Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Infected with S.M.A.R.T. hdd


  • Please log in to reply
3 replies to this topic

#1 wahmof6

wahmof6

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:05:22 AM

Posted 16 July 2012 - 04:34 PM

My computer is infected with the S.M.A.R.T. hdd virus and by now probably others. I followed the tutorial using hkill, malwarebytes, and superantispyware. It's still there. What can I do?

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:04:22 AM

Posted 16 July 2012 - 08:13 PM

Boot into safemode with networking

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)



Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner


Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 wahmof6

wahmof6
  • Topic Starter

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:05:22 AM

Posted 18 July 2012 - 06:23 PM

Here is the TDSSKiller log:

22:25:37.0764 0552 TDSS rootkit removing tool 2.7.45.0 Jul 9 2012 12:46:35
22:25:38.0134 0552 ============================================================
22:25:38.0134 0552 Current date / time: 2012/07/16 22:25:38.0134
22:25:38.0134 0552 SystemInfo:
22:25:38.0134 0552
22:25:38.0134 0552 OS Version: 6.1.7601 ServicePack: 1.0
22:25:38.0134 0552 Product type: Workstation
22:25:38.0134 0552 ComputerName: FAMILY-PC
22:25:38.0134 0552 UserName: Family
22:25:38.0134 0552 Windows directory: C:\Windows
22:25:38.0134 0552 System windows directory: C:\Windows
22:25:38.0134 0552 Processor architecture: Intel x86
22:25:38.0134 0552 Number of processors: 2
22:25:38.0134 0552 Page size: 0x1000
22:25:38.0134 0552 Boot type: Normal boot
22:25:38.0134 0552 ============================================================
22:25:40.0639 0552 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
22:25:40.0661 0552 Drive \Device\Harddisk1\DR1 - Size: 0x2540BE4000 (149.01 Gb), SectorSize: 0x200, Cylinders: 0x4BFC, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
22:25:40.0666 0552 ============================================================
22:25:40.0666 0552 \Device\Harddisk0\DR0:
22:25:40.0706 0552 MBR partitions:
22:25:40.0706 0552 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x1D1BE131
22:25:40.0706 0552 \Device\Harddisk1\DR1:
22:25:40.0706 0552 MBR partitions:
22:25:40.0706 0552 \Device\Harddisk1\DR1\Partition0: MBR, Type 0x7, StartLBA 0x1B747, BlocksNum 0x12333B7F
22:25:40.0706 0552 ============================================================
22:25:40.0729 0552 C: <-> \Device\Harddisk0\DR0\Partition0
22:25:40.0751 0552 E: <-> \Device\Harddisk1\DR1\Partition0
22:25:40.0751 0552 ============================================================
22:25:40.0751 0552 Initialize success
22:25:40.0751 0552 ============================================================
22:25:46.0900 3460 ============================================================
22:25:46.0900 3460 Scan started
22:25:46.0900 3460 Mode: Manual; TDLFS;
22:25:46.0900 3460 ============================================================
22:25:47.0707 3460 !SASCORE (c0393eb99a6c72c6bef9bfc4a72b33a6) C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
22:25:47.0712 3460 !SASCORE - ok
22:25:47.0862 3460 1394ohci (1b133875b8aa8ac48969bd3458afe9f5) C:\Windows\system32\drivers\1394ohci.sys
22:25:47.0875 3460 1394ohci - ok
22:25:47.0910 3460 ACPI (cea80c80bed809aa0da6febc04733349) C:\Windows\system32\drivers\ACPI.sys
22:25:47.0917 3460 ACPI - ok
22:25:47.0930 3460 AcpiPmi (1efbc664abff416d1d07db115dcb264f) C:\Windows\system32\drivers\acpipmi.sys
22:25:47.0932 3460 AcpiPmi - ok
22:25:48.0010 3460 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
22:25:48.0012 3460 AdobeARMservice - ok
22:25:48.0095 3460 AdobeFlashPlayerUpdateSvc (5e1a953c6472e7bb644892a4d0df5e72) C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
22:25:48.0105 3460 AdobeFlashPlayerUpdateSvc - ok
22:25:48.0160 3460 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\Windows\system32\drivers\adp94xx.sys
22:25:48.0172 3460 adp94xx - ok
22:25:48.0202 3460 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\Windows\system32\drivers\adpahci.sys
22:25:48.0212 3460 adpahci - ok
22:25:48.0242 3460 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\Windows\system32\drivers\adpu320.sys
22:25:48.0255 3460 adpu320 - ok
22:25:48.0287 3460 AeLookupSvc (8b5eefeec1e6d1a72a06c526628ad161) C:\Windows\System32\aelupsvc.dll
22:25:48.0290 3460 AeLookupSvc - ok
22:25:48.0332 3460 AFD (1151fd4fb0216cfed887bfde29ebd516) C:\Windows\system32\drivers\afd.sys
22:25:48.0347 3460 AFD - ok
22:25:48.0367 3460 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\Windows\system32\drivers\agp440.sys
22:25:48.0370 3460 agp440 - ok
22:25:48.0395 3460 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\Windows\system32\drivers\djsvs.sys
22:25:48.0397 3460 aic78xx - ok
22:25:48.0430 3460 ALG (18a54e132947cd98fea9accc57f98f13) C:\Windows\System32\alg.exe
22:25:48.0432 3460 ALG - ok
22:25:48.0442 3460 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\Windows\system32\drivers\aliide.sys
22:25:48.0445 3460 aliide - ok
22:25:48.0452 3460 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\Windows\system32\drivers\amdagp.sys
22:25:48.0455 3460 amdagp - ok
22:25:48.0465 3460 amdide (cd5914170297126b6266860198d1d4f0) C:\Windows\system32\drivers\amdide.sys
22:25:48.0467 3460 amdide - ok
22:25:48.0487 3460 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\Windows\system32\drivers\amdk8.sys
22:25:48.0490 3460 AmdK8 - ok
22:25:48.0500 3460 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\Windows\system32\drivers\amdppm.sys
22:25:48.0502 3460 AmdPPM - ok
22:25:48.0540 3460 amdsata (e7f4d42d8076ec60e21715cd11743a0d) C:\Windows\system32\drivers\amdsata.sys
22:25:48.0542 3460 amdsata - ok
22:25:48.0575 3460 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\Windows\system32\drivers\amdsbs.sys
22:25:48.0585 3460 amdsbs - ok
22:25:48.0602 3460 amdxata (146459d2b08bfdcbfa856d9947043c81) C:\Windows\system32\drivers\amdxata.sys
22:25:48.0602 3460 amdxata - ok
22:25:48.0622 3460 AppID (aea177f783e20150ace5383ee368da19) C:\Windows\system32\drivers\appid.sys
22:25:48.0625 3460 AppID - ok
22:25:48.0662 3460 AppIDSvc (62a9c86cb6085e20db4823e4e97826f5) C:\Windows\System32\appidsvc.dll
22:25:48.0662 3460 AppIDSvc - ok
22:25:48.0675 3460 Appinfo (fb1959012294d6ad43e5304df65e3c26) C:\Windows\System32\appinfo.dll
22:25:48.0677 3460 Appinfo - ok
22:25:48.0762 3460 Apple Mobile Device (7ef47644b74ebe721cc32211d3c35e76) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
22:25:48.0762 3460 Apple Mobile Device - ok
22:25:48.0797 3460 AppMgmt (a45d184df6a8803da13a0b329517a64a) C:\Windows\System32\appmgmts.dll
22:25:48.0810 3460 AppMgmt - ok
22:25:48.0830 3460 arc (2932004f49677bd84dbc72edb754ffb3) C:\Windows\system32\drivers\arc.sys
22:25:48.0832 3460 arc - ok
22:25:48.0895 3460 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\Windows\system32\drivers\arcsas.sys
22:25:48.0900 3460 arcsas - ok
22:25:48.0950 3460 aspnet_state (39cdcb109bf200cc8a05b9c7e6272d11) C:\Windows\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
22:25:48.0952 3460 aspnet_state - ok
22:25:48.0970 3460 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\Windows\system32\DRIVERS\asyncmac.sys
22:25:48.0972 3460 AsyncMac - ok
22:25:48.0987 3460 atapi (338c86357871c167a96ab976519bf59e) C:\Windows\system32\drivers\atapi.sys
22:25:48.0990 3460 atapi - ok
22:25:49.0207 3460 atikmdag (712d8a95e45b070114c5309ada7358ff) C:\Windows\system32\DRIVERS\atikmdag.sys
22:25:49.0310 3460 atikmdag - ok
22:25:49.0425 3460 AudioEndpointBuilder (ce3b4e731638d2ef62fcb419be0d39f0) C:\Windows\System32\Audiosrv.dll
22:25:49.0437 3460 AudioEndpointBuilder - ok
22:25:49.0452 3460 Audiosrv (ce3b4e731638d2ef62fcb419be0d39f0) C:\Windows\System32\Audiosrv.dll
22:25:49.0457 3460 Audiosrv - ok
22:25:49.0487 3460 AxInstSV (6e30d02aac9cac84f421622e3a2f6178) C:\Windows\System32\AxInstSV.dll
22:25:49.0492 3460 AxInstSV - ok
22:25:49.0547 3460 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\Windows\system32\drivers\bxvbdx.sys
22:25:49.0560 3460 b06bdrv - ok
22:25:49.0595 3460 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\Windows\system32\DRIVERS\b57nd60x.sys
22:25:49.0605 3460 b57nd60x - ok
22:25:49.0625 3460 BDESVC (ee1e9c3bb8228ae423dd38db69128e71) C:\Windows\System32\bdesvc.dll
22:25:49.0627 3460 BDESVC - ok
22:25:49.0640 3460 Beep (505506526a9d467307b3c393dedaf858) C:\Windows\system32\drivers\Beep.sys
22:25:49.0640 3460 Beep - ok
22:25:49.0690 3460 BITS (e585445d5021971fae10393f0f1c3961) C:\Windows\System32\qmgr.dll
22:25:49.0707 3460 BITS - ok
22:25:49.0760 3460 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\Windows\system32\DRIVERS\blbdrive.sys
22:25:49.0762 3460 blbdrive - ok
22:25:49.0845 3460 Bonjour Service (db5bea73edaf19ac68b2c0fad0f92b1a) C:\Program Files\Bonjour\mDNSResponder.exe
22:25:49.0860 3460 Bonjour Service - ok
22:25:49.0885 3460 bowser (fcafaef6798d7b51ff029f99a9898961) C:\Windows\system32\DRIVERS\bowser.sys
22:25:49.0885 3460 bowser - ok
22:25:49.0905 3460 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\BrFiltLo.sys
22:25:49.0905 3460 BrFiltLo - ok
22:25:49.0920 3460 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\BrFiltUp.sys
22:25:49.0922 3460 BrFiltUp - ok
22:25:49.0945 3460 Browser (6e11f33d14d020f58d5e02e4d67dfa19) C:\Windows\System32\browser.dll
22:25:49.0950 3460 Browser - ok
22:25:49.0980 3460 Brserid (845b8ce732e67f3b4133164868c666ea) C:\Windows\System32\Drivers\Brserid.sys
22:25:49.0987 3460 Brserid - ok
22:25:50.0007 3460 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\System32\Drivers\BrSerWdm.sys
22:25:50.0010 3460 BrSerWdm - ok
22:25:50.0022 3460 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\System32\Drivers\BrUsbMdm.sys
22:25:50.0025 3460 BrUsbMdm - ok
22:25:50.0030 3460 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\System32\Drivers\BrUsbSer.sys
22:25:50.0032 3460 BrUsbSer - ok
22:25:50.0052 3460 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\Windows\system32\drivers\bthmodem.sys
22:25:50.0057 3460 BTHMODEM - ok
22:25:50.0085 3460 bthserv (1df19c96eef6c29d1c3e1a8678e07190) C:\Windows\system32\bthserv.dll
22:25:50.0087 3460 bthserv - ok
22:25:50.0105 3460 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\Windows\system32\DRIVERS\cdfs.sys
22:25:50.0107 3460 cdfs - ok
22:25:50.0140 3460 cdrom (be167ed0fdb9c1fa1133953c18d5a6c9) C:\Windows\system32\DRIVERS\cdrom.sys
22:25:50.0147 3460 cdrom - ok
22:25:50.0170 3460 CertPropSvc (319c6b309773d063541d01df8ac6f55f) C:\Windows\System32\certprop.dll
22:25:50.0172 3460 CertPropSvc - ok
22:25:50.0200 3460 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\Windows\system32\drivers\circlass.sys
22:25:50.0202 3460 circlass - ok
22:25:50.0222 3460 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\Windows\system32\CLFS.sys
22:25:50.0230 3460 CLFS - ok
22:25:50.0275 3460 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
22:25:50.0277 3460 clr_optimization_v2.0.50727_32 - ok
22:25:50.0300 3460 CmBatt (dea805815e587dad1dd2c502220b5616) C:\Windows\system32\drivers\CmBatt.sys
22:25:50.0300 3460 CmBatt - ok
22:25:50.0315 3460 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\Windows\system32\drivers\cmdide.sys
22:25:50.0317 3460 cmdide - ok
22:25:50.0352 3460 CNG (1b675691ed940766149c93e8f4488d68) C:\Windows\system32\Drivers\cng.sys
22:25:50.0365 3460 CNG - ok
22:25:50.0375 3460 Compbatt (a6023d3823c37043986713f118a89bee) C:\Windows\system32\drivers\compbatt.sys
22:25:50.0375 3460 Compbatt - ok
22:25:50.0400 3460 CompositeBus (cbe8c58a8579cfe5fccf809e6f114e89) C:\Windows\system32\DRIVERS\CompositeBus.sys
22:25:50.0400 3460 CompositeBus - ok
22:25:50.0410 3460 COMSysApp - ok
22:25:50.0427 3460 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\Windows\system32\drivers\crcdisk.sys
22:25:50.0430 3460 crcdisk - ok
22:25:50.0467 3460 CryptSvc (a585bebf7d054bd9618eda0922d5484a) C:\Windows\system32\cryptsvc.dll
22:25:50.0472 3460 CryptSvc - ok
22:25:50.0512 3460 CSC (3c2177a897b4ca2788c6fb0c3fd81d4b) C:\Windows\system32\drivers\csc.sys
22:25:50.0525 3460 CSC - ok
22:25:50.0575 3460 CscService (15f93b37f6801943360d9eb42485d5d3) C:\Windows\System32\cscsvc.dll
22:25:50.0592 3460 CscService - ok
22:25:50.0637 3460 DcomLaunch (7660f01d3b38aca1747e397d21d790af) C:\Windows\system32\rpcss.dll
22:25:50.0652 3460 DcomLaunch - ok
22:25:50.0732 3460 defragsvc (8d6e10a2d9a5eed59562d9b82cf804e1) C:\Windows\System32\defragsvc.dll
22:25:50.0740 3460 defragsvc - ok
22:25:50.0805 3460 DfsC (f024449c97ec1e464aaffda18593db88) C:\Windows\system32\Drivers\dfsc.sys
22:25:50.0807 3460 DfsC - ok
22:25:50.0847 3460 DgiVecp (7f19dba1a467b838ccb23124a2c55568) C:\Windows\system32\Drivers\DgiVecp.sys
22:25:50.0847 3460 DgiVecp - ok
22:25:50.0887 3460 Dhcp (e9e01eb683c132f7fa27cd607b8a2b63) C:\Windows\system32\dhcpcore.dll
22:25:50.0897 3460 Dhcp - ok
22:25:50.0917 3460 discache (1a050b0274bfb3890703d490f330c0da) C:\Windows\system32\drivers\discache.sys
22:25:50.0920 3460 discache - ok
22:25:50.0942 3460 Disk (565003f326f99802e68ca78f2a68e9ff) C:\Windows\system32\drivers\disk.sys
22:25:50.0942 3460 Disk - ok
22:25:50.0972 3460 dmvsc (2a958ef85db1b61ffca65044fa4bce9e) C:\Windows\system32\drivers\dmvsc.sys
22:25:50.0975 3460 dmvsc - ok
22:25:50.0992 3460 Dnscache (2fe30d71919c51131405797620e0a714) C:\Windows\System32\dnsrslvr.dll
22:25:51.0005 3460 Dnscache - ok
22:25:51.0025 3460 dot3svc (366ba8fb4b7bb7435e3b9eacb3843f67) C:\Windows\System32\dot3svc.dll
22:25:51.0035 3460 dot3svc - ok
22:25:51.0057 3460 DPS (8ec04ca86f1d68da9e11952eb85973d6) C:\Windows\system32\dps.dll
22:25:51.0067 3460 DPS - ok
22:25:51.0092 3460 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\Windows\system32\drivers\drmkaud.sys
22:25:51.0095 3460 drmkaud - ok
22:25:51.0162 3460 DXGKrnl (23f5d28378a160352ba8f817bd8c71cb) C:\Windows\System32\drivers\dxgkrnl.sys
22:25:51.0167 3460 DXGKrnl - ok
22:25:51.0230 3460 E100B (20de769b84960606d8dbb2aec123021a) C:\Windows\system32\DRIVERS\e100b325.sys
22:25:51.0245 3460 E100B - ok
22:25:51.0262 3460 EapHost (8600142fa91c1b96367d3300ad0f3f3a) C:\Windows\System32\eapsvc.dll
22:25:51.0270 3460 EapHost - ok
22:25:51.0422 3460 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\Windows\system32\drivers\evbdx.sys
22:25:51.0492 3460 ebdrv - ok
22:25:51.0585 3460 EFS (f42309c4191c506b71db5d1126d26318) C:\Windows\System32\lsass.exe
22:25:51.0587 3460 EFS - ok
22:25:51.0645 3460 ehRecvr (a8c362018efc87beb013ee28f29c0863) C:\Windows\ehome\ehRecvr.exe
22:25:51.0662 3460 ehRecvr - ok
22:25:51.0677 3460 ehSched (d389bff34f80caede417bf9d1507996a) C:\Windows\ehome\ehsched.exe
22:25:51.0682 3460 ehSched - ok
22:25:51.0740 3460 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\Windows\system32\drivers\elxstor.sys
22:25:51.0752 3460 elxstor - ok
22:25:51.0805 3460 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\Windows\system32\drivers\errdev.sys
22:25:51.0805 3460 ErrDev - ok
22:25:51.0860 3460 EventSystem (f6916efc29d9953d5d0df06882ae8e16) C:\Windows\system32\es.dll
22:25:51.0870 3460 EventSystem - ok
22:25:51.0887 3460 exfat (2dc9108d74081149cc8b651d3a26207f) C:\Windows\system32\drivers\exfat.sys
22:25:51.0900 3460 exfat - ok
22:25:51.0922 3460 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\Windows\system32\drivers\fastfat.sys
22:25:51.0932 3460 fastfat - ok
22:25:51.0955 3460 FastUserSwitchingCompatibility - ok
22:25:52.0002 3460 Fax (967ea5b213e9984cbe270205df37755b) C:\Windows\system32\fxssvc.exe
22:25:52.0020 3460 Fax - ok
22:25:52.0037 3460 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\Windows\system32\drivers\fdc.sys
22:25:52.0040 3460 fdc - ok
22:25:52.0047 3460 fdPHost (f3222c893bd2f5821a0179e5c71e88fb) C:\Windows\system32\fdPHost.dll
22:25:52.0050 3460 fdPHost - ok
22:25:52.0067 3460 FDResPub (7dbe8cbfe79efbdeb98c9fb08d3a9a5b) C:\Windows\system32\fdrespub.dll
22:25:52.0070 3460 FDResPub - ok
22:25:52.0087 3460 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\Windows\system32\drivers\fileinfo.sys
22:25:52.0090 3460 FileInfo - ok
22:25:52.0102 3460 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\Windows\system32\drivers\filetrace.sys
22:25:52.0102 3460 Filetrace - ok
22:25:52.0200 3460 FLEXnet Licensing Service (1f63900e2eb00101b9aca2b7a870704e) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
22:25:52.0215 3460 FLEXnet Licensing Service - ok
22:25:52.0232 3460 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\Windows\system32\drivers\flpydisk.sys
22:25:52.0232 3460 flpydisk - ok
22:25:52.0260 3460 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\Windows\system32\drivers\fltmgr.sys
22:25:52.0272 3460 FltMgr - ok
22:25:52.0335 3460 FontCache (fa6c66e4364d7da57aade5dcc03bb999) C:\Windows\system32\FntCache.dll
22:25:52.0362 3460 FontCache - ok
22:25:52.0422 3460 FontCache3.0.0.0 (e56f39f6b7fda0ac77a79b0fd3de1a2f) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
22:25:52.0425 3460 FontCache3.0.0.0 - ok
22:25:52.0440 3460 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\Windows\system32\drivers\FsDepends.sys
22:25:52.0442 3460 FsDepends - ok
22:25:52.0450 3460 Fs_Rec (a574b4360e438977038aae4bf60d79a2) C:\Windows\system32\drivers\Fs_Rec.sys
22:25:52.0450 3460 Fs_Rec - ok
22:25:52.0480 3460 fvevol (8a73e79089b282100b9393b644cb853b) C:\Windows\system32\DRIVERS\fvevol.sys
22:25:52.0490 3460 fvevol - ok
22:25:52.0505 3460 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\Windows\system32\drivers\gagp30kx.sys
22:25:52.0507 3460 gagp30kx - ok
22:25:52.0542 3460 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
22:25:52.0542 3460 GEARAspiWDM - ok
22:25:52.0602 3460 gpsvc (e897eaf5ed6ba41e081060c9b447a673) C:\Windows\System32\gpsvc.dll
22:25:52.0625 3460 gpsvc - ok
22:25:52.0727 3460 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
22:25:52.0740 3460 gupdate - ok
22:25:52.0745 3460 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
22:25:52.0747 3460 gupdatem - ok
22:25:52.0830 3460 gusvc (cc839e8d766cc31a7710c9f38cf3e375) C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
22:25:52.0840 3460 gusvc - ok
22:25:52.0865 3460 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\Windows\system32\drivers\hcw85cir.sys
22:25:52.0865 3460 hcw85cir - ok
22:25:52.0905 3460 HdAudAddService (a5ef29d5315111c80a5c1abad14c8972) C:\Windows\system32\drivers\HdAudio.sys
22:25:52.0912 3460 HdAudAddService - ok
22:25:52.0940 3460 HDAudBus (9036377b8a6c15dc2eec53e489d159b5) C:\Windows\system32\DRIVERS\HDAudBus.sys
22:25:52.0945 3460 HDAudBus - ok
22:25:52.0960 3460 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\Windows\system32\drivers\HidBatt.sys
22:25:52.0962 3460 HidBatt - ok
22:25:52.0977 3460 HidBth (89448f40e6df260c206a193a4683ba78) C:\Windows\system32\drivers\hidbth.sys
22:25:52.0982 3460 HidBth - ok
22:25:53.0002 3460 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\Windows\system32\drivers\hidir.sys
22:25:53.0005 3460 HidIr - ok
22:25:53.0035 3460 hidserv (2bc6f6a1992b3a77f5f41432ca6b3b6b) C:\Windows\system32\hidserv.dll
22:25:53.0040 3460 hidserv - ok
22:25:53.0067 3460 HidUsb (10c19f8290891af023eaec0832e1eb4d) C:\Windows\system32\DRIVERS\hidusb.sys
22:25:53.0067 3460 HidUsb - ok
22:25:53.0105 3460 hkmsvc (196b4e3f4cccc24af836ce58facbb699) C:\Windows\system32\kmsvc.dll
22:25:53.0107 3460 hkmsvc - ok
22:25:53.0140 3460 HomeGroupListener (6658f4404de03d75fe3ba09f7aba6a30) C:\Windows\system32\ListSvc.dll
22:25:53.0150 3460 HomeGroupListener - ok
22:25:53.0182 3460 HomeGroupProvider (dbc02d918fff1cad628acbe0c0eaa8e8) C:\Windows\system32\provsvc.dll
22:25:53.0192 3460 HomeGroupProvider - ok
22:25:53.0212 3460 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\Windows\system32\drivers\HpSAMD.sys
22:25:53.0212 3460 HpSAMD - ok
22:25:53.0257 3460 HTTP (871917b07a141bff43d76d8844d48106) C:\Windows\system32\drivers\HTTP.sys
22:25:53.0295 3460 HTTP - ok
22:25:53.0340 3460 hwpolicy (0c4e035c7f105f1299258c90886c64c5) C:\Windows\system32\drivers\hwpolicy.sys
22:25:53.0342 3460 hwpolicy - ok
22:25:53.0360 3460 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\Windows\system32\drivers\i8042prt.sys
22:25:53.0362 3460 i8042prt - ok
22:25:53.0397 3460 iaStorV (a3cae5d281db4cff7cff8233507ee5ad) C:\Windows\system32\drivers\iaStorV.sys
22:25:53.0412 3460 iaStorV - ok
22:25:53.0505 3460 idsvc (c521d7eb6497bb1af6afa89e322fb43c) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
22:25:53.0522 3460 idsvc - ok
22:25:53.0547 3460 iirsp (4173ff5708f3236cf25195fecd742915) C:\Windows\system32\drivers\iirsp.sys
22:25:53.0547 3460 iirsp - ok
22:25:53.0605 3460 IKEEXT (f95622f161474511b8d80d6b093aa610) C:\Windows\System32\ikeext.dll
22:25:53.0627 3460 IKEEXT - ok
22:25:53.0660 3460 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\Windows\system32\drivers\intelide.sys
22:25:53.0660 3460 intelide - ok
22:25:53.0687 3460 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\Windows\system32\DRIVERS\intelppm.sys
22:25:53.0687 3460 intelppm - ok
22:25:53.0710 3460 IPBusEnum (acb364b9075a45c0736e5c47be5cae19) C:\Windows\system32\ipbusenum.dll
22:25:53.0712 3460 IPBusEnum - ok
22:25:53.0760 3460 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\Windows\system32\DRIVERS\ipfltdrv.sys
22:25:53.0760 3460 IpFilterDriver - ok
22:25:53.0777 3460 IPMIDRV (4bd7134618c1d2a27466a099062547bf) C:\Windows\system32\drivers\IPMIDrv.sys
22:25:53.0777 3460 IPMIDRV - ok
22:25:53.0795 3460 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\Windows\system32\drivers\ipnat.sys
22:25:53.0800 3460 IPNAT - ok
22:25:53.0887 3460 iPod Service (57edb35ea2feca88f8b17c0c095c9a56) C:\Program Files\iPod\bin\iPodService.exe
22:25:53.0907 3460 iPod Service - ok
22:25:53.0935 3460 IRENUM (42996cff20a3084a56017b7902307e9f) C:\Windows\system32\drivers\irenum.sys
22:25:53.0937 3460 IRENUM - ok
22:25:53.0955 3460 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\Windows\system32\drivers\isapnp.sys
22:25:53.0955 3460 isapnp - ok
22:25:53.0982 3460 iScsiPrt (cb7a9abb12b8415bce5d74994c7ba3ae) C:\Windows\system32\drivers\msiscsi.sys
22:25:53.0992 3460 iScsiPrt - ok
22:25:54.0020 3460 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\Windows\system32\DRIVERS\kbdclass.sys
22:25:54.0020 3460 kbdclass - ok
22:25:54.0047 3460 kbdhid (9e3ced91863e6ee98c24794d05e27a71) C:\Windows\system32\DRIVERS\kbdhid.sys
22:25:54.0050 3460 kbdhid - ok
22:25:54.0075 3460 KeyIso (f42309c4191c506b71db5d1126d26318) C:\Windows\system32\lsass.exe
22:25:54.0077 3460 KeyIso - ok
22:25:54.0095 3460 KSecDD (412cea1aa78cc02a447f5c9e62b32ff1) C:\Windows\system32\Drivers\ksecdd.sys
22:25:54.0095 3460 KSecDD - ok
22:25:54.0115 3460 KSecPkg (26c046977e85b95036453d7b88ba1820) C:\Windows\system32\Drivers\ksecpkg.sys
22:25:54.0115 3460 KSecPkg - ok
22:25:54.0150 3460 KtmRm (89a7b9cc98d0d80c6f31b91c0a310fcd) C:\Windows\system32\msdtckrm.dll
22:25:54.0167 3460 KtmRm - ok
22:25:54.0205 3460 LanmanServer (d64af876d53eca3668bb97b51b4e70ab) C:\Windows\system32\srvsvc.dll
22:25:54.0217 3460 LanmanServer - ok
22:25:54.0232 3460 LanmanWorkstation (58405e4f68ba8e4057c6e914f326aba2) C:\Windows\System32\wkssvc.dll
22:25:54.0247 3460 LanmanWorkstation - ok
22:25:54.0272 3460 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\Windows\system32\DRIVERS\lltdio.sys
22:25:54.0275 3460 lltdio - ok
22:25:54.0302 3460 lltdsvc (5700673e13a2117fa3b9020c852c01e2) C:\Windows\System32\lltdsvc.dll
22:25:54.0312 3460 lltdsvc - ok
22:25:54.0337 3460 lmhosts (55ca01ba19d0006c8f2639b6c045e08b) C:\Windows\System32\lmhsvc.dll
22:25:54.0340 3460 lmhosts - ok
22:25:54.0380 3460 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\Windows\system32\drivers\lsi_fc.sys
22:25:54.0385 3460 LSI_FC - ok
22:25:54.0402 3460 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\Windows\system32\drivers\lsi_sas.sys
22:25:54.0407 3460 LSI_SAS - ok
22:25:54.0420 3460 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\Windows\system32\drivers\lsi_sas2.sys
22:25:54.0422 3460 LSI_SAS2 - ok
22:25:54.0437 3460 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\Windows\system32\drivers\lsi_scsi.sys
22:25:54.0445 3460 LSI_SCSI - ok
22:25:54.0485 3460 ltmodem5 (838df9675a08116f057b6bc530fbbe15) C:\Windows\system32\DRIVERS\ltmdmnt.sys
22:25:54.0497 3460 ltmodem5 - ok
22:25:54.0515 3460 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\Windows\system32\drivers\luafv.sys
22:25:54.0520 3460 luafv - ok
22:25:54.0607 3460 McComponentHostService (22a7776c5d8eb5930edf9c8dd0884259) C:\Program Files\McAfee Security Scan\3.0.207\McCHSvc.exe
22:25:54.0617 3460 McComponentHostService - ok
22:25:54.0656 3460 Mcx2Svc (bfb9ee8ee977efe85d1a3105abef6dd1) C:\Windows\system32\Mcx2Svc.dll
22:25:54.0661 3460 Mcx2Svc - ok
22:25:54.0706 3460 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\Windows\system32\drivers\megasas.sys
22:25:54.0706 3460 megasas - ok
22:25:54.0738 3460 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\Windows\system32\drivers\MegaSR.sys
22:25:54.0748 3460 MegaSR - ok
22:25:54.0773 3460 MMCSS (146b6f43a673379a3c670e86d89be5ea) C:\Windows\system32\mmcss.dll
22:25:54.0776 3460 MMCSS - ok
22:25:54.0791 3460 Modem (f001861e5700ee84e2d4e52c712f4964) C:\Windows\system32\drivers\modem.sys
22:25:54.0793 3460 Modem - ok
22:25:54.0818 3460 monitor (79d10964de86b292320e9dfe02282a23) C:\Windows\system32\DRIVERS\monitor.sys
22:25:54.0818 3460 monitor - ok
22:25:54.0846 3460 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\Windows\system32\DRIVERS\mouclass.sys
22:25:54.0846 3460 mouclass - ok
22:25:54.0886 3460 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\Windows\system32\DRIVERS\mouhid.sys
22:25:54.0896 3460 mouhid - ok
22:25:54.0918 3460 mountmgr (fc8771f45ecccfd89684e38842539b9b) C:\Windows\system32\drivers\mountmgr.sys
22:25:54.0918 3460 mountmgr - ok
22:25:54.0941 3460 mpio (2d699fb6e89ce0d8da14ecc03b3edfe0) C:\Windows\system32\drivers\mpio.sys
22:25:54.0953 3460 mpio - ok
22:25:54.0981 3460 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\Windows\system32\drivers\mpsdrv.sys
22:25:54.0981 3460 mpsdrv - ok
22:25:55.0003 3460 MRxDAV (ceb46ab7c01c9f825f8cc6babc18166a) C:\Windows\system32\drivers\mrxdav.sys
22:25:55.0008 3460 MRxDAV - ok
22:25:55.0038 3460 mrxsmb (b272b4c3e085ea860c12f2e4faf2ffa2) C:\Windows\system32\DRIVERS\mrxsmb.sys
22:25:55.0053 3460 mrxsmb - ok
22:25:55.0658 3460 mrxsmb10 (9ac33ef26c8a3ad0f117d00eb7301d03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
22:25:55.0663 3460 mrxsmb10 - ok
22:25:55.0723 3460 mrxsmb20 (e0abdb5ed7e199e242a7d028e76c1d3a) C:\Windows\system32\DRIVERS\mrxsmb20.sys
22:25:55.0726 3460 mrxsmb20 - ok
22:25:55.0748 3460 msahci (012c5f4e9349e711e11e0f19a8589f0a) C:\Windows\system32\drivers\msahci.sys
22:25:55.0751 3460 msahci - ok
22:25:55.0791 3460 msdsm (55055f8ad8be27a64c831322a780a228) C:\Windows\system32\drivers\msdsm.sys
22:25:55.0801 3460 msdsm - ok
22:25:55.0843 3460 MSDTC (e1bce74a3bd9902b72599c0192a07e27) C:\Windows\System32\msdtc.exe
22:25:55.0853 3460 MSDTC - ok
22:25:55.0878 3460 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\Windows\system32\drivers\Msfs.sys
22:25:55.0881 3460 Msfs - ok
22:25:55.0893 3460 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\Windows\System32\drivers\mshidkmdf.sys
22:25:55.0893 3460 mshidkmdf - ok
22:25:55.0906 3460 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\Windows\system32\drivers\msisadrv.sys
22:25:55.0906 3460 msisadrv - ok
22:25:55.0941 3460 MSiSCSI (90f7d9e6b6f27e1a707d4a297f077828) C:\Windows\system32\iscsiexe.dll
22:25:55.0956 3460 MSiSCSI - ok
22:25:55.0963 3460 msiserver - ok
22:25:55.0983 3460 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\Windows\system32\drivers\MSKSSRV.sys
22:25:55.0988 3460 MSKSSRV - ok
22:25:56.0006 3460 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\Windows\system32\drivers\MSPCLOCK.sys
22:25:56.0006 3460 MSPCLOCK - ok
22:25:56.0031 3460 MSPQM (f456e973590d663b1073e9c463b40932) C:\Windows\system32\drivers\MSPQM.sys
22:25:56.0031 3460 MSPQM - ok
22:25:56.0058 3460 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\Windows\system32\drivers\MsRPC.sys
22:25:56.0068 3460 MsRPC - ok
22:25:56.0081 3460 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\Windows\system32\DRIVERS\mssmbios.sys
22:25:56.0083 3460 mssmbios - ok
22:25:56.0096 3460 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\Windows\system32\drivers\MSTEE.sys
22:25:56.0098 3460 MSTEE - ok
22:25:56.0108 3460 MTConfig (33599130f44e1f34631cea241de8ac84) C:\Windows\system32\drivers\MTConfig.sys
22:25:56.0111 3460 MTConfig - ok
22:25:56.0138 3460 Mup (159fad02f64e6381758c990f753bcc80) C:\Windows\system32\Drivers\mup.sys
22:25:56.0141 3460 Mup - ok
22:25:56.0181 3460 napagent (61d57a5d7c6d9afe10e77dae6e1b445e) C:\Windows\system32\qagentRT.dll
22:25:56.0203 3460 napagent - ok
22:25:56.0233 3460 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\Windows\system32\DRIVERS\nwifi.sys
22:25:56.0258 3460 NativeWifiP - ok
22:25:56.0306 3460 NDIS (e7c54812a2aaf43316eb6930c1ffa108) C:\Windows\system32\drivers\ndis.sys
22:25:56.0333 3460 NDIS - ok
22:25:56.0376 3460 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\Windows\system32\DRIVERS\ndiscap.sys
22:25:56.0378 3460 NdisCap - ok
22:25:56.0401 3460 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\Windows\system32\DRIVERS\ndistapi.sys
22:25:56.0403 3460 NdisTapi - ok
22:25:56.0423 3460 Ndisuio (d8a65dafb3eb41cbb622745676fcd072) C:\Windows\system32\DRIVERS\ndisuio.sys
22:25:56.0426 3460 Ndisuio - ok
22:25:56.0443 3460 NdisWan (38fbe267e7e6983311179230facb1017) C:\Windows\system32\DRIVERS\ndiswan.sys
22:25:56.0456 3460 NdisWan - ok
22:25:56.0473 3460 NDProxy (a4bdc541e69674fbff1a8ff00be913f2) C:\Windows\system32\drivers\NDProxy.sys
22:25:56.0473 3460 NDProxy - ok
22:25:56.0491 3460 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\Windows\system32\DRIVERS\netbios.sys
22:25:56.0493 3460 NetBIOS - ok
22:25:56.0513 3460 NetBT (280122ddcf04b378edd1ad54d71c1e54) C:\Windows\system32\DRIVERS\netbt.sys
22:25:56.0523 3460 NetBT - ok
22:25:56.0551 3460 Netlogon (f42309c4191c506b71db5d1126d26318) C:\Windows\system32\lsass.exe
22:25:56.0553 3460 Netlogon - ok
22:25:56.0603 3460 Netman (7cccfca7510684768da22092d1fa4db2) C:\Windows\System32\netman.dll
22:25:56.0621 3460 Netman - ok
22:25:56.0668 3460 netprofm (8c338238c16777a802d6a9211eb2ba50) C:\Windows\System32\netprofm.dll
22:25:56.0683 3460 netprofm - ok
22:25:56.0773 3460 NetTcpPortSharing (f476ec40033cdb91efbe73eb99b8362d) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
22:25:56.0778 3460 NetTcpPortSharing - ok
22:25:56.0806 3460 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\Windows\system32\drivers\nfrd960.sys
22:25:56.0808 3460 nfrd960 - ok
22:25:56.0841 3460 NlaSvc (912084381d30d8b89ec4e293053f4710) C:\Windows\System32\nlasvc.dll
22:25:56.0856 3460 NlaSvc - ok
22:25:56.0873 3460 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\Windows\system32\drivers\Npfs.sys
22:25:56.0873 3460 Npfs - ok
22:25:56.0891 3460 nsi (ba387e955e890c8a88306d9b8d06bf17) C:\Windows\system32\nsisvc.dll
22:25:56.0893 3460 nsi - ok
22:25:56.0906 3460 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\Windows\system32\drivers\nsiproxy.sys
22:25:56.0906 3460 nsiproxy - ok
22:25:56.0991 3460 Ntfs (33c3093d09017cfe2e219f2472bff6eb) C:\Windows\system32\drivers\Ntfs.sys
22:25:57.0016 3460 Ntfs - ok
22:25:57.0031 3460 Null (f9756a98d69098dca8945d62858a812c) C:\Windows\system32\drivers\Null.sys
22:25:57.0031 3460 Null - ok
22:25:57.0061 3460 nvraid (af2eec9580c1d32fb7eaf105d9784061) C:\Windows\system32\drivers\nvraid.sys
22:25:57.0073 3460 nvraid - ok
22:25:57.0098 3460 nvstor (9283c58ebaa2618f93482eb5dabcec82) C:\Windows\system32\drivers\nvstor.sys
22:25:57.0106 3460 nvstor - ok
22:25:57.0141 3460 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\Windows\system32\drivers\nv_agp.sys
22:25:57.0143 3460 nv_agp - ok
22:25:57.0338 3460 odserv (84de1dd996b48b05ace31ad015fa108a) C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
22:25:57.0366 3460 odserv - ok
22:25:57.0386 3460 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\Windows\system32\drivers\ohci1394.sys
22:25:57.0388 3460 ohci1394 - ok
22:25:57.0443 3460 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
22:25:57.0446 3460 ose - ok
22:25:57.0483 3460 p2pimsvc (82a8521ddc60710c3d3d3e7325209bec) C:\Windows\system32\pnrpsvc.dll
22:25:57.0493 3460 p2pimsvc - ok
22:25:57.0518 3460 p2psvc (59c3ddd501e39e006dac31bf55150d91) C:\Windows\system32\p2psvc.dll
22:25:57.0533 3460 p2psvc - ok
22:25:57.0546 3460 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\Windows\system32\drivers\parport.sys
22:25:57.0548 3460 Parport - ok
22:25:57.0563 3460 partmgr (bf8f6af06da75b336f07e23aef97d93b) C:\Windows\system32\drivers\partmgr.sys
22:25:57.0563 3460 partmgr - ok
22:25:57.0583 3460 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\Windows\system32\drivers\parvdm.sys
22:25:57.0586 3460 Parvdm - ok
22:25:57.0608 3460 PcaSvc (358ab7956d3160000726574083dfc8a6) C:\Windows\System32\pcasvc.dll
22:25:57.0621 3460 PcaSvc - ok
22:25:57.0637 3460 pci (673e55c3498eb970088e812ea820aa8f) C:\Windows\system32\drivers\pci.sys
22:25:57.0649 3460 pci - ok
22:25:57.0657 3460 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\Windows\system32\drivers\pciide.sys
22:25:57.0659 3460 pciide - ok
22:25:57.0709 3460 pcmcia (f396431b31693e71e8a80687ef523506) C:\Windows\system32\drivers\pcmcia.sys
22:25:57.0722 3460 pcmcia - ok
22:25:57.0739 3460 pcw (250f6b43d2b613172035c6747aeeb19f) C:\Windows\system32\drivers\pcw.sys
22:25:57.0739 3460 pcw - ok
22:25:57.0784 3460 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\Windows\system32\drivers\peauth.sys
22:25:57.0802 3460 PEAUTH - ok
22:25:57.0869 3460 PeerDistSvc (af4d64d2a57b9772cf3801950b8058a6) C:\Windows\system32\peerdistsvc.dll
22:25:57.0897 3460 PeerDistSvc - ok
22:25:58.0004 3460 pla (414bba67a3ded1d28437eb66aeb8a720) C:\Windows\system32\pla.dll
22:25:58.0054 3460 pla - ok
22:25:58.0169 3460 PlugPlay (92dc6e68d2c856c5c2f21ae9e22112b8) C:\Windows\system32\umpnpmgr.dll
22:25:58.0184 3460 PlugPlay - ok
22:25:58.0197 3460 PNRPAutoReg (63ff8572611249931eb16bb8eed6afc8) C:\Windows\system32\pnrpauto.dll
22:25:58.0199 3460 PNRPAutoReg - ok
22:25:58.0227 3460 PNRPsvc (82a8521ddc60710c3d3d3e7325209bec) C:\Windows\system32\pnrpsvc.dll
22:25:58.0229 3460 PNRPsvc - ok
22:25:58.0269 3460 PolicyAgent (53946b69ba0836bd95b03759530c81ec) C:\Windows\System32\ipsecsvc.dll
22:25:58.0284 3460 PolicyAgent - ok
22:25:58.0329 3460 Power (f87d30e72e03d579a5199ccb3831d6ea) C:\Windows\system32\umpo.dll
22:25:58.0334 3460 Power - ok
22:25:58.0372 3460 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\Windows\system32\DRIVERS\raspptp.sys
22:25:58.0372 3460 PptpMiniport - ok
22:25:58.0397 3460 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\Windows\system32\drivers\processr.sys
22:25:58.0397 3460 Processor - ok
22:25:58.0437 3460 ProfSvc (43ca4ccc22d52fb58e8988f0198851d0) C:\Windows\system32\profsvc.dll
22:25:58.0449 3460 ProfSvc - ok
22:25:58.0474 3460 ProtectedStorage (f42309c4191c506b71db5d1126d26318) C:\Windows\system32\lsass.exe
22:25:58.0477 3460 ProtectedStorage - ok
22:25:58.0504 3460 Psched (6270ccae2a86de6d146529fe55b3246a) C:\Windows\system32\DRIVERS\pacer.sys
22:25:58.0509 3460 Psched - ok
22:25:58.0612 3460 QBCFMonitorService (35dd92af8b4ec79162a6a013884797af) C:\Program Files\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe
22:25:58.0612 3460 QBCFMonitorService - ok
22:25:58.0639 3460 QBFCService (6bee1814470dc12fa20c53dfc3c97ebb) C:\Program Files\Common Files\Intuit\QuickBooks\FCS\Intuit.QuickBooks.FCS.exe
22:25:58.0642 3460 QBFCService - ok
22:25:58.0732 3460 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\Windows\system32\drivers\ql2300.sys
22:25:58.0784 3460 ql2300 - ok
22:25:58.0899 3460 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\Windows\system32\drivers\ql40xx.sys
22:25:58.0904 3460 ql40xx - ok
22:25:58.0929 3460 QWAVE (31ac809e7707eb580b2bdb760390765a) C:\Windows\system32\qwave.dll
22:25:58.0942 3460 QWAVE - ok
22:25:58.0954 3460 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\Windows\system32\drivers\qwavedrv.sys
22:25:58.0957 3460 QWAVEdrv - ok
22:25:58.0969 3460 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\Windows\system32\DRIVERS\rasacd.sys
22:25:58.0969 3460 RasAcd - ok
22:25:58.0997 3460 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\Windows\system32\DRIVERS\AgileVpn.sys
22:25:58.0997 3460 RasAgileVpn - ok
22:25:59.0019 3460 RasAuto (a60f1839849c0c00739787fd5ec03f13) C:\Windows\System32\rasauto.dll
22:25:59.0032 3460 RasAuto - ok
22:25:59.0062 3460 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\Windows\system32\DRIVERS\rasl2tp.sys
22:25:59.0064 3460 Rasl2tp - ok
22:25:59.0099 3460 RasMan (cb9e04dc05eacf5b9a36ca276d475006) C:\Windows\System32\rasmans.dll
22:25:59.0117 3460 RasMan - ok
22:25:59.0144 3460 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\Windows\system32\DRIVERS\raspppoe.sys
22:25:59.0147 3460 RasPppoe - ok
22:25:59.0167 3460 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\Windows\system32\DRIVERS\rassstp.sys
22:25:59.0169 3460 RasSstp - ok
22:25:59.0194 3460 rdbss (d528bc58a489409ba40334ebf96a311b) C:\Windows\system32\DRIVERS\rdbss.sys
22:25:59.0204 3460 rdbss - ok
22:25:59.0214 3460 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\Windows\system32\DRIVERS\rdpbus.sys
22:25:59.0217 3460 rdpbus - ok
22:25:59.0229 3460 RDPCDD (23dae03f29d253ae74c44f99e515f9a1) C:\Windows\system32\DRIVERS\RDPCDD.sys
22:25:59.0229 3460 RDPCDD - ok
22:25:59.0272 3460 RDPDR (b973fcfc50dc1434e1970a146f7e3885) C:\Windows\system32\drivers\rdpdr.sys
22:25:59.0277 3460 RDPDR - ok
22:25:59.0299 3460 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\Windows\system32\drivers\rdpencdd.sys
22:25:59.0302 3460 RDPENCDD - ok
22:25:59.0317 3460 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\Windows\system32\drivers\rdprefmp.sys
22:25:59.0317 3460 RDPREFMP - ok
22:25:59.0349 3460 RdpVideoMiniport (68a0387f58e226deee23d9715955572a) C:\Windows\system32\drivers\rdpvideominiport.sys
22:25:59.0352 3460 RdpVideoMiniport - ok
22:25:59.0377 3460 RDPWD (288b06960d78428ff89e811632684e20) C:\Windows\system32\drivers\RDPWD.sys
22:25:59.0387 3460 RDPWD - ok
22:25:59.0427 3460 rdyboost (518395321dc96fe2c9f0e96ac743b656) C:\Windows\system32\drivers\rdyboost.sys
22:25:59.0437 3460 rdyboost - ok
22:25:59.0464 3460 RemoteAccess (7b5e1419717fac363a31cc302895217a) C:\Windows\System32\mprdim.dll
22:25:59.0469 3460 RemoteAccess - ok
22:25:59.0492 3460 RemoteRegistry (cb9a8683f4ef2bf99e123d79950d7935) C:\Windows\system32\regsvc.dll
22:25:59.0504 3460 RemoteRegistry - ok
22:25:59.0529 3460 RpcEptMapper (78d072f35bc45d9e4e1b61895c152234) C:\Windows\System32\RpcEpMap.dll
22:25:59.0534 3460 RpcEptMapper - ok
22:25:59.0562 3460 RpcLocator (94d36c0e44677dd26981d2bfeef2a29d) C:\Windows\system32\locator.exe
22:25:59.0564 3460 RpcLocator - ok
22:25:59.0599 3460 RpcSs (7660f01d3b38aca1747e397d21d790af) C:\Windows\system32\rpcss.dll
22:25:59.0604 3460 RpcSs - ok
22:25:59.0622 3460 rspndr (032b0d36ad92b582d869879f5af5b928) C:\Windows\system32\DRIVERS\rspndr.sys
22:25:59.0624 3460 rspndr - ok
22:25:59.0642 3460 s3cap (7fa7f2e249a5dcbb7970630e15e1f482) C:\Windows\system32\drivers\vms3cap.sys
22:25:59.0644 3460 s3cap - ok
22:25:59.0664 3460 SamSs (f42309c4191c506b71db5d1126d26318) C:\Windows\system32\lsass.exe
22:25:59.0667 3460 SamSs - ok
22:25:59.0762 3460 SASDIFSV (39763504067962108505bff25f024345) C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
22:25:59.0764 3460 SASDIFSV - ok
22:25:59.0792 3460 SASKUTIL (77b9fc20084b48408ad3e87570eb4a85) C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
22:25:59.0792 3460 SASKUTIL - ok
22:25:59.0812 3460 sbp2port (05d860da1040f111503ac416ccef2bca) C:\Windows\system32\drivers\sbp2port.sys
22:25:59.0817 3460 sbp2port - ok
22:25:59.0844 3460 SCardSvr (8fc518ffe9519c2631d37515a68009c4) C:\Windows\System32\SCardSvr.dll
22:25:59.0857 3460 SCardSvr - ok
22:25:59.0864 3460 scfilter (0693b5ec673e34dc147e195779a4dcf6) C:\Windows\system32\DRIVERS\scfilter.sys
22:25:59.0869 3460 scfilter - ok
22:25:59.0922 3460 Schedule (a04bb13f8a72f8b6e8b4071723e4e336) C:\Windows\system32\schedsvc.dll
22:25:59.0942 3460 Schedule - ok
22:25:59.0974 3460 SCPolicySvc (319c6b309773d063541d01df8ac6f55f) C:\Windows\System32\certprop.dll
22:25:59.0974 3460 SCPolicySvc - ok
22:25:59.0992 3460 SDRSVC (08236c4bce5edd0a0318a438af28e0f7) C:\Windows\System32\SDRSVC.dll
22:26:00.0004 3460 SDRSVC - ok
22:26:00.0037 3460 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
22:26:00.0039 3460 secdrv - ok
22:26:00.0062 3460 seclogon (a59b3a4442c52060cc7a85293aa3546f) C:\Windows\system32\seclogon.dll
22:26:00.0067 3460 seclogon - ok
22:26:00.0104 3460 SENS (dcb7fcdcc97f87360f75d77425b81737) C:\Windows\System32\sens.dll
22:26:00.0119 3460 SENS - ok
22:26:00.0142 3460 SensrSvc (50087fe1ee447009c9cc2997b90de53f) C:\Windows\system32\sensrsvc.dll
22:26:00.0147 3460 SensrSvc - ok
22:26:00.0167 3460 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\Windows\system32\drivers\serenum.sys
22:26:00.0172 3460 Serenum - ok
22:26:00.0192 3460 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\Windows\system32\drivers\serial.sys
22:26:00.0197 3460 Serial - ok
22:26:00.0217 3460 sermouse (79bffb520327ff916a582dfea17aa813) C:\Windows\system32\drivers\sermouse.sys
22:26:00.0219 3460 sermouse - ok
22:26:00.0287 3460 SessionEnv (4ae380f39a0032eab7dd953030b26d28) C:\Windows\system32\sessenv.dll
22:26:00.0329 3460 SessionEnv - ok
22:26:00.0347 3460 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\Windows\system32\drivers\sffdisk.sys
22:26:00.0349 3460 sffdisk - ok
22:26:00.0362 3460 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\Windows\system32\drivers\sffp_mmc.sys
22:26:00.0364 3460 sffp_mmc - ok
22:26:00.0379 3460 sffp_sd (6d4ccaedc018f1cf52866bbbaa235982) C:\Windows\system32\drivers\sffp_sd.sys
22:26:00.0382 3460 sffp_sd - ok
22:26:00.0394 3460 sfloppy (db96666cc8312ebc45032f30b007a547) C:\Windows\system32\drivers\sfloppy.sys
22:26:00.0397 3460 sfloppy - ok
22:26:00.0439 3460 ShellHWDetection (414da952a35bf5d50192e28263b40577) C:\Windows\System32\shsvcs.dll
22:26:00.0457 3460 ShellHWDetection - ok
22:26:00.0477 3460 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\Windows\system32\drivers\sisagp.sys
22:26:00.0479 3460 sisagp - ok
22:26:00.0509 3460 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\Windows\system32\drivers\SiSRaid2.sys
22:26:00.0512 3460 SiSRaid2 - ok
22:26:00.0539 3460 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\Windows\system32\drivers\sisraid4.sys
22:26:00.0542 3460 SiSRaid4 - ok
22:26:00.0767 3460 Skype C2C Service (2a99850c2a6edd6c6602e822c716edaf) C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
22:26:00.0874 3460 Skype C2C Service - ok
22:26:00.0944 3460 SkypeUpdate (6128e98eaaed364ed1a32708d2fd22cb) C:\Program Files\Skype\Updater\Updater.exe
22:26:00.0957 3460 SkypeUpdate - ok
22:26:01.0089 3460 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\Windows\system32\DRIVERS\smb.sys
22:26:01.0092 3460 Smb - ok
22:26:01.0137 3460 SNMPTRAP (6a984831644eca1a33ffeae4126f4f37) C:\Windows\System32\snmptrap.exe
22:26:01.0142 3460 SNMPTRAP - ok
22:26:01.0157 3460 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\Windows\system32\drivers\spldr.sys
22:26:01.0157 3460 spldr - ok
22:26:01.0187 3460 Spooler (866a43013535dc8587c258e43579c764) C:\Windows\System32\spoolsv.exe
22:26:01.0204 3460 Spooler - ok
22:26:01.0354 3460 sppsvc (cf87a1de791347e75b98885214ced2b8) C:\Windows\system32\sppsvc.exe
22:26:01.0432 3460 sppsvc - ok
22:26:01.0492 3460 sppuinotify (b0180b20b065d89232a78a40fe56eaa6) C:\Windows\system32\sppuinotify.dll
22:26:01.0497 3460 sppuinotify - ok
22:26:01.0552 3460 srv (112127c3b2e64d7680cc39cd0a39dd7e) C:\Windows\system32\DRIVERS\srv.sys
22:26:01.0564 3460 srv - ok
22:26:01.0592 3460 srv2 (e5dd784a4ee5ebc72a86c677c988fcdb) C:\Windows\system32\DRIVERS\srv2.sys
22:26:01.0599 3460 srv2 - ok
22:26:01.0614 3460 srvnet (cdbe627e16cc9e98f343d73f8e81d258) C:\Windows\system32\DRIVERS\srvnet.sys
22:26:01.0619 3460 srvnet - ok
22:26:01.0634 3460 SSDPSRV (d887c9fd02ac9fa880f6e5027a43e118) C:\Windows\System32\ssdpsrv.dll
22:26:01.0644 3460 SSDPSRV - ok
22:26:01.0682 3460 SSPORT (ef3458337d7341a05169cefc73709264) C:\Windows\system32\Drivers\SSPORT.sys
22:26:01.0684 3460 SSPORT - ok
22:26:01.0737 3460 SstpSvc (d318f23be45d5e3a107469eb64815b50) C:\Windows\system32\sstpsvc.dll
22:26:01.0744 3460 SstpSvc - ok
22:26:01.0794 3460 stdriver (5c031c715e14f10dfc9395004f54ee21) C:\Windows\system32\DRIVERS\stdriver32.sys
22:26:01.0797 3460 stdriver - ok
22:26:01.0817 3460 stexstor (db32d325c192b801df274bfd12a7e72b) C:\Windows\system32\drivers\stexstor.sys
22:26:01.0819 3460 stexstor - ok
22:26:01.0877 3460 StiSvc (e1fb3706030fb4578a0d72c2fc3689e4) C:\Windows\System32\wiaservc.dll
22:26:01.0894 3460 StiSvc - ok
22:26:01.0919 3460 storflt (472af0311073dceceaa8fa18ba2bdf89) C:\Windows\system32\drivers\vmstorfl.sys
22:26:01.0922 3460 storflt - ok
22:26:01.0944 3460 storvsc (dcaffd62259e0bdb433dd67b5bb37619) C:\Windows\system32\drivers\storvsc.sys
22:26:01.0947 3460 storvsc - ok
22:26:01.0972 3460 swenum (e58c78a848add9610a4db6d214af5224) C:\Windows\system32\DRIVERS\swenum.sys
22:26:01.0972 3460 swenum - ok
22:26:02.0072 3460 SwitchBoard (f577910a133a592234ebaad3f3afa258) C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
22:26:02.0092 3460 SwitchBoard - ok
22:26:02.0132 3460 swprv (a28bd92df340e57b024ba433165d34d7) C:\Windows\System32\swprv.dll
22:26:02.0147 3460 swprv - ok
22:26:02.0179 3460 Synth3dVsc (f2ad8960812fd111e20e84659ef19d43) C:\Windows\system32\drivers\synth3dvsc.sys
22:26:02.0179 3460 Synth3dVsc - ok
22:26:02.0247 3460 SysMain (36650d618ca34c9d357dfd3d89b2c56f) C:\Windows\system32\sysmain.dll
22:26:02.0274 3460 SysMain - ok
22:26:02.0292 3460 TabletInputService (763fecdc3d30c815fe72dd57936c6cd1) C:\Windows\System32\TabSvc.dll
22:26:02.0297 3460 TabletInputService - ok
22:26:02.0327 3460 TapiSrv (613bf4820361543956909043a265c6ac) C:\Windows\System32\tapisrv.dll
22:26:02.0344 3460 TapiSrv - ok
22:26:02.0364 3460 TBS (b799d9fdb26111737f58288d8dc172d9) C:\Windows\System32\tbssvc.dll
22:26:02.0369 3460 TBS - ok
22:26:02.0469 3460 Tcpip (37e8fa3779668837ca9e2c36d2415949) C:\Windows\system32\drivers\tcpip.sys
22:26:02.0497 3460 Tcpip - ok
22:26:02.0529 3460 TCPIP6 (37e8fa3779668837ca9e2c36d2415949) C:\Windows\system32\DRIVERS\tcpip.sys
22:26:02.0539 3460 TCPIP6 - ok
22:26:02.0567 3460 tcpipreg (cca24162e055c3714ce5a88b100c64ed) C:\Windows\system32\drivers\tcpipreg.sys
22:26:02.0567 3460 tcpipreg - ok
22:26:02.0589 3460 TDPIPE (1cb91b2bd8f6dd367dfc2ef26fd751b2) C:\Windows\system32\drivers\tdpipe.sys
22:26:02.0592 3460 TDPIPE - ok
22:26:02.0604 3460 TDTCP (2c10395baa4847f83042813c515cc289) C:\Windows\system32\drivers\tdtcp.sys
22:26:02.0604 3460 TDTCP - ok
22:26:02.0632 3460 tdx (b459575348c20e8121d6039da063c704) C:\Windows\system32\DRIVERS\tdx.sys
22:26:02.0634 3460 tdx - ok
22:26:02.0649 3460 TermDD (04dbf4b01ea4bf25a9a3e84affac9b20) C:\Windows\system32\DRIVERS\termdd.sys
22:26:02.0649 3460 TermDD - ok
22:26:02.0679 3460 terminpt (052306fd76793d5d5ab5d9891fd1adbb) C:\Windows\system32\drivers\terminpt.sys
22:26:02.0679 3460 terminpt - ok
22:26:02.0767 3460 TermService (382c804c92811be57829d8e550a900e2) C:\Windows\System32\termsrv.dll
22:26:02.0787 3460 TermService - ok
22:26:02.0802 3460 Themes (42fb6afd6b79d9fe07381609172e7ca4) C:\Windows\system32\themeservice.dll
22:26:02.0804 3460 Themes - ok
22:26:02.0837 3460 THREADORDER (146b6f43a673379a3c670e86d89be5ea) C:\Windows\system32\mmcss.dll
22:26:02.0839 3460 THREADORDER - ok
22:26:02.0854 3460 TrkWks (4792c0378db99a9bc2ae2de6cfff0c3a) C:\Windows\System32\trkwks.dll
22:26:02.0859 3460 TrkWks - ok
22:26:02.0899 3460 TrustedInstaller (2c49b175aee1d4364b91b531417fe583) C:\Windows\servicing\TrustedInstaller.exe
22:26:02.0909 3460 TrustedInstaller - ok
22:26:02.0937 3460 tssecsrv (254bb140eee3c59d6114c1a86b636877) C:\Windows\system32\DRIVERS\tssecsrv.sys
22:26:02.0939 3460 tssecsrv - ok
22:26:02.0957 3460 TsUsbFlt (fd1d6c73e6333be727cbcc6054247654) C:\Windows\system32\drivers\tsusbflt.sys
22:26:02.0957 3460 TsUsbFlt - ok
22:26:02.0974 3460 TsUsbGD (01246f0baad7b68ec0f472aa41e33282) C:\Windows\system32\drivers\TsUsbGD.sys
22:26:02.0974 3460 TsUsbGD - ok
22:26:02.0999 3460 tsusbhub (045acb987c650d8186c6b4a692223860) C:\Windows\system32\drivers\tsusbhub.sys
22:26:03.0004 3460 tsusbhub - ok
22:26:03.0029 3460 tunnel (b2fa25d9b17a68bb93d58b0556e8c90d) C:\Windows\system32\DRIVERS\tunnel.sys
22:26:03.0034 3460 tunnel - ok
22:26:03.0054 3460 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\Windows\system32\drivers\uagp35.sys
22:26:03.0057 3460 uagp35 - ok
22:26:03.0089 3460 udfs (ee43346c7e4b5e63e54f927babbb32ff) C:\Windows\system32\DRIVERS\udfs.sys
22:26:03.0099 3460 udfs - ok
22:26:03.0134 3460 UI0Detect (8344fd4fce927880aa1aa7681d4927e5) C:\Windows\system32\UI0Detect.exe
22:26:03.0139 3460 UI0Detect - ok
22:26:03.0154 3460 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\Windows\system32\drivers\uliagpkx.sys
22:26:03.0157 3460 uliagpkx - ok
22:26:03.0182 3460 umbus (d295bed4b898f0fd999fcfa9b32b071b) C:\Windows\system32\DRIVERS\umbus.sys
22:26:03.0184 3460 umbus - ok
22:26:03.0199 3460 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\Windows\system32\drivers\umpass.sys
22:26:03.0202 3460 UmPass - ok
22:26:03.0234 3460 UmRdpService (409994a8eaceee4e328749c0353527a0) C:\Windows\System32\umrdp.dll
22:26:03.0244 3460 UmRdpService - ok
22:26:03.0274 3460 upnphost (833fbb672460efce8011d262175fad33) C:\Windows\System32\upnphost.dll
22:26:03.0292 3460 upnphost - ok
22:26:03.0329 3460 USBAAPL (eafe1e00739afe6c51487a050e772e17) C:\Windows\system32\Drivers\usbaapl.sys
22:26:03.0332 3460 USBAAPL - ok
22:26:03.0362 3460 usbaudio (1d9f2bd026e8e2d45033a4df3f16b78c) C:\Windows\system32\drivers\usbaudio.sys
22:26:03.0364 3460 usbaudio - ok
22:26:03.0384 3460 usbccgp (7e72e7d7e0757d59481d530fd2b0bfae) C:\Windows\system32\DRIVERS\usbccgp.sys
22:26:03.0387 3460 usbccgp - ok
22:26:03.0409 3460 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\Windows\system32\drivers\usbcir.sys
22:26:03.0417 3460 usbcir - ok
22:26:03.0434 3460 usbehci (cfbce999c057d78979a181c9c60f208e) C:\Windows\system32\DRIVERS\usbehci.sys
22:26:03.0437 3460 usbehci - ok
22:26:03.0469 3460 usbhub (9d22aad9ac6a07c691a1113e5f860868) C:\Windows\system32\DRIVERS\usbhub.sys
22:26:03.0477 3460 usbhub - ok
22:26:03.0494 3460 usbohci (a6fb7957ea7afb1165991e54ce934b74) C:\Windows\system32\drivers\usbohci.sys
22:26:03.0497 3460 usbohci - ok
22:26:03.0522 3460 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\Windows\system32\DRIVERS\usbprint.sys
22:26:03.0522 3460 usbprint - ok
22:26:03.0539 3460 USBSTOR (bf63ebfc6979fefb2bc03df7989a0c1a) C:\Windows\system32\DRIVERS\USBSTOR.SYS
22:26:03.0542 3460 USBSTOR - ok
22:26:03.0554 3460 usbuhci (78780c3ebce17405b1ccd07a3a8a7d72) C:\Windows\system32\DRIVERS\usbuhci.sys
22:26:03.0557 3460 usbuhci - ok
22:26:03.0587 3460 usbvideo (45f4e7bf43db40a6c6b4d92c76cbc3f2) C:\Windows\system32\Drivers\usbvideo.sys
22:26:03.0597 3460 usbvideo - ok
22:26:03.0632 3460 UxSms (081e6e1c91aec36758902a9f727cd23c) C:\Windows\System32\uxsms.dll
22:26:03.0639 3460 UxSms - ok
22:26:03.0672 3460 VaultSvc (f42309c4191c506b71db5d1126d26318) C:\Windows\system32\lsass.exe
22:26:03.0674 3460 VaultSvc - ok
22:26:03.0727 3460 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\Windows\system32\drivers\vdrvroot.sys
22:26:03.0727 3460 vdrvroot - ok
22:26:03.0767 3460 vds (c3cd30495687c2a2f66a65ca6fd89be9) C:\Windows\System32\vds.exe
22:26:03.0779 3460 vds - ok
22:26:03.0802 3460 vga (17c408214ea61696cec9c66e388b14f3) C:\Windows\system32\DRIVERS\vgapnp.sys
22:26:03.0804 3460 vga - ok
22:26:03.0832 3460 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\Windows\System32\drivers\vga.sys
22:26:03.0834 3460 VgaSave - ok
22:26:03.0839 3460 VGPU - ok
22:26:03.0869 3460 vhdmp (5461686cca2fda57b024547733ab42e3) C:\Windows\system32\drivers\vhdmp.sys
22:26:03.0882 3460 vhdmp - ok
22:26:03.0912 3460 viaagp (c829317a37b4bea8f39735d4b076e923) C:\Windows\system32\drivers\viaagp.sys
22:26:03.0912 3460 viaagp - ok
22:26:03.0929 3460 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\Windows\system32\drivers\viac7.sys
22:26:03.0932 3460 ViaC7 - ok
22:26:03.0949 3460 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\Windows\system32\drivers\viaide.sys
22:26:03.0952 3460 viaide - ok
22:26:03.0989 3460 vmbus (c2f2911156fdc7817c52829c86da494e) C:\Windows\system32\drivers\vmbus.sys
22:26:04.0002 3460 vmbus - ok
22:26:04.0022 3460 VMBusHID (d4d77455211e204f370d08f4963063ce) C:\Windows\system32\drivers\VMBusHID.sys
22:26:04.0024 3460 VMBusHID - ok
22:26:04.0047 3460 volmgr (4c63e00f2f4b5f86ab48a58cd990f212) C:\Windows\system32\drivers\volmgr.sys
22:26:04.0047 3460 volmgr - ok
22:26:04.0084 3460 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\Windows\system32\drivers\volmgrx.sys
22:26:04.0099 3460 volmgrx - ok
22:26:04.0119 3460 volsnap (f497f67932c6fa693d7de2780631cfe7) C:\Windows\system32\drivers\volsnap.sys
22:26:04.0127 3460 volsnap - ok
22:26:04.0142 3460 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\Windows\system32\drivers\vsmraid.sys
22:26:04.0147 3460 vsmraid - ok
22:26:04.0227 3460 VSS (209a3b1901b83aeb8527ed211cce9e4c) C:\Windows\system32\vssvc.exe
22:26:04.0264 3460 VSS - ok
22:26:04.0412 3460 vToolbarUpdater11.2.0 (8ed347bad8d1fb7c40b593bfb01786d2) C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\11.2.0\ToolbarUpdater.exe
22:26:04.0444 3460 vToolbarUpdater11.2.0 - ok
22:26:04.0539 3460 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\Windows\System32\drivers\vwifibus.sys
22:26:04.0539 3460 vwifibus - ok
22:26:04.0579 3460 W32Time (55187fd710e27d5095d10a472c8baf1c) C:\Windows\system32\w32time.dll
22:26:04.0594 3460 W32Time - ok
22:26:04.0617 3460 WacomPen (de3721e89c653aa281428c8a69745d90) C:\Windows\system32\drivers\wacompen.sys
22:26:04.0619 3460 WacomPen - ok
22:26:04.0644 3460 WANARP (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys
22:26:04.0647 3460 WANARP - ok
22:26:04.0654 3460 Wanarpv6 (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys
22:26:04.0657 3460 Wanarpv6 - ok
22:26:04.0752 3460 wbengine (691e3285e53dca558e1a84667f13e15a) C:\Windows\system32\wbengine.exe
22:26:04.0782 3460 wbengine - ok
22:26:04.0804 3460 WbioSrvc (9614b5d29dc76ac3c29f6d2d3aa70e67) C:\Windows\System32\wbiosrvc.dll
22:26:04.0817 3460 WbioSrvc - ok
22:26:04.0844 3460 wcncsvc (34eee0dfaadb4f691d6d5308a51315dc) C:\Windows\System32\wcncsvc.dll
22:26:04.0862 3460 wcncsvc - ok
22:26:04.0877 3460 WcsPlugInService (5d930b6357a6d2af4d7653bdabbf352f) C:\Windows\System32\WcsPlugInService.dll
22:26:04.0879 3460 WcsPlugInService - ok
22:26:04.0932 3460 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\Windows\system32\drivers\wd.sys
22:26:04.0934 3460 Wd - ok
22:26:04.0969 3460 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys
22:26:04.0982 3460 Wdf01000 - ok
22:26:05.0002 3460 WdiServiceHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\Windows\system32\wdi.dll
22:26:05.0007 3460 WdiServiceHost - ok
22:26:05.0012 3460 WdiSystemHost (46ef9dc96265fd0b423db72e7c38c2a5) C:\Windows\system32\wdi.dll
22:26:05.0019 3460 WdiSystemHost - ok
22:26:05.0049 3460 WebClient (a9d880f97530d5b8fee278923349929d) C:\Windows\System32\webclnt.dll
22:26:05.0067 3460 WebClient - ok
22:26:05.0079 3460 Wecsvc (760f0afe937a77cff27153206534f275) C:\Windows\system32\wecsvc.dll
22:26:05.0097 3460 Wecsvc - ok
22:26:05.0109 3460 wercplsupport (ac804569bb2364fb6017370258a4091b) C:\Windows\System32\wercplsupport.dll
22:26:05.0114 3460 wercplsupport - ok
22:26:05.0152 3460 WerSvc (08e420d873e4fd85241ee2421b02c4a4) C:\Windows\System32\WerSvc.dll
22:26:05.0157 3460 WerSvc - ok
22:26:05.0182 3460 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\Windows\system32\DRIVERS\wfplwf.sys
22:26:05.0184 3460 WfpLwf - ok
22:26:05.0199 3460 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\Windows\system32\drivers\wimmount.sys
22:26:05.0202 3460 WIMMount - ok
22:26:05.0212 3460 WinHttpAutoProxySvc - ok
22:26:05.0269 3460 Winmgmt (f62e510b6ad4c21eb9fe8668ed251826) C:\Windows\system32\wbem\WMIsvc.dll
22:26:05.0282 3460 Winmgmt - ok
22:26:05.0352 3460 WinRM (1b91cd34ea3a90ab6a4ef0550174f4cc) C:\Windows\system32\WsmSvc.dll
22:26:05.0377 3460 WinRM - ok
22:26:05.0449 3460 WinUsb (a67e5f9a400f3bd1be3d80613b45f708) C:\Windows\system32\DRIVERS\WinUsb.sys
22:26:05.0452 3460 WinUsb - ok
22:26:05.0512 3460 Wlansvc (16935c98ff639d185086a3529b1f2067) C:\Windows\System32\wlansvc.dll
22:26:05.0547 3460 Wlansvc - ok
22:26:05.0713 3460 wlidsvc (fb01d4ae207b9efdbabfc55dc95c7e31) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
22:26:05.0790 3460 wlidsvc - ok
22:26:05.0860 3460 WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\Windows\system32\drivers\wmiacpi.sys
22:26:05.0860 3460 WmiAcpi - ok
22:26:05.0913 3460 wmiApSrv (6eb6b66517b048d87dc1856ddf1f4c3f) C:\Windows\system32\wbem\WmiApSrv.exe
22:26:05.0918 3460 wmiApSrv - ok
22:26:06.0000 3460 WMPNetworkSvc (3b40d3a61aa8c21b88ae57c58ab3122e) C:\Program Files\Windows Media Player\wmpnetwk.exe
22:26:06.0038 3460 WMPNetworkSvc - ok
22:26:06.0060 3460 WPCSvc (a2f0ec770a92f2b3f9de6d518e11409c) C:\Windows\System32\wpcsvc.dll
22:26:06.0063 3460 WPCSvc - ok
22:26:06.0080 3460 WPDBusEnum (aa53356d60af47eacc85bc617a4f3f66) C:\Windows\system32\wpdbusenum.dll
22:26:06.0095 3460 WPDBusEnum - ok
22:26:06.0138 3460 ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\Windows\system32\drivers\ws2ifsl.sys
22:26:06.0138 3460 ws2ifsl - ok
22:26:06.0145 3460 WSearch - ok
22:26:06.0265 3460 wuauserv (fc3ec24fce372c89423e015a2ac1a31e) C:\Windows\system32\wuaueng.dll
22:26:06.0320 3460 wuauserv - ok
22:26:06.0390 3460 WudfPf (e714a1c0354636837e20ccbf00888ee7) C:\Windows\system32\drivers\WudfPf.sys
22:26:06.0395 3460 WudfPf - ok
22:26:06.0423 3460 WUDFRd (1023ee888c9b47178c5293ed5336ab69) C:\Windows\system32\DRIVERS\WUDFRd.sys
22:26:06.0425 3460 WUDFRd - ok
22:26:06.0455 3460 wudfsvc (8d1e1e529a2c9e9b6a85b55a345f7629) C:\Windows\System32\WUDFSvc.dll
22:26:06.0460 3460 wudfsvc - ok
22:26:06.0488 3460 WwanSvc (ff2d745b560f7c71b31f30f4d49f73d2) C:\Windows\System32\wwansvc.dll
22:26:06.0498 3460 WwanSvc - ok
22:26:06.0521 3460 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
22:26:06.0778 3460 \Device\Harddisk0\DR0 - ok
22:26:06.0783 3460 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk1\DR1
22:26:07.0281 3460 \Device\Harddisk1\DR1 ( TDSS File System ) - warning
22:26:07.0281 3460 \Device\Harddisk1\DR1 - detected TDSS File System (1)
22:26:07.0286 3460 Boot (0x1200) (b4c0f1a6b1e81752d363b6ab76fc5736) \Device\Harddisk0\DR0\Partition0
22:26:07.0291 3460 \Device\Harddisk0\DR0\Partition0 - ok
22:26:07.0296 3460 Boot (0x1200) (31bdfce10c804bbd9e1496a6e4f795d0) \Device\Harddisk1\DR1\Partition0
22:26:07.0298 3460 \Device\Harddisk1\DR1\Partition0 - ok
22:26:07.0301 3460 ============================================================
22:26:07.0301 3460 Scan finished
22:26:07.0301 3460 ============================================================
22:26:07.0318 3208 Detected object count: 1
22:26:07.0318 3208 Actual detected object count: 1
22:26:21.0393 3208 \Device\Harddisk1\DR1 ( TDSS File System ) - skipped by user
22:26:21.0393 3208 \Device\Harddisk1\DR1 ( TDSS File System ) - User select action: Skip
22:26:45.0838 2680 Deinitialize success


But when I ran the aswMBR scan, it would freeze up after about 10 minutes. I re-ran the scan about 10 times and it would freeze every time. I had to go out of town yesterday and just got back. In the mean time, my internet provider turned off my service because of "virus activity". It's back on now but I don't dare hook up the infected computer. I ran a hijack this log:

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 4:39:26 PM, on 7/18/2012
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Adobe\Acrobat 10.0\Acrobat\acrotray.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\AVG Secure Search\vprot.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Users\Family\AppData\Local\Akamai\netsession_win.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Program Files\McAfee Security Scan\3.0.207\SSScheduler.exe
C:\Users\Family\AppData\Local\Akamai\netsession_win.exe
C:\Windows\system32\wuauclt.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local;<local>
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\11.1.0.12\AVG Secure Search_toolbar.dll
O2 - BHO: advertzilla - {a426ddfe-ce34-f6e2-1320-dc253151037a} - C:\Windows\system32\8baef593.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O3 - Toolbar: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\11.1.0.12\AVG Secure Search_toolbar.dll
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [Intuit SyncManager] C:\Program Files\Common Files\Intuit\Sync\IntuitSyncManager.exe startup
O4 - HKLM\..\Run: [Adobe Acrobat Speed Launcher] "C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe"
O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe"
O4 - HKLM\..\Run: [AdobeCS4ServiceManager] "C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] "C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS5.5ServiceManager] "C:\Program Files\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [vProt] "C:\Program Files\AVG Secure Search\vprot.exe"
O4 - HKCU\..\Run: [cdloader] "C:\Users\Family\AppData\Roaming\mjusbsp\cdloader2.exe" MAGICJACK
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Google Update] "C:\Users\Family\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [Facebook Update] "C:\Users\Family\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [Akamai NetSession Interface] "C:\Users\Family\AppData\Local\Akamai\netsession_win.exe"
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Global Startup: McAfee Security Scan Plus.lnk = C:\Program Files\McAfee Security Scan\3.0.207\SSScheduler.exe
O4 - Global Startup: QuickBooks Update Agent.lnk = C:\Program Files\Common Files\Intuit\QuickBooks\QBUpdate\qbupdate.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {BEA7310D-06C4-4339-A784-DC3804819809} (Photo Upload Plugin Class) - http://images3.pnimedia.com/ProductAssets/costcous/activex/v3_0_0_7/PhotoCenter_ActiveX_Control.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - https://fpdownload.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {E06E2E99-0AA1-11D4-ABA6-0060082AA75C} (GpcContainer Class) - https://akamaicdn.webex.com/client/WBXclient-T27L10NSP32EP1-13926/webex/ieatgpc1.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: intu-help-qb3 - {C5E479EA-0A65-4B05-8C6C-2FC8CC682EB4} - C:\Program Files\Intuit\QuickBooks 2010\HelpAsyncPluggableProtocol.dll
O18 - Protocol: qbwc - {FC598A64-626C-4447-85B8-53150405FD57} - mscoree.dll (file missing)
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\Skype4COM.dll
O18 - Protocol: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files\Common Files\AVG Secure Search\ViProtocolInstaller\11.2.0\ViProtocol.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\3.0.207\McCHSvc.exe
O23 - Service: QBCFMonitorService - Intuit - C:\Program Files\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe
O23 - Service: Intuit QuickBooks FCS (QBFCService) - Intuit Inc. - C:\Program Files\Common Files\Intuit\QuickBooks\FCS\Intuit.QuickBooks.FCS.exe
O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: Adobe SwitchBoard (SwitchBoard) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: vToolbarUpdater11.2.0 - Unknown owner - C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\11.2.0\ToolbarUpdater.exe

--
End of file - 11043 bytes


Is it of any use?

Thank you very much for your help with this. It's my main work computer so I really need it to get back to working.

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:04:22 AM

Posted 18 July 2012 - 08:42 PM

Please remove the Hijack this log

Can you post the ESET online scanner log

Edited by narenxp, 18 July 2012 - 08:42 PM.





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users