4896 hkmsvc - ok
18:42:33.0175 4896 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\windows\system32\ListSvc.dll
18:42:33.0247 4896 HomeGroupListener - ok
18:42:33.0291 4896 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\windows\system32\provsvc.dll
18:42:33.0335 4896 HomeGroupProvider - ok
18:42:33.0379 4896 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\windows\system32\drivers\HpSAMD.sys
18:42:33.0410 4896 HpSAMD - ok
18:42:33.0478 4896 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\windows\system32\drivers\HTTP.sys
18:42:33.0592 4896 HTTP - ok
18:42:33.0624 4896 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\windows\system32\drivers\hwpolicy.sys
18:42:33.0653 4896 hwpolicy - ok
18:42:33.0698 4896 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\windows\system32\drivers\i8042prt.sys
18:42:33.0730 4896 i8042prt - ok
18:42:33.0811 4896 iaStor (5e60dd5f090ab4a563c7204c289c4650) C:\windows\system32\DRIVERS\iaStor.sys
18:42:33.0850 4896 iaStor - ok
18:42:33.0915 4896 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\windows\system32\drivers\iaStorV.sys
18:42:33.0959 4896 iaStorV - ok
18:42:34.0034 4896 IDriverT (1cf03c69b49acb70c722df92755c0c8c) C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
18:42:34.0054 4896 IDriverT ( UnsignedFile.Multi.Generic ) - warning
18:42:34.0054 4896 IDriverT - detected UnsignedFile.Multi.Generic (1)
18:42:34.0187 4896 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
18:42:34.0245 4896 idsvc - ok
18:42:34.0957 4896 igfx (1be8d9ca4f2363b8e8015621878e0043) C:\windows\system32\DRIVERS\igdkmd64.sys
18:42:35.0462 4896 igfx - ok
18:42:35.0608 4896 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\windows\system32\DRIVERS\iirsp.sys
18:42:35.0637 4896 iirsp - ok
18:42:35.0736 4896 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\windows\System32\ikeext.dll
18:42:35.0852 4896 IKEEXT - ok
18:42:35.0903 4896 Impcd (dd587a55390ed2295bce6d36ad567da9) C:\windows\system32\DRIVERS\Impcd.sys
18:42:35.0959 4896 Impcd - ok
18:42:36.0020 4896 IntcDAud (03c74719d48056a1078f3a51ceb76baa) C:\windows\system32\DRIVERS\IntcDAud.sys
18:42:36.0081 4896 IntcDAud - ok
18:42:36.0117 4896 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\windows\system32\drivers\intelide.sys
18:42:36.0144 4896 intelide - ok
18:42:36.0189 4896 intelppm (ada036632c664caa754079041cf1f8c1) C:\windows\system32\DRIVERS\intelppm.sys
18:42:36.0230 4896 intelppm - ok
18:42:36.0264 4896 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\windows\system32\ipbusenum.dll
18:42:36.0379 4896 IPBusEnum - ok
18:42:36.0428 4896 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\windows\system32\DRIVERS\ipfltdrv.sys
18:42:36.0542 4896 IpFilterDriver - ok
18:42:36.0567 4896 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\windows\system32\drivers\IPMIDrv.sys
18:42:36.0611 4896 IPMIDRV - ok
18:42:36.0663 4896 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\windows\system32\drivers\ipnat.sys
18:42:36.0779 4896 IPNAT - ok
18:42:36.0809 4896 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\windows\system32\drivers\irenum.sys
18:42:36.0892 4896 IRENUM - ok
18:42:36.0936 4896 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\windows\system32\drivers\isapnp.sys
18:42:36.0964 4896 isapnp - ok
18:42:36.0996 4896 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\windows\system32\drivers\msiscsi.sys
18:42:37.0035 4896 iScsiPrt - ok
18:42:37.0049 4896 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\windows\system32\drivers\kbdclass.sys
18:42:37.0078 4896 kbdclass - ok
18:42:37.0120 4896 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\windows\system32\drivers\kbdhid.sys
18:42:37.0164 4896 kbdhid - ok
18:42:37.0210 4896 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\windows\system32\lsass.exe
18:42:37.0237 4896 KeyIso - ok
18:42:37.0258 4896 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\windows\system32\Drivers\ksecdd.sys
18:42:37.0289 4896 KSecDD - ok
18:42:37.0309 4896 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\windows\system32\Drivers\ksecpkg.sys
18:42:37.0342 4896 KSecPkg - ok
18:42:37.0378 4896 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\windows\system32\drivers\ksthunk.sys
18:42:37.0482 4896 ksthunk - ok
18:42:37.0545 4896 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\windows\system32\msdtckrm.dll
18:42:37.0662 4896 KtmRm - ok
18:42:37.0702 4896 L1C (655a5d8e80869781cce23760ada7e695) C:\windows\system32\DRIVERS\L1C62x64.sys
18:42:37.0729 4896 L1C - ok
18:42:37.0796 4896 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\windows\system32\srvsvc.dll
18:42:37.0913 4896 LanmanServer - ok
18:42:37.0954 4896 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\windows\System32\wkssvc.dll
18:42:38.0066 4896 LanmanWorkstation - ok
18:42:38.0095 4896 lltdio (1538831cf8ad2979a04c423779465827) C:\windows\system32\DRIVERS\lltdio.sys
18:42:38.0208 4896 lltdio - ok
18:42:38.0262 4896 lltdsvc (c1185803384ab3feed115f79f109427f) C:\windows\System32\lltdsvc.dll
18:42:38.0379 4896 lltdsvc - ok
18:42:38.0394 4896 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\windows\System32\lmhsvc.dll
18:42:38.0487 4896 lmhosts - ok
18:42:38.0573 4896 LMS (dbc1136a62bd4decc3632df650284c2e) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
18:42:38.0603 4896 LMS - ok
18:42:38.0644 4896 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\windows\system32\DRIVERS\lsi_fc.sys
18:42:38.0675 4896 LSI_FC - ok
18:42:38.0700 4896 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\windows\system32\DRIVERS\lsi_sas.sys
18:42:38.0733 4896 LSI_SAS - ok
18:42:38.0740 4896 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\windows\system32\DRIVERS\lsi_sas2.sys
18:42:38.0769 4896 LSI_SAS2 - ok
18:42:38.0781 4896 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\windows\system32\DRIVERS\lsi_scsi.sys
18:42:38.0813 4896 LSI_SCSI - ok
18:42:38.0895 4896 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\windows\system32\drivers\luafv.sys
18:42:39.0006 4896 luafv - ok
18:42:39.0039 4896 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\windows\system32\Mcx2Svc.dll
18:42:39.0086 4896 Mcx2Svc - ok
18:42:39.0118 4896 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\windows\system32\DRIVERS\megasas.sys
18:42:39.0146 4896 megasas - ok
18:42:39.0165 4896 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\windows\system32\DRIVERS\MegaSR.sys
18:42:39.0205 4896 MegaSR - ok
18:42:39.0241 4896 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\windows\system32\mmcss.dll
18:42:39.0351 4896 MMCSS - ok
18:42:39.0370 4896 Modem (800ba92f7010378b09f9ed9270f07137) C:\windows\system32\drivers\modem.sys
18:42:39.0483 4896 Modem - ok
18:42:39.0515 4896 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\windows\system32\DRIVERS\monitor.sys
18:42:39.0566 4896 monitor - ok
18:42:39.0603 4896 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\windows\system32\drivers\mouclass.sys
18:42:39.0632 4896 mouclass - ok
18:42:39.0674 4896 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\windows\system32\DRIVERS\mouhid.sys
18:42:39.0720 4896 mouhid - ok
18:42:39.0765 4896 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\windows\system32\drivers\mountmgr.sys
18:42:39.0795 4896 mountmgr - ok
18:42:39.0827 4896 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\windows\system32\drivers\mpio.sys
18:42:39.0860 4896 mpio - ok
18:42:39.0886 4896 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\windows\system32\drivers\mpsdrv.sys
18:42:39.0982 4896 mpsdrv - ok
18:42:40.0025 4896 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\windows\system32\drivers\mrxdav.sys
18:42:40.0085 4896 MRxDAV - ok
18:42:40.0118 4896 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\windows\system32\DRIVERS\mrxsmb.sys
18:42:40.0199 4896 mrxsmb - ok
18:42:40.0242 4896 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\windows\system32\DRIVERS\mrxsmb10.sys
18:42:40.0292 4896 mrxsmb10 - ok
18:42:40.0315 4896 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\windows\system32\DRIVERS\mrxsmb20.sys
18:42:40.0345 4896 mrxsmb20 - ok
18:42:40.0382 4896 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\windows\system32\drivers\msahci.sys
18:42:40.0409 4896 msahci - ok
18:42:40.0428 4896 msdsm (db801a638d011b9633829eb6f663c900) C:\windows\system32\drivers\msdsm.sys
18:42:40.0461 4896 msdsm - ok
18:42:40.0498 4896 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\windows\System32\msdtc.exe
18:42:40.0546 4896 MSDTC - ok
18:42:40.0590 4896 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\windows\system32\drivers\Msfs.sys
18:42:40.0683 4896 Msfs - ok
18:42:40.0699 4896 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\windows\System32\drivers\mshidkmdf.sys
18:42:40.0803 4896 mshidkmdf - ok
18:42:40.0835 4896 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\windows\system32\drivers\msisadrv.sys
18:42:40.0863 4896 msisadrv - ok
18:42:40.0910 4896 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\windows\system32\iscsiexe.dll
18:42:41.0026 4896 MSiSCSI - ok
18:42:41.0031 4896 msiserver - ok
18:42:41.0072 4896 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\windows\system32\drivers\MSKSSRV.sys
18:42:41.0182 4896 MSKSSRV - ok
18:42:41.0187 4896 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\windows\system32\drivers\MSPCLOCK.sys
18:42:41.0290 4896 MSPCLOCK - ok
18:42:41.0328 4896 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\windows\system32\drivers\MSPQM.sys
18:42:41.0428 4896 MSPQM - ok
18:42:41.0484 4896 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\windows\system32\drivers\MsRPC.sys
18:42:41.0528 4896 MsRPC - ok
18:42:41.0564 4896 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\windows\system32\drivers\mssmbios.sys
18:42:41.0591 4896 mssmbios - ok
18:42:41.0639 4896 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\windows\system32\drivers\MSTEE.sys
18:42:41.0747 4896 MSTEE - ok
18:42:41.0754 4896 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\windows\system32\DRIVERS\MTConfig.sys
18:42:41.0785 4896 MTConfig - ok
18:42:41.0802 4896 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\windows\system32\Drivers\mup.sys
18:42:41.0831 4896 Mup - ok
18:42:41.0882 4896 napagent (582ac6d9873e31dfa28a4547270862dd) C:\windows\system32\qagentRT.dll
18:42:42.0006 4896 napagent - ok
18:42:42.0068 4896 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\windows\system32\DRIVERS\nwifi.sys
18:42:42.0135 4896 NativeWifiP - ok
18:42:42.0230 4896 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\windows\system32\drivers\ndis.sys
18:42:42.0298 4896 NDIS - ok
18:42:42.0345 4896 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\windows\system32\DRIVERS\ndiscap.sys
18:42:42.0448 4896 NdisCap - ok
18:42:42.0482 4896 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\windows\system32\DRIVERS\ndistapi.sys
18:42:42.0588 4896 NdisTapi - ok
18:42:42.0637 4896 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\windows\system32\DRIVERS\ndisuio.sys
18:42:42.0745 4896 Ndisuio - ok
18:42:42.0792 4896 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\windows\system32\DRIVERS\ndiswan.sys
18:42:42.0900 4896 NdisWan - ok
18:42:42.0928 4896 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\windows\system32\drivers\NDProxy.sys
18:42:43.0021 4896 NDProxy - ok
18:42:43.0063 4896 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\windows\system32\DRIVERS\netbios.sys
18:42:43.0177 4896 NetBIOS - ok
18:42:43.0220 4896 NetBT (09594d1089c523423b32a4229263f068) C:\windows\system32\DRIVERS\netbt.sys
18:42:43.0331 4896 NetBT - ok
18:42:43.0365 4896 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\windows\system32\lsass.exe
18:42:43.0393 4896 Netlogon - ok
18:42:43.0466 4896 Netman (847d3ae376c0817161a14a82c8922a9e) C:\windows\System32\netman.dll
18:42:43.0585 4896 Netman - ok
18:42:43.0636 4896 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\windows\System32\netprofm.dll
18:42:43.0764 4896 netprofm - ok
18:42:43.0842 4896 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
18:42:43.0869 4896 NetTcpPortSharing - ok
18:42:43.0918 4896 nfrd960 (77889813be4d166cdab78ddba990da92) C:\windows\system32\DRIVERS\nfrd960.sys
18:42:43.0947 4896 nfrd960 - ok
18:42:44.0003 4896 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\windows\System32\nlasvc.dll
18:42:44.0115 4896 NlaSvc - ok
18:42:44.0190 4896 Norton PC Checkup Application Launcher - ok
18:42:44.0213 4896 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\windows\system32\drivers\Npfs.sys
18:42:44.0308 4896 Npfs - ok
18:42:44.0343 4896 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\windows\system32\nsisvc.dll
18:42:44.0456 4896 nsi - ok
18:42:44.0480 4896 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\windows\system32\drivers\nsiproxy.sys
18:42:44.0594 4896 nsiproxy - ok
18:42:44.0715 4896 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\windows\system32\drivers\Ntfs.sys
18:42:44.0814 4896 Ntfs - ok
18:42:44.0949 4896 Null (9899284589f75fa8724ff3d16aed75c1) C:\windows\system32\drivers\Null.sys
18:42:45.0058 4896 Null - ok
18:42:45.0104 4896 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\windows\system32\drivers\nvraid.sys
18:42:45.0136 4896 nvraid - ok
18:42:45.0163 4896 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\windows\system32\drivers\nvstor.sys
18:42:45.0196 4896 nvstor - ok
18:42:45.0220 4896 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\windows\system32\drivers\nv_agp.sys
18:42:45.0252 4896 nv_agp - ok
18:42:45.0294 4896 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\windows\system32\drivers\ohci1394.sys
18:42:45.0370 4896 ohci1394 - ok
18:42:45.0415 4896 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\windows\system32\pnrpsvc.dll
18:42:45.0514 4896 p2pimsvc - ok
18:42:45.0575 4896 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\windows\system32\p2psvc.dll
18:42:45.0617 4896 p2psvc - ok
18:42:45.0646 4896 Parport (0086431c29c35be1dbc43f52cc273887) C:\windows\system32\DRIVERS\parport.sys
18:42:45.0678 4896 Parport - ok
18:42:45.0702 4896 Partizan - ok
18:42:45.0737 4896 partmgr (871eadac56b0a4c6512bbe32753ccf79) C:\windows\system32\drivers\partmgr.sys
18:42:45.0767 4896 partmgr - ok
18:42:45.0802 4896 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\windows\System32\pcasvc.dll
18:42:45.0864 4896 PcaSvc - ok
18:42:45.0949 4896 PCCUJobMgr (2f86be1818c2d7ac90478e3323ee7fcb) C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.5.60\ccSvcHst.exe
18:42:45.0975 4896 PCCUJobMgr - ok
18:42:46.0015 4896 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\windows\system32\drivers\pci.sys
18:42:46.0049 4896 pci - ok
18:42:46.0068 4896 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\windows\system32\drivers\pciide.sys
18:42:46.0096 4896 pciide - ok
18:42:46.0137 4896 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\windows\system32\DRIVERS\pcmcia.sys
18:42:46.0173 4896 pcmcia - ok
18:42:46.0196 4896 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\windows\system32\drivers\pcw.sys
18:42:46.0225 4896 pcw - ok
18:42:46.0267 4896 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\windows\system32\drivers\peauth.sys
18:42:46.0391 4896 PEAUTH - ok
18:42:46.0475 4896 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\windows\SysWow64\perfhost.exe
18:42:46.0527 4896 PerfHost - ok
18:42:46.0574 4896 PGEffect (663962900e7fea522126ba287715bb4a) C:\windows\system32\DRIVERS\pgeffect.sys
18:42:46.0597 4896 PGEffect - ok
18:42:46.0699 4896 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\windows\system32\pla.dll
18:42:46.0843 4896 pla - ok
18:42:46.0905 4896 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\windows\system32\umpnpmgr.dll
18:42:46.0983 4896 PlugPlay - ok
18:42:47.0008 4896 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\windows\system32\pnrpauto.dll
18:42:47.0048 4896 PNRPAutoReg - ok
18:42:47.0082 4896 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\windows\system32\pnrpsvc.dll
18:42:47.0119 4896 PNRPsvc - ok
18:42:47.0176 4896 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\windows\System32\ipsecsvc.dll
18:42:47.0300 4896 PolicyAgent - ok
18:42:47.0349 4896 Power (6ba9d927dded70bd1a9caded45f8b184) C:\windows\system32\umpo.dll
18:42:47.0465 4896 Power - ok
18:42:47.0550 4896 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\windows\system32\DRIVERS\raspptp.sys
18:42:47.0659 4896 PptpMiniport - ok
18:42:47.0694 4896 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\windows\system32\DRIVERS\processr.sys
18:42:47.0737 4896 Processor - ok
18:42:47.0785 4896 ProfSvc (5c78838b4d166d1a27db3a8a820c799a) C:\windows\system32\profsvc.dll
18:42:47.0897 4896 ProfSvc - ok
18:42:47.0949 4896 Prot6Flt (a37ab8a7ec32001190c38eb5e8da8fbe) C:\windows\system32\DRIVERS\Prot6Flt.sys
18:42:47.0971 4896 Prot6Flt - ok
18:42:48.0011 4896 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\windows\system32\lsass.exe
18:42:48.0038 4896 ProtectedStorage - ok
18:42:48.0092 4896 Psched (0557cf5a2556bd58e26384169d72438d) C:\windows\system32\DRIVERS\pacer.sys
18:42:48.0197 4896 Psched - ok
18:42:48.0255 4896 QIOMem (c8fcb4899f8b70cc34e0d9876a80963c) C:\windows\system32\DRIVERS\QIOMem.sys
18:42:48.0294 4896 QIOMem - ok
18:42:48.0427 4896 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\windows\system32\DRIVERS\ql2300.sys
18:42:48.0521 4896 ql2300 - ok
18:42:48.0662 4896 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\windows\system32\DRIVERS\ql40xx.sys
18:42:48.0695 4896 ql40xx - ok
18:42:48.0735 4896 QWAVE (906191634e99aea92c4816150bda3732) C:\windows\system32\qwave.dll
18:42:48.0788 4896 QWAVE - ok
18:42:48.0820 4896 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\windows\system32\drivers\qwavedrv.sys
18:42:48.0880 4896 QWAVEdrv - ok
18:42:48.0903 4896 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\windows\system32\DRIVERS\rasacd.sys
18:42:49.0008 4896 RasAcd - ok
18:42:49.0053 4896 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\windows\system32\DRIVERS\AgileVpn.sys
18:42:49.0168 4896 RasAgileVpn - ok
18:42:49.0205 4896 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\windows\System32\rasauto.dll
18:42:49.0315 4896 RasAuto - ok
18:42:49.0370 4896 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\windows\system32\DRIVERS\rasl2tp.sys
18:42:49.0478 4896 Rasl2tp - ok
18:42:49.0526 4896 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\windows\System32\rasmans.dll
18:42:49.0628 4896 RasMan - ok
18:42:49.0682 4896 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\windows\system32\DRIVERS\raspppoe.sys
18:42:49.0788 4896 RasPppoe - ok
18:42:49.0838 4896 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\windows\system32\DRIVERS\rassstp.sys
18:42:49.0950 4896 RasSstp - ok
18:42:50.0000 4896 rdbss (77f665941019a1594d887a74f301fa2f) C:\windows\system32\DRIVERS\rdbss.sys
18:42:50.0111 4896 rdbss - ok
18:42:50.0146 4896 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\windows\system32\DRIVERS\rdpbus.sys
18:42:50.0195 4896 rdpbus - ok
18:42:50.0213 4896 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\windows\system32\DRIVERS\RDPCDD.sys
18:42:50.0316 4896 RDPCDD - ok
18:42:50.0352 4896 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\windows\system32\drivers\rdpencdd.sys
18:42:50.0458 4896 RDPENCDD - ok
18:42:50.0483 4896 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\windows\system32\drivers\rdprefmp.sys
18:42:50.0575 4896 RDPREFMP - ok
18:42:50.0622 4896 RDPWD (6d76e6433574b058adcb0c50df834492) C:\windows\system32\drivers\RDPWD.sys
18:42:50.0697 4896 RDPWD - ok
18:42:50.0748 4896 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\windows\system32\drivers\rdyboost.sys
18:42:50.0784 4896 rdyboost - ok
18:42:50.0844 4896 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\windows\System32\mprdim.dll
18:42:50.0957 4896 RemoteAccess - ok
18:42:50.0992 4896 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\windows\system32\regsvc.dll
18:42:51.0102 4896 RemoteRegistry - ok
18:42:51.0126 4896 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\windows\System32\RpcEpMap.dll
18:42:51.0236 4896 RpcEptMapper - ok
18:42:51.0267 4896 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\windows\system32\locator.exe
18:42:51.0309 4896 RpcLocator - ok
18:42:51.0357 4896 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\windows\system32\rpcss.dll
18:42:51.0460 4896 RpcSs - ok
18:42:51.0517 4896 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\windows\system32\DRIVERS\rspndr.sys
18:42:51.0626 4896 rspndr - ok
18:42:51.0710 4896 RSUSBSTOR (3ceee53bbf8ba284ff44585cec0162fe) C:\windows\system32\Drivers\RtsUStor.sys
18:42:51.0739 4896 RSUSBSTOR - ok
18:42:51.0824 4896 rtl8192Ce (ffc748d848740d1bc8f330a8879c2674) C:\windows\system32\DRIVERS\rtl8192Ce.sys
18:42:51.0904 4896 rtl8192Ce - ok
18:42:51.0944 4896 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\windows\system32\lsass.exe
18:42:51.0972 4896 SamSs - ok
18:42:52.0068 4896 SASDIFSV (3289766038db2cb14d07dc84392138d5) C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
18:42:52.0102 4896 SASDIFSV - ok
18:42:52.0146 4896 SASKUTIL (58a38e75f3316a83c23df6173d41f2b5) C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
18:42:52.0181 4896 SASKUTIL - ok
18:42:52.0215 4896 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\windows\system32\drivers\sbp2port.sys
18:42:52.0246 4896 sbp2port - ok
18:42:52.0289 4896 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\windows\System32\SCardSvr.dll
18:42:52.0388 4896 SCardSvr - ok
18:42:52.0418 4896 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\windows\system32\DRIVERS\scfilter.sys
18:42:52.0522 4896 scfilter - ok
18:42:52.0611 4896 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\windows\system32\schedsvc.dll
18:42:52.0748 4896 Schedule - ok
18:42:52.0787 4896 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\windows\System32\certprop.dll
18:42:52.0878 4896 SCPolicySvc - ok
18:42:52.0903 4896 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\windows\System32\SDRSVC.dll
18:42:52.0974 4896 SDRSVC - ok
18:42:53.0048 4896 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\windows\system32\drivers\secdrv.sys
18:42:53.0156 4896 secdrv - ok
18:42:53.0195 4896 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\windows\system32\seclogon.dll
18:42:53.0304 4896 seclogon - ok
18:42:53.0331 4896 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\windows\System32\sens.dll
18:42:53.0444 4896 SENS - ok
18:42:53.0470 4896 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\windows\system32\sensrsvc.dll
18:42:53.0549 4896 SensrSvc - ok
18:42:53.0589 4896 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\windows\system32\DRIVERS\serenum.sys
18:42:53.0635 4896 Serenum - ok
18:42:53.0656 4896 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\windows\system32\DRIVERS\serial.sys
18:42:53.0687 4896 Serial - ok
18:42:53.0729 4896 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\windows\system32\DRIVERS\sermouse.sys
18:42:53.0776 4896 sermouse - ok
18:42:53.0832 4896 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\windows\system32\sessenv.dll
18:42:53.0957 4896 SessionEnv - ok
18:42:53.0992 4896 sffdisk (a554811bcd09279536440c964ae35bbf) C:\windows\system32\drivers\sffdisk.sys
18:42:54.0051 4896 sffdisk - ok
18:42:54.0086 4896 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\windows\system32\drivers\sffp_mmc.sys
18:42:54.0125 4896 sffp_mmc - ok
18:42:54.0146 4896 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\windows\system32\drivers\sffp_sd.sys
18:42:54.0195 4896 sffp_sd - ok
18:42:54.0239 4896 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\windows\system32\DRIVERS\sfloppy.sys
18:42:54.0279 4896 sfloppy - ok
18:42:54.0332 4896 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\windows\System32\ipnathlp.dll
18:42:54.0450 4896 SharedAccess - ok
18:42:54.0500 4896 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\windows\System32\shsvcs.dll
18:42:54.0618 4896 ShellHWDetection - ok
18:42:54.0663 4896 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\windows\system32\DRIVERS\SiSRaid2.sys
18:42:54.0692 4896 SiSRaid2 - ok
18:42:54.0702 4896 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\windows\system32\DRIVERS\sisraid4.sys
18:42:54.0733 4896 SiSRaid4 - ok
18:42:54.0761 4896 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\windows\system32\DRIVERS\smb.sys
18:42:54.0865 4896 Smb - ok
18:42:54.0928 4896 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\windows\System32\snmptrap.exe
18:42:54.0974 4896 SNMPTRAP - ok
18:42:55.0002 4896 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\windows\system32\drivers\spldr.sys
18:42:55.0030 4896 spldr - ok
18:42:55.0095 4896 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\windows\System32\spoolsv.exe
18:42:55.0203 4896 Spooler - ok
18:42:55.0426 4896 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\windows\system32\sppsvc.exe
18:42:55.0651 4896 sppsvc - ok
18:42:55.0761 4896 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\windows\system32\sppuinotify.dll
18:42:55.0866 4896 sppuinotify - ok
18:42:55.0943 4896 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\windows\system32\DRIVERS\srv.sys
18:42:56.0036 4896 srv - ok
18:42:56.0091 4896 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\windows\system32\DRIVERS\srv2.sys
18:42:56.0129 4896 srv2 - ok
18:42:56.0169 4896 SrvHsfHDA (0c4540311e11664b245a263e1154cef8) C:\windows\system32\DRIVERS\VSTAZL6.SYS
18:42:56.0208 4896 SrvHsfHDA - ok
18:42:56.0298 4896 SrvHsfV92 (02071d207a9858fbe3a48cbfd59c4a04) C:\windows\system32\DRIVERS\VSTDPV6.SYS
18:42:56.0397 4896 SrvHsfV92 - ok
18:42:56.0551 4896 SrvHsfWinac (18e40c245dbfaf36fd0134a7ef2df396) C:\windows\system32\DRIVERS\VSTCNXT6.SYS
18:42:56.0614 4896 SrvHsfWinac - ok
18:42:56.0654 4896 srvnet (27e461f0be5bff5fc737328f749538c3) C:\windows\system32\DRIVERS\srvnet.sys
18:42:56.0698 4896 srvnet - ok
18:42:56.0756 4896 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\windows\System32\ssdpsrv.dll
18:42:56.0867 4896 SSDPSRV - ok
18:42:56.0900 4896 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\windows\system32\sstpsvc.dll
18:42:56.0997 4896 SstpSvc - ok
18:42:57.0026 4896 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\windows\system32\DRIVERS\stexstor.sys
18:42:57.0055 4896 stexstor - ok
18:42:57.0127 4896 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\windows\System32\wiaservc.dll
18:42:57.0201 4896 stisvc - ok
18:42:57.0237 4896 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\windows\system32\drivers\swenum.sys
18:42:57.0265 4896 swenum - ok
18:42:57.0344 4896 swprv (e08e46fdd841b7184194011ca1955a0b) C:\windows\System32\swprv.dll
18:42:57.0469 4896 swprv - ok
18:42:57.0531 4896 SynTP (470c47daba9ca3966f0ab3f835d7d135) C:\windows\system32\DRIVERS\SynTP.sys
18:42:57.0565 4896 SynTP - ok
18:42:57.0686 4896 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\windows\system32\sysmain.dll
18:42:57.0793 4896 SysMain - ok
18:42:57.0908 4896 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\windows\System32\TabSvc.dll
18:42:57.0969 4896 TabletInputService - ok
18:42:58.0018 4896 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\windows\System32\tapisrv.dll
18:42:58.0132 4896 TapiSrv - ok
18:42:58.0157 4896 TBS (1be03ac720f4d302ea01d40f588162f6) C:\windows\System32\tbssvc.dll
18:42:58.0264 4896 TBS - ok
18:42:58.0430 4896 Tcpip (fc62769e7bff2896035aeed399108162) C:\windows\system32\drivers\tcpip.sys
18:42:58.0539 4896 Tcpip - ok
18:42:58.0775 4896 TCPIP6 (fc62769e7bff2896035aeed399108162) C:\windows\system32\DRIVERS\tcpip.sys
18:42:58.0875 4896 TCPIP6 - ok
18:42:59.0002 4896 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\windows\system32\drivers\tcpipreg.sys
18:42:59.0106 4896 tcpipreg - ok
18:42:59.0152 4896 tdcmdpst (fd542b661bd22fa69ca789ad0ac58c29) C:\windows\system32\DRIVERS\tdcmdpst.sys
18:42:59.0172 4896 tdcmdpst - ok
18:42:59.0215 4896 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\windows\system32\drivers\tdpipe.sys
18:42:59.0274 4896 TDPIPE - ok
18:42:59.0307 4896 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\windows\system32\drivers\tdtcp.sys
18:42:59.0349 4896 TDTCP - ok
18:42:59.0384 4896 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\windows\system32\DRIVERS\tdx.sys
18:42:59.0479 4896 tdx - ok
18:42:59.0521 4896 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\windows\system32\drivers\termdd.sys
18:42:59.0550 4896 TermDD - ok
18:42:59.0608 4896 TermService (2e648163254233755035b46dd7b89123) C:\windows\System32\termsrv.dll
18:42:59.0726 4896 TermService - ok
18:42:59.0752 4896 Themes (f0344071948d1a1fa732231785a0664c) C:\windows\system32\themeservice.dll
18:42:59.0796 4896 Themes - ok
18:42:59.0830 4896 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\windows\system32\mmcss.dll
18:42:59.0924 4896 THREADORDER - ok
18:43:00.0044 4896 TMachInfo (83e91963c4452be6899503cf9ebfd3ed) C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
18:43:00.0066 4896 TMachInfo - ok
18:43:00.0111 4896 TODDSrv (ed32035bdfeced1ad66d459fd9cc1140) C:\Windows\system32\TODDSrv.exe
18:43:00.0137 4896 TODDSrv - ok
18:43:00.0231 4896 TosCoSrv (db9719688c08f42705feb3f6a0c98b91) C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
18:43:00.0270 4896 TosCoSrv - ok
18:43:00.0319 4896 TOSHIBA eco Utility Service (2ab7a4697462edb0c9dfafc529746ba9) C:\Program Files\TOSHIBA\TECO\TecoService.exe
18:43:00.0348 4896 TOSHIBA eco Utility Service - ok
18:43:00.0414 4896 TOSHIBA HDD SSD Alert Service (74c2fa8c3765ee71a9c22182ec108457) C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
18:43:00.0436 4896 TOSHIBA HDD SSD Alert Service - ok
18:43:00.0514 4896 TPCHSrv (97687d094aa597da366e1194b218cc6c) C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
18:43:00.0567 4896 TPCHSrv - ok
18:43:00.0675 4896 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\windows\System32\trkwks.dll
18:43:00.0787 4896 TrkWks - ok
18:43:00.0882 4896 trufos (df219721ddffcbe03aa894b6b6742ba1) C:\windows\system32\DRIVERS\trufos.sys
18:43:00.0923 4896 trufos - ok
18:43:00.0979 4896 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\windows\servicing\TrustedInstaller.exe
18:43:01.0093 4896 TrustedInstaller - ok
18:43:01.0134 4896 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\windows\system32\DRIVERS\tssecsrv.sys
18:43:01.0237 4896 tssecsrv - ok
18:43:01.0279 4896 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\windows\system32\drivers\tsusbflt.sys
18:43:01.0324 4896 TsUsbFlt - ok
18:43:01.0384 4896 tunnel (3566a8daafa27af944f5d705eaa64894) C:\windows\system32\DRIVERS\tunnel.sys
18:43:01.0497 4896 tunnel - ok
18:43:01.0527 4896 TVALZ (550b567f9364d8f7684c3fb3ea665a72) C:\windows\system32\DRIVERS\TVALZ_O.SYS
18:43:01.0548 4896 TVALZ - ok
18:43:01.0594 4896 TVALZFL (9c7191f4b2e49bff47a6c1144b5923fa) C:\windows\system32\DRIVERS\TVALZFL.sys
18:43:01.0613 4896 TVALZFL - ok
18:43:01.0641 4896 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\windows\system32\DRIVERS\uagp35.sys
18:43:01.0672 4896 uagp35 - ok
18:43:01.0725 4896 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\windows\system32\DRIVERS\udfs.sys
18:43:01.0840 4896 udfs - ok
18:43:01.0881 4896 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\windows\system32\UI0Detect.exe
18:43:01.0914 4896 UI0Detect - ok
18:43:01.0948 4896 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\windows\system32\drivers\uliagpkx.sys
18:43:01.0978 4896 uliagpkx - ok
18:43:02.0022 4896 umbus (dc54a574663a895c8763af0fa1ff7561) C:\windows\system32\drivers\umbus.sys
18:43:02.0066 4896 umbus - ok
18:43:02.0096 4896 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\windows\system32\DRIVERS\umpass.sys
18:43:02.0137 4896 UmPass - ok
18:43:02.0334 4896 UNS (7466809e6da561d60c2f1ce8ede3c73f) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
18:43:02.0453 4896 UNS - ok
18:43:02.0601 4896 Update Server (7de3f30967cf77bd1fc440c2b847629a) C:\Program Files\Common Files\Bitdefender\Bitdefender Arrakis Server\bin\arrakis3.exe
18:43:02.0642 4896 Update Server - ok
18:43:02.0759 4896 UPDATESRV (f9d2125e584404079a6a3cda988aa9cc) C:\Program Files\Bitdefender\Bitdefender 2012\updatesrv.exe
18:43:02.0797 4896 UPDATESRV - ok
18:43:02.0927 4896 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\windows\System32\upnphost.dll
18:43:03.0047 4896 upnphost - ok
18:43:03.0118 4896 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\windows\system32\DRIVERS\usbccgp.sys
18:43:03.0171 4896 usbccgp - ok
18:43:03.0216 4896 usbcir (af0892a803fdda7492f595368e3b68e7) C:\windows\system32\drivers\usbcir.sys
18:43:03.0254 4896 usbcir - ok
18:43:03.0271 4896 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\windows\system32\drivers\usbehci.sys
18:43:03.0317 4896 usbehci - ok
18:43:03.0388 4896 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\windows\system32\DRIVERS\usbhub.sys
18:43:03.0436 4896 usbhub - ok
18:43:03.0465 4896 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\windows\system32\drivers\usbohci.sys
18:43:03.0493 4896 usbohci - ok
18:43:03.0527 4896 usbprint (73188f58fb384e75c4063d29413cee3d) C:\windows\system32\DRIVERS\usbprint.sys
18:43:03.0578 4896 usbprint - ok
18:43:03.0619 4896 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\windows\system32\drivers\USBSTOR.SYS
18:43:03.0692 4896 USBSTOR - ok
18:43:03.0720 4896 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\windows\system32\drivers\usbuhci.sys
18:43:03.0764 4896 usbuhci - ok
18:43:03.0824 4896 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\windows\System32\Drivers\usbvideo.sys
18:43:03.0865 4896 usbvideo - ok
18:43:03.0891 4896 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\windows\System32\uxsms.dll
18:43:04.0023 4896 UxSms - ok
18:43:04.0054 4896 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\windows\system32\lsass.exe
18:43:04.0082 4896 VaultSvc - ok
18:43:04.0129 4896 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\windows\system32\drivers\vdrvroot.sys
18:43:04.0157 4896 vdrvroot - ok
18:43:04.0229 4896 vds (8d6b481601d01a456e75c3210f1830be) C:\windows\System32\vds.exe
18:43:04.0337 4896 vds - ok
18:43:04.0374 4896 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\windows\system32\DRIVERS\vgapnp.sys
18:43:04.0411 4896 vga - ok
18:43:04.0428 4896 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\windows\System32\drivers\vga.sys
18:43:04.0537 4896 VgaSave - ok
18:43:04.0580 4896 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\windows\system32\drivers\vhdmp.sys
18:43:04.0616 4896 vhdmp - ok
18:43:04.0651 4896 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\windows\system32\drivers\viaide.sys
18:43:04.0679 4896 viaide - ok
18:43:04.0698 4896 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\windows\system32\drivers\volmgr.sys
18:43:04.0727 4896 volmgr - ok
18:43:04.0784 4896 volmgrx (a255814907c89be58b79ef2f189b843b) C:\windows\system32\drivers\volmgrx.sys
18:43:04.0825 4896 volmgrx - ok
18:43:04.0877 4896 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\windows\system32\drivers\volsnap.sys
18:43:04.0917 4896 volsnap - ok
18:43:04.0969 4896 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\windows\system32\DRIVERS\vsmraid.sys
18:43:05.0003 4896 vsmraid - ok
18:43:05.0118 4896 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\windows\system32\vssvc.exe
18:43:05.0272 4896 VSS - ok
18:43:05.0385 4896 VSSERV - ok
18:43:05.0500 4896 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\windows\system32\DRIVERS\vwifibus.sys
18:43:05.0547 4896 vwifibus - ok
18:43:05.0594 4896 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\windows\system32\DRIVERS\vwififlt.sys
18:43:05.0648 4896 vwififlt - ok
18:43:05.0710 4896 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\windows\system32\w32time.dll
18:43:05.0816 4896 W32Time - ok
18:43:05.0836 4896 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\windows\system32\DRIVERS\wacompen.sys
18:43:05.0871 4896 WacomPen - ok
18:43:05.0930 4896 WANARP (356afd78a6ed4457169241ac3965230c) C:\windows\system32\DRIVERS\wanarp.sys
18:43:06.0038 4896 WANARP - ok
18:43:06.0047 4896 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\windows\system32\DRIVERS\wanarp.sys
18:43:06.0139 4896 Wanarpv6 - ok
18:43:06.0257 4896 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\windows\system32\Wat\WatAdminSvc.exe
18:43:06.0339 4896 WatAdminSvc - ok
18:43:06.0453 4896 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\windows\system32\wbengine.exe
18:43:06.0550 4896 wbengine - ok
18:43:06.0656 4896 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\windows\System32\wbiosrvc.dll
18:43:06.0703 4896 WbioSrvc - ok
18:43:06.0755 4896 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\windows\System32\wcncsvc.dll
18:43:06.0819 4896 wcncsvc - ok
18:43:06.0856 4896 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\windows\System32\WcsPlugInService.dll
18:43:06.0912 4896 WcsPlugInService - ok
18:43:06.0971 4896 Wd (72889e16ff12ba0f235467d6091b17dc) C:\windows\system32\DRIVERS\wd.sys
18:43:06.0998 4896 Wd - ok
18:43:07.0051 4896 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\windows\system32\drivers\Wdf01000.sys
18:43:07.0106 4896 Wdf01000 - ok
18:43:07.0130 4896 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\windows\system32\wdi.dll
18:43:07.0233 4896 WdiServiceHost - ok
18:43:07.0239 4896 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\windows\system32\wdi.dll
18:43:07.0287 4896 WdiSystemHost - ok
18:43:07.0338 4896 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\windows\System32\webclnt.dll
18:43:07.0403 4896 WebClient - ok
18:43:07.0448 4896 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\windows\system32\wecsvc.dll
18:43:07.0560 4896 Wecsvc - ok
18:43:07.0572 4896 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\windows\System32\wercplsupport.dll
18:43:07.0679 4896 wercplsupport - ok
18:43:07.0720 4896 WerSvc (6d137963730144698cbd10f202e9f251) C:\windows\System32\WerSvc.dll
18:43:07.0832 4896 WerSvc - ok
18:43:07.0897 4896 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\windows\system32\DRIVERS\wfplwf.sys
18:43:07.0990 4896 WfpLwf - ok
18:43:08.0007 4896 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\windows\system32\drivers\wimmount.sys
18:43:08.0035 4896 WIMMount - ok
18:43:08.0048 4896 WinHttpAutoProxySvc - ok
18:43:08.0115 4896 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\windows\system32\wbem\WMIsvc.dll
18:43:08.0232 4896 Winmgmt - ok
18:43:08.0368 4896 WinRM (bcb1310604aa415c4508708975b3931e) C:\windows\system32\WsmSvc.dll
18:43:08.0536 4896 WinRM - ok
18:43:08.0706 4896 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\windows\System32\wlansvc.dll
18:43:08.0775 4896 Wlansvc - ok
18:43:08.0868 4896 wlcrasvc (06c8fa1cf39de6a735b54d906ba791c6) C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
18:43:08.0892 4896 wlcrasvc - ok
18:43:09.0077 4896 wlidsvc (7e47c328fc4768cb8beafbcfafa70362) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
18:43:09.0196 4896 wlidsvc - ok
18:43:09.0322 4896 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\windows\system32\drivers\wmiacpi.sys
18:43:09.0362 4896 WmiAcpi - ok
18:43:09.0433 4896 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\windows\system32\wbem\WmiApSrv.exe
18:43:09.0486 4896 wmiApSrv - ok
18:43:09.0558 4896 WMPNetworkSvc - ok
18:43:09.0607 4896 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\windows\System32\wpcsvc.dll
18:43:09.0651 4896 WPCSvc - ok
18:43:09.0690 4896 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\windows\system32\wpdbusenum.dll
18:43:09.0759 4896 WPDBusEnum - ok
18:43:09.0787 4896 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\windows\system32\drivers\ws2ifsl.sys
18:43:09.0897 4896 ws2ifsl - ok
18:43:09.0923 4896 WSearch - ok
18:43:10.0089 4896 wuauserv (9df12edbc698b0bc353b3ef84861e430) C:\windows\system32\wuaueng.dll
18:43:10.0276 4896 wuauserv - ok
18:43:10.0404 4896 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\windows\system32\drivers\WudfPf.sys
18:43:10.0508 4896 WudfPf - ok
18:43:10.0557 4896 WUDFRd (cf8d590be3373029d57af80914190682) C:\windows\system32\DRIVERS\WUDFRd.sys
18:43:10.0650 4896 WUDFRd - ok
18:43:10.0689 4896 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\windows\System32\WUDFSvc.dll
18:43:10.0783 4896 wudfsvc - ok
18:43:10.0825 4896 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\windows\System32\wwansvc.dll
18:43:10.0895 4896 WwanSvc - ok
18:43:10.0942 4896 MBR (0x1B8) (5b5e648d12fcadc244c1ec30318e1eb9) \Device\Harddisk0\DR0
18:43:11.0055 4896 \Device\Harddisk0\DR0 - ok
18:43:11.0090 4896 Boot (0x1200) (0c80e75223ad68866696b5837df22cac) \Device\Harddisk0\DR0\Partition0
18:43:11.0092 4896 \Device\Harddisk0\DR0\Partition0 - ok
18:43:11.0093 4896 ============================================================
18:43:11.0093 4896 Scan finished
18:43:11.0093 4896 ============================================================
18:43:11.0109 4496 Detected object count: 1
18:43:11.0109 4496 Actual detected object count: 1
18:50:46.0153 4496 C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe - copied to quarantine
18:50:46.0154 4496 IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Quarantine

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-04-27 18:55:21
-----------------------------
18:55:21.537 OS Version: Windows x64 6.1.7601 Service Pack 1
18:55:21.537 Number of processors: 2 586 0x2505
18:55:21.539 ComputerName: BETH-PC UserName: Beth
18:55:22.908 Initialize success
18:55:41.775 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
18:55:41.779 Disk 0 Vendor: TOSHIBA_ GH10 Size: 476940MB BusType: 3
18:55:41.791 Disk 0 MBR read successfully
18:55:41.796 Disk 0 MBR scan
18:55:41.800 Disk 0 Windows VISTA default MBR code
18:55:41.816 Disk 0 Partition 1 80 (A) 27 Hidden NTFS WinRE NTFS 1500 MB offset 2048
18:55:41.828 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 463437 MB offset 3074048
18:55:41.855 Disk 0 Partition 3 00 17 Hidd HPFS/NTFS NTFS 12002 MB offset 952193024
18:55:41.909 Disk 0 scanning C:\windows\system32\drivers
18:55:48.955 Service scanning
18:56:29.550 Modules scanning
18:56:29.565 Disk 0 trace - called modules:
18:56:29.614 ntoskrnl.exe CLASSPNP.SYS disk.sys iaStor.sys hal.dll
18:56:29.622 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8004b78740]
18:56:29.632 3 CLASSPNP.SYS[fffff88001d9743f] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa80049e4050]
18:56:29.643 Scan finished successfully
18:56:52.604 Disk 0 MBR has been saved successfully to "C:\Users\Beth\Documents\MBR.dat"
18:56:52.614 The log file has been saved successfully to "C:\Users\Beth\Documents\aswMBR.txt"


aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-04-27 18:55:21
-----------------------------
18:55:21.537 OS Version: Windows x64 6.1.7601 Service Pack 1
18:55:21.537 Number of processors: 2 586 0x2505
18:55:21.539 ComputerName: BETH-PC UserName: Beth
18:55:22.908 Initialize success
18:55:41.775 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
18:55:41.779 Disk 0 Vendor: TOSHIBA_ GH10 Size: 476940MB BusType: 3
18:55:41.791 Disk 0 MBR read successfully
18:55:41.796 Disk 0 MBR scan
18:55:41.800 Disk 0 Windows VISTA default MBR code
18:55:41.816 Disk 0 Partition 1 80 (A) 27 Hidden NTFS WinRE NTFS 1500 MB offset 2048
18:55:41.828 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 463437 MB offset 3074048
18:55:41.855 Disk 0 Partition 3 00 17 Hidd HPFS/NTFS NTFS 12002 MB offset 952193024
18:55:41.909 Disk 0 scanning C:\windows\system32\drivers
18:55:48.955 Service scanning
18:56:29.550 Modules scanning
18:56:29.565 Disk 0 trace - called modules:
18:56:29.614 ntoskrnl.exe CLASSPNP.SYS disk.sys iaStor.sys hal.dll
18:56:29.622 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8004b78740]
18:56:29.632 3 CLASSPNP.SYS[fffff88001d9743f] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa80049e4050]
18:56:29.643 Scan finished successfully
18:56:52.604 Disk 0 MBR has been saved successfully to "C:\Users\Beth\Documents\MBR.dat"
18:56:52.614 The log file has been saved successfully to "C:\Users\Beth\Documents\aswMBR.txt"
18:58:44.518 Disk 0 MBR has been saved successfully to "C:\Users\Beth\Documents\MBR.dat"
18:58:44.528 The log file has been saved successfully to "C:\Users\Beth\Documents\aswMBR.txt"


aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-04-27 18:55:21
-----------------------------
18:55:21.537 OS Version: Windows x64 6.1.7601 Service Pack 1
18:55:21.537 Number of processors: 2 586 0x2505
18:55:21.539 ComputerName: BETH-PC UserName: Beth
18:55:22.908 Initialize success
18:55:41.775 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
18:55:41.779 Disk 0 Vendor: TOSHIBA_ GH10 Size: 476940MB BusType: 3
18:55:41.791 Disk 0 MBR read successfully
18:55:41.796 Disk 0 MBR scan
18:55:41.800 Disk 0 Windows VISTA default MBR code
18:55:41.816 Disk 0 Partition 1 80 (A) 27 Hidden NTFS WinRE NTFS 1500 MB offset 2048
18:55:41.828 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 463437 MB offset 3074048
18:55:41.855 Disk 0 Partition 3 00 17 Hidd HPFS/NTFS NTFS 12002 MB offset 952193024
18:55:41.909 Disk 0 scanning C:\windows\system32\drivers
18:55:48.955 Service scanning
18:56:29.550 Modules scanning
18:56:29.565 Disk 0 trace - called modules:
18:56:29.614 ntoskrnl.exe CLASSPNP.SYS disk.sys iaStor.sys hal.dll
18:56:29.622 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8004b78740]
18:56:29.632 3 CLASSPNP.SYS[fffff88001d9743f] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa80049e4050]
18:56:29.643 Scan finished successfully
18:56:52.604 Disk 0 MBR has been saved successfully to "C:\Users\Beth\Documents\MBR.dat"
18:56:52.614 The log file has been saved successfully to "C:\Users\Beth\Documents\aswMBR.txt"
18:58:44.518 Disk 0 MBR has been saved successfully to "C:\Users\Beth\Documents\MBR.dat"
18:58:44.528 The log file has been saved successfully to "C:\Users\Beth\Documents\aswMBR.txt"
18:59:53.842 Disk 0 MBR has been saved successfully to "C:\Users\Beth\Documents\MBR.dat"
18:59:53.853 The log file has been saved successfully to "C:\Users\Beth\Documents\aswMBR.txt"

Edited by sweetdaughter99, 27 April 2012 - 06:02 PM.


#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:36 AM

Posted 27 April 2012 - 06:22 PM

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply


Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.


Download and install Internet explorer 9 from here


http://download.microsoft.com/download/C/1/6/C167B427-722E-4665-9A40-A37BC5222B0A/IE9-Windows7-x64-enu.exe


Let me know if you still face redirects

good luck

Edited by narenxp, 27 April 2012 - 06:23 PM.


#5 sweetdaughter99

sweetdaughter99
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Indiana
  • Local time:10:36 AM

Posted 27 April 2012 - 06:46 PM

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply


Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.


Download and install Internet explorer 9 from here


http://download.microsoft.com/download/C/1/6/C167B427-722E-4665-9A40-A37BC5222B0A/IE9-Windows7-x64-enu.exe


Let me know if you still face redirects

good luck



Thank you will work on this tomorrow. I appreciate the time you have spent on my behalf :thumbup2:

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:10:36 AM

Posted 27 April 2012 - 06:55 PM

:thumbup2:




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users