Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Infected with Live Security Platinum


  • Please log in to reply
7 replies to this topic

#1 Samdowner

Samdowner

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:12:29 PM

Posted 19 June 2012 - 05:40 AM

Hi

I have a machine that is infected with Live Security Platinum.

Have followed your removal guide (fixexec, MBAM, Secunia PSI) three times but unfortunately the infection remains :-(

Please can you advise how I should proceed to remove this infection.

Many thanks in advance.

Sam

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:29 AM

Posted 19 June 2012 - 06:32 AM

Boot the PC into safemode with networking


Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)


Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner


Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 Samdowner

Samdowner
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:12:29 PM

Posted 19 June 2012 - 08:07 AM

Many thanks for your quick response Narenxp - appreciate your assistance :-)

Here are the logs you requested:-

TDSSKiller
12:44:11.0375 2772 TDSS rootkit removing tool 2.7.40.0 Jun 15 2012 15:13:31
12:44:11.0468 2772 ============================================================
12:44:11.0468 2772 Current date / time: 2012/06/19 12:44:11.0468
12:44:11.0468 2772 SystemInfo:
12:44:11.0468 2772
12:44:11.0468 2772 OS Version: 6.1.7601 ServicePack: 1.0
12:44:11.0468 2772 Product type: Workstation
12:44:11.0484 2772 ComputerName: T21-WS5
12:44:11.0484 2772 UserName: Jo
12:44:11.0484 2772 Windows directory: C:\Windows
12:44:11.0484 2772 System windows directory: C:\Windows
12:44:11.0484 2772 Processor architecture: Intel x86
12:44:11.0484 2772 Number of processors: 2
12:44:11.0484 2772 Page size: 0x1000
12:44:11.0484 2772 Boot type: Safe boot with network
12:44:11.0484 2772 ============================================================
12:44:12.0264 2772 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
12:44:12.0264 2772 Drive \Device\Harddisk1\DR1 - Size: 0x1DD200000 (7.46 Gb), SectorSize: 0x200, Cylinders: 0x3CD, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
12:44:12.0264 2772 ============================================================
12:44:12.0264 2772 \Device\Harddisk0\DR0:
12:44:12.0264 2772 MBR partitions:
12:44:12.0264 2772 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x27800, BlocksNum 0x1391000
12:44:12.0264 2772 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x13B8800, BlocksNum 0x24075800
12:44:12.0264 2772 \Device\Harddisk1\DR1:
12:44:12.0280 2772 MBR partitions:
12:44:12.0280 2772 \Device\Harddisk1\DR1\Partition0: MBR, Type 0xC, StartLBA 0x1F80, BlocksNum 0xEE7080
12:44:12.0280 2772 ============================================================
12:44:12.0295 2772 C: <-> \Device\Harddisk0\DR0\Partition1
12:44:12.0295 2772 ============================================================
12:44:12.0295 2772 Initialize success
12:44:12.0295 2772 ============================================================
12:44:26.0132 2828 ============================================================
12:44:26.0132 2828 Scan started
12:44:26.0132 2828 Mode: Manual; TDLFS;
12:44:26.0132 2828 ============================================================
12:44:26.0866 2828 1394ohci (1b133875b8aa8ac48969bd3458afe9f5) C:\Windows\system32\drivers\1394ohci.sys
12:44:26.0866 2828 1394ohci - ok
12:44:26.0912 2828 ACPI (cea80c80bed809aa0da6febc04733349) C:\Windows\system32\drivers\ACPI.sys
12:44:26.0928 2828 ACPI - ok
12:44:26.0959 2828 AcpiPmi (1efbc664abff416d1d07db115dcb264f) C:\Windows\system32\drivers\acpipmi.sys
12:44:26.0959 2828 AcpiPmi - ok
12:44:27.0006 2828 AdobeFlashPlayerUpdateSvc (f3cd7b20b27d1772c946df993ff3635c) C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
12:44:27.0022 2828 AdobeFlashPlayerUpdateSvc - ok
12:44:27.0053 2828 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\Windows\system32\DRIVERS\adp94xx.sys
12:44:27.0053 2828 adp94xx - ok
12:44:27.0084 2828 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\Windows\system32\DRIVERS\adpahci.sys
12:44:27.0100 2828 adpahci - ok
12:44:27.0115 2828 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\Windows\system32\DRIVERS\adpu320.sys
12:44:27.0115 2828 adpu320 - ok
12:44:27.0131 2828 AeLookupSvc (8b5eefeec1e6d1a72a06c526628ad161) C:\Windows\System32\aelupsvc.dll
12:44:27.0131 2828 AeLookupSvc - ok
12:44:27.0193 2828 AERTFilters (7a841462ad4749f8a07b27ae8e8947b8) C:\Program Files\Realtek\Audio\HDA\AERTSrv.exe
12:44:27.0193 2828 AERTFilters - ok
12:44:27.0240 2828 AFD (9ebbba55060f786f0fcaa3893bfa2806) C:\Windows\system32\drivers\afd.sys
12:44:27.0240 2828 AFD - ok
12:44:27.0271 2828 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\Windows\system32\drivers\agp440.sys
12:44:27.0271 2828 agp440 - ok
12:44:27.0302 2828 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\Windows\system32\DRIVERS\djsvs.sys
12:44:27.0302 2828 aic78xx - ok
12:44:27.0318 2828 ALG (18a54e132947cd98fea9accc57f98f13) C:\Windows\System32\alg.exe
12:44:27.0318 2828 ALG - ok
12:44:27.0349 2828 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\Windows\system32\drivers\aliide.sys
12:44:27.0349 2828 aliide - ok
12:44:27.0349 2828 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\Windows\system32\drivers\amdagp.sys
12:44:27.0349 2828 amdagp - ok
12:44:27.0380 2828 amdide (cd5914170297126b6266860198d1d4f0) C:\Windows\system32\drivers\amdide.sys
12:44:27.0380 2828 amdide - ok
12:44:27.0396 2828 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\Windows\system32\DRIVERS\amdk8.sys
12:44:27.0396 2828 AmdK8 - ok
12:44:27.0412 2828 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\Windows\system32\DRIVERS\amdppm.sys
12:44:27.0412 2828 AmdPPM - ok
12:44:27.0427 2828 amdsata (d320bf87125326f996d4904fe24300fc) C:\Windows\system32\drivers\amdsata.sys
12:44:27.0427 2828 amdsata - ok
12:44:27.0443 2828 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\Windows\system32\DRIVERS\amdsbs.sys
12:44:27.0458 2828 amdsbs - ok
12:44:27.0474 2828 amdxata (46387fb17b086d16dea267d5be23a2f2) C:\Windows\system32\drivers\amdxata.sys
12:44:27.0474 2828 amdxata - ok
12:44:27.0521 2828 AppID (aea177f783e20150ace5383ee368da19) C:\Windows\system32\drivers\appid.sys
12:44:27.0521 2828 AppID - ok
12:44:27.0568 2828 AppIDSvc (62a9c86cb6085e20db4823e4e97826f5) C:\Windows\System32\appidsvc.dll
12:44:27.0568 2828 AppIDSvc - ok
12:44:27.0599 2828 Appinfo (fb1959012294d6ad43e5304df65e3c26) C:\Windows\System32\appinfo.dll
12:44:27.0599 2828 Appinfo - ok
12:44:27.0630 2828 AppMgmt (a45d184df6a8803da13a0b329517a64a) C:\Windows\System32\appmgmts.dll
12:44:27.0630 2828 AppMgmt - ok
12:44:27.0646 2828 arc (2932004f49677bd84dbc72edb754ffb3) C:\Windows\system32\DRIVERS\arc.sys
12:44:27.0661 2828 arc - ok
12:44:27.0677 2828 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\Windows\system32\DRIVERS\arcsas.sys
12:44:27.0677 2828 arcsas - ok
12:44:27.0692 2828 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\Windows\system32\DRIVERS\asyncmac.sys
12:44:27.0692 2828 AsyncMac - ok
12:44:27.0708 2828 atapi (338c86357871c167a96ab976519bf59e) C:\Windows\system32\drivers\atapi.sys
12:44:27.0708 2828 atapi - ok
12:44:27.0755 2828 AudioEndpointBuilder (ce3b4e731638d2ef62fcb419be0d39f0) C:\Windows\System32\Audiosrv.dll
12:44:27.0786 2828 AudioEndpointBuilder - ok
12:44:27.0786 2828 Audiosrv (ce3b4e731638d2ef62fcb419be0d39f0) C:\Windows\System32\Audiosrv.dll
12:44:27.0786 2828 Audiosrv - ok
12:44:27.0817 2828 AxInstSV (6e30d02aac9cac84f421622e3a2f6178) C:\Windows\System32\AxInstSV.dll
12:44:27.0817 2828 AxInstSV - ok
12:44:27.0848 2828 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\Windows\system32\DRIVERS\bxvbdx.sys
12:44:27.0848 2828 b06bdrv - ok
12:44:27.0880 2828 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\Windows\system32\DRIVERS\b57nd60x.sys
12:44:27.0895 2828 b57nd60x - ok
12:44:27.0926 2828 BDESVC (ee1e9c3bb8228ae423dd38db69128e71) C:\Windows\System32\bdesvc.dll
12:44:27.0926 2828 BDESVC - ok
12:44:27.0926 2828 Beep (505506526a9d467307b3c393dedaf858) C:\Windows\system32\drivers\Beep.sys
12:44:27.0926 2828 Beep - ok
12:44:27.0989 2828 BFE (1e2bac209d184bb851e1a187d8a29136) C:\Windows\System32\bfe.dll
12:44:28.0004 2828 BFE - ok
12:44:28.0051 2828 BITS (e585445d5021971fae10393f0f1c3961) C:\Windows\System32\qmgr.dll
12:44:28.0067 2828 BITS - ok
12:44:28.0067 2828 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\Windows\system32\DRIVERS\blbdrive.sys
12:44:28.0067 2828 blbdrive - ok
12:44:28.0098 2828 bowser (8f2da3028d5fcbd1a060a3de64cd6506) C:\Windows\system32\DRIVERS\bowser.sys
12:44:28.0098 2828 bowser - ok
12:44:28.0160 2828 BPowMon (104c980400850ea84f86cd31ae2eeece) C:\Program Files\Broadcom\BPowMon\BPowMon.exe
12:44:28.0160 2828 BPowMon - ok
12:44:28.0160 2828 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\DRIVERS\BrFiltLo.sys
12:44:28.0160 2828 BrFiltLo - ok
12:44:28.0160 2828 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\DRIVERS\BrFiltUp.sys
12:44:28.0160 2828 BrFiltUp - ok
12:44:28.0207 2828 Browser (6e11f33d14d020f58d5e02e4d67dfa19) C:\Windows\System32\browser.dll
12:44:28.0207 2828 Browser - ok
12:44:28.0223 2828 Brserid (845b8ce732e67f3b4133164868c666ea) C:\Windows\System32\Drivers\Brserid.sys
12:44:28.0238 2828 Brserid - ok
12:44:28.0238 2828 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\System32\Drivers\BrSerWdm.sys
12:44:28.0238 2828 BrSerWdm - ok
12:44:28.0254 2828 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\System32\Drivers\BrUsbMdm.sys
12:44:28.0254 2828 BrUsbMdm - ok
12:44:28.0254 2828 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\System32\Drivers\BrUsbSer.sys
12:44:28.0254 2828 BrUsbSer - ok
12:44:28.0254 2828 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\Windows\system32\DRIVERS\bthmodem.sys
12:44:28.0254 2828 BTHMODEM - ok
12:44:28.0285 2828 bthserv (1df19c96eef6c29d1c3e1a8678e07190) C:\Windows\system32\bthserv.dll
12:44:28.0285 2828 bthserv - ok
12:44:28.0332 2828 ccEvtMgr (27d036fb3d22ca8a6662fe960d1a937d) C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
12:44:28.0332 2828 ccEvtMgr - ok
12:44:28.0348 2828 ccSetMgr (27d036fb3d22ca8a6662fe960d1a937d) C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
12:44:28.0348 2828 ccSetMgr - ok
12:44:28.0363 2828 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\Windows\system32\DRIVERS\cdfs.sys
12:44:28.0363 2828 cdfs - ok
12:44:28.0410 2828 cdrom (be167ed0fdb9c1fa1133953c18d5a6c9) C:\Windows\system32\drivers\cdrom.sys
12:44:28.0426 2828 cdrom - ok
12:44:28.0457 2828 CertPropSvc (319c6b309773d063541d01df8ac6f55f) C:\Windows\System32\certprop.dll
12:44:28.0457 2828 CertPropSvc - ok
12:44:28.0457 2828 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\Windows\system32\DRIVERS\circlass.sys
12:44:28.0457 2828 circlass - ok
12:44:28.0472 2828 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\Windows\system32\CLFS.sys
12:44:28.0488 2828 CLFS - ok
12:44:28.0535 2828 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
12:44:28.0550 2828 clr_optimization_v2.0.50727_32 - ok
12:44:28.0597 2828 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
12:44:28.0644 2828 clr_optimization_v4.0.30319_32 - ok
12:44:28.0644 2828 CmBatt (dea805815e587dad1dd2c502220b5616) C:\Windows\system32\DRIVERS\CmBatt.sys
12:44:28.0644 2828 CmBatt - ok
12:44:28.0660 2828 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\Windows\system32\drivers\cmdide.sys
12:44:28.0660 2828 cmdide - ok
12:44:28.0706 2828 CNG (6427525d76f61d0c519b008d3680e8e7) C:\Windows\system32\Drivers\cng.sys
12:44:28.0706 2828 CNG - ok
12:44:28.0722 2828 Compbatt (a6023d3823c37043986713f118a89bee) C:\Windows\system32\DRIVERS\compbatt.sys
12:44:28.0722 2828 Compbatt - ok
12:44:28.0769 2828 CompositeBus (cbe8c58a8579cfe5fccf809e6f114e89) C:\Windows\system32\drivers\CompositeBus.sys
12:44:28.0769 2828 CompositeBus - ok
12:44:28.0784 2828 COMSysApp - ok
12:44:28.0800 2828 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\Windows\system32\DRIVERS\crcdisk.sys
12:44:28.0800 2828 crcdisk - ok
12:44:28.0847 2828 CryptSvc (06e771aa596b8761107ab57e99f128d7) C:\Windows\system32\cryptsvc.dll
12:44:28.0847 2828 CryptSvc - ok
12:44:28.0878 2828 CSC (3c2177a897b4ca2788c6fb0c3fd81d4b) C:\Windows\system32\drivers\csc.sys
12:44:28.0894 2828 CSC - ok
12:44:28.0925 2828 CscService (15f93b37f6801943360d9eb42485d5d3) C:\Windows\System32\cscsvc.dll
12:44:28.0940 2828 CscService - ok
12:44:28.0987 2828 dc3d (7caaf4af453ef3582fef65dd72caa0aa) C:\Windows\system32\DRIVERS\dc3d.sys
12:44:28.0987 2828 dc3d - ok
12:44:29.0003 2828 DcomLaunch (7660f01d3b38aca1747e397d21d790af) C:\Windows\system32\rpcss.dll
12:44:29.0018 2828 DcomLaunch - ok
12:44:29.0050 2828 defragsvc (8d6e10a2d9a5eed59562d9b82cf804e1) C:\Windows\System32\defragsvc.dll
12:44:29.0065 2828 defragsvc - ok
12:44:29.0128 2828 DfsC (f024449c97ec1e464aaffda18593db88) C:\Windows\system32\Drivers\dfsc.sys
12:44:29.0128 2828 DfsC - ok
12:44:29.0128 2828 DgiVecp - ok
12:44:29.0174 2828 Dhcp (e9e01eb683c132f7fa27cd607b8a2b63) C:\Windows\system32\dhcpcore.dll
12:44:29.0190 2828 Dhcp - ok
12:44:29.0190 2828 discache (1a050b0274bfb3890703d490f330c0da) C:\Windows\system32\drivers\discache.sys
12:44:29.0190 2828 discache - ok
12:44:29.0206 2828 Disk (565003f326f99802e68ca78f2a68e9ff) C:\Windows\system32\DRIVERS\disk.sys
12:44:29.0206 2828 Disk - ok
12:44:29.0237 2828 Dnscache (33ef4861f19a0736b11314aad9ae28d0) C:\Windows\System32\dnsrslvr.dll
12:44:29.0237 2828 Dnscache - ok
12:44:29.0268 2828 dot3svc (366ba8fb4b7bb7435e3b9eacb3843f67) C:\Windows\System32\dot3svc.dll
12:44:29.0284 2828 dot3svc - ok
12:44:29.0315 2828 DPS (8ec04ca86f1d68da9e11952eb85973d6) C:\Windows\system32\dps.dll
12:44:29.0315 2828 DPS - ok
12:44:29.0346 2828 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\Windows\system32\drivers\drmkaud.sys
12:44:29.0346 2828 drmkaud - ok
12:44:29.0408 2828 DXGKrnl (23f5d28378a160352ba8f817bd8c71cb) C:\Windows\System32\drivers\dxgkrnl.sys
12:44:29.0408 2828 DXGKrnl - ok
12:44:29.0424 2828 EapHost (8600142fa91c1b96367d3300ad0f3f3a) C:\Windows\System32\eapsvc.dll
12:44:29.0440 2828 EapHost - ok
12:44:29.0564 2828 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\Windows\system32\DRIVERS\evbdx.sys
12:44:29.0627 2828 ebdrv - ok
12:44:29.0798 2828 eeCtrl (fce87ba643d5e9a8b6e0378508d1b22d) C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys
12:44:29.0798 2828 eeCtrl - ok
12:44:29.0892 2828 EFS (81951f51e318aecc2d68559e47485cc4) C:\Windows\System32\lsass.exe
12:44:29.0892 2828 EFS - ok
12:44:29.0939 2828 ehRecvr (a8c362018efc87beb013ee28f29c0863) C:\Windows\ehome\ehRecvr.exe
12:44:29.0954 2828 ehRecvr - ok
12:44:29.0970 2828 ehSched (d389bff34f80caede417bf9d1507996a) C:\Windows\ehome\ehsched.exe
12:44:29.0970 2828 ehSched - ok
12:44:30.0032 2828 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\Windows\system32\DRIVERS\elxstor.sys
12:44:30.0032 2828 elxstor - ok
12:44:30.0079 2828 EraserUtilRebootDrv (115dc729465a8c386615207f28875255) C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
12:44:30.0079 2828 EraserUtilRebootDrv - ok
12:44:30.0095 2828 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\Windows\system32\drivers\errdev.sys
12:44:30.0095 2828 ErrDev - ok
12:44:30.0142 2828 EventSystem (f6916efc29d9953d5d0df06882ae8e16) C:\Windows\system32\es.dll
12:44:30.0142 2828 EventSystem - ok
12:44:30.0157 2828 exfat (2dc9108d74081149cc8b651d3a26207f) C:\Windows\system32\drivers\exfat.sys
12:44:30.0157 2828 exfat - ok
12:44:30.0188 2828 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\Windows\system32\drivers\fastfat.sys
12:44:30.0188 2828 fastfat - ok
12:44:30.0235 2828 Fax (967ea5b213e9984cbe270205df37755b) C:\Windows\system32\fxssvc.exe
12:44:30.0235 2828 Fax - ok
12:44:30.0235 2828 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\Windows\system32\DRIVERS\fdc.sys
12:44:30.0251 2828 fdc - ok
12:44:30.0251 2828 fdPHost (f3222c893bd2f5821a0179e5c71e88fb) C:\Windows\system32\fdPHost.dll
12:44:30.0251 2828 fdPHost - ok
12:44:30.0266 2828 FDResPub (7dbe8cbfe79efbdeb98c9fb08d3a9a5b) C:\Windows\system32\fdrespub.dll
12:44:30.0266 2828 FDResPub - ok
12:44:30.0282 2828 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\Windows\system32\drivers\fileinfo.sys
12:44:30.0282 2828 FileInfo - ok
12:44:30.0282 2828 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\Windows\system32\drivers\filetrace.sys
12:44:30.0282 2828 Filetrace - ok
12:44:30.0298 2828 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\Windows\system32\DRIVERS\flpydisk.sys
12:44:30.0298 2828 flpydisk - ok
12:44:30.0313 2828 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\Windows\system32\drivers\fltmgr.sys
12:44:30.0329 2828 FltMgr - ok
12:44:30.0391 2828 FontCache (b3a5ec6b6b6673db7e87c2bcdbddc074) C:\Windows\system32\FntCache.dll
12:44:30.0407 2828 FontCache - ok
12:44:30.0469 2828 FontCache3.0.0.0 (e56f39f6b7fda0ac77a79b0fd3de1a2f) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
12:44:30.0469 2828 FontCache3.0.0.0 - ok
12:44:30.0469 2828 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\Windows\system32\drivers\FsDepends.sys
12:44:30.0469 2828 FsDepends - ok
12:44:30.0500 2828 Fs_Rec (7dae5ebcc80e45d3253f4923dc424d05) C:\Windows\system32\drivers\Fs_Rec.sys
12:44:30.0500 2828 Fs_Rec - ok
12:44:30.0547 2828 fvevol (8a73e79089b282100b9393b644cb853b) C:\Windows\system32\DRIVERS\fvevol.sys
12:44:30.0563 2828 fvevol - ok
12:44:30.0578 2828 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\Windows\system32\DRIVERS\gagp30kx.sys
12:44:30.0578 2828 gagp30kx - ok
12:44:30.0610 2828 gpsvc (e897eaf5ed6ba41e081060c9b447a673) C:\Windows\System32\gpsvc.dll
12:44:30.0625 2828 gpsvc - ok
12:44:30.0641 2828 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\Windows\system32\drivers\hcw85cir.sys
12:44:30.0641 2828 hcw85cir - ok
12:44:30.0688 2828 HDAudBus (9036377b8a6c15dc2eec53e489d159b5) C:\Windows\system32\drivers\HDAudBus.sys
12:44:30.0688 2828 HDAudBus - ok
12:44:30.0688 2828 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\Windows\system32\DRIVERS\HidBatt.sys
12:44:30.0703 2828 HidBatt - ok
12:44:30.0719 2828 HidBth (89448f40e6df260c206a193a4683ba78) C:\Windows\system32\DRIVERS\hidbth.sys
12:44:30.0719 2828 HidBth - ok
12:44:30.0719 2828 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\Windows\system32\DRIVERS\hidir.sys
12:44:30.0719 2828 HidIr - ok
12:44:30.0734 2828 hidserv (2bc6f6a1992b3a77f5f41432ca6b3b6b) C:\Windows\system32\hidserv.dll
12:44:30.0734 2828 hidserv - ok
12:44:30.0750 2828 HidUsb (10c19f8290891af023eaec0832e1eb4d) C:\Windows\system32\DRIVERS\hidusb.sys
12:44:30.0766 2828 HidUsb - ok
12:44:30.0781 2828 hkmsvc (196b4e3f4cccc24af836ce58facbb699) C:\Windows\system32\kmsvc.dll
12:44:30.0781 2828 hkmsvc - ok
12:44:30.0828 2828 HomeGroupListener (6658f4404de03d75fe3ba09f7aba6a30) C:\Windows\system32\ListSvc.dll
12:44:30.0828 2828 HomeGroupListener - ok
12:44:30.0859 2828 HomeGroupProvider (dbc02d918fff1cad628acbe0c0eaa8e8) C:\Windows\system32\provsvc.dll
12:44:30.0875 2828 HomeGroupProvider - ok
12:44:30.0890 2828 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\Windows\system32\drivers\HpSAMD.sys
12:44:30.0890 2828 HpSAMD - ok
12:44:30.0922 2828 HTTP (871917b07a141bff43d76d8844d48106) C:\Windows\system32\drivers\HTTP.sys
12:44:30.0922 2828 HTTP - ok
12:44:30.0937 2828 hwpolicy (0c4e035c7f105f1299258c90886c64c5) C:\Windows\system32\drivers\hwpolicy.sys
12:44:30.0937 2828 hwpolicy - ok
12:44:30.0968 2828 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\Windows\system32\drivers\i8042prt.sys
12:44:30.0968 2828 i8042prt - ok
12:44:31.0015 2828 iaStorV (5cd5f9a5444e6cdcb0ac89bd62d8b76e) C:\Windows\system32\drivers\iaStorV.sys
12:44:31.0015 2828 iaStorV - ok
12:44:31.0109 2828 idsvc (c521d7eb6497bb1af6afa89e322fb43c) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
12:44:31.0124 2828 idsvc - ok
12:44:31.0514 2828 igfx (dce0b53570703cce580d066f89ef58cd) C:\Windows\system32\DRIVERS\igdkmd32.sys
12:44:31.0624 2828 igfx - ok
12:44:31.0717 2828 iirsp (4173ff5708f3236cf25195fecd742915) C:\Windows\system32\DRIVERS\iirsp.sys
12:44:31.0717 2828 iirsp - ok
12:44:31.0780 2828 IKEEXT (f95622f161474511b8d80d6b093aa610) C:\Windows\System32\ikeext.dll
12:44:31.0795 2828 IKEEXT - ok
12:44:31.0998 2828 IntcAzAudAddService (94b1ff5d243d34b31380a2f79fc48959) C:\Windows\system32\drivers\RTKVHDA.sys
12:44:32.0029 2828 IntcAzAudAddService - ok
12:44:32.0107 2828 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\Windows\system32\drivers\intelide.sys
12:44:32.0107 2828 intelide - ok
12:44:32.0138 2828 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\Windows\system32\DRIVERS\intelppm.sys
12:44:32.0138 2828 intelppm - ok
12:44:32.0170 2828 IPBusEnum (acb364b9075a45c0736e5c47be5cae19) C:\Windows\system32\ipbusenum.dll
12:44:32.0170 2828 IPBusEnum - ok
12:44:32.0185 2828 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\Windows\system32\DRIVERS\ipfltdrv.sys
12:44:32.0185 2828 IpFilterDriver - ok
12:44:32.0216 2828 iphlpsvc (4d65a07b795d6674312f879d09aa7663) C:\Windows\System32\iphlpsvc.dll
12:44:32.0232 2828 iphlpsvc - ok
12:44:32.0263 2828 IPMIDRV (4bd7134618c1d2a27466a099062547bf) C:\Windows\system32\drivers\IPMIDrv.sys
12:44:32.0263 2828 IPMIDRV - ok
12:44:32.0263 2828 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\Windows\system32\drivers\ipnat.sys
12:44:32.0263 2828 IPNAT - ok
12:44:32.0279 2828 IRENUM (42996cff20a3084a56017b7902307e9f) C:\Windows\system32\drivers\irenum.sys
12:44:32.0294 2828 IRENUM - ok
12:44:32.0326 2828 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\Windows\system32\drivers\isapnp.sys
12:44:32.0326 2828 isapnp - ok
12:44:32.0357 2828 iScsiPrt (cb7a9abb12b8415bce5d74994c7ba3ae) C:\Windows\system32\drivers\msiscsi.sys
12:44:32.0372 2828 iScsiPrt - ok
12:44:32.0404 2828 k57nd60x (7ea81534e80570bdf6ee4a4248bba4d6) C:\Windows\system32\DRIVERS\k57nd60x.sys
12:44:32.0404 2828 k57nd60x - ok
12:44:32.0435 2828 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\Windows\system32\DRIVERS\kbdclass.sys
12:44:32.0435 2828 kbdclass - ok
12:44:32.0435 2828 kbdhid (9e3ced91863e6ee98c24794d05e27a71) C:\Windows\system32\DRIVERS\kbdhid.sys
12:44:32.0435 2828 kbdhid - ok
12:44:32.0466 2828 KeyIso (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
12:44:32.0466 2828 KeyIso - ok
12:44:32.0482 2828 KSecDD (f4647bb23db9038a7536cf6b68f4207f) C:\Windows\system32\Drivers\ksecdd.sys
12:44:32.0482 2828 KSecDD - ok
12:44:32.0497 2828 KSecPkg (e73cae53bbb72ba26918492c6b4c229d) C:\Windows\system32\Drivers\ksecpkg.sys
12:44:32.0497 2828 KSecPkg - ok
12:44:32.0528 2828 KtmRm (89a7b9cc98d0d80c6f31b91c0a310fcd) C:\Windows\system32\msdtckrm.dll
12:44:32.0528 2828 KtmRm - ok
12:44:32.0575 2828 LanmanServer (d64af876d53eca3668bb97b51b4e70ab) C:\Windows\system32\srvsvc.dll
12:44:32.0575 2828 LanmanServer - ok
12:44:32.0606 2828 LanmanWorkstation (58405e4f68ba8e4057c6e914f326aba2) C:\Windows\System32\wkssvc.dll
12:44:32.0606 2828 LanmanWorkstation - ok
12:44:32.0809 2828 LiveUpdate (e34152d03caaaaa81dd66d803f392522) C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
12:44:32.0856 2828 LiveUpdate - ok
12:44:32.0965 2828 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\Windows\system32\DRIVERS\lltdio.sys
12:44:32.0965 2828 lltdio - ok
12:44:32.0996 2828 lltdsvc (5700673e13a2117fa3b9020c852c01e2) C:\Windows\System32\lltdsvc.dll
12:44:33.0012 2828 lltdsvc - ok
12:44:33.0028 2828 lmhosts (55ca01ba19d0006c8f2639b6c045e08b) C:\Windows\System32\lmhsvc.dll
12:44:33.0028 2828 lmhosts - ok
12:44:33.0121 2828 LMIGuardianSvc (c2bc96051da4330c1fcf2fe13f60a748) C:\Program Files\LogMeIn\x86\LMIGuardianSvc.exe
12:44:33.0137 2828 LMIGuardianSvc - ok
12:44:33.0152 2828 LMIInfo (4f69faaabb7db0d43e327c0b6aab40fc) C:\Program Files\LogMeIn\x86\RaInfo.sys
12:44:33.0152 2828 LMIInfo - ok
12:44:33.0184 2828 LMIMaint (8960ac10842199c9dc2ec0956f5a4a8d) C:\Program Files\LogMeIn\x86\RaMaint.exe
12:44:33.0184 2828 LMIMaint - ok
12:44:33.0199 2828 lmimirr (4477689e2d8ae6b78ba34c9af4cc1ed1) C:\Windows\system32\DRIVERS\lmimirr.sys
12:44:33.0199 2828 lmimirr - ok
12:44:33.0199 2828 LMIRfsClientNP - ok
12:44:33.0215 2828 LMIRfsDriver (3faa563ddf853320f90259d455a01d79) C:\Windows\system32\drivers\LMIRfsDriver.sys
12:44:33.0215 2828 LMIRfsDriver - ok
12:44:33.0246 2828 LogMeIn (432618fa75b61059d2c57d6a7e55147a) C:\Program Files\LogMeIn\x86\LogMeIn.exe
12:44:33.0262 2828 LogMeIn - ok
12:44:33.0277 2828 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\Windows\system32\DRIVERS\lsi_fc.sys
12:44:33.0277 2828 LSI_FC - ok
12:44:33.0293 2828 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\Windows\system32\DRIVERS\lsi_sas.sys
12:44:33.0293 2828 LSI_SAS - ok
12:44:33.0293 2828 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\Windows\system32\DRIVERS\lsi_sas2.sys
12:44:33.0293 2828 LSI_SAS2 - ok
12:44:33.0308 2828 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\Windows\system32\DRIVERS\lsi_scsi.sys
12:44:33.0308 2828 LSI_SCSI - ok
12:44:33.0324 2828 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\Windows\system32\drivers\luafv.sys
12:44:33.0324 2828 luafv - ok
12:44:33.0340 2828 Mcx2Svc (bfb9ee8ee977efe85d1a3105abef6dd1) C:\Windows\system32\Mcx2Svc.dll
12:44:33.0355 2828 Mcx2Svc - ok
12:44:33.0371 2828 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\Windows\system32\DRIVERS\megasas.sys
12:44:33.0371 2828 megasas - ok
12:44:33.0386 2828 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\Windows\system32\DRIVERS\MegaSR.sys
12:44:33.0386 2828 MegaSR - ok
12:44:33.0418 2828 MMCSS (146b6f43a673379a3c670e86d89be5ea) C:\Windows\system32\mmcss.dll
12:44:33.0418 2828 MMCSS - ok
12:44:33.0418 2828 Modem (f001861e5700ee84e2d4e52c712f4964) C:\Windows\system32\drivers\modem.sys
12:44:33.0418 2828 Modem - ok
12:44:33.0449 2828 monitor (79d10964de86b292320e9dfe02282a23) C:\Windows\system32\DRIVERS\monitor.sys
12:44:33.0449 2828 monitor - ok
12:44:33.0480 2828 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\Windows\system32\DRIVERS\mouclass.sys
12:44:33.0480 2828 mouclass - ok
12:44:33.0496 2828 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\Windows\system32\DRIVERS\mouhid.sys
12:44:33.0496 2828 mouhid - ok
12:44:33.0527 2828 mountmgr (fc8771f45ecccfd89684e38842539b9b) C:\Windows\system32\drivers\mountmgr.sys
12:44:33.0527 2828 mountmgr - ok
12:44:33.0574 2828 MozillaMaintenance (96aa8ba23142cc8e2b30f3cae0c80254) C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
12:44:33.0574 2828 MozillaMaintenance - ok
12:44:33.0605 2828 mpio (2d699fb6e89ce0d8da14ecc03b3edfe0) C:\Windows\system32\drivers\mpio.sys
12:44:33.0605 2828 mpio - ok
12:44:33.0620 2828 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\Windows\system32\drivers\mpsdrv.sys
12:44:33.0620 2828 mpsdrv - ok
12:44:33.0667 2828 MpsSvc (9835584e999d25004e1ee8e5f3e3b881) C:\Windows\system32\mpssvc.dll
12:44:33.0683 2828 MpsSvc - ok
12:44:33.0714 2828 MRxDAV (ceb46ab7c01c9f825f8cc6babc18166a) C:\Windows\system32\drivers\mrxdav.sys
12:44:33.0714 2828 MRxDAV - ok
12:44:33.0745 2828 mrxsmb (5d16c921e3671636c0eba3bbaac5fd25) C:\Windows\system32\DRIVERS\mrxsmb.sys
12:44:33.0745 2828 mrxsmb - ok
12:44:33.0776 2828 mrxsmb10 (6d17a4791aca19328c685d256349fefc) C:\Windows\system32\DRIVERS\mrxsmb10.sys
12:44:33.0776 2828 mrxsmb10 - ok
12:44:33.0792 2828 mrxsmb20 (b81f204d146000be76651a50670a5e9e) C:\Windows\system32\DRIVERS\mrxsmb20.sys
12:44:33.0792 2828 mrxsmb20 - ok
12:44:33.0808 2828 msahci (012c5f4e9349e711e11e0f19a8589f0a) C:\Windows\system32\drivers\msahci.sys
12:44:33.0808 2828 msahci - ok
12:44:33.0823 2828 msdsm (55055f8ad8be27a64c831322a780a228) C:\Windows\system32\drivers\msdsm.sys
12:44:33.0823 2828 msdsm - ok
12:44:33.0854 2828 MSDTC (e1bce74a3bd9902b72599c0192a07e27) C:\Windows\System32\msdtc.exe
12:44:33.0870 2828 MSDTC - ok
12:44:33.0886 2828 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\Windows\system32\drivers\Msfs.sys
12:44:33.0886 2828 Msfs - ok
12:44:33.0901 2828 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\Windows\System32\drivers\mshidkmdf.sys
12:44:33.0901 2828 mshidkmdf - ok
12:44:33.0901 2828 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\Windows\system32\drivers\msisadrv.sys
12:44:33.0901 2828 msisadrv - ok
12:44:33.0979 2828 MSiSCSI (90f7d9e6b6f27e1a707d4a297f077828) C:\Windows\system32\iscsiexe.dll
12:44:33.0995 2828 MSiSCSI - ok
12:44:33.0995 2828 msiserver - ok
12:44:34.0026 2828 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\Windows\system32\drivers\MSKSSRV.sys
12:44:34.0026 2828 MSKSSRV - ok
12:44:34.0042 2828 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\Windows\system32\drivers\MSPCLOCK.sys
12:44:34.0042 2828 MSPCLOCK - ok
12:44:34.0042 2828 MSPQM (f456e973590d663b1073e9c463b40932) C:\Windows\system32\drivers\MSPQM.sys
12:44:34.0042 2828 MSPQM - ok
12:44:34.0057 2828 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\Windows\system32\drivers\MsRPC.sys
12:44:34.0073 2828 MsRPC - ok
12:44:34.0104 2828 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\Windows\system32\drivers\mssmbios.sys
12:44:34.0104 2828 mssmbios - ok
12:44:34.0166 2828 MSSQL$UPSWSDBSERVER - ok
12:44:34.0229 2828 MSSQLServerADHelper (c06ea83f6fc2959e897c117255b6b1d5) c:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe
12:44:34.0229 2828 MSSQLServerADHelper - ok
12:44:34.0229 2828 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\Windows\system32\drivers\MSTEE.sys
12:44:34.0229 2828 MSTEE - ok
12:44:34.0229 2828 MTConfig (33599130f44e1f34631cea241de8ac84) C:\Windows\system32\DRIVERS\MTConfig.sys
12:44:34.0229 2828 MTConfig - ok
12:44:34.0244 2828 Mup (159fad02f64e6381758c990f753bcc80) C:\Windows\system32\Drivers\mup.sys
12:44:34.0244 2828 Mup - ok
12:44:34.0291 2828 napagent (61d57a5d7c6d9afe10e77dae6e1b445e) C:\Windows\system32\qagentRT.dll
12:44:34.0291 2828 napagent - ok
12:44:34.0322 2828 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\Windows\system32\DRIVERS\nwifi.sys
12:44:34.0322 2828 NativeWifiP - ok
12:44:34.0447 2828 NAVENG (f11033730b38260b6892e837c457fb4b) C:\PROGRA~2\Symantec\DEFINI~1\VIRUSD~1\20120617.009\NAVENG.SYS
12:44:34.0447 2828 NAVENG - ok
12:44:34.0525 2828 NAVEX15 (4e4e7c0259d3bb97de24a636c0e06aba) C:\PROGRA~2\Symantec\DEFINI~1\VIRUSD~1\20120617.009\NAVEX15.SYS
12:44:34.0541 2828 NAVEX15 - ok
12:44:34.0650 2828 NDIS (e7c54812a2aaf43316eb6930c1ffa108) C:\Windows\system32\drivers\ndis.sys
12:44:34.0666 2828 NDIS - ok
12:44:34.0697 2828 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\Windows\system32\DRIVERS\ndiscap.sys
12:44:34.0697 2828 NdisCap - ok
12:44:34.0728 2828 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\Windows\system32\DRIVERS\ndistapi.sys
12:44:34.0728 2828 NdisTapi - ok
12:44:34.0744 2828 Ndisuio (d8a65dafb3eb41cbb622745676fcd072) C:\Windows\system32\DRIVERS\ndisuio.sys
12:44:34.0744 2828 Ndisuio - ok
12:44:34.0775 2828 NdisWan (38fbe267e7e6983311179230facb1017) C:\Windows\system32\DRIVERS\ndiswan.sys
12:44:34.0775 2828 NdisWan - ok
12:44:34.0806 2828 NDProxy (a4bdc541e69674fbff1a8ff00be913f2) C:\Windows\system32\drivers\NDProxy.sys
12:44:34.0806 2828 NDProxy - ok
12:44:34.0806 2828 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\Windows\system32\DRIVERS\netbios.sys
12:44:34.0806 2828 NetBIOS - ok
12:44:34.0837 2828 NetBT (280122ddcf04b378edd1ad54d71c1e54) C:\Windows\system32\DRIVERS\netbt.sys
12:44:34.0853 2828 NetBT - ok
12:44:34.0868 2828 Netlogon (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
12:44:34.0868 2828 Netlogon - ok
12:44:34.0915 2828 Netman (7cccfca7510684768da22092d1fa4db2) C:\Windows\System32\netman.dll
12:44:34.0915 2828 Netman - ok
12:44:34.0946 2828 netprofm (8c338238c16777a802d6a9211eb2ba50) C:\Windows\System32\netprofm.dll
12:44:34.0946 2828 netprofm - ok
12:44:35.0009 2828 NetTcpPortSharing (f476ec40033cdb91efbe73eb99b8362d) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
12:44:35.0009 2828 NetTcpPortSharing - ok
12:44:35.0040 2828 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\Windows\system32\DRIVERS\nfrd960.sys
12:44:35.0040 2828 nfrd960 - ok
12:44:35.0071 2828 NlaSvc (912084381d30d8b89ec4e293053f4710) C:\Windows\System32\nlasvc.dll
12:44:35.0071 2828 NlaSvc - ok
12:44:35.0087 2828 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\Windows\system32\drivers\Npfs.sys
12:44:35.0087 2828 Npfs - ok
12:44:35.0102 2828 nsi (ba387e955e890c8a88306d9b8d06bf17) C:\Windows\system32\nsisvc.dll
12:44:35.0102 2828 nsi - ok
12:44:35.0118 2828 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\Windows\system32\drivers\nsiproxy.sys
12:44:35.0118 2828 nsiproxy - ok
12:44:35.0196 2828 Ntfs (81189c3d7763838e55c397759d49007a) C:\Windows\system32\drivers\Ntfs.sys
12:44:35.0212 2828 Ntfs - ok
12:44:35.0243 2828 NuidFltr (28613c245d9f26190dcee18430a4ebbe) C:\Windows\system32\DRIVERS\NuidFltr.sys
12:44:35.0258 2828 NuidFltr - ok
12:44:35.0258 2828 Null (f9756a98d69098dca8945d62858a812c) C:\Windows\system32\drivers\Null.sys
12:44:35.0258 2828 Null - ok
12:44:35.0305 2828 nvraid (b3e25ee28883877076e0e1ff877d02e0) C:\Windows\system32\drivers\nvraid.sys
12:44:35.0305 2828 nvraid - ok
12:44:35.0336 2828 nvstor (4380e59a170d88c4f1022eff6719a8a4) C:\Windows\system32\drivers\nvstor.sys
12:44:35.0336 2828 nvstor - ok
12:44:35.0352 2828 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\Windows\system32\drivers\nv_agp.sys
12:44:35.0352 2828 nv_agp - ok
12:44:35.0446 2828 odserv (84de1dd996b48b05ace31ad015fa108a) C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
12:44:35.0461 2828 odserv - ok
12:44:35.0492 2828 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\Windows\system32\drivers\ohci1394.sys
12:44:35.0492 2828 ohci1394 - ok
12:44:35.0524 2828 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
12:44:35.0524 2828 ose - ok
12:44:35.0555 2828 p2pimsvc (82a8521ddc60710c3d3d3e7325209bec) C:\Windows\system32\pnrpsvc.dll
12:44:35.0570 2828 p2pimsvc - ok
12:44:35.0617 2828 p2psvc (59c3ddd501e39e006dac31bf55150d91) C:\Windows\system32\p2psvc.dll
12:44:35.0617 2828 p2psvc - ok
12:44:35.0633 2828 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\Windows\system32\DRIVERS\parport.sys
12:44:35.0633 2828 Parport - ok
12:44:35.0664 2828 partmgr (3f34a1b4c5f6475f320c275e63afce9b) C:\Windows\system32\drivers\partmgr.sys
12:44:35.0664 2828 partmgr - ok
12:44:35.0680 2828 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\Windows\system32\DRIVERS\parvdm.sys
12:44:35.0680 2828 Parvdm - ok
12:44:35.0695 2828 PcaSvc (358ab7956d3160000726574083dfc8a6) C:\Windows\System32\pcasvc.dll
12:44:35.0695 2828 PcaSvc - ok
12:44:35.0711 2828 pci (673e55c3498eb970088e812ea820aa8f) C:\Windows\system32\drivers\pci.sys
12:44:35.0711 2828 pci - ok
12:44:35.0726 2828 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\Windows\system32\drivers\pciide.sys
12:44:35.0726 2828 pciide - ok
12:44:35.0742 2828 pcmcia (f396431b31693e71e8a80687ef523506) C:\Windows\system32\DRIVERS\pcmcia.sys
12:44:35.0758 2828 pcmcia - ok
12:44:35.0773 2828 pcw (250f6b43d2b613172035c6747aeeb19f) C:\Windows\system32\drivers\pcw.sys
12:44:35.0773 2828 pcw - ok
12:44:35.0820 2828 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\Windows\system32\drivers\peauth.sys
12:44:35.0820 2828 PEAUTH - ok
12:44:35.0882 2828 PeerDistSvc (af4d64d2a57b9772cf3801950b8058a6) C:\Windows\system32\peerdistsvc.dll
12:44:35.0898 2828 PeerDistSvc - ok
12:44:35.0992 2828 pla (414bba67a3ded1d28437eb66aeb8a720) C:\Windows\system32\pla.dll
12:44:36.0007 2828 pla - ok
12:44:36.0116 2828 PlugPlay (ec7bc28d207da09e79b3e9faf8b232ca) C:\Windows\system32\umpnpmgr.dll
12:44:36.0132 2828 PlugPlay - ok
12:44:36.0148 2828 PNRPAutoReg (63ff8572611249931eb16bb8eed6afc8) C:\Windows\system32\pnrpauto.dll
12:44:36.0148 2828 PNRPAutoReg - ok
12:44:36.0163 2828 PNRPsvc (82a8521ddc60710c3d3d3e7325209bec) C:\Windows\system32\pnrpsvc.dll
12:44:36.0163 2828 PNRPsvc - ok
12:44:36.0226 2828 Point32 (896d916de06f5502d301e8c4dc442ae8) C:\Windows\system32\DRIVERS\point32.sys
12:44:36.0226 2828 Point32 - ok
12:44:36.0257 2828 PolicyAgent (53946b69ba0836bd95b03759530c81ec) C:\Windows\System32\ipsecsvc.dll
12:44:36.0257 2828 PolicyAgent - ok
12:44:36.0288 2828 Power (f87d30e72e03d579a5199ccb3831d6ea) C:\Windows\system32\umpo.dll
12:44:36.0304 2828 Power - ok
12:44:36.0319 2828 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\Windows\system32\DRIVERS\raspptp.sys
12:44:36.0319 2828 PptpMiniport - ok
12:44:36.0335 2828 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\Windows\system32\DRIVERS\processr.sys
12:44:36.0335 2828 Processor - ok
12:44:36.0366 2828 ProfSvc (cadefac453040e370a1bdff3973be00d) C:\Windows\system32\profsvc.dll
12:44:36.0366 2828 ProfSvc - ok
12:44:36.0397 2828 ProtectedStorage (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
12:44:36.0397 2828 ProtectedStorage - ok
12:44:36.0428 2828 Psched (6270ccae2a86de6d146529fe55b3246a) C:\Windows\system32\DRIVERS\pacer.sys
12:44:36.0428 2828 Psched - ok
12:44:36.0460 2828 PSI (d24dfd16a1e2a76034df5aa18125c35d) C:\Windows\system32\DRIVERS\psi_mf.sys
12:44:36.0460 2828 PSI - ok
12:44:36.0506 2828 PxHelp20 (40fedd328f98245ad201cf5f9f311724) C:\Windows\system32\Drivers\PxHelp20.sys
12:44:36.0506 2828 PxHelp20 - ok
12:44:36.0584 2828 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\Windows\system32\DRIVERS\ql2300.sys
12:44:36.0600 2828 ql2300 - ok
12:44:36.0694 2828 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\Windows\system32\DRIVERS\ql40xx.sys
12:44:36.0694 2828 ql40xx - ok
12:44:36.0709 2828 QWAVE (31ac809e7707eb580b2bdb760390765a) C:\Windows\system32\qwave.dll
12:44:36.0725 2828 QWAVE - ok
12:44:36.0756 2828 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\Windows\system32\drivers\qwavedrv.sys
12:44:36.0756 2828 QWAVEdrv - ok
12:44:36.0772 2828 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\Windows\system32\DRIVERS\rasacd.sys
12:44:36.0772 2828 RasAcd - ok
12:44:36.0803 2828 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\Windows\system32\DRIVERS\AgileVpn.sys
12:44:36.0803 2828 RasAgileVpn - ok
12:44:36.0818 2828 RasAuto (a60f1839849c0c00739787fd5ec03f13) C:\Windows\System32\rasauto.dll
12:44:36.0818 2828 RasAuto - ok
12:44:36.0834 2828 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\Windows\system32\DRIVERS\rasl2tp.sys
12:44:36.0834 2828 Rasl2tp - ok
12:44:36.0865 2828 RasMan (cb9e04dc05eacf5b9a36ca276d475006) C:\Windows\System32\rasmans.dll
12:44:36.0881 2828 RasMan - ok
12:44:36.0896 2828 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\Windows\system32\DRIVERS\raspppoe.sys
12:44:36.0896 2828 RasPppoe - ok
12:44:36.0912 2828 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\Windows\system32\DRIVERS\rassstp.sys
12:44:36.0912 2828 RasSstp - ok
12:44:36.0928 2828 rdbss (d528bc58a489409ba40334ebf96a311b) C:\Windows\system32\DRIVERS\rdbss.sys
12:44:36.0928 2828 rdbss - ok
12:44:36.0928 2828 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\Windows\system32\DRIVERS\rdpbus.sys
12:44:36.0928 2828 rdpbus - ok
12:44:36.0959 2828 RDPCDD (23dae03f29d253ae74c44f99e515f9a1) C:\Windows\system32\DRIVERS\RDPCDD.sys
12:44:36.0959 2828 RDPCDD - ok
12:44:36.0990 2828 RDPDR (b973fcfc50dc1434e1970a146f7e3885) C:\Windows\system32\drivers\rdpdr.sys
12:44:36.0990 2828 RDPDR - ok
12:44:37.0006 2828 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\Windows\system32\drivers\rdpencdd.sys
12:44:37.0006 2828 RDPENCDD - ok
12:44:37.0006 2828 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\Windows\system32\drivers\rdprefmp.sys
12:44:37.0021 2828 RDPREFMP - ok
12:44:37.0037 2828 RDPWD (f031683e6d1fea157abb2ff260b51e61) C:\Windows\system32\drivers\RDPWD.sys
12:44:37.0052 2828 RDPWD - ok
12:44:37.0084 2828 rdyboost (518395321dc96fe2c9f0e96ac743b656) C:\Windows\system32\drivers\rdyboost.sys
12:44:37.0099 2828 rdyboost - ok
12:44:37.0115 2828 RemoteAccess (7b5e1419717fac363a31cc302895217a) C:\Windows\System32\mprdim.dll
12:44:37.0115 2828 RemoteAccess - ok
12:44:37.0130 2828 RemoteRegistry (cb9a8683f4ef2bf99e123d79950d7935) C:\Windows\system32\regsvc.dll
12:44:37.0130 2828 RemoteRegistry - ok
12:44:37.0146 2828 RpcEptMapper (78d072f35bc45d9e4e1b61895c152234) C:\Windows\System32\RpcEpMap.dll
12:44:37.0146 2828 RpcEptMapper - ok
12:44:37.0162 2828 RpcLocator (94d36c0e44677dd26981d2bfeef2a29d) C:\Windows\system32\locator.exe
12:44:37.0162 2828 RpcLocator - ok
12:44:37.0193 2828 RpcSs (7660f01d3b38aca1747e397d21d790af) C:\Windows\system32\rpcss.dll
12:44:37.0193 2828 RpcSs - ok
12:44:37.0193 2828 rspndr (032b0d36ad92b582d869879f5af5b928) C:\Windows\system32\DRIVERS\rspndr.sys
12:44:37.0193 2828 rspndr - ok
12:44:37.0224 2828 s3cap (7fa7f2e249a5dcbb7970630e15e1f482) C:\Windows\system32\drivers\vms3cap.sys
12:44:37.0224 2828 s3cap - ok
12:44:37.0240 2828 SamSs (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
12:44:37.0255 2828 SamSs - ok
12:44:37.0271 2828 sbp2port (05d860da1040f111503ac416ccef2bca) C:\Windows\system32\drivers\sbp2port.sys
12:44:37.0271 2828 sbp2port - ok
12:44:37.0302 2828 SCardSvr (8fc518ffe9519c2631d37515a68009c4) C:\Windows\System32\SCardSvr.dll
12:44:37.0302 2828 SCardSvr - ok
12:44:37.0333 2828 scfilter (0693b5ec673e34dc147e195779a4dcf6) C:\Windows\system32\DRIVERS\scfilter.sys
12:44:37.0333 2828 scfilter - ok
12:44:37.0411 2828 Schedule (a04bb13f8a72f8b6e8b4071723e4e336) C:\Windows\system32\schedsvc.dll
12:44:37.0427 2828 Schedule - ok
12:44:37.0442 2828 SCPolicySvc (319c6b309773d063541d01df8ac6f55f) C:\Windows\System32\certprop.dll
12:44:37.0442 2828 SCPolicySvc - ok
12:44:37.0474 2828 SDRSVC (08236c4bce5edd0a0318a438af28e0f7) C:\Windows\System32\SDRSVC.dll
12:44:37.0474 2828 SDRSVC - ok
12:44:37.0536 2828 SeaPort (d358e077a0a05d9b12da22d137ee8464) C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
12:44:37.0552 2828 SeaPort - ok
12:44:37.0567 2828 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
12:44:37.0567 2828 secdrv - ok
12:44:37.0567 2828 seclogon (a59b3a4442c52060cc7a85293aa3546f) C:\Windows\system32\seclogon.dll
12:44:37.0567 2828 seclogon - ok
12:44:37.0676 2828 Secunia PSI Agent (5b66db4877bbac9f7493aa8d84421e49) C:\Program Files\Secunia\PSI\PSIA.exe
12:44:37.0723 2828 Secunia PSI Agent - ok
12:44:37.0770 2828 Secunia Update Agent (0e88fdf474f2cdd370a4a6ce77d018f0) C:\Program Files\Secunia\PSI\sua.exe
12:44:37.0786 2828 Secunia Update Agent - ok
12:44:37.0864 2828 SENS (dcb7fcdcc97f87360f75d77425b81737) C:\Windows\System32\sens.dll
12:44:37.0864 2828 SENS - ok
12:44:37.0879 2828 SensrSvc (50087fe1ee447009c9cc2997b90de53f) C:\Windows\system32\sensrsvc.dll
12:44:37.0879 2828 SensrSvc - ok
12:44:37.0926 2828 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\Windows\system32\DRIVERS\serenum.sys
12:44:37.0926 2828 Serenum - ok
12:44:37.0926 2828 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\Windows\system32\DRIVERS\serial.sys
12:44:37.0926 2828 Serial - ok
12:44:37.0957 2828 sermouse (79bffb520327ff916a582dfea17aa813) C:\Windows\system32\DRIVERS\sermouse.sys
12:44:37.0957 2828 sermouse - ok
12:44:37.0988 2828 SessionEnv (4ae380f39a0032eab7dd953030b26d28) C:\Windows\system32\sessenv.dll
12:44:37.0988 2828 SessionEnv - ok
12:44:38.0020 2828 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\Windows\system32\drivers\sffdisk.sys
12:44:38.0020 2828 sffdisk - ok
12:44:38.0020 2828 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\Windows\system32\drivers\sffp_mmc.sys
12:44:38.0020 2828 sffp_mmc - ok
12:44:38.0020 2828 sffp_sd (6d4ccaedc018f1cf52866bbbaa235982) C:\Windows\system32\drivers\sffp_sd.sys
12:44:38.0020 2828 sffp_sd - ok
12:44:38.0051 2828 sfloppy (db96666cc8312ebc45032f30b007a547) C:\Windows\system32\DRIVERS\sfloppy.sys
12:44:38.0051 2828 sfloppy - ok
12:44:38.0082 2828 SharedAccess (d1a079a0de2ea524513b6930c24527a2) C:\Windows\System32\ipnathlp.dll
12:44:38.0098 2828 SharedAccess - ok
12:44:38.0129 2828 ShellHWDetection (414da952a35bf5d50192e28263b40577) C:\Windows\System32\shsvcs.dll
12:44:38.0144 2828 ShellHWDetection - ok
12:44:38.0160 2828 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\Windows\system32\drivers\sisagp.sys
12:44:38.0160 2828 sisagp - ok
12:44:38.0176 2828 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\Windows\system32\DRIVERS\SiSRaid2.sys
12:44:38.0176 2828 SiSRaid2 - ok
12:44:38.0191 2828 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\Windows\system32\DRIVERS\sisraid4.sys
12:44:38.0191 2828 SiSRaid4 - ok
12:44:38.0207 2828 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\Windows\system32\DRIVERS\smb.sys
12:44:38.0222 2828 Smb - ok
12:44:38.0363 2828 SmcService (f86f007485b08b0f3f04f9053777c066) C:\Program Files\Symantec\Symantec Endpoint Protection\Smc.exe
12:44:38.0394 2828 SmcService - ok
12:44:38.0441 2828 SNAC (74915b775116238cff936896d019c79d) C:\Program Files\Symantec\Symantec Endpoint Protection\SNAC.EXE
12:44:38.0441 2828 SNAC - ok
12:44:38.0519 2828 SNMPTRAP (6a984831644eca1a33ffeae4126f4f37) C:\Windows\System32\snmptrap.exe
12:44:38.0534 2828 SNMPTRAP - ok
12:44:38.0581 2828 SPBBCDrv (e621bb5839cf45fa477f48092edd2b40) C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys
12:44:38.0581 2828 SPBBCDrv - ok
12:44:38.0612 2828 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\Windows\system32\drivers\spldr.sys
12:44:38.0612 2828 spldr - ok
12:44:38.0659 2828 Spooler (866a43013535dc8587c258e43579c764) C:\Windows\System32\spoolsv.exe
12:44:38.0659 2828 Spooler - ok
12:44:38.0815 2828 sppsvc (cf87a1de791347e75b98885214ced2b8) C:\Windows\system32\sppsvc.exe
12:44:38.0862 2828 sppsvc - ok
12:44:38.0940 2828 sppuinotify (b0180b20b065d89232a78a40fe56eaa6) C:\Windows\system32\sppuinotify.dll
12:44:38.0940 2828 sppuinotify - ok
12:44:39.0018 2828 SQLBrowser (b2ec3e1deac5f0a764bd3486d213a0af) c:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
12:44:39.0018 2828 SQLBrowser - ok
12:44:39.0065 2828 SQLWriter (d2f4f32b59440011174b4f8137af4e0c) c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
12:44:39.0065 2828 SQLWriter - ok
12:44:39.0096 2828 SRTSP (2abf82c8452ab0b9ffc74a2d5da91989) C:\Windows\system32\Drivers\SRTSP.SYS
12:44:39.0096 2828 SRTSP - ok
12:44:39.0127 2828 SRTSPL (e2f9e5887bea5bd8784d337e06eda31b) C:\Windows\system32\Drivers\SRTSPL.SYS
12:44:39.0127 2828 SRTSPL - ok
12:44:39.0174 2828 SRTSPX (3b974c158fabd910186f98df8d3e23f3) C:\Windows\system32\Drivers\SRTSPX.SYS
12:44:39.0174 2828 SRTSPX - ok
12:44:39.0221 2828 srv (e4c2764065d66ea1d2d3ebc28fe99c46) C:\Windows\system32\DRIVERS\srv.sys
12:44:39.0221 2828 srv - ok
12:44:39.0236 2828 srv2 (03f0545bd8d4c77fa0ae1ceedfcc71ab) C:\Windows\system32\DRIVERS\srv2.sys
12:44:39.0236 2828 srv2 - ok
12:44:39.0268 2828 srvnet (be6bd660caa6f291ae06a718a4fa8abc) C:\Windows\system32\DRIVERS\srvnet.sys
12:44:39.0268 2828 srvnet - ok
12:44:39.0283 2828 SSDPSRV (d887c9fd02ac9fa880f6e5027a43e118) C:\Windows\System32\ssdpsrv.dll
12:44:39.0283 2828 SSDPSRV - ok
12:44:39.0314 2828 SSPORT (ef3458337d7341a05169cefc73709264) C:\Windows\system32\Drivers\SSPORT.sys
12:44:39.0314 2828 SSPORT - ok
12:44:39.0330 2828 SstpSvc (d318f23be45d5e3a107469eb64815b50) C:\Windows\system32\sstpsvc.dll
12:44:39.0330 2828 SstpSvc - ok
12:44:39.0346 2828 stexstor (db32d325c192b801df274bfd12a7e72b) C:\Windows\system32\DRIVERS\stexstor.sys
12:44:39.0346 2828 stexstor - ok
12:44:39.0408 2828 StiSvc (e1fb3706030fb4578a0d72c2fc3689e4) C:\Windows\System32\wiaservc.dll
12:44:39.0408 2828 StiSvc - ok
12:44:39.0486 2828 stllssvr (e476c66713c842f58e61a95826ed1d57) C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
12:44:39.0486 2828 stllssvr - ok
12:44:39.0502 2828 storflt (472af0311073dceceaa8fa18ba2bdf89) C:\Windows\system32\drivers\vmstorfl.sys
12:44:39.0502 2828 storflt - ok
12:44:39.0533 2828 StorSvc (0bf669f0a910beda4a32258d363af2a5) C:\Windows\system32\storsvc.dll
12:44:39.0548 2828 StorSvc - ok
12:44:39.0626 2828 storvsc (dcaffd62259e0bdb433dd67b5bb37619) C:\Windows\system32\drivers\storvsc.sys
12:44:39.0626 2828 storvsc - ok
12:44:39.0673 2828 swenum (e58c78a848add9610a4db6d214af5224) C:\Windows\system32\drivers\swenum.sys
12:44:39.0673 2828 swenum - ok
12:44:39.0845 2828 swprv (a28bd92df340e57b024ba433165d34d7) C:\Windows\System32\swprv.dll
12:44:39.0845 2828 swprv - ok
12:44:39.0970 2828 Symantec AntiVirus (b9b3b38a852f13d6f61acb3994872eda) C:\Program Files\Symantec\Symantec Endpoint Protection\Rtvscan.exe
12:44:39.0970 2828 Symantec AntiVirus - ok
12:44:40.0094 2828 SymEvent (a54ff04bd6e75dc4d8cb6f3e352635e0) C:\Windows\system32\Drivers\SYMEVENT.SYS
12:44:40.0094 2828 SymEvent - ok
12:44:40.0126 2828 SYMREDRV (394b2368212114d538316812af60fddd) C:\Windows\System32\Drivers\SYMREDRV.SYS
12:44:40.0126 2828 SYMREDRV - ok
12:44:40.0157 2828 SYMTDI (d46676bb414c7531bdffe637a33f5033) C:\Windows\System32\Drivers\SYMTDI.SYS
12:44:40.0157 2828 SYMTDI - ok
12:44:40.0235 2828 SysMain (36650d618ca34c9d357dfd3d89b2c56f) C:\Windows\system32\sysmain.dll
12:44:40.0250 2828 SysMain - ok
12:44:40.0282 2828 TabletInputService (763fecdc3d30c815fe72dd57936c6cd1) C:\Windows\System32\TabSvc.dll
12:44:40.0282 2828 TabletInputService - ok
12:44:40.0313 2828 taphss (0c3b2a9c4bd2dd9a6c2e4084314dd719) C:\Windows\system32\DRIVERS\taphss.sys
12:44:40.0313 2828 taphss - ok
12:44:40.0344 2828 TapiSrv (613bf4820361543956909043a265c6ac) C:\Windows\System32\tapisrv.dll
12:44:40.0360 2828 TapiSrv - ok
12:44:40.0375 2828 TBS (b799d9fdb26111737f58288d8dc172d9) C:\Windows\System32\tbssvc.dll
12:44:40.0375 2828 TBS - ok
12:44:40.0469 2828 Tcpip (7fa2e0f8b072bd04b77b421480b6cc22) C:\Windows\system32\drivers\tcpip.sys
12:44:40.0484 2828 Tcpip - ok
12:44:40.0500 2828 TCPIP6 (7fa2e0f8b072bd04b77b421480b6cc22) C:\Windows\system32\DRIVERS\tcpip.sys
12:44:40.0500 2828 TCPIP6 - ok
12:44:40.0531 2828 tcpipreg (cca24162e055c3714ce5a88b100c64ed) C:\Windows\system32\drivers\tcpipreg.sys
12:44:40.0531 2828 tcpipreg - ok
12:44:40.0562 2828 TDPIPE (1cb91b2bd8f6dd367dfc2ef26fd751b2) C:\Windows\system32\drivers\tdpipe.sys
12:44:40.0562 2828 TDPIPE - ok
12:44:40.0594 2828 TDTCP (2c2c5afe7ee4f620d69c23c0617651a8) C:\Windows\system32\drivers\tdtcp.sys
12:44:40.0594 2828 TDTCP - ok
12:44:40.0625 2828 tdx (b459575348c20e8121d6039da063c704) C:\Windows\system32\DRIVERS\tdx.sys
12:44:40.0625 2828 tdx - ok
12:44:40.0625 2828 Teefer2 (1de2e1357552a79f39bff003a11c533e) C:\Windows\system32\DRIVERS\teefer2.sys
12:44:40.0625 2828 Teefer2 - ok
12:44:40.0656 2828 TermDD (04dbf4b01ea4bf25a9a3e84affac9b20) C:\Windows\system32\drivers\termdd.sys
12:44:40.0656 2828 TermDD - ok
12:44:40.0703 2828 TermService (382c804c92811be57829d8e550a900e2) C:\Windows\System32\termsrv.dll
12:44:40.0718 2828 TermService - ok
12:44:40.0734 2828 Themes (42fb6afd6b79d9fe07381609172e7ca4) C:\Windows\system32\themeservice.dll
12:44:40.0734 2828 Themes - ok
12:44:40.0750 2828 THREADORDER (146b6f43a673379a3c670e86d89be5ea) C:\Windows\system32\mmcss.dll
12:44:40.0750 2828 THREADORDER - ok
12:44:40.0781 2828 TrkWks (4792c0378db99a9bc2ae2de6cfff0c3a) C:\Windows\System32\trkwks.dll
12:44:40.0781 2828 TrkWks - ok
12:44:40.0828 2828 TrustedInstaller (2c49b175aee1d4364b91b531417fe583) C:\Windows\servicing\TrustedInstaller.exe
12:44:40.0843 2828 TrustedInstaller - ok
12:44:40.0859 2828 tssecsrv (254bb140eee3c59d6114c1a86b636877) C:\Windows\system32\DRIVERS\tssecsrv.sys
12:44:40.0859 2828 tssecsrv - ok
12:44:40.0906 2828 TsUsbFlt (fd1d6c73e6333be727cbcc6054247654) C:\Windows\system32\drivers\tsusbflt.sys
12:44:40.0906 2828 TsUsbFlt - ok
12:44:40.0937 2828 tunnel (b2fa25d9b17a68bb93d58b0556e8c90d) C:\Windows\system32\DRIVERS\tunnel.sys
12:44:40.0937 2828 tunnel - ok
12:44:40.0968 2828 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\Windows\system32\DRIVERS\uagp35.sys
12:44:40.0968 2828 uagp35 - ok
12:44:40.0999 2828 udfs (ee43346c7e4b5e63e54f927babbb32ff) C:\Windows\system32\DRIVERS\udfs.sys
12:44:41.0015 2828 udfs - ok
12:44:41.0030 2828 UI0Detect (8344fd4fce927880aa1aa7681d4927e5) C:\Windows\system32\UI0Detect.exe
12:44:41.0030 2828 UI0Detect - ok
12:44:41.0062 2828 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\Windows\system32\drivers\uliagpkx.sys
12:44:41.0062 2828 uliagpkx - ok
12:44:41.0077 2828 umbus (d295bed4b898f0fd999fcfa9b32b071b) C:\Windows\system32\drivers\umbus.sys
12:44:41.0077 2828 umbus - ok
12:44:41.0093 2828 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\Windows\system32\DRIVERS\umpass.sys
12:44:41.0108 2828 UmPass - ok
12:44:41.0140 2828 UmRdpService (409994a8eaceee4e328749c0353527a0) C:\Windows\System32\umrdp.dll
12:44:41.0140 2828 UmRdpService - ok
12:44:41.0186 2828 upnphost (833fbb672460efce8011d262175fad33) C:\Windows\System32\upnphost.dll
12:44:41.0186 2828 upnphost - ok
12:44:41.0218 2828 usbccgp (bd9c55d7023c5de374507acc7a14e2ac) C:\Windows\system32\DRIVERS\usbccgp.sys
12:44:41.0218 2828 usbccgp - ok
12:44:41.0249 2828 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\Windows\system32\drivers\usbcir.sys
12:44:41.0249 2828 usbcir - ok
12:44:41.0280 2828 usbehci (f92de757e4b7ce9c07c5e65423f3ae3b) C:\Windows\system32\drivers\usbehci.sys
12:44:41.0280 2828 usbehci - ok
12:44:41.0311 2828 usbhub (8dc94aec6a7e644a06135ae7506dc2e9) C:\Windows\system32\DRIVERS\usbhub.sys
12:44:41.0311 2828 usbhub - ok
12:44:41.0327 2828 usbohci (e185d44fac515a18d9deddc23c2cdf44) C:\Windows\system32\drivers\usbohci.sys
12:44:41.0327 2828 usbohci - ok
12:44:41.0342 2828 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\Windows\system32\DRIVERS\usbprint.sys
12:44:41.0342 2828 usbprint - ok
12:44:41.0358 2828 USBSTOR (f991ab9cc6b908db552166768176896a) C:\Windows\system32\drivers\USBSTOR.SYS
12:44:41.0358 2828 USBSTOR - ok
12:44:41.0374 2828 usbuhci (68df884cf41cdada664beb01daf67e3d) C:\Windows\system32\drivers\usbuhci.sys
12:44:41.0374 2828 usbuhci - ok
12:44:41.0389 2828 UxSms (081e6e1c91aec36758902a9f727cd23c) C:\Windows\System32\uxsms.dll
12:44:41.0389 2828 UxSms - ok
12:44:41.0420 2828 VaultSvc (81951f51e318aecc2d68559e47485cc4) C:\Windows\system32\lsass.exe
12:44:41.0420 2828 VaultSvc - ok
12:44:41.0436 2828 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\Windows\system32\drivers\vdrvroot.sys
12:44:41.0436 2828 vdrvroot - ok
12:44:41.0467 2828 vds (c3cd30495687c2a2f66a65ca6fd89be9) C:\Windows\System32\vds.exe
12:44:41.0483 2828 vds - ok
12:44:41.0483 2828 vga (17c408214ea61696cec9c66e388b14f3) C:\Windows\system32\DRIVERS\vgapnp.sys
12:44:41.0498 2828 vga - ok
12:44:41.0498 2828 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\Windows\System32\drivers\vga.sys
12:44:41.0498 2828 VgaSave - ok
12:44:41.0514 2828 vhdmp (5461686cca2fda57b024547733ab42e3) C:\Windows\system32\drivers\vhdmp.sys
12:44:41.0514 2828 vhdmp - ok
12:44:41.0530 2828 viaagp (c829317a37b4bea8f39735d4b076e923) C:\Windows\system32\drivers\viaagp.sys
12:44:41.0545 2828 viaagp - ok
12:44:41.0545 2828 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\Windows\system32\DRIVERS\viac7.sys
12:44:41.0545 2828 ViaC7 - ok
12:44:41.0545 2828 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\Windows\system32\drivers\viaide.sys
12:44:41.0545 2828 viaide - ok
12:44:41.0576 2828 vmbus (c2f2911156fdc7817c52829c86da494e) C:\Windows\system32\drivers\vmbus.sys
12:44:41.0576 2828 vmbus - ok
12:44:41.0592 2828 VMBusHID (d4d77455211e204f370d08f4963063ce) C:\Windows\system32\drivers\VMBusHID.sys
12:44:41.0592 2828 VMBusHID - ok
12:44:41.0608 2828 volmgr (4c63e00f2f4b5f86ab48a58cd990f212) C:\Windows\system32\drivers\volmgr.sys
12:44:41.0608 2828 volmgr - ok
12:44:41.0639 2828 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\Windows\system32\drivers\volmgrx.sys
12:44:41.0654 2828 volmgrx - ok
12:44:41.0686 2828 volsnap (f497f67932c6fa693d7de2780631cfe7) C:\Windows\system32\drivers\volsnap.sys
12:44:41.0686 2828 volsnap - ok
12:44:41.0717 2828 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\Windows\system32\DRIVERS\vsmraid.sys
12:44:41.0717 2828 vsmraid - ok
12:44:41.0779 2828 VSS (209a3b1901b83aeb8527ed211cce9e4c) C:\Windows\system32\vssvc.exe
12:44:41.0810 2828 VSS - ok
12:44:41.0810 2828 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\Windows\System32\drivers\vwifibus.sys
12:44:41.0826 2828 vwifibus - ok
12:44:41.0842 2828 W32Time (55187fd710e27d5095d10a472c8baf1c) C:\Windows\system32\w32time.dll
12:44:41.0857 2828 W32Time - ok
12:44:41.0857 2828 WacomPen (de3721e89c653aa281428c8a69745d90) C:\Windows\system32\DRIVERS\wacompen.sys
12:44:41.0857 2828 WacomPen - ok
12:44:41.0904 2828 WANARP (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys
12:44:41.0904 2828 WANARP - ok
12:44:41.0904 2828 Wanarpv6 (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys
12:44:41.0904 2828 Wanarpv6 - ok
12:44:41.0998 2828 WatAdminSvc (353a04c273ec58475d8633e75ccd5604) C:\Windows\system32\Wat\WatAdminSvc.exe
12:44:42.0029 2828 WatAdminSvc - ok
12:44:42.0107 2828 wbengine (691e3285e53dca558e1a84667f13e15a) C:\Windows\system32\wbengine.exe
12:44:42.0122 2828 wbengine - ok
12:44:42.0138 2828 WbioSrvc (9614b5d29dc76ac3c29f6d2d3aa70e67) C:\Windows\System32\wbiosrvc.dll
12:44:42.0154 2828 WbioSrvc - ok
12:44:42.0185 2828 wcncsvc (34eee0dfaadb4f691d6d5308a51315dc) C:\Windows\System32\wcncsvc.dll
12:44:42.0200 2828 wcncsvc - ok
12:44:42.0216 2828 WcsPlugInService (5d930b6357a6d2af4d7653bdabbf352f) C:\Windows\System32\WcsPlugInService.dll
12:44:42.0216 2828 WcsPlugInService - ok
12:44:42.0263 2828 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\Windows\system32\DRIVERS\wd.sys
12:44:42.0263 2828 Wd - ok
12:44:42.0278 2828 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys
12:44:42.0294 2828 Wdf01000 - ok
12:44:42.0310 2828 WdiServiceHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\Windows\system32\wdi.dll
12:44:42.0310 2828 WdiServiceHost - ok
12:44:42.0310 2828 WdiSystemHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\Windows\system32\wdi.dll
12:44:42.0310 2828 WdiSystemHost - ok
12:44:42.0356 2828 WebClient (a9d880f97530d5b8fee278923349929d) C:\Windows\System32\webclnt.dll
12:44:42.0356 2828 WebClient - ok
12:44:42.0372 2828 Wecsvc (760f0afe937a77cff27153206534f275) C:\Windows\system32\wecsvc.dll
12:44:42.0388 2828 Wecsvc - ok
12:44:42.0403 2828 wercplsupport (ac804569bb2364fb6017370258a4091b) C:\Windows\System32\wercplsupport.dll
12:44:42.0419 2828 wercplsupport - ok
12:44:42.0434 2828 WerSvc (08e420d873e4fd85241ee2421b02c4a4) C:\Windows\System32\WerSvc.dll
12:44:42.0434 2828 WerSvc - ok
12:44:42.0466 2828 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\Windows\system32\DRIVERS\wfplwf.sys
12:44:42.0466 2828 WfpLwf - ok
12:44:42.0481 2828 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\Windows\system32\drivers\wimmount.sys
12:44:42.0481 2828 WIMMount - ok
12:44:42.0590 2828 WinDefend (3fae8f94296001c32eab62cd7d82e0fd) C:\Program Files\Windows Defender\mpsvc.dll
12:44:42.0606 2828 WinDefend - ok
12:44:42.0606 2828 WinHttpAutoProxySvc - ok
12:44:42.0637 2828 Winmgmt (f62e510b6ad4c21eb9fe8668ed251826) C:\Windows\system32\wbem\WMIsvc.dll
12:44:42.0653 2828 Winmgmt - ok
12:44:42.0715 2828 WinRM (1b91cd34ea3a90ab6a4ef0550174f4cc) C:\Windows\system32\WsmSvc.dll
12:44:42.0731 2828 WinRM - ok
12:44:42.0793 2828 WinUsb (a67e5f9a400f3bd1be3d80613b45f708) C:\Windows\system32\DRIVERS\WinUsb.sys
12:44:42.0793 2828 WinUsb - ok
12:44:42.0856 2828 Wlansvc (16935c98ff639d185086a3529b1f2067) C:\Windows\System32\wlansvc.dll
12:44:42.0871 2828 Wlansvc - ok
12:44:42.0902 2828 WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\Windows\system32\drivers\wmiacpi.sys
12:44:42.0902 2828 WmiAcpi - ok
12:44:42.0934 2828 wmiApSrv (6eb6b66517b048d87dc1856ddf1f4c3f) C:\Windows\system32\wbem\WmiApSrv.exe
12:44:42.0934 2828 wmiApSrv - ok
12:44:43.0027 2828 WMPNetworkSvc (3b40d3a61aa8c21b88ae57c58ab3122e) C:\Program Files\Windows Media Player\wmpnetwk.exe
12:44:43.0058 2828 WMPNetworkSvc - ok
12:44:43.0058 2828 WPCSvc (a2f0ec770a92f2b3f9de6d518e11409c) C:\Windows\System32\wpcsvc.dll
12:44:43.0074 2828 WPCSvc - ok
12:44:43.0090 2828 WPDBusEnum (aa53356d60af47eacc85bc617a4f3f66) C:\Windows\system32\wpdbusenum.dll
12:44:43.0090 2828 WPDBusEnum - ok
12:44:43.0121 2828 WPS (c24cfb097547dd4dd9040ec9757f0dca) C:\Windows\system32\drivers\wpsdrvnt.sys
12:44:43.0121 2828 WPS - ok
12:44:43.0152 2828 WpsHelper (ff983a25ae6f7d3f87f26bf51f02a201) C:\Windows\system32\drivers\WpsHelper.sys
12:44:43.0152 2828 WpsHelper - ok
12:44:43.0168 2828 ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\Windows\system32\drivers\ws2ifsl.sys
12:44:43.0168 2828 ws2ifsl - ok
12:44:43.0183 2828 wscsvc (6f5d49efe0e7164e03ae773a3fe25340) C:\Windows\System32\wscsvc.dll
12:44:43.0183 2828 wscsvc - ok
12:44:43.0214 2828 WSDPrintDevice (553f6ccd7c58eb98d4a8fbdaf283d7a9) C:\Windows\system32\DRIVERS\WSDPrint.sys
12:44:43.0214 2828 WSDPrintDevice - ok
12:44:43.0214 2828 WSearch - ok
12:44:43.0308 2828 wuauserv (3026418a50c5b4761befa632cedb7406) C:\Windows\system32\wuaueng.dll
12:44:43.0339 2828 wuauserv - ok
12:44:43.0433 2828 WudfPf (e714a1c0354636837e20ccbf00888ee7) C:\Windows\system32\drivers\WudfPf.sys
12:44:43.0433 2828 WudfPf - ok
12:44:43.0480 2828 WUDFRd (1023ee888c9b47178c5293ed5336ab69) C:\Windows\system32\DRIVERS\WUDFRd.sys
12:44:43.0480 2828 WUDFRd - ok
12:44:43.0511 2828 wudfsvc (8d1e1e529a2c9e9b6a85b55a345f7629) C:\Windows\System32\WUDFSvc.dll
12:44:43.0511 2828 wudfsvc - ok
12:44:43.0526 2828 WwanSvc (ff2d745b560f7c71b31f30f4d49f73d2) C:\Windows\System32\wwansvc.dll
12:44:43.0542 2828 WwanSvc - ok
12:44:43.0558 2828 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
12:44:43.0807 2828 \Device\Harddisk0\DR0 - ok
12:44:43.0807 2828 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk1\DR1
12:44:45.0570 2828 \Device\Harddisk1\DR1 - ok
12:44:45.0586 2828 Boot (0x1200) (fda5e528d79e7af103971422b0455e1e) \Device\Harddisk0\DR0\Partition0
12:44:45.0586 2828 \Device\Harddisk0\DR0\Partition0 - ok
12:44:45.0601 2828 Boot (0x1200) (c91c53a5f929edfbea06bd404a9bd3d5) \Device\Harddisk0\DR0\Partition1
12:44:45.0601 2828 \Device\Harddisk0\DR0\Partition1 - ok
12:44:45.0601 2828 Boot (0x1200) (f7a4fd88f27d29b79af3156aa11248a3) \Device\Harddisk1\DR1\Partition0
12:44:45.0601 2828 \Device\Harddisk1\DR1\Partition0 - ok
12:44:45.0601 2828 ============================================================
12:44:45.0601 2828 Scan finished
12:44:45.0601 2828 ============================================================
12:44:45.0617 2820 Detected object count: 0
12:44:45.0617 2820 Actual detected object count: 0
12:44:53.0588 2768 Deinitialize success

aswMBR
aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-06-19 12:57:41
-----------------------------
12:57:41.422 OS Version: Windows 6.1.7601 Service Pack 1
12:57:41.422 Number of processors: 2 586 0x170A
12:57:41.422 ComputerName: T21-WS5 UserName: Jo
12:57:42.093 Initialize success
12:57:45.306 AVAST engine defs: 12061900
12:57:54.791 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
12:57:54.791 Disk 0 Vendor: WDC_WD3200AAKS-75L9A0 02.03E02 Size: 305245MB BusType: 3
12:57:54.807 Disk 0 MBR read successfully
12:57:54.807 Disk 0 MBR scan
12:57:54.822 Disk 0 Windows 7 default MBR code
12:57:54.822 Disk 0 Partition 1 00 DE Dell Utility Dell 8.0 78 MB offset 63
12:57:54.838 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 10018 MB offset 161792
12:57:54.853 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 295147 MB offset 20678656
12:57:54.853 Disk 0 scanning sectors +625139712
12:57:54.916 Disk 0 scanning C:\Windows\system32\drivers
12:58:02.248 Service scanning
12:58:15.227 Service Teefer2 C:\Windows\system32\DRIVERS\teefer2.sys **LOCKED** 32
12:58:17.411 Service WPS C:\Windows\system32\drivers\wpsdrvnt.sys **LOCKED** 32
12:58:17.458 Service WpsHelper C:\Windows\system32\drivers\WpsHelper.sys **LOCKED** 32
12:58:18.331 Modules scanning
12:58:22.372 Disk 0 trace - called modules:
12:58:22.388 ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys halmacpi.dll ataport.SYS pciide.sys PCIIDEX.SYS atapi.sys
12:58:22.388 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x84a0c030]
12:58:22.403 3 CLASSPNP.SYS[87ddc59e] -> nt!IofCallDriver -> [0x83c7b878]
12:58:22.403 5 ACPI.sys[87a883d4] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0x84930030]
12:58:23.074 AVAST engine scan C:\Windows
12:58:25.913 AVAST engine scan C:\Windows\system32
13:00:05.441 AVAST engine scan C:\Windows\system32\drivers
13:00:14.193 AVAST engine scan C:\Users\Jo
13:05:36.443 AVAST engine scan C:\ProgramData
13:06:16.098 Scan finished successfully
13:29:10.663 Disk 0 MBR has been saved successfully to "C:\Users\Jo\Desktop\MBR.dat"
13:29:10.679 The log file has been saved successfully to "C:\Users\Jo\Desktop\aswMBR.txt"

ESET
C:\ProgramData\F4D55F3B00000BB50003A575B4EB238B\F4D55F3B00000BB50003A575B4EB238B.exe a variant of Win32/Kryptik.AHCR trojan cleaned by deleting - quarantined
C:\Users\Jo\AppData\Local\dskhpvts.exe a variant of Win32/Kryptik.AHCR trojan cleaned by deleting - quarantined
C:\Users\Jo\AppData\Local\mswcisti.exe a variant of Win32/Kryptik.AHCR trojan cleaned by deleting - quarantined
C:\Users\Jo\AppData\Local\qoatnpda.exe Win32/Adware.SystemSecurity.AL application cleaned by deleting - quarantined
C:\Users\Jo\AppData\Local\sfgqmvtx.exe Win32/TrojanDownloader.Zortob.B trojan cleaned by deleting - quarantined
C:\Users\Jo\AppData\Local\xaufpjkc.exe a variant of Win32/Kryptik.AHCR trojan cleaned by deleting - quarantined
C:\Users\Jo\AppData\Local\xlsurmfn.exe Win32/TrojanDownloader.Zortob.B trojan cleaned by deleting - quarantined
C:\Users\Jo\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\K62LJ5CP\3[1].exe Win32/Adware.SystemSecurity.AL application cleaned by deleting - quarantined
C:\Users\Jo\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\K62LJ5CP\3[2].exe a variant of Win32/Kryptik.AHCR trojan cleaned by deleting - quarantined
C:\Users\Jo\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\QJ0XYOAQ\3[1].exe a variant of Win32/Kryptik.AHCR trojan cleaned by deleting - quarantined
C:\Users\Jo\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\QJ0XYOAQ\indexCAMT3PXR.htm HTML/Iframe.B.Gen virus deleted - quarantined
C:\Users\Jo\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\S6TND16F\3[1].exe a variant of Win32/Kryptik.AHCR trojan cleaned by deleting - quarantined
C:\Users\Jo\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\S6TND16F\3[2].exe a variant of Win32/Kryptik.AHCR trojan cleaned by deleting - quarantined
C:\Users\Jo\AppData\Local\Temp\Temp1_Royal_Print_Label_UK38573932#.zip\Royal_Print_Label_UK38573932#.exe Win32/TrojanDownloader.Zortob.B trojan cleaned by deleting - quarantined
C:\Users\Jo\AppData\Local\Temp\Temp2_Royal_Print_Label_UK38573932#.zip\Royal_Print_Label_UK38573932#.exe Win32/TrojanDownloader.Zortob.B trojan cleaned by deleting - quarantined

Please let me know what I need to do next to fix the problem

Sam

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:29 AM

Posted 19 June 2012 - 09:59 AM

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log


Download

MiniToolBox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

Let me know if you still have pop ups

#5 Samdowner

Samdowner
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:12:29 PM

Posted 20 June 2012 - 04:33 AM

Seems We are all fixed now. No more popups!

Here's the log you requested.

MiniToolBox by Farbar Version: 09-06-2012
Ran by Jo (administrator) on 20-06-2012 at 10:31:02
Microsoft Windows 7 Professional Service Pack 1 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

127.0.0.1 102.112.2o7.net
127.0.0.1 102.112.2o7.net

========================= IP Configuration: ================================

Broadcom NetLink ™ Gigabit Ethernet = Local Area Connection (Connected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled
add route prefix=0.0.0.0/0 interface="Local Area Connection" nexthop=192.168.254.254 publish=Yes
add address name="Local Area Connection" address=192.168.254.56 mask=255.255.255.0


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : T21-WS5
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Broadcom NetLink ™ Gigabit Ethernet
Physical Address. . . . . . . . . : B8-AC-6F-C0-46-C8
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::31d4:f6f0:d836:68cb%10(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.254.56(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 192.168.254.254
DHCPv6 IAID . . . . . . . . . . . : 246983791
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-14-23-0A-2F-B8-AC-6F-C0-46-C8
DNS Servers . . . . . . . . . . . : 192.168.254.254
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.{C0728442-589A-414B-80EF-D3C71526CEBF}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 9:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:5ef5:73b8:30bb:1ea3:3f57:1c7(Preferred)
Link-local IPv6 Address . . . . . : fe80::30bb:1ea3:3f57:1c7%12(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled
Server: my.router
Address: 192.168.254.254

Name: google.com


Pinging google.com [173.194.34.174] with 32 bytes of data:
Reply from 173.194.34.174: bytes=32 time=43ms TTL=50
Reply from 173.194.34.174: bytes=32 time=30ms TTL=50

Ping statistics for 173.194.34.174:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 30ms, Maximum = 43ms, Average = 36ms
Server: my.router
Address: 192.168.254.254

Name: yahoo.com


Pinging yahoo.com [209.191.122.70] with 32 bytes of data:
Reply from 209.191.122.70: bytes=32 time=175ms TTL=43
Reply from 209.191.122.70: bytes=32 time=174ms TTL=43

Ping statistics for 209.191.122.70:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 174ms, Maximum = 175ms, Average = 174ms
Server: my.router
Address: 192.168.254.254

Name: bleepingcomputer.com


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Request timed out.
Request timed out.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 0, Lost = 2 (100% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
10...b8 ac 6f c0 46 c8 ......Broadcom NetLink ™ Gigabit Ethernet
1...........................Software Loopback Interface 1
11...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
12...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.254.254 192.168.254.56 266
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.254.0 255.255.255.0 On-link 192.168.254.56 266
192.168.254.56 255.255.255.255 On-link 192.168.254.56 266
192.168.254.255 255.255.255.255 On-link 192.168.254.56 266
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.254.56 266
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.254.56 266
===========================================================================
Persistent Routes:
Network Address Netmask Gateway Address Metric
0.0.0.0 0.0.0.0 192.168.254.254 Default
===========================================================================

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
12 58 ::/0 On-link
1 306 ::1/128 On-link
12 58 2001::/32 On-link
12 306 2001:0:5ef5:73b8:30bb:1ea3:3f57:1c7/128
On-link
10 266 fe80::/64 On-link
12 306 fe80::/64 On-link
12 306 fe80::30bb:1ea3:3f57:1c7/128
On-link
10 266 fe80::31d4:f6f0:d836:68cb/128
On-link
1 306 ff00::/8 On-link
12 306 ff00::/8 On-link
10 266 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\system32\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\system32\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\system32\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\System32\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\Windows\System32\winrnr.dll [20992] (Microsoft Corporation)
Catalog9 01 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 20 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (06/20/2012 09:47:33 AM) (Source: Application Hang) (User: )
Description: The program Au_.exe version 2.0.0.4003 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 1478

Start Time: 01cd4ec0f8f4668c

Termination Time: 2

Application Path: C:\Users\Jo\AppData\Local\Temp\~nsu.tmp\Au_.exe

Report Id:

Error: (06/20/2012 08:52:01 AM) (Source: SescLU) (User: )
Description: LiveUpdate returned a non-critical error. Available content updates may have failed to install.

Error: (06/20/2012 07:52:00 AM) (Source: SescLU) (User: )
Description: LiveUpdate returned a non-critical error. Available content updates may have failed to install.

Error: (06/20/2012 06:52:00 AM) (Source: SescLU) (User: )
Description: LiveUpdate returned a non-critical error. Available content updates may have failed to install.

Error: (06/20/2012 05:52:00 AM) (Source: SescLU) (User: )
Description: LiveUpdate returned a non-critical error. Available content updates may have failed to install.

Error: (06/20/2012 04:52:00 AM) (Source: SescLU) (User: )
Description: LiveUpdate returned a non-critical error. Available content updates may have failed to install.

Error: (06/20/2012 03:52:00 AM) (Source: SescLU) (User: )
Description: LiveUpdate returned a non-critical error. Available content updates may have failed to install.

Error: (06/20/2012 02:52:00 AM) (Source: SescLU) (User: )
Description: LiveUpdate returned a non-critical error. Available content updates may have failed to install.

Error: (06/20/2012 01:52:00 AM) (Source: SescLU) (User: )
Description: LiveUpdate returned a non-critical error. Available content updates may have failed to install.

Error: (06/20/2012 00:52:00 AM) (Source: SescLU) (User: )
Description: LiveUpdate returned a non-critical error. Available content updates may have failed to install.


System errors:
=============
Error: (06/20/2012 09:44:01 AM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
luafv

Error: (06/20/2012 09:43:22 AM) (Source: Service Control Manager) (User: )
Description: The DgiVecp service failed to start due to the following error:
%%2

Error: (06/20/2012 09:01:00 AM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
luafv

Error: (06/20/2012 09:00:43 AM) (Source: Service Control Manager) (User: )
Description: The DgiVecp service failed to start due to the following error:
%%2

Error: (06/19/2012 00:54:31 PM) (Source: DCOM) (User: )
Description: 1068fdPHost{D3DCB472-7261-43CE-924B-0704BD730D5F}

Error: (06/19/2012 00:54:31 PM) (Source: DCOM) (User: )
Description: 1068fdPHost{145B4335-FE2A-4927-A040-7C35AD3180EF}

Error: (06/19/2012 00:51:58 PM) (Source: DCOM) (User: )
Description: 1084LiveUpdate{03E0E6C2-363B-11D3-B536-00902771A435}

Error: (06/19/2012 00:42:09 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (06/19/2012 00:42:09 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (06/19/2012 00:42:09 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068


Microsoft Office Sessions:
=========================
Error: (05/02/2012 09:27:42 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 215 seconds with 180 seconds of active time. This session ended with a crash.


=========================== Installed Programs ============================

Adobe Flash Player 10 ActiveX (Version: 10.1.102.64)
Adobe Flash Player 11 Plugin (Version: 11.3.300.257)
Adobe Reader 9.5.1 (Version: 9.5.1)
Broadcom Gigabit NetLink Controller (Version: 12.33.02)
Broadcom Management Programs (Version: 12.35.01)
CCC (Version: 12.00.0000)
Dell Backup and Recovery Manager (Version: 1.3)
Dell Edoc Viewer (Version: 1.0.0)
ESET Online Scanner v3
FormsComponent (Version: 12.00.0000)
FOSS (Version: 12.50.0000)
ICCHelp (Version: 1.0.0.2)
Intel® Graphics Media Accelerator Driver (Version: 8.15.10.1995)
Java Auto Updater (Version: 2.0.6.1)
Java™ 6 Update 29 (Version: 6.0.290)
Junk Mail filter update (Version: 14.0.8089.726)
LaserCat 3
LiveUpdate 3.3 (Symantec Corporation) (Version: 3.3.0.92)
LogMeIn (Version: 4.1.2138)
Malwarebytes Anti-Malware version 1.61.0.1400 (Version: 1.61.0.1400)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Choice Guard (Version: 2.0.48.0)
Microsoft IntelliPoint 8.2 (Version: 8.20.468.0)
Microsoft IntelliType Pro 8.2 (Version: 8.20.469.0)
Microsoft Office Access MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Enterprise 2007 (Version: 12.0.4518.1014)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Groove MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Groove Setup Metadata MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office InfoPath MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proof (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proof (French) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Search Enhancement Pack (Version: 1.2.123.0)
Microsoft Silverlight (Version: 3.0.40624.0)
Microsoft SQL Server 2005
Microsoft SQL Server 2005 Backward compatibility (Version: 8.05.1054)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft SQL Server 2005 Express Edition (UPSWSDBSERVER) (Version: 9.3.4035.00)
Microsoft SQL Server Native Client (Version: 9.00.4035.00)
Microsoft SQL Server Setup Support Files (English) (Version: 9.00.4035.00)
Microsoft SQL Server VSS Writer (Version: 9.00.4035.00)
Microsoft Sync Framework Runtime Native v1.0 (x86) (Version: 1.0.1215.0)
Microsoft Sync Framework Services Native v1.0 (x86) (Version: 1.0.1215.0)
Mozilla Firefox 13.0.1 (x86 en-GB) (Version: 13.0.1)
Mozilla Maintenance Service (Version: 13.0.1)
MSIChecker (Version: 9.00.0000)
MSVCRT (Version: 14.0.1468.721)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
NA1Messenger (Version: 12.00.6000)
NRF (Version: 12.00.0000)
PolicyManager (Version: 12.00.0000)
Realtek High Definition Audio Driver (Version: 6.0.1.5936)
Reconciler (Version: 12.00.0000)
ReportServer (Version: 12.00.0000)
Roxio Creator Audio (Version: 3.7.0)
Roxio Creator Copy (Version: 3.7.0)
Roxio Creator Data (Version: 3.7.0)
Roxio Creator DE 10.3 (Version: 10.3)
Roxio Creator DE 10.3 (Version: 3.7.0)
Roxio Creator Tools (Version: 3.7.0)
Roxio Express Labeler 3 (Version: 3.2.2)
Roxio Update Manager (Version: 6.0.0)
Samsung CLP-310 Series
Secunia PSI (2.0.0.4003) (Version: 2.0.0.4003)
SupportUtility (Version: 12.00.0000)
Symantec Endpoint Protection Small Business Edition (Version: 12.0.1001.95)
System (Version: 12.00.0000)
T21 Client (Version: 4)
UnifiedPrinting (Version: 12.00.0000)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
UPS WorldShip (Version: 12.0)
UPSDB (Version: 12.00.0000)
UPSICC (Version: 1.0.0.16)
UPSlinkHTTP (Version: 1.0.0.13)
UPSVCMM (Version: 12.00.0000)
WebHelp (Version: 1.00.0000)
Windows Live Call (Version: 14.0.8064.0206)
Windows Live Communications Platform (Version: 14.0.8064.206)
Windows Live Essentials (Version: 14.0.8089.0726)
Windows Live Essentials (Version: 14.0.8089.726)
Windows Live Mail (Version: 14.0.8089.0726)
Windows Live Messenger (Version: 14.0.8089.0726)
Windows Live Movie Maker (Version: 14.0.8091.0730)
Windows Live Photo Gallery (Version: 14.0.8081.709)
Windows Live Sign-in Assistant (Version: 5.000.818.5)
Windows Live Sync (Version: 14.0.8089.726)
Windows Live Toolbar (Version: 14.0.8064.206)
Windows Live Upload Tool (Version: 14.0.8014.1029)
Windows Live Writer (Version: 14.0.8089.0726)
WorldShip (Version: 12.00.0000)

========================= Memory info: ===================================

Percentage of memory in use: 44%
Total physical RAM: 2012.8 MB
Available physical RAM: 1118.42 MB
Total Pagefile: 4025.61 MB
Available Pagefile: 3086.61 MB
Total Virtual: 2047.88 MB
Available Virtual: 1937.58 MB

========================= Partitions: =====================================

1 Drive c: (OS) (Fixed) (Total:288.23 GB) (Free:252.7 GB) NTFS
3 Drive e: (DATABAR) (Removable) (Total:7.45 GB) (Free:0 GB) FAT32

========================= Users: ========================================

User accounts for \\T21-WS5

Administrator Guest Jo
LogMeInRemoteUser mahesh Steve


**** End of log ****

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:29 AM

Posted 20 June 2012 - 10:47 AM

That looks good

Download

TFC


Launch it,it will close all running programs

click on START,it should ask for reboot

Turn off your system restore,restart the PC,create a new restore point

http://windows.microsoft.com/en-US/windows7/Turn-System-Restore-on-or-off

Update your JAVA from here

http://java.com/en/download/inc/windows_upgrade_xpi.jsp


Update your antivirus frequently,do not click on suspicious links

Safe surfing :)

#7 Samdowner

Samdowner
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:12:29 PM

Posted 21 June 2012 - 02:17 AM

Thanks for all of your help Narenxp.

Machine is up & running fine now :thumbsup:

Sam

#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:29 AM

Posted 21 June 2012 - 09:59 AM

You're most welcome :thumbsup:




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users