Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Win32/Conficker worm?? -SLOW COMPUTER


  • Please log in to reply
27 replies to this topic

#1 barracudacool

barracudacool

  • Members
  • 93 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:03:34 AM

Posted 22 May 2012 - 08:37 AM

All of a sudden my computer has come to almost a complete standstill when trying to access the internet. It grinds and grinds. Tried to download malwarebytes updates but it just freezes. Suspect some kind of malware or virus but neither spybot or malwarebytes can finish running. Suspect Win32/Conficker worm

Edited by hamluis, 22 May 2012 - 09:57 AM.
Moved from Malware Removal Logs to Am I Infected - Hamluis.


BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,556 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:02:34 AM

Posted 22 May 2012 - 02:54 PM

Hello, have you tried running from Safe mode with networking??
Reboot into Safe Mode with Networking
How to start Windows 7 in Safe Mode

<<><<><><><><><><><><><><><><><><><><><><><>
Reboot into Safe Mode with Networking
How to enter safe mode(XP/Vista)
Using the F8 Method
Restart your computer.
When the machine first starts again it will generally list some equipment that is installed in your machine, amount of memory, hard drives installed etc. At this point you should gently tap the F8 key repeatedly until you are presented with a Windows XP Advanced Options menu.
Select the option for Safe Mode with Networking using the arrow keys.
Then press enter on your keyboard to boot into Safe Mode
.


>>>> Download this file and doubleclick on it to run it. Allow the information to be merged with the registry.

Run RKill....


Download and Run RKill
  • Please download RKill by Grinler from one of the 4 links below and save it to your desktop.

    Link 1
    Link 2
    Link 3
    Link 4

  • Before we begin, you should disable your anti-malware softwares you have installed so they do not interfere RKill running as some anti-malware softwares detect RKill as malicious. Please refer to this page if you are not sure how.
  • Double-click on Rkill on your desktop to run it. (If you are using Windows Vista, please right-click on it and select Run As Administrator)
  • A black screen will appear and then disappear. Please do not worry, that is normal. This means that the tool has been successfully executed.
  • If nothing happens or if the tool does not run, please let me know in your next reply

Do not reboot your computer after running rkill as the malware programs will start again. Or if rebooting is required run it again.


If you continue having problems running rkill.com, you can download iExplore.exe or eXplorer.exe, which are renamed copies of rkill.com, and try them instead.




Please download TDSSKiller.zip and and extract it.
  • Run TDSSKiller.exe.
  • Click Start scan.
  • When it is finished the utility outputs a list of detected objects with description.
    The utility automatically selects an action (Cure or Delete) for malicious objects.
    The utility prompts the user to select an action to apply to suspicious objects (Skip, by default). Let the options as it is and click Continue
  • Let reboot if needed and tell me if the tool needed a reboot.
  • Click on Report and post the contents of the text file that will open.

    Note: By default, the utility outputs the log into system disk (it is usually the disk with installed operating system, C:\) root folder. The Log has a name like: TDSSKiller.Version_Date_Time_log.txt.



If TDSSKiller does not run, try renaming it. To do this, right-click on TDSSKiller.exe, select Rename and give it a random name with the .com file extension (i.e. 123abc.com). If you do not see the file extension, please refer to these[/color] instructions. In some cases it may be necessary to redownload TDSSKiller and randomly rename it before downloading and saving to the computer.



Next run Superantisypware (SAS):

Please download and scan with SUPERAntiSpyware Free
  • Double-click SUPERAntiSypware.exe and use the default settings for installation.
    For instructions with screenshots, please refer to the How to use SUPERAntiSpyware to scan and remove malware from your computer Guide.
  • An icon will be created on your desktop. Double-click that icon to launch the program.
  • If it will not start, go to Start > All Prgrams > SUPERAntiSpyware and click on Alternate Start.
  • If asked to update the program definitions, click "Yes". If not, update the definitions before scanning by selecting "Check for Updates". (If you encounter any problems while downloading the updates, manually download them from here. Double-click on the hyperlink for Download Installer and save SASDEFINITIONS.EXE to your desktop. Then double-click on SASDEFINITIONS.EXE to install the definitions.)
  • In the Main Menu, click the Preferences... button.
  • Click the "General and Startup" tab, and under Start-up Options, make sure "Start SUPERAntiSpyware when Windows starts" box is unchecked.
  • Click the "Scanning Control" tab, and under Scanner Options, make sure the following are checked (leave all other options as they are set):
    • Close browsers before scanning.
    • Scan for tracking cookies.
    • Terminate memory threats before quarantining.
  • Click the "Close" button to leave the Control Center screen.
  • Back on the main screen, under "Select Scan Type" check the box for Complete Scan.
  • If your computer is badly infected, be sure to check the box next to Enable Rescue Scan (Highly Infected Systems ONLY).
  • Click the Scan your computer... button.
  • After the scan is complete, a Scan Summary box will appear with potentially harmful items that were detected. Click "OK".
  • Make sure everything has a checkmark next to it and click "Next".
  • A notification will appear that "Quarantine and Removal is Complete". Click "OK" and then click the "Finish" button to return to the main menu.
  • If asked if you want to reboot, click "Yes" and reboot normally.

To retrieve the scan log after reboot, launch SUPERAntiSpyware again.
  • Click the View Scan Logs button at the bottom.
  • This will open the Scanner Logs Window.
  • Click on the log to highlight it and then click on View Selected Log to open it.
  • Copy and paste the scan log results in your next reply.
-- Some types of malware will disable security tools. If SUPERAntiSpyware will not install, please refer to these instructions for using the SUPERAntiSpyware Installer. If SUPERAntiSpyware is already installed but will not run, then follow the instructions for using RUNSAS.EXE to launch the program.




Next run MBAM (MalwareBytes):

Please download Malwarebytes Anti-Malware Posted Image and save it to your desktop.
  • Important!! When you save the mbam-setup file, rename it to something random (such as 123abc.exe) before beginning the download.
Malwarebytes may "make changes to your registry" as part of its disinfection routine. If using other security programs that detect registry changes (ie Spybot's Teatimer), they may interfere or alert you. Temporarily disable such programs or permit them to allow the changes.

  • Make sure you are connected to the Internet and double-click on the renamed file to install the application.
  • When the installation begins, follow the prompts and do not make any changes to default settings.
  • Malwarebytes will automatically start and you will be asked to update the program before performing a scan.
  • If an update is found, the program will automatically update itself. Press the OK button and continue.
  • If you cannot update Malwarebytes or use the Internet to download any files to the infected computer, manually update the database by following the instructions in FAQ Section A: 4. Issues.
  • Under the Scanner tab, make sure the "Perform Quick Scan" option is selected.
  • Click on the Scan button.
  • When finished, a message box will say "The scan completed successfully. Click 'Show Results' to display all objects found".
  • Click OK to close the message box, then click the Show Results button to see a list of any malware that was found.
  • Make sure that everything is checked and then click Remove Selected.
  • When removal is completed, a log report will open in Notepad.
  • The log is automatically saved and can be viewed by clicking the Logs tab.
  • Copy and paste the contents of that report in your next reply. Be sure to post the complete log to include the top portion which shows the database version and your operating system.
  • Exit Malwarebytes when done.
[color=green]Note: If Malwarebytes encounters a file that is difficult to remove, you will be asked to reboot your computer so it can proceed with the disinfection process. If asked to restart the computer, please do so immediately. Failure to reboot normally will prevent Malwarebytes from removing all the malware.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 barracudacool

barracudacool
  • Topic Starter

  • Members
  • 93 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:03:34 AM

Posted 22 May 2012 - 04:39 PM

Heres the report from the rkill. It doesnt appear to have found anything.

17:35:45.0974 0236 TDSS rootkit removing tool 2.7.36.0 May 21 2012 16:40:16
17:35:46.0245 0236 ============================================================
17:35:46.0245 0236 Current date / time: 2012/05/22 17:35:46.0245
17:35:46.0245 0236 SystemInfo:
17:35:46.0245 0236
17:35:46.0245 0236 OS Version: 6.1.7601 ServicePack: 1.0
17:35:46.0245 0236 Product type: Workstation
17:35:46.0245 0236 ComputerName: MELISSA-PC
17:35:46.0245 0236 UserName: melissa
17:35:46.0245 0236 Windows directory: C:\Windows
17:35:46.0245 0236 System windows directory: C:\Windows
17:35:46.0245 0236 Processor architecture: Intel x86
17:35:46.0245 0236 Number of processors: 2
17:35:46.0245 0236 Page size: 0x1000
17:35:46.0245 0236 Boot type: Safe boot with network
17:35:46.0245 0236 ============================================================
17:35:46.0676 0236 Drive \Device\Harddisk0\DR0 - Size: 0x2540900000 (149.01 Gb), SectorSize: 0x200, Cylinders: 0x4BFB, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
17:35:46.0677 0236 ============================================================
17:35:46.0677 0236 \Device\Harddisk0\DR0:
17:35:46.0677 0236 MBR partitions:
17:35:46.0677 0236 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x36E8E, BlocksNum 0x129CA3AD
17:35:46.0677 0236 ============================================================
17:35:46.0729 0236 C: <-> \Device\Harddisk0\DR0\Partition0
17:35:46.0729 0236 ============================================================
17:35:46.0729 0236 Initialize success
17:35:46.0729 0236 ============================================================
17:35:50.0825 1612 ============================================================
17:35:50.0825 1612 Scan started
17:35:50.0825 1612 Mode: Manual;
17:35:50.0825 1612 ============================================================
17:35:51.0103 1612 1394ohci (1b133875b8aa8ac48969bd3458afe9f5) C:\Windows\system32\drivers\1394ohci.sys
17:35:51.0128 1612 1394ohci - ok
17:35:51.0194 1612 ACPI (cea80c80bed809aa0da6febc04733349) C:\Windows\system32\drivers\ACPI.sys
17:35:51.0215 1612 ACPI - ok
17:35:51.0252 1612 AcpiPmi (1efbc664abff416d1d07db115dcb264f) C:\Windows\system32\drivers\acpipmi.sys
17:35:51.0253 1612 AcpiPmi - ok
17:35:51.0369 1612 ADIHdAudAddService (9e5ae3da1956a7825cc5869be3350a96) C:\Windows\system32\drivers\ADIHdAud.sys
17:35:51.0393 1612 ADIHdAudAddService - ok
17:35:51.0541 1612 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
17:35:51.0551 1612 AdobeARMservice - ok
17:35:51.0649 1612 AdobeFlashPlayerUpdateSvc (76d5a3d2a50402a0b9b6ed13c4371e79) C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
17:35:51.0674 1612 AdobeFlashPlayerUpdateSvc - ok
17:35:51.0767 1612 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\Windows\system32\drivers\adp94xx.sys
17:35:51.0786 1612 adp94xx - ok
17:35:51.0825 1612 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\Windows\system32\drivers\adpahci.sys
17:35:51.0854 1612 adpahci - ok
17:35:51.0897 1612 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\Windows\system32\drivers\adpu320.sys
17:35:51.0921 1612 adpu320 - ok
17:35:52.0019 1612 ADVService (7233688fc422ef657e082309e6180142) C:\Program Files\Amazon\Amazon Unbox Video\ADVWindowsClientService.exe
17:35:52.0020 1612 ADVService - ok
17:35:52.0061 1612 AeLookupSvc (8b5eefeec1e6d1a72a06c526628ad161) C:\Windows\System32\aelupsvc.dll
17:35:52.0062 1612 AeLookupSvc - ok
17:35:52.0123 1612 AFD (9ebbba55060f786f0fcaa3893bfa2806) C:\Windows\system32\drivers\afd.sys
17:35:52.0140 1612 AFD - ok
17:35:52.0159 1612 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\Windows\system32\drivers\agp440.sys
17:35:52.0161 1612 agp440 - ok
17:35:52.0216 1612 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\Windows\system32\drivers\djsvs.sys
17:35:52.0217 1612 aic78xx - ok
17:35:52.0269 1612 ALG (18a54e132947cd98fea9accc57f98f13) C:\Windows\System32\alg.exe
17:35:52.0271 1612 ALG - ok
17:35:52.0309 1612 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\Windows\system32\drivers\aliide.sys
17:35:52.0310 1612 aliide - ok
17:35:52.0361 1612 AMD External Events Utility (912935c4df55bec1c951363d19c9ba92) C:\Windows\system32\atiesrxx.exe
17:35:52.0396 1612 AMD External Events Utility - ok
17:35:52.0425 1612 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\Windows\system32\drivers\amdagp.sys
17:35:52.0427 1612 amdagp - ok
17:35:52.0439 1612 amdide (cd5914170297126b6266860198d1d4f0) C:\Windows\system32\drivers\amdide.sys
17:35:52.0440 1612 amdide - ok
17:35:52.0515 1612 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\Windows\system32\drivers\amdk8.sys
17:35:52.0516 1612 AmdK8 - ok
17:35:52.0802 1612 amdkmdag (82563243a0c2b6864e24846820b57d52) C:\Windows\system32\DRIVERS\atikmdag.sys
17:35:52.0925 1612 amdkmdag - ok
17:35:53.0100 1612 amdkmdap (4a9f47a08d29510afa24638540071a60) C:\Windows\system32\DRIVERS\atikmpag.sys
17:35:53.0116 1612 amdkmdap - ok
17:35:53.0163 1612 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\Windows\system32\drivers\amdppm.sys
17:35:53.0164 1612 AmdPPM - ok
17:35:53.0215 1612 amdsata (d320bf87125326f996d4904fe24300fc) C:\Windows\system32\drivers\amdsata.sys
17:35:53.0216 1612 amdsata - ok
17:35:53.0250 1612 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\Windows\system32\drivers\amdsbs.sys
17:35:53.0267 1612 amdsbs - ok
17:35:53.0297 1612 amdxata (46387fb17b086d16dea267d5be23a2f2) C:\Windows\system32\drivers\amdxata.sys
17:35:53.0298 1612 amdxata - ok
17:35:53.0316 1612 AppID (aea177f783e20150ace5383ee368da19) C:\Windows\system32\drivers\appid.sys
17:35:53.0318 1612 AppID - ok
17:35:53.0357 1612 AppIDSvc (62a9c86cb6085e20db4823e4e97826f5) C:\Windows\System32\appidsvc.dll
17:35:53.0358 1612 AppIDSvc - ok
17:35:53.0390 1612 Appinfo (fb1959012294d6ad43e5304df65e3c26) C:\Windows\System32\appinfo.dll
17:35:53.0391 1612 Appinfo - ok
17:35:53.0541 1612 Apple Mobile Device (7ef47644b74ebe721cc32211d3c35e76) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
17:35:53.0544 1612 Apple Mobile Device - ok
17:35:53.0590 1612 arc (2932004f49677bd84dbc72edb754ffb3) C:\Windows\system32\drivers\arc.sys
17:35:53.0591 1612 arc - ok
17:35:53.0608 1612 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\Windows\system32\drivers\arcsas.sys
17:35:53.0614 1612 arcsas - ok
17:35:53.0643 1612 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\Windows\system32\DRIVERS\asyncmac.sys
17:35:53.0644 1612 AsyncMac - ok
17:35:53.0681 1612 atapi (338c86357871c167a96ab976519bf59e) C:\Windows\system32\drivers\atapi.sys
17:35:53.0681 1612 atapi - ok
17:35:53.0968 1612 atikmdag (82563243a0c2b6864e24846820b57d52) C:\Windows\system32\DRIVERS\atikmdag.sys
17:35:53.0994 1612 atikmdag - ok
17:35:54.0134 1612 AudioEndpointBuilder (ce3b4e731638d2ef62fcb419be0d39f0) C:\Windows\System32\Audiosrv.dll
17:35:54.0153 1612 AudioEndpointBuilder - ok
17:35:54.0156 1612 Audiosrv (ce3b4e731638d2ef62fcb419be0d39f0) C:\Windows\System32\Audiosrv.dll
17:35:54.0158 1612 Audiosrv - ok
17:35:54.0179 1612 AxInstSV (6e30d02aac9cac84f421622e3a2f6178) C:\Windows\System32\AxInstSV.dll
17:35:54.0186 1612 AxInstSV - ok
17:35:54.0271 1612 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\Windows\system32\drivers\bxvbdx.sys
17:35:54.0289 1612 b06bdrv - ok
17:35:54.0347 1612 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\Windows\system32\DRIVERS\b57nd60x.sys
17:35:54.0363 1612 b57nd60x - ok
17:35:54.0423 1612 BDESVC (ee1e9c3bb8228ae423dd38db69128e71) C:\Windows\System32\bdesvc.dll
17:35:54.0424 1612 BDESVC - ok
17:35:54.0471 1612 Beep (505506526a9d467307b3c393dedaf858) C:\Windows\system32\drivers\Beep.sys
17:35:54.0471 1612 Beep - ok
17:35:54.0536 1612 BFE (1e2bac209d184bb851e1a187d8a29136) C:\Windows\System32\bfe.dll
17:35:54.0549 1612 BFE - ok
17:35:54.0776 1612 BHDrvx86 (a503d32ae26f77cb942aed530112edaa) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\Definitions\BASHDefs\20120507.001\BHDrvx86.sys
17:35:54.0801 1612 BHDrvx86 - ok
17:35:54.0859 1612 BITS (e585445d5021971fae10393f0f1c3961) C:\Windows\System32\qmgr.dll
17:35:54.0904 1612 BITS - ok
17:35:54.0974 1612 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\Windows\system32\DRIVERS\blbdrive.sys
17:35:54.0975 1612 blbdrive - ok
17:35:55.0064 1612 Bonjour Service (db5bea73edaf19ac68b2c0fad0f92b1a) C:\Program Files\Bonjour\mDNSResponder.exe
17:35:55.0082 1612 Bonjour Service - ok
17:35:55.0128 1612 bowser (8f2da3028d5fcbd1a060a3de64cd6506) C:\Windows\system32\DRIVERS\bowser.sys
17:35:55.0130 1612 bowser - ok
17:35:55.0143 1612 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\BrFiltLo.sys
17:35:55.0144 1612 BrFiltLo - ok
17:35:55.0189 1612 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\BrFiltUp.sys
17:35:55.0190 1612 BrFiltUp - ok
17:35:55.0253 1612 Browser (6e11f33d14d020f58d5e02e4d67dfa19) C:\Windows\System32\browser.dll
17:35:55.0258 1612 Browser - ok
17:35:55.0299 1612 Brserid (845b8ce732e67f3b4133164868c666ea) C:\Windows\System32\Drivers\Brserid.sys
17:35:55.0322 1612 Brserid - ok
17:35:55.0338 1612 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\System32\Drivers\BrSerWdm.sys
17:35:55.0340 1612 BrSerWdm - ok
17:35:55.0351 1612 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\System32\Drivers\BrUsbMdm.sys
17:35:55.0352 1612 BrUsbMdm - ok
17:35:55.0377 1612 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\System32\Drivers\BrUsbSer.sys
17:35:55.0378 1612 BrUsbSer - ok
17:35:55.0400 1612 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\Windows\system32\drivers\bthmodem.sys
17:35:55.0402 1612 BTHMODEM - ok
17:35:55.0454 1612 bthserv (1df19c96eef6c29d1c3e1a8678e07190) C:\Windows\system32\bthserv.dll
17:35:55.0455 1612 bthserv - ok
17:35:55.0493 1612 BVRPMPR5 (248dfa5762dde38dfddbbd44149e9d7a) C:\Windows\system32\drivers\BVRPMPR5.SYS
17:35:55.0494 1612 BVRPMPR5 - ok
17:35:55.0543 1612 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\Windows\system32\DRIVERS\cdfs.sys
17:35:55.0544 1612 cdfs - ok
17:35:55.0579 1612 cdrom (be167ed0fdb9c1fa1133953c18d5a6c9) C:\Windows\system32\DRIVERS\cdrom.sys
17:35:55.0586 1612 cdrom - ok
17:35:55.0621 1612 CertPropSvc (319c6b309773d063541d01df8ac6f55f) C:\Windows\System32\certprop.dll
17:35:55.0623 1612 CertPropSvc - ok
17:35:55.0665 1612 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\Windows\system32\drivers\circlass.sys
17:35:55.0666 1612 circlass - ok
17:35:55.0696 1612 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\Windows\system32\CLFS.sys
17:35:55.0725 1612 CLFS - ok
17:35:55.0851 1612 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:35:55.0893 1612 clr_optimization_v2.0.50727_32 - ok
17:35:55.0980 1612 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:35:56.0061 1612 clr_optimization_v4.0.30319_32 - ok
17:35:56.0096 1612 CmBatt (dea805815e587dad1dd2c502220b5616) C:\Windows\system32\drivers\CmBatt.sys
17:35:56.0097 1612 CmBatt - ok
17:35:56.0109 1612 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\Windows\system32\drivers\cmdide.sys
17:35:56.0110 1612 cmdide - ok
17:35:56.0139 1612 CNG (6427525d76f61d0c519b008d3680e8e7) C:\Windows\system32\Drivers\cng.sys
17:35:56.0157 1612 CNG - ok
17:35:56.0171 1612 Compbatt (a6023d3823c37043986713f118a89bee) C:\Windows\system32\drivers\compbatt.sys
17:35:56.0172 1612 Compbatt - ok
17:35:56.0204 1612 CompositeBus (cbe8c58a8579cfe5fccf809e6f114e89) C:\Windows\system32\DRIVERS\CompositeBus.sys
17:35:56.0205 1612 CompositeBus - ok
17:35:56.0211 1612 COMSysApp - ok
17:35:56.0230 1612 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\Windows\system32\drivers\crcdisk.sys
17:35:56.0231 1612 crcdisk - ok
17:35:56.0281 1612 CryptSvc (a585bebf7d054bd9618eda0922d5484a) C:\Windows\system32\cryptsvc.dll
17:35:56.0294 1612 CryptSvc - ok
17:35:56.0335 1612 DcomLaunch (7660f01d3b38aca1747e397d21d790af) C:\Windows\system32\rpcss.dll
17:35:56.0353 1612 DcomLaunch - ok
17:35:56.0493 1612 dcpsysmgrsvc (80e05edf13f4d2f31fa53f178de3eb83) C:\Program Files\Dell\Dell ControlPoint\System Manager\DCPSysMgrSvc.exe
17:35:56.0527 1612 dcpsysmgrsvc - ok
17:35:56.0577 1612 defragsvc (8d6e10a2d9a5eed59562d9b82cf804e1) C:\Windows\System32\defragsvc.dll
17:35:56.0597 1612 defragsvc - ok
17:35:56.0648 1612 DfsC (f024449c97ec1e464aaffda18593db88) C:\Windows\system32\Drivers\dfsc.sys
17:35:56.0649 1612 DfsC - ok
17:35:56.0705 1612 Dhcp (e9e01eb683c132f7fa27cd607b8a2b63) C:\Windows\system32\dhcpcore.dll
17:35:56.0726 1612 Dhcp - ok
17:35:56.0737 1612 discache (1a050b0274bfb3890703d490f330c0da) C:\Windows\system32\drivers\discache.sys
17:35:56.0738 1612 discache - ok
17:35:56.0789 1612 Disk (565003f326f99802e68ca78f2a68e9ff) C:\Windows\system32\drivers\disk.sys
17:35:56.0790 1612 Disk - ok
17:35:56.0832 1612 Dnscache (33ef4861f19a0736b11314aad9ae28d0) C:\Windows\System32\dnsrslvr.dll
17:35:56.0852 1612 Dnscache - ok
17:35:56.0895 1612 dot3svc (366ba8fb4b7bb7435e3b9eacb3843f67) C:\Windows\System32\dot3svc.dll
17:35:56.0910 1612 dot3svc - ok
17:35:56.0937 1612 DPS (8ec04ca86f1d68da9e11952eb85973d6) C:\Windows\system32\dps.dll
17:35:56.0956 1612 DPS - ok
17:35:57.0007 1612 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\Windows\system32\drivers\drmkaud.sys
17:35:57.0008 1612 drmkaud - ok
17:35:57.0054 1612 dsNcAdpt (e6b6dd5a355c432045219fad8512fb70) C:\Windows\system32\DRIVERS\dsNcAdpt.sys
17:35:57.0055 1612 dsNcAdpt - ok
17:35:57.0185 1612 dsNcService (ce235d0af501d4a622b0b8cfe7963b32) C:\Program Files\Juniper Networks\Common Files\dsNcService.exe
17:35:57.0210 1612 dsNcService - ok
17:35:57.0262 1612 DXGKrnl (23f5d28378a160352ba8f817bd8c71cb) C:\Windows\System32\drivers\dxgkrnl.sys
17:35:57.0294 1612 DXGKrnl - ok
17:35:57.0353 1612 e1kexpress (19e30c3c80d8ce29944b3f30ff9c8b76) C:\Windows\system32\DRIVERS\e1k6232.sys
17:35:57.0354 1612 e1kexpress - ok
17:35:57.0387 1612 EapHost (8600142fa91c1b96367d3300ad0f3f3a) C:\Windows\System32\eapsvc.dll
17:35:57.0393 1612 EapHost - ok
17:35:57.0550 1612 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\Windows\system32\drivers\evbdx.sys
17:35:57.0617 1612 ebdrv - ok
17:35:57.0725 1612 eeCtrl (579a6b6135d32b857faf0e3a974535d8) C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys
17:35:57.0741 1612 eeCtrl - ok
17:35:57.0852 1612 EFS (81951f51e318aecc2d68559e47485cc4) C:\Windows\System32\lsass.exe
17:35:57.0854 1612 EFS - ok
17:35:57.0946 1612 ehRecvr (a8c362018efc87beb013ee28f29c0863) C:\Windows\ehome\ehRecvr.exe
17:35:57.0975 1612 ehRecvr - ok
17:35:57.0990 1612 ehSched (d389bff34f80caede417bf9d1507996a) C:\Windows\ehome\ehsched.exe
17:35:57.0996 1612 ehSched - ok
17:35:58.0061 1612 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\Windows\system32\drivers\elxstor.sys
17:35:58.0077 1612 elxstor - ok
17:35:58.0239 1612 EraserUtilRebootDrv (028d50f059bd0d2ccb209e9011b9a9a4) C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
17:35:58.0245 1612 EraserUtilRebootDrv - ok
17:35:58.0280 1612 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\Windows\system32\drivers\errdev.sys
17:35:58.0281 1612 ErrDev - ok
17:35:58.0330 1612 EventSystem (f6916efc29d9953d5d0df06882ae8e16) C:\Windows\system32\es.dll
17:35:58.0352 1612 EventSystem - ok
17:35:58.0369 1612 exfat (2dc9108d74081149cc8b651d3a26207f) C:\Windows\system32\drivers\exfat.sys
17:35:58.0390 1612 exfat - ok
17:35:58.0408 1612 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\Windows\system32\drivers\fastfat.sys
17:35:58.0424 1612 fastfat - ok
17:35:58.0477 1612 Fax (967ea5b213e9984cbe270205df37755b) C:\Windows\system32\fxssvc.exe
17:35:58.0502 1612 Fax - ok
17:35:58.0538 1612 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\Windows\system32\drivers\fdc.sys
17:35:58.0538 1612 fdc - ok
17:35:58.0575 1612 fdPHost (f3222c893bd2f5821a0179e5c71e88fb) C:\Windows\system32\fdPHost.dll
17:35:58.0576 1612 fdPHost - ok
17:35:58.0580 1612 FDResPub (7dbe8cbfe79efbdeb98c9fb08d3a9a5b) C:\Windows\system32\fdrespub.dll
17:35:58.0581 1612 FDResPub - ok
17:35:58.0595 1612 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\Windows\system32\drivers\fileinfo.sys
17:35:58.0596 1612 FileInfo - ok
17:35:58.0606 1612 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\Windows\system32\drivers\filetrace.sys
17:35:58.0607 1612 Filetrace - ok
17:35:58.0730 1612 FlipShare Service (7a7f1d1c598c5c8b21ceaaab892b9fb8) C:\Program Files\Flip Video\FlipShare\FlipShareService.exe
17:35:58.0750 1612 FlipShare Service - ok
17:35:58.0775 1612 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\Windows\system32\drivers\flpydisk.sys
17:35:58.0776 1612 flpydisk - ok
17:35:58.0807 1612 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\Windows\system32\drivers\fltmgr.sys
17:35:58.0821 1612 FltMgr - ok
17:35:58.0874 1612 FontCache (b3a5ec6b6b6673db7e87c2bcdbddc074) C:\Windows\system32\FntCache.dll
17:35:58.0897 1612 FontCache - ok
17:35:59.0044 1612 FontCache3.0.0.0 (e56f39f6b7fda0ac77a79b0fd3de1a2f) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
17:35:59.0093 1612 FontCache3.0.0.0 - ok
17:35:59.0121 1612 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\Windows\system32\drivers\FsDepends.sys
17:35:59.0122 1612 FsDepends - ok
17:35:59.0142 1612 Fs_Rec (7dae5ebcc80e45d3253f4923dc424d05) C:\Windows\system32\drivers\Fs_Rec.sys
17:35:59.0143 1612 Fs_Rec - ok
17:35:59.0196 1612 fvevol (8a73e79089b282100b9393b644cb853b) C:\Windows\system32\DRIVERS\fvevol.sys
17:35:59.0218 1612 fvevol - ok
17:35:59.0236 1612 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\Windows\system32\drivers\gagp30kx.sys
17:35:59.0237 1612 gagp30kx - ok
17:35:59.0281 1612 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
17:35:59.0281 1612 GEARAspiWDM - ok
17:35:59.0362 1612 gpsvc (e897eaf5ed6ba41e081060c9b447a673) C:\Windows\System32\gpsvc.dll
17:35:59.0380 1612 gpsvc - ok
17:35:59.0509 1612 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
17:35:59.0530 1612 gupdate - ok
17:35:59.0551 1612 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
17:35:59.0552 1612 gupdatem - ok
17:35:59.0586 1612 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\Windows\system32\drivers\hcw85cir.sys
17:35:59.0588 1612 hcw85cir - ok
17:35:59.0631 1612 HdAudAddService (a5ef29d5315111c80a5c1abad14c8972) C:\Windows\system32\drivers\HdAudio.sys
17:35:59.0644 1612 HdAudAddService - ok
17:35:59.0672 1612 HDAudBus (9036377b8a6c15dc2eec53e489d159b5) C:\Windows\system32\DRIVERS\HDAudBus.sys
17:35:59.0678 1612 HDAudBus - ok
17:35:59.0717 1612 HECI (88a67c34e37186665e916fd347b50d19) C:\Windows\system32\DRIVERS\HECI.sys
17:35:59.0718 1612 HECI - ok
17:35:59.0759 1612 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\Windows\system32\drivers\HidBatt.sys
17:35:59.0760 1612 HidBatt - ok
17:35:59.0775 1612 HidBth (89448f40e6df260c206a193a4683ba78) C:\Windows\system32\drivers\hidbth.sys
17:35:59.0781 1612 HidBth - ok
17:35:59.0797 1612 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\Windows\system32\drivers\hidir.sys
17:35:59.0798 1612 HidIr - ok
17:35:59.0838 1612 hidserv (2bc6f6a1992b3a77f5f41432ca6b3b6b) C:\Windows\system32\hidserv.dll
17:35:59.0840 1612 hidserv - ok
17:35:59.0885 1612 HidUsb (10c19f8290891af023eaec0832e1eb4d) C:\Windows\system32\DRIVERS\hidusb.sys
17:35:59.0885 1612 HidUsb - ok
17:35:59.0909 1612 hkmsvc (196b4e3f4cccc24af836ce58facbb699) C:\Windows\system32\kmsvc.dll
17:35:59.0910 1612 hkmsvc - ok
17:35:59.0958 1612 HomeGroupListener (6658f4404de03d75fe3ba09f7aba6a30) C:\Windows\system32\ListSvc.dll
17:35:59.0975 1612 HomeGroupListener - ok
17:35:59.0986 1612 HomeGroupProvider (dbc02d918fff1cad628acbe0c0eaa8e8) C:\Windows\system32\provsvc.dll
17:35:59.0999 1612 HomeGroupProvider - ok
17:36:00.0034 1612 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\Windows\system32\drivers\HpSAMD.sys
17:36:00.0035 1612 HpSAMD - ok
17:36:00.0079 1612 HTTP (871917b07a141bff43d76d8844d48106) C:\Windows\system32\drivers\HTTP.sys
17:36:00.0103 1612 HTTP - ok
17:36:00.0117 1612 hwpolicy (0c4e035c7f105f1299258c90886c64c5) C:\Windows\system32\drivers\hwpolicy.sys
17:36:00.0117 1612 hwpolicy - ok
17:36:00.0169 1612 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\Windows\system32\DRIVERS\i8042prt.sys
17:36:00.0170 1612 i8042prt - ok
17:36:00.0336 1612 IAANTMON (0e899d0db39617aa0b2f992e7e95b5eb) C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
17:36:00.0378 1612 IAANTMON - ok
17:36:00.0403 1612 iaStor (01446278d4563b3013c92830ae6cbb26) C:\Windows\system32\DRIVERS\iaStor.sys
17:36:00.0404 1612 iaStor - ok
17:36:00.0465 1612 iaStorV (5cd5f9a5444e6cdcb0ac89bd62d8b76e) C:\Windows\system32\drivers\iaStorV.sys
17:36:00.0480 1612 iaStorV - ok
17:36:00.0666 1612 idsvc (c521d7eb6497bb1af6afa89e322fb43c) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
17:36:00.0724 1612 idsvc - ok
17:36:00.0920 1612 IDSVix86 (f9069ce7a7b9f9ba75d009b0ce3d7601) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\Definitions\IPSDefs\20120518.002\IDSvix86.sys
17:36:00.0944 1612 IDSVix86 - ok
17:36:01.0092 1612 IFP700 (7d19431e613a70262e5586fa76bb29f0) C:\Windows\system32\drivers\ifp700.sys
17:36:01.0093 1612 IFP700 - ok
17:36:01.0140 1612 iirsp (4173ff5708f3236cf25195fecd742915) C:\Windows\system32\drivers\iirsp.sys
17:36:01.0142 1612 iirsp - ok
17:36:01.0209 1612 IKEEXT (f95622f161474511b8d80d6b093aa610) C:\Windows\System32\ikeext.dll
17:36:01.0235 1612 IKEEXT - ok
17:36:01.0264 1612 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\Windows\system32\drivers\intelide.sys
17:36:01.0267 1612 intelide - ok
17:36:01.0292 1612 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\Windows\system32\DRIVERS\intelppm.sys
17:36:01.0294 1612 intelppm - ok
17:36:01.0330 1612 IPBusEnum (acb364b9075a45c0736e5c47be5cae19) C:\Windows\system32\ipbusenum.dll
17:36:01.0332 1612 IPBusEnum - ok
17:36:01.0349 1612 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\Windows\system32\DRIVERS\ipfltdrv.sys
17:36:01.0350 1612 IpFilterDriver - ok
17:36:01.0400 1612 iphlpsvc (4d65a07b795d6674312f879d09aa7663) C:\Windows\System32\iphlpsvc.dll
17:36:01.0417 1612 iphlpsvc - ok
17:36:01.0433 1612 IPMIDRV (4bd7134618c1d2a27466a099062547bf) C:\Windows\system32\drivers\IPMIDrv.sys
17:36:01.0434 1612 IPMIDRV - ok
17:36:01.0448 1612 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\Windows\system32\drivers\ipnat.sys
17:36:01.0454 1612 IPNAT - ok
17:36:01.0543 1612 iPod Service (57edb35ea2feca88f8b17c0c095c9a56) C:\Program Files\iPod\bin\iPodService.exe
17:36:01.0569 1612 iPod Service - ok
17:36:01.0593 1612 IRENUM (42996cff20a3084a56017b7902307e9f) C:\Windows\system32\drivers\irenum.sys
17:36:01.0593 1612 IRENUM - ok
17:36:01.0640 1612 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\Windows\system32\drivers\isapnp.sys
17:36:01.0641 1612 isapnp - ok
17:36:01.0665 1612 iScsiPrt (cb7a9abb12b8415bce5d74994c7ba3ae) C:\Windows\system32\drivers\msiscsi.sys
17:36:01.0683 1612 iScsiPrt - ok
17:36:01.0733 1612 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\Windows\system32\DRIVERS\kbdclass.sys
17:36:01.0733 1612 kbdclass - ok
17:36:01.0756 1612 kbdhid (9e3ced91863e6ee98c24794d05e27a71) C:\Windows\system32\DRIVERS\kbdhid.sys
17:36:01.0757 1612 kbdhid - ok
17:36:01.0782 1612 KeyIso (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
17:36:01.0783 1612 KeyIso - ok
17:36:01.0800 1612 KSecDD (f4647bb23db9038a7536cf6b68f4207f) C:\Windows\system32\Drivers\ksecdd.sys
17:36:01.0801 1612 KSecDD - ok
17:36:01.0818 1612 KSecPkg (e73cae53bbb72ba26918492c6b4c229d) C:\Windows\system32\Drivers\ksecpkg.sys
17:36:01.0836 1612 KSecPkg - ok
17:36:01.0890 1612 KtmRm (89a7b9cc98d0d80c6f31b91c0a310fcd) C:\Windows\system32\msdtckrm.dll
17:36:01.0910 1612 KtmRm - ok
17:36:01.0963 1612 LanmanServer (d64af876d53eca3668bb97b51b4e70ab) C:\Windows\system32\srvsvc.dll
17:36:01.0982 1612 LanmanServer - ok
17:36:02.0002 1612 LanmanWorkstation (58405e4f68ba8e4057c6e914f326aba2) C:\Windows\System32\wkssvc.dll
17:36:02.0008 1612 LanmanWorkstation - ok
17:36:02.0037 1612 Lavasoft Kernexplorer - ok
17:36:02.0086 1612 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\Windows\system32\DRIVERS\lltdio.sys
17:36:02.0088 1612 lltdio - ok
17:36:02.0131 1612 lltdsvc (5700673e13a2117fa3b9020c852c01e2) C:\Windows\System32\lltdsvc.dll
17:36:02.0145 1612 lltdsvc - ok
17:36:02.0158 1612 lmhosts (55ca01ba19d0006c8f2639b6c045e08b) C:\Windows\System32\lmhsvc.dll
17:36:02.0159 1612 lmhosts - ok
17:36:02.0240 1612 LMS (41b093f838bfb8c38a7bfa4668a3bc11) C:\Program Files\Intel\AMT\LMS.exe
17:36:02.0257 1612 LMS - ok
17:36:02.0297 1612 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\Windows\system32\drivers\lsi_fc.sys
17:36:02.0308 1612 LSI_FC - ok
17:36:02.0348 1612 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\Windows\system32\drivers\lsi_sas.sys
17:36:02.0355 1612 LSI_SAS - ok
17:36:02.0372 1612 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\Windows\system32\drivers\lsi_sas2.sys
17:36:02.0374 1612 LSI_SAS2 - ok
17:36:02.0407 1612 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\Windows\system32\drivers\lsi_scsi.sys
17:36:02.0414 1612 LSI_SCSI - ok
17:36:02.0430 1612 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\Windows\system32\drivers\luafv.sys
17:36:02.0436 1612 luafv - ok
17:36:02.0472 1612 Mcx2Svc (bfb9ee8ee977efe85d1a3105abef6dd1) C:\Windows\system32\Mcx2Svc.dll
17:36:02.0494 1612 Mcx2Svc - ok
17:36:02.0531 1612 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\Windows\system32\drivers\megasas.sys
17:36:02.0532 1612 megasas - ok
17:36:02.0584 1612 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\Windows\system32\drivers\MegaSR.sys
17:36:02.0597 1612 MegaSR - ok
17:36:02.0634 1612 MMCSS (146b6f43a673379a3c670e86d89be5ea) C:\Windows\system32\mmcss.dll
17:36:02.0636 1612 MMCSS - ok
17:36:02.0651 1612 Modem (f001861e5700ee84e2d4e52c712f4964) C:\Windows\system32\drivers\modem.sys
17:36:02.0652 1612 Modem - ok
17:36:02.0680 1612 monitor (79d10964de86b292320e9dfe02282a23) C:\Windows\system32\DRIVERS\monitor.sys
17:36:02.0681 1612 monitor - ok
17:36:02.0730 1612 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\Windows\system32\DRIVERS\mouclass.sys
17:36:02.0731 1612 mouclass - ok
17:36:02.0753 1612 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\Windows\system32\DRIVERS\mouhid.sys
17:36:02.0754 1612 mouhid - ok
17:36:02.0760 1612 mountmgr (fc8771f45ecccfd89684e38842539b9b) C:\Windows\system32\drivers\mountmgr.sys
17:36:02.0762 1612 mountmgr - ok
17:36:02.0818 1612 MozillaMaintenance (96aa8ba23142cc8e2b30f3cae0c80254) C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
17:36:02.0823 1612 MozillaMaintenance - ok
17:36:02.0846 1612 mpio (2d699fb6e89ce0d8da14ecc03b3edfe0) C:\Windows\system32\drivers\mpio.sys
17:36:02.0851 1612 mpio - ok
17:36:02.0946 1612 MpKsl5af12555 - ok
17:36:02.0978 1612 MpKsl8a534c45 - ok
17:36:02.0980 1612 MpKsla2c03bb3 - ok
17:36:02.0982 1612 MpKslb291d7a4 - ok
17:36:02.0992 1612 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\Windows\system32\drivers\mpsdrv.sys
17:36:02.0993 1612 mpsdrv - ok
17:36:03.0053 1612 MpsSvc (9835584e999d25004e1ee8e5f3e3b881) C:\Windows\system32\mpssvc.dll
17:36:03.0081 1612 MpsSvc - ok
17:36:03.0111 1612 MRxDAV (ceb46ab7c01c9f825f8cc6babc18166a) C:\Windows\system32\drivers\mrxdav.sys
17:36:03.0113 1612 MRxDAV - ok
17:36:03.0152 1612 mrxsmb (5d16c921e3671636c0eba3bbaac5fd25) C:\Windows\system32\DRIVERS\mrxsmb.sys
17:36:03.0158 1612 mrxsmb - ok
17:36:03.0206 1612 mrxsmb10 (6d17a4791aca19328c685d256349fefc) C:\Windows\system32\DRIVERS\mrxsmb10.sys
17:36:03.0224 1612 mrxsmb10 - ok
17:36:03.0250 1612 mrxsmb20 (b81f204d146000be76651a50670a5e9e) C:\Windows\system32\DRIVERS\mrxsmb20.sys
17:36:03.0256 1612 mrxsmb20 - ok
17:36:03.0287 1612 msahci (012c5f4e9349e711e11e0f19a8589f0a) C:\Windows\system32\drivers\msahci.sys
17:36:03.0288 1612 msahci - ok
17:36:03.0309 1612 msdsm (55055f8ad8be27a64c831322a780a228) C:\Windows\system32\drivers\msdsm.sys
17:36:03.0314 1612 msdsm - ok
17:36:03.0352 1612 MSDTC (e1bce74a3bd9902b72599c0192a07e27) C:\Windows\System32\msdtc.exe
17:36:03.0370 1612 MSDTC - ok
17:36:03.0394 1612 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\Windows\system32\drivers\Msfs.sys
17:36:03.0395 1612 Msfs - ok
17:36:03.0403 1612 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\Windows\System32\drivers\mshidkmdf.sys
17:36:03.0404 1612 mshidkmdf - ok
17:36:03.0436 1612 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\Windows\system32\drivers\msisadrv.sys
17:36:03.0436 1612 msisadrv - ok
17:36:03.0489 1612 MSiSCSI (90f7d9e6b6f27e1a707d4a297f077828) C:\Windows\system32\iscsiexe.dll
17:36:03.0494 1612 MSiSCSI - ok
17:36:03.0496 1612 msiserver - ok
17:36:03.0526 1612 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\Windows\system32\drivers\MSKSSRV.sys
17:36:03.0527 1612 MSKSSRV - ok
17:36:03.0552 1612 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\Windows\system32\drivers\MSPCLOCK.sys
17:36:03.0553 1612 MSPCLOCK - ok
17:36:03.0573 1612 MSPQM (f456e973590d663b1073e9c463b40932) C:\Windows\system32\drivers\MSPQM.sys
17:36:03.0574 1612 MSPQM - ok
17:36:03.0593 1612 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\Windows\system32\drivers\MsRPC.sys
17:36:03.0611 1612 MsRPC - ok
17:36:03.0623 1612 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\Windows\system32\DRIVERS\mssmbios.sys
17:36:03.0623 1612 mssmbios - ok
17:36:03.0635 1612 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\Windows\system32\drivers\MSTEE.sys
17:36:03.0636 1612 MSTEE - ok
17:36:03.0651 1612 MTConfig (33599130f44e1f34631cea241de8ac84) C:\Windows\system32\drivers\MTConfig.sys
17:36:03.0651 1612 MTConfig - ok
17:36:03.0670 1612 Mup (159fad02f64e6381758c990f753bcc80) C:\Windows\system32\Drivers\mup.sys
17:36:03.0671 1612 Mup - ok
17:36:03.0778 1612 N360 (e78a365cc3e0fbfc018a33dce01909f8) C:\Program Files\Norton 360\Engine\5.2.1.3\ccSvcHst.exe
17:36:03.0783 1612 N360 - ok
17:36:03.0837 1612 napagent (61d57a5d7c6d9afe10e77dae6e1b445e) C:\Windows\system32\qagentRT.dll
17:36:03.0859 1612 napagent - ok
17:36:03.0884 1612 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\Windows\system32\DRIVERS\nwifi.sys
17:36:03.0904 1612 NativeWifiP - ok
17:36:04.0080 1612 NAVENG (f11033730b38260b6892e837c457fb4b) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\Definitions\VirusDefs\20120521.036\NAVENG.SYS
17:36:04.0087 1612 NAVENG - ok
17:36:04.0192 1612 NAVEX15 (4e4e7c0259d3bb97de24a636c0e06aba) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\Definitions\VirusDefs\20120521.036\NAVEX15.SYS
17:36:04.0227 1612 NAVEX15 - ok
17:36:04.0405 1612 NDIS (e7c54812a2aaf43316eb6930c1ffa108) C:\Windows\system32\drivers\ndis.sys
17:36:04.0435 1612 NDIS - ok
17:36:04.0454 1612 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\Windows\system32\DRIVERS\ndiscap.sys
17:36:04.0462 1612 NdisCap - ok
17:36:04.0481 1612 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\Windows\system32\DRIVERS\ndistapi.sys
17:36:04.0482 1612 NdisTapi - ok
17:36:04.0493 1612 Ndisuio (d8a65dafb3eb41cbb622745676fcd072) C:\Windows\system32\DRIVERS\ndisuio.sys
17:36:04.0495 1612 Ndisuio - ok
17:36:04.0527 1612 NdisWan (38fbe267e7e6983311179230facb1017) C:\Windows\system32\DRIVERS\ndiswan.sys
17:36:04.0528 1612 NdisWan - ok
17:36:04.0571 1612 NDProxy (a4bdc541e69674fbff1a8ff00be913f2) C:\Windows\system32\drivers\NDProxy.sys
17:36:04.0572 1612 NDProxy - ok
17:36:04.0591 1612 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\Windows\system32\DRIVERS\netbios.sys
17:36:04.0592 1612 NetBIOS - ok
17:36:04.0613 1612 NetBT (280122ddcf04b378edd1ad54d71c1e54) C:\Windows\system32\DRIVERS\netbt.sys
17:36:04.0625 1612 NetBT - ok
17:36:04.0649 1612 Netlogon (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
17:36:04.0650 1612 Netlogon - ok
17:36:04.0716 1612 Netman (7cccfca7510684768da22092d1fa4db2) C:\Windows\System32\netman.dll
17:36:04.0738 1612 Netman - ok
17:36:04.0772 1612 netprofm (8c338238c16777a802d6a9211eb2ba50) C:\Windows\System32\netprofm.dll
17:36:04.0795 1612 netprofm - ok
17:36:04.0850 1612 netrcacm (b128ccc0e4586628d5d6f6a8f1d0778d) C:\Windows\system32\DRIVERS\netrcacm.sys
17:36:04.0851 1612 netrcacm - ok
17:36:04.0997 1612 NetTcpPortSharing (f476ec40033cdb91efbe73eb99b8362d) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
17:36:05.0002 1612 NetTcpPortSharing - ok
17:36:05.0045 1612 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\Windows\system32\drivers\nfrd960.sys
17:36:05.0046 1612 nfrd960 - ok
17:36:05.0095 1612 NlaSvc (912084381d30d8b89ec4e293053f4710) C:\Windows\System32\nlasvc.dll
17:36:05.0115 1612 NlaSvc - ok
17:36:05.0190 1612 Norton PC Checkup Application Launcher - ok
17:36:05.0196 1612 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\Windows\system32\drivers\Npfs.sys
17:36:05.0197 1612 Npfs - ok
17:36:05.0224 1612 nsi (ba387e955e890c8a88306d9b8d06bf17) C:\Windows\system32\nsisvc.dll
17:36:05.0226 1612 nsi - ok
17:36:05.0261 1612 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\Windows\system32\drivers\nsiproxy.sys
17:36:05.0262 1612 nsiproxy - ok
17:36:05.0345 1612 Ntfs (81189c3d7763838e55c397759d49007a) C:\Windows\system32\drivers\Ntfs.sys
17:36:05.0379 1612 Ntfs - ok
17:36:05.0389 1612 Null (f9756a98d69098dca8945d62858a812c) C:\Windows\system32\drivers\Null.sys
17:36:05.0390 1612 Null - ok
17:36:05.0429 1612 nvraid (b3e25ee28883877076e0e1ff877d02e0) C:\Windows\system32\drivers\nvraid.sys
17:36:05.0435 1612 nvraid - ok
17:36:05.0453 1612 nvstor (4380e59a170d88c4f1022eff6719a8a4) C:\Windows\system32\drivers\nvstor.sys
17:36:05.0468 1612 nvstor - ok
17:36:05.0497 1612 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\Windows\system32\drivers\nv_agp.sys
17:36:05.0503 1612 nv_agp - ok
17:36:05.0523 1612 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\Windows\system32\drivers\ohci1394.sys
17:36:05.0525 1612 ohci1394 - ok
17:36:05.0627 1612 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
17:36:05.0643 1612 ose - ok
17:36:05.0895 1612 osppsvc (358a9cca612c68eb2f07ddad4ce1d8d7) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
17:36:06.0044 1612 osppsvc - ok
17:36:06.0164 1612 p2pimsvc (82a8521ddc60710c3d3d3e7325209bec) C:\Windows\system32\pnrpsvc.dll
17:36:06.0183 1612 p2pimsvc - ok
17:36:06.0217 1612 p2psvc (59c3ddd501e39e006dac31bf55150d91) C:\Windows\system32\p2psvc.dll
17:36:06.0236 1612 p2psvc - ok
17:36:06.0313 1612 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\Windows\system32\DRIVERS\parport.sys
17:36:06.0315 1612 Parport - ok
17:36:06.0343 1612 partmgr (3f34a1b4c5f6475f320c275e63afce9b) C:\Windows\system32\drivers\partmgr.sys
17:36:06.0345 1612 partmgr - ok
17:36:06.0375 1612 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\Windows\system32\DRIVERS\parvdm.sys
17:36:06.0376 1612 Parvdm - ok
17:36:06.0430 1612 PBADRV (4088c1ecd1f54281a92fa663b0fdc36f) C:\Windows\system32\DRIVERS\PBADRV.sys
17:36:06.0431 1612 PBADRV - ok
17:36:06.0464 1612 PcaSvc (358ab7956d3160000726574083dfc8a6) C:\Windows\System32\pcasvc.dll
17:36:06.0483 1612 PcaSvc - ok
17:36:06.0597 1612 PCCUJobMgr (2f86be1818c2d7ac90478e3323ee7fcb) C:\Program Files\Norton PC Checkup\Engine\2.0.12.27\ccSvcHst.exe
17:36:06.0603 1612 PCCUJobMgr - ok
17:36:06.0675 1612 PCDSRVC{E9D79540-57D5953E-06020101}_0 (92fddbed716bf5c3cb766101563cfce5) c:\program files\dell support center\pcdsrvc.pkms
17:36:06.0784 1612 PCDSRVC{E9D79540-57D5953E-06020101}_0 - ok
17:36:06.0821 1612 pci (673e55c3498eb970088e812ea820aa8f) C:\Windows\system32\drivers\pci.sys
17:36:06.0835 1612 pci - ok
17:36:06.0848 1612 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\Windows\system32\drivers\pciide.sys
17:36:06.0849 1612 pciide - ok
17:36:06.0889 1612 pcmcia (f396431b31693e71e8a80687ef523506) C:\Windows\system32\drivers\pcmcia.sys
17:36:06.0905 1612 pcmcia - ok
17:36:06.0918 1612 pcw (250f6b43d2b613172035c6747aeeb19f) C:\Windows\system32\drivers\pcw.sys
17:36:06.0919 1612 pcw - ok
17:36:06.0964 1612 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\Windows\system32\drivers\peauth.sys
17:36:06.0986 1612 PEAUTH - ok
17:36:07.0077 1612 pla (414bba67a3ded1d28437eb66aeb8a720) C:\Windows\system32\pla.dll
17:36:07.0114 1612 pla - ok
17:36:07.0247 1612 PlugPlay (ec7bc28d207da09e79b3e9faf8b232ca) C:\Windows\system32\umpnpmgr.dll
17:36:07.0267 1612 PlugPlay - ok
17:36:07.0289 1612 PNRPAutoReg (63ff8572611249931eb16bb8eed6afc8) C:\Windows\system32\pnrpauto.dll
17:36:07.0291 1612 PNRPAutoReg - ok
17:36:07.0314 1612 PNRPsvc (82a8521ddc60710c3d3d3e7325209bec) C:\Windows\system32\pnrpsvc.dll
17:36:07.0316 1612 PNRPsvc - ok
17:36:07.0369 1612 PolicyAgent (53946b69ba0836bd95b03759530c81ec) C:\Windows\System32\ipsecsvc.dll
17:36:07.0388 1612 PolicyAgent - ok
17:36:07.0401 1612 Power (f87d30e72e03d579a5199ccb3831d6ea) C:\Windows\system32\umpo.dll
17:36:07.0407 1612 Power - ok
17:36:07.0483 1612 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\Windows\system32\DRIVERS\raspptp.sys
17:36:07.0485 1612 PptpMiniport - ok
17:36:07.0497 1612 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\Windows\system32\drivers\processr.sys
17:36:07.0498 1612 Processor - ok
17:36:07.0551 1612 ProfSvc (43ca4ccc22d52fb58e8988f0198851d0) C:\Windows\system32\profsvc.dll
17:36:07.0567 1612 ProfSvc - ok
17:36:07.0588 1612 ProtectedStorage (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
17:36:07.0588 1612 ProtectedStorage - ok
17:36:07.0629 1612 Psched (6270ccae2a86de6d146529fe55b3246a) C:\Windows\system32\DRIVERS\pacer.sys
17:36:07.0635 1612 Psched - ok
17:36:07.0721 1612 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\Windows\system32\drivers\ql2300.sys
17:36:07.0755 1612 ql2300 - ok
17:36:07.0905 1612 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\Windows\system32\drivers\ql40xx.sys
17:36:07.0911 1612 ql40xx - ok
17:36:07.0956 1612 QWAVE (31ac809e7707eb580b2bdb760390765a) C:\Windows\system32\qwave.dll
17:36:07.0975 1612 QWAVE - ok
17:36:08.0003 1612 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\Windows\system32\drivers\qwavedrv.sys
17:36:08.0004 1612 QWAVEdrv - ok
17:36:08.0013 1612 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\Windows\system32\DRIVERS\rasacd.sys
17:36:08.0014 1612 RasAcd - ok
17:36:08.0054 1612 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\Windows\system32\DRIVERS\AgileVpn.sys
17:36:08.0055 1612 RasAgileVpn - ok
17:36:08.0092 1612 RasAuto (a60f1839849c0c00739787fd5ec03f13) C:\Windows\System32\rasauto.dll
17:36:08.0098 1612 RasAuto - ok
17:36:08.0106 1612 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\Windows\system32\DRIVERS\rasl2tp.sys
17:36:08.0108 1612 Rasl2tp - ok
17:36:08.0142 1612 RasMan (cb9e04dc05eacf5b9a36ca276d475006) C:\Windows\System32\rasmans.dll
17:36:08.0159 1612 RasMan - ok
17:36:08.0199 1612 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\Windows\system32\DRIVERS\raspppoe.sys
17:36:08.0201 1612 RasPppoe - ok
17:36:08.0234 1612 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\Windows\system32\DRIVERS\rassstp.sys
17:36:08.0236 1612 RasSstp - ok
17:36:08.0259 1612 rdbss (d528bc58a489409ba40334ebf96a311b) C:\Windows\system32\DRIVERS\rdbss.sys
17:36:08.0275 1612 rdbss - ok
17:36:08.0290 1612 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\Windows\system32\drivers\rdpbus.sys
17:36:08.0291 1612 rdpbus - ok
17:36:08.0303 1612 RDPCDD (23dae03f29d253ae74c44f99e515f9a1) C:\Windows\system32\DRIVERS\RDPCDD.sys
17:36:08.0304 1612 RDPCDD - ok
17:36:08.0318 1612 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\Windows\system32\drivers\rdpencdd.sys
17:36:08.0319 1612 RDPENCDD - ok
17:36:08.0334 1612 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\Windows\system32\drivers\rdprefmp.sys
17:36:08.0335 1612 RDPREFMP - ok
17:36:08.0375 1612 RDPWD (244c83332f44589ae98fc347f11b2693) C:\Windows\system32\drivers\RDPWD.sys
17:36:08.0386 1612 RDPWD - ok
17:36:08.0422 1612 rdyboost (518395321dc96fe2c9f0e96ac743b656) C:\Windows\system32\drivers\rdyboost.sys
17:36:08.0435 1612 rdyboost - ok
17:36:08.0459 1612 RemoteAccess (7b5e1419717fac363a31cc302895217a) C:\Windows\System32\mprdim.dll
17:36:08.0461 1612 RemoteAccess - ok
17:36:08.0503 1612 RemoteRegistry (cb9a8683f4ef2bf99e123d79950d7935) C:\Windows\system32\regsvc.dll
17:36:08.0508 1612 RemoteRegistry - ok
17:36:08.0525 1612 RpcEptMapper (78d072f35bc45d9e4e1b61895c152234) C:\Windows\System32\RpcEpMap.dll
17:36:08.0527 1612 RpcEptMapper - ok
17:36:08.0563 1612 RpcLocator (94d36c0e44677dd26981d2bfeef2a29d) C:\Windows\system32\locator.exe
17:36:08.0564 1612 RpcLocator - ok
17:36:08.0595 1612 RpcSs (7660f01d3b38aca1747e397d21d790af) C:\Windows\system32\rpcss.dll
17:36:08.0597 1612 RpcSs - ok
17:36:08.0636 1612 rspndr (032b0d36ad92b582d869879f5af5b928) C:\Windows\system32\DRIVERS\rspndr.sys
17:36:08.0637 1612 rspndr - ok
17:36:08.0662 1612 SamSs (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
17:36:08.0663 1612 SamSs - ok
17:36:08.0688 1612 sbp2port (05d860da1040f111503ac416ccef2bca) C:\Windows\system32\drivers\sbp2port.sys
17:36:08.0694 1612 sbp2port - ok
17:36:08.0864 1612 SBSDWSCService (794d4b48dfb6e999537c7c3947863463) C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
17:36:08.0923 1612 SBSDWSCService - ok
17:36:08.0961 1612 SCardSvr (8fc518ffe9519c2631d37515a68009c4) C:\Windows\System32\SCardSvr.dll
17:36:08.0981 1612 SCardSvr - ok
17:36:09.0053 1612 scfilter (0693b5ec673e34dc147e195779a4dcf6) C:\Windows\system32\DRIVERS\scfilter.sys
17:36:09.0054 1612 scfilter - ok
17:36:09.0115 1612 Schedule (a04bb13f8a72f8b6e8b4071723e4e336) C:\Windows\system32\schedsvc.dll
17:36:09.0142 1612 Schedule - ok
17:36:09.0168 1612 SCPolicySvc (319c6b309773d063541d01df8ac6f55f) C:\Windows\System32\certprop.dll
17:36:09.0168 1612 SCPolicySvc - ok
17:36:09.0210 1612 SDRSVC (08236c4bce5edd0a0318a438af28e0f7) C:\Windows\System32\SDRSVC.dll
17:36:09.0215 1612 SDRSVC - ok
17:36:09.0261 1612 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
17:36:09.0262 1612 secdrv - ok
17:36:09.0268 1612 seclogon (a59b3a4442c52060cc7a85293aa3546f) C:\Windows\system32\seclogon.dll
17:36:09.0270 1612 seclogon - ok
17:36:09.0293 1612 SENS (dcb7fcdcc97f87360f75d77425b81737) C:\Windows\System32\sens.dll
17:36:09.0295 1612 SENS - ok
17:36:09.0332 1612 SensrSvc (50087fe1ee447009c9cc2997b90de53f) C:\Windows\system32\sensrsvc.dll
17:36:09.0334 1612 SensrSvc - ok
17:36:09.0362 1612 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\Windows\system32\DRIVERS\serenum.sys
17:36:09.0363 1612 Serenum - ok
17:36:09.0379 1612 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\Windows\system32\DRIVERS\serial.sys
17:36:09.0386 1612 Serial - ok
17:36:09.0397 1612 sermouse (79bffb520327ff916a582dfea17aa813) C:\Windows\system32\drivers\sermouse.sys
17:36:09.0398 1612 sermouse - ok
17:36:09.0448 1612 SessionEnv (4ae380f39a0032eab7dd953030b26d28) C:\Windows\system32\sessenv.dll
17:36:09.0454 1612 SessionEnv - ok
17:36:09.0465 1612 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\Windows\system32\drivers\sffdisk.sys
17:36:09.0466 1612 sffdisk - ok
17:36:09.0489 1612 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\Windows\system32\drivers\sffp_mmc.sys
17:36:09.0490 1612 sffp_mmc - ok
17:36:09.0498 1612 sffp_sd (6d4ccaedc018f1cf52866bbbaa235982) C:\Windows\system32\drivers\sffp_sd.sys
17:36:09.0498 1612 sffp_sd - ok
17:36:09.0514 1612 sfloppy (db96666cc8312ebc45032f30b007a547) C:\Windows\system32\drivers\sfloppy.sys
17:36:09.0515 1612 sfloppy - ok
17:36:09.0571 1612 SharedAccess (d1a079a0de2ea524513b6930c24527a2) C:\Windows\System32\ipnathlp.dll
17:36:09.0590 1612 SharedAccess - ok
17:36:09.0628 1612 ShellHWDetection (414da952a35bf5d50192e28263b40577) C:\Windows\System32\shsvcs.dll
17:36:09.0645 1612 ShellHWDetection - ok
17:36:09.0688 1612 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\Windows\system32\drivers\sisagp.sys
17:36:09.0689 1612 sisagp - ok
17:36:09.0717 1612 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\Windows\system32\drivers\SiSRaid2.sys
17:36:09.0718 1612 SiSRaid2 - ok
17:36:09.0753 1612 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\Windows\system32\drivers\sisraid4.sys
17:36:09.0754 1612 SiSRaid4 - ok
17:36:09.0793 1612 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\Windows\system32\DRIVERS\smb.sys
17:36:09.0794 1612 Smb - ok
17:36:09.0836 1612 SNMPTRAP (6a984831644eca1a33ffeae4126f4f37) C:\Windows\System32\snmptrap.exe
17:36:09.0838 1612 SNMPTRAP - ok
17:36:09.0861 1612 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\Windows\system32\drivers\spldr.sys
17:36:09.0862 1612 spldr - ok
17:36:09.0890 1612 Spooler (866a43013535dc8587c258e43579c764) C:\Windows\System32\spoolsv.exe
17:36:09.0906 1612 Spooler - ok
17:36:10.0047 1612 sppsvc (cf87a1de791347e75b98885214ced2b8) C:\Windows\system32\sppsvc.exe
17:36:10.0119 1612 sppsvc - ok
17:36:10.0243 1612 sppuinotify (b0180b20b065d89232a78a40fe56eaa6) C:\Windows\system32\sppuinotify.dll
17:36:10.0246 1612 sppuinotify - ok
17:36:10.0353 1612 SRTSP (83726cf02eced69138948083e06b6eac) C:\Windows\System32\Drivers\N360\0502010.003\SRTSP.SYS
17:36:10.0375 1612 SRTSP - ok
17:36:10.0412 1612 SRTSPX (4e7eab2e5615d39cf1f1df9c71e5e225) C:\Windows\system32\drivers\N360\0502010.003\SRTSPX.SYS
17:36:10.0413 1612 SRTSPX - ok
17:36:10.0456 1612 srv (e4c2764065d66ea1d2d3ebc28fe99c46) C:\Windows\system32\DRIVERS\srv.sys
17:36:10.0476 1612 srv - ok
17:36:10.0503 1612 srv2 (03f0545bd8d4c77fa0ae1ceedfcc71ab) C:\Windows\system32\DRIVERS\srv2.sys
17:36:10.0516 1612 srv2 - ok
17:36:10.0551 1612 srvnet (be6bd660caa6f291ae06a718a4fa8abc) C:\Windows\system32\DRIVERS\srvnet.sys
17:36:10.0556 1612 srvnet - ok
17:36:10.0598 1612 SSDPSRV (d887c9fd02ac9fa880f6e5027a43e118) C:\Windows\System32\ssdpsrv.dll
17:36:10.0616 1612 SSDPSRV - ok
17:36:10.0623 1612 SstpSvc (d318f23be45d5e3a107469eb64815b50) C:\Windows\system32\sstpsvc.dll
17:36:10.0629 1612 SstpSvc - ok
17:36:10.0674 1612 stexstor (db32d325c192b801df274bfd12a7e72b) C:\Windows\system32\drivers\stexstor.sys
17:36:10.0675 1612 stexstor - ok
17:36:10.0716 1612 StiSvc (e1fb3706030fb4578a0d72c2fc3689e4) C:\Windows\System32\wiaservc.dll
17:36:10.0743 1612 StiSvc - ok
17:36:10.0772 1612 swenum (e58c78a848add9610a4db6d214af5224) C:\Windows\system32\DRIVERS\swenum.sys
17:36:10.0772 1612 swenum - ok
17:36:10.0821 1612 swprv (a28bd92df340e57b024ba433165d34d7) C:\Windows\System32\swprv.dll
17:36:10.0841 1612 swprv - ok
17:36:10.0916 1612 SymDS (9bbeb8c6258e72d62e7560e6667aad39) C:\Windows\system32\drivers\N360\0502010.003\SYMDS.SYS
17:36:10.0934 1612 SymDS - ok
17:36:10.0987 1612 SymEFA (d5c02629c02a820a7e71bca3d44294a3) C:\Windows\system32\drivers\N360\0502010.003\SYMEFA.SYS
17:36:11.0010 1612 SymEFA - ok
17:36:11.0049 1612 SymEvent (ab33c3b196197ca467cbdda717860dba) C:\Windows\system32\Drivers\SYMEVENT.SYS
17:36:11.0054 1612 SymEvent - ok
17:36:11.0064 1612 SymIRON (a73399804d5d4a8b20ba60fcf70c9f1f) C:\Windows\system32\drivers\N360\0502010.003\Ironx86.SYS
17:36:11.0077 1612 SymIRON - ok
17:36:11.0107 1612 SymNetS (2c688094650d23b62b0a809decd0b12f) C:\Windows\System32\Drivers\N360\0502010.003\SYMNETS.SYS
17:36:11.0117 1612 SymNetS - ok
17:36:11.0179 1612 SysMain (36650d618ca34c9d357dfd3d89b2c56f) C:\Windows\system32\sysmain.dll
17:36:11.0218 1612 SysMain - ok
17:36:11.0235 1612 TabletInputService (763fecdc3d30c815fe72dd57936c6cd1) C:\Windows\System32\TabSvc.dll
17:36:11.0237 1612 TabletInputService - ok
17:36:11.0274 1612 TapiSrv (613bf4820361543956909043a265c6ac) C:\Windows\System32\tapisrv.dll
17:36:11.0299 1612 TapiSrv - ok
17:36:11.0310 1612 TBS (b799d9fdb26111737f58288d8dc172d9) C:\Windows\System32\tbssvc.dll
17:36:11.0312 1612 TBS - ok
17:36:11.0439 1612 Tcpip (7fa2e0f8b072bd04b77b421480b6cc22) C:\Windows\system32\drivers\tcpip.sys
17:36:11.0482 1612 Tcpip - ok
17:36:11.0493 1612 TCPIP6 (7fa2e0f8b072bd04b77b421480b6cc22) C:\Windows\system32\DRIVERS\tcpip.sys
17:36:11.0498 1612 TCPIP6 - ok
17:36:11.0513 1612 tcpipreg (cca24162e055c3714ce5a88b100c64ed) C:\Windows\system32\drivers\tcpipreg.sys
17:36:11.0514 1612 tcpipreg - ok
17:36:11.0562 1612 TDPIPE (1cb91b2bd8f6dd367dfc2ef26fd751b2) C:\Windows\system32\drivers\tdpipe.sys
17:36:11.0563 1612 TDPIPE - ok
17:36:11.0598 1612 TDTCP (2c2c5afe7ee4f620d69c23c0617651a8) C:\Windows\system32\drivers\tdtcp.sys
17:36:11.0599 1612 TDTCP - ok
17:36:11.0612 1612 tdx (b459575348c20e8121d6039da063c704) C:\Windows\system32\DRIVERS\tdx.sys
17:36:11.0613 1612 tdx - ok
17:36:11.0632 1612 TermDD (04dbf4b01ea4bf25a9a3e84affac9b20) C:\Windows\system32\DRIVERS\termdd.sys
17:36:11.0633 1612 TermDD - ok
17:36:11.0689 1612 TermService (382c804c92811be57829d8e550a900e2) C:\Windows\System32\termsrv.dll
17:36:11.0711 1612 TermService - ok
17:36:11.0727 1612 TfFsMon - ok
17:36:11.0736 1612 TfNetMon - ok
17:36:11.0738 1612 TfSysMon - ok
17:36:11.0752 1612 Themes (42fb6afd6b79d9fe07381609172e7ca4) C:\Windows\system32\themeservice.dll
17:36:11.0754 1612 Themes - ok
17:36:11.0788 1612 THREADORDER (146b6f43a673379a3c670e86d89be5ea) C:\Windows\system32\mmcss.dll
17:36:11.0789 1612 THREADORDER - ok
17:36:11.0834 1612 TlntSvr (ce92b84ed806f1c5c340a51dfd3e49bc) C:\Windows\System32\tlntsvr.exe
17:36:11.0836 1612 TlntSvr - ok
17:36:11.0844 1612 TrkWks (4792c0378db99a9bc2ae2de6cfff0c3a) C:\Windows\System32\trkwks.dll
17:36:11.0846 1612 TrkWks - ok
17:36:11.0919 1612 TrustedInstaller (2c49b175aee1d4364b91b531417fe583) C:\Windows\servicing\TrustedInstaller.exe
17:36:11.0934 1612 TrustedInstaller - ok
17:36:11.0945 1612 tssecsrv (254bb140eee3c59d6114c1a86b636877) C:\Windows\system32\DRIVERS\tssecsrv.sys
17:36:11.0946 1612 tssecsrv - ok
17:36:11.0951 1612 TsUsbFlt (fd1d6c73e6333be727cbcc6054247654) C:\Windows\system32\drivers\tsusbflt.sys
17:36:11.0952 1612 TsUsbFlt - ok
17:36:11.0982 1612 TsUsbGD (01246f0baad7b68ec0f472aa41e33282) C:\Windows\system32\drivers\TsUsbGD.sys
17:36:11.0983 1612 TsUsbGD - ok
17:36:12.0003 1612 tunnel (b2fa25d9b17a68bb93d58b0556e8c90d) C:\Windows\system32\DRIVERS\tunnel.sys
17:36:12.0009 1612 tunnel - ok
17:36:12.0042 1612 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\Windows\system32\drivers\uagp35.sys
17:36:12.0043 1612 uagp35 - ok
17:36:12.0061 1612 udfs (ee43346c7e4b5e63e54f927babbb32ff) C:\Windows\system32\DRIVERS\udfs.sys
17:36:12.0076 1612 udfs - ok
17:36:12.0109 1612 UI0Detect (8344fd4fce927880aa1aa7681d4927e5) C:\Windows\system32\UI0Detect.exe
17:36:12.0111 1612 UI0Detect - ok
17:36:12.0131 1612 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\Windows\system32\drivers\uliagpkx.sys
17:36:12.0133 1612 uliagpkx - ok
17:36:12.0156 1612 umbus (d295bed4b898f0fd999fcfa9b32b071b) C:\Windows\system32\DRIVERS\umbus.sys
17:36:12.0157 1612 umbus - ok
17:36:12.0197 1612 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\Windows\system32\drivers\umpass.sys
17:36:12.0198 1612 UmPass - ok
17:36:12.0423 1612 UNS (9b229de91d9fbab10cb53f0e1ffab88d) C:\Program Files\Common Files\Intel\Privacy Icon\UNS\UNS.exe
17:36:12.0489 1612 UNS - ok
17:36:12.0630 1612 upnphost (833fbb672460efce8011d262175fad33) C:\Windows\System32\upnphost.dll
17:36:12.0651 1612 upnphost - ok
17:36:12.0732 1612 usbccgp (bd9c55d7023c5de374507acc7a14e2ac) C:\Windows\system32\DRIVERS\usbccgp.sys
17:36:12.0733 1612 usbccgp - ok
17:36:12.0776 1612 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\Windows\system32\drivers\usbcir.sys
17:36:12.0783 1612 usbcir - ok
17:36:12.0842 1612 usbehci (f92de757e4b7ce9c07c5e65423f3ae3b) C:\Windows\system32\DRIVERS\usbehci.sys
17:36:12.0843 1612 usbehci - ok
17:36:12.0881 1612 usbhub (8dc94aec6a7e644a06135ae7506dc2e9) C:\Windows\system32\DRIVERS\usbhub.sys
17:36:12.0899 1612 usbhub - ok
17:36:12.0937 1612 usbohci (e185d44fac515a18d9deddc23c2cdf44) C:\Windows\system32\drivers\usbohci.sys
17:36:12.0939 1612 usbohci - ok
17:36:12.0968 1612 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\Windows\system32\drivers\usbprint.sys
17:36:12.0969 1612 usbprint - ok
17:36:13.0006 1612 USBSTOR (f991ab9cc6b908db552166768176896a) C:\Windows\system32\DRIVERS\USBSTOR.SYS
17:36:13.0007 1612 USBSTOR - ok
17:36:13.0019 1612 usbuhci (68df884cf41cdada664beb01daf67e3d) C:\Windows\system32\DRIVERS\usbuhci.sys
17:36:13.0020 1612 usbuhci - ok
17:36:13.0062 1612 UxSms (081e6e1c91aec36758902a9f727cd23c) C:\Windows\System32\uxsms.dll
17:36:13.0064 1612 UxSms - ok
17:36:13.0095 1612 VaultSvc (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
17:36:13.0096 1612 VaultSvc - ok
17:36:13.0117 1612 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\Windows\system32\drivers\vdrvroot.sys
17:36:13.0118 1612 vdrvroot - ok
17:36:13.0146 1612 vds (c3cd30495687c2a2f66a65ca6fd89be9) C:\Windows\System32\vds.exe
17:36:13.0177 1612 vds - ok
17:36:13.0200 1612 vga (17c408214ea61696cec9c66e388b14f3) C:\Windows\system32\DRIVERS\vgapnp.sys
17:36:13.0201 1612 vga - ok
17:36:13.0220 1612 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\Windows\System32\drivers\vga.sys
17:36:13.0221 1612 VgaSave - ok
17:36:13.0241 1612 vhdmp (5461686cca2fda57b024547733ab42e3) C:\Windows\system32\drivers\vhdmp.sys
17:36:13.0255 1612 vhdmp - ok
17:36:13.0299 1612 viaagp (c829317a37b4bea8f39735d4b076e923) C:\Windows\system32\drivers\viaagp.sys
17:36:13.0301 1612 viaagp - ok
17:36:13.0310 1612 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\Windows\system32\drivers\viac7.sys
17:36:13.0311 1612 ViaC7 - ok
17:36:13.0343 1612 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\Windows\system32\drivers\viaide.sys
17:36:13.0344 1612 viaide - ok
17:36:13.0364 1612 volmgr (4c63e00f2f4b5f86ab48a58cd990f212) C:\Windows\system32\drivers\volmgr.sys
17:36:13.0365 1612 volmgr - ok
17:36:13.0388 1612 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\Windows\system32\drivers\volmgrx.sys
17:36:13.0402 1612 volmgrx - ok
17:36:13.0435 1612 volsnap (f497f67932c6fa693d7de2780631cfe7) C:\Windows\system32\drivers\volsnap.sys
17:36:13.0450 1612 volsnap - ok
17:36:13.0482 1612 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\Windows\system32\drivers\vsmraid.sys
17:36:13.0502 1612 vsmraid - ok
17:36:13.0573 1612 VSS (209a3b1901b83aeb8527ed211cce9e4c) C:\Windows\system32\vssvc.exe
17:36:13.0607 1612 VSS - ok
17:36:13.0619 1612 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\Windows\System32\drivers\vwifibus.sys
17:36:13.0620 1612 vwifibus - ok
17:36:13.0645 1612 W32Time (55187fd710e27d5095d10a472c8baf1c) C:\Windows\system32\w32time.dll
17:36:13.0655 1612 W32Time - ok
17:36:13.0675 1612 WacomPen (de3721e89c653aa281428c8a69745d90) C:\Windows\system32\drivers\wacompen.sys
17:36:13.0676 1612 WacomPen - ok
17:36:13.0705 1612 WANARP (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys
17:36:13.0707 1612 WANARP - ok
17:36:13.0708 1612 Wanarpv6 (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys
17:36:13.0709 1612 Wanarpv6 - ok
17:36:13.0806 1612 WatAdminSvc (353a04c273ec58475d8633e75ccd5604) C:\Windows\system32\Wat\WatAdminSvc.exe
17:36:13.0862 1612 WatAdminSvc - ok
17:36:13.0944 1612 wbengine (691e3285e53dca558e1a84667f13e15a) C:\Windows\system32\wbengine.exe
17:36:13.0981 1612 wbengine - ok
17:36:13.0995 1612 WbioSrvc (9614b5d29dc76ac3c29f6d2d3aa70e67) C:\Windows\System32\wbiosrvc.dll
17:36:14.0005 1612 WbioSrvc - ok
17:36:14.0048 1612 wcncsvc (34eee0dfaadb4f691d6d5308a51315dc) C:\Windows\System32\wcncsvc.dll
17:36:14.0066 1612 wcncsvc - ok
17:36:14.0096 1612 WcsPlugInService (5d930b6357a6d2af4d7653bdabbf352f) C:\Windows\System32\WcsPlugInService.dll
17:36:14.0098 1612 WcsPlugInService - ok
17:36:14.0169 1612 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\Windows\system32\drivers\wd.sys
17:36:14.0171 1612 Wd - ok
17:36:14.0213 1612 WDC_SAM (d6efaf429fd30c5df613d220e344cce7) C:\Windows\system32\DRIVERS\wdcsam.sys
17:36:14.0214 1612 WDC_SAM - ok
17:36:14.0245 1612 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys
17:36:14.0265 1612 Wdf01000 - ok
17:36:14.0280 1612 WdiServiceHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\Windows\system32\wdi.dll
17:36:14.0283 1612 WdiServiceHost - ok
17:36:14.0285 1612 WdiSystemHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\Windows\system32\wdi.dll
17:36:14.0286 1612 WdiSystemHost - ok
17:36:14.0318 1612 WebClient (a9d880f97530d5b8fee278923349929d) C:\Windows\System32\webclnt.dll
17:36:14.0338 1612 WebClient - ok
17:36:14.0365 1612 Wecsvc (760f0afe937a77cff27153206534f275) C:\Windows\system32\wecsvc.dll
17:36:14.0384 1612 Wecsvc - ok
17:36:14.0401 1612 wercplsupport (ac804569bb2364fb6017370258a4091b) C:\Windows\System32\wercplsupport.dll
17:36:14.0403 1612 wercplsupport - ok
17:36:14.0439 1612 WerSvc (08e420d873e4fd85241ee2421b02c4a4) C:\Windows\System32\WerSvc.dll
17:36:14.0442 1612 WerSvc - ok
17:36:14.0495 1612 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\Windows\system32\DRIVERS\wfplwf.sys
17:36:14.0496 1612 WfpLwf - ok
17:36:14.0524 1612 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\Windows\system32\drivers\wimmount.sys
17:36:14.0525 1612 WIMMount - ok
17:36:14.0632 1612 WinDefend (3fae8f94296001c32eab62cd7d82e0fd) C:\Program Files\Windows Defender\mpsvc.dll
17:36:14.0664 1612 WinDefend - ok
17:36:14.0667 1612 WinHttpAutoProxySvc - ok
17:36:14.0744 1612 Winmgmt (f62e510b6ad4c21eb9fe8668ed251826) C:\Windows\system32\wbem\WMIsvc.dll
17:36:14.0764 1612 Winmgmt - ok
17:36:14.0831 1612 WinRM (1b91cd34ea3a90ab6a4ef0550174f4cc) C:\Windows\system32\WsmSvc.dll
17:36:14.0871 1612 WinRM - ok
17:36:14.0946 1612 WinUsb (a67e5f9a400f3bd1be3d80613b45f708) C:\Windows\system32\DRIVERS\WinUsb.sys
17:36:14.0948 1612 WinUsb - ok
17:36:15.0019 1612 Wlansvc (16935c98ff639d185086a3529b1f2067) C:\Windows\System32\wlansvc.dll
17:36:15.0052 1612 Wlansvc - ok
17:36:15.0219 1612 wlidsvc (fb01d4ae207b9efdbabfc55dc95c7e31) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
17:36:15.0262 1612 wlidsvc - ok
17:36:15.0426 1612 WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\Windows\system32\DRIVERS\wmiacpi.sys
17:36:15.0427 1612 WmiAcpi - ok
17:36:15.0507 1612 wmiApSrv (6eb6b66517b048d87dc1856ddf1f4c3f) C:\Windows\system32\wbem\WmiApSrv.exe
17:36:15.0524 1612 wmiApSrv - ok
17:36:15.0652 1612 WMPNetworkSvc (3b40d3a61aa8c21b88ae57c58ab3122e) C:\Program Files\Windows Media Player\wmpnetwk.exe
17:36:15.0696 1612 WMPNetworkSvc - ok
17:36:15.0724 1612 WPCSvc (a2f0ec770a92f2b3f9de6d518e11409c) C:\Windows\System32\wpcsvc.dll
17:36:15.0726 1612 WPCSvc - ok
17:36:15.0776 1612 WPDBusEnum (aa53356d60af47eacc85bc617a4f3f66) C:\Windows\system32\wpdbusenum.dll
17:36:15.0778 1612 WPDBusEnum - ok
17:36:15.0828 1612 ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\Windows\system32\drivers\ws2ifsl.sys
17:36:15.0828 1612 ws2ifsl - ok
17:36:15.0848 1612 wscsvc (6f5d49efe0e7164e03ae773a3fe25340) C:\Windows\System32\wscsvc.dll
17:36:15.0851 1612 wscsvc - ok
17:36:15.0852 1612 WSearch - ok
17:36:15.0936 1612 wuauserv (3026418a50c5b4761befa632cedb7406) C:\Windows\system32\wuaueng.dll
17:36:15.0986 1612 wuauserv - ok
17:36:16.0162 1612 WudfPf (e714a1c0354636837e20ccbf00888ee7) C:\Windows\system32\drivers\WudfPf.sys
17:36:16.0168 1612 WudfPf - ok
17:36:16.0190 1612 WUDFRd (1023ee888c9b47178c5293ed5336ab69) C:\Windows\system32\DRIVERS\WUDFRd.sys
17:36:16.0205 1612 WUDFRd - ok
17:36:16.0239 1612 wudfsvc (8d1e1e529a2c9e9b6a85b55a345f7629) C:\Windows\System32\WUDFSvc.dll
17:36:16.0242 1612 wudfsvc - ok
17:36:16.0278 1612 WwanSvc (ff2d745b560f7c71b31f30f4d49f73d2) C:\Windows\System32\wwansvc.dll
17:36:16.0298 1612 WwanSvc - ok
17:36:16.0327 1612 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
17:36:16.0518 1612 \Device\Harddisk0\DR0 - ok
17:36:16.0520 1612 Boot (0x1200) (49071b5cf98aef939c3f402707b1db5c) \Device\Harddisk0\DR0\Partition0
17:36:16.0521 1612 \Device\Harddisk0\DR0\Partition0 - ok
17:36:16.0521 1612 ============================================================
17:36:16.0522 1612 Scan finished
17:36:16.0522 1612 ============================================================
17:36:16.0526 1564 Detected object count: 0
17:36:16.0526 1564 Actual detected object count: 0

#4 barracudacool

barracudacool
  • Topic Starter

  • Members
  • 93 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:03:34 AM

Posted 22 May 2012 - 06:32 PM

For super antispyware I am getting the following message when I try to execute the exe file. "SUPERantispyware.exe is not a valid win32 application."

#5 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,556 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:02:34 AM

Posted 22 May 2012 - 08:20 PM

Run a Conficker free Virus Removal Tool

Please try this link/// SUPERAntiSpyware FREE Edition installer

Are you able to run MBAM?

Edited by boopme, 22 May 2012 - 08:22 PM.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#6 barracudacool

barracudacool
  • Topic Starter

  • Members
  • 93 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:03:34 AM

Posted 22 May 2012 - 09:26 PM

Working on it. Its taking forever to download all of this. just really really slow.

#7 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,556 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:02:34 AM

Posted 22 May 2012 - 09:31 PM

Take your time.. If it gets too late I will look back tomorrow.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#8 barracudacool

barracudacool
  • Topic Starter

  • Members
  • 93 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:03:34 AM

Posted 23 May 2012 - 06:31 AM

Stupid question but when you say to "Please download Malwarebytes Anti-Malware Posted Image and save it to your desktop. Important!! When you save the mbam-setup file, rename it to something random (such as 123abc.exe) before beginning the download." How do you do that? It just starts downloading automatically and then gets stuck.

#9 barracudacool

barracudacool
  • Topic Starter

  • Members
  • 93 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:03:34 AM

Posted 23 May 2012 - 07:02 AM

so slow i figured out though how to change file name. malwarebyte downloading now. superantispyware keeps locking up.

#10 barracudacool

barracudacool
  • Topic Starter

  • Members
  • 93 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:03:34 AM

Posted 23 May 2012 - 10:46 AM

Okay so it kept freezing up. went into office and made a disk with the downloads on it and am running everything now. seems to be working.

#11 barracudacool

barracudacool
  • Topic Starter

  • Members
  • 93 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:03:34 AM

Posted 23 May 2012 - 11:02 AM

Malwarebytes log

Malwarebytes Anti-Malware 1.61.0.1400
www.malwarebytes.org

Database version: v2012.05.23.05

Windows 7 Service Pack 1 x86 NTFS (Safe Mode/Networking)
Internet Explorer 9.0.8112.16421
melissa :: MELISSA-PC [administrator]

5/23/2012 11:54:42 AM
mbam-log-2012-05-23 (11-54-42).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 213129
Time elapsed: 3 minute(s), 51 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 3
C:\Users\melissa\Downloads\FreeYouTubeDownloaderInstaller(1).exe (PUP.BundleInstaller.Somoto) -> Quarantined and deleted successfully.
C:\Users\melissa\Downloads\FreeYouTubeDownloaderInstaller.exe (PUP.BundleInstaller.Somoto) -> Quarantined and deleted successfully.
C:\Users\melissa\Local Settings\TempDIR\BetterInstaller.exe (PUP.BundleInstaller.Somoto) -> Quarantined and deleted successfully.

(end)

#12 barracudacool

barracudacool
  • Topic Starter

  • Members
  • 93 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:03:34 AM

Posted 23 May 2012 - 11:47 AM

SUPERAntiSpyware Scan Log
http://www.superantispyware.com

Generated 05/23/2012 at 12:34 PM

Application Version : 5.0.1150

Core Rules Database Version : 8635
Trace Rules Database Version: 6447

Scan type : Complete Scan
Total Scan Time : 00:58:58

Operating System Information
Windows 7 Home Premium 32-bit, Service Pack 1 (Build 6.01.7601)
UAC Off - Administrator

Memory items scanned : 468
Memory threats detected : 0
Registry items scanned : 34634
Registry threats detected : 0
File items scanned : 63699
File threats detected : 54

Adware.Tracking Cookie
C:\Users\melissa\AppData\Roaming\Microsoft\Windows\Cookies\NJSWPZVV.txt [ /adxpose.com ]
C:\Users\melissa\AppData\Roaming\Microsoft\Windows\Cookies\HX1I7KIN.txt [ /doubleclick.net ]
C:\Users\melissa\AppData\Roaming\Microsoft\Windows\Cookies\11AMJBEN.txt [ /collective-media.net ]
C:\Users\melissa\AppData\Roaming\Microsoft\Windows\Cookies\NNYS042W.txt [ /interclick.com ]
C:\Users\melissa\AppData\Roaming\Microsoft\Windows\Cookies\WMCVIBVV.txt [ /invitemedia.com ]
C:\Users\melissa\AppData\Roaming\Microsoft\Windows\Cookies\ES6HO4I2.txt [ /csm.rotator.hadj7.adjuggler.net ]
C:\Users\melissa\AppData\Roaming\Microsoft\Windows\Cookies\1E6B9Z57.txt [ /pointroll.com ]
C:\Users\melissa\AppData\Roaming\Microsoft\Windows\Cookies\ESADPN8T.txt [ /a1.interclick.com ]
C:\Users\melissa\AppData\Roaming\Microsoft\Windows\Cookies\T4QP9IYO.txt [ /media6degrees.com ]
C:\Users\melissa\AppData\Roaming\Microsoft\Windows\Cookies\NE355C2C.txt [ /kanoodle.com ]
C:\Users\melissa\AppData\Roaming\Microsoft\Windows\Cookies\030WR7PZ.txt [ /imrworldwide.com ]
C:\Users\melissa\AppData\Roaming\Microsoft\Windows\Cookies\PAEI4Z41.txt [ /akamai.interclickproxy.com ]
C:\USERS\MELISSA\Cookies\NJSWPZVV.txt [ Cookie:melissa@adxpose.com/ ]
C:\USERS\MELISSA\Cookies\HX1I7KIN.txt [ Cookie:melissa@doubleclick.net/ ]
C:\USERS\MELISSA\Cookies\11AMJBEN.txt [ Cookie:melissa@collective-media.net/ ]
C:\USERS\MELISSA\Cookies\NNYS042W.txt [ Cookie:melissa@interclick.com/ ]
C:\USERS\MELISSA\Cookies\WMCVIBVV.txt [ Cookie:melissa@invitemedia.com/ ]
C:\USERS\MELISSA\Cookies\ESADPN8T.txt [ Cookie:melissa@a1.interclick.com/ ]
C:\USERS\MELISSA\Cookies\030WR7PZ.txt [ Cookie:melissa@imrworldwide.com/cgi-bin ]
C:\USERS\MELISSA\Cookies\PAEI4Z41.txt [ Cookie:melissa@akamai.interclickproxy.com/ ]
.atdmt.com [ C:\USERS\MELISSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.atdmt.com [ C:\USERS\MELISSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.imrworldwide.com [ C:\USERS\MELISSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.imrworldwide.com [ C:\USERS\MELISSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.tribalfusion.com [ C:\USERS\MELISSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.adserver.adtechus.com [ C:\USERS\MELISSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.kontera.com [ C:\USERS\MELISSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.anrtx.tacoda.net [ C:\USERS\MELISSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.at.atwola.com [ C:\USERS\MELISSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.tacoda.at.atwola.com [ C:\USERS\MELISSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.tacoda.at.atwola.com [ C:\USERS\MELISSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.tacoda.at.atwola.com [ C:\USERS\MELISSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.tacoda.at.atwola.com [ C:\USERS\MELISSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.at.atwola.com [ C:\USERS\MELISSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.tacoda.at.atwola.com [ C:\USERS\MELISSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.ar.atwola.com [ C:\USERS\MELISSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.advertising.com [ C:\USERS\MELISSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.revsci.net [ C:\USERS\MELISSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.revsci.net [ C:\USERS\MELISSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.revsci.net [ C:\USERS\MELISSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.revsci.net [ C:\USERS\MELISSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.revsci.net [ C:\USERS\MELISSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.xiti.com [ C:\USERS\MELISSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.legolas-media.com [ C:\USERS\MELISSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.invitemedia.com [ C:\USERS\MELISSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
ad.yieldmanager.com [ C:\USERS\MELISSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.invitemedia.com [ C:\USERS\MELISSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.invitemedia.com [ C:\USERS\MELISSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
ad.yieldmanager.com [ C:\USERS\MELISSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.legolas-media.com [ C:\USERS\MELISSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.legolas-media.com [ C:\USERS\MELISSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.legolas-media.com [ C:\USERS\MELISSA\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]

Trojan.Agent/Gen-Somoto
C:\USERS\MELISSA\DOWNLOADS\FREEYOUTUBEDOWNLOADERINSTALLER(1).EXE
C:\USERS\MELISSA\DOWNLOADS\FREEYOUTUBEDOWNLOADERINSTALLER.EXE

#13 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,556 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:02:34 AM

Posted 23 May 2012 - 08:12 PM

Ok, long day for me,, You did great getting them to run!
How it now after thise scans ? Did you run a conflicker tool?
I think its Somoto and not conflicker..

I'd like us to scan your machine with ESET OnlineScan
  • Hold down Control and click on the following link to open ESET OnlineScan in a new window.
    ESET OnlineScan
  • Click the Posted Image button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on Posted Image to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the Posted Image icon on your desktop.
  • Check Posted Image
  • Click the Posted Image button.
  • Accept any security warnings from your browser.
  • Under scan settings, check Posted Image and check Remove found threats
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, push Posted Image
  • Push Posted Image, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Push the Posted Image button.
  • Push Posted Image


NOTE: In some instances if no malware is found there will be no log produced.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#14 barracudacool

barracudacool
  • Topic Starter

  • Members
  • 93 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:03:34 AM

Posted 24 May 2012 - 10:46 AM

ESET online scan isnt working. keep getting error 2002. I turned off Windows defender and my norton however it still reflects the error.

#15 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,556 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:02:34 AM

Posted 24 May 2012 - 03:17 PM

Remove the Proxy setting in Internet Explorer and/or in FireFox.
1.In Internet Explorer
2.Tools Menu -> Internet Options -> Connections Tab ->Lan Settings > uncheck "use a proxy server" or reconfigure the Proxy server again in case you have set it previously.

1.In Firefox
2.Tools Menu -> Options... -> Advanced Tab -> Network Tab -> "Settings" under Connection > Choose "No Proxy"
3.Click the apply button and restart that computer in normal mode.

Try it again

Edited by boopme, 24 May 2012 - 03:17 PM.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users