Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Help please - Firefox Search page set to Claro (isearch)


  • Please log in to reply
9 replies to this topic

#1 kinkladze

kinkladze

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:07:21 PM

Posted 10 September 2012 - 11:23 AM

Hi, this is my first proper post here.

Recently my firefox homepage has been changed / hijacked and changed to Claro (Isearch?). I have done scans with spybot search and destroy, Malwarebytes, used ccleaner and have downloaded combofix all to no avail. I have had viruses in the past and have always managed to get rid of them using google and info on sites such as this. This one nearly has me beat and is driving me mad :wacko:

Could anyone please advise what i can do to get rid of this please??

Let me know what info you need and i'll do my best

Thanks in advance.

Dan.

Edit: Moved topic from Windows 7 to the more appropriate forum, as suggested by member. ~ Animal

BC AdBot (Login to Remove)

 


#2 kinkladze

kinkladze
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:07:21 PM

Posted 10 September 2012 - 11:24 AM

Ooops - ive just seen the security forum - should this be re-posted there?

Dan.

#3 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:21 PM

Posted 12 September 2012 - 04:28 AM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#4 buddy215

buddy215

  • Moderator
  • 13,204 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:07:21 PM

Posted 12 September 2012 - 08:32 AM

If the above doesn't solve the problem, try this solution from :
Firefox Homepage Hijacked by Claro-Search | Firefox Support Forum | Firefox Help
Reset the browser.startup.homepage_override.mstone pref via the right-click context menu to the default on the about:config page and close and restart Firefox to restore the about:home page to its default.

  • Open the about:config page via the location bar
  • Type in the Filter bar: mstone
  • Right-click the browser.startup.homepage_override.mstone line and select: Reset
  • Close and restart Firefox
If this didn't help then delete the delete the chromeappsstore.sqlite file in the Firefox Profile Folder and repeat the above.

You can use this button to go to the Firefox profile folder:

  • Help > Troubleshooting Information > Profile Directory: Open Containing Folder
If that doesn't solve your problem then I would strongly suggest doing a clean install of Firefox.


Be sure to save your bookmarks before doing the clean install. The malware is hiding in your Firefox profile


so be sure to remove the profile folder before reinstalling Firefox.



“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”

#5 kinkladze

kinkladze
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:07:21 PM

Posted 12 September 2012 - 04:31 PM

Many thanks for the quick replies and sorry for my delay in responding.

I am currently running the 1st set of steps and will repost here when complete, i would appreciate an insight into anything that is wrong.

If not then i will do the second set of suggestions re firefox / profiles etc.

I appreciate you help.

Dan.

#6 kinkladze

kinkladze
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:07:21 PM

Posted 13 September 2012 - 01:35 AM

Here are the logs - only the eset picked anything up. I have not done anything else (deleted quarantined files etc).

Thanks for taking the time to look.

Dan.

TDSS KILLER Log

22:15:28.0751 14292 TDSS rootkit removing tool 2.8.8.0 Aug 24 2012 13:27:48
22:15:29.0229 14292 ============================================================
22:15:29.0229 14292 Current date / time: 2012/09/12 22:15:29.0229
22:15:29.0229 14292 SystemInfo:
22:15:29.0229 14292
22:15:29.0229 14292 OS Version: 6.1.7601 ServicePack: 1.0
22:15:29.0229 14292 Product type: Workstation
22:15:29.0229 14292 ComputerName: DAN-LAPTOP
22:15:29.0229 14292 UserName: Dan
22:15:29.0230 14292 Windows directory: C:\Windows
22:15:29.0230 14292 System windows directory: C:\Windows
22:15:29.0230 14292 Running under WOW64
22:15:29.0230 14292 Processor architecture: Intel x64
22:15:29.0230 14292 Number of processors: 2
22:15:29.0230 14292 Page size: 0x1000
22:15:29.0230 14292 Boot type: Normal boot
22:15:29.0230 14292 ============================================================
22:15:30.0360 14292 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
22:15:30.0369 14292 ============================================================
22:15:30.0369 14292 \Device\Harddisk0\DR0:
22:15:30.0369 14292 MBR partitions:
22:15:30.0369 14292 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x14000, BlocksNum 0x1D4C000
22:15:30.0370 14292 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1D60000, BlocksNum 0x38625830
22:15:30.0370 14292 ============================================================
22:15:30.0411 14292 C: <-> \Device\Harddisk0\DR0\Partition2
22:15:30.0411 14292 ============================================================
22:15:30.0411 14292 Initialize success
22:15:30.0411 14292 ============================================================
22:15:32.0817 13516 ============================================================
22:15:32.0817 13516 Scan started
22:15:32.0817 13516 Mode: Manual;
22:15:32.0817 13516 ============================================================
22:15:33.0929 13516 ================ Scan system memory ========================
22:15:33.0930 13516 System memory - ok
22:15:33.0932 13516 ================ Scan services =============================
22:15:34.0167 13516 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
22:15:34.0185 13516 1394ohci - ok
22:15:34.0216 13516 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
22:15:34.0222 13516 ACPI - ok
22:15:34.0259 13516 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
22:15:34.0261 13516 AcpiPmi - ok
22:15:34.0317 13516 [ 70270FBA7F566B8AF0782EDC0E42B940 ] ActivHidSerMini C:\Windows\system32\DRIVERS\activhidsermini.sys
22:15:34.0320 13516 ActivHidSerMini - ok
22:15:34.0500 13516 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
22:15:34.0502 13516 AdobeARMservice - ok
22:15:34.0689 13516 [ B2B64AF436FACCFA854DD397027C5360 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
22:15:34.0692 13516 AdobeFlashPlayerUpdateSvc - ok
22:15:34.0755 13516 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
22:15:34.0796 13516 adp94xx - ok
22:15:34.0831 13516 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
22:15:34.0840 13516 adpahci - ok
22:15:34.0872 13516 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
22:15:34.0877 13516 adpu320 - ok
22:15:35.0014 13516 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
22:15:35.0017 13516 AeLookupSvc - ok
22:15:35.0158 13516 [ A6FB9DB8F1A86861D955FD6975977AE0 ] AESTFilters C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_7f58c91b65c73836\AESTSr64.exe
22:15:35.0161 13516 AESTFilters - ok
22:15:35.0222 13516 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
22:15:35.0261 13516 AFD - ok
22:15:35.0314 13516 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
22:15:35.0318 13516 agp440 - ok
22:15:35.0366 13516 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
22:15:35.0385 13516 ALG - ok
22:15:35.0417 13516 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
22:15:35.0420 13516 aliide - ok
22:15:35.0466 13516 [ 9A5495EDEBE7D6B3F7E9A86EBE5EA248 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
22:15:35.0471 13516 AMD External Events Utility - ok
22:15:35.0487 13516 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
22:15:35.0490 13516 amdide - ok
22:15:35.0544 13516 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
22:15:35.0547 13516 AmdK8 - ok
22:15:35.0564 13516 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
22:15:35.0568 13516 AmdPPM - ok
22:15:35.0609 13516 [ 6EC6D772EAE38DC17C14AED9B178D24B ] amdsata C:\Windows\system32\drivers\amdsata.sys
22:15:35.0613 13516 amdsata - ok
22:15:35.0639 13516 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
22:15:35.0645 13516 amdsbs - ok
22:15:35.0666 13516 [ 1142A21DB581A84EA5597B03A26EBAA0 ] amdxata C:\Windows\system32\drivers\amdxata.sys
22:15:35.0667 13516 amdxata - ok
22:15:35.0721 13516 [ 98449A2957778A6F025C418438A380F4 ] ApfiltrService C:\Windows\system32\DRIVERS\Apfiltr.sys
22:15:35.0746 13516 ApfiltrService - ok
22:15:35.0817 13516 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
22:15:35.0821 13516 AppID - ok
22:15:35.0880 13516 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
22:15:35.0899 13516 AppIDSvc - ok
22:15:35.0939 13516 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
22:15:35.0942 13516 Appinfo - ok
22:15:36.0028 13516 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
22:15:36.0031 13516 arc - ok
22:15:36.0047 13516 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
22:15:36.0050 13516 arcsas - ok
22:15:36.0217 13516 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
22:15:36.0241 13516 aspnet_state - ok
22:15:36.0301 13516 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
22:15:36.0304 13516 AsyncMac - ok
22:15:36.0359 13516 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
22:15:36.0361 13516 atapi - ok
22:15:36.0538 13516 [ A08339AE90972E268B9622C668F450E8 ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
22:15:36.0701 13516 atikmdag - ok
22:15:36.0758 13516 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
22:15:36.0781 13516 AudioEndpointBuilder - ok
22:15:36.0811 13516 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
22:15:36.0815 13516 AudioSrv - ok
22:15:36.0905 13516 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
22:15:36.0909 13516 AxInstSV - ok
22:15:36.0974 13516 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
22:15:36.0994 13516 b06bdrv - ok
22:15:37.0045 13516 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
22:15:37.0052 13516 b57nd60a - ok
22:15:37.0282 13516 [ 8C80E881B57D1AD8CE8AEDE454E9695B ] bbtest_svc C:\Program Files (x86)\Broadband Test Application\BroadbandTestApp.exe
22:15:37.0292 13516 bbtest_svc - ok
22:15:37.0340 13516 [ E001DD475A7C27EBE5A0DB45C11BAD71 ] BCM42RLY C:\Windows\system32\drivers\BCM42RLY.sys
22:15:37.0358 13516 BCM42RLY - ok
22:15:37.0476 13516 [ F4CD5F52850BF2C978DE178F256BA372 ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl664.sys
22:15:37.0554 13516 BCM43XX - ok
22:15:37.0622 13516 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
22:15:37.0641 13516 BDESVC - ok
22:15:37.0695 13516 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
22:15:37.0698 13516 Beep - ok
22:15:37.0774 13516 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
22:15:37.0797 13516 BFE - ok
22:15:38.0043 13516 [ A45BE4E091636F6C86D6E4FC945D5A26 ] BHDrvx64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\BASHDefs\20120905.001\BHDrvx64.sys
22:15:38.0089 13516 BHDrvx64 - ok
22:15:38.0151 13516 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\system32\qmgr.dll
22:15:38.0186 13516 BITS - ok
22:15:38.0217 13516 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
22:15:38.0220 13516 blbdrive - ok
22:15:38.0266 13516 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
22:15:38.0269 13516 bowser - ok
22:15:38.0314 13516 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
22:15:38.0317 13516 BrFiltLo - ok
22:15:38.0340 13516 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
22:15:38.0343 13516 BrFiltUp - ok
22:15:38.0376 13516 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
22:15:38.0380 13516 BridgeMP - ok
22:15:38.0430 13516 [ 8EF0D5C41EC907751B8429162B1239ED ] Browser C:\Windows\System32\browser.dll
22:15:38.0434 13516 Browser - ok
22:15:38.0465 13516 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
22:15:38.0473 13516 Brserid - ok
22:15:38.0496 13516 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
22:15:38.0499 13516 BrSerWdm - ok
22:15:38.0521 13516 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
22:15:38.0524 13516 BrUsbMdm - ok
22:15:38.0545 13516 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
22:15:38.0548 13516 BrUsbSer - ok
22:15:38.0575 13516 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
22:15:38.0579 13516 BTHMODEM - ok
22:15:38.0648 13516 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
22:15:38.0667 13516 bthserv - ok
22:15:38.0698 13516 catchme - ok
22:15:38.0760 13516 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
22:15:38.0764 13516 cdfs - ok
22:15:38.0820 13516 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
22:15:38.0826 13516 cdrom - ok
22:15:38.0882 13516 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
22:15:38.0886 13516 CertPropSvc - ok
22:15:38.0945 13516 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
22:15:38.0948 13516 circlass - ok
22:15:39.0002 13516 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
22:15:39.0010 13516 CLFS - ok
22:15:39.0106 13516 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
22:15:39.0128 13516 clr_optimization_v2.0.50727_32 - ok
22:15:39.0191 13516 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
22:15:39.0195 13516 clr_optimization_v2.0.50727_64 - ok
22:15:39.0322 13516 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
22:15:39.0343 13516 clr_optimization_v4.0.30319_32 - ok
22:15:39.0379 13516 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
22:15:39.0434 13516 clr_optimization_v4.0.30319_64 - ok
22:15:39.0462 13516 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
22:15:39.0465 13516 CmBatt - ok
22:15:39.0483 13516 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
22:15:39.0486 13516 cmdide - ok
22:15:39.0546 13516 [ C4943B6C962E4B82197542447AD599F4 ] CNG C:\Windows\system32\Drivers\cng.sys
22:15:39.0555 13516 CNG - ok
22:15:39.0620 13516 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
22:15:39.0621 13516 Compbatt - ok
22:15:39.0675 13516 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
22:15:39.0678 13516 CompositeBus - ok
22:15:39.0691 13516 COMSysApp - ok
22:15:39.0714 13516 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
22:15:39.0717 13516 crcdisk - ok
22:15:39.0779 13516 [ 15597883FBE9B056F276ADA3AD87D9AF ] CryptSvc C:\Windows\system32\cryptsvc.dll
22:15:39.0785 13516 CryptSvc - ok
22:15:39.0849 13516 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
22:15:39.0863 13516 DcomLaunch - ok
22:15:39.0925 13516 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
22:15:39.0933 13516 defragsvc - ok
22:15:39.0982 13516 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
22:15:39.0984 13516 DfsC - ok
22:15:40.0048 13516 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
22:15:40.0056 13516 Dhcp - ok
22:15:40.0103 13516 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
22:15:40.0112 13516 discache - ok
22:15:40.0138 13516 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
22:15:40.0141 13516 Disk - ok
22:15:40.0183 13516 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
22:15:40.0188 13516 Dnscache - ok
22:15:40.0333 13516 [ 0840ABBBDF438691EE65A20040635CBE ] DockLoginService C:\Program Files\Dell\DellDock\DockLogin.exe
22:15:40.0337 13516 DockLoginService - ok
22:15:40.0393 13516 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
22:15:40.0438 13516 dot3svc - ok
22:15:40.0462 13516 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
22:15:40.0467 13516 DPS - ok
22:15:40.0513 13516 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
22:15:40.0529 13516 drmkaud - ok
22:15:40.0609 13516 [ 46571ED73AE84469DCA53081D33CF3C8 ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys
22:15:40.0616 13516 dtsoftbus01 - ok
22:15:40.0691 13516 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
22:15:40.0747 13516 DXGKrnl - ok
22:15:40.0803 13516 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
22:15:40.0807 13516 EapHost - ok
22:15:40.0930 13516 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
22:15:41.0022 13516 ebdrv - ok
22:15:41.0122 13516 [ 4353FF94D47A0A9D52B89ECCF0CDB013 ] eeCtrl C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
22:15:41.0134 13516 eeCtrl - ok
22:15:41.0185 13516 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
22:15:41.0189 13516 EFS - ok
22:15:41.0306 13516 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
22:15:41.0329 13516 ehRecvr - ok
22:15:41.0378 13516 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
22:15:41.0405 13516 ehSched - ok
22:15:41.0449 13516 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
22:15:41.0458 13516 elxstor - ok
22:15:41.0509 13516 [ 9EAFB3B3B60B8AD958985152A9309ACA ] epmntdrv C:\Windows\system32\epmntdrv.sys
22:15:41.0523 13516 epmntdrv - ok
22:15:41.0631 13516 [ C5BCCB378D0A896304A3E71BE7215983 ] EraserUtilRebootDrv C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
22:15:41.0656 13516 EraserUtilRebootDrv - ok
22:15:41.0696 13516 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
22:15:41.0699 13516 ErrDev - ok
22:15:41.0768 13516 [ FB949ED2C93C878A189039F3D7730942 ] EuGdiDrv C:\Windows\system32\EuGdiDrv.sys
22:15:41.0793 13516 EuGdiDrv - ok
22:15:41.0872 13516 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
22:15:41.0881 13516 EventSystem - ok
22:15:41.0914 13516 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
22:15:41.0920 13516 exfat - ok
22:15:41.0945 13516 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
22:15:41.0949 13516 fastfat - ok
22:15:42.0012 13516 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
22:15:42.0052 13516 Fax - ok
22:15:42.0097 13516 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
22:15:42.0100 13516 fdc - ok
22:15:42.0141 13516 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
22:15:42.0143 13516 fdPHost - ok
22:15:42.0159 13516 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
22:15:42.0162 13516 FDResPub - ok
22:15:42.0179 13516 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
22:15:42.0181 13516 FileInfo - ok
22:15:42.0192 13516 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
22:15:42.0194 13516 Filetrace - ok
22:15:42.0356 13516 [ 167D24A045499EBEF438F231976158DF ] FirebirdServerMAGIXInstance C:\Program Files (x86)\MAGIX\Common\Database\bin\fbserver.exe
22:15:42.0434 13516 FirebirdServerMAGIXInstance - ok
22:15:42.0453 13516 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
22:15:42.0455 13516 flpydisk - ok
22:15:42.0496 13516 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
22:15:42.0502 13516 FltMgr - ok
22:15:42.0579 13516 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
22:15:42.0614 13516 FontCache - ok
22:15:42.0711 13516 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
22:15:42.0714 13516 FontCache3.0.0.0 - ok
22:15:42.0768 13516 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
22:15:42.0772 13516 FsDepends - ok
22:15:42.0818 13516 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
22:15:42.0842 13516 Fs_Rec - ok
22:15:42.0917 13516 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
22:15:42.0923 13516 fvevol - ok
22:15:42.0970 13516 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
22:15:42.0975 13516 gagp30kx - ok
22:15:43.0085 13516 [ C1BBCE4B30B45410178EE674C818D10C ] GameConsoleService C:\Program Files (x86)\WildTangent\Dell Games\Dell Game Console\GameConsoleService.exe
22:15:43.0106 13516 GameConsoleService - ok
22:15:43.0163 13516 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
22:15:43.0185 13516 gpsvc - ok
22:15:43.0236 13516 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
22:15:43.0239 13516 hcw85cir - ok
22:15:43.0302 13516 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
22:15:43.0305 13516 HDAudBus - ok
22:15:43.0321 13516 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
22:15:43.0323 13516 HidBatt - ok
22:15:43.0344 13516 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
22:15:43.0347 13516 HidBth - ok
22:15:43.0365 13516 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
22:15:43.0367 13516 HidIr - ok
22:15:43.0407 13516 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll
22:15:43.0410 13516 hidserv - ok
22:15:43.0433 13516 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\drivers\hidusb.sys
22:15:43.0436 13516 HidUsb - ok
22:15:43.0482 13516 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
22:15:43.0486 13516 hkmsvc - ok
22:15:43.0545 13516 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
22:15:43.0552 13516 HomeGroupListener - ok
22:15:43.0610 13516 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
22:15:43.0617 13516 HomeGroupProvider - ok
22:15:43.0646 13516 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
22:15:43.0650 13516 HpSAMD - ok
22:15:43.0716 13516 [ F47CEC45FB85791D4AB237563AD0FA8F ] HTCAND64 C:\Windows\system32\Drivers\ANDROIDUSB.sys
22:15:43.0734 13516 HTCAND64 - ok
22:15:43.0860 13516 [ 5C8BC8A28798FD010E7ABC4E0D588CAA ] HTCMonitorService C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe
22:15:43.0863 13516 HTCMonitorService - ok
22:15:43.0973 13516 [ B8B1B284362E1D8135112573395D5DA5 ] htcnprot C:\Windows\system32\DRIVERS\htcnprot.sys
22:15:43.0990 13516 htcnprot - ok
22:15:44.0045 13516 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
22:15:44.0072 13516 HTTP - ok
22:15:44.0122 13516 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
22:15:44.0123 13516 hwpolicy - ok
22:15:44.0184 13516 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
22:15:44.0188 13516 i8042prt - ok
22:15:44.0236 13516 [ 4F6FB2CDBDEEFC47E7D2066E78254580 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
22:15:44.0242 13516 iaStor - ok
22:15:44.0356 13516 [ AF3FA498AFCC7242C7DC411881C5575A ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
22:15:44.0358 13516 IAStorDataMgrSvc - ok
22:15:44.0418 13516 [ 3DF4395A7CF8B7A72A5F4606366B8C2D ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
22:15:44.0427 13516 iaStorV - ok
22:15:44.0505 13516 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
22:15:44.0539 13516 idsvc - ok
22:15:44.0684 13516 [ A48928D4CCA6F8B731989DB08CF2C0AB ] IDSVia64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\IPSDefs\20120911.001\IDSvia64.sys
22:15:44.0707 13516 IDSVia64 - ok
22:15:44.0757 13516 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
22:15:44.0760 13516 iirsp - ok
22:15:44.0820 13516 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
22:15:44.0854 13516 IKEEXT - ok
22:15:44.0913 13516 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
22:15:44.0916 13516 intelide - ok
22:15:44.0949 13516 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
22:15:44.0952 13516 intelppm - ok
22:15:44.0992 13516 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
22:15:44.0997 13516 IPBusEnum - ok
22:15:45.0043 13516 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
22:15:45.0047 13516 IpFilterDriver - ok
22:15:45.0081 13516 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
22:15:45.0104 13516 iphlpsvc - ok
22:15:45.0147 13516 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
22:15:45.0151 13516 IPMIDRV - ok
22:15:45.0253 13516 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
22:15:45.0258 13516 IPNAT - ok
22:15:45.0286 13516 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
22:15:45.0289 13516 IRENUM - ok
22:15:45.0308 13516 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
22:15:45.0311 13516 isapnp - ok
22:15:45.0332 13516 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
22:15:45.0338 13516 iScsiPrt - ok
22:15:45.0368 13516 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
22:15:45.0372 13516 kbdclass - ok
22:15:45.0398 13516 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
22:15:45.0400 13516 kbdhid - ok
22:15:45.0411 13516 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
22:15:45.0412 13516 KeyIso - ok
22:15:45.0456 13516 [ DA1E991A61CFDD755A589E206B97644B ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
22:15:45.0459 13516 KSecDD - ok
22:15:45.0490 13516 [ 7E33198D956943A4F11A5474C1E9106F ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
22:15:45.0494 13516 KSecPkg - ok
22:15:45.0536 13516 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
22:15:45.0539 13516 ksthunk - ok
22:15:45.0592 13516 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
22:15:45.0636 13516 KtmRm - ok
22:15:45.0692 13516 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\System32\srvsvc.dll
22:15:45.0700 13516 LanmanServer - ok
22:15:45.0749 13516 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
22:15:45.0754 13516 LanmanWorkstation - ok
22:15:46.0050 13516 [ 4CCC8AABE7880C56BA10043B8FBCA3EB ] LeapFrog Connect Device Service C:\Program Files (x86)\LeapFrog\LeapFrog Connect\CommandService.exe
22:15:46.0228 13516 LeapFrog Connect Device Service - ok
22:15:46.0256 13516 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
22:15:46.0258 13516 lltdio - ok
22:15:46.0311 13516 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
22:15:46.0334 13516 lltdsvc - ok
22:15:46.0355 13516 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
22:15:46.0358 13516 lmhosts - ok
22:15:46.0391 13516 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
22:15:46.0394 13516 LSI_FC - ok
22:15:46.0441 13516 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
22:15:46.0444 13516 LSI_SAS - ok
22:15:46.0459 13516 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
22:15:46.0462 13516 LSI_SAS2 - ok
22:15:46.0478 13516 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
22:15:46.0481 13516 LSI_SCSI - ok
22:15:46.0507 13516 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
22:15:46.0510 13516 luafv - ok
22:15:46.0554 13516 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
22:15:46.0580 13516 Mcx2Svc - ok
22:15:46.0608 13516 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
22:15:46.0611 13516 megasas - ok
22:15:46.0636 13516 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
22:15:46.0642 13516 MegaSR - ok
22:15:46.0694 13516 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
22:15:46.0698 13516 MMCSS - ok
22:15:46.0735 13516 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
22:15:46.0739 13516 Modem - ok
22:15:46.0763 13516 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
22:15:46.0766 13516 monitor - ok
22:15:46.0788 13516 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\drivers\mouclass.sys
22:15:46.0792 13516 mouclass - ok
22:15:46.0814 13516 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
22:15:46.0818 13516 mouhid - ok
22:15:46.0866 13516 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
22:15:46.0870 13516 mountmgr - ok
22:15:46.0968 13516 [ CB8AF049AC9BE419A77ADAE288673359 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
22:15:46.0972 13516 MozillaMaintenance - ok
22:15:47.0021 13516 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
22:15:47.0027 13516 mpio - ok
22:15:47.0077 13516 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
22:15:47.0082 13516 mpsdrv - ok
22:15:47.0157 13516 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
22:15:47.0203 13516 MpsSvc - ok
22:15:47.0248 13516 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
22:15:47.0253 13516 MRxDAV - ok
22:15:47.0298 13516 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
22:15:47.0302 13516 mrxsmb - ok
22:15:47.0325 13516 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
22:15:47.0332 13516 mrxsmb10 - ok
22:15:47.0356 13516 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
22:15:47.0360 13516 mrxsmb20 - ok
22:15:47.0408 13516 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
22:15:47.0432 13516 msahci - ok
22:15:47.0457 13516 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
22:15:47.0463 13516 msdsm - ok
22:15:47.0487 13516 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
22:15:47.0491 13516 MSDTC - ok
22:15:47.0548 13516 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
22:15:47.0549 13516 Msfs - ok
22:15:47.0569 13516 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
22:15:47.0572 13516 mshidkmdf - ok
22:15:47.0614 13516 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
22:15:47.0615 13516 msisadrv - ok
22:15:47.0668 13516 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
22:15:47.0684 13516 MSiSCSI - ok
22:15:47.0692 13516 msiserver - ok
22:15:47.0754 13516 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
22:15:47.0757 13516 MSKSSRV - ok
22:15:47.0778 13516 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
22:15:47.0781 13516 MSPCLOCK - ok
22:15:47.0798 13516 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
22:15:47.0801 13516 MSPQM - ok
22:15:47.0852 13516 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
22:15:47.0860 13516 MsRPC - ok
22:15:47.0907 13516 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
22:15:47.0909 13516 mssmbios - ok
22:15:47.0950 13516 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
22:15:47.0952 13516 MSTEE - ok
22:15:47.0970 13516 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
22:15:47.0973 13516 MTConfig - ok
22:15:47.0995 13516 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
22:15:47.0995 13516 Mup - ok
22:15:48.0020 13516 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
22:15:48.0032 13516 napagent - ok
22:15:48.0052 13516 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
22:15:48.0058 13516 NativeWifiP - ok
22:15:48.0177 13516 [ 1BBBF640BC0E0B750537BAECE8D66C18 ] NAUpdate C:\Program Files (x86)\Nero\Update\NASvc.exe
22:15:48.0200 13516 NAUpdate - ok
22:15:48.0307 13516 [ 149A9AD81BB327E892FA1ACB77722442 ] NAVENG C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\VirusDefs\20120911.034\ENG64.SYS
22:15:48.0312 13516 NAVENG - ok
22:15:48.0395 13516 [ 4AF8750E71B549FEC5F6D1D01398CA69 ] NAVEX15 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_18.1.0.37\Definitions\VirusDefs\20120911.034\EX64.SYS
22:15:48.0463 13516 NAVEX15 - ok
22:15:48.0549 13516 [ 7B2D90BBBBED11C8DFBA441D34AE901E ] NBVol C:\Windows\system32\DRIVERS\NBVol.sys
22:15:48.0553 13516 NBVol - ok
22:15:48.0615 13516 [ 4FE7B5757279D82C4D171E9F7FD52A75 ] NBVolUp C:\Windows\system32\DRIVERS\NBVolUp.sys
22:15:48.0616 13516 NBVolUp - ok
22:15:48.0684 13516 [ 79B47FD40D9A817E932F9D26FAC0A81C ] NDIS C:\Windows\system32\drivers\ndis.sys
22:15:48.0718 13516 NDIS - ok
22:15:48.0767 13516 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
22:15:48.0770 13516 NdisCap - ok
22:15:48.0804 13516 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
22:15:48.0807 13516 NdisTapi - ok
22:15:48.0859 13516 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
22:15:48.0863 13516 Ndisuio - ok
22:15:48.0910 13516 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
22:15:48.0937 13516 NdisWan - ok
22:15:48.0971 13516 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
22:15:48.0974 13516 NDProxy - ok
22:15:49.0147 13516 [ 78073F606AE3B24F6C1F555759AA8511 ] Nero BackItUp Scheduler 3 C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBService.exe
22:15:49.0174 13516 Nero BackItUp Scheduler 3 - ok
22:15:49.0218 13516 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
22:15:49.0219 13516 NetBIOS - ok
22:15:49.0269 13516 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
22:15:49.0290 13516 NetBT - ok
22:15:49.0327 13516 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
22:15:49.0329 13516 Netlogon - ok
22:15:49.0396 13516 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
22:15:49.0406 13516 Netman - ok
22:15:49.0464 13516 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:15:49.0479 13516 NetMsmqActivator - ok
22:15:49.0488 13516 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:15:49.0491 13516 NetPipeActivator - ok
22:15:49.0522 13516 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
22:15:49.0531 13516 netprofm - ok
22:15:49.0539 13516 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:15:49.0540 13516 NetTcpActivator - ok
22:15:49.0553 13516 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:15:49.0555 13516 NetTcpPortSharing - ok
22:15:49.0612 13516 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
22:15:49.0615 13516 nfrd960 - ok
22:15:49.0724 13516 [ 56E7999EE68837453B177298542F5A75 ] NielsenUpdate C:\Program Files (x86)\NetRatingsNetSight\NetSight\NielsenUpdate.exe
22:15:49.0746 13516 NielsenUpdate - ok
22:15:49.0856 13516 [ E78A365CC3E0FBFC018A33DCE01909F8 ] NIS C:\Program Files (x86)\Norton Internet Security\Engine\18.7.2.3\ccSvcHst.exe
22:15:49.0860 13516 NIS - ok
22:15:49.0922 13516 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
22:15:49.0931 13516 NlaSvc - ok
22:15:50.0060 13516 [ 62F68443D244024845B875B44D76A92F ] NMIndexingService C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe
22:15:50.0070 13516 NMIndexingService - ok
22:15:50.0162 13516 [ 9E0EB61F9F56549E020C7AF4DEFCCEAD ] nnfwdk C:\Program Files (x86)\NetRatingsNetSight\NetSight\meter5\nnfwdk64.sys
22:15:50.0166 13516 nnfwdk - ok
22:15:50.0182 13516 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
22:15:50.0183 13516 Npfs - ok
22:15:50.0236 13516 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
22:15:50.0240 13516 nsi - ok
22:15:50.0286 13516 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
22:15:50.0289 13516 nsiproxy - ok
22:15:50.0369 13516 [ 05D78AA5CB5F3F5C31160BDB955D0B7C ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
22:15:50.0415 13516 Ntfs - ok
22:15:50.0435 13516 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
22:15:50.0438 13516 Null - ok
22:15:50.0466 13516 [ 5D9FD91F3D38DC9DA01E3CB5FA89CD48 ] nvraid C:\Windows\system32\drivers\nvraid.sys
22:15:50.0472 13516 nvraid - ok
22:15:50.0516 13516 [ F7CD50FE7139F07E77DA8AC8033D1832 ] nvstor C:\Windows\system32\drivers\nvstor.sys
22:15:50.0522 13516 nvstor - ok
22:15:50.0557 13516 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
22:15:50.0562 13516 nv_agp - ok
22:15:50.0576 13516 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
22:15:50.0580 13516 ohci1394 - ok
22:15:50.0642 13516 [ 8ACDBF1ABA7EA3280B3F8C9BF0454B1E ] optousb C:\Windows\system32\DRIVERS\optousb.sys
22:15:50.0667 13516 optousb - ok
22:15:50.0704 13516 [ 28AB5778EAA05B0DF2921713A959B30C ] optovcm C:\Windows\system32\DRIVERS\optovcm.sys
22:15:50.0707 13516 optovcm - ok
22:15:50.0803 13516 [ 7A56CF3E3F12E8AF599963B16F50FB6A ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
22:15:50.0837 13516 ose - ok
22:15:50.0884 13516 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
22:15:50.0893 13516 p2pimsvc - ok
22:15:50.0948 13516 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
22:15:50.0959 13516 p2psvc - ok
22:15:51.0006 13516 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
22:15:51.0010 13516 Parport - ok
22:15:51.0052 13516 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
22:15:51.0054 13516 partmgr - ok
22:15:51.0110 13516 [ 9987ABA0E5DD0D46C95076B157B38C06 ] PassThru Service C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
22:15:51.0112 13516 PassThru Service - ok
22:15:51.0231 13516 [ 7C0582921913D00180EC2B8518BA135C ] pbfilter C:\Program Files\PeerBlock\pbfilter.sys
22:15:51.0234 13516 pbfilter - ok
22:15:51.0284 13516 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
22:15:51.0290 13516 PcaSvc - ok
22:15:51.0402 13516 [ 7317A0B550F7AC0223B7070897670476 ] PCDSRVC{1E208CE0-FB7451FF-06020101}_0 c:\program files\dell support center\pcdsrvc_x64.pkms
22:15:51.0443 13516 PCDSRVC{1E208CE0-FB7451FF-06020101}_0 - ok
22:15:51.0471 13516 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
22:15:51.0475 13516 pci - ok
22:15:51.0517 13516 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
22:15:51.0520 13516 pciide - ok
22:15:51.0565 13516 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
22:15:51.0571 13516 pcmcia - ok
22:15:51.0591 13516 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
22:15:51.0593 13516 pcw - ok
22:15:51.0624 13516 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
22:15:51.0648 13516 PEAUTH - ok
22:15:51.0775 13516 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
22:15:51.0780 13516 PerfHost - ok
22:15:51.0873 13516 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
22:15:51.0919 13516 pla - ok
22:15:51.0997 13516 [ 875E4E0661F3A5994DF9E5E3A0A4F96B ] PLFlash DeviceIoControl Service C:\Windows\SysWOW64\IoctlSvc.exe
22:15:52.0000 13516 PLFlash DeviceIoControl Service - ok
22:15:52.0046 13516 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
22:15:52.0057 13516 PlugPlay - ok
22:15:52.0130 13516 [ F485770EEC8959684CC4C4786B63C06C ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
22:15:52.0134 13516 Pml Driver HPZ12 - ok
22:15:52.0151 13516 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
22:15:52.0155 13516 PNRPAutoReg - ok
22:15:52.0183 13516 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
22:15:52.0187 13516 PNRPsvc - ok
22:15:52.0244 13516 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
22:15:52.0266 13516 PolicyAgent - ok
22:15:52.0328 13516 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
22:15:52.0334 13516 Power - ok
22:15:52.0386 13516 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
22:15:52.0401 13516 PptpMiniport - ok
22:15:52.0436 13516 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
22:15:52.0440 13516 Processor - ok
22:15:52.0483 13516 [ 5C78838B4D166D1A27DB3A8A820C799A ] ProfSvc C:\Windows\system32\profsvc.dll
22:15:52.0490 13516 ProfSvc - ok
22:15:52.0541 13516 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
22:15:52.0543 13516 ProtectedStorage - ok
22:15:52.0598 13516 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
22:15:52.0615 13516 Psched - ok
22:15:52.0672 13516 [ 543A4EF0923BF70D126625B034EF25AF ] PSI_SVC_2 c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
22:15:52.0677 13516 PSI_SVC_2 - ok
22:15:52.0735 13516 [ 4712CC14E720ECCCC0AA16949D18AAF1 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
22:15:52.0736 13516 PxHlpa64 - ok
22:15:52.0800 13516 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
22:15:52.0846 13516 ql2300 - ok
22:15:52.0894 13516 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
22:15:52.0899 13516 ql40xx - ok
22:15:52.0944 13516 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
22:15:52.0952 13516 QWAVE - ok
22:15:52.0969 13516 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
22:15:52.0973 13516 QWAVEdrv - ok
22:15:52.0997 13516 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
22:15:53.0000 13516 RasAcd - ok
22:15:53.0059 13516 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
22:15:53.0063 13516 RasAgileVpn - ok
22:15:53.0093 13516 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
22:15:53.0137 13516 RasAuto - ok
22:15:53.0195 13516 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
22:15:53.0203 13516 Rasl2tp - ok
22:15:53.0266 13516 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
22:15:53.0276 13516 RasMan - ok
22:15:53.0315 13516 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
22:15:53.0319 13516 RasPppoe - ok
22:15:53.0335 13516 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
22:15:53.0339 13516 RasSstp - ok
22:15:53.0383 13516 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
22:15:53.0390 13516 rdbss - ok
22:15:53.0416 13516 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
22:15:53.0419 13516 rdpbus - ok
22:15:53.0442 13516 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
22:15:53.0460 13516 RDPCDD - ok
22:15:53.0503 13516 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
22:15:53.0508 13516 RDPENCDD - ok
22:15:53.0523 13516 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
22:15:53.0526 13516 RDPREFMP - ok
22:15:53.0583 13516 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
22:15:53.0606 13516 RDPWD - ok
22:15:53.0664 13516 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
22:15:53.0669 13516 rdyboost - ok
22:15:53.0731 13516 [ 4D9AFDDDA0EFE97CDBFD3B5FA48B05F6 ] regi C:\Windows\system32\drivers\regi.sys
22:15:53.0749 13516 regi - ok
22:15:53.0792 13516 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
22:15:53.0811 13516 RemoteAccess - ok
22:15:53.0855 13516 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
22:15:53.0873 13516 RemoteRegistry - ok
22:15:53.0937 13516 [ 9C3AC71A9934B884FAC567A8807E9C4D ] Revoflt C:\Windows\system32\DRIVERS\revoflt.sys
22:15:53.0961 13516 Revoflt - ok
22:15:53.0990 13516 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
22:15:53.0993 13516 RpcEptMapper - ok
22:15:54.0039 13516 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
22:15:54.0055 13516 RpcLocator - ok
22:15:54.0110 13516 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
22:15:54.0117 13516 RpcSs - ok
22:15:54.0169 13516 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
22:15:54.0173 13516 rspndr - ok
22:15:54.0240 13516 [ 4A25DC970C58104602ED274DACAFD784 ] RSUSBSTOR C:\Windows\system32\Drivers\RtsUStor.sys
22:15:54.0246 13516 RSUSBSTOR - ok
22:15:54.0294 13516 [ 248ABD858FF7DCC966E5A54529DDD225 ] SaiHFF0D C:\Windows\system32\DRIVERS\SaiHFF0D.sys
22:15:54.0327 13516 SaiHFF0D - ok
22:15:54.0391 13516 [ 9E7E53891D1747A01F491AB25B95135D ] SaiMini C:\Windows\system32\DRIVERS\SaiMini.sys
22:15:54.0408 13516 SaiMini - ok
22:15:54.0446 13516 [ B3B86BE19A0CAF025F679C39FD21E735 ] SaiNtBus C:\Windows\system32\drivers\SaiBus.sys
22:15:54.0467 13516 SaiNtBus - ok
22:15:54.0487 13516 [ 547B16D072A3AFCE5807BE20C3F4734B ] SaiUFF0D C:\Windows\system32\DRIVERS\SaiUFF0D.sys
22:15:54.0505 13516 SaiUFF0D - ok
22:15:54.0533 13516 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
22:15:54.0535 13516 SamSs - ok
22:15:54.0583 13516 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
22:15:54.0587 13516 sbp2port - ok
22:15:54.0738 13516 [ 794D4B48DFB6E999537C7C3947863463 ] SBSDWSCService C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
22:15:54.0790 13516 SBSDWSCService - ok
22:15:54.0839 13516 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
22:15:54.0862 13516 SCardSvr - ok
22:15:54.0909 13516 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
22:15:54.0913 13516 scfilter - ok
22:15:54.0990 13516 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
22:15:55.0025 13516 Schedule - ok
22:15:55.0069 13516 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
22:15:55.0071 13516 SCPolicySvc - ok
22:15:55.0120 13516 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
22:15:55.0125 13516 SDRSVC - ok
22:15:55.0176 13516 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
22:15:55.0179 13516 secdrv - ok
22:15:55.0225 13516 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
22:15:55.0229 13516 seclogon - ok
22:15:55.0278 13516 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\system32\sens.dll
22:15:55.0282 13516 SENS - ok
22:15:55.0311 13516 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
22:15:55.0315 13516 SensrSvc - ok
22:15:55.0343 13516 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
22:15:55.0346 13516 Serenum - ok
22:15:55.0378 13516 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
22:15:55.0383 13516 Serial - ok
22:15:55.0421 13516 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
22:15:55.0424 13516 sermouse - ok
22:15:55.0491 13516 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
22:15:55.0496 13516 SessionEnv - ok
22:15:55.0517 13516 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
22:15:55.0533 13516 sffdisk - ok
22:15:55.0552 13516 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
22:15:55.0555 13516 sffp_mmc - ok
22:15:55.0573 13516 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
22:15:55.0576 13516 sffp_sd - ok
22:15:55.0598 13516 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
22:15:55.0600 13516 sfloppy - ok
22:15:55.0673 13516 [ E1974A92AC0914A3859359A0A8C82C68 ] SftService C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
22:15:55.0695 13516 SftService - ok
22:15:55.0750 13516 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
22:15:55.0759 13516 SharedAccess - ok
22:15:55.0815 13516 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
22:15:55.0825 13516 ShellHWDetection - ok
22:15:55.0850 13516 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
22:15:55.0853 13516 SiSRaid2 - ok
22:15:55.0892 13516 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
22:15:55.0895 13516 SiSRaid4 - ok
22:15:55.0912 13516 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
22:15:55.0916 13516 Smb - ok
22:15:55.0968 13516 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
22:15:55.0990 13516 SNMPTRAP - ok
22:15:56.0019 13516 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
22:15:56.0021 13516 spldr - ok
22:15:56.0069 13516 [ B96C17B5DC1424D56EEA3A99E97428CD ] Spooler C:\Windows\System32\spoolsv.exe
22:15:56.0076 13516 Spooler - ok
22:15:56.0210 13516 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
22:15:56.0308 13516 sppsvc - ok
22:15:56.0363 13516 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
22:15:56.0386 13516 sppuinotify - ok
22:15:56.0463 13516 [ 9AB59CF736981ED1F83C6AB5FAA8BA5C ] sptd C:\Windows\system32\Drivers\sptd.sys
22:15:56.0519 13516 sptd - ok
22:15:56.0640 13516 [ 90EF30C3867BCDE4579C01A6D6E75A7A ] SRTSP C:\Windows\System32\Drivers\NISx64\1207020.003\SRTSP64.SYS
22:15:56.0685 13516 SRTSP - ok
22:15:56.0716 13516 [ C513E8A5E7978DA49077F5484344EE1B ] SRTSPX C:\Windows\system32\drivers\NISx64\1207020.003\SRTSPX64.SYS
22:15:56.0731 13516 SRTSPX - ok
22:15:56.0770 13516 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
22:15:56.0778 13516 srv - ok
22:15:56.0807 13516 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
22:15:56.0816 13516 srv2 - ok
22:15:56.0835 13516 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
22:15:56.0839 13516 srvnet - ok
22:15:56.0902 13516 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
22:15:56.0908 13516 SSDPSRV - ok
22:15:56.0925 13516 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
22:15:56.0929 13516 SstpSvc - ok
22:15:57.0091 13516 [ 5697FB5DCF36ADA09C153378E88AE6AD ] STacSV C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_7f58c91b65c73836\STacSV64.exe
22:15:57.0096 13516 STacSV - ok
22:15:57.0140 13516 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
22:15:57.0143 13516 stexstor - ok
22:15:57.0193 13516 [ F3F6C17F70EBA268CDBE4F9704E3EAC5 ] STHDA C:\Windows\system32\DRIVERS\stwrt64.sys
22:15:57.0216 13516 STHDA - ok
22:15:57.0272 13516 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
22:15:57.0294 13516 stisvc - ok
22:15:57.0344 13516 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
22:15:57.0346 13516 swenum - ok
22:15:57.0458 13516 [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
22:15:57.0477 13516 SwitchBoard - ok
22:15:57.0590 13516 SwOffScheduler - ok
22:15:57.0611 13516 SwOffWeb - ok
22:15:57.0681 13516 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
22:15:57.0704 13516 swprv - ok
22:15:57.0746 13516 [ 6160145C7A87FC7672E8E3B886888176 ] SymDS C:\Windows\system32\drivers\NISx64\1207020.003\SYMDS64.SYS
22:15:57.0800 13516 SymDS - ok
22:15:57.0872 13516 [ 96AEED40D4D3521568B42027687E69E0 ] SymEFA C:\Windows\system32\drivers\NISx64\1207020.003\SYMEFA64.SYS
22:15:57.0925 13516 SymEFA - ok
22:15:57.0983 13516 [ 21A1C2D694C3CF962D31F5E873AB3D6F ] SymEvent C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
22:15:57.0988 13516 SymEvent - ok
22:15:58.0065 13516 [ BD0D711D8CBFCAA19CA123306EAF53A5 ] SymIRON C:\Windows\system32\drivers\NISx64\1207020.003\Ironx64.SYS
22:15:58.0070 13516 SymIRON - ok
22:15:58.0110 13516 [ A6ADB3D83023F8DAA0F7B6FDA785D83B ] SymNetS C:\Windows\System32\Drivers\NISx64\1207020.003\SYMNETS.SYS
22:15:58.0119 13516 SymNetS - ok
22:15:58.0205 13516 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
22:15:58.0273 13516 SysMain - ok
22:15:58.0321 13516 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
22:15:58.0327 13516 TabletInputService - ok
22:15:58.0357 13516 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
22:15:58.0366 13516 TapiSrv - ok
22:15:58.0402 13516 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
22:15:58.0424 13516 TBS - ok
22:15:58.0506 13516 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
22:15:58.0574 13516 Tcpip - ok
22:15:58.0638 13516 [ ACB82BDA8F46C84F465C1AFA517DC4B9 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
22:15:58.0649 13516 TCPIP6 - ok
22:15:58.0704 13516 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
22:15:58.0707 13516 tcpipreg - ok
22:15:58.0753 13516 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
22:15:58.0756 13516 TDPIPE - ok
22:15:58.0805 13516 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
22:15:58.0825 13516 TDTCP - ok
22:15:58.0888 13516 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
22:15:58.0892 13516 tdx - ok
22:15:58.0950 13516 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
22:15:58.0954 13516 TermDD - ok
22:15:58.0988 13516 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
22:15:59.0010 13516 TermService - ok
22:15:59.0059 13516 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
22:15:59.0063 13516 Themes - ok
22:15:59.0131 13516 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
22:15:59.0133 13516 THREADORDER - ok
22:15:59.0163 13516 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
22:15:59.0168 13516 TrkWks - ok
22:15:59.0248 13516 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
22:15:59.0253 13516 TrustedInstaller - ok
22:15:59.0306 13516 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
22:15:59.0309 13516 tssecsrv - ok
22:15:59.0371 13516 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
22:15:59.0394 13516 TsUsbFlt - ok
22:15:59.0476 13516 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
22:15:59.0480 13516 tunnel - ok
22:15:59.0739 13516 [ 1B6E34EA6885FFE4430221DCE3E56F5B ] TVersityMediaServer C:\ProgramData\TVersity\Media Server\MediaServer.exe
22:15:59.0854 13516 TVersityMediaServer - ok
22:15:59.0906 13516 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
22:15:59.0910 13516 uagp35 - ok
22:15:59.0958 13516 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
22:15:59.0980 13516 udfs - ok
22:16:00.0051 13516 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
22:16:00.0054 13516 UI0Detect - ok
22:16:00.0073 13516 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
22:16:00.0076 13516 uliagpkx - ok
22:16:00.0140 13516 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
22:16:00.0143 13516 umbus - ok
22:16:00.0188 13516 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
22:16:00.0205 13516 UmPass - ok
22:16:00.0239 13516 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
22:16:00.0246 13516 upnphost - ok
22:16:00.0315 13516 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
22:16:00.0319 13516 usbaudio - ok
22:16:00.0340 13516 [ 481DFF26B4DCA8F4CBAC1F7DCE1D6829 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
22:16:00.0344 13516 usbccgp - ok
22:16:00.0384 13516 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
22:16:00.0389 13516 usbcir - ok
22:16:00.0417 13516 [ 74EE782B1D9C241EFE425565854C661C ] usbehci C:\Windows\system32\drivers\usbehci.sys
22:16:00.0441 13516 usbehci - ok
22:16:00.0473 13516 [ DC96BD9CCB8403251BCF25047573558E ] usbhub C:\Windows\system32\drivers\usbhub.sys
22:16:00.0482 13516 usbhub - ok
22:16:00.0499 13516 [ 58E546BBAF87664FC57E0F6081E4F609 ] usbohci C:\Windows\system32\drivers\usbohci.sys
22:16:00.0502 13516 usbohci - ok
22:16:00.0564 13516 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
22:16:00.0567 13516 usbprint - ok
22:16:00.0633 13516 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
22:16:00.0656 13516 usbscan - ok
22:16:00.0689 13516 [ D76510CFA0FC09023077F22C2F979D86 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
22:16:00.0692 13516 USBSTOR - ok
22:16:00.0705 13516 [ 81FB2216D3A60D1284455D511797DB3D ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
22:16:00.0708 13516 usbuhci - ok
22:16:00.0753 13516 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
22:16:00.0757 13516 UxSms - ok
22:16:00.0772 13516 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
22:16:00.0774 13516 VaultSvc - ok
22:16:00.0832 13516 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
22:16:00.0834 13516 vdrvroot - ok
22:16:00.0904 13516 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
22:16:00.0926 13516 vds - ok
22:16:00.0976 13516 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
22:16:00.0979 13516 vga - ok
22:16:00.0999 13516 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
22:16:01.0002 13516 VgaSave - ok
22:16:01.0025 13516 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
22:16:01.0031 13516 vhdmp - ok
22:16:01.0077 13516 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
22:16:01.0080 13516 viaide - ok
22:16:01.0094 13516 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
22:16:01.0096 13516 volmgr - ok
22:16:01.0147 13516 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
22:16:01.0155 13516 volmgrx - ok
22:16:01.0179 13516 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
22:16:01.0184 13516 volsnap - ok
22:16:01.0236 13516 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
22:16:01.0242 13516 vsmraid - ok
22:16:01.0327 13516 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
22:16:01.0417 13516 VSS - ok
22:16:01.0435 13516 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
22:16:01.0437 13516 vwifibus - ok
22:16:01.0460 13516 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
22:16:01.0463 13516 vwififlt - ok
22:16:01.0525 13516 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
22:16:01.0535 13516 W32Time - ok
22:16:01.0578 13516 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
22:16:01.0582 13516 WacomPen - ok
22:16:01.0650 13516 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
22:16:01.0673 13516 WANARP - ok
22:16:01.0682 13516 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
22:16:01.0683 13516 Wanarpv6 - ok
22:16:01.0789 13516 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
22:16:01.0845 13516 WatAdminSvc - ok
22:16:01.0919 13516 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
22:16:01.0964 13516 wbengine - ok
22:16:02.0012 13516 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
22:16:02.0056 13516 WbioSrvc - ok
22:16:02.0103 13516 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
22:16:02.0110 13516 wcncsvc - ok
22:16:02.0130 13516 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
22:16:02.0134 13516 WcsPlugInService - ok
22:16:02.0172 13516 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
22:16:02.0176 13516 Wd - ok
22:16:02.0206 13516 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
22:16:02.0229 13516 Wdf01000 - ok
22:16:02.0250 13516 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
22:16:02.0259 13516 WdiServiceHost - ok
22:16:02.0266 13516 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
22:16:02.0269 13516 WdiSystemHost - ok
22:16:02.0340 13516 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
22:16:02.0348 13516 WebClient - ok
22:16:02.0364 13516 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
22:16:02.0385 13516 Wecsvc - ok
22:16:02.0410 13516 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
22:16:02.0415 13516 wercplsupport - ok
22:16:02.0437 13516 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
22:16:02.0441 13516 WerSvc - ok
22:16:02.0474 13516 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
22:16:02.0477 13516 WfpLwf - ok
22:16:02.0532 13516 [ B14EF15BD757FA488F9C970EEE9C0D35 ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys
22:16:02.0537 13516 WimFltr - ok
22:16:02.0580 13516 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
22:16:02.0583 13516 WIMMount - ok
22:16:02.0613 13516 WinDefend - ok
22:16:02.0628 13516 WinHttpAutoProxySvc - ok
22:16:02.0743 13516 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
22:16:02.0749 13516 Winmgmt - ok
22:16:02.0834 13516 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
22:16:02.0902 13516 WinRM - ok
22:16:02.0963 13516 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
22:16:02.0967 13516 WinUsb - ok
22:16:03.0024 13516 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
22:16:03.0058 13516 Wlansvc - ok
22:16:03.0119 13516 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
22:16:03.0138 13516 wlcrasvc - ok
22:16:03.0273 13516 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
22:16:03.0363 13516 wlidsvc - ok
22:16:03.0450 13516 [ 13B0A570E1AE451C92DA550085D72CF3 ] wltrysvc C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRYSVC.EXE
22:16:03.0452 13516 wltrysvc - ok
22:16:03.0508 13516 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
22:16:03.0517 13516 WmiAcpi - ok
22:16:03.0574 13516 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
22:16:03.0602 13516 wmiApSrv - ok
22:16:03.0645 13516 WMPNetworkSvc - ok
22:16:03.0693 13516 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
22:16:03.0699 13516 WPCSvc - ok
22:16:03.0771 13516 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
22:16:03.0777 13516 WPDBusEnum - ok
22:16:03.0832 13516 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
22:16:03.0835 13516 ws2ifsl - ok
22:16:03.0856 13516 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\system32\wscsvc.dll
22:16:03.0862 13516 wscsvc - ok
22:16:03.0869 13516 WSearch - ok
22:16:03.0972 13516 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
22:16:04.0063 13516 wuauserv - ok
22:16:04.0116 13516 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
22:16:04.0119 13516 WudfPf - ok
22:16:04.0152 13516 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
22:16:04.0158 13516 WUDFRd - ok
22:16:04.0203 13516 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
22:16:04.0206 13516 wudfsvc - ok
22:16:04.0252 13516 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
22:16:04.0295 13516 WwanSvc - ok
22:16:04.0574 13516 [ 64F88AF327AA74E03658AE32B48CCB8B ] yukonw7 C:\Windows\system32\DRIVERS\yk62x64.sys
22:16:04.0582 13516 yukonw7 - ok
22:16:04.0596 13516 ================ Scan global ===============================
22:16:04.0641 13516 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
22:16:04.0688 13516 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
22:16:04.0705 13516 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
22:16:04.0759 13516 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
22:16:04.0812 13516 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
22:16:04.0820 13516 [Global] - ok
22:16:04.0821 13516 ================ Scan MBR ==================================
22:16:04.0836 13516 [ CDB4DE4BBD714F152979DA2DCBEF57EB ] \Device\Harddisk0\DR0
22:16:05.0141 13516 \Device\Harddisk0\DR0 - ok
22:16:05.0142 13516 ================ Scan VBR ==================================
22:16:05.0149 13516 [ 4FDB7636D9C7A846AC04C345186FF1B5 ] \Device\Harddisk0\DR0\Partition1
22:16:05.0153 13516 \Device\Harddisk0\DR0\Partition1 - ok
22:16:05.0204 13516 [ 23817334ED72801E6E6CB682A099711A ] \Device\Harddisk0\DR0\Partition2
22:16:05.0207 13516 \Device\Harddisk0\DR0\Partition2 - ok
22:16:05.0208 13516 ============================================================
22:16:05.0208 13516 Scan finished
22:16:05.0208 13516 ============================================================
22:16:05.0231 10812 Detected object count: 0
22:16:05.0231 10812 Actual detected object count: 0


aswMBR Log

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-09-12 22:19:26
-----------------------------
22:19:26.226 OS Version: Windows x64 6.1.7601 Service Pack 1
22:19:26.226 Number of processors: 2 586 0x170A
22:19:26.227 ComputerName: DAN-LAPTOP UserName: Dan
22:19:28.088 Initialize success
22:23:10.945 AVAST engine defs: 12091200
22:25:36.517 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
22:25:36.522 Disk 0 Vendor: ST950032 D005 Size: 476940MB BusType: 3
22:25:36.538 Disk 0 MBR read successfully
22:25:36.543 Disk 0 MBR scan
22:25:36.552 Disk 0 Windows VISTA default MBR code
22:25:36.558 Disk 0 Partition 1 00 DE Dell Utility Dell 8.0 39 MB offset 63
22:25:36.573 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 15000 MB offset 81920
22:25:36.597 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 461899 MB offset 30801920
22:25:36.635 Disk 0 scanning C:\Windows\system32\drivers
22:25:53.660 Service scanning
22:26:31.935 Modules scanning
22:26:31.943 Disk 0 trace - called modules:
22:26:31.972 ntoskrnl.exe CLASSPNP.SYS disk.sys iaStor.sys hal.dll
22:26:32.308 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8004634060]
22:26:32.313 3 CLASSPNP.SYS[fffff88001e0143f] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8004473050]
22:26:34.065 AVAST engine scan C:\Windows
22:26:40.802 AVAST engine scan C:\Windows\system32
22:31:38.220 AVAST engine scan C:\Windows\system32\drivers
22:32:12.697 AVAST engine scan C:\Users\Dan
23:02:59.896 AVAST engine scan C:\ProgramData
23:11:11.034 Scan finished successfully
23:23:32.809 Disk 0 MBR has been saved successfully to "C:\Users\Dan\Desktop\Logs\MBR.dat"
23:23:32.815 The log file has been saved successfully to "C:\Users\Dan\Desktop\Logs\aswMBR.txt"


ESET Log

C:\Users\Dan\Documents\Vuze Downloads\Norton.2011.Trial.Reset.v3.3.1.NAV-NIS-N360.by.BOX\NTR2011-v3.3.1.exe Win32/Packed.Autoit.E.Gen application cleaned by deleting - quarantined
C:\Users\Dan\Documents\Vuze Downloads\Xilisoft PDF to EPUB Converter 1.0.4.0124\x-pdf-to-epub-converter.exe Win32/Toolbar.Zugo application cleaned by deleting - quarantined
C:\Users\Dan\Downloads\BestVideoDownloaderSetup-TurboUpgrade.exe multiple threats cleaned by deleting - quarantined
C:\Users\Dan\Downloads\CCleaner_Professional_&amp;_Business_v3.19.exe Win32/Adware.1ClickDownload.C application cleaned by deleting - quarantined
C:\Users\Dan\Downloads\cnet_Pazera_Free_MP4_to_AVI_Converter_zip.exe a variant of Win32/InstallCore.D application cleaned by deleting - quarantined
C:\Users\Dan\Downloads\Unlocker1.9.1-x64.exe a variant of Win32/Toolbar.Babylon application cleaned by deleting - quarantined

#7 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:21 PM

Posted 13 September 2012 - 01:48 AM

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

Download

FSS

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.


Download

adware cleaner

Launch it click on Delete

post the generated log

#8 kinkladze

kinkladze
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:07:21 PM

Posted 13 September 2012 - 11:07 AM

Thanks to you both narenxp and buddy215.

I just tried the firefox solution from buddy215 and that has appeared to work. It was different from other i read about and tried. I hope it doesnt come back as I hate these intrusions in my computer.

Thanks for the help you all gave and i will still do the other set of checks suggested after to do a complete check on my system.

Cheers,

Dan.

#9 buddy215

buddy215

  • Moderator
  • 13,204 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:07:21 PM

Posted 13 September 2012 - 11:22 AM

Good....You should follow through with narenxp's instructions as you had more malware on your comp
than just the Firefox adware.
“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”

#10 kinkladze

kinkladze
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:07:21 PM

Posted 13 September 2012 - 12:38 PM

Yes - I will be doing that. Another question, should i get rid of all of the malware thrown up - even if i know what it is and it came with a downloaded installation package (if you know what i mean?). Maybe false positives?




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users