Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Sirefef trojan


  • Please log in to reply
3 replies to this topic

#1 tjosborne

tjosborne

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:04:07 AM

Posted 10 July 2012 - 10:32 PM

My laptop security keeps finding and removing the sirefef trojan, sirefef.gy and sirefef.ga. The security gives me the option for details or close but it keeps popping up no matter which I pick. About 2 months ago internet explorer was redirecting me to adaware sites but I ran malawarebytes and it stoped, since then everything was seemingly fine until about an hour ago. Help? Thanks!

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:04:07 AM

Posted 10 July 2012 - 10:42 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)



Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner


Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 tjosborne

tjosborne
  • Topic Starter

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:04:07 AM

Posted 11 July 2012 - 01:17 PM

Sorry if this double posts, thanks for the help! PC is still continually removing virus.

00:08:51.0976 6664 TDSS rootkit removing tool 2.7.45.0 Jul 9 2012 12:46:35
00:08:52.0490 6664 ============================================================
00:08:52.0490 6664 Current date / time: 2012/07/11 00:08:52.0490
00:08:52.0490 6664 SystemInfo:
00:08:52.0490 6664
00:08:52.0490 6664 OS Version: 6.1.7601 ServicePack: 1.0
00:08:52.0490 6664 Product type: Workstation
00:08:52.0490 6664 ComputerName: JODIE-PC
00:08:52.0490 6664 UserName: Jodie
00:08:52.0490 6664 Windows directory: C:\windows
00:08:52.0490 6664 System windows directory: C:\windows
00:08:52.0490 6664 Running under WOW64
00:08:52.0490 6664 Processor architecture: Intel x64
00:08:52.0490 6664 Number of processors: 2
00:08:52.0490 6664 Page size: 0x1000
00:08:52.0490 6664 Boot type: Normal boot
00:08:52.0490 6664 ============================================================
00:08:58.0294 6664 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
00:08:58.0294 6664 ============================================================
00:08:58.0294 6664 \Device\Harddisk0\DR0:
00:08:58.0294 6664 MBR partitions:
00:08:58.0294 6664 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x2EE800, BlocksNum 0x1BAB8800
00:08:58.0294 6664 ============================================================
00:08:58.0325 6664 C: <-> \Device\Harddisk0\DR0\Partition0
00:08:58.0325 6664 ============================================================
00:08:58.0325 6664 Initialize success
00:08:58.0325 6664 ============================================================
00:09:13.0353 3836 ============================================================
00:09:13.0353 3836 Scan started
00:09:13.0353 3836 Mode: Manual;
00:09:13.0353 3836 ============================================================
00:09:17.0924 3836 1394ohci (a87d604aea360176311474c87a63bb88) C:\windows\system32\drivers\1394ohci.sys
00:09:17.0939 3836 1394ohci - ok
00:09:18.0267 3836 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\windows\system32\drivers\ACPI.sys
00:09:18.0282 3836 ACPI - ok
00:09:18.0345 3836 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\windows\system32\drivers\acpipmi.sys
00:09:18.0345 3836 AcpiPmi - ok
00:09:18.0579 3836 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
00:09:18.0579 3836 AdobeARMservice - ok
00:09:18.0735 3836 AdobeFlashPlayerUpdateSvc (990dc6edc9f933194d7cd4e65146bc94) C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
00:09:18.0735 3836 AdobeFlashPlayerUpdateSvc - ok
00:09:18.0891 3836 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\windows\system32\DRIVERS\adp94xx.sys
00:09:18.0969 3836 adp94xx - ok
00:09:19.0000 3836 adpahci (597f78224ee9224ea1a13d6350ced962) C:\windows\system32\DRIVERS\adpahci.sys
00:09:19.0016 3836 adpahci - ok
00:09:19.0140 3836 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\windows\system32\DRIVERS\adpu320.sys
00:09:19.0203 3836 adpu320 - ok
00:09:19.0250 3836 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\windows\System32\aelupsvc.dll
00:09:19.0250 3836 AeLookupSvc - ok
00:09:19.0608 3836 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\windows\system32\drivers\afd.sys
00:09:19.0624 3836 AFD - ok
00:09:19.0733 3836 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\windows\system32\drivers\agp440.sys
00:09:19.0733 3836 agp440 - ok
00:09:19.0842 3836 ALG (3290d6946b5e30e70414990574883ddb) C:\windows\System32\alg.exe
00:09:19.0874 3836 ALG - ok
00:09:19.0920 3836 Scan interrupted by user!
00:09:19.0920 3836 Scan interrupted by user!
00:09:19.0920 3836 Scan interrupted by user!
00:09:19.0920 3836 ============================================================
00:09:19.0920 3836 Scan finished
00:09:19.0920 3836 ============================================================
00:09:19.0952 4312 Detected object count: 0
00:09:19.0952 4312 Actual detected object count: 0
00:09:20.0248 6552 ============================================================
00:09:20.0248 6552 Scan started
00:09:20.0248 6552 Mode: Manual;
00:09:20.0248 6552 ============================================================
00:09:20.0934 6552 1394ohci (a87d604aea360176311474c87a63bb88) C:\windows\system32\drivers\1394ohci.sys
00:09:20.0950 6552 1394ohci - ok
00:09:20.0966 6552 Scan interrupted by user!
00:09:20.0966 6552 Scan interrupted by user!
00:09:20.0966 6552 Scan interrupted by user!
00:09:20.0966 6552 ============================================================
00:09:20.0966 6552 Scan finished
00:09:20.0966 6552 ============================================================
00:09:20.0997 3912 Detected object count: 0
00:09:20.0997 3912 Actual detected object count: 0
00:09:43.0835 4400 ============================================================
00:09:43.0835 4400 Scan started
00:09:43.0835 4400 Mode: Manual; TDLFS;
00:09:43.0835 4400 ============================================================
00:09:44.0210 4400 1394ohci (a87d604aea360176311474c87a63bb88) C:\windows\system32\drivers\1394ohci.sys
00:09:44.0210 4400 1394ohci - ok
00:09:44.0428 4400 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\windows\system32\drivers\ACPI.sys
00:09:44.0428 4400 ACPI - ok
00:09:44.0568 4400 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\windows\system32\drivers\acpipmi.sys
00:09:44.0568 4400 AcpiPmi - ok
00:09:44.0849 4400 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
00:09:44.0849 4400 AdobeARMservice - ok
00:09:45.0036 4400 AdobeFlashPlayerUpdateSvc (990dc6edc9f933194d7cd4e65146bc94) C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
00:09:45.0036 4400 AdobeFlashPlayerUpdateSvc - ok
00:09:45.0099 4400 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\windows\system32\DRIVERS\adp94xx.sys
00:09:45.0114 4400 adp94xx - ok
00:09:45.0161 4400 adpahci (597f78224ee9224ea1a13d6350ced962) C:\windows\system32\DRIVERS\adpahci.sys
00:09:45.0161 4400 adpahci - ok
00:09:45.0192 4400 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\windows\system32\DRIVERS\adpu320.sys
00:09:45.0192 4400 adpu320 - ok
00:09:45.0239 4400 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\windows\System32\aelupsvc.dll
00:09:45.0239 4400 AeLookupSvc - ok
00:09:45.0317 4400 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\windows\system32\drivers\afd.sys
00:09:45.0317 4400 AFD - ok
00:09:45.0348 4400 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\windows\system32\drivers\agp440.sys
00:09:45.0348 4400 agp440 - ok
00:09:45.0380 4400 ALG (3290d6946b5e30e70414990574883ddb) C:\windows\System32\alg.exe
00:09:45.0380 4400 ALG - ok
00:09:45.0395 4400 aliide (5812713a477a3ad7363c7438ca2ee038) C:\windows\system32\drivers\aliide.sys
00:09:45.0411 4400 aliide - ok
00:09:45.0473 4400 AMD External Events Utility (57b773d82e8cc3c6d7e02cc8a6632043) C:\windows\system32\atiesrxx.exe
00:09:45.0489 4400 AMD External Events Utility - ok
00:09:45.0536 4400 amdide (1ff8b4431c353ce385c875f194924c0c) C:\windows\system32\drivers\amdide.sys
00:09:45.0536 4400 amdide - ok
00:09:45.0614 4400 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\windows\system32\DRIVERS\amdk8.sys
00:09:45.0676 4400 AmdK8 - ok
00:09:46.0284 4400 amdkmdag (aefaf27f1b7e52c705df4fb6c96732f6) C:\windows\system32\DRIVERS\atipmdag.sys
00:09:46.0565 4400 amdkmdag - ok
00:09:46.0862 4400 amdkmdap (8149db73be27950ec72767a1193153a6) C:\windows\system32\DRIVERS\atikmpag.sys
00:09:46.0862 4400 amdkmdap - ok
00:09:46.0893 4400 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\windows\system32\DRIVERS\amdppm.sys
00:09:46.0893 4400 AmdPPM - ok
00:09:46.0955 4400 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\windows\system32\drivers\amdsata.sys
00:09:47.0002 4400 amdsata - ok
00:09:47.0033 4400 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\windows\system32\DRIVERS\amdsbs.sys
00:09:47.0080 4400 amdsbs - ok
00:09:47.0096 4400 amdxata (540daf1cea6094886d72126fd7c33048) C:\windows\system32\drivers\amdxata.sys
00:09:47.0127 4400 amdxata - ok
00:09:47.0189 4400 AppID (89a69c3f2f319b43379399547526d952) C:\windows\system32\drivers\appid.sys
00:09:47.0205 4400 AppID - ok
00:09:47.0252 4400 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\windows\System32\appidsvc.dll
00:09:47.0252 4400 AppIDSvc - ok
00:09:47.0314 4400 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\windows\System32\appinfo.dll
00:09:47.0314 4400 Appinfo - ok
00:09:47.0376 4400 arc (c484f8ceb1717c540242531db7845c4e) C:\windows\system32\DRIVERS\arc.sys
00:09:47.0376 4400 arc - ok
00:09:47.0392 4400 arcsas (019af6924aefe7839f61c830227fe79c) C:\windows\system32\DRIVERS\arcsas.sys
00:09:47.0408 4400 arcsas - ok
00:09:47.0454 4400 AsyncMac (769765ce2cc62867468cea93969b2242) C:\windows\system32\DRIVERS\asyncmac.sys
00:09:47.0454 4400 AsyncMac - ok
00:09:47.0501 4400 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\windows\system32\drivers\atapi.sys
00:09:47.0501 4400 atapi - ok
00:09:47.0564 4400 AtiPcie (7c5d273e29dcc5505469b299c6f29163) C:\windows\system32\DRIVERS\AtiPcie.sys
00:09:47.0579 4400 AtiPcie - ok
00:09:47.0673 4400 atksgt (f88ef61bcd43addf2c9555430c16cd96) C:\windows\system32\DRIVERS\atksgt.sys
00:09:47.0751 4400 atksgt - ok
00:09:47.0860 4400 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\windows\System32\Audiosrv.dll
00:09:47.0907 4400 AudioEndpointBuilder - ok
00:09:47.0922 4400 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\windows\System32\Audiosrv.dll
00:09:47.0938 4400 AudioSrv - ok
00:09:48.0000 4400 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\windows\System32\AxInstSV.dll
00:09:48.0000 4400 AxInstSV - ok
00:09:48.0078 4400 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\windows\system32\DRIVERS\bxvbda.sys
00:09:48.0110 4400 b06bdrv - ok
00:09:48.0172 4400 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\windows\system32\DRIVERS\b57nd60a.sys
00:09:48.0188 4400 b57nd60a - ok
00:09:48.0312 4400 BBSvc (825f81a6f7dd073509db101f0ba6dc59) C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE
00:09:48.0328 4400 BBSvc - ok
00:09:48.0359 4400 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\windows\System32\bdesvc.dll
00:09:48.0375 4400 BDESVC - ok
00:09:48.0406 4400 Beep (16a47ce2decc9b099349a5f840654746) C:\windows\system32\drivers\Beep.sys
00:09:48.0422 4400 Beep - ok
00:09:48.0546 4400 BFE (82974d6a2fd19445cc5171fc378668a4) C:\windows\System32\bfe.dll
00:09:48.0578 4400 BFE - ok
00:09:48.0671 4400 BITS (1ea7969e3271cbc59e1730697dc74682) C:\windows\System32\qmgr.dll
00:09:48.0734 4400 BITS - ok
00:09:48.0796 4400 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\windows\system32\DRIVERS\blbdrive.sys
00:09:48.0827 4400 blbdrive - ok
00:09:48.0874 4400 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\windows\system32\DRIVERS\bowser.sys
00:09:48.0890 4400 bowser - ok
00:09:48.0936 4400 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\windows\system32\DRIVERS\BrFiltLo.sys
00:09:48.0983 4400 BrFiltLo - ok
00:09:49.0046 4400 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\windows\system32\DRIVERS\BrFiltUp.sys
00:09:49.0046 4400 BrFiltUp - ok
00:09:49.0108 4400 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\windows\System32\browser.dll
00:09:49.0124 4400 Browser - ok
00:09:49.0170 4400 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\windows\System32\Drivers\Brserid.sys
00:09:49.0186 4400 Brserid - ok
00:09:49.0202 4400 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\windows\System32\Drivers\BrSerWdm.sys
00:09:49.0217 4400 BrSerWdm - ok
00:09:49.0233 4400 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\windows\System32\Drivers\BrUsbMdm.sys
00:09:49.0233 4400 BrUsbMdm - ok
00:09:49.0248 4400 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\windows\System32\Drivers\BrUsbSer.sys
00:09:49.0264 4400 BrUsbSer - ok
00:09:49.0280 4400 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\windows\system32\DRIVERS\bthmodem.sys
00:09:49.0295 4400 BTHMODEM - ok
00:09:49.0342 4400 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\windows\system32\bthserv.dll
00:09:49.0373 4400 bthserv - ok
00:09:49.0404 4400 cdfs (b8bd2bb284668c84865658c77574381a) C:\windows\system32\DRIVERS\cdfs.sys
00:09:49.0420 4400 cdfs - ok
00:09:49.0482 4400 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\windows\system32\drivers\cdrom.sys
00:09:49.0482 4400 cdrom - ok
00:09:49.0545 4400 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\windows\System32\certprop.dll
00:09:49.0592 4400 CertPropSvc - ok
00:09:49.0670 4400 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\windows\system32\DRIVERS\circlass.sys
00:09:49.0670 4400 circlass - ok
00:09:49.0748 4400 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\windows\system32\CLFS.sys
00:09:49.0794 4400 CLFS - ok
00:09:49.0888 4400 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
00:09:49.0904 4400 clr_optimization_v2.0.50727_32 - ok
00:09:49.0966 4400 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
00:09:49.0982 4400 clr_optimization_v2.0.50727_64 - ok
00:09:50.0075 4400 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
00:09:50.0091 4400 clr_optimization_v4.0.30319_32 - ok
00:09:50.0262 4400 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
00:09:50.0262 4400 clr_optimization_v4.0.30319_64 - ok
00:09:50.0356 4400 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\windows\system32\DRIVERS\CmBatt.sys
00:09:50.0356 4400 CmBatt - ok
00:09:50.0418 4400 cmdide (e19d3f095812725d88f9001985b94edd) C:\windows\system32\drivers\cmdide.sys
00:09:50.0434 4400 cmdide - ok
00:09:50.0496 4400 CNG (c4943b6c962e4b82197542447ad599f4) C:\windows\system32\Drivers\cng.sys
00:09:50.0606 4400 CNG - ok
00:09:50.0730 4400 CnxtHdAudService (25c58ee97be0416a373e3e4f855206b5) C:\windows\system32\drivers\CHDRT64.sys
00:09:50.0762 4400 CnxtHdAudService - ok
00:09:50.0808 4400 Compbatt (102de219c3f61415f964c88e9085ad14) C:\windows\system32\DRIVERS\compbatt.sys
00:09:50.0840 4400 Compbatt - ok
00:09:50.0902 4400 CompositeBus (03edb043586cceba243d689bdda370a8) C:\windows\system32\drivers\CompositeBus.sys
00:09:50.0902 4400 CompositeBus - ok
00:09:50.0918 4400 COMSysApp - ok
00:09:50.0949 4400 crcdisk (1c827878a998c18847245fe1f34ee597) C:\windows\system32\DRIVERS\crcdisk.sys
00:09:50.0964 4400 crcdisk - ok
00:09:51.0027 4400 CryptSvc (4f5414602e2544a4554d95517948b705) C:\windows\system32\cryptsvc.dll
00:09:51.0105 4400 CryptSvc - ok
00:09:51.0183 4400 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\windows\system32\rpcss.dll
00:09:51.0198 4400 DcomLaunch - ok
00:09:51.0261 4400 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\windows\System32\defragsvc.dll
00:09:51.0276 4400 defragsvc - ok
00:09:51.0339 4400 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\windows\system32\Drivers\dfsc.sys
00:09:51.0370 4400 DfsC - ok
00:09:51.0448 4400 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\windows\system32\dhcpcore.dll
00:09:51.0464 4400 Dhcp - ok
00:09:51.0495 4400 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\windows\system32\drivers\discache.sys
00:09:51.0510 4400 discache - ok
00:09:51.0573 4400 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\windows\system32\DRIVERS\disk.sys
00:09:51.0635 4400 Disk - ok
00:09:51.0698 4400 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\windows\System32\dnsrslvr.dll
00:09:51.0713 4400 Dnscache - ok
00:09:51.0776 4400 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\windows\System32\dot3svc.dll
00:09:51.0791 4400 dot3svc - ok
00:09:51.0854 4400 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\windows\system32\dps.dll
00:09:51.0854 4400 DPS - ok
00:09:51.0916 4400 drmkaud (9b19f34400d24df84c858a421c205754) C:\windows\system32\drivers\drmkaud.sys
00:09:51.0916 4400 drmkaud - ok
00:09:52.0212 4400 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\windows\System32\drivers\dxgkrnl.sys
00:09:52.0259 4400 DXGKrnl - ok
00:09:52.0290 4400 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\windows\System32\eapsvc.dll
00:09:52.0306 4400 EapHost - ok
00:09:52.0602 4400 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\windows\system32\DRIVERS\evbda.sys
00:09:52.0712 4400 ebdrv - ok
00:09:52.0868 4400 EFS (c118a82cd78818c29ab228366ebf81c3) C:\windows\System32\lsass.exe
00:09:52.0868 4400 EFS - ok
00:09:52.0992 4400 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\windows\ehome\ehRecvr.exe
00:09:53.0008 4400 ehRecvr - ok
00:09:53.0039 4400 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\windows\ehome\ehsched.exe
00:09:53.0039 4400 ehSched - ok
00:09:53.0133 4400 elxstor (0e5da5369a0fcaea12456dd852545184) C:\windows\system32\DRIVERS\elxstor.sys
00:09:53.0195 4400 elxstor - ok
00:09:53.0242 4400 ErrDev (34a3c54752046e79a126e15c51db409b) C:\windows\system32\drivers\errdev.sys
00:09:53.0258 4400 ErrDev - ok
00:09:53.0336 4400 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\windows\system32\es.dll
00:09:53.0351 4400 EventSystem - ok
00:09:53.0398 4400 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\windows\system32\drivers\exfat.sys
00:09:53.0414 4400 exfat - ok
00:09:53.0570 4400 F-Secure Gatekeeper (169897de484a79120af8c201883efdc4) C:\Program Files (x86)\Frontier\Security\Anti-Virus\minifilter\fsgk.sys
00:09:53.0585 4400 F-Secure Gatekeeper - ok
00:09:53.0663 4400 F-Secure Gatekeeper Handler Starter (0e20090f2d329ff4613625ffd79e94b5) C:\Program Files (x86)\Frontier\Security\Anti-Virus\fsgk32st.exe
00:09:53.0663 4400 F-Secure Gatekeeper Handler Starter - ok
00:09:53.0741 4400 F-Secure HIPS (1a3f97f11a51c70aea89e3160a2ffd4e) C:\Program Files (x86)\Frontier\Security\HIPS\drivers\fshs.sys
00:09:53.0741 4400 F-Secure HIPS - ok
00:09:53.0772 4400 fastfat (0adc83218b66a6db380c330836f3e36d) C:\windows\system32\drivers\fastfat.sys
00:09:53.0788 4400 fastfat - ok
00:09:53.0882 4400 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\windows\system32\fxssvc.exe
00:09:53.0913 4400 Fax - ok
00:09:53.0944 4400 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\windows\system32\DRIVERS\fdc.sys
00:09:53.0944 4400 fdc - ok
00:09:53.0991 4400 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\windows\system32\fdPHost.dll
00:09:53.0991 4400 fdPHost - ok
00:09:54.0006 4400 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\windows\system32\fdrespub.dll
00:09:54.0053 4400 FDResPub - ok
00:09:54.0100 4400 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\windows\system32\drivers\fileinfo.sys
00:09:54.0100 4400 FileInfo - ok
00:09:54.0131 4400 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\windows\system32\drivers\filetrace.sys
00:09:54.0131 4400 Filetrace - ok
00:09:54.0147 4400 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\windows\system32\DRIVERS\flpydisk.sys
00:09:54.0162 4400 flpydisk - ok
00:09:54.0240 4400 FltMgr (da6b67270fd9db3697b20fce94950741) C:\windows\system32\drivers\fltmgr.sys
00:09:54.0287 4400 FltMgr - ok
00:09:54.0412 4400 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\windows\system32\FntCache.dll
00:09:54.0474 4400 FontCache - ok
00:09:54.0584 4400 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
00:09:54.0584 4400 FontCache3.0.0.0 - ok
00:09:54.0677 4400 fsbts (d5c492752fccb61bffae361c82f914ac) C:\windows\system32\Drivers\fsbts.sys
00:09:54.0708 4400 fsbts - ok
00:09:54.0740 4400 FsDepends (d43703496149971890703b4b1b723eac) C:\windows\system32\drivers\FsDepends.sys
00:09:54.0755 4400 FsDepends - ok
00:09:54.0927 4400 FSDFWD (a8db1af53bfd6fb6d466d88d94d00bb4) C:\Program Files (x86)\Frontier\Security\FWES\Program\fsdfwd.exe
00:09:54.0958 4400 FSDFWD - ok
00:09:55.0005 4400 FSES (06c487127857ca7dd0bb6051d454dd90) C:\windows\system32\drivers\fses.sys
00:09:55.0020 4400 FSES - ok
00:09:55.0067 4400 FSFW (26b967bfe370c8c2a33725f40291a6ff) C:\windows\system32\drivers\fsdfw.sys
00:09:55.0067 4400 FSFW - ok
00:09:55.0161 4400 FSMA (efc6192c76cd7067958d5dce14ef92df) C:\Program Files (x86)\Frontier\Security\Common\FSMA32.EXE
00:09:55.0176 4400 FSMA - ok
00:09:55.0254 4400 FSORSPClient (42aef6a385354aca65fc210ce7ce4d7c) C:\Program Files (x86)\Frontier\Security\ORSP Client\fsorsp.exe
00:09:55.0254 4400 FSORSPClient - ok
00:09:55.0317 4400 fssfltr (07da62c960ddccc2d35836aeab4fc578) C:\windows\system32\DRIVERS\fssfltr.sys
00:09:55.0317 4400 fssfltr - ok
00:09:55.0566 4400 fsssvc (28ddeeec44e988657b732cf404d504cb) C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
00:09:55.0613 4400 fsssvc - ok
00:09:55.0722 4400 fsvista (bdcf33803e78f13a86d7e90b435907e0) C:\Program Files (x86)\Frontier\Security\Anti-Virus\minifilter\fsvista.sys
00:09:55.0722 4400 fsvista - ok
00:09:55.0878 4400 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\windows\system32\drivers\Fs_Rec.sys
00:09:55.0910 4400 Fs_Rec - ok
00:09:55.0988 4400 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\windows\system32\DRIVERS\fvevol.sys
00:09:56.0003 4400 fvevol - ok
00:09:56.0050 4400 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\windows\system32\DRIVERS\gagp30kx.sys
00:09:56.0050 4400 gagp30kx - ok
00:09:56.0112 4400 GameConsoleService (ce16683cfd11fe70bde435dda5ea1fca) C:\Program Files (x86)\TOSHIBA Games\TOSHIBA Game Console\GameConsoleService.exe
00:09:56.0190 4400 GameConsoleService - ok
00:09:56.0268 4400 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\windows\System32\gpsvc.dll
00:09:56.0331 4400 gpsvc - ok
00:09:56.0409 4400 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
00:09:56.0424 4400 gupdate - ok
00:09:56.0487 4400 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
00:09:56.0487 4400 gupdatem - ok
00:09:56.0549 4400 gusvc (cc839e8d766cc31a7710c9f38cf3e375) C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
00:09:56.0565 4400 gusvc - ok
00:09:56.0627 4400 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\windows\system32\drivers\hcw85cir.sys
00:09:56.0627 4400 hcw85cir - ok
00:09:56.0705 4400 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\windows\system32\drivers\HdAudio.sys
00:09:56.0768 4400 HdAudAddService - ok
00:09:56.0892 4400 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\windows\system32\drivers\HDAudBus.sys
00:09:56.0908 4400 HDAudBus - ok
00:09:56.0939 4400 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\windows\system32\DRIVERS\HidBatt.sys
00:09:56.0970 4400 HidBatt - ok
00:09:56.0986 4400 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\windows\system32\DRIVERS\hidbth.sys
00:09:56.0986 4400 HidBth - ok
00:09:57.0048 4400 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\windows\system32\DRIVERS\hidir.sys
00:09:57.0048 4400 HidIr - ok
00:09:57.0126 4400 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\windows\system32\hidserv.dll
00:09:57.0173 4400 hidserv - ok
00:09:57.0251 4400 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\windows\system32\DRIVERS\hidusb.sys
00:09:57.0251 4400 HidUsb - ok
00:09:57.0298 4400 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\windows\system32\kmsvc.dll
00:09:57.0329 4400 hkmsvc - ok
00:09:57.0376 4400 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\windows\system32\ListSvc.dll
00:09:57.0438 4400 HomeGroupListener - ok
00:09:57.0485 4400 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\windows\system32\provsvc.dll
00:09:57.0485 4400 HomeGroupProvider - ok
00:09:57.0548 4400 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\windows\system32\drivers\HpSAMD.sys
00:09:57.0626 4400 HpSAMD - ok
00:09:57.0797 4400 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\windows\system32\drivers\HTTP.sys
00:09:57.0828 4400 HTTP - ok
00:09:57.0906 4400 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\windows\system32\drivers\hwpolicy.sys
00:09:57.0922 4400 hwpolicy - ok
00:09:58.0016 4400 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\windows\system32\drivers\i8042prt.sys
00:09:58.0016 4400 i8042prt - ok
00:09:58.0109 4400 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\windows\system32\drivers\iaStorV.sys
00:09:58.0172 4400 iaStorV - ok
00:09:58.0281 4400 IDriverT (1cf03c69b49acb70c722df92755c0c8c) C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
00:09:58.0343 4400 IDriverT - ok
00:09:58.0484 4400 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
00:09:58.0499 4400 idsvc - ok
00:09:58.0608 4400 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\windows\system32\DRIVERS\iirsp.sys
00:09:58.0624 4400 iirsp - ok
00:09:58.0702 4400 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\windows\System32\ikeext.dll
00:09:58.0733 4400 IKEEXT - ok
00:09:58.0780 4400 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\windows\system32\drivers\intelide.sys
00:09:58.0967 4400 intelide - ok
00:09:58.0998 4400 intelppm (ada036632c664caa754079041cf1f8c1) C:\windows\system32\DRIVERS\intelppm.sys
00:09:58.0998 4400 intelppm - ok
00:09:59.0045 4400 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\windows\system32\ipbusenum.dll
00:09:59.0045 4400 IPBusEnum - ok
00:09:59.0092 4400 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\windows\system32\DRIVERS\ipfltdrv.sys
00:09:59.0092 4400 IpFilterDriver - ok
00:09:59.0170 4400 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\windows\System32\iphlpsvc.dll
00:09:59.0186 4400 iphlpsvc - ok
00:09:59.0217 4400 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\windows\system32\drivers\IPMIDrv.sys
00:09:59.0232 4400 IPMIDRV - ok
00:09:59.0264 4400 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\windows\system32\drivers\ipnat.sys
00:09:59.0264 4400 IPNAT - ok
00:09:59.0295 4400 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\windows\system32\drivers\irenum.sys
00:09:59.0326 4400 IRENUM - ok
00:09:59.0342 4400 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\windows\system32\drivers\isapnp.sys
00:09:59.0357 4400 isapnp - ok
00:09:59.0388 4400 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\windows\system32\drivers\msiscsi.sys
00:09:59.0420 4400 iScsiPrt - ok
00:09:59.0451 4400 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\windows\system32\drivers\kbdclass.sys
00:09:59.0451 4400 kbdclass - ok
00:09:59.0513 4400 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\windows\system32\drivers\kbdhid.sys
00:09:59.0513 4400 kbdhid - ok
00:09:59.0560 4400 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\windows\system32\lsass.exe
00:09:59.0560 4400 KeyIso - ok
00:09:59.0576 4400 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\windows\system32\Drivers\ksecdd.sys
00:09:59.0622 4400 KSecDD - ok
00:09:59.0669 4400 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\windows\system32\Drivers\ksecpkg.sys
00:09:59.0716 4400 KSecPkg - ok
00:09:59.0763 4400 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\windows\system32\drivers\ksthunk.sys
00:09:59.0763 4400 ksthunk - ok
00:09:59.0841 4400 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\windows\system32\msdtckrm.dll
00:09:59.0841 4400 KtmRm - ok
00:09:59.0903 4400 L1C (55480b9c63f3f91a8ebbadcbf28fe581) C:\windows\system32\DRIVERS\L1C62x64.sys
00:09:59.0919 4400 L1C - ok
00:09:59.0981 4400 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\windows\system32\srvsvc.dll
00:09:59.0997 4400 LanmanServer - ok
00:10:00.0044 4400 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\windows\System32\wkssvc.dll
00:10:00.0059 4400 LanmanWorkstation - ok
00:10:00.0122 4400 lirsgt (8e4ca9afd55ef6b509c80a8715abf8c6) C:\windows\system32\DRIVERS\lirsgt.sys
00:10:00.0137 4400 lirsgt - ok
00:10:00.0184 4400 lltdio (1538831cf8ad2979a04c423779465827) C:\windows\system32\DRIVERS\lltdio.sys
00:10:00.0184 4400 lltdio - ok
00:10:00.0231 4400 lltdsvc (c1185803384ab3feed115f79f109427f) C:\windows\System32\lltdsvc.dll
00:10:00.0246 4400 lltdsvc - ok
00:10:00.0278 4400 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\windows\System32\lmhsvc.dll
00:10:00.0309 4400 lmhosts - ok
00:10:00.0356 4400 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\windows\system32\DRIVERS\lsi_fc.sys
00:10:00.0356 4400 LSI_FC - ok
00:10:00.0387 4400 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\windows\system32\DRIVERS\lsi_sas.sys
00:10:00.0418 4400 LSI_SAS - ok
00:10:00.0434 4400 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\windows\system32\DRIVERS\lsi_sas2.sys
00:10:00.0434 4400 LSI_SAS2 - ok
00:10:00.0465 4400 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\windows\system32\DRIVERS\lsi_scsi.sys
00:10:00.0465 4400 LSI_SCSI - ok
00:10:00.0512 4400 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\windows\system32\drivers\luafv.sys
00:10:00.0512 4400 luafv - ok
00:10:00.0668 4400 lxduCATSCustConnectService (4208b958e35f0e596aa241efb664636b) C:\windows\system32\spool\DRIVERS\x64\3\\lxduserv.exe
00:10:00.0668 4400 lxduCATSCustConnectService - ok
00:10:00.0699 4400 lxdu_device - ok
00:10:00.0777 4400 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\windows\system32\Mcx2Svc.dll
00:10:00.0792 4400 Mcx2Svc - ok
00:10:00.0917 4400 MDM (11f714f85530a2bd134074dc30e99fca) C:\Program Files (x86)\Common Files\Microsoft Shared\VS7Debug\mdm.exe
00:10:00.0933 4400 MDM - ok
00:10:00.0980 4400 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\windows\system32\DRIVERS\megasas.sys
00:10:00.0995 4400 megasas - ok
00:10:01.0026 4400 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\windows\system32\DRIVERS\MegaSR.sys
00:10:01.0073 4400 MegaSR - ok
00:10:01.0136 4400 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\windows\system32\mmcss.dll
00:10:01.0136 4400 MMCSS - ok
00:10:01.0136 4400 Modem (800ba92f7010378b09f9ed9270f07137) C:\windows\system32\drivers\modem.sys
00:10:01.0151 4400 Modem - ok
00:10:01.0182 4400 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\windows\system32\DRIVERS\monitor.sys
00:10:01.0198 4400 monitor - ok
00:10:01.0260 4400 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\windows\system32\DRIVERS\mouclass.sys
00:10:01.0260 4400 mouclass - ok
00:10:01.0307 4400 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\windows\system32\DRIVERS\mouhid.sys
00:10:01.0323 4400 mouhid - ok
00:10:01.0370 4400 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\windows\system32\drivers\mountmgr.sys
00:10:01.0385 4400 mountmgr - ok
00:10:01.0448 4400 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\windows\system32\drivers\mpio.sys
00:10:01.0479 4400 mpio - ok
00:10:01.0510 4400 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\windows\system32\drivers\mpsdrv.sys
00:10:01.0526 4400 mpsdrv - ok
00:10:01.0760 4400 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\windows\system32\mpssvc.dll
00:10:01.0838 4400 MpsSvc - ok
00:10:01.0884 4400 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\windows\system32\drivers\mrxdav.sys
00:10:02.0228 4400 MRxDAV - ok
00:10:02.0259 4400 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\windows\system32\DRIVERS\mrxsmb.sys
00:10:02.0337 4400 mrxsmb - ok
00:10:02.0384 4400 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\windows\system32\DRIVERS\mrxsmb10.sys
00:10:02.0399 4400 mrxsmb10 - ok
00:10:02.0415 4400 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\windows\system32\DRIVERS\mrxsmb20.sys
00:10:02.0430 4400 mrxsmb20 - ok
00:10:02.0477 4400 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\windows\system32\drivers\msahci.sys
00:10:02.0493 4400 msahci - ok
00:10:02.0524 4400 msdsm (db801a638d011b9633829eb6f663c900) C:\windows\system32\drivers\msdsm.sys
00:10:02.0540 4400 msdsm - ok
00:10:02.0602 4400 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\windows\System32\msdtc.exe
00:10:02.0758 4400 MSDTC - ok
00:10:02.0789 4400 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\windows\system32\drivers\Msfs.sys
00:10:02.0789 4400 Msfs - ok
00:10:02.0820 4400 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\windows\System32\drivers\mshidkmdf.sys
00:10:02.0820 4400 mshidkmdf - ok
00:10:02.0836 4400 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\windows\system32\drivers\msisadrv.sys
00:10:02.0867 4400 msisadrv - ok
00:10:02.0945 4400 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\windows\system32\iscsiexe.dll
00:10:02.0961 4400 MSiSCSI - ok
00:10:02.0976 4400 msiserver - ok
00:10:03.0023 4400 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\windows\system32\drivers\MSKSSRV.sys
00:10:03.0039 4400 MSKSSRV - ok
00:10:03.0039 4400 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\windows\system32\drivers\MSPCLOCK.sys
00:10:03.0039 4400 MSPCLOCK - ok
00:10:03.0054 4400 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\windows\system32\drivers\MSPQM.sys
00:10:03.0070 4400 MSPQM - ok
00:10:03.0195 4400 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\windows\system32\drivers\MsRPC.sys
00:10:03.0257 4400 MsRPC - ok
00:10:03.0304 4400 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\windows\system32\drivers\mssmbios.sys
00:10:03.0304 4400 mssmbios - ok
00:10:03.0366 4400 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\windows\system32\drivers\MSTEE.sys
00:10:03.0366 4400 MSTEE - ok
00:10:03.0398 4400 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\windows\system32\DRIVERS\MTConfig.sys
00:10:03.0413 4400 MTConfig - ok
00:10:03.0429 4400 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\windows\system32\Drivers\mup.sys
00:10:03.0444 4400 Mup - ok
00:10:03.0616 4400 napagent (582ac6d9873e31dfa28a4547270862dd) C:\windows\system32\qagentRT.dll
00:10:03.0647 4400 napagent - ok
00:10:03.0788 4400 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\windows\system32\DRIVERS\nwifi.sys
00:10:03.0803 4400 NativeWifiP - ok
00:10:03.0928 4400 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\windows\system32\drivers\ndis.sys
00:10:03.0959 4400 NDIS - ok
00:10:04.0006 4400 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\windows\system32\DRIVERS\ndiscap.sys
00:10:04.0006 4400 NdisCap - ok
00:10:04.0037 4400 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\windows\system32\DRIVERS\ndistapi.sys
00:10:04.0037 4400 NdisTapi - ok
00:10:04.0100 4400 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\windows\system32\DRIVERS\ndisuio.sys
00:10:04.0131 4400 Ndisuio - ok
00:10:04.0271 4400 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\windows\system32\DRIVERS\ndiswan.sys
00:10:04.0334 4400 NdisWan - ok
00:10:04.0427 4400 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\windows\system32\drivers\NDProxy.sys
00:10:04.0443 4400 NDProxy - ok
00:10:04.0536 4400 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\windows\system32\DRIVERS\netbios.sys
00:10:04.0583 4400 NetBIOS - ok
00:10:04.0739 4400 NetBT (09594d1089c523423b32a4229263f068) C:\windows\system32\DRIVERS\netbt.sys
00:10:04.0755 4400 NetBT - ok
00:10:04.0833 4400 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\windows\system32\lsass.exe
00:10:04.0833 4400 Netlogon - ok
00:10:04.0958 4400 Netman (847d3ae376c0817161a14a82c8922a9e) C:\windows\System32\netman.dll
00:10:05.0020 4400 Netman - ok
00:10:05.0707 4400 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\windows\System32\netprofm.dll
00:10:05.0738 4400 netprofm - ok
00:10:05.0878 4400 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
00:10:05.0894 4400 NetTcpPortSharing - ok
00:10:05.0972 4400 nfrd960 (77889813be4d166cdab78ddba990da92) C:\windows\system32\DRIVERS\nfrd960.sys
00:10:06.0019 4400 nfrd960 - ok
00:10:06.0097 4400 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\windows\System32\nlasvc.dll
00:10:06.0097 4400 NlaSvc - ok
00:10:06.0159 4400 Norton PC Checkup Application Launcher - ok
00:10:06.0190 4400 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\windows\system32\drivers\Npfs.sys
00:10:06.0206 4400 Npfs - ok
00:10:06.0237 4400 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\windows\system32\nsisvc.dll
00:10:06.0237 4400 nsi - ok
00:10:06.0268 4400 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\windows\system32\drivers\nsiproxy.sys
00:10:06.0284 4400 nsiproxy - ok
00:10:06.0986 4400 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\windows\system32\drivers\Ntfs.sys
00:10:07.0189 4400 Ntfs - ok
00:10:08.0234 4400 Null (9899284589f75fa8724ff3d16aed75c1) C:\windows\system32\drivers\Null.sys
00:10:08.0249 4400 Null - ok
00:10:08.0374 4400 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\windows\system32\drivers\nvraid.sys
00:10:08.0390 4400 nvraid - ok
00:10:08.0483 4400 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\windows\system32\drivers\nvstor.sys
00:10:08.0499 4400 nvstor - ok
00:10:08.0577 4400 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\windows\system32\drivers\nv_agp.sys
00:10:08.0639 4400 nv_agp - ok
00:10:08.0655 4400 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\windows\system32\drivers\ohci1394.sys
00:10:08.0749 4400 ohci1394 - ok
00:10:09.0092 4400 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
00:10:09.0154 4400 ose - ok
00:10:10.0293 4400 osppsvc (61bffb5f57ad12f83ab64b7181829b34) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
00:10:10.0402 4400 osppsvc - ok
00:10:10.0543 4400 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\windows\system32\pnrpsvc.dll
00:10:10.0558 4400 p2pimsvc - ok
00:10:10.0605 4400 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\windows\system32\p2psvc.dll
00:10:10.0636 4400 p2psvc - ok
00:10:10.0699 4400 Parport (0086431c29c35be1dbc43f52cc273887) C:\windows\system32\DRIVERS\parport.sys
00:10:10.0714 4400 Parport - ok
00:10:10.0761 4400 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\windows\system32\drivers\partmgr.sys
00:10:10.0792 4400 partmgr - ok
00:10:10.0839 4400 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\windows\System32\pcasvc.dll
00:10:10.0855 4400 PcaSvc - ok
00:10:10.0948 4400 PCCUJobMgr (2f86be1818c2d7ac90478e3323ee7fcb) C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.3.198\ccSvcHst.exe
00:10:10.0964 4400 PCCUJobMgr - ok
00:10:11.0011 4400 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\windows\system32\drivers\pci.sys
00:10:11.0011 4400 pci - ok
00:10:11.0026 4400 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\windows\system32\drivers\pciide.sys
00:10:11.0042 4400 pciide - ok
00:10:11.0073 4400 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\windows\system32\DRIVERS\pcmcia.sys
00:10:11.0104 4400 pcmcia - ok
00:10:11.0120 4400 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\windows\system32\drivers\pcw.sys
00:10:11.0151 4400 pcw - ok
00:10:11.0229 4400 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\windows\system32\drivers\peauth.sys
00:10:11.0260 4400 PEAUTH - ok
00:10:11.0369 4400 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\windows\SysWow64\perfhost.exe
00:10:11.0369 4400 PerfHost - ok
00:10:11.0447 4400 PGEffect (663962900e7fea522126ba287715bb4a) C:\windows\system32\DRIVERS\pgeffect.sys
00:10:11.0463 4400 PGEffect - ok
00:10:11.0635 4400 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\windows\system32\pla.dll
00:10:11.0650 4400 pla - ok
00:10:11.0728 4400 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\windows\system32\umpnpmgr.dll
00:10:11.0759 4400 PlugPlay - ok
00:10:11.0791 4400 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\windows\system32\pnrpauto.dll
00:10:11.0822 4400 PNRPAutoReg - ok
00:10:11.0993 4400 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\windows\system32\pnrpsvc.dll
00:10:12.0009 4400 PNRPsvc - ok
00:10:12.0087 4400 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\windows\System32\ipsecsvc.dll
00:10:12.0134 4400 PolicyAgent - ok
00:10:12.0181 4400 Power (6ba9d927dded70bd1a9caded45f8b184) C:\windows\system32\umpo.dll
00:10:12.0196 4400 Power - ok
00:10:12.0290 4400 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\windows\system32\DRIVERS\raspptp.sys
00:10:12.0305 4400 PptpMiniport - ok
00:10:12.0337 4400 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\windows\system32\DRIVERS\processr.sys
00:10:12.0352 4400 Processor - ok
00:10:12.0415 4400 ProfSvc (53e83f1f6cf9d62f32801cf66d8352a8) C:\windows\system32\profsvc.dll
00:10:13.0382 4400 ProfSvc - ok
00:10:13.0429 4400 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\windows\system32\lsass.exe
00:10:13.0444 4400 ProtectedStorage - ok
00:10:13.0491 4400 Psched (0557cf5a2556bd58e26384169d72438d) C:\windows\system32\DRIVERS\pacer.sys
00:10:13.0507 4400 Psched - ok
00:10:13.0616 4400 QIOMem (c8fcb4899f8b70cc34e0d9876a80963c) C:\windows\system32\DRIVERS\QIOMem.sys
00:10:13.0631 4400 QIOMem - ok
00:10:14.0021 4400 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\windows\system32\DRIVERS\ql2300.sys
00:10:14.0115 4400 ql2300 - ok
00:10:14.0287 4400 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\windows\system32\DRIVERS\ql40xx.sys
00:10:14.0302 4400 ql40xx - ok
00:10:14.0349 4400 QWAVE (906191634e99aea92c4816150bda3732) C:\windows\system32\qwave.dll
00:10:14.0365 4400 QWAVE - ok
00:10:14.0411 4400 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\windows\system32\drivers\qwavedrv.sys
00:10:14.0443 4400 QWAVEdrv - ok
00:10:14.0489 4400 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\windows\system32\DRIVERS\rasacd.sys
00:10:14.0489 4400 RasAcd - ok
00:10:14.0521 4400 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\windows\system32\DRIVERS\AgileVpn.sys
00:10:14.0552 4400 RasAgileVpn - ok
00:10:14.0583 4400 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\windows\System32\rasauto.dll
00:10:14.0614 4400 RasAuto - ok
00:10:14.0661 4400 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\windows\system32\DRIVERS\rasl2tp.sys
00:10:14.0661 4400 Rasl2tp - ok
00:10:14.0739 4400 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\windows\System32\rasmans.dll
00:10:14.0755 4400 RasMan - ok
00:10:14.0801 4400 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\windows\system32\DRIVERS\raspppoe.sys
00:10:14.0801 4400 RasPppoe - ok
00:10:14.0833 4400 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\windows\system32\DRIVERS\rassstp.sys
00:10:14.0848 4400 RasSstp - ok
00:10:14.0895 4400 rdbss (77f665941019a1594d887a74f301fa2f) C:\windows\system32\DRIVERS\rdbss.sys
00:10:14.0911 4400 rdbss - ok
00:10:14.0926 4400 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\windows\system32\DRIVERS\rdpbus.sys
00:10:14.0926 4400 rdpbus - ok
00:10:14.0942 4400 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\windows\system32\DRIVERS\RDPCDD.sys
00:10:14.0942 4400 RDPCDD - ok
00:10:14.0989 4400 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\windows\system32\drivers\rdpencdd.sys
00:10:14.0989 4400 RDPENCDD - ok
00:10:15.0004 4400 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\windows\system32\drivers\rdprefmp.sys
00:10:15.0020 4400 RDPREFMP - ok
00:10:15.0067 4400 RDPWD (e61608aa35e98999af9aaeeea6114b0a) C:\windows\system32\drivers\RDPWD.sys
00:10:15.0160 4400 RDPWD - ok
00:10:15.0394 4400 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\windows\system32\drivers\rdyboost.sys
00:10:15.0410 4400 rdyboost - ok
00:10:15.0644 4400 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\windows\System32\mprdim.dll
00:10:15.0659 4400 RemoteAccess - ok
00:10:15.0722 4400 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\windows\system32\regsvc.dll
00:10:15.0737 4400 RemoteRegistry - ok
00:10:15.0800 4400 RimUsb (7b04c9843921ab1f695fb395422c5360) C:\windows\system32\Drivers\RimUsb_AMD64.sys
00:10:15.0878 4400 RimUsb - ok
00:10:15.0956 4400 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\windows\System32\RpcEpMap.dll
00:10:15.0971 4400 RpcEptMapper - ok
00:10:16.0003 4400 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\windows\system32\locator.exe
00:10:16.0003 4400 RpcLocator - ok
00:10:16.0159 4400 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\windows\system32\rpcss.dll
00:10:16.0174 4400 RpcSs - ok
00:10:16.0221 4400 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\windows\system32\DRIVERS\rspndr.sys
00:10:16.0221 4400 rspndr - ok
00:10:16.0283 4400 RSUSBSTOR (3ceee53bbf8ba284ff44585cec0162fe) C:\windows\system32\Drivers\RtsUStor.sys
00:10:16.0330 4400 RSUSBSTOR - ok
00:10:16.0471 4400 rtl8192Ce (b89c0601a05e1140ac96fa965d94c340) C:\windows\system32\DRIVERS\rtl8192Ce.sys
00:10:16.0611 4400 rtl8192Ce - ok
00:10:16.0658 4400 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\windows\system32\lsass.exe
00:10:16.0658 4400 SamSs - ok
00:10:16.0705 4400 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\windows\system32\drivers\sbp2port.sys
00:10:16.0720 4400 sbp2port - ok
00:10:16.0783 4400 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\windows\System32\SCardSvr.dll
00:10:16.0814 4400 SCardSvr - ok
00:10:16.0845 4400 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\windows\system32\DRIVERS\scfilter.sys
00:10:16.0845 4400 scfilter - ok
00:10:16.0970 4400 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\windows\system32\schedsvc.dll
00:10:17.0079 4400 Schedule - ok
00:10:17.0251 4400 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\windows\System32\certprop.dll
00:10:17.0251 4400 SCPolicySvc - ok
00:10:17.0282 4400 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\windows\System32\SDRSVC.dll
00:10:17.0313 4400 SDRSVC - ok
00:10:17.0453 4400 SeaPort (cc781378e7eda615d2cdca3b17829fa4) C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
00:10:17.0453 4400 SeaPort - ok
00:10:17.0594 4400 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\windows\system32\drivers\secdrv.sys
00:10:17.0609 4400 secdrv - ok
00:10:17.0734 4400 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\windows\system32\seclogon.dll
00:10:17.0765 4400 seclogon - ok
00:10:17.0843 4400 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\windows\System32\sens.dll
00:10:17.0875 4400 SENS - ok
00:10:17.0921 4400 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\windows\system32\sensrsvc.dll
00:10:17.0937 4400 SensrSvc - ok
00:10:18.0015 4400 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\windows\system32\DRIVERS\serenum.sys
00:10:18.0015 4400 Serenum - ok
00:10:18.0031 4400 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\windows\system32\DRIVERS\serial.sys
00:10:18.0046 4400 Serial - ok
00:10:18.0077 4400 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\windows\system32\DRIVERS\sermouse.sys
00:10:18.0109 4400 sermouse - ok
00:10:18.0155 4400 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\windows\system32\sessenv.dll
00:10:18.0155 4400 SessionEnv - ok
00:10:18.0187 4400 sffdisk (a554811bcd09279536440c964ae35bbf) C:\windows\system32\drivers\sffdisk.sys
00:10:18.0202 4400 sffdisk - ok
00:10:18.0233 4400 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\windows\system32\drivers\sffp_mmc.sys
00:10:18.0233 4400 sffp_mmc - ok
00:10:18.0280 4400 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\windows\system32\drivers\sffp_sd.sys
00:10:18.0280 4400 sffp_sd - ok
00:10:18.0343 4400 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\windows\system32\DRIVERS\sfloppy.sys
00:10:18.0343 4400 sfloppy - ok
00:10:18.0421 4400 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\windows\System32\ipnathlp.dll
00:10:18.0421 4400 SharedAccess - ok
00:10:18.0483 4400 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\windows\System32\shsvcs.dll
00:10:18.0499 4400 ShellHWDetection - ok
00:10:18.0499 4400 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\windows\system32\DRIVERS\SiSRaid2.sys
00:10:18.0514 4400 SiSRaid2 - ok
00:10:18.0545 4400 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\windows\system32\DRIVERS\sisraid4.sys
00:10:18.0577 4400 SiSRaid4 - ok
00:10:18.0623 4400 SMARTMouseFilterx64 (323ddcd15db2a7fed09df1f835cafcfb) C:\windows\system32\DRIVERS\SMARTMouseFilterx64.sys
00:10:18.0670 4400 SMARTMouseFilterx64 - ok
00:10:18.0701 4400 SMARTVHidMiniVistaAmd64 (6c691320c71ca8e8c38f52b2ce652c64) C:\windows\system32\DRIVERS\SMARTVHidMiniVistaAmd64.sys
00:10:18.0717 4400 SMARTVHidMiniVistaAmd64 - ok
00:10:18.0748 4400 SMARTVTabletPCx64 (20563f6830badd675407af0f5bca76ba) C:\windows\system32\DRIVERS\SMARTVTabletPCx64.sys
00:10:18.0764 4400 SMARTVTabletPCx64 - ok
00:10:18.0842 4400 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\windows\system32\DRIVERS\smb.sys
00:10:18.0873 4400 Smb - ok
00:10:18.0935 4400 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\windows\System32\snmptrap.exe
00:10:18.0951 4400 SNMPTRAP - ok
00:10:18.0982 4400 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\windows\system32\drivers\spldr.sys
00:10:18.0998 4400 spldr - ok
00:10:19.0107 4400 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\windows\System32\spoolsv.exe
00:10:19.0216 4400 Spooler - ok
00:10:19.0513 4400 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\windows\system32\sppsvc.exe
00:10:19.0606 4400 sppsvc - ok
00:10:19.0793 4400 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\windows\system32\sppuinotify.dll
00:10:19.0809 4400 sppuinotify - ok
00:10:19.0903 4400 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\windows\system32\DRIVERS\srv.sys
00:10:19.0918 4400 srv - ok
00:10:19.0965 4400 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\windows\system32\DRIVERS\srv2.sys
00:10:19.0996 4400 srv2 - ok
00:10:20.0074 4400 SrvHsfHDA (0c4540311e11664b245a263e1154cef8) C:\windows\system32\DRIVERS\VSTAZL6.SYS
00:10:20.0121 4400 SrvHsfHDA - ok
00:10:20.0324 4400 SrvHsfV92 (02071d207a9858fbe3a48cbfd59c4a04) C:\windows\system32\DRIVERS\VSTDPV6.SYS
00:10:20.0371 4400 SrvHsfV92 - ok
00:10:20.0558 4400 SrvHsfWinac (18e40c245dbfaf36fd0134a7ef2df396) C:\windows\system32\DRIVERS\VSTCNXT6.SYS
00:10:20.0605 4400 SrvHsfWinac - ok
00:10:20.0667 4400 srvnet (27e461f0be5bff5fc737328f749538c3) C:\windows\system32\DRIVERS\srvnet.sys
00:10:20.0683 4400 srvnet - ok
00:10:20.0729 4400 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\windows\System32\ssdpsrv.dll
00:10:20.0761 4400 SSDPSRV - ok
00:10:20.0792 4400 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\windows\system32\sstpsvc.dll
00:10:20.0807 4400 SstpSvc - ok
00:10:20.0839 4400 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\windows\system32\DRIVERS\stexstor.sys
00:10:20.0839 4400 stexstor - ok
00:10:20.0932 4400 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\windows\System32\wiaservc.dll
00:10:20.0995 4400 stisvc - ok
00:10:21.0041 4400 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\windows\system32\drivers\swenum.sys
00:10:21.0057 4400 swenum - ok
00:10:21.0119 4400 swprv (e08e46fdd841b7184194011ca1955a0b) C:\windows\System32\swprv.dll
00:10:21.0135 4400 swprv - ok
00:10:21.0244 4400 SynTP (470c47daba9ca3966f0ab3f835d7d135) C:\windows\system32\DRIVERS\SynTP.sys
00:10:21.0275 4400 SynTP - ok
00:10:21.0447 4400 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\windows\system32\sysmain.dll
00:10:21.0494 4400 SysMain - ok
00:10:21.0775 4400 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\windows\System32\TabSvc.dll
00:10:21.0837 4400 TabletInputService - ok
00:10:21.0899 4400 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\windows\System32\tapisrv.dll
00:10:21.0915 4400 TapiSrv - ok
00:10:21.0962 4400 TBS (1be03ac720f4d302ea01d40f588162f6) C:\windows\System32\tbssvc.dll
00:10:21.0962 4400 TBS - ok
00:10:22.0243 4400 Tcpip (acb82bda8f46c84f465c1afa517dc4b9) C:\windows\system32\drivers\tcpip.sys
00:10:22.0477 4400 Tcpip - ok
00:10:23.0303 4400 TCPIP6 (acb82bda8f46c84f465c1afa517dc4b9) C:\windows\system32\DRIVERS\tcpip.sys
00:10:23.0319 4400 TCPIP6 - ok
00:10:23.0491 4400 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\windows\system32\drivers\tcpipreg.sys
00:10:23.0537 4400 tcpipreg - ok
00:10:23.0771 4400 tdcmdpst (fd542b661bd22fa69ca789ad0ac58c29) C:\windows\system32\DRIVERS\tdcmdpst.sys
00:10:23.0771 4400 tdcmdpst - ok
00:10:23.0881 4400 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\windows\system32\drivers\tdpipe.sys
00:10:23.0912 4400 TDPIPE - ok
00:10:23.0990 4400 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\windows\system32\drivers\tdtcp.sys
00:10:23.0990 4400 TDTCP - ok
00:10:24.0099 4400 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\windows\system32\DRIVERS\tdx.sys
00:10:24.0115 4400 tdx - ok
00:10:24.0177 4400 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\windows\system32\drivers\termdd.sys
00:10:24.0224 4400 TermDD - ok
00:10:24.0349 4400 TermService (2e648163254233755035b46dd7b89123) C:\windows\System32\termsrv.dll
00:10:24.0411 4400 TermService - ok
00:10:24.0458 4400 Themes (f0344071948d1a1fa732231785a0664c) C:\windows\system32\themeservice.dll
00:10:24.0473 4400 Themes - ok
00:10:24.0536 4400 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\windows\system32\mmcss.dll
00:10:24.0536 4400 THREADORDER - ok
00:10:24.0661 4400 TMachInfo (f120967184a27e927052e8ddbb727851) C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
00:10:24.0661 4400 TMachInfo - ok
00:10:24.0754 4400 TODDSrv (ed32035bdfeced1ad66d459fd9cc1140) C:\Windows\system32\TODDSrv.exe
00:10:24.0770 4400 TODDSrv - ok
00:10:24.0910 4400 TosCoSrv (98c864481d62f86ec8af65be3419a95b) C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
00:10:24.0926 4400 TosCoSrv - ok
00:10:25.0019 4400 TOSHIBA eco Utility Service (2ab7a4697462edb0c9dfafc529746ba9) C:\Program Files\TOSHIBA\TECO\TecoService.exe
00:10:25.0019 4400 TOSHIBA eco Utility Service - ok
00:10:25.0113 4400 TOSHIBA HDD SSD Alert Service (74c2fa8c3765ee71a9c22182ec108457) C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
00:10:25.0113 4400 TOSHIBA HDD SSD Alert Service - ok
00:10:25.0316 4400 TPCHSrv (97687d094aa597da366e1194b218cc6c) C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
00:10:25.0347 4400 TPCHSrv - ok
00:10:25.0940 4400 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\windows\System32\trkwks.dll
00:10:25.0955 4400 TrkWks - ok
00:10:26.0018 4400 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\windows\servicing\TrustedInstaller.exe
00:10:26.0018 4400 TrustedInstaller - ok
00:10:26.0080 4400 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\windows\system32\DRIVERS\tssecsrv.sys
00:10:26.0111 4400 tssecsrv - ok
00:10:26.0174 4400 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\windows\system32\drivers\tsusbflt.sys
00:10:26.0189 4400 TsUsbFlt - ok
00:10:26.0267 4400 tunnel (3566a8daafa27af944f5d705eaa64894) C:\windows\system32\DRIVERS\tunnel.sys
00:10:26.0283 4400 tunnel - ok
00:10:26.0314 4400 TVALZ (550b567f9364d8f7684c3fb3ea665a72) C:\windows\system32\DRIVERS\TVALZ_O.SYS
00:10:26.0330 4400 TVALZ - ok
00:10:26.0377 4400 TVALZFL (9c7191f4b2e49bff47a6c1144b5923fa) C:\windows\system32\DRIVERS\TVALZFL.sys
00:10:26.0377 4400 TVALZFL - ok
00:10:26.0423 4400 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\windows\system32\DRIVERS\uagp35.sys
00:10:26.0455 4400 uagp35 - ok
00:10:26.0501 4400 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\windows\system32\DRIVERS\udfs.sys
00:10:26.0517 4400 udfs - ok
00:10:26.0579 4400 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\windows\system32\UI0Detect.exe
00:10:26.0579 4400 UI0Detect - ok
00:10:26.0626 4400 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\windows\system32\drivers\uliagpkx.sys
00:10:26.0642 4400 uliagpkx - ok
00:10:26.0673 4400 umbus (dc54a574663a895c8763af0fa1ff7561) C:\windows\system32\drivers\umbus.sys
00:10:26.0673 4400 umbus - ok
00:10:26.0720 4400 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\windows\system32\DRIVERS\umpass.sys
00:10:26.0735 4400 UmPass - ok
00:10:26.0798 4400 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\windows\System32\upnphost.dll
00:10:26.0813 4400 upnphost - ok
00:10:26.0860 4400 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\windows\system32\DRIVERS\usbccgp.sys
00:10:26.0860 4400 usbccgp - ok
00:10:26.0907 4400 usbcir (af0892a803fdda7492f595368e3b68e7) C:\windows\system32\drivers\usbcir.sys
00:10:26.0923 4400 usbcir - ok
00:10:26.0969 4400 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\windows\system32\DRIVERS\usbehci.sys
00:10:26.0969 4400 usbehci - ok
00:10:27.0032 4400 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\windows\system32\DRIVERS\usbhub.sys
00:10:27.0063 4400 usbhub - ok
00:10:27.0094 4400 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\windows\system32\DRIVERS\usbohci.sys
00:10:27.0110 4400 usbohci - ok
00:10:27.0141 4400 usbprint (73188f58fb384e75c4063d29413cee3d) C:\windows\system32\DRIVERS\usbprint.sys
00:10:27.0141 4400 usbprint - ok
00:10:27.0188 4400 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\windows\system32\DRIVERS\usbscan.sys
00:10:27.0203 4400 usbscan - ok
00:10:27.0235 4400 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\windows\system32\DRIVERS\USBSTOR.SYS
00:10:27.0250 4400 USBSTOR - ok
00:10:27.0266 4400 usbuhci (81fb2216d3a60d1284455d511797db3d) C:\windows\system32\DRIVERS\usbuhci.sys
00:10:27.0281 4400 usbuhci - ok
00:10:27.0359 4400 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\windows\system32\Drivers\usbvideo.sys
00:10:27.0375 4400 usbvideo - ok
00:10:27.0406 4400 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\windows\System32\uxsms.dll
00:10:27.0422 4400 UxSms - ok
00:10:27.0531 4400 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\windows\system32\lsass.exe
00:10:27.0625 4400 VaultSvc - ok
00:10:27.0781 4400 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\windows\system32\drivers\vdrvroot.sys
00:10:27.0812 4400 vdrvroot - ok
00:10:27.0968 4400 vds (8d6b481601d01a456e75c3210f1830be) C:\windows\System32\vds.exe
00:10:27.0999 4400 vds - ok
00:10:28.0046 4400 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\windows\system32\DRIVERS\vgapnp.sys
00:10:28.0046 4400 vga - ok
00:10:28.0093 4400 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\windows\System32\drivers\vga.sys
00:10:28.0124 4400 VgaSave - ok
00:10:28.0171 4400 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\windows\system32\drivers\vhdmp.sys
00:10:28.0186 4400 vhdmp - ok
00:10:28.0217 4400 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\windows\system32\drivers\viaide.sys
00:10:28.0264 4400 viaide - ok
00:10:28.0311 4400 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\windows\system32\drivers\volmgr.sys
00:10:28.0358 4400 volmgr - ok
00:10:28.0451 4400 volmgrx (a255814907c89be58b79ef2f189b843b) C:\windows\system32\drivers\volmgrx.sys
00:10:28.0514 4400 volmgrx - ok
00:10:28.0576 4400 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\windows\system32\drivers\volsnap.sys
00:10:28.0623 4400 volsnap - ok
00:10:28.0717 4400 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\windows\system32\DRIVERS\vsmraid.sys
00:10:28.0763 4400 vsmraid - ok
00:10:28.0919 4400 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\windows\system32\vssvc.exe
00:10:28.0966 4400 VSS - ok
00:10:29.0091 4400 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\windows\system32\DRIVERS\vwifibus.sys
00:10:29.0122 4400 vwifibus - ok
00:10:29.0169 4400 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\windows\system32\DRIVERS\vwififlt.sys
00:10:29.0216 4400 vwififlt - ok
00:10:29.0263 4400 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\windows\system32\DRIVERS\vwifimp.sys
00:10:29.0341 4400 vwifimp - ok
00:10:29.0403 4400 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\windows\system32\w32time.dll
00:10:29.0403 4400 W32Time - ok
00:10:29.0434 4400 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\windows\system32\DRIVERS\wacompen.sys
00:10:29.0450 4400 WacomPen - ok
00:10:29.0512 4400 WANARP (356afd78a6ed4457169241ac3965230c) C:\windows\system32\DRIVERS\wanarp.sys
00:10:29.0512 4400 WANARP - ok
00:10:29.0512 4400 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\windows\system32\DRIVERS\wanarp.sys
00:10:29.0528 4400 Wanarpv6 - ok
00:10:29.0746 4400 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\windows\system32\Wat\WatAdminSvc.exe
00:10:29.0809 4400 WatAdminSvc - ok
00:10:29.0933 4400 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\windows\system32\wbengine.exe
00:10:29.0949 4400 wbengine - ok
00:10:30.0136 4400 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\windows\System32\wbiosrvc.dll
00:10:30.0152 4400 WbioSrvc - ok
00:10:30.0214 4400 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\windows\System32\wcncsvc.dll
00:10:30.0245 4400 wcncsvc - ok
00:10:30.0292 4400 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\windows\System32\WcsPlugInService.dll
00:10:30.0308 4400 WcsPlugInService - ok
00:10:30.0370 4400 Wd (72889e16ff12ba0f235467d6091b17dc) C:\windows\system32\DRIVERS\wd.sys
00:10:30.0401 4400 Wd - ok
00:10:30.0511 4400 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\windows\system32\drivers\Wdf01000.sys
00:10:30.0557 4400 Wdf01000 - ok
00:10:30.0589 4400 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\windows\system32\wdi.dll
00:10:30.0604 4400 WdiServiceHost - ok
00:10:30.0604 4400 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\windows\system32\wdi.dll
00:10:30.0604 4400 WdiSystemHost - ok
00:10:30.0667 4400 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\windows\System32\webclnt.dll
00:10:30.0667 4400 WebClient - ok
00:10:30.0698 4400 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\windows\system32\wecsvc.dll
00:10:30.0698 4400 Wecsvc - ok
00:10:30.0713 4400 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\windows\System32\wercplsupport.dll
00:10:30.0729 4400 wercplsupport - ok
00:10:30.0760 4400 WerSvc (6d137963730144698cbd10f202e9f251) C:\windows\System32\WerSvc.dll
00:10:30.0776 4400 WerSvc - ok
00:10:30.0823 4400 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\windows\system32\DRIVERS\wfplwf.sys
00:10:30.0823 4400 WfpLwf - ok
00:10:30.0854 4400 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\windows\system32\drivers\wimmount.sys
00:10:30.0885 4400 WIMMount - ok
00:10:30.0916 4400 WinDefend - ok
00:10:30.0932 4400 WinHttpAutoProxySvc - ok
00:10:30.0994 4400 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\windows\system32\wbem\WMIsvc.dll
00:10:30.0994 4400 Winmgmt - ok
00:10:31.0150 4400 WinRM (bcb1310604aa415c4508708975b3931e) C:\windows\system32\WsmSvc.dll
00:10:31.0181 4400 WinRM - ok
00:10:31.0681 4400 WinUsb (fe88b288356e7b47b74b13372add906d) C:\windows\system32\DRIVERS\WinUsb.sys
00:10:31.0712 4400 WinUsb - ok
00:10:31.0899 4400 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\windows\System32\wlansvc.dll
00:10:31.0946 4400 Wlansvc - ok
00:10:32.0039 4400 wlcrasvc (06c8fa1cf39de6a735b54d906ba791c6) C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
00:10:32.0039 4400 wlcrasvc - ok
00:10:32.0289 4400 wlidsvc (2bacd71123f42cea603f4e205e1ae337) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
00:10:32.0336 4400 wlidsvc - ok
00:10:32.0492 4400 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\windows\system32\drivers\wmiacpi.sys
00:10:32.0492 4400 WmiAcpi - ok
00:10:32.0570 4400 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\windows\system32\wbem\WmiApSrv.exe
00:10:32.0585 4400 wmiApSrv - ok
00:10:32.0648 4400 WMPNetworkSvc - ok
00:10:32.0679 4400 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\windows\System32\wpcsvc.dll
00:10:32.0695 4400 WPCSvc - ok
00:10:32.0773 4400 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\windows\system32\wpdbusenum.dll
00:10:32.0788 4400 WPDBusEnum - ok
00:10:32.0819 4400 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\windows\system32\drivers\ws2ifsl.sys
00:10:32.0819 4400 ws2ifsl - ok
00:10:32.0851 4400 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\windows\System32\wscsvc.dll
00:10:32.0866 4400 wscsvc - ok
00:10:32.0866 4400 WSearch - ok
00:10:33.0116 4400 wuauserv (d9ef901dca379cfe914e9fa13b73b4c4) C:\windows\system32\wuaueng.dll
00:10:33.0163 4400 wuauserv - ok
00:10:33.0319 4400 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\windows\system32\drivers\WudfPf.sys
00:10:33.0334 4400 WudfPf - ok
00:10:33.0365 4400 WUDFRd (cf8d590be3373029d57af80914190682) C:\windows\system32\DRIVERS\WUDFRd.sys
00:10:33.0381 4400 WUDFRd - ok
00:10:33.0568 4400 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\windows\System32\WUDFSvc.dll
00:10:33.0615 4400 wudfsvc - ok
00:10:33.0677 4400 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\windows\System32\wwansvc.dll
00:10:33.0740 4400 WwanSvc - ok
00:10:33.0865 4400 YahooAUService (dd0042f0c3b606a6a8b92d49afb18ad6) C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
00:10:33.0880 4400 YahooAUService - ok
00:10:33.0943 4400 MBR (0x1B8) (5b5e648d12fcadc244c1ec30318e1eb9) \Device\Harddisk0\DR0
00:10:34.0301 4400 \Device\Harddisk0\DR0 - ok
00:10:34.0348 4400 Boot (0x1200) (29a4d3d12ef30cc1b5c2449899940070) \Device\Harddisk0\DR0\Partition0
00:10:34.0348 4400 \Device\Harddisk0\DR0\Partition0 - ok
00:10:34.0348 4400 ============================================================
00:10:34.0348 4400 Scan finished
00:10:34.0348 4400 ============================================================
00:10:34.0395 5336 Detected object count: 0
00:10:34.0395 5336 Actual detected object count: 0
00:10:48.0451 5660 Deinitialize success

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-07-11 08:14:19
-----------------------------
08:14:19.550 OS Version: Windows x64 6.1.7601 Service Pack 1
08:14:19.550 Number of processors: 2 586 0x603
08:14:19.550 ComputerName: JODIE-PC UserName: Jodie
08:14:21.359 Initialize success
08:14:33.356 AVAST engine defs: 12071001
08:14:44.213 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
08:14:44.213 Disk 0 Vendor: Hitachi_HTS545025B9A300 PB2OC64G Size: 238475MB BusType: 11
08:14:44.244 Disk 0 MBR read successfully
08:14:44.244 Disk 0 MBR scan
08:14:44.369 Disk 0 Windows VISTA default MBR code
08:14:44.385 Disk 0 Partition 1 80 (A) 27 Hidden NTFS WinRE NTFS 1500 MB offset 2048
08:14:44.447 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 226673 MB offset 3074048
08:14:44.510 Disk 0 Partition 3 00 17 Hidd HPFS/NTFS NTFS 10301 MB offset 467300352
08:14:44.634 Disk 0 scanning C:\windows\system32\drivers
08:15:32.269 Service scanning
08:16:50.417 Modules scanning
08:16:50.437 Disk 0 trace - called modules:
08:16:50.457 ntoskrnl.exe CLASSPNP.SYS disk.sys ataport.SYS PCIIDEX.SYS hal.dll msahci.sys
08:16:50.797 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8003151740]
08:16:50.807 3 CLASSPNP.SYS[fffff880019a343f] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0xfffffa800303e060]
08:16:54.709 AVAST engine scan C:\windows
08:17:02.501 AVAST engine scan C:\windows\system32
08:33:48.748 AVAST engine scan C:\windows\system32\drivers
08:35:00.649 AVAST engine scan C:\Users\Jodie
08:51:14.121 File: C:\Users\Jodie\AppData\Local\{c511400a-11dd-1999-2ea4-ca67a51ea267}\n **INFECTED** Win32:Sirefef-PL [Rtk]
08:51:14.854 File: C:\Users\Jodie\AppData\Local\{c511400a-11dd-1999-2ea4-ca67a51ea267}\U\80000064.@ **INFECTED** Win32:Atraps-PF [Trj]
08:55:27.809 AVAST engine scan C:\ProgramData
09:00:40.542 File: C:\ProgramData\Microsoft\Windows\DRM\1016.tmp.dat **INFECTED** Win32:Alureon-ATR [Trj]
09:08:55.054 Scan finished successfully
09:09:09.500 Disk 0 MBR has been saved successfully to "C:\Users\Jodie\Desktop\MBR.dat"
09:09:09.516 The log file has been saved successfully to "C:\Users\Jodie\Desktop\aswMBR.txt"


C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe a variant of Win32/Toolbar.Widgi application cleaned by deleting - quarantined
C:\Program Files (x86)\YouTube Downloader Toolbar\IE\4.6\youtubedownloaderToolbarIE.dll a variant of Win32/Toolbar.Widgi application cleaned by deleting - quarantined
C:\ProgramData\Microsoft\Windows\DRM\1016.tmp.dat a variant of Win32/Kryptik.AGNZ trojan cleaned by deleting - quarantined
C:\Users\Jodie\AppData\Local\Google\Chrome\User Data\Default\Default\aaahaijbihmhabbgpihhhamilbkbbpdb\background.html Win32/BHO.OEI trojan cleaned by deleting - quarantined
C:\Users\Jodie\AppData\Local\Google\Chrome\User Data\Default\Default\aadjdjdbdedhgfgcdegddigbdegbdddc\background.html Win32/BHO.OEI trojan cleaned by deleting - quarantined
C:\Users\Jodie\AppData\Local\Google\Chrome\User Data\Default\Default\aadjdjdbdedhgfgcdegddigbdegbdddc\ContentScript.js Win32/BHO.OEI trojan cleaned by deleting - quarantined
C:\Users\Jodie\AppData\Local\{c511400a-11dd-1999-2ea4-ca67a51ea267}\n Win64/Sirefef.W trojan cleaned by deleting (after the next restart) - quarantined
C:\Users\Jodie\AppData\Local\{c511400a-11dd-1999-2ea4-ca67a51ea267}\U\80000000.$ Win64/Sirefef.AE trojan cleaned by deleting - quarantined
C:\Users\Jodie\AppData\Local\{c511400a-11dd-1999-2ea4-ca67a51ea267}\U\80000064.@ Win64/Sirefef.AN trojan cleaned by deleting - quarantined
C:\Users\Jodie\AppData\Roaming\2D1D09ECC0B5554B2DB27E672E1279B8\enemies-names.txt Win32/Adware.AntimalwareDoctor.AE.Gen application cleaned by deleting - quarantined
C:\Users\Jodie\AppData\Roaming\2D1D09ECC0B5554B2DB27E672E1279B8\local.ini Win32/Adware.AntimalwareDoctor.AE.Gen application cleaned by deleting - quarantined

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:04:07 AM

Posted 11 July 2012 - 01:21 PM

Download

systemlook

Launch it and copy this script and paste in the BOX

:filefind
services.exe
:folderfind
{c511400a-11dd-1999-2ea4-ca67a51ea267}

Click on LOOK,post the generated log

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log


Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users