Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Trojan:DOS/Alureon.A


  • Please log in to reply
9 replies to this topic

#1 p.martin

p.martin

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:05:47 PM

Posted 29 May 2012 - 01:08 AM

Here is the log for TDSSkiller===========================================================================


08:12:32.0903 5412 TDSS rootkit removing tool 2.7.38.0 May 25 2012 17:35:31
08:12:33.0230 5412 ============================================================
08:12:33.0230 5412 Current date / time: 2012/05/29 08:12:33.0230
08:12:33.0230 5412 SystemInfo:
08:12:33.0230 5412
08:12:33.0230 5412 OS Version: 6.1.7601 ServicePack: 1.0
08:12:33.0230 5412 Product type: Workstation
08:12:33.0230 5412 ComputerName: SLIM-PC
08:12:33.0230 5412 UserName: slim
08:12:33.0230 5412 Windows directory: C:\windows
08:12:33.0230 5412 System windows directory: C:\windows
08:12:33.0230 5412 Running under WOW64
08:12:33.0230 5412 Processor architecture: Intel x64
08:12:33.0230 5412 Number of processors: 4
08:12:33.0230 5412 Page size: 0x1000
08:12:33.0230 5412 Boot type: Normal boot
08:12:33.0230 5412 ============================================================
08:12:33.0761 5412 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
08:12:33.0761 5412 ============================================================
08:12:33.0761 5412 \Device\Harddisk0\DR0:
08:12:33.0761 5412 MBR partitions:
08:12:33.0761 5412 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x2EE800, BlocksNum 0x2308C000
08:12:33.0761 5412 ============================================================
08:12:33.0807 5412 C: <-> \Device\Harddisk0\DR0\Partition0
08:12:33.0807 5412 ============================================================
08:12:33.0807 5412 Initialize success
08:12:33.0807 5412 ============================================================
08:12:36.0522 5460 ============================================================
08:12:36.0522 5460 Scan started
08:12:36.0522 5460 Mode: Manual;
08:12:36.0522 5460 ============================================================
08:12:37.0988 5460 1394ohci (a87d604aea360176311474c87a63bb88) C:\windows\system32\drivers\1394ohci.sys
08:12:38.0004 5460 1394ohci - ok
08:12:38.0051 5460 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\windows\system32\drivers\ACPI.sys
08:12:38.0066 5460 ACPI - ok
08:12:38.0097 5460 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\windows\system32\drivers\acpipmi.sys
08:12:38.0097 5460 AcpiPmi - ok
08:12:38.0207 5460 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
08:12:38.0207 5460 AdobeARMservice - ok
08:12:38.0363 5460 AdobeFlashPlayerUpdateSvc (0d4c486a24a711a45fd83acdf4d18506) C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
08:12:38.0378 5460 AdobeFlashPlayerUpdateSvc - ok
08:12:38.0519 5460 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\windows\system32\DRIVERS\adp94xx.sys
08:12:38.0519 5460 adp94xx - ok
08:12:38.0581 5460 adpahci (597f78224ee9224ea1a13d6350ced962) C:\windows\system32\DRIVERS\adpahci.sys
08:12:38.0581 5460 adpahci - ok
08:12:38.0612 5460 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\windows\system32\DRIVERS\adpu320.sys
08:12:38.0612 5460 adpu320 - ok
08:12:38.0659 5460 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\windows\System32\aelupsvc.dll
08:12:38.0659 5460 AeLookupSvc - ok
08:12:38.0737 5460 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\windows\system32\drivers\afd.sys
08:12:38.0737 5460 AFD - ok
08:12:38.0784 5460 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\windows\system32\drivers\agp440.sys
08:12:38.0784 5460 agp440 - ok
08:12:38.0815 5460 ALG (3290d6946b5e30e70414990574883ddb) C:\windows\System32\alg.exe
08:12:38.0831 5460 ALG - ok
08:12:38.0862 5460 aliide (5812713a477a3ad7363c7438ca2ee038) C:\windows\system32\drivers\aliide.sys
08:12:38.0893 5460 aliide - ok
08:12:38.0924 5460 amdide (1ff8b4431c353ce385c875f194924c0c) C:\windows\system32\drivers\amdide.sys
08:12:38.0940 5460 amdide - ok
08:12:38.0955 5460 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\windows\system32\DRIVERS\amdk8.sys
08:12:38.0955 5460 AmdK8 - ok
08:12:39.0002 5460 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\windows\system32\DRIVERS\amdppm.sys
08:12:39.0002 5460 AmdPPM - ok
08:12:39.0049 5460 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\windows\system32\drivers\amdsata.sys
08:12:39.0049 5460 amdsata - ok
08:12:39.0080 5460 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\windows\system32\DRIVERS\amdsbs.sys
08:12:39.0096 5460 amdsbs - ok
08:12:39.0127 5460 amdxata (540daf1cea6094886d72126fd7c33048) C:\windows\system32\drivers\amdxata.sys
08:12:39.0127 5460 amdxata - ok
08:12:39.0283 5460 AppHostSvc (59d01fa91962c9c1e9b4022b2d3b46db) C:\windows\system32\inetsrv\apphostsvc.dll
08:12:39.0283 5460 AppHostSvc - ok
08:12:39.0330 5460 AppID (89a69c3f2f319b43379399547526d952) C:\windows\system32\drivers\appid.sys
08:12:39.0330 5460 AppID - ok
08:12:39.0345 5460 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\windows\System32\appidsvc.dll
08:12:39.0345 5460 AppIDSvc - ok
08:12:39.0392 5460 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\windows\System32\appinfo.dll
08:12:39.0392 5460 Appinfo - ok
08:12:39.0439 5460 arc (c484f8ceb1717c540242531db7845c4e) C:\windows\system32\DRIVERS\arc.sys
08:12:39.0455 5460 arc - ok
08:12:39.0501 5460 arcsas (019af6924aefe7839f61c830227fe79c) C:\windows\system32\DRIVERS\arcsas.sys
08:12:39.0517 5460 arcsas - ok
08:12:39.0642 5460 aspnet_state (9217d874131ae6ff8f642f124f00a555) C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
08:12:39.0642 5460 aspnet_state - ok
08:12:39.0673 5460 AsyncMac (769765ce2cc62867468cea93969b2242) C:\windows\system32\DRIVERS\asyncmac.sys
08:12:39.0673 5460 AsyncMac - ok
08:12:39.0720 5460 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\windows\system32\drivers\atapi.sys
08:12:39.0720 5460 atapi - ok
08:12:39.0876 5460 athr (d6cad7e5b05055bb8226bdcb1644da27) C:\windows\system32\DRIVERS\athrx.sys
08:12:39.0907 5460 athr - ok
08:12:40.0047 5460 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\windows\System32\Audiosrv.dll
08:12:40.0063 5460 AudioEndpointBuilder - ok
08:12:40.0079 5460 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\windows\System32\Audiosrv.dll
08:12:40.0079 5460 AudioSrv - ok
08:12:40.0125 5460 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\windows\System32\AxInstSV.dll
08:12:40.0125 5460 AxInstSV - ok
08:12:40.0188 5460 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\windows\system32\DRIVERS\bxvbda.sys
08:12:40.0188 5460 b06bdrv - ok
08:12:40.0219 5460 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\windows\system32\DRIVERS\b57nd60a.sys
08:12:40.0219 5460 b57nd60a - ok
08:12:40.0266 5460 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\windows\System32\bdesvc.dll
08:12:40.0266 5460 BDESVC - ok
08:12:40.0281 5460 Beep (16a47ce2decc9b099349a5f840654746) C:\windows\system32\drivers\Beep.sys
08:12:40.0297 5460 Beep - ok
08:12:40.0375 5460 BFE (82974d6a2fd19445cc5171fc378668a4) C:\windows\System32\bfe.dll
08:12:40.0391 5460 BFE - ok
08:12:40.0625 5460 BHDrvx64 (5b1fe9d351c284701c8051da2aa81df6) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.5.1.2\Definitions\BASHDefs\20120517.001\BHDrvx64.sys
08:12:40.0640 5460 BHDrvx64 - ok
08:12:40.0781 5460 BITS (1ea7969e3271cbc59e1730697dc74682) C:\windows\System32\qmgr.dll
08:12:40.0796 5460 BITS - ok
08:12:40.0843 5460 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\windows\system32\DRIVERS\blbdrive.sys
08:12:40.0874 5460 blbdrive - ok
08:12:40.0921 5460 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\windows\system32\DRIVERS\bowser.sys
08:12:40.0921 5460 bowser - ok
08:12:40.0952 5460 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\windows\system32\DRIVERS\BrFiltLo.sys
08:12:40.0968 5460 BrFiltLo - ok
08:12:40.0983 5460 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\windows\system32\DRIVERS\BrFiltUp.sys
08:12:40.0983 5460 BrFiltUp - ok
08:12:41.0030 5460 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\windows\System32\browser.dll
08:12:41.0030 5460 Browser - ok
08:12:41.0077 5460 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\windows\System32\Drivers\Brserid.sys
08:12:41.0077 5460 Brserid - ok
08:12:41.0093 5460 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\windows\System32\Drivers\BrSerWdm.sys
08:12:41.0093 5460 BrSerWdm - ok
08:12:41.0108 5460 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\windows\System32\Drivers\BrUsbMdm.sys
08:12:41.0108 5460 BrUsbMdm - ok
08:12:41.0108 5460 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\windows\System32\Drivers\BrUsbSer.sys
08:12:41.0108 5460 BrUsbSer - ok
08:12:41.0124 5460 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\windows\system32\DRIVERS\bthmodem.sys
08:12:41.0124 5460 BTHMODEM - ok
08:12:41.0155 5460 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\windows\system32\bthserv.dll
08:12:41.0155 5460 bthserv - ok
08:12:41.0249 5460 ccSet_NIS (0e1737a63aec0f6de231bb59836c0a11) C:\windows\system32\drivers\NISx64\1307010.005\ccSetx64.sys
08:12:41.0249 5460 ccSet_NIS - ok
08:12:41.0295 5460 cdfs (b8bd2bb284668c84865658c77574381a) C:\windows\system32\DRIVERS\cdfs.sys
08:12:41.0295 5460 cdfs - ok
08:12:41.0342 5460 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\windows\system32\drivers\cdrom.sys
08:12:41.0358 5460 cdrom - ok
08:12:41.0389 5460 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\windows\System32\certprop.dll
08:12:41.0389 5460 CertPropSvc - ok
08:12:41.0420 5460 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\windows\system32\DRIVERS\circlass.sys
08:12:41.0420 5460 circlass - ok
08:12:41.0483 5460 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\windows\system32\CLFS.sys
08:12:41.0483 5460 CLFS - ok
08:12:41.0545 5460 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
08:12:41.0561 5460 clr_optimization_v2.0.50727_32 - ok
08:12:41.0592 5460 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
08:12:41.0607 5460 clr_optimization_v2.0.50727_64 - ok
08:12:41.0685 5460 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
08:12:41.0685 5460 clr_optimization_v4.0.30319_32 - ok
08:12:41.0732 5460 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
08:12:41.0732 5460 clr_optimization_v4.0.30319_64 - ok
08:12:41.0763 5460 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\windows\system32\DRIVERS\CmBatt.sys
08:12:41.0763 5460 CmBatt - ok
08:12:41.0779 5460 cmdide (e19d3f095812725d88f9001985b94edd) C:\windows\system32\drivers\cmdide.sys
08:12:41.0779 5460 cmdide - ok
08:12:41.0841 5460 CNG (c4943b6c962e4b82197542447ad599f4) C:\windows\system32\Drivers\cng.sys
08:12:41.0841 5460 CNG - ok
08:12:41.0919 5460 CnxtHdAudService (25c58ee97be0416a373e3e4f855206b5) C:\windows\system32\drivers\CHDRT64.sys
08:12:41.0935 5460 CnxtHdAudService - ok
08:12:41.0966 5460 Compbatt (102de219c3f61415f964c88e9085ad14) C:\windows\system32\DRIVERS\compbatt.sys
08:12:41.0966 5460 Compbatt - ok
08:12:41.0997 5460 CompositeBus (03edb043586cceba243d689bdda370a8) C:\windows\system32\drivers\CompositeBus.sys
08:12:41.0997 5460 CompositeBus - ok
08:12:42.0013 5460 COMSysApp - ok
08:12:42.0044 5460 crcdisk (1c827878a998c18847245fe1f34ee597) C:\windows\system32\DRIVERS\crcdisk.sys
08:12:42.0060 5460 crcdisk - ok
08:12:42.0091 5460 CryptSvc (15597883fbe9b056f276ada3ad87d9af) C:\windows\system32\cryptsvc.dll
08:12:42.0091 5460 CryptSvc - ok
08:12:42.0169 5460 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\windows\system32\rpcss.dll
08:12:42.0169 5460 DcomLaunch - ok
08:12:42.0216 5460 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\windows\System32\defragsvc.dll
08:12:42.0231 5460 defragsvc - ok
08:12:42.0263 5460 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\windows\system32\Drivers\dfsc.sys
08:12:42.0263 5460 DfsC - ok
08:12:42.0325 5460 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\windows\system32\dhcpcore.dll
08:12:42.0325 5460 Dhcp - ok
08:12:42.0356 5460 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\windows\system32\drivers\discache.sys
08:12:42.0356 5460 discache - ok
08:12:42.0403 5460 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\windows\system32\DRIVERS\disk.sys
08:12:42.0403 5460 Disk - ok
08:12:42.0434 5460 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\windows\System32\dnsrslvr.dll
08:12:42.0450 5460 Dnscache - ok
08:12:42.0481 5460 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\windows\System32\dot3svc.dll
08:12:42.0512 5460 dot3svc - ok
08:12:42.0559 5460 Dot4 (b42ed0320c6e41102fde0005154849bb) C:\windows\system32\DRIVERS\Dot4.sys
08:12:42.0559 5460 Dot4 - ok
08:12:42.0590 5460 Dot4Print (e9f5969233c5d89f3c35e3a66a52a361) C:\windows\system32\DRIVERS\Dot4Prt.sys
08:12:42.0590 5460 Dot4Print - ok
08:12:42.0621 5460 dot4usb (fd05a02b0370bc3000f402e543ca5814) C:\windows\system32\DRIVERS\dot4usb.sys
08:12:42.0621 5460 dot4usb - ok
08:12:42.0653 5460 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\windows\system32\dps.dll
08:12:42.0653 5460 DPS - ok
08:12:42.0715 5460 drmkaud (9b19f34400d24df84c858a421c205754) C:\windows\system32\drivers\drmkaud.sys
08:12:42.0715 5460 drmkaud - ok
08:12:42.0793 5460 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\windows\System32\drivers\dxgkrnl.sys
08:12:42.0809 5460 DXGKrnl - ok
08:12:42.0855 5460 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\windows\System32\eapsvc.dll
08:12:42.0855 5460 EapHost - ok
08:12:43.0105 5460 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\windows\system32\DRIVERS\evbda.sys
08:12:43.0199 5460 ebdrv - ok
08:12:43.0339 5460 eeCtrl (0c3f9eff8ddd9f9eb56d754b4620155f) C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
08:12:43.0355 5460 eeCtrl - ok
08:12:43.0433 5460 EFS (c118a82cd78818c29ab228366ebf81c3) C:\windows\System32\lsass.exe
08:12:43.0448 5460 EFS - ok
08:12:43.0542 5460 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\windows\ehome\ehRecvr.exe
08:12:43.0557 5460 ehRecvr - ok
08:12:43.0589 5460 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\windows\ehome\ehsched.exe
08:12:43.0604 5460 ehSched - ok
08:12:43.0698 5460 elxstor (0e5da5369a0fcaea12456dd852545184) C:\windows\system32\DRIVERS\elxstor.sys
08:12:43.0729 5460 elxstor - ok
08:12:43.0838 5460 EraserUtilRebootDrv (8c0f9b877bc0b7ffd327ef55f9efb642) C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
08:12:43.0869 5460 EraserUtilRebootDrv - ok
08:12:43.0901 5460 ErrDev (34a3c54752046e79a126e15c51db409b) C:\windows\system32\drivers\errdev.sys
08:12:43.0916 5460 ErrDev - ok
08:12:43.0979 5460 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\windows\system32\es.dll
08:12:43.0994 5460 EventSystem - ok
08:12:44.0041 5460 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\windows\system32\drivers\exfat.sys
08:12:44.0041 5460 exfat - ok
08:12:44.0072 5460 fastfat (0adc83218b66a6db380c330836f3e36d) C:\windows\system32\drivers\fastfat.sys
08:12:44.0072 5460 fastfat - ok
08:12:44.0135 5460 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\windows\system32\fxssvc.exe
08:12:44.0150 5460 Fax - ok
08:12:44.0181 5460 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\windows\system32\DRIVERS\fdc.sys
08:12:44.0181 5460 fdc - ok
08:12:44.0197 5460 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\windows\system32\fdPHost.dll
08:12:44.0197 5460 fdPHost - ok
08:12:44.0228 5460 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\windows\system32\fdrespub.dll
08:12:44.0228 5460 FDResPub - ok
08:12:44.0244 5460 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\windows\system32\drivers\fileinfo.sys
08:12:44.0244 5460 FileInfo - ok
08:12:44.0259 5460 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\windows\system32\drivers\filetrace.sys
08:12:44.0259 5460 Filetrace - ok
08:12:44.0291 5460 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\windows\system32\DRIVERS\flpydisk.sys
08:12:44.0291 5460 flpydisk - ok
08:12:44.0337 5460 FltMgr (da6b67270fd9db3697b20fce94950741) C:\windows\system32\drivers\fltmgr.sys
08:12:44.0337 5460 FltMgr - ok
08:12:44.0431 5460 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\windows\system32\FntCache.dll
08:12:44.0447 5460 FontCache - ok
08:12:44.0525 5460 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
08:12:44.0525 5460 FontCache3.0.0.0 - ok
08:12:44.0571 5460 FsDepends (d43703496149971890703b4b1b723eac) C:\windows\system32\drivers\FsDepends.sys
08:12:44.0571 5460 FsDepends - ok
08:12:44.0603 5460 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\windows\system32\drivers\Fs_Rec.sys
08:12:44.0603 5460 Fs_Rec - ok
08:12:44.0665 5460 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\windows\system32\DRIVERS\fvevol.sys
08:12:44.0665 5460 fvevol - ok
08:12:44.0696 5460 FwLnk (60acb128e64c35c2b4e4aab1b0a5c293) C:\windows\system32\DRIVERS\FwLnk.sys
08:12:44.0696 5460 FwLnk - ok
08:12:44.0743 5460 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\windows\system32\DRIVERS\gagp30kx.sys
08:12:44.0743 5460 gagp30kx - ok
08:12:44.0837 5460 GameConsoleService (1fda0df739234c4023851a282dd28704) C:\Program Files (x86)\TOSHIBA Games\TOSHIBA Game Console\GameConsoleService.exe
08:12:44.0837 5460 GameConsoleService - ok
08:12:44.0883 5460 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\windows\system32\DRIVERS\GEARAspiWDM.sys
08:12:44.0899 5460 GEARAspiWDM - ok
08:12:44.0977 5460 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\windows\System32\gpsvc.dll
08:12:44.0993 5460 gpsvc - ok
08:12:45.0071 5460 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
08:12:45.0086 5460 gupdate - ok
08:12:45.0102 5460 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
08:12:45.0102 5460 gupdatem - ok
08:12:45.0133 5460 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\windows\system32\drivers\hcw85cir.sys
08:12:45.0133 5460 hcw85cir - ok
08:12:45.0196 5460 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\windows\system32\drivers\HdAudio.sys
08:12:45.0211 5460 HdAudAddService - ok
08:12:45.0258 5460 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\windows\system32\drivers\HDAudBus.sys
08:12:45.0258 5460 HDAudBus - ok
08:12:45.0289 5460 HECIx64 (b6ac71aaa2b10848f57fc49d55a651af) C:\windows\system32\DRIVERS\HECIx64.sys
08:12:45.0289 5460 HECIx64 - ok
08:12:45.0320 5460 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\windows\system32\DRIVERS\HidBatt.sys
08:12:45.0336 5460 HidBatt - ok
08:12:45.0352 5460 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\windows\system32\DRIVERS\hidbth.sys
08:12:45.0367 5460 HidBth - ok
08:12:45.0398 5460 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\windows\system32\DRIVERS\hidir.sys
08:12:45.0398 5460 HidIr - ok
08:12:45.0430 5460 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\windows\system32\hidserv.dll
08:12:45.0430 5460 hidserv - ok
08:12:45.0476 5460 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\windows\system32\drivers\hidusb.sys
08:12:45.0476 5460 HidUsb - ok
08:12:45.0508 5460 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\windows\system32\kmsvc.dll
08:12:45.0508 5460 hkmsvc - ok
08:12:45.0554 5460 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\windows\system32\ListSvc.dll
08:12:45.0570 5460 HomeGroupListener - ok
08:12:45.0601 5460 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\windows\system32\provsvc.dll
08:12:45.0601 5460 HomeGroupProvider - ok
08:12:45.0648 5460 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\windows\system32\drivers\HpSAMD.sys
08:12:45.0664 5460 HpSAMD - ok
08:12:45.0742 5460 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\windows\system32\drivers\HTTP.sys
08:12:45.0742 5460 HTTP - ok
08:12:45.0788 5460 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\windows\system32\drivers\hwpolicy.sys
08:12:45.0788 5460 hwpolicy - ok
08:12:45.0820 5460 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\windows\system32\drivers\i8042prt.sys
08:12:45.0820 5460 i8042prt - ok
08:12:45.0898 5460 iaStor (85977cd13fc16069ce0af7943a811775) C:\windows\system32\DRIVERS\iaStor.sys
08:12:45.0898 5460 iaStor - ok
08:12:45.0960 5460 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\windows\system32\drivers\iaStorV.sys
08:12:45.0976 5460 iaStorV - ok
08:12:46.0116 5460 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
08:12:46.0147 5460 idsvc - ok
08:12:46.0397 5460 IDSVia64 (4e9e0e5a3b0efeb27491c26be1d97fda) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.5.1.2\Definitions\IPSDefs\20120528.001\IDSvia64.sys
08:12:46.0412 5460 IDSVia64 - ok
08:12:47.0192 5460 igfx (898ab5bfed7040d7ab07af01885eb944) C:\windows\system32\DRIVERS\igdkmd64.sys
08:12:47.0395 5460 igfx - ok
08:12:47.0551 5460 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\windows\system32\DRIVERS\iirsp.sys
08:12:47.0551 5460 iirsp - ok
08:12:47.0629 5460 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\windows\System32\ikeext.dll
08:12:47.0645 5460 IKEEXT - ok
08:12:47.0692 5460 Impcd (4b6363cd4610bb848531bb260b15dfcc) C:\windows\system32\DRIVERS\Impcd.sys
08:12:47.0692 5460 Impcd - ok
08:12:47.0738 5460 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\windows\system32\drivers\intelide.sys
08:12:47.0738 5460 intelide - ok
08:12:47.0785 5460 intelppm (ada036632c664caa754079041cf1f8c1) C:\windows\system32\DRIVERS\intelppm.sys
08:12:47.0785 5460 intelppm - ok
08:12:47.0816 5460 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\windows\system32\ipbusenum.dll
08:12:47.0832 5460 IPBusEnum - ok
08:12:47.0863 5460 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\windows\system32\DRIVERS\ipfltdrv.sys
08:12:47.0863 5460 IpFilterDriver - ok
08:12:47.0926 5460 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\windows\System32\iphlpsvc.dll
08:12:47.0926 5460 iphlpsvc - ok
08:12:47.0957 5460 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\windows\system32\drivers\IPMIDrv.sys
08:12:47.0988 5460 IPMIDRV - ok
08:12:48.0019 5460 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\windows\system32\drivers\ipnat.sys
08:12:48.0050 5460 IPNAT - ok
08:12:48.0082 5460 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\windows\system32\drivers\irenum.sys
08:12:48.0082 5460 IRENUM - ok
08:12:48.0128 5460 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\windows\system32\drivers\isapnp.sys
08:12:48.0128 5460 isapnp - ok
08:12:48.0175 5460 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\windows\system32\drivers\msiscsi.sys
08:12:48.0175 5460 iScsiPrt - ok
08:12:48.0206 5460 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\windows\system32\drivers\kbdclass.sys
08:12:48.0206 5460 kbdclass - ok
08:12:48.0238 5460 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\windows\system32\drivers\kbdhid.sys
08:12:48.0238 5460 kbdhid - ok
08:12:48.0269 5460 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\windows\system32\lsass.exe
08:12:48.0269 5460 KeyIso - ok
08:12:48.0284 5460 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\windows\system32\Drivers\ksecdd.sys
08:12:48.0284 5460 KSecDD - ok
08:12:48.0300 5460 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\windows\system32\Drivers\ksecpkg.sys
08:12:48.0316 5460 KSecPkg - ok
08:12:48.0347 5460 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\windows\system32\drivers\ksthunk.sys
08:12:48.0347 5460 ksthunk - ok
08:12:48.0378 5460 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\windows\system32\msdtckrm.dll
08:12:48.0394 5460 KtmRm - ok
08:12:48.0425 5460 L1C (48686c29856f46443952a831424f8d6f) C:\windows\system32\DRIVERS\L1C62x64.sys
08:12:48.0440 5460 L1C - ok
08:12:48.0472 5460 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\windows\system32\srvsvc.dll
08:12:48.0487 5460 LanmanServer - ok
08:12:48.0518 5460 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\windows\System32\wkssvc.dll
08:12:48.0518 5460 LanmanWorkstation - ok
08:12:48.0565 5460 lltdio (1538831cf8ad2979a04c423779465827) C:\windows\system32\DRIVERS\lltdio.sys
08:12:48.0565 5460 lltdio - ok
08:12:48.0612 5460 lltdsvc (c1185803384ab3feed115f79f109427f) C:\windows\System32\lltdsvc.dll
08:12:48.0612 5460 lltdsvc - ok
08:12:48.0643 5460 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\windows\System32\lmhsvc.dll
08:12:48.0643 5460 lmhosts - ok
08:12:48.0768 5460 LMS (259e9d38f7cabb068530101f87b6c202) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
08:12:48.0768 5460 LMS - ok
08:12:48.0815 5460 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\windows\system32\DRIVERS\lsi_fc.sys
08:12:48.0815 5460 LSI_FC - ok
08:12:48.0846 5460 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\windows\system32\DRIVERS\lsi_sas.sys
08:12:48.0846 5460 LSI_SAS - ok
08:12:48.0893 5460 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\windows\system32\DRIVERS\lsi_sas2.sys
08:12:48.0893 5460 LSI_SAS2 - ok
08:12:48.0924 5460 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\windows\system32\DRIVERS\lsi_scsi.sys
08:12:48.0924 5460 LSI_SCSI - ok
08:12:48.0955 5460 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\windows\system32\drivers\luafv.sys
08:12:48.0971 5460 luafv - ok
08:12:49.0002 5460 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\windows\system32\Mcx2Svc.dll
08:12:49.0002 5460 Mcx2Svc - ok
08:12:49.0096 5460 MDM (11f714f85530a2bd134074dc30e99fca) C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
08:12:49.0111 5460 MDM - ok
08:12:49.0127 5460 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\windows\system32\DRIVERS\megasas.sys
08:12:49.0127 5460 megasas - ok
08:12:49.0174 5460 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\windows\system32\DRIVERS\MegaSR.sys
08:12:49.0174 5460 MegaSR - ok
08:12:49.0205 5460 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\windows\system32\mmcss.dll
08:12:49.0205 5460 MMCSS - ok
08:12:49.0220 5460 Modem (800ba92f7010378b09f9ed9270f07137) C:\windows\system32\drivers\modem.sys
08:12:49.0220 5460 Modem - ok
08:12:49.0252 5460 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\windows\system32\DRIVERS\monitor.sys
08:12:49.0252 5460 monitor - ok
08:12:49.0298 5460 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\windows\system32\drivers\mouclass.sys
08:12:49.0298 5460 mouclass - ok
08:12:49.0330 5460 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\windows\system32\DRIVERS\mouhid.sys
08:12:49.0330 5460 mouhid - ok
08:12:49.0376 5460 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\windows\system32\drivers\mountmgr.sys
08:12:49.0376 5460 mountmgr - ok
08:12:49.0408 5460 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\windows\system32\drivers\mpio.sys
08:12:49.0423 5460 mpio - ok
08:12:49.0454 5460 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\windows\system32\drivers\mpsdrv.sys
08:12:49.0454 5460 mpsdrv - ok
08:12:49.0517 5460 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\windows\system32\mpssvc.dll
08:12:49.0548 5460 MpsSvc - ok
08:12:49.0564 5460 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\windows\system32\drivers\mrxdav.sys
08:12:49.0579 5460 MRxDAV - ok
08:12:49.0610 5460 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\windows\system32\DRIVERS\mrxsmb.sys
08:12:49.0610 5460 mrxsmb - ok
08:12:49.0642 5460 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\windows\system32\DRIVERS\mrxsmb10.sys
08:12:49.0642 5460 mrxsmb10 - ok
08:12:49.0673 5460 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\windows\system32\DRIVERS\mrxsmb20.sys
08:12:49.0673 5460 mrxsmb20 - ok
08:12:49.0704 5460 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\windows\system32\drivers\msahci.sys
08:12:49.0704 5460 msahci - ok
08:12:49.0829 5460 MsDepSvc (aaac4b494de45836121a40aec980b631) C:\Program Files\IIS\Microsoft Web Deploy\MsDepSvc.exe
08:12:49.0829 5460 MsDepSvc - ok
08:12:49.0860 5460 msdsm (db801a638d011b9633829eb6f663c900) C:\windows\system32\drivers\msdsm.sys
08:12:49.0860 5460 msdsm - ok
08:12:49.0891 5460 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\windows\System32\msdtc.exe
08:12:49.0891 5460 MSDTC - ok
08:12:49.0922 5460 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\windows\system32\drivers\Msfs.sys
08:12:49.0922 5460 Msfs - ok
08:12:49.0938 5460 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\windows\System32\drivers\mshidkmdf.sys
08:12:49.0954 5460 mshidkmdf - ok
08:12:49.0985 5460 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\windows\system32\drivers\msisadrv.sys
08:12:49.0985 5460 msisadrv - ok
08:12:50.0032 5460 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\windows\system32\iscsiexe.dll
08:12:50.0047 5460 MSiSCSI - ok
08:12:50.0063 5460 msiserver - ok
08:12:50.0094 5460 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\windows\system32\drivers\MSKSSRV.sys
08:12:50.0110 5460 MSKSSRV - ok
08:12:50.0125 5460 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\windows\system32\drivers\MSPCLOCK.sys
08:12:50.0125 5460 MSPCLOCK - ok
08:12:50.0141 5460 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\windows\system32\drivers\MSPQM.sys
08:12:50.0141 5460 MSPQM - ok
08:12:50.0188 5460 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\windows\system32\drivers\MsRPC.sys
08:12:50.0188 5460 MsRPC - ok
08:12:50.0219 5460 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\windows\system32\drivers\mssmbios.sys
08:12:50.0219 5460 mssmbios - ok
08:12:50.0328 5460 MSSQL$SQLEXPRESS - ok
08:12:50.0437 5460 MSSQLServerADHelper100 (7a2a8c975356858eb38466a6b1592e8d) c:\Program Files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE
08:12:50.0437 5460 MSSQLServerADHelper100 - ok
08:12:50.0468 5460 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\windows\system32\drivers\MSTEE.sys
08:12:50.0468 5460 MSTEE - ok
08:12:50.0484 5460 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\windows\system32\DRIVERS\MTConfig.sys
08:12:50.0484 5460 MTConfig - ok
08:12:50.0500 5460 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\windows\system32\Drivers\mup.sys
08:12:50.0515 5460 Mup - ok
08:12:50.0593 5460 MySQL55 - ok
08:12:50.0640 5460 napagent (582ac6d9873e31dfa28a4547270862dd) C:\windows\system32\qagentRT.dll
08:12:50.0656 5460 napagent - ok
08:12:50.0718 5460 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\windows\system32\DRIVERS\nwifi.sys
08:12:50.0734 5460 NativeWifiP - ok
08:12:50.0905 5460 NAVENG (8043d41f881d6ace40b854ad6e32217f) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.5.1.2\Definitions\VirusDefs\20120528.024\ENG64.SYS
08:12:50.0905 5460 NAVENG - ok
08:12:51.0202 5460 NAVEX15 (9a9ab2fc45d701daed465d14980f1305) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.5.1.2\Definitions\VirusDefs\20120528.024\EX64.SYS
08:12:51.0248 5460 NAVEX15 - ok
08:12:51.0420 5460 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\windows\system32\drivers\ndis.sys
08:12:51.0436 5460 NDIS - ok
08:12:51.0467 5460 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\windows\system32\DRIVERS\ndiscap.sys
08:12:51.0482 5460 NdisCap - ok
08:12:51.0514 5460 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\windows\system32\DRIVERS\ndistapi.sys
08:12:51.0514 5460 NdisTapi - ok
08:12:51.0545 5460 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\windows\system32\DRIVERS\ndisuio.sys
08:12:51.0545 5460 Ndisuio - ok
08:12:51.0576 5460 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\windows\system32\DRIVERS\ndiswan.sys
08:12:51.0576 5460 NdisWan - ok
08:12:51.0607 5460 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\windows\system32\drivers\NDProxy.sys
08:12:51.0607 5460 NDProxy - ok
08:12:51.0654 5460 Net Driver HPZ12 (dc6530a291d4bdf6df399f1f128e7f8f) C:\Windows\system32\HPZinw12.dll
08:12:51.0654 5460 Net Driver HPZ12 - ok
08:12:51.0685 5460 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\windows\system32\DRIVERS\netbios.sys
08:12:51.0685 5460 NetBIOS - ok
08:12:51.0732 5460 NetBT (09594d1089c523423b32a4229263f068) C:\windows\system32\DRIVERS\netbt.sys
08:12:51.0732 5460 NetBT - ok
08:12:51.0779 5460 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\windows\system32\lsass.exe
08:12:51.0779 5460 Netlogon - ok
08:12:51.0841 5460 Netman (847d3ae376c0817161a14a82c8922a9e) C:\windows\System32\netman.dll
08:12:51.0857 5460 Netman - ok
08:12:51.0950 5460 NetMsmqActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
08:12:51.0950 5460 NetMsmqActivator - ok
08:12:51.0966 5460 NetPipeActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
08:12:51.0966 5460 NetPipeActivator - ok
08:12:52.0013 5460 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\windows\System32\netprofm.dll
08:12:52.0028 5460 netprofm - ok
08:12:52.0044 5460 NetTcpActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
08:12:52.0044 5460 NetTcpActivator - ok
08:12:52.0044 5460 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
08:12:52.0044 5460 NetTcpPortSharing - ok
08:12:52.0106 5460 nfrd960 (77889813be4d166cdab78ddba990da92) C:\windows\system32\DRIVERS\nfrd960.sys
08:12:52.0106 5460 nfrd960 - ok
08:12:52.0216 5460 NIS (c6948f034d7edabcfa2234d399fc78bc) C:\Program Files (x86)\Norton Internet Security\Engine\19.7.1.5\ccSvcHst.exe
08:12:52.0216 5460 NIS - ok
08:12:52.0262 5460 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\windows\System32\nlasvc.dll
08:12:52.0262 5460 NlaSvc - ok
08:12:52.0294 5460 Norton PC Checkup Application Launcher - ok
08:12:52.0325 5460 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\windows\system32\drivers\Npfs.sys
08:12:52.0325 5460 Npfs - ok
08:12:52.0356 5460 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\windows\system32\nsisvc.dll
08:12:52.0356 5460 nsi - ok
08:12:52.0372 5460 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\windows\system32\drivers\nsiproxy.sys
08:12:52.0372 5460 nsiproxy - ok
08:12:52.0496 5460 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\windows\system32\drivers\Ntfs.sys
08:12:52.0512 5460 Ntfs - ok
08:12:52.0621 5460 Null (9899284589f75fa8724ff3d16aed75c1) C:\windows\system32\drivers\Null.sys
08:12:52.0621 5460 Null - ok
08:12:52.0652 5460 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\windows\system32\drivers\nvraid.sys
08:12:52.0668 5460 nvraid - ok
08:12:52.0684 5460 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\windows\system32\drivers\nvstor.sys
08:12:52.0684 5460 nvstor - ok
08:12:52.0730 5460 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\windows\system32\drivers\nv_agp.sys
08:12:52.0730 5460 nv_agp - ok
08:12:52.0762 5460 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\windows\system32\drivers\ohci1394.sys
08:12:52.0777 5460 ohci1394 - ok
08:12:52.0840 5460 ose (7a56cf3e3f12e8af599963b16f50fb6a) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
08:12:52.0840 5460 ose - ok
08:12:52.0886 5460 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\windows\system32\pnrpsvc.dll
08:12:52.0902 5460 p2pimsvc - ok
08:12:52.0949 5460 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\windows\system32\p2psvc.dll
08:12:52.0949 5460 p2psvc - ok
08:12:52.0996 5460 Parport (0086431c29c35be1dbc43f52cc273887) C:\windows\system32\DRIVERS\parport.sys
08:12:52.0996 5460 Parport - ok
08:12:53.0042 5460 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\windows\system32\drivers\partmgr.sys
08:12:53.0042 5460 partmgr - ok
08:12:53.0074 5460 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\windows\System32\pcasvc.dll
08:12:53.0074 5460 PcaSvc - ok
08:12:53.0120 5460 PCCUJobMgr (2f86be1818c2d7ac90478e3323ee7fcb) C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.6.22\ccSvcHst.exe
08:12:53.0120 5460 PCCUJobMgr - ok
08:12:53.0167 5460 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\windows\system32\drivers\pci.sys
08:12:53.0167 5460 pci - ok
08:12:53.0183 5460 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\windows\system32\drivers\pciide.sys
08:12:53.0183 5460 pciide - ok
08:12:53.0214 5460 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\windows\system32\DRIVERS\pcmcia.sys
08:12:53.0230 5460 pcmcia - ok
08:12:53.0245 5460 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\windows\system32\drivers\pcw.sys
08:12:53.0261 5460 pcw - ok
08:12:53.0323 5460 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\windows\system32\drivers\peauth.sys
08:12:53.0339 5460 PEAUTH - ok
08:12:53.0401 5460 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\windows\SysWow64\perfhost.exe
08:12:53.0417 5460 PerfHost - ok
08:12:53.0464 5460 PGEffect (663962900e7fea522126ba287715bb4a) C:\windows\system32\DRIVERS\pgeffect.sys
08:12:53.0464 5460 PGEffect - ok
08:12:53.0573 5460 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\windows\system32\pla.dll
08:12:53.0588 5460 pla - ok
08:12:53.0635 5460 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\windows\system32\umpnpmgr.dll
08:12:53.0651 5460 PlugPlay - ok
08:12:53.0713 5460 Pml Driver HPZ12 (71f62c51dfdfbc04c83c5c64b2b8058e) C:\Windows\system32\HPZipm12.dll
08:12:53.0713 5460 Pml Driver HPZ12 - ok
08:12:53.0729 5460 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\windows\system32\pnrpauto.dll
08:12:53.0760 5460 PNRPAutoReg - ok
08:12:53.0791 5460 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\windows\system32\pnrpsvc.dll
08:12:53.0791 5460 PNRPsvc - ok
08:12:53.0838 5460 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\windows\System32\ipsecsvc.dll
08:12:53.0854 5460 PolicyAgent - ok
08:12:53.0885 5460 Power (6ba9d927dded70bd1a9caded45f8b184) C:\windows\system32\umpo.dll
08:12:53.0900 5460 Power - ok
08:12:53.0947 5460 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\windows\system32\DRIVERS\raspptp.sys
08:12:53.0947 5460 PptpMiniport - ok
08:12:53.0978 5460 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\windows\system32\DRIVERS\processr.sys
08:12:53.0978 5460 Processor - ok
08:12:54.0025 5460 ProfSvc (5c78838b4d166d1a27db3a8a820c799a) C:\windows\system32\profsvc.dll
08:12:54.0025 5460 ProfSvc - ok
08:12:54.0056 5460 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\windows\system32\lsass.exe
08:12:54.0056 5460 ProtectedStorage - ok
08:12:54.0103 5460 Psched (0557cf5a2556bd58e26384169d72438d) C:\windows\system32\DRIVERS\pacer.sys
08:12:54.0103 5460 Psched - ok
08:12:54.0212 5460 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\windows\system32\DRIVERS\ql2300.sys
08:12:54.0228 5460 ql2300 - ok
08:12:54.0368 5460 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\windows\system32\DRIVERS\ql40xx.sys
08:12:54.0368 5460 ql40xx - ok
08:12:54.0415 5460 QWAVE (906191634e99aea92c4816150bda3732) C:\windows\system32\qwave.dll
08:12:54.0431 5460 QWAVE - ok
08:12:54.0462 5460 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\windows\system32\drivers\qwavedrv.sys
08:12:54.0462 5460 QWAVEdrv - ok
08:12:54.0478 5460 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\windows\system32\DRIVERS\rasacd.sys
08:12:54.0478 5460 RasAcd - ok
08:12:54.0524 5460 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\windows\system32\DRIVERS\AgileVpn.sys
08:12:54.0524 5460 RasAgileVpn - ok
08:12:54.0556 5460 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\windows\System32\rasauto.dll
08:12:54.0556 5460 RasAuto - ok
08:12:54.0602 5460 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\windows\system32\DRIVERS\rasl2tp.sys
08:12:54.0602 5460 Rasl2tp - ok
08:12:54.0649 5460 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\windows\System32\rasmans.dll
08:12:54.0665 5460 RasMan - ok
08:12:54.0696 5460 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\windows\system32\DRIVERS\raspppoe.sys
08:12:54.0696 5460 RasPppoe - ok
08:12:54.0727 5460 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\windows\system32\DRIVERS\rassstp.sys
08:12:54.0743 5460 RasSstp - ok
08:12:54.0790 5460 rdbss (77f665941019a1594d887a74f301fa2f) C:\windows\system32\DRIVERS\rdbss.sys
08:12:54.0805 5460 rdbss - ok
08:12:54.0836 5460 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\windows\system32\DRIVERS\rdpbus.sys
08:12:54.0836 5460 rdpbus - ok
08:12:54.0868 5460 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\windows\system32\DRIVERS\RDPCDD.sys
08:12:54.0868 5460 RDPCDD - ok
08:12:54.0899 5460 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\windows\system32\drivers\rdpencdd.sys
08:12:54.0899 5460 RDPENCDD - ok
08:12:54.0930 5460 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\windows\system32\drivers\rdprefmp.sys
08:12:54.0930 5460 RDPREFMP - ok
08:12:54.0977 5460 RDPWD (6d76e6433574b058adcb0c50df834492) C:\windows\system32\drivers\RDPWD.sys
08:12:54.0977 5460 RDPWD - ok
08:12:55.0024 5460 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\windows\system32\drivers\rdyboost.sys
08:12:55.0039 5460 rdyboost - ok
08:12:55.0070 5460 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\windows\System32\mprdim.dll
08:12:55.0070 5460 RemoteAccess - ok
08:12:55.0102 5460 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\windows\system32\regsvc.dll
08:12:55.0102 5460 RemoteRegistry - ok
08:12:55.0117 5460 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\windows\System32\RpcEpMap.dll
08:12:55.0133 5460 RpcEptMapper - ok
08:12:55.0148 5460 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\windows\system32\locator.exe
08:12:55.0148 5460 RpcLocator - ok
08:12:55.0195 5460 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\windows\system32\rpcss.dll
08:12:55.0195 5460 RpcSs - ok
08:12:55.0258 5460 RsFx0103 (cd553b8633466a6d1c115812f2619f1f) C:\windows\system32\DRIVERS\RsFx0103.sys
08:12:55.0289 5460 RsFx0103 - ok
08:12:55.0320 5460 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\windows\system32\DRIVERS\rspndr.sys
08:12:55.0336 5460 rspndr - ok
08:12:55.0414 5460 RSUSBSTOR (907c4464381b5ebdfdc60f6c7d0dedfc) C:\windows\system32\Drivers\RtsUStor.sys
08:12:55.0414 5460 RSUSBSTOR - ok
08:12:55.0445 5460 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\windows\system32\lsass.exe
08:12:55.0445 5460 SamSs - ok
08:12:55.0476 5460 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\windows\system32\drivers\sbp2port.sys
08:12:55.0476 5460 sbp2port - ok
08:12:55.0507 5460 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\windows\System32\SCardSvr.dll
08:12:55.0538 5460 SCardSvr - ok
08:12:55.0570 5460 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\windows\system32\DRIVERS\scfilter.sys
08:12:55.0570 5460 scfilter - ok
08:12:55.0648 5460 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\windows\system32\schedsvc.dll
08:12:55.0663 5460 Schedule - ok
08:12:55.0694 5460 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\windows\System32\certprop.dll
08:12:55.0710 5460 SCPolicySvc - ok
08:12:55.0741 5460 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\windows\System32\SDRSVC.dll
08:12:55.0757 5460 SDRSVC - ok
08:12:55.0804 5460 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\windows\system32\drivers\secdrv.sys
08:12:55.0819 5460 secdrv - ok
08:12:55.0835 5460 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\windows\system32\seclogon.dll
08:12:55.0850 5460 seclogon - ok
08:12:55.0882 5460 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\windows\System32\sens.dll
08:12:55.0882 5460 SENS - ok
08:12:55.0897 5460 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\windows\system32\sensrsvc.dll
08:12:55.0928 5460 SensrSvc - ok
08:12:55.0944 5460 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\windows\system32\DRIVERS\serenum.sys
08:12:55.0944 5460 Serenum - ok
08:12:55.0991 5460 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\windows\system32\DRIVERS\serial.sys
08:12:55.0991 5460 Serial - ok
08:12:56.0022 5460 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\windows\system32\DRIVERS\sermouse.sys
08:12:56.0022 5460 sermouse - ok
08:12:56.0069 5460 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\windows\system32\sessenv.dll
08:12:56.0084 5460 SessionEnv - ok
08:12:56.0100 5460 sffdisk (a554811bcd09279536440c964ae35bbf) C:\windows\system32\drivers\sffdisk.sys
08:12:56.0116 5460 sffdisk - ok
08:12:56.0147 5460 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\windows\system32\drivers\sffp_mmc.sys
08:12:56.0147 5460 sffp_mmc - ok
08:12:56.0147 5460 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\windows\system32\drivers\sffp_sd.sys
08:12:56.0147 5460 sffp_sd - ok
08:12:56.0162 5460 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\windows\system32\DRIVERS\sfloppy.sys
08:12:56.0178 5460 sfloppy - ok
08:12:56.0209 5460 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\windows\System32\ipnathlp.dll
08:12:56.0225 5460 SharedAccess - ok
08:12:56.0256 5460 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\windows\System32\shsvcs.dll
08:12:56.0272 5460 ShellHWDetection - ok
08:12:56.0303 5460 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\windows\system32\DRIVERS\SiSRaid2.sys
08:12:56.0318 5460 SiSRaid2 - ok
08:12:56.0334 5460 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\windows\system32\DRIVERS\sisraid4.sys
08:12:56.0350 5460 SiSRaid4 - ok
08:12:56.0381 5460 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\windows\system32\DRIVERS\smb.sys
08:12:56.0381 5460 Smb - ok
08:12:56.0443 5460 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\windows\System32\snmptrap.exe
08:12:56.0443 5460 SNMPTRAP - ok
08:12:56.0459 5460 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\windows\system32\drivers\spldr.sys
08:12:56.0459 5460 spldr - ok
08:12:56.0521 5460 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\windows\System32\spoolsv.exe
08:12:56.0521 5460 Spooler - ok
08:12:56.0740 5460 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\windows\system32\sppsvc.exe
08:12:56.0864 5460 sppsvc - ok
08:12:56.0974 5460 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\windows\system32\sppuinotify.dll
08:12:56.0974 5460 sppuinotify - ok
08:12:57.0130 5460 SQLAgent$SQLEXPRESS (12e6d95cde974b131defaa44bab8b056) c:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE
08:12:57.0145 5460 SQLAgent$SQLEXPRESS - ok
08:12:57.0317 5460 SRTSP (06b9a7ba94356ec5207c5ddb59540378) C:\windows\System32\Drivers\NISx64\1307010.005\SRTSP64.SYS
08:12:57.0332 5460 SRTSP - ok
08:12:57.0348 5460 SRTSPX (fbb8945a61e55a2345d12487c74a9d76) C:\windows\system32\drivers\NISx64\1307010.005\SRTSPX64.SYS
08:12:57.0348 5460 SRTSPX - ok
08:12:57.0395 5460 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\windows\system32\DRIVERS\srv.sys
08:12:57.0395 5460 srv - ok
08:12:57.0426 5460 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\windows\system32\DRIVERS\srv2.sys
08:12:57.0426 5460 srv2 - ok
08:12:57.0473 5460 srvnet (27e461f0be5bff5fc737328f749538c3) C:\windows\system32\DRIVERS\srvnet.sys
08:12:57.0473 5460 srvnet - ok
08:12:57.0504 5460 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\windows\System32\ssdpsrv.dll
08:12:57.0520 5460 SSDPSRV - ok
08:12:57.0535 5460 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\windows\system32\sstpsvc.dll
08:12:57.0535 5460 SstpSvc - ok
08:12:57.0566 5460 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\windows\system32\DRIVERS\stexstor.sys
08:12:57.0566 5460 stexstor - ok
08:12:57.0629 5460 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\windows\System32\wiaservc.dll
08:12:57.0644 5460 stisvc - ok
08:12:57.0660 5460 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\windows\system32\drivers\swenum.sys
08:12:57.0660 5460 swenum - ok
08:12:57.0800 5460 SwitchBoard (f577910a133a592234ebaad3f3afa258) C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
08:12:57.0816 5460 SwitchBoard - ok
08:12:57.0863 5460 swprv (e08e46fdd841b7184194011ca1955a0b) C:\windows\System32\swprv.dll
08:12:57.0878 5460 swprv - ok
08:12:57.0972 5460 SymDS (8b2430762099598da40686f754632efd) C:\windows\system32\drivers\NISx64\1307010.005\SYMDS64.SYS
08:12:57.0988 5460 SymDS - ok
08:12:58.0097 5460 SymEFA (f90c7a190399165d3ab2245048d34786) C:\windows\system32\drivers\NISx64\1307010.005\SYMEFA64.SYS
08:12:58.0112 5460 SymEFA - ok
08:12:58.0144 5460 SymEvent (898bb48c797483420df523b2bbc1ecdb) C:\windows\system32\Drivers\SYMEVENT64x86.SYS
08:12:58.0144 5460 SymEvent - ok
08:12:58.0190 5460 SymIRON (5013a76caaa1d7cf1c55214b490b4e35) C:\windows\system32\drivers\NISx64\1307010.005\Ironx64.SYS
08:12:58.0206 5460 SymIRON - ok
08:12:58.0284 5460 SymNetS (3911bd0e68c010e5438a87706abbe9ab) C:\windows\System32\Drivers\NISx64\1307010.005\SYMNETS.SYS
08:12:58.0300 5460 SymNetS - ok
08:12:58.0346 5460 SynTP (470c47daba9ca3966f0ab3f835d7d135) C:\windows\system32\DRIVERS\SynTP.sys
08:12:58.0346 5460 SynTP - ok
08:12:58.0471 5460 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\windows\system32\sysmain.dll
08:12:58.0487 5460 SysMain - ok
08:12:58.0627 5460 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\windows\System32\TabSvc.dll
08:12:58.0627 5460 TabletInputService - ok
08:12:58.0658 5460 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\windows\System32\tapisrv.dll
08:12:58.0674 5460 TapiSrv - ok
08:12:58.0705 5460 TBS (1be03ac720f4d302ea01d40f588162f6) C:\windows\System32\tbssvc.dll
08:12:58.0705 5460 TBS - ok
08:12:58.0846 5460 Tcpip (acb82bda8f46c84f465c1afa517dc4b9) C:\windows\system32\drivers\tcpip.sys
08:12:58.0908 5460 Tcpip - ok
08:12:59.0173 5460 TCPIP6 (acb82bda8f46c84f465c1afa517dc4b9) C:\windows\system32\DRIVERS\tcpip.sys
08:12:59.0189 5460 TCPIP6 - ok
08:12:59.0282 5460 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\windows\system32\drivers\tcpipreg.sys
08:12:59.0282 5460 tcpipreg - ok
08:12:59.0329 5460 tdcmdpst (fd542b661bd22fa69ca789ad0ac58c29) C:\windows\system32\DRIVERS\tdcmdpst.sys
08:12:59.0329 5460 tdcmdpst - ok
08:12:59.0360 5460 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\windows\system32\drivers\tdpipe.sys
08:12:59.0376 5460 TDPIPE - ok
08:12:59.0407 5460 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\windows\system32\drivers\tdtcp.sys
08:12:59.0423 5460 TDTCP - ok
08:12:59.0470 5460 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\windows\system32\DRIVERS\tdx.sys
08:12:59.0470 5460 tdx - ok
08:12:59.0516 5460 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\windows\system32\drivers\termdd.sys
08:12:59.0516 5460 TermDD - ok
08:12:59.0579 5460 TermService (2e648163254233755035b46dd7b89123) C:\windows\System32\termsrv.dll
08:12:59.0579 5460 TermService - ok
08:12:59.0610 5460 Themes (f0344071948d1a1fa732231785a0664c) C:\windows\system32\themeservice.dll
08:12:59.0626 5460 Themes - ok
08:12:59.0641 5460 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\windows\system32\mmcss.dll
08:12:59.0641 5460 THREADORDER - ok
08:12:59.0735 5460 TMachInfo (28644b0523d64eff2fc7312a2ee74b0a) C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
08:12:59.0735 5460 TMachInfo - ok
08:12:59.0766 5460 TODDSrv (ed32035bdfeced1ad66d459fd9cc1140) C:\windows\system32\TODDSrv.exe
08:12:59.0782 5460 TODDSrv - ok
08:12:59.0860 5460 TosCoSrv (db9719688c08f42705feb3f6a0c98b91) C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
08:12:59.0875 5460 TosCoSrv - ok
08:12:59.0938 5460 TOSHIBA HDD SSD Alert Service (74c2fa8c3765ee71a9c22182ec108457) C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
08:12:59.0938 5460 TOSHIBA HDD SSD Alert Service - ok
08:12:59.0969 5460 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\windows\System32\trkwks.dll
08:12:59.0969 5460 TrkWks - ok
08:13:00.0016 5460 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\windows\servicing\TrustedInstaller.exe
08:13:00.0016 5460 TrustedInstaller - ok
08:13:00.0062 5460 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\windows\system32\DRIVERS\tssecsrv.sys
08:13:00.0062 5460 tssecsrv - ok
08:13:00.0125 5460 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\windows\system32\drivers\tsusbflt.sys
08:13:00.0125 5460 TsUsbFlt - ok
08:13:00.0172 5460 tunnel (3566a8daafa27af944f5d705eaa64894) C:\windows\system32\DRIVERS\tunnel.sys
08:13:00.0203 5460 tunnel - ok
08:13:00.0250 5460 TVALZ (550b567f9364d8f7684c3fb3ea665a72) C:\windows\system32\DRIVERS\TVALZ_O.SYS
08:13:00.0250 5460 TVALZ - ok
08:13:00.0281 5460 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\windows\system32\DRIVERS\uagp35.sys
08:13:00.0281 5460 uagp35 - ok
08:13:00.0328 5460 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\windows\system32\DRIVERS\udfs.sys
08:13:00.0328 5460 udfs - ok
08:13:00.0359 5460 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\windows\system32\UI0Detect.exe
08:13:00.0374 5460 UI0Detect - ok
08:13:00.0406 5460 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\windows\system32\drivers\uliagpkx.sys
08:13:00.0406 5460 uliagpkx - ok
08:13:00.0452 5460 umbus (dc54a574663a895c8763af0fa1ff7561) C:\windows\system32\drivers\umbus.sys
08:13:00.0452 5460 umbus - ok
08:13:00.0484 5460 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\windows\system32\DRIVERS\umpass.sys
08:13:00.0484 5460 UmPass - ok
08:13:00.0702 5460 UNS (48e114762941941d5821eaae29d75e9e) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
08:13:00.0718 5460 UNS - ok
08:13:00.0842 5460 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\windows\System32\upnphost.dll
08:13:00.0858 5460 upnphost - ok
08:13:00.0905 5460 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\windows\system32\DRIVERS\usbccgp.sys
08:13:00.0905 5460 usbccgp - ok
08:13:00.0952 5460 usbcir (af0892a803fdda7492f595368e3b68e7) C:\windows\system32\drivers\usbcir.sys
08:13:00.0952 5460 usbcir - ok
08:13:00.0983 5460 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\windows\system32\drivers\usbehci.sys
08:13:00.0998 5460 usbehci - ok
08:13:01.0045 5460 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\windows\system32\DRIVERS\usbhub.sys
08:13:01.0045 5460 usbhub - ok
08:13:01.0061 5460 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\windows\system32\drivers\usbohci.sys
08:13:01.0092 5460 usbohci - ok
08:13:01.0123 5460 usbprint (73188f58fb384e75c4063d29413cee3d) C:\windows\system32\DRIVERS\usbprint.sys
08:13:01.0123 5460 usbprint - ok
08:13:01.0154 5460 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\windows\system32\DRIVERS\USBSTOR.SYS
08:13:01.0170 5460 USBSTOR - ok
08:13:01.0186 5460 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\windows\system32\drivers\usbuhci.sys
08:13:01.0186 5460 usbuhci - ok
08:13:01.0232 5460 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\windows\System32\Drivers\usbvideo.sys
08:13:01.0248 5460 usbvideo - ok
08:13:01.0279 5460 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\windows\System32\uxsms.dll
08:13:01.0279 5460 UxSms - ok
08:13:01.0310 5460 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\windows\system32\lsass.exe
08:13:01.0310 5460 VaultSvc - ok
08:13:01.0342 5460 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\windows\system32\drivers\vdrvroot.sys
08:13:01.0342 5460 vdrvroot - ok
08:13:01.0404 5460 vds (8d6b481601d01a456e75c3210f1830be) C:\windows\System32\vds.exe
08:13:01.0420 5460 vds - ok
08:13:01.0435 5460 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\windows\system32\DRIVERS\vgapnp.sys
08:13:01.0435 5460 vga - ok
08:13:01.0466 5460 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\windows\System32\drivers\vga.sys
08:13:01.0482 5460 VgaSave - ok
08:13:01.0513 5460 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\windows\system32\drivers\vhdmp.sys
08:13:01.0529 5460 vhdmp - ok
08:13:01.0544 5460 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\windows\system32\drivers\viaide.sys
08:13:01.0544 5460 viaide - ok
08:13:01.0544 5460 vmci - ok
08:13:01.0544 5460 VMnetAdapter - ok
08:13:01.0576 5460 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\windows\system32\drivers\volmgr.sys
08:13:01.0576 5460 volmgr - ok
08:13:01.0622 5460 volmgrx (a255814907c89be58b79ef2f189b843b) C:\windows\system32\drivers\volmgrx.sys
08:13:01.0622 5460 volmgrx - ok
08:13:01.0669 5460 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\windows\system32\drivers\volsnap.sys
08:13:01.0669 5460 volsnap - ok
08:13:01.0716 5460 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\windows\system32\DRIVERS\vsmraid.sys
08:13:01.0716 5460 vsmraid - ok
08:13:01.0841 5460 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\windows\system32\vssvc.exe
08:13:01.0856 5460 VSS - ok
08:13:01.0981 5460 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\windows\system32\DRIVERS\vwifibus.sys
08:13:01.0981 5460 vwifibus - ok
08:13:01.0997 5460 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\windows\system32\DRIVERS\vwififlt.sys
08:13:01.0997 5460 vwififlt - ok
08:13:02.0044 5460 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\windows\system32\DRIVERS\vwifimp.sys
08:13:02.0044 5460 vwifimp - ok
08:13:02.0090 5460 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\windows\system32\w32time.dll
08:13:02.0106 5460 W32Time - ok
08:13:02.0200 5460 W3SVC (b32009db1972e7f2c227499289c4384a) C:\windows\system32\inetsrv\iisw3adm.dll
08:13:02.0200 5460 W3SVC - ok
08:13:02.0231 5460 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\windows\system32\DRIVERS\wacompen.sys
08:13:02.0231 5460 WacomPen - ok
08:13:02.0278 5460 WANARP (356afd78a6ed4457169241ac3965230c) C:\windows\system32\DRIVERS\wanarp.sys
08:13:02.0293 5460 WANARP - ok
08:13:02.0324 5460 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\windows\system32\DRIVERS\wanarp.sys
08:13:02.0324 5460 Wanarpv6 - ok
08:13:02.0356 5460 WAS (b32009db1972e7f2c227499289c4384a) C:\windows\system32\inetsrv\iisw3adm.dll
08:13:02.0356 5460 WAS - ok
08:13:02.0480 5460 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\windows\system32\Wat\WatAdminSvc.exe
08:13:02.0496 5460 WatAdminSvc - ok
08:13:02.0621 5460 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\windows\system32\wbengine.exe
08:13:02.0652 5460 wbengine - ok
08:13:02.0777 5460 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\windows\System32\wbiosrvc.dll
08:13:02.0777 5460 WbioSrvc - ok
08:13:02.0824 5460 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\windows\System32\wcncsvc.dll
08:13:02.0839 5460 wcncsvc - ok
08:13:02.0870 5460 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\windows\System32\WcsPlugInService.dll
08:13:02.0870 5460 WcsPlugInService - ok
08:13:02.0902 5460 Wd (72889e16ff12ba0f235467d6091b17dc) C:\windows\system32\DRIVERS\wd.sys
08:13:02.0902 5460 Wd - ok
08:13:02.0995 5460 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\windows\system32\drivers\Wdf01000.sys
08:13:03.0011 5460 Wdf01000 - ok
08:13:03.0042 5460 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\windows\system32\wdi.dll
08:13:03.0042 5460 WdiServiceHost - ok
08:13:03.0058 5460 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\windows\system32\wdi.dll
08:13:03.0058 5460 WdiSystemHost - ok
08:13:03.0120 5460 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\windows\System32\webclnt.dll
08:13:03.0120 5460 WebClient - ok
08:13:03.0167 5460 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\windows\system32\wecsvc.dll
08:13:03.0167 5460 Wecsvc - ok
08:13:03.0182 5460 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\windows\System32\wercplsupport.dll
08:13:03.0198 5460 wercplsupport - ok
08:13:03.0229 5460 WerSvc (6d137963730144698cbd10f202e9f251) C:\windows\System32\WerSvc.dll
08:13:03.0229 5460 WerSvc - ok
08:13:03.0292 5460 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\windows\system32\DRIVERS\wfplwf.sys
08:13:03.0292 5460 WfpLwf - ok
08:13:03.0307 5460 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\windows\system32\drivers\wimmount.sys
08:13:03.0307 5460 WIMMount - ok
08:13:03.0338 5460 WinDefend - ok
08:13:03.0338 5460 WinHttpAutoProxySvc - ok
08:13:03.0401 5460 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\windows\system32\wbem\WMIsvc.dll
08:13:03.0416 5460 Winmgmt - ok
08:13:03.0557 5460 WinRM (bcb1310604aa415c4508708975b3931e) C:\windows\system32\WsmSvc.dll
08:13:03.0635 5460 WinRM - ok
08:13:03.0838 5460 WinUsb (fe88b288356e7b47b74b13372add906d) C:\windows\system32\DRIVERS\WinUsb.sys
08:13:03.0838 5460 WinUsb - ok
08:13:03.0916 5460 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\windows\System32\wlansvc.dll
08:13:03.0931 5460 Wlansvc - ok
08:13:04.0009 5460 wlcrasvc (06c8fa1cf39de6a735b54d906ba791c6) C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
08:13:04.0025 5460 wlcrasvc - ok
08:13:04.0196 5460 wlidsvc (7e47c328fc4768cb8beafbcfafa70362) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
08:13:04.0212 5460 wlidsvc - ok
08:13:04.0399 5460 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\windows\system32\drivers\wmiacpi.sys
08:13:04.0399 5460 WmiAcpi - ok
08:13:04.0477 5460 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\windows\system32\wbem\WmiApSrv.exe
08:13:04.0477 5460 wmiApSrv - ok
08:13:04.0524 5460 WMPNetworkSvc - ok
08:13:04.0555 5460 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\windows\System32\wpcsvc.dll
08:13:04.0555 5460 WPCSvc - ok
08:13:04.0586 5460 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\windows\system32\wpdbusenum.dll
08:13:04.0586 5460 WPDBusEnum - ok
08:13:04.0618 5460 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\windows\system32\drivers\ws2ifsl.sys
08:13:04.0618 5460 ws2ifsl - ok
08:13:04.0649 5460 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\windows\System32\wscsvc.dll
08:13:04.0649 5460 wscsvc - ok
08:13:04.0664 5460 WSearch - ok
08:13:04.0820 5460 wuauserv (9df12edbc698b0bc353b3ef84861e430) C:\windows\system32\wuaueng.dll
08:13:04.0867 5460 wuauserv - ok
08:13:05.0039 5460 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\windows\system32\drivers\WudfPf.sys
08:13:05.0054 5460 WudfPf - ok
08:13:05.0086 5460 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\windows\System32\WUDFSvc.dll
08:13:05.0086 5460 wudfsvc - ok
08:13:05.0132 5460 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\windows\System32\wwansvc.dll
08:13:05.0164 5460 WwanSvc - ok
08:13:05.0195 5460 MBR (0x1B8) (5b5e648d12fcadc244c1ec30318e1eb9) \Device\Harddisk0\DR0
08:13:05.0413 5460 \Device\Harddisk0\DR0 - ok
08:13:05.0429 5460 Boot (0x1200) (802588c0b7f69377774ba80616de645f) \Device\Harddisk0\DR0\Partition0
08:13:05.0429 5460 \Device\Harddisk0\DR0\Partition0 - ok
08:13:05.0429 5460 ============================================================
08:13:05.0429 5460 Scan finished
08:13:05.0429 5460 ============================================================
08:13:05.0444 5456 Detected object count: 0
08:13:05.0444 5456 Actual detected object count: 0
08:13:32.0417 2740 Deinitialize success

Here's the aswMBR log
aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-05-29 08:16:49
-----------------------------
08:16:49.778 OS Version: Windows x64 6.1.7601 Service Pack 1
08:16:49.778 Number of processors: 4 586 0x2505
08:16:49.778 ComputerName: SLIM-PC UserName: slim
08:16:50.652 Initialize success
08:16:56.127 AVAST engine defs: 12052800
08:17:45.922 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
08:17:45.922 Disk 0 Vendor: TOSHIBA_ GH10 Size: 305245MB BusType: 3
08:17:45.954 Disk 0 MBR read successfully
08:17:45.954 Disk 0 MBR scan
08:17:45.954 Disk 0 Windows VISTA default MBR code
08:17:45.969 Disk 0 Partition 1 80 (A) 27 Hidden NTFS WinRE NTFS 1500 MB offset 2048
08:17:45.985 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 287000 MB offset 3074048
08:17:46.016 Disk 0 Partition 3 00 17 Hidd HPFS/NTFS NTFS 16743 MB offset 590850048
08:17:46.063 Disk 0 scanning C:\windows\system32\drivers
08:17:56.203 Service scanning
08:18:46.747 Modules scanning
08:18:46.763 Disk 0 trace - called modules:
08:18:46.794 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys iaStor.sys hal.dll
08:18:46.809 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8004bfa060]
08:18:46.825 3 CLASSPNP.SYS[fffff88001a1743f] -> nt!IofCallDriver -> [0xfffffa8003b74e40]
08:18:46.841 5 ACPI.sys[fffff88000e1a7a1] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8004952050]
08:18:47.652 AVAST engine scan C:\windows
08:18:50.007 AVAST engine scan C:\windows\system32
08:23:21.651 AVAST engine scan C:\windows\system32\drivers
08:23:42.726 AVAST engine scan C:\Users\slim
08:31:49.768 AVAST engine scan C:\ProgramData
08:33:07.566 File: C:\ProgramData\Microsoft\Windows\DRM\c64c.tmp.dat **INFECTED** Win32:Alureon-ASV [Trj]
08:35:35.704 Scan finished successfully
08:42:25.017 Disk 0 MBR has been saved successfully to "C:\downloads\MBR.dat"
08:42:25.017 The log file has been saved successfully to "C:\downloads\aswMBR.txt"



Here's the log for aswMBR======================================================================================
aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-05-29 08:16:49
-----------------------------
08:16:49.778 OS Version: Windows x64 6.1.7601 Service Pack 1
08:16:49.778 Number of processors: 4 586 0x2505
08:16:49.778 ComputerName: SLIM-PC UserName: slim
08:16:50.652 Initialize success
08:16:56.127 AVAST engine defs: 12052800
08:17:45.922 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
08:17:45.922 Disk 0 Vendor: TOSHIBA_ GH10 Size: 305245MB BusType: 3
08:17:45.954 Disk 0 MBR read successfully
08:17:45.954 Disk 0 MBR scan
08:17:45.954 Disk 0 Windows VISTA default MBR code
08:17:45.969 Disk 0 Partition 1 80 (A) 27 Hidden NTFS WinRE NTFS 1500 MB offset 2048
08:17:45.985 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 287000 MB offset 3074048
08:17:46.016 Disk 0 Partition 3 00 17 Hidd HPFS/NTFS NTFS 16743 MB offset 590850048
08:17:46.063 Disk 0 scanning C:\windows\system32\drivers
08:17:56.203 Service scanning
08:18:46.747 Modules scanning
08:18:46.763 Disk 0 trace - called modules:
08:18:46.794 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys iaStor.sys hal.dll
08:18:46.809 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8004bfa060]
08:18:46.825 3 CLASSPNP.SYS[fffff88001a1743f] -> nt!IofCallDriver -> [0xfffffa8003b74e40]
08:18:46.841 5 ACPI.sys[fffff88000e1a7a1] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8004952050]
08:18:47.652 AVAST engine scan C:\windows
08:18:50.007 AVAST engine scan C:\windows\system32
08:23:21.651 AVAST engine scan C:\windows\system32\drivers
08:23:42.726 AVAST engine scan C:\Users\slim
08:31:49.768 AVAST engine scan C:\ProgramData
08:33:07.566 File: C:\ProgramData\Microsoft\Windows\DRM\c64c.tmp.dat **INFECTED** Win32:Alureon-ASV [Trj]
08:35:35.704 Scan finished successfully
08:42:25.017 Disk 0 MBR has been saved successfully to "C:\downloads\MBR.dat"
08:42:25.017 The log file has been saved successfully to "C:\downloads\aswMBR.txt"


Here's the log for ESET online scanner==============================================================================
C:\ProgramData\Microsoft\Windows\DRM\c64c.tmp.dat Win32/Olmarik.AYD trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\28.05.2012_23.51.17\mbr0000\tdlfs0000\tsk0000.dta a variant of Win32/Olmarik.AYI trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\28.05.2012_23.51.17\mbr0000\tdlfs0000\tsk0002.dta Win32/Olmarik.AWO trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\28.05.2012_23.51.17\mbr0000\tdlfs0000\tsk0003.dta Win64/Olmarik.AI trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\29.05.2012_00.40.32\tdlfs0000\tsk0000.dta a variant of Win32/Olmarik.AYI trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\29.05.2012_00.40.32\tdlfs0000\tsk0002.dta Win32/Olmarik.AWO trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\29.05.2012_00.40.32\tdlfs0000\tsk0003.dta Win64/Olmarik.AI trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\29.05.2012_00.44.01\tdlfs0000\tsk0000.dta a variant of Win32/Olmarik.AYI trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\29.05.2012_00.44.01\tdlfs0000\tsk0002.dta Win32/Olmarik.AWO trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\29.05.2012_00.44.01\tdlfs0000\tsk0003.dta Win64/Olmarik.AI trojan cleaned by deleting - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\3CUVJRYE\hotelsaleprices_biz[1].htm HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\AEDN57D3\ako[1] HTML/ScrInject.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\AEDN57D3\ako[2] HTML/ScrInject.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\AEDN57D3\hotelcheaptravel_org[1].htm HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\WCSJ9ZU6\pcperformer-rh-rh-st2-free-en[1].htm HTML/ScrInject.B.Gen virus deleted - quarantined


Eset scanner sure found a lot of them.

PM

Edited by p.martin, 29 May 2012 - 09:43 AM.


BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:05:47 PM

Posted 29 May 2012 - 01:55 AM

Re run TDSSkiller and post the new log.Do not change the default options for scan results.Skip it if TDSSkiller asks you to skip.

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner


Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 p.martin

p.martin
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:05:47 PM

Posted 29 May 2012 - 06:47 PM

Probably help if I add a reply instead of edit my original...oh well.

Here is the log for TDSSkiller===========================================================================


08:12:32.0903 5412 TDSS rootkit removing tool 2.7.38.0 May 25 2012 17:35:31
08:12:33.0230 5412 ============================================================
08:12:33.0230 5412 Current date / time: 2012/05/29 08:12:33.0230
08:12:33.0230 5412 SystemInfo:
08:12:33.0230 5412
08:12:33.0230 5412 OS Version: 6.1.7601 ServicePack: 1.0
08:12:33.0230 5412 Product type: Workstation
08:12:33.0230 5412 ComputerName: SLIM-PC
08:12:33.0230 5412 UserName: slim
08:12:33.0230 5412 Windows directory: C:\windows
08:12:33.0230 5412 System windows directory: C:\windows
08:12:33.0230 5412 Running under WOW64
08:12:33.0230 5412 Processor architecture: Intel x64
08:12:33.0230 5412 Number of processors: 4
08:12:33.0230 5412 Page size: 0x1000
08:12:33.0230 5412 Boot type: Normal boot
08:12:33.0230 5412 ============================================================
08:12:33.0761 5412 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
08:12:33.0761 5412 ============================================================
08:12:33.0761 5412 \Device\Harddisk0\DR0:
08:12:33.0761 5412 MBR partitions:
08:12:33.0761 5412 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x2EE800, BlocksNum 0x2308C000
08:12:33.0761 5412 ============================================================
08:12:33.0807 5412 C: <-> \Device\Harddisk0\DR0\Partition0
08:12:33.0807 5412 ============================================================
08:12:33.0807 5412 Initialize success
08:12:33.0807 5412 ============================================================
08:12:36.0522 5460 ============================================================
08:12:36.0522 5460 Scan started
08:12:36.0522 5460 Mode: Manual;
08:12:36.0522 5460 ============================================================
08:12:37.0988 5460 1394ohci (a87d604aea360176311474c87a63bb88) C:\windows\system32\drivers\1394ohci.sys
08:12:38.0004 5460 1394ohci - ok
08:12:38.0051 5460 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\windows\system32\drivers\ACPI.sys
08:12:38.0066 5460 ACPI - ok
08:12:38.0097 5460 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\windows\system32\drivers\acpipmi.sys
08:12:38.0097 5460 AcpiPmi - ok
08:12:38.0207 5460 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
08:12:38.0207 5460 AdobeARMservice - ok
08:12:38.0363 5460 AdobeFlashPlayerUpdateSvc (0d4c486a24a711a45fd83acdf4d18506) C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
08:12:38.0378 5460 AdobeFlashPlayerUpdateSvc - ok
08:12:38.0519 5460 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\windows\system32\DRIVERS\adp94xx.sys
08:12:38.0519 5460 adp94xx - ok
08:12:38.0581 5460 adpahci (597f78224ee9224ea1a13d6350ced962) C:\windows\system32\DRIVERS\adpahci.sys
08:12:38.0581 5460 adpahci - ok
08:12:38.0612 5460 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\windows\system32\DRIVERS\adpu320.sys
08:12:38.0612 5460 adpu320 - ok
08:12:38.0659 5460 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\windows\System32\aelupsvc.dll
08:12:38.0659 5460 AeLookupSvc - ok
08:12:38.0737 5460 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\windows\system32\drivers\afd.sys
08:12:38.0737 5460 AFD - ok
08:12:38.0784 5460 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\windows\system32\drivers\agp440.sys
08:12:38.0784 5460 agp440 - ok
08:12:38.0815 5460 ALG (3290d6946b5e30e70414990574883ddb) C:\windows\System32\alg.exe
08:12:38.0831 5460 ALG - ok
08:12:38.0862 5460 aliide (5812713a477a3ad7363c7438ca2ee038) C:\windows\system32\drivers\aliide.sys
08:12:38.0893 5460 aliide - ok
08:12:38.0924 5460 amdide (1ff8b4431c353ce385c875f194924c0c) C:\windows\system32\drivers\amdide.sys
08:12:38.0940 5460 amdide - ok
08:12:38.0955 5460 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\windows\system32\DRIVERS\amdk8.sys
08:12:38.0955 5460 AmdK8 - ok
08:12:39.0002 5460 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\windows\system32\DRIVERS\amdppm.sys
08:12:39.0002 5460 AmdPPM - ok
08:12:39.0049 5460 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\windows\system32\drivers\amdsata.sys
08:12:39.0049 5460 amdsata - ok
08:12:39.0080 5460 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\windows\system32\DRIVERS\amdsbs.sys
08:12:39.0096 5460 amdsbs - ok
08:12:39.0127 5460 amdxata (540daf1cea6094886d72126fd7c33048) C:\windows\system32\drivers\amdxata.sys
08:12:39.0127 5460 amdxata - ok
08:12:39.0283 5460 AppHostSvc (59d01fa91962c9c1e9b4022b2d3b46db) C:\windows\system32\inetsrv\apphostsvc.dll
08:12:39.0283 5460 AppHostSvc - ok
08:12:39.0330 5460 AppID (89a69c3f2f319b43379399547526d952) C:\windows\system32\drivers\appid.sys
08:12:39.0330 5460 AppID - ok
08:12:39.0345 5460 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\windows\System32\appidsvc.dll
08:12:39.0345 5460 AppIDSvc - ok
08:12:39.0392 5460 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\windows\System32\appinfo.dll
08:12:39.0392 5460 Appinfo - ok
08:12:39.0439 5460 arc (c484f8ceb1717c540242531db7845c4e) C:\windows\system32\DRIVERS\arc.sys
08:12:39.0455 5460 arc - ok
08:12:39.0501 5460 arcsas (019af6924aefe7839f61c830227fe79c) C:\windows\system32\DRIVERS\arcsas.sys
08:12:39.0517 5460 arcsas - ok
08:12:39.0642 5460 aspnet_state (9217d874131ae6ff8f642f124f00a555) C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
08:12:39.0642 5460 aspnet_state - ok
08:12:39.0673 5460 AsyncMac (769765ce2cc62867468cea93969b2242) C:\windows\system32\DRIVERS\asyncmac.sys
08:12:39.0673 5460 AsyncMac - ok
08:12:39.0720 5460 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\windows\system32\drivers\atapi.sys
08:12:39.0720 5460 atapi - ok
08:12:39.0876 5460 athr (d6cad7e5b05055bb8226bdcb1644da27) C:\windows\system32\DRIVERS\athrx.sys
08:12:39.0907 5460 athr - ok
08:12:40.0047 5460 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\windows\System32\Audiosrv.dll
08:12:40.0063 5460 AudioEndpointBuilder - ok
08:12:40.0079 5460 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\windows\System32\Audiosrv.dll
08:12:40.0079 5460 AudioSrv - ok
08:12:40.0125 5460 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\windows\System32\AxInstSV.dll
08:12:40.0125 5460 AxInstSV - ok
08:12:40.0188 5460 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\windows\system32\DRIVERS\bxvbda.sys
08:12:40.0188 5460 b06bdrv - ok
08:12:40.0219 5460 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\windows\system32\DRIVERS\b57nd60a.sys
08:12:40.0219 5460 b57nd60a - ok
08:12:40.0266 5460 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\windows\System32\bdesvc.dll
08:12:40.0266 5460 BDESVC - ok
08:12:40.0281 5460 Beep (16a47ce2decc9b099349a5f840654746) C:\windows\system32\drivers\Beep.sys
08:12:40.0297 5460 Beep - ok
08:12:40.0375 5460 BFE (82974d6a2fd19445cc5171fc378668a4) C:\windows\System32\bfe.dll
08:12:40.0391 5460 BFE - ok
08:12:40.0625 5460 BHDrvx64 (5b1fe9d351c284701c8051da2aa81df6) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.5.1.2\Definitions\BASHDefs\20120517.001\BHDrvx64.sys
08:12:40.0640 5460 BHDrvx64 - ok
08:12:40.0781 5460 BITS (1ea7969e3271cbc59e1730697dc74682) C:\windows\System32\qmgr.dll
08:12:40.0796 5460 BITS - ok
08:12:40.0843 5460 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\windows\system32\DRIVERS\blbdrive.sys
08:12:40.0874 5460 blbdrive - ok
08:12:40.0921 5460 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\windows\system32\DRIVERS\bowser.sys
08:12:40.0921 5460 bowser - ok
08:12:40.0952 5460 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\windows\system32\DRIVERS\BrFiltLo.sys
08:12:40.0968 5460 BrFiltLo - ok
08:12:40.0983 5460 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\windows\system32\DRIVERS\BrFiltUp.sys
08:12:40.0983 5460 BrFiltUp - ok
08:12:41.0030 5460 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\windows\System32\browser.dll
08:12:41.0030 5460 Browser - ok
08:12:41.0077 5460 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\windows\System32\Drivers\Brserid.sys
08:12:41.0077 5460 Brserid - ok
08:12:41.0093 5460 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\windows\System32\Drivers\BrSerWdm.sys
08:12:41.0093 5460 BrSerWdm - ok
08:12:41.0108 5460 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\windows\System32\Drivers\BrUsbMdm.sys
08:12:41.0108 5460 BrUsbMdm - ok
08:12:41.0108 5460 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\windows\System32\Drivers\BrUsbSer.sys
08:12:41.0108 5460 BrUsbSer - ok
08:12:41.0124 5460 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\windows\system32\DRIVERS\bthmodem.sys
08:12:41.0124 5460 BTHMODEM - ok
08:12:41.0155 5460 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\windows\system32\bthserv.dll
08:12:41.0155 5460 bthserv - ok
08:12:41.0249 5460 ccSet_NIS (0e1737a63aec0f6de231bb59836c0a11) C:\windows\system32\drivers\NISx64\1307010.005\ccSetx64.sys
08:12:41.0249 5460 ccSet_NIS - ok
08:12:41.0295 5460 cdfs (b8bd2bb284668c84865658c77574381a) C:\windows\system32\DRIVERS\cdfs.sys
08:12:41.0295 5460 cdfs - ok
08:12:41.0342 5460 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\windows\system32\drivers\cdrom.sys
08:12:41.0358 5460 cdrom - ok
08:12:41.0389 5460 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\windows\System32\certprop.dll
08:12:41.0389 5460 CertPropSvc - ok
08:12:41.0420 5460 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\windows\system32\DRIVERS\circlass.sys
08:12:41.0420 5460 circlass - ok
08:12:41.0483 5460 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\windows\system32\CLFS.sys
08:12:41.0483 5460 CLFS - ok
08:12:41.0545 5460 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
08:12:41.0561 5460 clr_optimization_v2.0.50727_32 - ok
08:12:41.0592 5460 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
08:12:41.0607 5460 clr_optimization_v2.0.50727_64 - ok
08:12:41.0685 5460 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
08:12:41.0685 5460 clr_optimization_v4.0.30319_32 - ok
08:12:41.0732 5460 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
08:12:41.0732 5460 clr_optimization_v4.0.30319_64 - ok
08:12:41.0763 5460 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\windows\system32\DRIVERS\CmBatt.sys
08:12:41.0763 5460 CmBatt - ok
08:12:41.0779 5460 cmdide (e19d3f095812725d88f9001985b94edd) C:\windows\system32\drivers\cmdide.sys
08:12:41.0779 5460 cmdide - ok
08:12:41.0841 5460 CNG (c4943b6c962e4b82197542447ad599f4) C:\windows\system32\Drivers\cng.sys
08:12:41.0841 5460 CNG - ok
08:12:41.0919 5460 CnxtHdAudService (25c58ee97be0416a373e3e4f855206b5) C:\windows\system32\drivers\CHDRT64.sys
08:12:41.0935 5460 CnxtHdAudService - ok
08:12:41.0966 5460 Compbatt (102de219c3f61415f964c88e9085ad14) C:\windows\system32\DRIVERS\compbatt.sys
08:12:41.0966 5460 Compbatt - ok
08:12:41.0997 5460 CompositeBus (03edb043586cceba243d689bdda370a8) C:\windows\system32\drivers\CompositeBus.sys
08:12:41.0997 5460 CompositeBus - ok
08:12:42.0013 5460 COMSysApp - ok
08:12:42.0044 5460 crcdisk (1c827878a998c18847245fe1f34ee597) C:\windows\system32\DRIVERS\crcdisk.sys
08:12:42.0060 5460 crcdisk - ok
08:12:42.0091 5460 CryptSvc (15597883fbe9b056f276ada3ad87d9af) C:\windows\system32\cryptsvc.dll
08:12:42.0091 5460 CryptSvc - ok
08:12:42.0169 5460 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\windows\system32\rpcss.dll
08:12:42.0169 5460 DcomLaunch - ok
08:12:42.0216 5460 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\windows\System32\defragsvc.dll
08:12:42.0231 5460 defragsvc - ok
08:12:42.0263 5460 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\windows\system32\Drivers\dfsc.sys
08:12:42.0263 5460 DfsC - ok
08:12:42.0325 5460 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\windows\system32\dhcpcore.dll
08:12:42.0325 5460 Dhcp - ok
08:12:42.0356 5460 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\windows\system32\drivers\discache.sys
08:12:42.0356 5460 discache - ok
08:12:42.0403 5460 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\windows\system32\DRIVERS\disk.sys
08:12:42.0403 5460 Disk - ok
08:12:42.0434 5460 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\windows\System32\dnsrslvr.dll
08:12:42.0450 5460 Dnscache - ok
08:12:42.0481 5460 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\windows\System32\dot3svc.dll
08:12:42.0512 5460 dot3svc - ok
08:12:42.0559 5460 Dot4 (b42ed0320c6e41102fde0005154849bb) C:\windows\system32\DRIVERS\Dot4.sys
08:12:42.0559 5460 Dot4 - ok
08:12:42.0590 5460 Dot4Print (e9f5969233c5d89f3c35e3a66a52a361) C:\windows\system32\DRIVERS\Dot4Prt.sys
08:12:42.0590 5460 Dot4Print - ok
08:12:42.0621 5460 dot4usb (fd05a02b0370bc3000f402e543ca5814) C:\windows\system32\DRIVERS\dot4usb.sys
08:12:42.0621 5460 dot4usb - ok
08:12:42.0653 5460 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\windows\system32\dps.dll
08:12:42.0653 5460 DPS - ok
08:12:42.0715 5460 drmkaud (9b19f34400d24df84c858a421c205754) C:\windows\system32\drivers\drmkaud.sys
08:12:42.0715 5460 drmkaud - ok
08:12:42.0793 5460 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\windows\System32\drivers\dxgkrnl.sys
08:12:42.0809 5460 DXGKrnl - ok
08:12:42.0855 5460 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\windows\System32\eapsvc.dll
08:12:42.0855 5460 EapHost - ok
08:12:43.0105 5460 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\windows\system32\DRIVERS\evbda.sys
08:12:43.0199 5460 ebdrv - ok
08:12:43.0339 5460 eeCtrl (0c3f9eff8ddd9f9eb56d754b4620155f) C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
08:12:43.0355 5460 eeCtrl - ok
08:12:43.0433 5460 EFS (c118a82cd78818c29ab228366ebf81c3) C:\windows\System32\lsass.exe
08:12:43.0448 5460 EFS - ok
08:12:43.0542 5460 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\windows\ehome\ehRecvr.exe
08:12:43.0557 5460 ehRecvr - ok
08:12:43.0589 5460 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\windows\ehome\ehsched.exe
08:12:43.0604 5460 ehSched - ok
08:12:43.0698 5460 elxstor (0e5da5369a0fcaea12456dd852545184) C:\windows\system32\DRIVERS\elxstor.sys
08:12:43.0729 5460 elxstor - ok
08:12:43.0838 5460 EraserUtilRebootDrv (8c0f9b877bc0b7ffd327ef55f9efb642) C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
08:12:43.0869 5460 EraserUtilRebootDrv - ok
08:12:43.0901 5460 ErrDev (34a3c54752046e79a126e15c51db409b) C:\windows\system32\drivers\errdev.sys
08:12:43.0916 5460 ErrDev - ok
08:12:43.0979 5460 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\windows\system32\es.dll
08:12:43.0994 5460 EventSystem - ok
08:12:44.0041 5460 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\windows\system32\drivers\exfat.sys
08:12:44.0041 5460 exfat - ok
08:12:44.0072 5460 fastfat (0adc83218b66a6db380c330836f3e36d) C:\windows\system32\drivers\fastfat.sys
08:12:44.0072 5460 fastfat - ok
08:12:44.0135 5460 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\windows\system32\fxssvc.exe
08:12:44.0150 5460 Fax - ok
08:12:44.0181 5460 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\windows\system32\DRIVERS\fdc.sys
08:12:44.0181 5460 fdc - ok
08:12:44.0197 5460 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\windows\system32\fdPHost.dll
08:12:44.0197 5460 fdPHost - ok
08:12:44.0228 5460 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\windows\system32\fdrespub.dll
08:12:44.0228 5460 FDResPub - ok
08:12:44.0244 5460 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\windows\system32\drivers\fileinfo.sys
08:12:44.0244 5460 FileInfo - ok
08:12:44.0259 5460 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\windows\system32\drivers\filetrace.sys
08:12:44.0259 5460 Filetrace - ok
08:12:44.0291 5460 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\windows\system32\DRIVERS\flpydisk.sys
08:12:44.0291 5460 flpydisk - ok
08:12:44.0337 5460 FltMgr (da6b67270fd9db3697b20fce94950741) C:\windows\system32\drivers\fltmgr.sys
08:12:44.0337 5460 FltMgr - ok
08:12:44.0431 5460 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\windows\system32\FntCache.dll
08:12:44.0447 5460 FontCache - ok
08:12:44.0525 5460 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
08:12:44.0525 5460 FontCache3.0.0.0 - ok
08:12:44.0571 5460 FsDepends (d43703496149971890703b4b1b723eac) C:\windows\system32\drivers\FsDepends.sys
08:12:44.0571 5460 FsDepends - ok
08:12:44.0603 5460 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\windows\system32\drivers\Fs_Rec.sys
08:12:44.0603 5460 Fs_Rec - ok
08:12:44.0665 5460 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\windows\system32\DRIVERS\fvevol.sys
08:12:44.0665 5460 fvevol - ok
08:12:44.0696 5460 FwLnk (60acb128e64c35c2b4e4aab1b0a5c293) C:\windows\system32\DRIVERS\FwLnk.sys
08:12:44.0696 5460 FwLnk - ok
08:12:44.0743 5460 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\windows\system32\DRIVERS\gagp30kx.sys
08:12:44.0743 5460 gagp30kx - ok
08:12:44.0837 5460 GameConsoleService (1fda0df739234c4023851a282dd28704) C:\Program Files (x86)\TOSHIBA Games\TOSHIBA Game Console\GameConsoleService.exe
08:12:44.0837 5460 GameConsoleService - ok
08:12:44.0883 5460 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\windows\system32\DRIVERS\GEARAspiWDM.sys
08:12:44.0899 5460 GEARAspiWDM - ok
08:12:44.0977 5460 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\windows\System32\gpsvc.dll
08:12:44.0993 5460 gpsvc - ok
08:12:45.0071 5460 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
08:12:45.0086 5460 gupdate - ok
08:12:45.0102 5460 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
08:12:45.0102 5460 gupdatem - ok
08:12:45.0133 5460 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\windows\system32\drivers\hcw85cir.sys
08:12:45.0133 5460 hcw85cir - ok
08:12:45.0196 5460 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\windows\system32\drivers\HdAudio.sys
08:12:45.0211 5460 HdAudAddService - ok
08:12:45.0258 5460 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\windows\system32\drivers\HDAudBus.sys
08:12:45.0258 5460 HDAudBus - ok
08:12:45.0289 5460 HECIx64 (b6ac71aaa2b10848f57fc49d55a651af) C:\windows\system32\DRIVERS\HECIx64.sys
08:12:45.0289 5460 HECIx64 - ok
08:12:45.0320 5460 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\windows\system32\DRIVERS\HidBatt.sys
08:12:45.0336 5460 HidBatt - ok
08:12:45.0352 5460 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\windows\system32\DRIVERS\hidbth.sys
08:12:45.0367 5460 HidBth - ok
08:12:45.0398 5460 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\windows\system32\DRIVERS\hidir.sys
08:12:45.0398 5460 HidIr - ok
08:12:45.0430 5460 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\windows\system32\hidserv.dll
08:12:45.0430 5460 hidserv - ok
08:12:45.0476 5460 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\windows\system32\drivers\hidusb.sys
08:12:45.0476 5460 HidUsb - ok
08:12:45.0508 5460 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\windows\system32\kmsvc.dll
08:12:45.0508 5460 hkmsvc - ok
08:12:45.0554 5460 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\windows\system32\ListSvc.dll
08:12:45.0570 5460 HomeGroupListener - ok
08:12:45.0601 5460 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\windows\system32\provsvc.dll
08:12:45.0601 5460 HomeGroupProvider - ok
08:12:45.0648 5460 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\windows\system32\drivers\HpSAMD.sys
08:12:45.0664 5460 HpSAMD - ok
08:12:45.0742 5460 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\windows\system32\drivers\HTTP.sys
08:12:45.0742 5460 HTTP - ok
08:12:45.0788 5460 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\windows\system32\drivers\hwpolicy.sys
08:12:45.0788 5460 hwpolicy - ok
08:12:45.0820 5460 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\windows\system32\drivers\i8042prt.sys
08:12:45.0820 5460 i8042prt - ok
08:12:45.0898 5460 iaStor (85977cd13fc16069ce0af7943a811775) C:\windows\system32\DRIVERS\iaStor.sys
08:12:45.0898 5460 iaStor - ok
08:12:45.0960 5460 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\windows\system32\drivers\iaStorV.sys
08:12:45.0976 5460 iaStorV - ok
08:12:46.0116 5460 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
08:12:46.0147 5460 idsvc - ok
08:12:46.0397 5460 IDSVia64 (4e9e0e5a3b0efeb27491c26be1d97fda) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.5.1.2\Definitions\IPSDefs\20120528.001\IDSvia64.sys
08:12:46.0412 5460 IDSVia64 - ok
08:12:47.0192 5460 igfx (898ab5bfed7040d7ab07af01885eb944) C:\windows\system32\DRIVERS\igdkmd64.sys
08:12:47.0395 5460 igfx - ok
08:12:47.0551 5460 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\windows\system32\DRIVERS\iirsp.sys
08:12:47.0551 5460 iirsp - ok
08:12:47.0629 5460 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\windows\System32\ikeext.dll
08:12:47.0645 5460 IKEEXT - ok
08:12:47.0692 5460 Impcd (4b6363cd4610bb848531bb260b15dfcc) C:\windows\system32\DRIVERS\Impcd.sys
08:12:47.0692 5460 Impcd - ok
08:12:47.0738 5460 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\windows\system32\drivers\intelide.sys
08:12:47.0738 5460 intelide - ok
08:12:47.0785 5460 intelppm (ada036632c664caa754079041cf1f8c1) C:\windows\system32\DRIVERS\intelppm.sys
08:12:47.0785 5460 intelppm - ok
08:12:47.0816 5460 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\windows\system32\ipbusenum.dll
08:12:47.0832 5460 IPBusEnum - ok
08:12:47.0863 5460 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\windows\system32\DRIVERS\ipfltdrv.sys
08:12:47.0863 5460 IpFilterDriver - ok
08:12:47.0926 5460 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\windows\System32\iphlpsvc.dll
08:12:47.0926 5460 iphlpsvc - ok
08:12:47.0957 5460 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\windows\system32\drivers\IPMIDrv.sys
08:12:47.0988 5460 IPMIDRV - ok
08:12:48.0019 5460 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\windows\system32\drivers\ipnat.sys
08:12:48.0050 5460 IPNAT - ok
08:12:48.0082 5460 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\windows\system32\drivers\irenum.sys
08:12:48.0082 5460 IRENUM - ok
08:12:48.0128 5460 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\windows\system32\drivers\isapnp.sys
08:12:48.0128 5460 isapnp - ok
08:12:48.0175 5460 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\windows\system32\drivers\msiscsi.sys
08:12:48.0175 5460 iScsiPrt - ok
08:12:48.0206 5460 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\windows\system32\drivers\kbdclass.sys
08:12:48.0206 5460 kbdclass - ok
08:12:48.0238 5460 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\windows\system32\drivers\kbdhid.sys
08:12:48.0238 5460 kbdhid - ok
08:12:48.0269 5460 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\windows\system32\lsass.exe
08:12:48.0269 5460 KeyIso - ok
08:12:48.0284 5460 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\windows\system32\Drivers\ksecdd.sys
08:12:48.0284 5460 KSecDD - ok
08:12:48.0300 5460 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\windows\system32\Drivers\ksecpkg.sys
08:12:48.0316 5460 KSecPkg - ok
08:12:48.0347 5460 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\windows\system32\drivers\ksthunk.sys
08:12:48.0347 5460 ksthunk - ok
08:12:48.0378 5460 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\windows\system32\msdtckrm.dll
08:12:48.0394 5460 KtmRm - ok
08:12:48.0425 5460 L1C (48686c29856f46443952a831424f8d6f) C:\windows\system32\DRIVERS\L1C62x64.sys
08:12:48.0440 5460 L1C - ok
08:12:48.0472 5460 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\windows\system32\srvsvc.dll
08:12:48.0487 5460 LanmanServer - ok
08:12:48.0518 5460 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\windows\System32\wkssvc.dll
08:12:48.0518 5460 LanmanWorkstation - ok
08:12:48.0565 5460 lltdio (1538831cf8ad2979a04c423779465827) C:\windows\system32\DRIVERS\lltdio.sys
08:12:48.0565 5460 lltdio - ok
08:12:48.0612 5460 lltdsvc (c1185803384ab3feed115f79f109427f) C:\windows\System32\lltdsvc.dll
08:12:48.0612 5460 lltdsvc - ok
08:12:48.0643 5460 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\windows\System32\lmhsvc.dll
08:12:48.0643 5460 lmhosts - ok
08:12:48.0768 5460 LMS (259e9d38f7cabb068530101f87b6c202) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
08:12:48.0768 5460 LMS - ok
08:12:48.0815 5460 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\windows\system32\DRIVERS\lsi_fc.sys
08:12:48.0815 5460 LSI_FC - ok
08:12:48.0846 5460 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\windows\system32\DRIVERS\lsi_sas.sys
08:12:48.0846 5460 LSI_SAS - ok
08:12:48.0893 5460 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\windows\system32\DRIVERS\lsi_sas2.sys
08:12:48.0893 5460 LSI_SAS2 - ok
08:12:48.0924 5460 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\windows\system32\DRIVERS\lsi_scsi.sys
08:12:48.0924 5460 LSI_SCSI - ok
08:12:48.0955 5460 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\windows\system32\drivers\luafv.sys
08:12:48.0971 5460 luafv - ok
08:12:49.0002 5460 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\windows\system32\Mcx2Svc.dll
08:12:49.0002 5460 Mcx2Svc - ok
08:12:49.0096 5460 MDM (11f714f85530a2bd134074dc30e99fca) C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
08:12:49.0111 5460 MDM - ok
08:12:49.0127 5460 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\windows\system32\DRIVERS\megasas.sys
08:12:49.0127 5460 megasas - ok
08:12:49.0174 5460 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\windows\system32\DRIVERS\MegaSR.sys
08:12:49.0174 5460 MegaSR - ok
08:12:49.0205 5460 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\windows\system32\mmcss.dll
08:12:49.0205 5460 MMCSS - ok
08:12:49.0220 5460 Modem (800ba92f7010378b09f9ed9270f07137) C:\windows\system32\drivers\modem.sys
08:12:49.0220 5460 Modem - ok
08:12:49.0252 5460 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\windows\system32\DRIVERS\monitor.sys
08:12:49.0252 5460 monitor - ok
08:12:49.0298 5460 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\windows\system32\drivers\mouclass.sys
08:12:49.0298 5460 mouclass - ok
08:12:49.0330 5460 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\windows\system32\DRIVERS\mouhid.sys
08:12:49.0330 5460 mouhid - ok
08:12:49.0376 5460 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\windows\system32\drivers\mountmgr.sys
08:12:49.0376 5460 mountmgr - ok
08:12:49.0408 5460 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\windows\system32\drivers\mpio.sys
08:12:49.0423 5460 mpio - ok
08:12:49.0454 5460 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\windows\system32\drivers\mpsdrv.sys
08:12:49.0454 5460 mpsdrv - ok
08:12:49.0517 5460 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\windows\system32\mpssvc.dll
08:12:49.0548 5460 MpsSvc - ok
08:12:49.0564 5460 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\windows\system32\drivers\mrxdav.sys
08:12:49.0579 5460 MRxDAV - ok
08:12:49.0610 5460 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\windows\system32\DRIVERS\mrxsmb.sys
08:12:49.0610 5460 mrxsmb - ok
08:12:49.0642 5460 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\windows\system32\DRIVERS\mrxsmb10.sys
08:12:49.0642 5460 mrxsmb10 - ok
08:12:49.0673 5460 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\windows\system32\DRIVERS\mrxsmb20.sys
08:12:49.0673 5460 mrxsmb20 - ok
08:12:49.0704 5460 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\windows\system32\drivers\msahci.sys
08:12:49.0704 5460 msahci - ok
08:12:49.0829 5460 MsDepSvc (aaac4b494de45836121a40aec980b631) C:\Program Files\IIS\Microsoft Web Deploy\MsDepSvc.exe
08:12:49.0829 5460 MsDepSvc - ok
08:12:49.0860 5460 msdsm (db801a638d011b9633829eb6f663c900) C:\windows\system32\drivers\msdsm.sys
08:12:49.0860 5460 msdsm - ok
08:12:49.0891 5460 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\windows\System32\msdtc.exe
08:12:49.0891 5460 MSDTC - ok
08:12:49.0922 5460 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\windows\system32\drivers\Msfs.sys
08:12:49.0922 5460 Msfs - ok
08:12:49.0938 5460 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\windows\System32\drivers\mshidkmdf.sys
08:12:49.0954 5460 mshidkmdf - ok
08:12:49.0985 5460 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\windows\system32\drivers\msisadrv.sys
08:12:49.0985 5460 msisadrv - ok
08:12:50.0032 5460 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\windows\system32\iscsiexe.dll
08:12:50.0047 5460 MSiSCSI - ok
08:12:50.0063 5460 msiserver - ok
08:12:50.0094 5460 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\windows\system32\drivers\MSKSSRV.sys
08:12:50.0110 5460 MSKSSRV - ok
08:12:50.0125 5460 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\windows\system32\drivers\MSPCLOCK.sys
08:12:50.0125 5460 MSPCLOCK - ok
08:12:50.0141 5460 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\windows\system32\drivers\MSPQM.sys
08:12:50.0141 5460 MSPQM - ok
08:12:50.0188 5460 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\windows\system32\drivers\MsRPC.sys
08:12:50.0188 5460 MsRPC - ok
08:12:50.0219 5460 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\windows\system32\drivers\mssmbios.sys
08:12:50.0219 5460 mssmbios - ok
08:12:50.0328 5460 MSSQL$SQLEXPRESS - ok
08:12:50.0437 5460 MSSQLServerADHelper100 (7a2a8c975356858eb38466a6b1592e8d) c:\Program Files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE
08:12:50.0437 5460 MSSQLServerADHelper100 - ok
08:12:50.0468 5460 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\windows\system32\drivers\MSTEE.sys
08:12:50.0468 5460 MSTEE - ok
08:12:50.0484 5460 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\windows\system32\DRIVERS\MTConfig.sys
08:12:50.0484 5460 MTConfig - ok
08:12:50.0500 5460 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\windows\system32\Drivers\mup.sys
08:12:50.0515 5460 Mup - ok
08:12:50.0593 5460 MySQL55 - ok
08:12:50.0640 5460 napagent (582ac6d9873e31dfa28a4547270862dd) C:\windows\system32\qagentRT.dll
08:12:50.0656 5460 napagent - ok
08:12:50.0718 5460 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\windows\system32\DRIVERS\nwifi.sys
08:12:50.0734 5460 NativeWifiP - ok
08:12:50.0905 5460 NAVENG (8043d41f881d6ace40b854ad6e32217f) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.5.1.2\Definitions\VirusDefs\20120528.024\ENG64.SYS
08:12:50.0905 5460 NAVENG - ok
08:12:51.0202 5460 NAVEX15 (9a9ab2fc45d701daed465d14980f1305) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.5.1.2\Definitions\VirusDefs\20120528.024\EX64.SYS
08:12:51.0248 5460 NAVEX15 - ok
08:12:51.0420 5460 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\windows\system32\drivers\ndis.sys
08:12:51.0436 5460 NDIS - ok
08:12:51.0467 5460 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\windows\system32\DRIVERS\ndiscap.sys
08:12:51.0482 5460 NdisCap - ok
08:12:51.0514 5460 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\windows\system32\DRIVERS\ndistapi.sys
08:12:51.0514 5460 NdisTapi - ok
08:12:51.0545 5460 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\windows\system32\DRIVERS\ndisuio.sys
08:12:51.0545 5460 Ndisuio - ok
08:12:51.0576 5460 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\windows\system32\DRIVERS\ndiswan.sys
08:12:51.0576 5460 NdisWan - ok
08:12:51.0607 5460 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\windows\system32\drivers\NDProxy.sys
08:12:51.0607 5460 NDProxy - ok
08:12:51.0654 5460 Net Driver HPZ12 (dc6530a291d4bdf6df399f1f128e7f8f) C:\Windows\system32\HPZinw12.dll
08:12:51.0654 5460 Net Driver HPZ12 - ok
08:12:51.0685 5460 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\windows\system32\DRIVERS\netbios.sys
08:12:51.0685 5460 NetBIOS - ok
08:12:51.0732 5460 NetBT (09594d1089c523423b32a4229263f068) C:\windows\system32\DRIVERS\netbt.sys
08:12:51.0732 5460 NetBT - ok
08:12:51.0779 5460 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\windows\system32\lsass.exe
08:12:51.0779 5460 Netlogon - ok
08:12:51.0841 5460 Netman (847d3ae376c0817161a14a82c8922a9e) C:\windows\System32\netman.dll
08:12:51.0857 5460 Netman - ok
08:12:51.0950 5460 NetMsmqActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
08:12:51.0950 5460 NetMsmqActivator - ok
08:12:51.0966 5460 NetPipeActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
08:12:51.0966 5460 NetPipeActivator - ok
08:12:52.0013 5460 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\windows\System32\netprofm.dll
08:12:52.0028 5460 netprofm - ok
08:12:52.0044 5460 NetTcpActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
08:12:52.0044 5460 NetTcpActivator - ok
08:12:52.0044 5460 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
08:12:52.0044 5460 NetTcpPortSharing - ok
08:12:52.0106 5460 nfrd960 (77889813be4d166cdab78ddba990da92) C:\windows\system32\DRIVERS\nfrd960.sys
08:12:52.0106 5460 nfrd960 - ok
08:12:52.0216 5460 NIS (c6948f034d7edabcfa2234d399fc78bc) C:\Program Files (x86)\Norton Internet Security\Engine\19.7.1.5\ccSvcHst.exe
08:12:52.0216 5460 NIS - ok
08:12:52.0262 5460 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\windows\System32\nlasvc.dll
08:12:52.0262 5460 NlaSvc - ok
08:12:52.0294 5460 Norton PC Checkup Application Launcher - ok
08:12:52.0325 5460 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\windows\system32\drivers\Npfs.sys
08:12:52.0325 5460 Npfs - ok
08:12:52.0356 5460 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\windows\system32\nsisvc.dll
08:12:52.0356 5460 nsi - ok
08:12:52.0372 5460 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\windows\system32\drivers\nsiproxy.sys
08:12:52.0372 5460 nsiproxy - ok
08:12:52.0496 5460 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\windows\system32\drivers\Ntfs.sys
08:12:52.0512 5460 Ntfs - ok
08:12:52.0621 5460 Null (9899284589f75fa8724ff3d16aed75c1) C:\windows\system32\drivers\Null.sys
08:12:52.0621 5460 Null - ok
08:12:52.0652 5460 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\windows\system32\drivers\nvraid.sys
08:12:52.0668 5460 nvraid - ok
08:12:52.0684 5460 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\windows\system32\drivers\nvstor.sys
08:12:52.0684 5460 nvstor - ok
08:12:52.0730 5460 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\windows\system32\drivers\nv_agp.sys
08:12:52.0730 5460 nv_agp - ok
08:12:52.0762 5460 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\windows\system32\drivers\ohci1394.sys
08:12:52.0777 5460 ohci1394 - ok
08:12:52.0840 5460 ose (7a56cf3e3f12e8af599963b16f50fb6a) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
08:12:52.0840 5460 ose - ok
08:12:52.0886 5460 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\windows\system32\pnrpsvc.dll
08:12:52.0902 5460 p2pimsvc - ok
08:12:52.0949 5460 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\windows\system32\p2psvc.dll
08:12:52.0949 5460 p2psvc - ok
08:12:52.0996 5460 Parport (0086431c29c35be1dbc43f52cc273887) C:\windows\system32\DRIVERS\parport.sys
08:12:52.0996 5460 Parport - ok
08:12:53.0042 5460 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\windows\system32\drivers\partmgr.sys
08:12:53.0042 5460 partmgr - ok
08:12:53.0074 5460 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\windows\System32\pcasvc.dll
08:12:53.0074 5460 PcaSvc - ok
08:12:53.0120 5460 PCCUJobMgr (2f86be1818c2d7ac90478e3323ee7fcb) C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.6.22\ccSvcHst.exe
08:12:53.0120 5460 PCCUJobMgr - ok
08:12:53.0167 5460 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\windows\system32\drivers\pci.sys
08:12:53.0167 5460 pci - ok
08:12:53.0183 5460 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\windows\system32\drivers\pciide.sys
08:12:53.0183 5460 pciide - ok
08:12:53.0214 5460 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\windows\system32\DRIVERS\pcmcia.sys
08:12:53.0230 5460 pcmcia - ok
08:12:53.0245 5460 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\windows\system32\drivers\pcw.sys
08:12:53.0261 5460 pcw - ok
08:12:53.0323 5460 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\windows\system32\drivers\peauth.sys
08:12:53.0339 5460 PEAUTH - ok
08:12:53.0401 5460 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\windows\SysWow64\perfhost.exe
08:12:53.0417 5460 PerfHost - ok
08:12:53.0464 5460 PGEffect (663962900e7fea522126ba287715bb4a) C:\windows\system32\DRIVERS\pgeffect.sys
08:12:53.0464 5460 PGEffect - ok
08:12:53.0573 5460 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\windows\system32\pla.dll
08:12:53.0588 5460 pla - ok
08:12:53.0635 5460 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\windows\system32\umpnpmgr.dll
08:12:53.0651 5460 PlugPlay - ok
08:12:53.0713 5460 Pml Driver HPZ12 (71f62c51dfdfbc04c83c5c64b2b8058e) C:\Windows\system32\HPZipm12.dll
08:12:53.0713 5460 Pml Driver HPZ12 - ok
08:12:53.0729 5460 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\windows\system32\pnrpauto.dll
08:12:53.0760 5460 PNRPAutoReg - ok
08:12:53.0791 5460 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\windows\system32\pnrpsvc.dll
08:12:53.0791 5460 PNRPsvc - ok
08:12:53.0838 5460 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\windows\System32\ipsecsvc.dll
08:12:53.0854 5460 PolicyAgent - ok
08:12:53.0885 5460 Power (6ba9d927dded70bd1a9caded45f8b184) C:\windows\system32\umpo.dll
08:12:53.0900 5460 Power - ok
08:12:53.0947 5460 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\windows\system32\DRIVERS\raspptp.sys
08:12:53.0947 5460 PptpMiniport - ok
08:12:53.0978 5460 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\windows\system32\DRIVERS\processr.sys
08:12:53.0978 5460 Processor - ok
08:12:54.0025 5460 ProfSvc (5c78838b4d166d1a27db3a8a820c799a) C:\windows\system32\profsvc.dll
08:12:54.0025 5460 ProfSvc - ok
08:12:54.0056 5460 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\windows\system32\lsass.exe
08:12:54.0056 5460 ProtectedStorage - ok
08:12:54.0103 5460 Psched (0557cf5a2556bd58e26384169d72438d) C:\windows\system32\DRIVERS\pacer.sys
08:12:54.0103 5460 Psched - ok
08:12:54.0212 5460 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\windows\system32\DRIVERS\ql2300.sys
08:12:54.0228 5460 ql2300 - ok
08:12:54.0368 5460 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\windows\system32\DRIVERS\ql40xx.sys
08:12:54.0368 5460 ql40xx - ok
08:12:54.0415 5460 QWAVE (906191634e99aea92c4816150bda3732) C:\windows\system32\qwave.dll
08:12:54.0431 5460 QWAVE - ok
08:12:54.0462 5460 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\windows\system32\drivers\qwavedrv.sys
08:12:54.0462 5460 QWAVEdrv - ok
08:12:54.0478 5460 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\windows\system32\DRIVERS\rasacd.sys
08:12:54.0478 5460 RasAcd - ok
08:12:54.0524 5460 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\windows\system32\DRIVERS\AgileVpn.sys
08:12:54.0524 5460 RasAgileVpn - ok
08:12:54.0556 5460 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\windows\System32\rasauto.dll
08:12:54.0556 5460 RasAuto - ok
08:12:54.0602 5460 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\windows\system32\DRIVERS\rasl2tp.sys
08:12:54.0602 5460 Rasl2tp - ok
08:12:54.0649 5460 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\windows\System32\rasmans.dll
08:12:54.0665 5460 RasMan - ok
08:12:54.0696 5460 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\windows\system32\DRIVERS\raspppoe.sys
08:12:54.0696 5460 RasPppoe - ok
08:12:54.0727 5460 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\windows\system32\DRIVERS\rassstp.sys
08:12:54.0743 5460 RasSstp - ok
08:12:54.0790 5460 rdbss (77f665941019a1594d887a74f301fa2f) C:\windows\system32\DRIVERS\rdbss.sys
08:12:54.0805 5460 rdbss - ok
08:12:54.0836 5460 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\windows\system32\DRIVERS\rdpbus.sys
08:12:54.0836 5460 rdpbus - ok
08:12:54.0868 5460 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\windows\system32\DRIVERS\RDPCDD.sys
08:12:54.0868 5460 RDPCDD - ok
08:12:54.0899 5460 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\windows\system32\drivers\rdpencdd.sys
08:12:54.0899 5460 RDPENCDD - ok
08:12:54.0930 5460 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\windows\system32\drivers\rdprefmp.sys
08:12:54.0930 5460 RDPREFMP - ok
08:12:54.0977 5460 RDPWD (6d76e6433574b058adcb0c50df834492) C:\windows\system32\drivers\RDPWD.sys
08:12:54.0977 5460 RDPWD - ok
08:12:55.0024 5460 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\windows\system32\drivers\rdyboost.sys
08:12:55.0039 5460 rdyboost - ok
08:12:55.0070 5460 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\windows\System32\mprdim.dll
08:12:55.0070 5460 RemoteAccess - ok
08:12:55.0102 5460 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\windows\system32\regsvc.dll
08:12:55.0102 5460 RemoteRegistry - ok
08:12:55.0117 5460 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\windows\System32\RpcEpMap.dll
08:12:55.0133 5460 RpcEptMapper - ok
08:12:55.0148 5460 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\windows\system32\locator.exe
08:12:55.0148 5460 RpcLocator - ok
08:12:55.0195 5460 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\windows\system32\rpcss.dll
08:12:55.0195 5460 RpcSs - ok
08:12:55.0258 5460 RsFx0103 (cd553b8633466a6d1c115812f2619f1f) C:\windows\system32\DRIVERS\RsFx0103.sys
08:12:55.0289 5460 RsFx0103 - ok
08:12:55.0320 5460 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\windows\system32\DRIVERS\rspndr.sys
08:12:55.0336 5460 rspndr - ok
08:12:55.0414 5460 RSUSBSTOR (907c4464381b5ebdfdc60f6c7d0dedfc) C:\windows\system32\Drivers\RtsUStor.sys
08:12:55.0414 5460 RSUSBSTOR - ok
08:12:55.0445 5460 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\windows\system32\lsass.exe
08:12:55.0445 5460 SamSs - ok
08:12:55.0476 5460 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\windows\system32\drivers\sbp2port.sys
08:12:55.0476 5460 sbp2port - ok
08:12:55.0507 5460 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\windows\System32\SCardSvr.dll
08:12:55.0538 5460 SCardSvr - ok
08:12:55.0570 5460 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\windows\system32\DRIVERS\scfilter.sys
08:12:55.0570 5460 scfilter - ok
08:12:55.0648 5460 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\windows\system32\schedsvc.dll
08:12:55.0663 5460 Schedule - ok
08:12:55.0694 5460 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\windows\System32\certprop.dll
08:12:55.0710 5460 SCPolicySvc - ok
08:12:55.0741 5460 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\windows\System32\SDRSVC.dll
08:12:55.0757 5460 SDRSVC - ok
08:12:55.0804 5460 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\windows\system32\drivers\secdrv.sys
08:12:55.0819 5460 secdrv - ok
08:12:55.0835 5460 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\windows\system32\seclogon.dll
08:12:55.0850 5460 seclogon - ok
08:12:55.0882 5460 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\windows\System32\sens.dll
08:12:55.0882 5460 SENS - ok
08:12:55.0897 5460 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\windows\system32\sensrsvc.dll
08:12:55.0928 5460 SensrSvc - ok
08:12:55.0944 5460 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\windows\system32\DRIVERS\serenum.sys
08:12:55.0944 5460 Serenum - ok
08:12:55.0991 5460 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\windows\system32\DRIVERS\serial.sys
08:12:55.0991 5460 Serial - ok
08:12:56.0022 5460 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\windows\system32\DRIVERS\sermouse.sys
08:12:56.0022 5460 sermouse - ok
08:12:56.0069 5460 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\windows\system32\sessenv.dll
08:12:56.0084 5460 SessionEnv - ok
08:12:56.0100 5460 sffdisk (a554811bcd09279536440c964ae35bbf) C:\windows\system32\drivers\sffdisk.sys
08:12:56.0116 5460 sffdisk - ok
08:12:56.0147 5460 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\windows\system32\drivers\sffp_mmc.sys
08:12:56.0147 5460 sffp_mmc - ok
08:12:56.0147 5460 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\windows\system32\drivers\sffp_sd.sys
08:12:56.0147 5460 sffp_sd - ok
08:12:56.0162 5460 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\windows\system32\DRIVERS\sfloppy.sys
08:12:56.0178 5460 sfloppy - ok
08:12:56.0209 5460 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\windows\System32\ipnathlp.dll
08:12:56.0225 5460 SharedAccess - ok
08:12:56.0256 5460 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\windows\System32\shsvcs.dll
08:12:56.0272 5460 ShellHWDetection - ok
08:12:56.0303 5460 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\windows\system32\DRIVERS\SiSRaid2.sys
08:12:56.0318 5460 SiSRaid2 - ok
08:12:56.0334 5460 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\windows\system32\DRIVERS\sisraid4.sys
08:12:56.0350 5460 SiSRaid4 - ok
08:12:56.0381 5460 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\windows\system32\DRIVERS\smb.sys
08:12:56.0381 5460 Smb - ok
08:12:56.0443 5460 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\windows\System32\snmptrap.exe
08:12:56.0443 5460 SNMPTRAP - ok
08:12:56.0459 5460 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\windows\system32\drivers\spldr.sys
08:12:56.0459 5460 spldr - ok
08:12:56.0521 5460 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\windows\System32\spoolsv.exe
08:12:56.0521 5460 Spooler - ok
08:12:56.0740 5460 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\windows\system32\sppsvc.exe
08:12:56.0864 5460 sppsvc - ok
08:12:56.0974 5460 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\windows\system32\sppuinotify.dll
08:12:56.0974 5460 sppuinotify - ok
08:12:57.0130 5460 SQLAgent$SQLEXPRESS (12e6d95cde974b131defaa44bab8b056) c:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE
08:12:57.0145 5460 SQLAgent$SQLEXPRESS - ok
08:12:57.0317 5460 SRTSP (06b9a7ba94356ec5207c5ddb59540378) C:\windows\System32\Drivers\NISx64\1307010.005\SRTSP64.SYS
08:12:57.0332 5460 SRTSP - ok
08:12:57.0348 5460 SRTSPX (fbb8945a61e55a2345d12487c74a9d76) C:\windows\system32\drivers\NISx64\1307010.005\SRTSPX64.SYS
08:12:57.0348 5460 SRTSPX - ok
08:12:57.0395 5460 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\windows\system32\DRIVERS\srv.sys
08:12:57.0395 5460 srv - ok
08:12:57.0426 5460 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\windows\system32\DRIVERS\srv2.sys
08:12:57.0426 5460 srv2 - ok
08:12:57.0473 5460 srvnet (27e461f0be5bff5fc737328f749538c3) C:\windows\system32\DRIVERS\srvnet.sys
08:12:57.0473 5460 srvnet - ok
08:12:57.0504 5460 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\windows\System32\ssdpsrv.dll
08:12:57.0520 5460 SSDPSRV - ok
08:12:57.0535 5460 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\windows\system32\sstpsvc.dll
08:12:57.0535 5460 SstpSvc - ok
08:12:57.0566 5460 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\windows\system32\DRIVERS\stexstor.sys
08:12:57.0566 5460 stexstor - ok
08:12:57.0629 5460 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\windows\System32\wiaservc.dll
08:12:57.0644 5460 stisvc - ok
08:12:57.0660 5460 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\windows\system32\drivers\swenum.sys
08:12:57.0660 5460 swenum - ok
08:12:57.0800 5460 SwitchBoard (f577910a133a592234ebaad3f3afa258) C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
08:12:57.0816 5460 SwitchBoard - ok
08:12:57.0863 5460 swprv (e08e46fdd841b7184194011ca1955a0b) C:\windows\System32\swprv.dll
08:12:57.0878 5460 swprv - ok
08:12:57.0972 5460 SymDS (8b2430762099598da40686f754632efd) C:\windows\system32\drivers\NISx64\1307010.005\SYMDS64.SYS
08:12:57.0988 5460 SymDS - ok
08:12:58.0097 5460 SymEFA (f90c7a190399165d3ab2245048d34786) C:\windows\system32\drivers\NISx64\1307010.005\SYMEFA64.SYS
08:12:58.0112 5460 SymEFA - ok
08:12:58.0144 5460 SymEvent (898bb48c797483420df523b2bbc1ecdb) C:\windows\system32\Drivers\SYMEVENT64x86.SYS
08:12:58.0144 5460 SymEvent - ok
08:12:58.0190 5460 SymIRON (5013a76caaa1d7cf1c55214b490b4e35) C:\windows\system32\drivers\NISx64\1307010.005\Ironx64.SYS
08:12:58.0206 5460 SymIRON - ok
08:12:58.0284 5460 SymNetS (3911bd0e68c010e5438a87706abbe9ab) C:\windows\System32\Drivers\NISx64\1307010.005\SYMNETS.SYS
08:12:58.0300 5460 SymNetS - ok
08:12:58.0346 5460 SynTP (470c47daba9ca3966f0ab3f835d7d135) C:\windows\system32\DRIVERS\SynTP.sys
08:12:58.0346 5460 SynTP - ok
08:12:58.0471 5460 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\windows\system32\sysmain.dll
08:12:58.0487 5460 SysMain - ok
08:12:58.0627 5460 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\windows\System32\TabSvc.dll
08:12:58.0627 5460 TabletInputService - ok
08:12:58.0658 5460 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\windows\System32\tapisrv.dll
08:12:58.0674 5460 TapiSrv - ok
08:12:58.0705 5460 TBS (1be03ac720f4d302ea01d40f588162f6) C:\windows\System32\tbssvc.dll
08:12:58.0705 5460 TBS - ok
08:12:58.0846 5460 Tcpip (acb82bda8f46c84f465c1afa517dc4b9) C:\windows\system32\drivers\tcpip.sys
08:12:58.0908 5460 Tcpip - ok
08:12:59.0173 5460 TCPIP6 (acb82bda8f46c84f465c1afa517dc4b9) C:\windows\system32\DRIVERS\tcpip.sys
08:12:59.0189 5460 TCPIP6 - ok
08:12:59.0282 5460 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\windows\system32\drivers\tcpipreg.sys
08:12:59.0282 5460 tcpipreg - ok
08:12:59.0329 5460 tdcmdpst (fd542b661bd22fa69ca789ad0ac58c29) C:\windows\system32\DRIVERS\tdcmdpst.sys
08:12:59.0329 5460 tdcmdpst - ok
08:12:59.0360 5460 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\windows\system32\drivers\tdpipe.sys
08:12:59.0376 5460 TDPIPE - ok
08:12:59.0407 5460 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\windows\system32\drivers\tdtcp.sys
08:12:59.0423 5460 TDTCP - ok
08:12:59.0470 5460 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\windows\system32\DRIVERS\tdx.sys
08:12:59.0470 5460 tdx - ok
08:12:59.0516 5460 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\windows\system32\drivers\termdd.sys
08:12:59.0516 5460 TermDD - ok
08:12:59.0579 5460 TermService (2e648163254233755035b46dd7b89123) C:\windows\System32\termsrv.dll
08:12:59.0579 5460 TermService - ok
08:12:59.0610 5460 Themes (f0344071948d1a1fa732231785a0664c) C:\windows\system32\themeservice.dll
08:12:59.0626 5460 Themes - ok
08:12:59.0641 5460 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\windows\system32\mmcss.dll
08:12:59.0641 5460 THREADORDER - ok
08:12:59.0735 5460 TMachInfo (28644b0523d64eff2fc7312a2ee74b0a) C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
08:12:59.0735 5460 TMachInfo - ok
08:12:59.0766 5460 TODDSrv (ed32035bdfeced1ad66d459fd9cc1140) C:\windows\system32\TODDSrv.exe
08:12:59.0782 5460 TODDSrv - ok
08:12:59.0860 5460 TosCoSrv (db9719688c08f42705feb3f6a0c98b91) C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
08:12:59.0875 5460 TosCoSrv - ok
08:12:59.0938 5460 TOSHIBA HDD SSD Alert Service (74c2fa8c3765ee71a9c22182ec108457) C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
08:12:59.0938 5460 TOSHIBA HDD SSD Alert Service - ok
08:12:59.0969 5460 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\windows\System32\trkwks.dll
08:12:59.0969 5460 TrkWks - ok
08:13:00.0016 5460 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\windows\servicing\TrustedInstaller.exe
08:13:00.0016 5460 TrustedInstaller - ok
08:13:00.0062 5460 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\windows\system32\DRIVERS\tssecsrv.sys
08:13:00.0062 5460 tssecsrv - ok
08:13:00.0125 5460 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\windows\system32\drivers\tsusbflt.sys
08:13:00.0125 5460 TsUsbFlt - ok
08:13:00.0172 5460 tunnel (3566a8daafa27af944f5d705eaa64894) C:\windows\system32\DRIVERS\tunnel.sys
08:13:00.0203 5460 tunnel - ok
08:13:00.0250 5460 TVALZ (550b567f9364d8f7684c3fb3ea665a72) C:\windows\system32\DRIVERS\TVALZ_O.SYS
08:13:00.0250 5460 TVALZ - ok
08:13:00.0281 5460 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\windows\system32\DRIVERS\uagp35.sys
08:13:00.0281 5460 uagp35 - ok
08:13:00.0328 5460 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\windows\system32\DRIVERS\udfs.sys
08:13:00.0328 5460 udfs - ok
08:13:00.0359 5460 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\windows\system32\UI0Detect.exe
08:13:00.0374 5460 UI0Detect - ok
08:13:00.0406 5460 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\windows\system32\drivers\uliagpkx.sys
08:13:00.0406 5460 uliagpkx - ok
08:13:00.0452 5460 umbus (dc54a574663a895c8763af0fa1ff7561) C:\windows\system32\drivers\umbus.sys
08:13:00.0452 5460 umbus - ok
08:13:00.0484 5460 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\windows\system32\DRIVERS\umpass.sys
08:13:00.0484 5460 UmPass - ok
08:13:00.0702 5460 UNS (48e114762941941d5821eaae29d75e9e) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
08:13:00.0718 5460 UNS - ok
08:13:00.0842 5460 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\windows\System32\upnphost.dll
08:13:00.0858 5460 upnphost - ok
08:13:00.0905 5460 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\windows\system32\DRIVERS\usbccgp.sys
08:13:00.0905 5460 usbccgp - ok
08:13:00.0952 5460 usbcir (af0892a803fdda7492f595368e3b68e7) C:\windows\system32\drivers\usbcir.sys
08:13:00.0952 5460 usbcir - ok
08:13:00.0983 5460 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\windows\system32\drivers\usbehci.sys
08:13:00.0998 5460 usbehci - ok
08:13:01.0045 5460 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\windows\system32\DRIVERS\usbhub.sys
08:13:01.0045 5460 usbhub - ok
08:13:01.0061 5460 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\windows\system32\drivers\usbohci.sys
08:13:01.0092 5460 usbohci - ok
08:13:01.0123 5460 usbprint (73188f58fb384e75c4063d29413cee3d) C:\windows\system32\DRIVERS\usbprint.sys
08:13:01.0123 5460 usbprint - ok
08:13:01.0154 5460 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\windows\system32\DRIVERS\USBSTOR.SYS
08:13:01.0170 5460 USBSTOR - ok
08:13:01.0186 5460 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\windows\system32\drivers\usbuhci.sys
08:13:01.0186 5460 usbuhci - ok
08:13:01.0232 5460 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\windows\System32\Drivers\usbvideo.sys
08:13:01.0248 5460 usbvideo - ok
08:13:01.0279 5460 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\windows\System32\uxsms.dll
08:13:01.0279 5460 UxSms - ok
08:13:01.0310 5460 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\windows\system32\lsass.exe
08:13:01.0310 5460 VaultSvc - ok
08:13:01.0342 5460 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\windows\system32\drivers\vdrvroot.sys
08:13:01.0342 5460 vdrvroot - ok
08:13:01.0404 5460 vds (8d6b481601d01a456e75c3210f1830be) C:\windows\System32\vds.exe
08:13:01.0420 5460 vds - ok
08:13:01.0435 5460 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\windows\system32\DRIVERS\vgapnp.sys
08:13:01.0435 5460 vga - ok
08:13:01.0466 5460 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\windows\System32\drivers\vga.sys
08:13:01.0482 5460 VgaSave - ok
08:13:01.0513 5460 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\windows\system32\drivers\vhdmp.sys
08:13:01.0529 5460 vhdmp - ok
08:13:01.0544 5460 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\windows\system32\drivers\viaide.sys
08:13:01.0544 5460 viaide - ok
08:13:01.0544 5460 vmci - ok
08:13:01.0544 5460 VMnetAdapter - ok
08:13:01.0576 5460 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\windows\system32\drivers\volmgr.sys
08:13:01.0576 5460 volmgr - ok
08:13:01.0622 5460 volmgrx (a255814907c89be58b79ef2f189b843b) C:\windows\system32\drivers\volmgrx.sys
08:13:01.0622 5460 volmgrx - ok
08:13:01.0669 5460 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\windows\system32\drivers\volsnap.sys
08:13:01.0669 5460 volsnap - ok
08:13:01.0716 5460 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\windows\system32\DRIVERS\vsmraid.sys
08:13:01.0716 5460 vsmraid - ok
08:13:01.0841 5460 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\windows\system32\vssvc.exe
08:13:01.0856 5460 VSS - ok
08:13:01.0981 5460 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\windows\system32\DRIVERS\vwifibus.sys
08:13:01.0981 5460 vwifibus - ok
08:13:01.0997 5460 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\windows\system32\DRIVERS\vwififlt.sys
08:13:01.0997 5460 vwififlt - ok
08:13:02.0044 5460 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\windows\system32\DRIVERS\vwifimp.sys
08:13:02.0044 5460 vwifimp - ok
08:13:02.0090 5460 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\windows\system32\w32time.dll
08:13:02.0106 5460 W32Time - ok
08:13:02.0200 5460 W3SVC (b32009db1972e7f2c227499289c4384a) C:\windows\system32\inetsrv\iisw3adm.dll
08:13:02.0200 5460 W3SVC - ok
08:13:02.0231 5460 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\windows\system32\DRIVERS\wacompen.sys
08:13:02.0231 5460 WacomPen - ok
08:13:02.0278 5460 WANARP (356afd78a6ed4457169241ac3965230c) C:\windows\system32\DRIVERS\wanarp.sys
08:13:02.0293 5460 WANARP - ok
08:13:02.0324 5460 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\windows\system32\DRIVERS\wanarp.sys
08:13:02.0324 5460 Wanarpv6 - ok
08:13:02.0356 5460 WAS (b32009db1972e7f2c227499289c4384a) C:\windows\system32\inetsrv\iisw3adm.dll
08:13:02.0356 5460 WAS - ok
08:13:02.0480 5460 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\windows\system32\Wat\WatAdminSvc.exe
08:13:02.0496 5460 WatAdminSvc - ok
08:13:02.0621 5460 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\windows\system32\wbengine.exe
08:13:02.0652 5460 wbengine - ok
08:13:02.0777 5460 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\windows\System32\wbiosrvc.dll
08:13:02.0777 5460 WbioSrvc - ok
08:13:02.0824 5460 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\windows\System32\wcncsvc.dll
08:13:02.0839 5460 wcncsvc - ok
08:13:02.0870 5460 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\windows\System32\WcsPlugInService.dll
08:13:02.0870 5460 WcsPlugInService - ok
08:13:02.0902 5460 Wd (72889e16ff12ba0f235467d6091b17dc) C:\windows\system32\DRIVERS\wd.sys
08:13:02.0902 5460 Wd - ok
08:13:02.0995 5460 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\windows\system32\drivers\Wdf01000.sys
08:13:03.0011 5460 Wdf01000 - ok
08:13:03.0042 5460 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\windows\system32\wdi.dll
08:13:03.0042 5460 WdiServiceHost - ok
08:13:03.0058 5460 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\windows\system32\wdi.dll
08:13:03.0058 5460 WdiSystemHost - ok
08:13:03.0120 5460 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\windows\System32\webclnt.dll
08:13:03.0120 5460 WebClient - ok
08:13:03.0167 5460 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\windows\system32\wecsvc.dll
08:13:03.0167 5460 Wecsvc - ok
08:13:03.0182 5460 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\windows\System32\wercplsupport.dll
08:13:03.0198 5460 wercplsupport - ok
08:13:03.0229 5460 WerSvc (6d137963730144698cbd10f202e9f251) C:\windows\System32\WerSvc.dll
08:13:03.0229 5460 WerSvc - ok
08:13:03.0292 5460 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\windows\system32\DRIVERS\wfplwf.sys
08:13:03.0292 5460 WfpLwf - ok
08:13:03.0307 5460 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\windows\system32\drivers\wimmount.sys
08:13:03.0307 5460 WIMMount - ok
08:13:03.0338 5460 WinDefend - ok
08:13:03.0338 5460 WinHttpAutoProxySvc - ok
08:13:03.0401 5460 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\windows\system32\wbem\WMIsvc.dll
08:13:03.0416 5460 Winmgmt - ok
08:13:03.0557 5460 WinRM (bcb1310604aa415c4508708975b3931e) C:\windows\system32\WsmSvc.dll
08:13:03.0635 5460 WinRM - ok
08:13:03.0838 5460 WinUsb (fe88b288356e7b47b74b13372add906d) C:\windows\system32\DRIVERS\WinUsb.sys
08:13:03.0838 5460 WinUsb - ok
08:13:03.0916 5460 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\windows\System32\wlansvc.dll
08:13:03.0931 5460 Wlansvc - ok
08:13:04.0009 5460 wlcrasvc (06c8fa1cf39de6a735b54d906ba791c6) C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
08:13:04.0025 5460 wlcrasvc - ok
08:13:04.0196 5460 wlidsvc (7e47c328fc4768cb8beafbcfafa70362) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
08:13:04.0212 5460 wlidsvc - ok
08:13:04.0399 5460 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\windows\system32\drivers\wmiacpi.sys
08:13:04.0399 5460 WmiAcpi - ok
08:13:04.0477 5460 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\windows\system32\wbem\WmiApSrv.exe
08:13:04.0477 5460 wmiApSrv - ok
08:13:04.0524 5460 WMPNetworkSvc - ok
08:13:04.0555 5460 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\windows\System32\wpcsvc.dll
08:13:04.0555 5460 WPCSvc - ok
08:13:04.0586 5460 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\windows\system32\wpdbusenum.dll
08:13:04.0586 5460 WPDBusEnum - ok
08:13:04.0618 5460 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\windows\system32\drivers\ws2ifsl.sys
08:13:04.0618 5460 ws2ifsl - ok
08:13:04.0649 5460 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\windows\System32\wscsvc.dll
08:13:04.0649 5460 wscsvc - ok
08:13:04.0664 5460 WSearch - ok
08:13:04.0820 5460 wuauserv (9df12edbc698b0bc353b3ef84861e430) C:\windows\system32\wuaueng.dll
08:13:04.0867 5460 wuauserv - ok
08:13:05.0039 5460 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\windows\system32\drivers\WudfPf.sys
08:13:05.0054 5460 WudfPf - ok
08:13:05.0086 5460 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\windows\System32\WUDFSvc.dll
08:13:05.0086 5460 wudfsvc - ok
08:13:05.0132 5460 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\windows\System32\wwansvc.dll
08:13:05.0164 5460 WwanSvc - ok
08:13:05.0195 5460 MBR (0x1B8) (5b5e648d12fcadc244c1ec30318e1eb9) \Device\Harddisk0\DR0
08:13:05.0413 5460 \Device\Harddisk0\DR0 - ok
08:13:05.0429 5460 Boot (0x1200) (802588c0b7f69377774ba80616de645f) \Device\Harddisk0\DR0\Partition0
08:13:05.0429 5460 \Device\Harddisk0\DR0\Partition0 - ok
08:13:05.0429 5460 ============================================================
08:13:05.0429 5460 Scan finished
08:13:05.0429 5460 ============================================================
08:13:05.0444 5456 Detected object count: 0
08:13:05.0444 5456 Actual detected object count: 0
08:13:32.0417 2740 Deinitialize success

Here's the aswMBR log
aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-05-29 08:16:49
-----------------------------
08:16:49.778 OS Version: Windows x64 6.1.7601 Service Pack 1
08:16:49.778 Number of processors: 4 586 0x2505
08:16:49.778 ComputerName: SLIM-PC UserName: slim
08:16:50.652 Initialize success
08:16:56.127 AVAST engine defs: 12052800
08:17:45.922 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
08:17:45.922 Disk 0 Vendor: TOSHIBA_ GH10 Size: 305245MB BusType: 3
08:17:45.954 Disk 0 MBR read successfully
08:17:45.954 Disk 0 MBR scan
08:17:45.954 Disk 0 Windows VISTA default MBR code
08:17:45.969 Disk 0 Partition 1 80 (A) 27 Hidden NTFS WinRE NTFS 1500 MB offset 2048
08:17:45.985 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 287000 MB offset 3074048
08:17:46.016 Disk 0 Partition 3 00 17 Hidd HPFS/NTFS NTFS 16743 MB offset 590850048
08:17:46.063 Disk 0 scanning C:\windows\system32\drivers
08:17:56.203 Service scanning
08:18:46.747 Modules scanning
08:18:46.763 Disk 0 trace - called modules:
08:18:46.794 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys iaStor.sys hal.dll
08:18:46.809 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8004bfa060]
08:18:46.825 3 CLASSPNP.SYS[fffff88001a1743f] -> nt!IofCallDriver -> [0xfffffa8003b74e40]
08:18:46.841 5 ACPI.sys[fffff88000e1a7a1] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8004952050]
08:18:47.652 AVAST engine scan C:\windows
08:18:50.007 AVAST engine scan C:\windows\system32
08:23:21.651 AVAST engine scan C:\windows\system32\drivers
08:23:42.726 AVAST engine scan C:\Users\slim
08:31:49.768 AVAST engine scan C:\ProgramData
08:33:07.566 File: C:\ProgramData\Microsoft\Windows\DRM\c64c.tmp.dat **INFECTED** Win32:Alureon-ASV [Trj]
08:35:35.704 Scan finished successfully
08:42:25.017 Disk 0 MBR has been saved successfully to "C:\downloads\MBR.dat"
08:42:25.017 The log file has been saved successfully to "C:\downloads\aswMBR.txt"



Here's the log for aswMBR======================================================================================
aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-05-29 08:16:49
-----------------------------
08:16:49.778 OS Version: Windows x64 6.1.7601 Service Pack 1
08:16:49.778 Number of processors: 4 586 0x2505
08:16:49.778 ComputerName: SLIM-PC UserName: slim
08:16:50.652 Initialize success
08:16:56.127 AVAST engine defs: 12052800
08:17:45.922 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
08:17:45.922 Disk 0 Vendor: TOSHIBA_ GH10 Size: 305245MB BusType: 3
08:17:45.954 Disk 0 MBR read successfully
08:17:45.954 Disk 0 MBR scan
08:17:45.954 Disk 0 Windows VISTA default MBR code
08:17:45.969 Disk 0 Partition 1 80 (A) 27 Hidden NTFS WinRE NTFS 1500 MB offset 2048
08:17:45.985 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 287000 MB offset 3074048
08:17:46.016 Disk 0 Partition 3 00 17 Hidd HPFS/NTFS NTFS 16743 MB offset 590850048
08:17:46.063 Disk 0 scanning C:\windows\system32\drivers
08:17:56.203 Service scanning
08:18:46.747 Modules scanning
08:18:46.763 Disk 0 trace - called modules:
08:18:46.794 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys iaStor.sys hal.dll
08:18:46.809 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8004bfa060]
08:18:46.825 3 CLASSPNP.SYS[fffff88001a1743f] -> nt!IofCallDriver -> [0xfffffa8003b74e40]
08:18:46.841 5 ACPI.sys[fffff88000e1a7a1] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8004952050]
08:18:47.652 AVAST engine scan C:\windows
08:18:50.007 AVAST engine scan C:\windows\system32
08:23:21.651 AVAST engine scan C:\windows\system32\drivers
08:23:42.726 AVAST engine scan C:\Users\slim
08:31:49.768 AVAST engine scan C:\ProgramData
08:33:07.566 File: C:\ProgramData\Microsoft\Windows\DRM\c64c.tmp.dat **INFECTED** Win32:Alureon-ASV [Trj]
08:35:35.704 Scan finished successfully
08:42:25.017 Disk 0 MBR has been saved successfully to "C:\downloads\MBR.dat"
08:42:25.017 The log file has been saved successfully to "C:\downloads\aswMBR.txt"


Here's the log for ESET online scanner==============================================================================
C:\ProgramData\Microsoft\Windows\DRM\c64c.tmp.dat Win32/Olmarik.AYD trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\28.05.2012_23.51.17\mbr0000\tdlfs0000\tsk0000.dta a variant of Win32/Olmarik.AYI trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\28.05.2012_23.51.17\mbr0000\tdlfs0000\tsk0002.dta Win32/Olmarik.AWO trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\28.05.2012_23.51.17\mbr0000\tdlfs0000\tsk0003.dta Win64/Olmarik.AI trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\29.05.2012_00.40.32\tdlfs0000\tsk0000.dta a variant of Win32/Olmarik.AYI trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\29.05.2012_00.40.32\tdlfs0000\tsk0002.dta Win32/Olmarik.AWO trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\29.05.2012_00.40.32\tdlfs0000\tsk0003.dta Win64/Olmarik.AI trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\29.05.2012_00.44.01\tdlfs0000\tsk0000.dta a variant of Win32/Olmarik.AYI trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\29.05.2012_00.44.01\tdlfs0000\tsk0002.dta Win32/Olmarik.AWO trojan cleaned by deleting - quarantined
C:\TDSSKiller_Quarantine\29.05.2012_00.44.01\tdlfs0000\tsk0003.dta Win64/Olmarik.AI trojan cleaned by deleting - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\3CUVJRYE\hotelsaleprices_biz[1].htm HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\AEDN57D3\ako[1] HTML/ScrInject.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\AEDN57D3\ako[2] HTML/ScrInject.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\AEDN57D3\hotelcheaptravel_org[1].htm HTML/Iframe.B.Gen virus deleted - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\WCSJ9ZU6\pcperformer-rh-rh-st2-free-en[1].htm HTML/ScrInject.B.Gen virus deleted - quarantined


Eset scanner sure found a lot of them.

PM

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:05:47 PM

Posted 29 May 2012 - 07:28 PM

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log



Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

#5 p.martin

p.martin
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:05:47 PM

Posted 30 May 2012 - 09:00 AM

MiniToolBox by Farbar Version: 14-01-2012
Ran by slim (administrator) on 30-05-2012 at 09:51:49
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================



========================= IP Configuration: ================================

Atheros AR9285 Wireless Network Adapter = Wireless Network Connection (Connected)
Atheros AR8152 PCI-E Fast Ethernet Controller (NDIS 6.20) = Local Area Connection (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled
add address name="ethernet_10" address=192.168.186.1 mask=255.255.255.0


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : slim-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Wireless LAN adapter Wireless Network Connection 2:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
Physical Address. . . . . . . . . : 1A-65-9D-FB-03-78
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Atheros AR8152 PCI-E Fast Ethernet Controller (NDIS 6.20)
Physical Address. . . . . . . . . : 00-26-6C-A3-BD-76
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Atheros AR9285 Wireless Network Adapter
Physical Address. . . . . . . . . : 1C-65-9D-FB-03-78
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::54a5:b010:bbd6:3c1%10(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.6(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Wednesday, May 30, 2012 6:01:14 AM
Lease Expires . . . . . . . . . . : Thursday, May 31, 2012 9:40:47 AM
Default Gateway . . . . . . . . . : 192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 186410397
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-16-16-8A-F5-1C-65-9D-FB-03-78
DNS Servers . . . . . . . . . . . : 192.168.1.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.{CECB3B4D-2BFF-4C91-B575-BC29CC4D9C6E}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 11:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:1835:9cc:3f57:fef9(Preferred)
Link-local IPv6 Address . . . . . : fe80::1835:9cc:3f57:fef9%12(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter isatap.{232A2892-A6AF-4542-88B1-EB7A2AE9EC0D}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: UnKnown
Address: 192.168.1.1

Name: google.com
Addresses: 74.125.139.139
74.125.139.100
74.125.139.101
74.125.139.102
74.125.139.113
74.125.139.138


Pinging google.com [173.194.37.41] with 32 bytes of data:
Reply from 173.194.37.41: bytes=32 time=18ms TTL=55
Reply from 173.194.37.41: bytes=32 time=18ms TTL=55

Ping statistics for 173.194.37.41:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 18ms, Maximum = 18ms, Average = 18ms
Server: UnKnown
Address: 192.168.1.1

Name: yahoo.com
Addresses: 72.30.38.140
98.139.183.24
209.191.122.70


Pinging yahoo.com [209.191.122.70] with 32 bytes of data:
Reply from 209.191.122.70: bytes=32 time=34ms TTL=53
Reply from 209.191.122.70: bytes=32 time=35ms TTL=53

Ping statistics for 209.191.122.70:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 34ms, Maximum = 35ms, Average = 34ms
Server: UnKnown
Address: 192.168.1.1

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
13...1a 65 9d fb 03 78 ......Microsoft Virtual WiFi Miniport Adapter
11...00 26 6c a3 bd 76 ......Atheros AR8152 PCI-E Fast Ethernet Controller (NDIS 6.20)
10...1c 65 9d fb 03 78 ......Atheros AR9285 Wireless Network Adapter
1...........................Software Loopback Interface 1
15...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
12...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
17...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.6 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.6 281
192.168.1.6 255.255.255.255 On-link 192.168.1.6 281
192.168.1.255 255.255.255.255 On-link 192.168.1.6 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.6 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.6 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
12 58 ::/0 On-link
1 306 ::1/128 On-link
12 58 2001::/32 On-link
12 306 2001:0:4137:9e76:1835:9cc:3f57:fef9/128
On-link
10 281 fe80::/64 On-link
12 306 fe80::/64 On-link
12 306 fe80::1835:9cc:3f57:fef9/128
On-link
10 281 fe80::54a5:b010:bbd6:3c1/128
On-link
1 306 ff00::/8 On-link
12 306 ff00::/8 On-link
10 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 06 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 08 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 06 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 08 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (05/30/2012 06:01:49 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Microsoft.VC80.OpenMP,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.762"1".
Dependent Assembly Microsoft.VC80.OpenMP,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.762" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (05/30/2012 00:26:12 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Microsoft.VC80.OpenMP,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.762"1".
Dependent Assembly Microsoft.VC80.OpenMP,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.762" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (05/29/2012 07:52:26 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (05/29/2012 07:52:20 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (05/29/2012 07:52:20 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (05/29/2012 06:55:58 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Microsoft.VC80.OpenMP,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.762"1".
Dependent Assembly Microsoft.VC80.OpenMP,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.762" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (05/29/2012 08:45:18 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (05/29/2012 08:45:12 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (05/29/2012 08:45:11 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (05/29/2012 08:45:02 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.


System errors:
=============
Error: (05/30/2012 06:09:19 AM) (Source: Service Control Manager) (User: )
Description: The Windows Update service hung on starting.

Error: (05/29/2012 07:44:53 PM) (Source: BROWSER) (User: )
Description: The browser service has failed to retrieve the backup list too many times on transport \Device\NetBT_Tcpip_{CECB3B4D-2BFF-4C91-B575-BC29CC4D9C6E}.
The backup browser is stopping.

Error: (05/29/2012 06:24:49 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the UNS service.

Error: (05/28/2012 10:02:07 PM) (Source: BugCheck) (User: )
Description: 0x00000109 (0xa3a039d89f809566, 0xb3b7465ef1fece88, 0xfffff80000bb282c, 0x0000000000000001)C:\windows\MEMORY.DMP052812-43025-01

Error: (05/28/2012 10:02:00 PM) (Source: EventLog) (User: )
Description: The previous system shutdown at 9:59:25 PM on ?5/?28/?2012 was unexpected.

Error: (05/28/2012 06:40:53 PM) (Source: BROWSER) (User: )
Description: The browser service has failed to retrieve the backup list too many times on transport \Device\NetBT_Tcpip_{CECB3B4D-2BFF-4C91-B575-BC29CC4D9C6E}.
The backup browser is stopping.

Error: (05/28/2012 06:21:48 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: SYSTEM)
Description: Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Windows 7 for x64-based Systems (KB2676562).

Error: (05/28/2012 06:13:58 PM) (Source: EventLog) (User: )
Description: The previous system shutdown at 11:44:26 AM on ?5/?28/?2012 was unexpected.

Error: (05/28/2012 09:07:43 AM) (Source: BROWSER) (User: )
Description: The browser service has failed to retrieve the backup list too many times on transport \Device\NetBT_Tcpip_{CECB3B4D-2BFF-4C91-B575-BC29CC4D9C6E}.
The backup browser is stopping.

Error: (05/28/2012 08:56:43 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: SYSTEM)
Description: Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Windows 7 for x64-based Systems (KB2676562).


Microsoft Office Sessions:
=========================
Error: (05/30/2012 06:01:49 AM) (Source: SideBySide)(User: )
Description: Microsoft.VC80.OpenMP,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.762"C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe

Error: (05/30/2012 00:26:12 AM) (Source: SideBySide)(User: )
Description: Microsoft.VC80.OpenMP,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.762"C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe

Error: (05/29/2012 07:52:26 PM) (Source: SideBySide)(User: )
Description: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\downloads\esetsmartinstaller_enu.exe

Error: (05/29/2012 07:52:20 PM) (Source: SideBySide)(User: )
Description: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\downloads\esetsmartinstaller_enu.exe

Error: (05/29/2012 07:52:20 PM) (Source: SideBySide)(User: )
Description: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\downloads\esetsmartinstaller_enu.exe

Error: (05/29/2012 06:55:58 PM) (Source: SideBySide)(User: )
Description: Microsoft.VC80.OpenMP,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.762"C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe

Error: (05/29/2012 08:45:18 AM) (Source: SideBySide)(User: )
Description: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\downloads\esetsmartinstaller_enu.exe

Error: (05/29/2012 08:45:12 AM) (Source: SideBySide)(User: )
Description: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\downloads\esetsmartinstaller_enu.exe

Error: (05/29/2012 08:45:11 AM) (Source: SideBySide)(User: )
Description: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\downloads\esetsmartinstaller_enu.exe

Error: (05/29/2012 08:45:02 AM) (Source: SideBySide)(User: )
Description: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\downloads\esetsmartinstaller_enu.exe


=========================== Installed Programs ============================

64 Bit HP CIO Components Installer (Version: 6.2.2)
Adobe Acrobat X Pro - English, Français, Deutsch (Version: 10.1.3)
Adobe AIR (Version: 3.1.0.4880)
Adobe Community Help (Version: 3.4.980)
Adobe Content Viewer (Version: 1.4.0)
Adobe Creative Suite 5.5 Design Premium (Version: 5.5)
Adobe Download Assistant (Version: 1.0.6)
Adobe Flash Player 10 Plugin (Version: 10.2.153.1)
Adobe Flash Player 11 ActiveX 64-bit (Version: 11.2.202.228)
Adobe Reader X (10.1.2) (Version: 10.1.2)
Adobe Widget Browser (Version: 2.0 Build 230)
Adobe Widget Browser (Version: 2.0.230)
Amazon Links (Version: 2.02)
Apple Application Support (Version: 2.1.7)
Apple Software Update (Version: 2.1.3.127)
Atheros Communications Inc.® AR81Family Gigabit/Fast Ethernet Driver (Version: 1.0.0.27)
Atheros Driver Installation Program (Version: 5.2)
Bejeweled 2 Deluxe (Version: 2.2.0.95)
Cake Mania - Lights, Camera, Action!™ (Version: 2.2.0.95)
Chuzzle Deluxe (Version: 2.2.0.95)
Conexant HD Audio (Version: 4.119.0.61)
D3DX10 (Version: 15.4.2368.0902)
DJ_AIO_05_F4400_Software_Min (Version: 140.0.690.000)
DJ_SF_06_D1600_SW_Min (Version: 140.0.690.000)
ESET Online Scanner v3
FATE - The Traitor Soul (Version: 2.2.0.95)
Google Chrome (Version: 19.0.1084.52)
Google Update Helper (Version: 1.3.21.111)
Governor of Poker 2 Premium Edition (Version: 2.2.0.95)
HP Deskjet D1600 Printer Driver 14.0 Rel. 6 (Version: 14.0)
HP Deskjet F4400 Printer Driver 14.0 Rel. 5 (Version: 14.0)
HxD Hex Editor version 1.7.7.0 (Version: 1.7.7.0)
IIS 7.5 Express (Version: 7.5.1190)
Intel® Graphics Media Accelerator Driver (Version: 8.15.10.2086)
Intel® Management Engine Components (Version: 6.0.0.1179)
Intel® Rapid Storage Technology (Version: 9.5.7.1002)
Java™ 6 Update 17 (Version: 6.0.170)
Jewel Quest - Heritage (Version: 2.2.0.95)
Label@Once 1.0 (Version: 1.0)
Malwarebytes Anti-Malware version 1.61.0.1400 (Version: 1.61.0.1400)
Mesh Runtime (Version: 15.4.5722.2)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft .NET Framework 4 Multi-Targeting Pack (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft ASP.NET MVC 2 - VWD Express 2010 Tools (Version: 2.0.50217.0)
Microsoft ASP.NET MVC 2 (Version: 2.0.50217.0)
Microsoft ASP.NET MVC 3 - VWD Express 2010 Tools Update (Version: 3.0.20406.0)
Microsoft ASP.NET MVC 3 (Version: 3.0.20105.0)
Microsoft ASP.NET Web Pages - VWD Express 2010 Tools (Version: 1.0.20105.0)
Microsoft ASP.NET Web Pages (Version: 1.0.20105.0)
Microsoft Help Viewer 1.1 (Version: 1.1.40219)
Microsoft Office 2000 Professional (Version: 9.00.2720)
Microsoft Office FrontPage 2003 (Version: 11.0.8173.0)
Microsoft Report Viewer Redistributable 2008 (KB971119) (Version: 9.0.30731)
Microsoft Report Viewer Redistributable 2008 SP1
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft Silverlight 3 SDK (Version: 3.0.40818.0)
Microsoft Silverlight 4 SDK (Version: 4.0.60310.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft SQL Server 2005 Compact Edition Books Online [ENU] (Version: 3.1.0000)
Microsoft SQL Server 2008 Database Engine Services (Version: 10.1.2531.0)
Microsoft SQL Server 2008 Database Engine Shared (Version: 10.1.2531.0)
Microsoft SQL Server 2008 R2 (64-bit)
Microsoft SQL Server 2008 R2 Management Objects (Version: 10.51.2500.0)
Microsoft SQL Server 2008 R2 Management Objects (x64) (Version: 10.51.2500.0)
Microsoft SQL Server 2008 R2 Native Client (Version: 10.51.2500.0)
Microsoft SQL Server 2008 R2 Policies (Version: 10.50.1600.1)
Microsoft SQL Server 2008 R2 Setup (English) (Version: 10.51.2500.0)
Microsoft SQL Server 2008 RsFx Driver (Version: 10.1.2531.0)
Microsoft SQL Server 2008 Setup Support Files (Version: 10.1.2731.0)
Microsoft SQL Server Compact 3.5 Books Online ENU (Version: 3.5.7289.2341)
Microsoft SQL Server Compact 3.5 SP2 ENU (Version: 3.5.8080.0)
Microsoft SQL Server Compact 3.5 SP2 Query Tools ENU (Version: 3.5.8080.0)
Microsoft SQL Server Compact 3.5 SP2 x64 ENU (Version: 3.5.8080.0)
Microsoft SQL Server Compact 4.0 Web Tools ENU (Version: 4.0.8482.1)
Microsoft SQL Server Compact 4.0 x64 ENU (Version: 4.0.8482.1)
Microsoft SQL Server Database Publishing Wizard 1.4 (Version: 10.1.2512.8)
Microsoft SQL Server System CLR Types (Version: 10.51.2500.0)
Microsoft SQL Server System CLR Types (x64) (Version: 10.51.2500.0)
Microsoft Visual C# 2010 Express - ENU (Version: 10.0.40219)
Microsoft Visual C++ Compilers 2010 Standard - enu - x86 (Version: 10.0.40219)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4974 (Version: 9.0.30729.4974)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x64 Runtime - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010 x86 Runtime - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual Studio 2010 ADO.NET Entity Framework Tools (Version: 10.0.40219)
Microsoft Visual Studio 2010 Express Prerequisites x64 - ENU (Version: 10.0.40219)
Microsoft Visual Studio 2010 Service Pack 1 (Version: 10.0.40219)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (Version: 10.0.31007)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (Version: 10.0.31010)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (Version: 10.0.31124)
Microsoft Visual Studio Tools for Applications 2.0 - ENU (Version: 9.0.35191)
Microsoft Visual Web Developer 2010 Express - ENU (Version: 10.0.40219)
Microsoft Web Deploy 2.0 (Version: 2.0.1070)
Microsoft Web Platform Installer 3.0 (Version: 3.0.5)
Microsoft WebMatrix (Version: 1.0.1073)
Microsoft_VC80_ATL_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_ATL_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86_x64 (Version: 80.50727.4053)
Microsoft_VC90_ATL_x86 (Version: 1.00.0000)
Microsoft_VC90_ATL_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_MFCLOC_x86 (Version: 1.00.0000)
Microsoft_VC90_MFCLOC_x86_x64 (Version: 1.00.0000)
MSVCRT (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MySQL Connector C 6.0.2 (Version: 6.0.2)
MySQL Connector C++ 1.1.0 (Version: 1.1.0)
MySQL Connector J (Version: 5.1.19.0)
MySQL Connector Net 6.4.4 (Version: 6.4.4)
MySQL Connector/ODBC 5.1 (Version: 5.1.10)
MySQL Documents 5.5 (Version: 5.5.23)
MySQL Examples and Samples 5.5 (Version: 5.5.23)
MySQL Installer (Version: 1.0.19.0)
MySQL Server 5.5 (Version: 5.5.23)
MySQL Workbench 5.2 CE (Version: 5.2.39)
Mystery P.I. - The London Caper (Version: 2.2.0.95)
Norton Bootable Recovery Tool Wizard (Version: 4.5.0.34)
Norton Internet Security (Version: 19.7.1.5)
NuGet (Version: 1.2.103.0)
PDF Settings CS5 (Version: 10.0)
Plants vs. Zombies - Game of the Year (Version: 2.2.0.95)
PlayReady PC Runtime amd64 (Version: 1.3.0)
PlayReady PC Runtime x86 (Version: 1.3.0)
Polar Bowler (Version: 2.2.0.95)
QuickTime (Version: 7.72.80.56)
Realtek USB 2.0 Card Reader (Version: 6.1.7600.30111)
Scan (Version: 140.0.80.000)
Service Pack 1 for SQL Server 2008 (KB968369) (64-bit) (Version: 10.1.2531.0)
Service Pack 1 for SQL Server 2008 R2 (KB2528583) (64-bit) (Version: 10.51.2500.0)
Skype Launcher (Version: 2.01)
Skype™ 5.5 (Version: 5.5.124)
Slingo Supreme (Version: 2.2.0.95)
SQL Server 2008 R2 SP1 Common Files (Version: 10.51.2500.0)
Sql Server Customer Experience Improvement Program (Version: 10.1.2531.0)
Stanza
Synaptics Pointing Device Driver (Version: 15.0.8.1)
Toolbox (Version: 140.0.428.000)
Toshiba App Place (Version: 1.0.6.3)
TOSHIBA Application Installer (Version: 9.0.1.1)
TOSHIBA Assist (Version: 3.00.11)
Toshiba Book Place (Version: 2.0.5271)
TOSHIBA Bulletin Board (Version: 1.6.07.64)
TOSHIBA Disc Creator (Version: 2.1.0.2 for x64)
TOSHIBA Face Recognition (Version: 3.1.3.64)
TOSHIBA Hardware Setup (Version: 2.00.06)
TOSHIBA HDD/SSD Alert (Version: 3.1.64.6)
Toshiba Laptop Checkup (Version: 2.0.6.22)
TOSHIBA Media Controller (Version: 1.0.80.3.64)
TOSHIBA Media Controller Plug-in (Version: 1.0.4.9)
Toshiba Online Backup (Version: 2.0.0.25)
TOSHIBA Quality Application (Version: 1.0.3)
TOSHIBA Recovery Media Creator (Version: 2.1.0.4 for x64)
TOSHIBA ReelTime (Version: 1.6.06.64)
TOSHIBA Service Station (Version: 2.1.40)
TOSHIBA Supervisor Password (Version: 2.00.03)
TOSHIBA Value Added Package (Version: 1.3.19.64)
TOSHIBA Web Camera Application (Version: 1.1.1.15)
ToshibaRegistration (Version: 1.0.4)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
Visual Studio 2010 SP1 Tools for SQL Server Compact 4.0 ENU (Version: 4.0.8482.1)
Visual Studio 2010 Tools for SQL Server Compact 3.5 SP2 ENU (Version: 4.0.8080.0)
WCF RIA Services Toolkit (September 2011) (Version: 4.1.60914.0)
WCF RIA Services V1.0 SP1 (Version: 4.1.60114.0)
Web Deployment Tool (Version: 1.1.0618)
WildTangent Games (Version: 1.0.1.5)
WildTangent ORB Game Console
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3502.0922)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3502.0922)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)

========================= Memory info: ===================================

Percentage of memory in use: 70%
Total physical RAM: 3893.86 MB
Available physical RAM: 1146.26 MB
Total Pagefile: 7785.91 MB
Available Pagefile: 5068.14 MB
Total Virtual: 4095.88 MB
Available Virtual: 3964.64 MB

========================= Partitions: =====================================

1 Drive c: (TI106049W0B) (Fixed) (Total:280.27 GB) (Free:202.27 GB) NTFS

========================= Users: ========================================

User accounts for \\SLIM-PC

Administrator Guest slim


**** End of log ****

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:05:47 PM

Posted 30 May 2012 - 10:21 AM

malwarebytes log :thumbup2:

#7 p.martin

p.martin
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:05:47 PM

Posted 30 May 2012 - 10:32 AM

Malwarebytes Anti-Malware 1.61.0.1400
www.malwarebytes.org

Database version: v2012.05.30.02

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 8.0.7601.17514
slim :: SLIM-PC [administrator]

5/30/2012 6:03:32 AM
mbam-log-2012-05-30 (06-03-32).txt

Scan type: Full scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 589689
Time elapsed: 1 hour(s), 23 minute(s), 46 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:05:47 PM

Posted 30 May 2012 - 10:53 AM

That looks good

Download

TFC


Launch it,it will close all running programs

click on START,it should ask for reboot

Turn off your system restore,restart the PC,create a new restore point

http://windows.microsoft.com/en-US/windows7/Turn-System-Restore-on-or-off

Update your JAVA from here

http://java.com/en/download/inc/windows_upgrade_xpi.jsp

Update your antivirus frequently,do not click on suspicious links

Safe surfing :)

#9 p.martin

p.martin
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:05:47 PM

Posted 30 May 2012 - 11:47 AM

Forum Addict your expertise has been greatly appreciated :thumbsup:

#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:05:47 PM

Posted 30 May 2012 - 04:06 PM

You're most welcome :thumbsup:




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users