Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

browser hijacked by isearch.avg


  • Please log in to reply
3 replies to this topic

#1 LHCnewbie

LHCnewbie

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:08:17 AM

Posted 11 September 2012 - 10:32 PM

This appears to be a browser hijacker. It takes over in both Google Chrome and IE. I have run malwarebytes and slimcleaner. I believe the problem occurred after running slimcleaner and when I saw this in the list I clicked it to get more info :(
When I ran it a second time, it didn't catch it.

I have Vista. Any help is appreciated. Thanks!

CCB

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:11:17 AM

Posted 12 September 2012 - 02:05 AM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 LHCnewbie

LHCnewbie
  • Topic Starter

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:08:17 AM

Posted 16 September 2012 - 11:17 PM

TDSS LOG:

17:26:56.0001 6516 TDSS rootkit removing tool 2.8.8.0 Aug 24 2012 13:27:48
17:26:56.0485 6516 ============================================================
17:26:56.0485 6516 Current date / time: 2012/09/16 17:26:56.0485
17:26:56.0485 6516 SystemInfo:
17:26:56.0485 6516
17:26:56.0485 6516 OS Version: 6.0.6002 ServicePack: 2.0
17:26:56.0485 6516 Product type: Workstation
17:26:56.0485 6516 ComputerName: CARRIE-PC
17:26:56.0485 6516 UserName: Carrie
17:26:56.0485 6516 Windows directory: C:\Windows
17:26:56.0485 6516 System windows directory: C:\Windows
17:26:56.0485 6516 Processor architecture: Intel x86
17:26:56.0485 6516 Number of processors: 2
17:26:56.0485 6516 Page size: 0x1000
17:26:56.0485 6516 Boot type: Normal boot
17:26:56.0485 6516 ============================================================
17:26:57.0561 6516 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
17:26:57.0608 6516 ============================================================
17:26:57.0608 6516 \Device\Harddisk0\DR0:
17:26:57.0608 6516 MBR partitions:
17:26:57.0608 6516 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x13A4243
17:26:57.0608 6516 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x13A4282, BlocksNum 0x38FE15AE
17:26:57.0608 6516 ============================================================
17:26:57.0639 6516 C: <-> \Device\Harddisk0\DR0\Partition2
17:26:57.0655 6516 D: <-> \Device\Harddisk0\DR0\Partition1
17:26:57.0670 6516 ============================================================
17:26:57.0670 6516 Initialize success
17:26:57.0670 6516 ============================================================
17:27:19.0245 6700 ============================================================
17:27:19.0245 6700 Scan started
17:27:19.0245 6700 Mode: Manual; TDLFS;
17:27:19.0245 6700 ============================================================
17:27:19.0370 6700 ================ Scan system memory ========================
17:27:19.0370 6700 System memory - ok
17:27:19.0370 6700 ================ Scan services =============================
17:27:19.0542 6700 [ 4B56CAAFED0B0B996341D74CE0E76565 ] ac97intc C:\Windows\system32\drivers\ac97intc.sys
17:27:19.0542 6700 ac97intc - ok
17:27:19.0588 6700 [ 82B296AE1892FE3DBEE00C9CF92F8AC7 ] ACPI C:\Windows\system32\drivers\acpi.sys
17:27:19.0588 6700 ACPI - ok
17:27:19.0698 6700 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
17:27:19.0760 6700 AdobeARMservice - ok
17:27:19.0869 6700 [ A9D3B95E8466BD58EEB8A1154654E162 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
17:27:19.0869 6700 AdobeFlashPlayerUpdateSvc - ok
17:27:19.0916 6700 [ 2EDC5BBAC6C651ECE337BDE8ED97C9FB ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
17:27:19.0916 6700 adp94xx - ok
17:27:19.0963 6700 [ B84088CA3CDCA97DA44A984C6CE1CCAD ] adpahci C:\Windows\system32\drivers\adpahci.sys
17:27:19.0963 6700 adpahci - ok
17:27:19.0978 6700 [ 7880C67BCCC27C86FD05AA2AFB5EA469 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
17:27:19.0978 6700 adpu160m - ok
17:27:20.0010 6700 [ 9AE713F8E30EFC2ABCCD84904333DF4D ] adpu320 C:\Windows\system32\drivers\adpu320.sys
17:27:20.0010 6700 adpu320 - ok
17:27:20.0041 6700 [ 9D1FDA9E086BA64E3C93C9DE32461BCF ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
17:27:20.0041 6700 AeLookupSvc - ok
17:27:20.0088 6700 [ 3911B972B55FEA0478476B2E777B29FA ] AFD C:\Windows\system32\drivers\afd.sys
17:27:20.0103 6700 AFD - ok
17:27:20.0150 6700 [ 2B18BA73927F65CFB1137CC8DC74C557 ] AgereModemAudio C:\Windows\system32\agrsmsvc.exe
17:27:20.0150 6700 AgereModemAudio - ok
17:27:20.0212 6700 [ 7560F465F1CE69C53BF17559EE195548 ] AgereSoftModem C:\Windows\system32\DRIVERS\AGRSM.sys
17:27:20.0244 6700 AgereSoftModem - ok
17:27:20.0275 6700 [ EF23439CDD587F64C2C1B8825CEAD7D8 ] agp440 C:\Windows\system32\drivers\agp440.sys
17:27:20.0275 6700 agp440 - ok
17:27:20.0322 6700 [ AE1FDF7BF7BB6C6A70F67699D880592A ] aic78xx C:\Windows\system32\drivers\djsvs.sys
17:27:20.0322 6700 aic78xx - ok
17:27:20.0368 6700 [ A1545B731579895D8CC44FC0481C1192 ] ALG C:\Windows\System32\alg.exe
17:27:20.0368 6700 ALG - ok
17:27:20.0384 6700 [ 90395B64600EBB4552E26E178C94B2E4 ] aliide C:\Windows\system32\drivers\aliide.sys
17:27:20.0384 6700 aliide - ok
17:27:20.0400 6700 [ 2B13E304C9DFDFA5EB582F6A149FA2C7 ] amdagp C:\Windows\system32\drivers\amdagp.sys
17:27:20.0400 6700 amdagp - ok
17:27:20.0415 6700 [ 0577DF1D323FE75A739C787893D300EA ] amdide C:\Windows\system32\drivers\amdide.sys
17:27:20.0415 6700 amdide - ok
17:27:20.0431 6700 [ DC487885BCEF9F28EECE6FAC0E5DDFC5 ] AmdK7 C:\Windows\system32\drivers\amdk7.sys
17:27:20.0431 6700 AmdK7 - ok
17:27:20.0509 6700 [ 93AE7F7DD54AB986A6F1A1B37BE7442D ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
17:27:20.0509 6700 AmdK8 - ok
17:27:20.0540 6700 [ 1BF91F352D746AD7469FA71783B5FAE8 ] APLMp50 C:\Windows\system32\Drivers\APLMp50.sys
17:27:20.0540 6700 APLMp50 - ok
17:27:20.0571 6700 [ C6D704C7F0434DC791AAC37CAC4B6E14 ] Appinfo C:\Windows\System32\appinfo.dll
17:27:20.0587 6700 Appinfo - ok
17:27:20.0634 6700 [ 4B5AE15E5C73EB4DC8DBEC2788230D41 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
17:27:20.0634 6700 Apple Mobile Device - ok
17:27:20.0665 6700 [ 5F673180268BB1FDB69C99B6619FE379 ] arc C:\Windows\system32\drivers\arc.sys
17:27:20.0665 6700 arc - ok
17:27:20.0680 6700 [ 957F7540B5E7F602E44648C7DE5A1C05 ] arcsas C:\Windows\system32\drivers\arcsas.sys
17:27:20.0696 6700 arcsas - ok
17:27:20.0805 6700 [ 40C145F12FF461A0220303BDA134F598 ] aspnet_state C:\Windows\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
17:27:20.0805 6700 aspnet_state - ok
17:27:20.0836 6700 [ 53B202ABEE6455406254444303E87BE1 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
17:27:20.0836 6700 AsyncMac - ok
17:27:20.0852 6700 [ 1F05B78AB91C9075565A9D8A4B880BC4 ] atapi C:\Windows\system32\drivers\atapi.sys
17:27:20.0868 6700 atapi - ok
17:27:20.0899 6700 [ 68E2A1A0407A66CF50DA0300852424AB ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
17:27:20.0899 6700 AudioEndpointBuilder - ok
17:27:20.0930 6700 [ 68E2A1A0407A66CF50DA0300852424AB ] Audiosrv C:\Windows\System32\Audiosrv.dll
17:27:20.0930 6700 Audiosrv - ok
17:27:20.0961 6700 [ EE02618BBB1DF4A6DECB524A502ED61E ] AVer88xHD C:\Windows\system32\drivers\AVer88xHD.sys
17:27:20.0977 6700 AVer88xHD - ok
17:27:20.0992 6700 [ 666B789E885F93DD9C7528F9C6A55E29 ] avgtp C:\Windows\system32\drivers\avgtpx86.sys
17:27:20.0992 6700 avgtp - ok
17:27:21.0024 6700 [ 08015D34F6FDD0B355805BAD978497C3 ] bcm4sbxp C:\Windows\system32\DRIVERS\bcm4sbxp.sys
17:27:21.0024 6700 bcm4sbxp - ok
17:27:21.0055 6700 [ 67E506B75BD5326A3EC7B70BD014DFB6 ] Beep C:\Windows\system32\drivers\Beep.sys
17:27:21.0070 6700 Beep - ok
17:27:21.0117 6700 [ C789AF0F724FDA5852FB9A7D3A432381 ] BFE C:\Windows\System32\bfe.dll
17:27:21.0117 6700 BFE - ok
17:27:21.0180 6700 [ 93952506C6D67330367F7E7934B6A02F ] BITS C:\Windows\System32\qmgr.dll
17:27:21.0195 6700 BITS - ok
17:27:21.0211 6700 blbdrive - ok
17:27:21.0273 6700 [ 3F56903E124E820AEECE6D471583C6C1 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
17:27:21.0273 6700 Bonjour Service - ok
17:27:21.0320 6700 [ 35F376253F687BDE63976CCB3F2108CA ] bowser C:\Windows\system32\DRIVERS\bowser.sys
17:27:21.0320 6700 bowser - ok
17:27:21.0351 6700 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
17:27:21.0351 6700 BrFiltLo - ok
17:27:21.0367 6700 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
17:27:21.0367 6700 BrFiltUp - ok
17:27:21.0414 6700 [ A3629A0C4226F9E9C72FAAEEBC3AD33C ] Browser C:\Windows\System32\browser.dll
17:27:21.0414 6700 Browser - ok
17:27:21.0429 6700 [ B304E75CFF293029EDDF094246747113 ] Brserid C:\Windows\system32\drivers\brserid.sys
17:27:21.0445 6700 Brserid - ok
17:27:21.0460 6700 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
17:27:21.0460 6700 BrSerWdm - ok
17:27:21.0492 6700 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
17:27:21.0492 6700 BrUsbMdm - ok
17:27:21.0507 6700 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
17:27:21.0507 6700 BrUsbSer - ok
17:27:21.0523 6700 [ AD07C1EC6665B8B35741AB91200C6B68 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
17:27:21.0523 6700 BTHMODEM - ok
17:27:21.0585 6700 [ A4C8377FA4A994E07075107DBE2E3DCE ] BthServ C:\Windows\System32\bthserv.dll
17:27:21.0585 6700 BthServ - ok
17:27:21.0601 6700 [ 7ADD03E75BEB9E6DD102C3081D29840A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
17:27:21.0616 6700 cdfs - ok
17:27:21.0648 6700 [ 6B4BFFB9BECD728097024276430DB314 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
17:27:21.0648 6700 cdrom - ok
17:27:21.0679 6700 [ 312EC3E37A0A1F2006534913E37B4423 ] CertPropSvc C:\Windows\System32\certprop.dll
17:27:21.0679 6700 CertPropSvc - ok
17:27:21.0710 6700 [ E5D4133F37219DBCFE102BC61072589D ] circlass C:\Windows\system32\DRIVERS\circlass.sys
17:27:21.0710 6700 circlass - ok
17:27:21.0757 6700 [ D7659D3B5B92C31E84E53C1431F35132 ] CLFS C:\Windows\system32\CLFS.sys
17:27:21.0757 6700 CLFS - ok
17:27:21.0772 6700 [ 8EE772032E2FE80A924F3B8DD5082194 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:27:21.0772 6700 clr_optimization_v2.0.50727_32 - ok
17:27:21.0882 6700 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:27:21.0882 6700 clr_optimization_v4.0.30319_32 - ok
17:27:21.0913 6700 [ 0FED59EDB4A83FF17F1778827B88AB1A ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
17:27:21.0913 6700 CmBatt - ok
17:27:21.0928 6700 [ 45201046C776FFDAF3FC8A0029C581C8 ] cmdide C:\Windows\system32\drivers\cmdide.sys
17:27:21.0928 6700 cmdide - ok
17:27:21.0975 6700 [ 6AFEF0B60FA25DE07C0968983EE4F60A ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
17:27:21.0975 6700 Compbatt - ok
17:27:21.0975 6700 COMSysApp - ok
17:27:21.0991 6700 [ 2A213AE086BBEC5E937553C7D9A2B22C ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
17:27:21.0991 6700 crcdisk - ok
17:27:22.0022 6700 [ 22A7F883508176489F559EE745B5BF5D ] Crusoe C:\Windows\system32\drivers\crusoe.sys
17:27:22.0022 6700 Crusoe - ok
17:27:22.0084 6700 [ 75C6A297E364014840B48ECCD7525E30 ] CryptSvc C:\Windows\system32\cryptsvc.dll
17:27:22.0084 6700 CryptSvc - ok
17:27:22.0162 6700 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] DcomLaunch C:\Windows\system32\rpcss.dll
17:27:22.0178 6700 DcomLaunch - ok
17:27:22.0225 6700 [ 622C41A07CA7E6DD91770F50D532CB6C ] DfsC C:\Windows\system32\Drivers\dfsc.sys
17:27:22.0225 6700 DfsC - ok
17:27:22.0318 6700 [ 2CC3DCFB533A1035B13DCAB6160AB38B ] DFSR C:\Windows\system32\DFSR.exe
17:27:22.0365 6700 DFSR - ok
17:27:22.0412 6700 [ 7BEF2E2159EDB03105BC7A8BABE04726 ] dg_ssudbus C:\Windows\system32\DRIVERS\ssudbus.sys
17:27:22.0412 6700 dg_ssudbus - ok
17:27:22.0474 6700 [ 9028559C132146FB75EB7ACF384B086A ] Dhcp C:\Windows\System32\dhcpcsvc.dll
17:27:22.0490 6700 Dhcp - ok
17:27:22.0521 6700 [ 5D4AEFC3386920236A548271F8F1AF6A ] disk C:\Windows\system32\drivers\disk.sys
17:27:22.0521 6700 disk - ok
17:27:22.0568 6700 [ 57D762F6F5974AF0DA2BE88A3349BAAA ] Dnscache C:\Windows\System32\dnsrslvr.dll
17:27:22.0568 6700 Dnscache - ok
17:27:22.0599 6700 [ 324FD74686B1EF5E7C19A8AF49E748F6 ] dot3svc C:\Windows\System32\dot3svc.dll
17:27:22.0599 6700 dot3svc - ok
17:27:22.0646 6700 [ A622E888F8AA2F6B49E9BC466F0E5DEF ] DPS C:\Windows\system32\dps.dll
17:27:22.0646 6700 DPS - ok
17:27:22.0677 6700 [ 97FEF831AB90BEE128C9AF390E243F80 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
17:27:22.0677 6700 drmkaud - ok
17:27:22.0740 6700 [ C68AC676B0EF30CFBB1080ADCE49EB1F ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
17:27:22.0755 6700 DXGKrnl - ok
17:27:22.0818 6700 [ F88FB26547FD2CE6D0A5AF2985892C48 ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys
17:27:22.0818 6700 E1G60 - ok
17:27:22.0849 6700 [ C0B95E40D85CD807D614E264248A45B9 ] EapHost C:\Windows\System32\eapsvc.dll
17:27:22.0849 6700 EapHost - ok
17:27:22.0896 6700 [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371 ] Ecache C:\Windows\system32\drivers\ecache.sys
17:27:22.0896 6700 Ecache - ok
17:27:22.0974 6700 [ 9BE3744D295A7701EB425332014F0797 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
17:27:22.0974 6700 ehRecvr - ok
17:27:22.0989 6700 [ AD1870C8E5D6DD340C829E6074BF3C3F ] ehSched C:\Windows\ehome\ehsched.exe
17:27:22.0989 6700 ehSched - ok
17:27:23.0005 6700 [ C27C4EE8926E74AA72EFCAB24C5242C3 ] ehstart C:\Windows\ehome\ehstart.dll
17:27:23.0005 6700 ehstart - ok
17:27:23.0036 6700 [ E8F3F21A71720C84BCF423B80028359F ] elxstor C:\Windows\system32\drivers\elxstor.sys
17:27:23.0036 6700 elxstor - ok
17:27:23.0114 6700 [ 4E6B23DFC917EA39306B529B773950F4 ] EMDMgmt C:\Windows\system32\emdmgmt.dll
17:27:23.0130 6700 EMDMgmt - ok
17:27:23.0161 6700 [ 67058C46504BC12D821F38CF99B7B28F ] EventSystem C:\Windows\system32\es.dll
17:27:23.0161 6700 EventSystem - ok
17:27:23.0208 6700 [ 22B408651F9123527BCEE54B4F6C5CAE ] exfat C:\Windows\system32\drivers\exfat.sys
17:27:23.0223 6700 exfat - ok
17:27:23.0270 6700 [ 1E9B9A70D332103C52995E957DC09EF8 ] fastfat C:\Windows\system32\drivers\fastfat.sys
17:27:23.0286 6700 fastfat - ok
17:27:23.0301 6700 [ 63BDADA84951B9C03E641800E176898A ] fdc C:\Windows\system32\DRIVERS\fdc.sys
17:27:23.0301 6700 fdc - ok
17:27:23.0332 6700 [ 6629B5F0E98151F4AFDD87567EA32BA3 ] fdPHost C:\Windows\system32\fdPHost.dll
17:27:23.0332 6700 fdPHost - ok
17:27:23.0364 6700 [ 89ED56DCE8E47AF40892778A5BD31FD2 ] FDResPub C:\Windows\system32\fdrespub.dll
17:27:23.0364 6700 FDResPub - ok
17:27:23.0395 6700 [ A8C0139A884861E3AAE9CFE73B208A9F ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
17:27:23.0395 6700 FileInfo - ok
17:27:23.0426 6700 [ 0AE429A696AECBC5970E3CF2C62635AE ] Filetrace C:\Windows\system32\drivers\filetrace.sys
17:27:23.0426 6700 Filetrace - ok
17:27:23.0442 6700 [ 6603957EFF5EC62D25075EA8AC27DE68 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
17:27:23.0442 6700 flpydisk - ok
17:27:23.0473 6700 [ 01334F9EA68E6877C4EF05D3EA8ABB05 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
17:27:23.0473 6700 FltMgr - ok
17:27:23.0566 6700 [ 8CE364388C8ECA59B14B539179276D44 ] FontCache C:\Windows\system32\FntCache.dll
17:27:23.0598 6700 FontCache - ok
17:27:23.0676 6700 [ C7FBDD1ED42F82BFA35167A5C9803EA3 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
17:27:23.0676 6700 FontCache3.0.0.0 - ok
17:27:23.0722 6700 [ B972A66758577E0BFD1DE0F91AAA27B5 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
17:27:23.0722 6700 Fs_Rec - ok
17:27:23.0754 6700 [ 4E1CD0A45C50A8882616CAE5BF82F3C5 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
17:27:23.0754 6700 gagp30kx - ok
17:27:23.0878 6700 [ C403C5DB49A0F9AAF4F2128EDC0106D8 ] GamesAppService C:\Program Files\WildTangent Games\App\GamesAppService.exe
17:27:23.0878 6700 GamesAppService - ok
17:27:23.0941 6700 [ 51E92D44F20A241D3E352A1F6E76AC98 ] GoogleDesktopManager C:\Program Files\Google\Google Desktop Search\GoogleDesktopManager.exe
17:27:24.0019 6700 GoogleDesktopManager - ok
17:27:24.0081 6700 [ CD5D0AEEE35DFD4E986A5AA1500A6E66 ] gpsvc C:\Windows\System32\gpsvc.dll
17:27:24.0097 6700 gpsvc - ok
17:27:24.0144 6700 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
17:27:24.0144 6700 gupdate - ok
17:27:24.0175 6700 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
17:27:24.0175 6700 gupdatem - ok
17:27:24.0237 6700 [ 408DDD80EEDE47175F6844817B90213E ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
17:27:24.0237 6700 gusvc - ok
17:27:24.0268 6700 [ CB04C744BE0A61B1D648FAED182C3B59 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
17:27:24.0284 6700 HdAudAddService - ok
17:27:24.0331 6700 [ 062452B7FFD68C8C042A6261FE8DFF4A ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
17:27:24.0346 6700 HDAudBus - ok
17:27:24.0362 6700 [ 1338520E78D90154ED6BE8F84DE5FCEB ] HidBth C:\Windows\system32\drivers\hidbth.sys
17:27:24.0362 6700 HidBth - ok
17:27:24.0393 6700 [ D8DF3722D5E961BAA1292AA2F12827E2 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
17:27:24.0393 6700 HidIr - ok
17:27:24.0440 6700 [ 84067081F3318162797385E11A8F0582 ] hidserv C:\Windows\system32\hidserv.dll
17:27:24.0440 6700 hidserv - ok
17:27:24.0487 6700 [ CCA4B519B17E23A00B826C55716809CC ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
17:27:24.0487 6700 HidUsb - ok
17:27:24.0518 6700 [ D8AD255B37DA92434C26E4876DB7D418 ] hkmsvc C:\Windows\system32\kmsvc.dll
17:27:24.0518 6700 hkmsvc - ok
17:27:24.0534 6700 [ DF353B401001246853763C4B7AAA6F50 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
17:27:24.0534 6700 HpCISSs - ok
17:27:24.0580 6700 [ CBD09ED9CF6822177EE85AEA4D8816A2 ] HTCAND32 C:\Windows\system32\Drivers\ANDROIDUSB.sys
17:27:24.0580 6700 HTCAND32 - ok
17:27:24.0674 6700 [ 5C8BC8A28798FD010E7ABC4E0D588CAA ] HTCMonitorService C:\Program Files\HTC\HTC Sync Manager\HSMServiceEntry.exe
17:27:24.0674 6700 HTCMonitorService - ok
17:27:24.0705 6700 [ 52395A94C127C0266D1C0F3CCE8A4345 ] htcnprot C:\Windows\system32\DRIVERS\htcnprot.sys
17:27:24.0721 6700 htcnprot - ok
17:27:24.0752 6700 [ F870AA3E254628EBEAFE754108D664DE ] HTTP C:\Windows\system32\drivers\HTTP.sys
17:27:24.0768 6700 HTTP - ok
17:27:24.0799 6700 [ 324C2152FF2C61ABAE92D09F3CCA4D63 ] i2omp C:\Windows\system32\drivers\i2omp.sys
17:27:24.0799 6700 i2omp - ok
17:27:24.0861 6700 [ 22D56C8184586B7A1F6FA60BE5F5A2BD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
17:27:24.0861 6700 i8042prt - ok
17:27:24.0892 6700 [ 8318E04A6455CED1020BCC5039B62CFA ] ialm C:\Windows\system32\DRIVERS\ialmnt5.sys
17:27:24.0924 6700 ialm - ok
17:27:24.0955 6700 [ C957BF4B5D80B46C5017BF0101E6C906 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
17:27:24.0955 6700 iaStorV - ok
17:27:25.0048 6700 [ 6F95324909B502E2651442C1548AB12F ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
17:27:25.0048 6700 IDriverT - ok
17:27:25.0126 6700 [ 98477B08E61945F974ED9FDC4CB6BDAB ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
17:27:25.0142 6700 idsvc - ok
17:27:25.0173 6700 [ 2D077BF86E843F901D8DB709C95B49A5 ] iirsp C:\Windows\system32\drivers\iirsp.sys
17:27:25.0173 6700 iirsp - ok
17:27:25.0220 6700 [ 9908D8A397B76CD8D31D0D383C5773C9 ] IKEEXT C:\Windows\System32\ikeext.dll
17:27:25.0236 6700 IKEEXT - ok
17:27:25.0282 6700 [ 721B1A0434647418F98D034BEBD4B4DB ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
17:27:25.0329 6700 IntcAzAudAddService - ok
17:27:25.0345 6700 [ 97469037714070E45194ED318D636401 ] intelide C:\Windows\system32\drivers\intelide.sys
17:27:25.0345 6700 intelide - ok
17:27:25.0360 6700 [ CE44CC04262F28216DD4341E9E36A16F ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
17:27:25.0360 6700 intelppm - ok
17:27:25.0392 6700 [ 9AC218C6E6105477484C6FDBE7D409A4 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
17:27:25.0407 6700 IPBusEnum - ok
17:27:25.0438 6700 [ 62C265C38769B864CB25B4BCF62DF6C3 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
17:27:25.0454 6700 IpFilterDriver - ok
17:27:25.0485 6700 [ 1998BD97F950680BB55F55A7244679C2 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
17:27:25.0501 6700 iphlpsvc - ok
17:27:25.0501 6700 IpInIp - ok
17:27:25.0532 6700 [ 40F34F8ABA2A015D780E4B09138B6C17 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
17:27:25.0532 6700 IPMIDRV - ok
17:27:25.0563 6700 [ 8793643A67B42CEC66490B2A0CF92D68 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
17:27:25.0563 6700 IPNAT - ok
17:27:25.0610 6700 [ 109C0DFB82C3632FBD11949B73AEEAC9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
17:27:25.0610 6700 IRENUM - ok
17:27:25.0641 6700 [ 350FCA7E73CF65BCEF43FAE1E4E91293 ] isapnp C:\Windows\system32\drivers\isapnp.sys
17:27:25.0641 6700 isapnp - ok
17:27:25.0688 6700 [ 232FA340531D940AAC623B121A595034 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
17:27:25.0688 6700 iScsiPrt - ok
17:27:25.0704 6700 [ BCED60D16156E428F8DF8CF27B0DF150 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
17:27:25.0704 6700 iteatapi - ok
17:27:25.0719 6700 [ 06FA654504A498C30ADCA8BEC4E87E7E ] iteraid C:\Windows\system32\drivers\iteraid.sys
17:27:25.0719 6700 iteraid - ok
17:27:25.0750 6700 [ 37605E0A8CF00CBBA538E753E4344C6E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
17:27:25.0766 6700 kbdclass - ok
17:27:25.0797 6700 [ EDE59EC70E25C24581ADD1FBEC7325F7 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
17:27:25.0797 6700 kbdhid - ok
17:27:25.0844 6700 [ A3E186B4B935905B829219502557314E ] KeyIso C:\Windows\system32\lsass.exe
17:27:25.0844 6700 KeyIso - ok
17:27:25.0891 6700 [ 4A1445EFA932A3BAF5BDB02D7131EE20 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
17:27:25.0906 6700 KSecDD - ok
17:27:25.0953 6700 [ 8078F8F8F7A79E2E6B494523A828C585 ] KtmRm C:\Windows\system32\msdtckrm.dll
17:27:25.0953 6700 KtmRm - ok
17:27:26.0000 6700 [ 58759156A6918913EDD368F995BE3E53 ] L8042Kbd C:\Windows\system32\DRIVERS\L8042Kbd.sys
17:27:26.0000 6700 L8042Kbd - ok
17:27:26.0047 6700 [ 1BF5EEBFD518DD7298434D8C862F825D ] LanmanServer C:\Windows\system32\srvsvc.dll
17:27:26.0047 6700 LanmanServer - ok
17:27:26.0094 6700 [ 1DB69705B695B987082C8BAEC0C6B34F ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
17:27:26.0109 6700 LanmanWorkstation - ok
17:27:26.0140 6700 [ B7C19EC8B0DD7EFA58AD41FFEB8B8CDA ] Lbd C:\Windows\system32\DRIVERS\Lbd.sys
17:27:26.0140 6700 Lbd - ok
17:27:26.0187 6700 [ A0F7DC0080E4F97DC97DE08B699E231B ] LBTServ C:\Program Files\Common Files\Logitech\Bluetooth\LBTServ.exe
17:27:26.0187 6700 LBTServ - ok
17:27:26.0234 6700 [ 24E0DDB99AECCF86BB37702611761459 ] LHidFilt C:\Windows\system32\DRIVERS\LHidFilt.Sys
17:27:26.0234 6700 LHidFilt - ok
17:27:26.0312 6700 [ 06DC2FDC6282F0D68910417B1150C848 ] LinksysUpdater C:\Program Files\Linksys\Linksys Updater\bin\LinksysUpdater.exe
17:27:26.0312 6700 LinksysUpdater - ok
17:27:26.0359 6700 [ BA8494FE6EE119AAD2505A57058B282E ] Linksys_adapter C:\Windows\system32\DRIVERS\AE2500vista.sys
17:27:26.0406 6700 Linksys_adapter - ok
17:27:26.0437 6700 [ D1C5883087A0C3F1344D9D55A44901F6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
17:27:26.0437 6700 lltdio - ok
17:27:26.0484 6700 [ 2D5A428872F1442631D0959A34ABFF63 ] lltdsvc C:\Windows\System32\lltdsvc.dll
17:27:26.0484 6700 lltdsvc - ok
17:27:26.0515 6700 [ 35D40113E4A5B961B6CE5C5857702518 ] lmhosts C:\Windows\System32\lmhsvc.dll
17:27:26.0515 6700 lmhosts - ok
17:27:26.0515 6700 [ D58B330D318361A66A9FE60D7C9B4951 ] LMouFilt C:\Windows\system32\DRIVERS\LMouFilt.Sys
17:27:26.0515 6700 LMouFilt - ok
17:27:26.0562 6700 [ A2262FB9F28935E862B4DB46438C80D2 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
17:27:26.0562 6700 LSI_FC - ok
17:27:26.0577 6700 [ 30D73327D390F72A62F32C103DAF1D6D ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
17:27:26.0577 6700 LSI_SAS - ok
17:27:26.0593 6700 [ E1E36FEFD45849A95F1AB81DE0159FE3 ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
17:27:26.0593 6700 LSI_SCSI - ok
17:27:26.0624 6700 [ 8F5C7426567798E62A3B3614965D62CC ] luafv C:\Windows\system32\drivers\luafv.sys
17:27:26.0624 6700 luafv - ok
17:27:26.0686 6700 [ ED643E777BA3F7151EF3F0FB6BE4F7F0 ] LVRS C:\Windows\system32\DRIVERS\lvrs.sys
17:27:26.0686 6700 LVRS - ok
17:27:26.0827 6700 [ 5BC80451109A8DD7F2DDD35BCE2929A3 ] LVUVC C:\Windows\system32\DRIVERS\lvuvc.sys
17:27:26.0905 6700 LVUVC - ok
17:27:26.0920 6700 lxdn_device - ok
17:27:26.0967 6700 [ AEF9BABB8A506BC4CE0451A64AADED46 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
17:27:26.0967 6700 Mcx2Svc - ok
17:27:26.0998 6700 [ D153B14FC6598EAE8422A2037553ADCE ] megasas C:\Windows\system32\drivers\megasas.sys
17:27:26.0998 6700 megasas - ok
17:27:27.0030 6700 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] MMCSS C:\Windows\system32\mmcss.dll
17:27:27.0030 6700 MMCSS - ok
17:27:27.0061 6700 [ E13B5EA0F51BA5B1512EC671393D09BA ] Modem C:\Windows\system32\drivers\modem.sys
17:27:27.0061 6700 Modem - ok
17:27:27.0108 6700 [ 0A9BB33B56E294F686ABB7C1E4E2D8A8 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
17:27:27.0108 6700 monitor - ok
17:27:27.0123 6700 [ 5BF6A1326A335C5298477754A506D263 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
17:27:27.0123 6700 mouclass - ok
17:27:27.0139 6700 [ 93B8D4869E12CFBE663915502900876F ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
17:27:27.0154 6700 mouhid - ok
17:27:27.0170 6700 [ BDAFC88AA6B92F7842416EA6A48E1600 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
17:27:27.0170 6700 MountMgr - ok
17:27:27.0232 6700 [ D993BEA500E7382DC4E760BF4F35EFCB ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
17:27:27.0232 6700 MpFilter - ok
17:27:27.0264 6700 [ 583A41F26278D9E0EA548163D6139397 ] mpio C:\Windows\system32\drivers\mpio.sys
17:27:27.0264 6700 mpio - ok
17:27:27.0342 6700 [ A69630D039C38018689190234F866D77 ] MpKsl90fcad36 c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{10AE7357-43A5-40D9-AC32-4D61C591A0E1}\MpKsl90fcad36.sys
17:27:27.0357 6700 MpKsl90fcad36 - ok
17:27:27.0388 6700 [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
17:27:27.0388 6700 mpsdrv - ok
17:27:27.0451 6700 [ 5DE62C6E9108F14F6794060A9BDECAEC ] MpsSvc C:\Windows\system32\mpssvc.dll
17:27:27.0466 6700 MpsSvc - ok
17:27:27.0498 6700 [ 4FBBB70D30FD20EC51F80061703B001E ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
17:27:27.0498 6700 Mraid35x - ok
17:27:27.0529 6700 [ 82CEA0395524AACFEB58BA1448E8325C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
17:27:27.0544 6700 MRxDAV - ok
17:27:27.0576 6700 [ 1E94971C4B446AB2290DEB71D01CF0C2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
17:27:27.0591 6700 mrxsmb - ok
17:27:27.0622 6700 [ 4FCCB34D793B116423209C0F8B7A3B03 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
17:27:27.0638 6700 mrxsmb10 - ok
17:27:27.0638 6700 [ C3CB1B40AD4A0124D617A1199B0B9D7C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
17:27:27.0638 6700 mrxsmb20 - ok
17:27:27.0669 6700 [ 742AED7939E734C36B7E8D6228CE26B7 ] msahci C:\Windows\system32\drivers\msahci.sys
17:27:27.0669 6700 msahci - ok
17:27:27.0685 6700 [ 3FC82A2AE4CC149165A94699183D3028 ] msdsm C:\Windows\system32\drivers\msdsm.sys
17:27:27.0685 6700 msdsm - ok
17:27:27.0716 6700 [ FD7520CC3A80C5FC8C48852BB24C6DED ] MSDTC C:\Windows\System32\msdtc.exe
17:27:27.0732 6700 MSDTC - ok
17:27:27.0747 6700 [ A9927F4A46B816C92F461ACB90CF8515 ] Msfs C:\Windows\system32\drivers\Msfs.sys
17:27:27.0747 6700 Msfs - ok
17:27:27.0778 6700 [ 0F400E306F385C56317357D6DEA56F62 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
17:27:27.0778 6700 msisadrv - ok
17:27:27.0810 6700 [ 85466C0757A23D9A9AECDC0755203CB2 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
17:27:27.0841 6700 MSiSCSI - ok
17:27:27.0841 6700 msiserver - ok
17:27:27.0872 6700 [ D8C63D34D9C9E56C059E24EC7185CC07 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
17:27:27.0872 6700 MSKSSRV - ok
17:27:27.0919 6700 [ 24516BF4E12A46CB67302E2CDCB8CDDF ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
17:27:27.0919 6700 MsMpSvc - ok
17:27:27.0966 6700 [ 1D373C90D62DDB641D50E55B9E78D65E ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
17:27:27.0966 6700 MSPCLOCK - ok
17:27:27.0997 6700 [ B572DA05BF4E098D4BBA3A4734FB505B ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
17:27:28.0012 6700 MSPQM - ok
17:27:28.0044 6700 [ B49456D70555DE905C311BCDA6EC6ADB ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
17:27:28.0059 6700 MsRPC - ok
17:27:28.0106 6700 [ E384487CB84BE41D09711C30CA79646C ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
17:27:28.0106 6700 mssmbios - ok
17:27:28.0153 6700 MSSQL$SQLEXPRESS - ok
17:27:28.0215 6700 [ 1D89EB4E2A99CABD4E81225F4F4C4B25 ] MSSQLServerADHelper c:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe
17:27:28.0215 6700 MSSQLServerADHelper - ok
17:27:28.0231 6700 [ 7199C1EEC1E4993CAF96B8C0A26BD58A ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
17:27:28.0231 6700 MSTEE - ok
17:27:28.0246 6700 [ 6A57B5733D4CB702C8EA4542E836B96C ] Mup C:\Windows\system32\Drivers\mup.sys
17:27:28.0246 6700 Mup - ok
17:27:28.0278 6700 [ E4EAF0C5C1B41B5C83386CF212CA9584 ] napagent C:\Windows\system32\qagentRT.dll
17:27:28.0293 6700 napagent - ok
17:27:28.0340 6700 [ 85C44FDFF9CF7E72A40DCB7EC06A4416 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
17:27:28.0340 6700 NativeWifiP - ok
17:27:28.0371 6700 [ 1357274D1883F68300AEADD15D7BBB42 ] NDIS C:\Windows\system32\drivers\ndis.sys
17:27:28.0387 6700 NDIS - ok
17:27:28.0434 6700 [ 0E186E90404980569FB449BA7519AE61 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
17:27:28.0434 6700 NdisTapi - ok
17:27:28.0465 6700 [ D6973AA34C4D5D76C0430B181C3CD389 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
17:27:28.0465 6700 Ndisuio - ok
17:27:28.0512 6700 [ 818F648618AE34F729FDB47EC68345C3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
17:27:28.0512 6700 NdisWan - ok
17:27:28.0558 6700 [ 71DAB552B41936358F3B541AE5997FB3 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
17:27:28.0558 6700 NDProxy - ok
17:27:28.0590 6700 [ BCD093A5A6777CF626434568DC7DBA78 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
17:27:28.0590 6700 NetBIOS - ok
17:27:28.0683 6700 [ ECD64230A59CBD93C85F1CD1CAB9F3F6 ] netbt C:\Windows\system32\DRIVERS\netbt.sys
17:27:28.0683 6700 netbt - ok
17:27:28.0683 6700 [ A3E186B4B935905B829219502557314E ] Netlogon C:\Windows\system32\lsass.exe
17:27:28.0699 6700 Netlogon - ok
17:27:28.0730 6700 [ C8052711DAECC48B982434C5116CA401 ] Netman C:\Windows\System32\netman.dll
17:27:28.0746 6700 Netman - ok
17:27:28.0792 6700 [ 2EF3BBE22E5A5ACD1428EE387A0D0172 ] netprofm C:\Windows\System32\netprofm.dll
17:27:28.0792 6700 netprofm - ok
17:27:28.0808 6700 [ D6C4E4A39A36029AC0813D476FBD0248 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
17:27:28.0808 6700 NetTcpPortSharing - ok
17:27:28.0886 6700 [ 6E9EDC1020B319E7676387B8CDF2398C ] NETw2v32 C:\Windows\system32\DRIVERS\NETw2v32.sys
17:27:28.0933 6700 NETw2v32 - ok
17:27:28.0964 6700 [ 2E7FB731D4790A1BC6270ACCEFACB36E ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
17:27:28.0964 6700 nfrd960 - ok
17:27:28.0995 6700 [ B52F26BADE7D7E4A79706E3FD91834CD ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
17:27:28.0995 6700 NisDrv - ok
17:27:29.0042 6700 [ 290C0D4C4889398797F8DF3BE00B9698 ] NisSrv c:\Program Files\Microsoft Security Client\NisSrv.exe
17:27:29.0042 6700 NisSrv - ok
17:27:29.0089 6700 [ 2997B15415F9BBE05B5A4C1C85E0C6A2 ] NlaSvc C:\Windows\System32\nlasvc.dll
17:27:29.0089 6700 NlaSvc - ok
17:27:29.0167 6700 [ 82C5A813E8EA7E94DC1AFA24CD803B80 ] nmservice C:\Program Files\Common Files\Pure Networks Shared\Platform\nmsrvc.exe
17:27:29.0182 6700 nmservice - ok
17:27:29.0229 6700 [ D36F239D7CCE1931598E8FB90A0DBC26 ] Npfs C:\Windows\system32\drivers\Npfs.sys
17:27:29.0229 6700 Npfs - ok
17:27:29.0385 6700 [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD ] nsi C:\Windows\system32\nsisvc.dll
17:27:29.0385 6700 nsi - ok
17:27:29.0432 6700 [ 609773E344A97410CE4EBF74A8914FCF ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
17:27:29.0432 6700 nsiproxy - ok
17:27:29.0494 6700 [ 6A4A98CEE84CF9E99564510DDA4BAA47 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
17:27:29.0526 6700 Ntfs - ok
17:27:29.0557 6700 [ E875C093AEC0C978A90F30C9E0DFBB72 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys
17:27:29.0557 6700 ntrigdigi - ok
17:27:29.0588 6700 [ C5DBBCDA07D780BDA9B685DF333BB41E ] Null C:\Windows\system32\drivers\Null.sys
17:27:29.0588 6700 Null - ok
17:27:29.0775 6700 [ FF58C7A7DA6116C1F71E883CB088D598 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
17:27:29.0916 6700 nvlddmkm - ok
17:27:29.0931 6700 [ E69E946F80C1C31C53003BFBF50CBB7C ] nvraid C:\Windows\system32\drivers\nvraid.sys
17:27:29.0931 6700 nvraid - ok
17:27:29.0947 6700 [ 9E0BA19A28C498A6D323D065DB76DFFC ] nvstor C:\Windows\system32\drivers\nvstor.sys
17:27:29.0947 6700 nvstor - ok
17:27:29.0994 6700 [ DC5F166422BEEBF195E3E4BB8AB4EE22 ] nvstor32 C:\Windows\system32\DRIVERS\nvstor32.sys
17:27:29.0994 6700 nvstor32 - ok
17:27:30.0040 6700 [ 56407B8616E4206EE02892A2AC712EF3 ] nvsvc C:\Windows\system32\nvvsvc.exe
17:27:30.0040 6700 nvsvc - ok
17:27:30.0056 6700 [ 07C186427EB8FCC3D8D7927187F260F7 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
17:27:30.0072 6700 nv_agp - ok
17:27:30.0072 6700 NwlnkFlt - ok
17:27:30.0072 6700 NwlnkFwd - ok
17:27:30.0150 6700 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
17:27:30.0150 6700 odserv - ok
17:27:30.0196 6700 [ 6F310E890D46E246E0E261A63D9B36B4 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
17:27:30.0196 6700 ohci1394 - ok
17:27:30.0228 6700 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
17:27:30.0243 6700 ose - ok
17:27:30.0259 6700 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2pimsvc C:\Windows\system32\p2psvc.dll
17:27:30.0274 6700 p2pimsvc - ok
17:27:30.0290 6700 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2psvc C:\Windows\system32\p2psvc.dll
17:27:30.0290 6700 p2psvc - ok
17:27:30.0337 6700 [ 8A79FDF04A73428597E2CAF9D0D67850 ] Parport C:\Windows\system32\DRIVERS\parport.sys
17:27:30.0337 6700 Parport - ok
17:27:30.0384 6700 [ B9C2B89F08670E159F7181891E449CD9 ] partmgr C:\Windows\system32\drivers\partmgr.sys
17:27:30.0384 6700 partmgr - ok
17:27:30.0384 6700 [ 6C580025C81CAF3AE9E3617C22CAD00E ] Parvdm C:\Windows\system32\DRIVERS\parvdm.sys
17:27:30.0399 6700 Parvdm - ok
17:27:30.0446 6700 [ C498B680105FA9D7E5F08699A746049A ] PassThru Service C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe
17:27:30.0555 6700 PassThru Service - ok
17:27:30.0586 6700 [ C6276AD11F4BB49B58AA1ED88537F14A ] PcaSvc C:\Windows\System32\pcasvc.dll
17:27:30.0586 6700 PcaSvc - ok
17:27:30.0633 6700 [ 941DC1D19E7E8620F40BBC206981EFDB ] pci C:\Windows\system32\drivers\pci.sys
17:27:30.0649 6700 pci - ok
17:27:30.0664 6700 [ 1636D43F10416AEB483BC6001097B26C ] pciide C:\Windows\system32\drivers\pciide.sys
17:27:30.0664 6700 pciide - ok
17:27:30.0696 6700 [ E6F3FB1B86AA519E7698AD05E58B04E5 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
17:27:30.0696 6700 pcmcia - ok
17:27:30.0742 6700 [ 6349F6ED9C623B44B52EA3C63C831A92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
17:27:30.0758 6700 PEAUTH - ok
17:27:30.0852 6700 [ B1689DF169143F57053F795390C99DB3 ] pla C:\Windows\system32\pla.dll
17:27:30.0883 6700 pla - ok
17:27:30.0930 6700 [ C5E7F8A996EC0A82D508FD9064A5569E ] PlugPlay C:\Windows\system32\umpnpmgr.dll
17:27:30.0930 6700 PlugPlay - ok
17:27:30.0976 6700 [ B63A3AE87ED0AC525B3AA88B39608BFC ] pnarp C:\Windows\system32\DRIVERS\pnarp.sys
17:27:30.0976 6700 pnarp - ok
17:27:30.0992 6700 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
17:27:30.0992 6700 PNRPAutoReg - ok
17:27:31.0008 6700 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPsvc C:\Windows\system32\p2psvc.dll
17:27:31.0023 6700 PNRPsvc - ok
17:27:31.0054 6700 [ D0494460421A03CD5225CCA0059AA146 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
17:27:31.0070 6700 PolicyAgent - ok
17:27:31.0117 6700 [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
17:27:31.0117 6700 PptpMiniport - ok
17:27:31.0148 6700 [ 6135B976E16F80C1B1363BE882344785 ] PrismXL C:\Program Files\Common Files\New Boundary\PrismXL\PRISMXL.SYS
17:27:31.0164 6700 PrismXL - ok
17:27:31.0195 6700 [ 0E3CEF5D28B40CF273281D620C50700A ] Processor C:\Windows\system32\drivers\processr.sys
17:27:31.0195 6700 Processor - ok
17:27:31.0242 6700 [ 0508FAA222D28835310B7BFCA7A77346 ] ProfSvc C:\Windows\system32\profsvc.dll
17:27:31.0242 6700 ProfSvc - ok
17:27:31.0257 6700 [ A3E186B4B935905B829219502557314E ] ProtectedStorage C:\Windows\system32\lsass.exe
17:27:31.0273 6700 ProtectedStorage - ok
17:27:31.0304 6700 [ 99514FAA8DF93D34B5589187DB3AA0BA ] PSched C:\Windows\system32\DRIVERS\pacer.sys
17:27:31.0304 6700 PSched - ok
17:27:31.0335 6700 [ 633CC728D6493C4263368A86928B0BFD ] purendis C:\Windows\system32\DRIVERS\purendis.sys
17:27:31.0335 6700 purendis - ok
17:27:31.0382 6700 [ CCDAC889326317792480C0A67156A1EC ] ql2300 C:\Windows\system32\drivers\ql2300.sys
17:27:31.0413 6700 ql2300 - ok
17:27:31.0429 6700 [ 81A7E5C076E59995D54BC1ED3A16E60B ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
17:27:31.0429 6700 ql40xx - ok
17:27:31.0476 6700 [ E9ECAE663F47E6CB43962D18AB18890F ] QWAVE C:\Windows\system32\qwave.dll
17:27:31.0476 6700 QWAVE - ok
17:27:31.0522 6700 [ 9F5E0E1926014D17486901C88ECA2DB7 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
17:27:31.0522 6700 QWAVEdrv - ok
17:27:31.0585 6700 [ 8F97D374AD1857E1EED85A79F29A1D3D ] RapiMgr C:\Windows\WindowsMobile\rapimgr.dll
17:27:31.0585 6700 RapiMgr - ok
17:27:31.0632 6700 [ 147D7F9C556D259924351FEB0DE606C3 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
17:27:31.0632 6700 RasAcd - ok
17:27:31.0647 6700 [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F ] RasAuto C:\Windows\System32\rasauto.dll
17:27:31.0647 6700 RasAuto - ok
17:27:31.0678 6700 [ A214ADBAF4CB47DD2728859EF31F26B0 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
17:27:31.0678 6700 Rasl2tp - ok
17:27:31.0725 6700 [ 75D47445D70CA6F9F894B032FBC64FCF ] RasMan C:\Windows\System32\rasmans.dll
17:27:31.0741 6700 RasMan - ok
17:27:31.0772 6700 [ 509A98DD18AF4375E1FC40BC175F1DEF ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
17:27:31.0772 6700 RasPppoe - ok
17:27:31.0819 6700 [ 2005F4A1E05FA09389AC85840F0A9E4D ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
17:27:31.0819 6700 RasSstp - ok
17:27:31.0850 6700 [ B14C9D5B9ADD2F84F70570BBBFAA7935 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
17:27:31.0850 6700 rdbss - ok
17:27:31.0881 6700 [ 89E59BE9A564262A3FB6C4F4F1CD9899 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
17:27:31.0881 6700 RDPCDD - ok
17:27:31.0928 6700 [ E8BD98D46F2ED77132BA927FCCB47D8B ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
17:27:31.0928 6700 rdpdr - ok
17:27:31.0928 6700 [ 9D91FE5286F748862ECFFA05F8A0710C ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
17:27:31.0928 6700 RDPENCDD - ok
17:27:31.0975 6700 [ C127EBD5AFAB31524662C48DFCEB773A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
17:27:31.0990 6700 RDPWD - ok
17:27:32.0022 6700 [ BCDD6B4804D06B1F7EBF29E53A57ECE9 ] RemoteAccess C:\Windows\System32\mprdim.dll
17:27:32.0022 6700 RemoteAccess - ok
17:27:32.0068 6700 [ 9E6894EA18DAFF37B63E1005F83AE4AB ] RemoteRegistry C:\Windows\system32\regsvc.dll
17:27:32.0068 6700 RemoteRegistry - ok
17:27:32.0084 6700 RimUsb - ok
17:27:32.0115 6700 [ D9B34325EE5DF78B8F28A3DE9F577C7D ] RimVSerPort C:\Windows\system32\DRIVERS\RimSerial.sys
17:27:32.0115 6700 RimVSerPort - ok
17:27:32.0146 6700 [ 75E8A6BFA7374ABA833AE92BF41AE4E6 ] ROOTMODEM C:\Windows\system32\Drivers\RootMdm.sys
17:27:32.0146 6700 ROOTMODEM - ok
17:27:32.0209 6700 RoxLiveShare9 - ok
17:27:32.0224 6700 [ 5123F83CBC4349D065534EEB6BBDC42B ] RpcLocator C:\Windows\system32\locator.exe
17:27:32.0240 6700 RpcLocator - ok
17:27:32.0256 6700 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] RpcSs C:\Windows\system32\rpcss.dll
17:27:32.0256 6700 RpcSs - ok
17:27:32.0302 6700 [ 9C508F4074A39E8B4B31D27198146FAD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
17:27:32.0302 6700 rspndr - ok
17:27:32.0318 6700 [ A3E186B4B935905B829219502557314E ] SamSs C:\Windows\system32\lsass.exe
17:27:32.0318 6700 SamSs - ok
17:27:32.0334 6700 [ 3CE8F073A557E172B330109436984E30 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
17:27:32.0349 6700 sbp2port - ok
17:27:32.0412 6700 [ 794D4B48DFB6E999537C7C3947863463 ] SBSDWSCService C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
17:27:32.0443 6700 SBSDWSCService - ok
17:27:32.0490 6700 [ 77B7A11A0C3D78D3386398FBBEA1B632 ] SCardSvr C:\Windows\System32\SCardSvr.dll
17:27:32.0490 6700 SCardSvr - ok
17:27:32.0552 6700 [ 1A58069DB21D05EB2AB58EE5753EBE8D ] Schedule C:\Windows\system32\schedsvc.dll
17:27:32.0568 6700 Schedule - ok
17:27:32.0614 6700 [ 312EC3E37A0A1F2006534913E37B4423 ] SCPolicySvc C:\Windows\System32\certprop.dll
17:27:32.0614 6700 SCPolicySvc - ok
17:27:32.0646 6700 [ 4339A2585708C7D9B0C0CE5AAD3DD6FF ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
17:27:32.0646 6700 sdbus - ok
17:27:32.0661 6700 [ 716313D9F6B0529D03F726D5AAF6F191 ] SDRSVC C:\Windows\System32\SDRSVC.dll
17:27:32.0661 6700 SDRSVC - ok
17:27:32.0677 6700 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
17:27:32.0677 6700 secdrv - ok
17:27:32.0724 6700 [ FD5199D4D8A521005E4B5EE7FE00FA9B ] seclogon C:\Windows\system32\seclogon.dll
17:27:32.0724 6700 seclogon - ok
17:27:32.0770 6700 [ A9BBAB5759771E523F55563D6CBE140F ] SENS C:\Windows\System32\sens.dll
17:27:32.0770 6700 SENS - ok
17:27:32.0802 6700 [ CE9EC966638EF0B10B864DDEDF62A099 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
17:27:32.0802 6700 Serenum - ok
17:27:32.0833 6700 [ 6D663022DB3E7058907784AE14B69898 ] Serial C:\Windows\system32\DRIVERS\serial.sys
17:27:32.0833 6700 Serial - ok
17:27:32.0864 6700 [ 8AF3D28A879BF75DB53A0EE7A4289624 ] sermouse C:\Windows\system32\drivers\sermouse.sys
17:27:32.0880 6700 sermouse - ok
17:27:32.0911 6700 [ D2193326F729B163125610DBF3E17D57 ] SessionEnv C:\Windows\system32\sessenv.dll
17:27:32.0926 6700 SessionEnv - ok
17:27:32.0942 6700 [ 103B79418DA647736EE95645F305F68A ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
17:27:32.0942 6700 sffdisk - ok
17:27:32.0942 6700 [ 8FD08A310645FE872EEEC6E08C6BF3EE ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
17:27:32.0942 6700 sffp_mmc - ok
17:27:32.0958 6700 [ 9CFA05FCFCB7124E69CFC812B72F9614 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
17:27:32.0973 6700 sffp_sd - ok
17:27:32.0973 6700 [ 46ED8E91793B2E6F848015445A0AC188 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
17:27:32.0973 6700 sfloppy - ok
17:27:33.0004 6700 [ E1499BD0FF76B1B2FBBF1AF339D91165 ] SharedAccess C:\Windows\System32\ipnathlp.dll
17:27:33.0020 6700 SharedAccess - ok
17:27:33.0051 6700 [ C7230FBEE14437716701C15BE02C27B8 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
17:27:33.0067 6700 ShellHWDetection - ok
17:27:33.0082 6700 [ D2A595D6EEBEEAF4334F8E50EFBC9931 ] sisagp C:\Windows\system32\drivers\sisagp.sys
17:27:33.0082 6700 sisagp - ok
17:27:33.0098 6700 [ CEDD6F4E7D84E9F98B34B3FE988373AA ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
17:27:33.0098 6700 SiSRaid2 - ok
17:27:33.0114 6700 [ DF843C528C4F69D12CE41CE462E973A7 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
17:27:33.0114 6700 SiSRaid4 - ok
17:27:33.0160 6700 [ DD22C852933516ED9B63BFD94BC83622 ] SIUSBXP C:\Windows\system32\drivers\SiUSBXp.sys
17:27:33.0223 6700 SIUSBXP - ok
17:27:33.0316 6700 [ 862BB4CBC05D80C5B45BE430E5EF872F ] slsvc C:\Windows\system32\SLsvc.exe
17:27:33.0410 6700 slsvc - ok
17:27:33.0457 6700 [ 6EDC422215CD78AA8A9CDE6B30ABBD35 ] SLUINotify C:\Windows\system32\SLUINotify.dll
17:27:33.0457 6700 SLUINotify - ok
17:27:33.0504 6700 [ 7B75299A4D201D6A6533603D6914AB04 ] Smb C:\Windows\system32\DRIVERS\smb.sys
17:27:33.0504 6700 Smb - ok
17:27:33.0535 6700 [ 2A146A055B4401C16EE62D18B8E2A032 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
17:27:33.0535 6700 SNMPTRAP - ok
17:27:33.0582 6700 [ 7AEBDEEF071FE28B0EEF2CDD69102BFF ] spldr C:\Windows\system32\drivers\spldr.sys
17:27:33.0582 6700 spldr - ok
17:27:33.0628 6700 [ 8554097E5136C3BF9F69FE578A1B35F4 ] Spooler C:\Windows\System32\spoolsv.exe
17:27:33.0628 6700 Spooler - ok
17:27:33.0675 6700 [ 86EBD8B1F23E743AAD21F4D5B4D40985 ] SQLBrowser c:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
17:27:33.0675 6700 SQLBrowser - ok
17:27:33.0706 6700 [ D89083C4EB02DACA8F944B0E05E57F9D ] SQLWriter c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
17:27:33.0706 6700 SQLWriter - ok
17:27:33.0769 6700 [ 41987F9FC0E61ADF54F581E15029AD91 ] srv C:\Windows\system32\DRIVERS\srv.sys
17:27:33.0769 6700 srv - ok
17:27:33.0816 6700 [ FF33AFF99564B1AA534F58868CBE41EF ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
17:27:33.0816 6700 srv2 - ok
17:27:33.0847 6700 [ 7605C0E1D01A08F3ECD743F38B834A44 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
17:27:33.0847 6700 srvnet - ok
17:27:33.0862 6700 [ 03D50B37234967433A5EA5BA72BC0B62 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
17:27:33.0878 6700 SSDPSRV - ok
17:27:33.0925 6700 [ 6F1A32E7B7B30F004D9A20AFADB14944 ] SstpSvc C:\Windows\system32\sstpsvc.dll
17:27:33.0925 6700 SstpSvc - ok
17:27:33.0972 6700 [ BCB4E273147AFCAFDFC0DA59AF9E6E25 ] ssudmdm C:\Windows\system32\DRIVERS\ssudmdm.sys
17:27:33.0987 6700 ssudmdm - ok
17:27:34.0034 6700 [ 5DE7D67E49B88F5F07F3E53C4B92A352 ] stisvc C:\Windows\System32\wiaservc.dll
17:27:34.0050 6700 stisvc - ok
17:27:34.0065 6700 [ 7BA58ECF0C0A9A69D44B3DCA62BECF56 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
17:27:34.0065 6700 swenum - ok
17:27:34.0112 6700 [ F21FD248040681CCA1FB6C9A03AAA93D ] swprv C:\Windows\System32\swprv.dll
17:27:34.0112 6700 swprv - ok
17:27:34.0143 6700 [ 192AA3AC01DF071B541094F251DEED10 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
17:27:34.0143 6700 Symc8xx - ok
17:27:34.0159 6700 [ 8C8EB8C76736EBAF3B13B633B2E64125 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
17:27:34.0159 6700 Sym_hi - ok
17:27:34.0174 6700 [ 8072AF52B5FD103BBBA387A1E49F62CB ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
17:27:34.0174 6700 Sym_u3 - ok
17:27:34.0221 6700 [ 9A51B04E9886AA4EE90093586B0BA88D ] SysMain C:\Windows\system32\sysmain.dll
17:27:34.0252 6700 SysMain - ok
17:27:34.0268 6700 [ 2DCA225EAE15F42C0933E998EE0231C3 ] TabletInputService C:\Windows\System32\TabSvc.dll
17:27:34.0268 6700 TabletInputService - ok
17:27:34.0315 6700 [ D7673E4B38CE21EE54C59EEEB65E2483 ] TapiSrv C:\Windows\System32\tapisrv.dll
17:27:34.0315 6700 TapiSrv - ok
17:27:34.0362 6700 [ CB05822CD9CC6C688168E113C603DBE7 ] TBS C:\Windows\System32\tbssvc.dll
17:27:34.0362 6700 TBS - ok
17:27:34.0424 6700 [ EE7E10BED85C312C1D5D30C435BDDA9F ] Tcpip C:\Windows\system32\drivers\tcpip.sys
17:27:34.0455 6700 Tcpip - ok
17:27:34.0486 6700 [ EE7E10BED85C312C1D5D30C435BDDA9F ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
17:27:34.0486 6700 Tcpip6 - ok
17:27:34.0518 6700 [ 2C2D4CFF5E09C73908F9B5AF49A51365 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
17:27:34.0518 6700 tcpipreg - ok
17:27:34.0564 6700 [ 5DCF5E267BE67A1AE926F2DF77FBCC56 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
17:27:34.0564 6700 TDPIPE - ok
17:27:34.0596 6700 [ 389C63E32B3CEFED425B61ED92D3F021 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
17:27:34.0596 6700 TDTCP - ok
17:27:34.0642 6700 [ 76B06EB8A01FC8624D699E7045303E54 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
17:27:34.0642 6700 tdx - ok
17:27:34.0674 6700 [ 3CAD38910468EAB9A6479E2F01DB43C7 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
17:27:34.0674 6700 TermDD - ok
17:27:34.0736 6700 [ BB95DA09BEF6E7A131BFF3BA5032090D ] TermService C:\Windows\System32\termsrv.dll
17:27:34.0752 6700 TermService - ok
17:27:34.0783 6700 [ C7230FBEE14437716701C15BE02C27B8 ] Themes C:\Windows\system32\shsvcs.dll
17:27:34.0783 6700 Themes - ok
17:27:34.0798 6700 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] THREADORDER C:\Windows\system32\mmcss.dll
17:27:34.0798 6700 THREADORDER - ok
17:27:34.0845 6700 [ EC74E77D0EB004BD3A809B5F8FB8C2CE ] TrkWks C:\Windows\System32\trkwks.dll
17:27:34.0845 6700 TrkWks - ok
17:27:34.0908 6700 [ 97D9D6A04E3AD9B6C626B9931DB78DBA ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
17:27:34.0908 6700 TrustedInstaller - ok
17:27:34.0923 6700 [ DCF0F056A2E4F52287264F5AB29CF206 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
17:27:34.0923 6700 tssecsrv - ok
17:27:34.0970 6700 [ CAECC0120AC49E3D2F758B9169872D38 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
17:27:34.0970 6700 tunmp - ok
17:27:35.0001 6700 [ 300DB877AC094FEAB0BE7688C3454A9C ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
17:27:35.0001 6700 tunnel - ok
17:27:35.0032 6700 [ C3ADE15414120033A36C0F293D4A4121 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
17:27:35.0032 6700 uagp35 - ok
17:27:35.0079 6700 [ D9728AF68C4C7693CB100B8441CBDEC6 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
17:27:35.0079 6700 udfs - ok
17:27:35.0126 6700 [ ECEF404F62863755951E09C802C94AD5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
17:27:35.0126 6700 UI0Detect - ok
17:27:35.0142 6700 [ 75E6890EBFCE0841D3291B02E7A8BDB0 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
17:27:35.0142 6700 uliagpkx - ok
17:27:35.0173 6700 [ 3CD4EA35A6221B85DCC25DAA46313F8D ] uliahci C:\Windows\system32\drivers\uliahci.sys
17:27:35.0173 6700 uliahci - ok
17:27:35.0188 6700 [ 8514D0E5CD0534467C5FC61BE94A569F ] UlSata C:\Windows\system32\drivers\ulsata.sys
17:27:35.0188 6700 UlSata - ok
17:27:35.0204 6700 [ 38C3C6E62B157A6BC46594FADA45C62B ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
17:27:35.0204 6700 ulsata2 - ok
17:27:35.0251 6700 [ 32CFF9F809AE9AED85464492BF3E32D2 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
17:27:35.0251 6700 umbus - ok
17:27:35.0360 6700 [ 67A95B9D129ED5399E7965CD09CF30E7 ] UMVPFSrv C:\Program Files\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
17:27:35.0360 6700 UMVPFSrv - ok
17:27:35.0407 6700 [ 68308183F4AE0BE7BF8ECD07CB297999 ] upnphost C:\Windows\System32\upnphost.dll
17:27:35.0422 6700 upnphost - ok
17:27:35.0454 6700 [ 32DB9517628FF0D070682AAB61E688F0 ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
17:27:35.0454 6700 usbaudio - ok
17:27:35.0516 6700 [ CAF811AE4C147FFCD5B51750C7F09142 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
17:27:35.0516 6700 usbccgp - ok
17:27:35.0547 6700 [ 47B9770EA21436DE4AD5AEA7926E0900 ] usbcir C:\Windows\system32\DRIVERS\usbcir.sys
17:27:35.0547 6700 usbcir - ok
17:27:35.0578 6700 [ 79E96C23A97CE7B8F14D310DA2DB0C9B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
17:27:35.0578 6700 usbehci - ok
17:27:35.0625 6700 [ 4673BBCB006AF60E7ABDDBE7A130BA42 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
17:27:35.0625 6700 usbhub - ok
17:27:35.0656 6700 [ CE697FEE0D479290D89BEC80DFE793B7 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
17:27:35.0656 6700 usbohci - ok
17:27:35.0703 6700 [ E75C4B5269091D15A2E7DC0B6D35F2F5 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
17:27:35.0703 6700 usbprint - ok
17:27:35.0750 6700 [ A508C9BD8724980512136B039BBA65E9 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
17:27:35.0750 6700 usbscan - ok
17:27:35.0766 6700 [ BE3DA31C191BC222D9AD503C5224F2AD ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
17:27:35.0766 6700 USBSTOR - ok
17:27:35.0781 6700 [ 325DBBACB8A36AF9988CCF40EAC228CC ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
17:27:35.0781 6700 usbuhci - ok
17:27:35.0828 6700 [ E67998E8F14CB0627A769F6530BCB352 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
17:27:35.0828 6700 usbvideo - ok
17:27:35.0875 6700 [ 830D5D8456B822C1247C1E59B4C464FA ] USB_RNDIS C:\Windows\system32\DRIVERS\usb8023.sys
17:27:35.0875 6700 USB_RNDIS - ok
17:27:35.0906 6700 [ 1509E705F3AC1D474C92454A5C2DD81F ] UxSms C:\Windows\System32\uxsms.dll
17:27:35.0922 6700 UxSms - ok
17:27:35.0968 6700 [ CD88D1B7776DC17A119049742EC07EB4 ] vds C:\Windows\System32\vds.exe
17:27:35.0968 6700 vds - ok
17:27:36.0000 6700 [ 7D92BE0028ECDEDEC74617009084B5EF ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
17:27:36.0000 6700 vga - ok
17:27:36.0031 6700 [ 2E93AC0A1D8C79D019DB6C51F036636C ] VgaSave C:\Windows\System32\drivers\vga.sys
17:27:36.0031 6700 VgaSave - ok
17:27:36.0062 6700 [ 045D9961E591CF0674A920B6BA3BA5CB ] viaagp C:\Windows\system32\drivers\viaagp.sys
17:27:36.0062 6700 viaagp - ok
17:27:36.0078 6700 [ 56A4DE5F02F2E88182B0981119B4DD98 ] ViaC7 C:\Windows\system32\drivers\viac7.sys
17:27:36.0078 6700 ViaC7 - ok
17:27:36.0093 6700 [ FD2E3175FCADA350C7AB4521DCA187EC ] viaide C:\Windows\system32\drivers\viaide.sys
17:27:36.0093 6700 viaide - ok
17:27:36.0124 6700 [ 69503668AC66C77C6CD7AF86FBDF8C43 ] volmgr C:\Windows\system32\drivers\volmgr.sys
17:27:36.0124 6700 volmgr - ok
17:27:36.0171 6700 [ 23E41B834759917BFD6B9A0D625D0C28 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
17:27:36.0171 6700 volmgrx - ok
17:27:36.0218 6700 [ 147281C01FCB1DF9252DE2A10D5E7093 ] volsnap C:\Windows\system32\drivers\volsnap.sys
17:27:36.0234 6700 volsnap - ok
17:27:36.0265 6700 [ D984439746D42B30FC65A4C3546C6829 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
17:27:36.0265 6700 vsmraid - ok
17:27:36.0312 6700 [ DB3D19F850C6EB32BDCB9BC0836ACDDB ] VSS C:\Windows\system32\vssvc.exe
17:27:36.0327 6700 VSS - ok
17:27:36.0374 6700 [ C8AF3B4F699B193A69A1EE9367CBAA40 ] vToolbarUpdater12.2.6 C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\12.2.6\ToolbarUpdater.exe
17:27:36.0390 6700 vToolbarUpdater12.2.6 - ok
17:27:36.0436 6700 [ 96EA68B9EB310A69C25EBB0282B2B9DE ] W32Time C:\Windows\system32\w32time.dll
17:27:36.0436 6700 W32Time - ok
17:27:36.0468 6700 [ 48DFEE8F1AF7C8235D4E626F0C4FE031 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
17:27:36.0468 6700 WacomPen - ok
17:27:36.0499 6700 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
17:27:36.0499 6700 Wanarp - ok
17:27:36.0514 6700 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
17:27:36.0514 6700 Wanarpv6 - ok
17:27:36.0546 6700 [ 59E19BD13C3BDB857646B9E436BA27F7 ] WcesComm C:\Windows\WindowsMobile\wcescomm.dll
17:27:36.0561 6700 WcesComm - ok
17:27:36.0592 6700 [ 4A954A20A4C73D6DB13C0FE25F3F1B0C ] wceusbsh C:\Windows\system32\DRIVERS\wceusbsh.sys
17:27:36.0592 6700 wceusbsh - ok
17:27:36.0624 6700 [ A3CD60FD826381B49F03832590E069AF ] wcncsvc C:\Windows\System32\wcncsvc.dll
17:27:36.0639 6700 wcncsvc - ok
17:27:36.0686 6700 [ 11BCB7AFCDD7AADACB5746F544D3A9C7 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
17:27:36.0686 6700 WcsPlugInService - ok
17:27:36.0702 6700 [ AFC5AD65B991C1E205CF25CFDBF7A6F4 ] Wd C:\Windows\system32\drivers\wd.sys
17:27:36.0717 6700 Wd - ok
17:27:36.0748 6700 [ 9950E3D0F08141C7E89E64456AE7DC73 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
17:27:36.0764 6700 Wdf01000 - ok
17:27:36.0795 6700 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiServiceHost C:\Windows\system32\wdi.dll
17:27:36.0795 6700 WdiServiceHost - ok
17:27:36.0811 6700 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiSystemHost C:\Windows\system32\wdi.dll
17:27:36.0811 6700 WdiSystemHost - ok
17:27:36.0858 6700 [ 04C37D8107320312FBAE09926103D5E2 ] WebClient C:\Windows\System32\webclnt.dll
17:27:36.0858 6700 WebClient - ok
17:27:36.0904 6700 [ AE3736E7E8892241C23E4EBBB7453B60 ] Wecsvc C:\Windows\system32\wecsvc.dll
17:27:36.0904 6700 Wecsvc - ok
17:27:36.0951 6700 [ 670FF720071ED741206D69BD995EA453 ] wercplsupport C:\Windows\System32\wercplsupport.dll
17:27:36.0951 6700 wercplsupport - ok
17:27:36.0998 6700 [ 32B88481D3B326DA6DEB07B1D03481E7 ] WerSvc C:\Windows\System32\WerSvc.dll
17:27:36.0998 6700 WerSvc - ok
17:27:37.0045 6700 [ 4575AA12561C5648483403541D0D7F2B ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
17:27:37.0060 6700 WinDefend - ok
17:27:37.0060 6700 WinHttpAutoProxySvc - ok
17:27:37.0107 6700 [ 6B2A1D0E80110E3D04E6863C6E62FD8A ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
17:27:37.0107 6700 Winmgmt - ok
17:27:37.0185 6700 [ 7CFE68BDC065E55AA5E8421607037511 ] WinRM C:\Windows\system32\WsmSvc.dll
17:27:37.0201 6700 WinRM - ok
17:27:37.0248 6700 [ 676F4B665BDD8053EAA53AC1695B8074 ] winusb C:\Windows\system32\DRIVERS\WinUSB.SYS
17:27:37.0248 6700 winusb - ok
17:27:37.0310 6700 [ C008405E4FEEB069E30DA1D823910234 ] Wlansvc C:\Windows\System32\wlansvc.dll
17:27:37.0326 6700 Wlansvc - ok
17:27:37.0372 6700 [ 94A85E956A065E23E0010A6A7826243B ] WLSetupSvc C:\Program Files\Windows Live\installer\WLSetupSvc.exe
17:27:37.0372 6700 WLSetupSvc - ok
17:27:37.0388 6700 [ 701A9F884A294327E9141D73746EE279 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
17:27:37.0404 6700 WmiAcpi - ok
17:27:37.0435 6700 [ 43BE3875207DCB62A85C8C49970B66CC ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
17:27:37.0435 6700 wmiApSrv - ok
17:27:37.0497 6700 [ 3978704576A121A9204F8CC49A301A9B ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
17:27:37.0513 6700 WMPNetworkSvc - ok
17:27:37.0575 6700 [ 017695393AFFFED8DE58ABD1B085BE6D ] WMZuneComm c:\Program Files\Zune\WMZuneComm.exe
17:27:37.0591 6700 WMZuneComm - ok
17:27:37.0606 6700 [ CFC5A04558F5070CEE3E3A7809F3FF52 ] WPCSvc C:\Windows\System32\wpcsvc.dll
17:27:37.0606 6700 WPCSvc - ok
17:27:37.0653 6700 [ 801FBDB89D472B3C467EB112A0FC9246 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
17:27:37.0653 6700 WPDBusEnum - ok
17:27:37.0700 6700 [ DE9D36F91A4DF3D911626643DEBF11EA ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys
17:27:37.0700 6700 WpdUsb - ok
17:27:37.0809 6700 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
17:27:37.0840 6700 WPFFontCache_v0400 - ok
17:27:37.0887 6700 [ E3A3CB253C0EC2494D4A61F5E43A389C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
17:27:37.0887 6700 ws2ifsl - ok
17:27:37.0918 6700 [ 1CA6C40261DDC0425987980D0CD2AAAB ] wscsvc C:\Windows\System32\wscsvc.dll
17:27:37.0934 6700 wscsvc - ok
17:27:37.0934 6700 WSearch - ok
17:27:38.0012 6700 [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv C:\Windows\system32\wuaueng.dll
17:27:38.0059 6700 wuauserv - ok
17:27:38.0090 6700 [ 6F9B6C0C93232CFF47D0F72D6DB1D21E ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
17:27:38.0106 6700 WudfPf - ok
17:27:38.0152 6700 [ F91FF1E51FCA30B3C3981DB7D5924252 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
17:27:38.0152 6700 WUDFRd - ok
17:27:38.0168 6700 [ 2C0206FF8D2C75AC027D1096FA2FAFDA ] wudfsvc C:\Windows\System32\WUDFSvc.dll
17:27:38.0184 6700 wudfsvc - ok
17:27:38.0230 6700 [ 04E268ADFC81964C49DC0C082D520F7E ] yukonwlh C:\Windows\system32\DRIVERS\yk60x86.sys
17:27:38.0230 6700 yukonwlh - ok
17:27:38.0371 6700 [ 1076DF9ADE4E13EA3BF39D2165AEB903 ] ZuneNetworkSvc c:\Program Files\Zune\ZuneNss.exe
17:27:38.0480 6700 ZuneNetworkSvc - ok
17:27:38.0527 6700 [ DE1CDB333A402B279F04D627122FA08E ] ZuneWlanCfgSvc c:\Program Files\Zune\ZuneWlanCfgSvc.exe
17:27:38.0542 6700 ZuneWlanCfgSvc - ok
17:27:38.0574 6700 ================ Scan global ===============================
17:27:38.0605 6700 [ F31EEBC1A1C81FD04005489CC3DCDFE7 ] C:\Windows\system32\basesrv.dll
17:27:38.0652 6700 [ D2293B069E4B63DC17B2F08D45E71124 ] C:\Windows\system32\winsrv.dll
17:27:38.0683 6700 [ D2293B069E4B63DC17B2F08D45E71124 ] C:\Windows\system32\winsrv.dll
17:27:38.0730 6700 [ D4E6D91C1349B7BFB3599A6ADA56851B ] C:\Windows\system32\services.exe
17:27:38.0730 6700 [Global] - ok
17:27:38.0730 6700 ================ Scan MBR ==================================
17:27:38.0745 6700 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
17:27:39.0135 6700 \Device\Harddisk0\DR0 - ok
17:27:39.0135 6700 ================ Scan VBR ==================================
17:27:39.0135 6700 [ C1A61794B2FFAF4E7C0F133EFCEED17B ] \Device\Harddisk0\DR0\Partition1
17:27:39.0135 6700 \Device\Harddisk0\DR0\Partition1 - ok
17:27:39.0151 6700 [ 86BBFE9A8AEDFD7D02C5C4DC378C92D2 ] \Device\Harddisk0\DR0\Partition2
17:27:39.0151 6700 \Device\Harddisk0\DR0\Partition2 - ok
17:27:39.0151 6700 ============================================================
17:27:39.0151 6700 Scan finished
17:27:39.0151 6700 ============================================================
17:27:39.0166 7292 Detected object count: 0
17:27:39.0166 7292 Actual detected object count: 0
17:27:55.0000 7880 Deinitialize success


aswMBR Log:


aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-09-16 17:28:40
-----------------------------
17:28:40.310 OS Version: Windows 6.0.6002 Service Pack 2
17:28:40.310 Number of processors: 2 586 0x6B01
17:28:40.326 ComputerName: CARRIE-PC UserName: Carrie
17:28:42.323 Initialize success
17:29:40.057 AVAST engine defs: 12091400
17:29:50.961 The log file has been saved successfully to "C:\Users\Carrie\Documents\aswMBR.txt"


ESET:

No threats detected

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:11:17 AM

Posted 17 September 2012 - 12:56 AM

ASWMBR log is incomplete.Please run again and post the new one.

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

Download

FSS

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.


Download

adware cleaner

Launch it click on Delete

post the generated log




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users