Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

TXT File Results from using Various Tools to get to the bottom of my issues!


  • This topic is locked This topic is locked
8 replies to this topic

#1 dallasgrl32

dallasgrl32

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Newport Beach, CA
  • Local time:10:29 PM

Posted 29 July 2013 - 04:37 AM

Hello -here are the results of my scans:

  • aswMBR  Attached File  aswMBR.txt   1.8KB   1 downloads
  •  
  • ESET online scanner
  •  
  • Malwarebytes (already have)
  •  
  • MiniToolBox   Attached File  MiniTOolkitResult.txt   63.41KB   0 downloads
  •  
  • Service Scanner  Attached File  FSS.txt   3.32KB   2 downloads
  •  
  • ADW Cleaner  Attached File  AdwCleanerR1.txt   1.41KB   2 downloads   Attached File  AdwCleanerS2.txt   1.59KB   0 downloads
  •  
  • Junkware Removal Tool  Attached File  JRT.txt   636bytes   2 downloads
  •  
  • RKill  Attached File  RKILL.txt   1.63KB   1 downloads
  •  
  • AutoRuns  Attached File  Result.txt   63.41KB   1 downloads

 



BC AdBot (Login to Remove)

 


#2 nasdaq

nasdaq

  • Malware Response Team
  • 39,888 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:01:29 AM

Posted 02 August 2013 - 09:00 AM

Hello, Welcome to BleepingComputer.
I'm nasdaq and will be helping you.

If you can please print this topic it will make it easier for you to follow the instructions and complete all of the necessary steps in the order listed.
===

Please download and run this DDS Scanning Tool. Nothing will be deleted. It will just give me some additional information about your system.

Download DDS by sUBs from one of the following links, if you no longer have it available. Save it to your desktop.

1: DDS.scr (Not recommended if you use Chrome to download this .scr file. Use the other options.)
2: DDS.pif
3: DDS.COM

Double click on the DDS icon, allow it to run.
A small box will open, with an explanation about the tool. No input is needed, the scan is running.
Notepad will open with the results.
Follow the instructions that pop up for posting the results.
Please note: You may have to disable any script protection running if the scan fails to run.

dds_scr.gif

Please just paste the contents of the DDS.txt log in your next post. DO NOT attach the log.
===

Third party programs if not up to date can be the cause of infiltration an infection.

Please restart the computer before running this security check.

Download Security Check by screen317 from here.
  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.
p.s.
If the SecurityCheck program fails to run for any reason, run it as an Administrator.
===

Please paste the logs in your next reply, DO NOT ATTACH THEM
Let me know what problem persists.

#3 dallasgrl32

dallasgrl32
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Newport Beach, CA
  • Local time:10:29 PM

Posted 02 August 2013 - 03:39 PM

DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 9.0.8112.16496  BrowserJavaVersion: 1.6.0_31
Run by Kim at 13:35:14 on 2013-08-02
.
============== Running Processes ================
.
c:\program files (x86)\common files\logishrd\lvmvfm\LVPrS64H.exe
C:\Program Files\Dell\DellDock\DockLogin.exe
C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
C:\ProgramData\SingleClick Systems\apache\bin\httpd.exe
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\ProgramData\SingleClick Systems\apache\bin\httpd.exe
C:\Program Files (x86)\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe
C:\ProgramData\SingleClick Systems\MySQL\bin\mysqld.exe
C:\ProgramData\SingleClick Systems\Remote Access File Sync Service\dsl_fs_sync.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
C:\Program Files (x86)\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe
c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
C:\Program Files (x86)\Xobni\XobniService.exe
C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
C:\Program Files (x86)\Canon\CAL\CALMAIN.exe
C:\Program Files (x86)\Webroot\WRSA.exe
c:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe
C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files (x86)\Common Files\Intuit\Update Service\IntuitUpdateService.exe
C:\Program Files (x86)\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files (x86)\Webroot\WRSA.exe
C:\Program Files (x86)\Webroot\WRSA.exe
C:\Program Files (x86)\Windows Media Player\wmplayer.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.com/
uSearch Bar = Preserve
uSearch Page = hxxp://www.google.com
uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
uProxyOverride = localhost;*.local
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: McAfee Phishing Filter: {27B4851A-3207-45A2-B947-BE8AFE6163AB} -
BHO: Java™ Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll
BHO: scriptproxy: {7DB2D5A0-7241-4E79-B68D-6309F01C5231} -
BHO: {89867A4A-BDEE-4259-964A-B8E87C4892F3} - <orphaned>
BHO: Webroot Vault: {c8d5d964-2be8-4c5b-8cf5-6e975aa88504} - C:\ProgramData\WRData\PKG\LPBar.dll
BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
TB: Webroot Toolbar: {97ab88ef-346b-4179-a0b1-7445896547a5} - C:\ProgramData\WRData\PKG\LPBar.dll
uRun: [AdobeBridge] <no file>
mRun: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [CanonSolutionMenuEx] "C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE" /logon
mRun: [IJNetworkScannerSelectorEX] "C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe" /FORCE
mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
mRun: [WRSVC] "C:\Program Files (x86)\Webroot\WRSA.exe" -ul
mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
uPolicies-Explorer: NoViewOnDrive = dword:0
uPolicies-Explorer: NoDrives = dword:0
uPolicies-Explorer: DisableLocalMachineRun = dword:0
uPolicies-Explorer: DisableLocalMachineRunOnce = dword:0
uPolicies-Explorer: DisableCurrentUserRun = dword:0
uPolicies-Explorer: DisableCurrentUserRunOnce = dword:0
uPolicies-Explorer: NoDriveTypeAutoRun = dword:0
uPolicies-Explorer: NoFile = dword:0
uPolicies-Explorer: NoDevMgrUpdate = dword:0
uPolicies-Explorer: NoDFSTab = dword:0
uPolicies-Explorer: NoWindowsUpdate = dword:0
uPolicies-Explorer: NoEncryptOnMove = dword:0
uPolicies-Explorer: NoResolveTrack = dword:0
uPolicies-Explorer: NoStartMenuSubFolders = dword:0
uPolicies-System: NoDispAppearancePage = dword:0
uPolicies-System: NoDispSettingsPage = dword:0
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-Explorer: BindDirectlyToPropertySetStorage = dword:0
mPolicies-Explorer: NoViewOnDrive = dword:0
mPolicies-Explorer: NoDrives = dword:0
mPolicies-Explorer: DisableLocalMachineRun = dword:0
mPolicies-Explorer: DisableLocalMachineRunOnce = dword:0
mPolicies-Explorer: DisableCurrentUserRun = dword:0
mPolicies-Explorer: DisableCurrentUserRunOnce = dword:0
mPolicies-Explorer: NoDriveTypeAutoRun = dword:0
mPolicies-Explorer: NoFile = dword:0
mPolicies-Explorer: HideClock = dword:0
mPolicies-Explorer: NoDevMgrUpdate = dword:0
mPolicies-Explorer: NoDFSTab = dword:0
mPolicies-Explorer: NoWindowsUpdate = dword:0
mPolicies-Explorer: NoEncryptOnMove = dword:0
mPolicies-Explorer: NoRunasInstallPrompt = dword:0
mPolicies-Explorer: NoResolveTrack = dword:0
mPolicies-Explorer: NoStartMenuSubFolders = dword:0
mPolicies-System: EnableUIADesktopToggle = dword:0
mPolicies-System: NoDispAppearancePage = dword:0
mPolicies-System: NoDispSettingsPage = dword:0
mPolicies-Explorer: NoViewOnDrive = dword:0
mPolicies-Explorer: NoDrives = dword:0
mPolicies-Explorer: DisableLocalMachineRun = dword:0
mPolicies-Explorer: DisableLocalMachineRunOnce = dword:0
mPolicies-Explorer: DisableCurrentUserRun = dword:0
mPolicies-Explorer: DisableCurrentUserRunOnce = dword:0
mPolicies-Explorer: NoDriveTypeAutoRun = dword:0
mPolicies-Explorer: NoFile = dword:0
mPolicies-Explorer: NoDevMgrUpdate = dword:0
mPolicies-Explorer: NoDFSTab = dword:0
mPolicies-Explorer: NoWindowsUpdate = dword:0
mPolicies-Explorer: NoEncryptOnMove = dword:0
mPolicies-Explorer: NoResolveTrack = dword:0
mPolicies-Explorer: NoStartMenuSubFolders = dword:0
mPolicies-System: NoDispAppearancePage = dword:0
mPolicies-System: NoDispSettingsPage = dword:0
IE: {43699cd0-e34f-11de-8a39-0800200c9a66} - {c8d5d964-2be8-4c5b-8cf5-6e975aa88504} - C:\ProgramData\WRData\PKG\LPBar.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab
DPF: {B1E2B96C-12FE-45E2-BEF1-44A219113CDD} - hxxp://www.superadblocker.com/activex/sabspx.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
TCP: NameServer = 68.105.28.11 68.105.29.11 68.105.28.12
TCP: Interfaces\{0359F4C1-5E42-488B-BD8E-A14A4F9F35A7} : DHCPNameServer = 68.105.28.11 68.105.29.11 68.105.28.12
TCP: Interfaces\{9CB60632-D07F-43AA-8E59-5045A8153D37} : DHCPNameServer = 68.105.28.11 68.105.29.11 68.105.28.12
Handler: intu-help-qb2 - {84D77A00-41B5-4b8b-8ADF-86486D72E749} - C:\Program Files (x86)\Intuit\QuickBooks 2009\HelpAsyncPluggableProtocol.dll
Handler: intu-help-qb3 - {c5e479ea-0a65-4b05-8c6c-2fc8cc682eb4} - C:\Program Files (x86)\Intuit\QuickBooks 2009\HelpAsyncPluggableProtocol.dll
Handler: qbwc - {FC598A64-626C-4447-85B8-53150405FD57} -
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
Notify: !SASWinLogon - C:\Program Files (x86)\SUPERAntiSpyware\SASWINLO.dll
SEH: SABShellExecuteHook Class - {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files (x86)\SUPERAntiSpyware\SASSEH.DLL
x64-BHO: McAfee Phishing Filter: {27B4851A-3207-45A2-B947-BE8AFE6163AB} -
x64-BHO: scriptproxy: {7DB2D5A0-7241-4E79-B68D-6309F01C5231} -
x64-BHO: Webroot Vault: {c8d5d964-2be8-4c5b-8cf5-6e975aa88504} - C:\ProgramData\WRData\PKG\LPBar64.dll
x64-TB: Webroot Toolbar: {97ab88ef-346b-4179-a0b1-7445896547a5} - C:\ProgramData\WRData\PKG\LPBar64.dll
x64-Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
x64-Run: [Broadcom Wireless Manager UI] "C:\Windows\System32\WLTRAY.exe"
x64-Run: [CanonMyPrinter] "C:\Program Files\Canon\MyPrinter\BJMyPrt.exe" /logon
x64-mPolicies-Explorer: NoActiveDesktop = dword:1
x64-mPolicies-Explorer: BindDirectlyToPropertySetStorage = dword:0
x64-mPolicies-Explorer: NoViewOnDrive = dword:0
x64-mPolicies-Explorer: NoDrives = dword:0
x64-mPolicies-Explorer: DisableLocalMachineRun = dword:0
x64-mPolicies-Explorer: DisableLocalMachineRunOnce = dword:0
x64-mPolicies-Explorer: DisableCurrentUserRun = dword:0
x64-mPolicies-Explorer: DisableCurrentUserRunOnce = dword:0
x64-mPolicies-Explorer: NoDriveTypeAutoRun = dword:0
x64-mPolicies-Explorer: NoFile = dword:0
x64-mPolicies-Explorer: HideClock = dword:0
x64-mPolicies-Explorer: NoDevMgrUpdate = dword:0
x64-mPolicies-Explorer: NoDFSTab = dword:0
x64-mPolicies-Explorer: NoWindowsUpdate = dword:0
x64-mPolicies-Explorer: NoEncryptOnMove = dword:0
x64-mPolicies-Explorer: NoRunasInstallPrompt = dword:0
x64-mPolicies-Explorer: NoResolveTrack = dword:0
x64-mPolicies-Explorer: NoStartMenuSubFolders = dword:0
x64-mPolicies-System: EnableUIADesktopToggle = dword:0
x64-mPolicies-System: NoDispAppearancePage = dword:0
x64-mPolicies-System: NoDispSettingsPage = dword:0
x64-IE: {43699cd0-e34f-11de-8a39-0800200c9a66} - {c8d5d964-2be8-4c5b-8cf5-6e975aa88504} - C:\ProgramData\WRData\PKG\LPBar64.dll
x64-IE: {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
x64-Handler: intu-help-qb2 - {84D77A00-41B5-4b8b-8ADF-86486D72E749} - LocalServer32 - <no file>
x64-Handler: intu-help-qb3 - {c5e479ea-0a65-4b05-8c6c-2fc8cc682eb4} - LocalServer32 - <no file>
x64-Handler: qbwc - {FC598A64-626C-4447-85B8-53150405FD57} - <orphaned>
x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>
.
============= SERVICES / DRIVERS ===============
.
2 WRSVC;WRSVC
R? APLMp50a64;APLMp50a64 NDIS Protocol Driver
R? clr_optimization_v2.0.50727_64;Microsoft .NET Framework NGEN v2.0.50727_X64
R? clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86
R? clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64
R? FLEXnet Licensing Service 64;FLEXnet Licensing Service 64
R? LVcKap64;Logitech AEC Driver
R? mferkdk;McAfee Inc. mferkdk
R? mfesmfk;McAfee Inc. mfesmfk
R? NPF;NetGroup Packet Filter Driver
R? PerfHost;Performance Counter DLL Host
R? Point64;Microsoft IntelliPoint Filter Driver
R? SASENUM;SASENUM
R? SkypeUpdate;Skype Updater
R? svcboot;svcboot
R? USBAAPL64;Apple Mobile USB Driver
R? WDC_SAM;WD SCSI Pass Thru driver
R? WebrootSpySweeperService;Webroot Spy Sweeper Engine
R? WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0
S? !SASCORE;SAS Core Service
S? AERTFilters;Andrea RT Filters Service
S? Apache2.2;Remote Access Media Server
S? DockLoginService;Dock Login Service
S? dsl-db;Remote Access DB
S? dsl-fs-sync;Remote Access File Sync Service
S? e1yexpress;Intel® Gigabit Network Connections Driver
S? FontCache;Windows Font Cache Service
S? IntuitUpdateServiceV4;Intuit Update Service v4
S? lvpopf64;Logitech POP Suppression Filter
S? LVPr2M64;Logitech LVPr2M64 Driver
S? LVPrcS64;Process Monitor
S? LVRS64;Logitech RightSound Filter Driver
S? lvsels64;Logitech Selective Suspend Filter
S? LVUSBS64;Logitech USB Monitor Filter
S? LVUVC64;QuickCam Orbit/Sphere AF(UVC)
S? MBAMProtector;MBAMProtector
S? MBAMScheduler;MBAMScheduler
S? MBAMService;MBAMService
S? PxHlpa64;PxHlpa64
S? SASDIFSV;SASDIFSV
S? SASKUTIL;SASKUTIL
S? ssfmonm;ssfmonm
S? WRkrn;WRkrn
S? XobniService;XobniService
.
=============== File Associations ===============
.
FileExt: .txt: txtfile=C:\Windows\SysWow64\NOTEPAD.EXE %1
FileExt: .ini: inifile=C:\Windows\SysWow64\NOTEPAD.EXE %1
FileExt: .inf: inffile=C:\Windows\SysWow64\NOTEPAD.EXE %1
.
=============== Created Last 30 ================
.
.
==================== Find3M  ====================
.
2013-07-29 07:19:16 107 ----a-w- C:\Windows\DeleteOnReboot.bat
2013-07-11 10:11:31 78185248 ----a-w- C:\Windows\System32\mrt.exe
2013-06-22 22:08:54 151728 ----a-w- C:\Windows\SysWow64\WRusr.dll
2013-06-22 22:08:54 114184 ----a-w- C:\Windows\System32\drivers\WRkrn.sys
2013-06-22 22:08:54 104360 ----a-w- C:\Windows\System32\WRusr.dll
2013-06-13 01:35:09 71048 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2013-06-13 01:35:09 692104 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2013-06-04 02:03:07 2775040 ----a-w- C:\Windows\System32\win32k.sys
2013-06-01 04:19:22 619008 ----a-w- C:\Windows\System32\qedit.dll
2013-06-01 04:06:08 505344 ----a-w- C:\Windows\SysWow64\qedit.dll
2013-05-29 06:15:56 17829376 ----a-w- C:\Windows\System32\mshtml.dll
2013-05-29 05:50:31 10926080 ----a-w- C:\Windows\System32\ieframe.dll
2013-05-29 05:43:16 2312704 ----a-w- C:\Windows\System32\jscript9.dll
2013-05-29 05:36:04 1346560 ----a-w- C:\Windows\System32\urlmon.dll
2013-05-29 05:35:44 1392128 ----a-w- C:\Windows\System32\wininet.dll
2013-05-29 05:34:14 1494528 ----a-w- C:\Windows\System32\inetcpl.cpl
2013-05-29 05:33:15 237056 ----a-w- C:\Windows\System32\url.dll
2013-05-29 05:31:32 85504 ----a-w- C:\Windows\System32\jsproxy.dll
2013-05-29 05:29:56 173056 ----a-w- C:\Windows\System32\ieUnatt.exe
2013-05-29 05:29:05 816640 ----a-w- C:\Windows\System32\jscript.dll
2013-05-29 05:29:02 599040 ----a-w- C:\Windows\System32\vbscript.dll
2013-05-29 05:27:57 729088 ----a-w- C:\Windows\System32\msfeeds.dll
2013-05-29 05:27:50 2147840 ----a-w- C:\Windows\System32\iertutil.dll
2013-05-29 05:25:46 96768 ----a-w- C:\Windows\System32\mshtmled.dll
2013-05-29 05:25:09 2382848 ----a-w- C:\Windows\System32\mshtml.tlb
2013-05-29 05:18:27 248320 ----a-w- C:\Windows\System32\ieui.dll
2013-05-29 01:56:15 12333568 ----a-w- C:\Windows\SysWow64\mshtml.dll
2013-05-29 01:50:14 1800704 ----a-w- C:\Windows\SysWow64\jscript9.dll
2013-05-29 01:48:09 9738752 ----a-w- C:\Windows\SysWow64\ieframe.dll
2013-05-29 01:41:52 1427968 ----a-w- C:\Windows\SysWow64\inetcpl.cpl
2013-05-29 01:41:30 1104384 ----a-w- C:\Windows\SysWow64\urlmon.dll
2013-05-29 01:41:08 1129472 ----a-w- C:\Windows\SysWow64\wininet.dll
2013-05-29 01:40:26 231936 ----a-w- C:\Windows\SysWow64\url.dll
2013-05-29 01:38:29 65024 ----a-w- C:\Windows\SysWow64\jsproxy.dll
2013-05-29 01:37:15 142848 ----a-w- C:\Windows\SysWow64\ieUnatt.exe
2013-05-29 01:36:09 420864 ----a-w- C:\Windows\SysWow64\vbscript.dll
2013-05-29 01:35:56 717824 ----a-w- C:\Windows\SysWow64\jscript.dll
2013-05-29 01:35:00 607744 ----a-w- C:\Windows\SysWow64\msfeeds.dll
2013-05-29 01:33:39 1796096 ----a-w- C:\Windows\SysWow64\iertutil.dll
2013-05-29 01:33:32 73216 ----a-w- C:\Windows\SysWow64\mshtmled.dll
2013-05-29 01:33:22 2382848 ----a-w- C:\Windows\SysWow64\mshtml.tlb
2013-05-29 01:29:36 176640 ----a-w- C:\Windows\SysWow64\ieui.dll
2013-05-15 16:32:36 9456 ----a-w- C:\Windows\SysWow64\sabprocenum.sys
2013-05-08 04:50:00 1423720 ----a-w- C:\Windows\System32\drivers\tcpip.sys
2013-05-08 04:18:16 1706496 ----a-w- C:\Windows\System32\WMVDECOD.DLL
2013-05-08 04:04:52 1548288 ----a-w- C:\Windows\SysWow64\WMVDECOD.DLL
2013-03-11 22:04:31 9842040 ----a-w- C:\Program Files (x86)\Common Files\wruninstall.exe
.
============= FINISH: 13:37:41.72 ===============
 



.
==== Installed Programs ======================
.
 Update for Microsoft Office 2007 (KB2508958)
3ivx MPEG-4 5.0.3 (remove only)
Able2Extract Professional 7.0
Acrobat.com
Adobe AIR
Adobe Anchor Service CS4
Adobe Anchor Service x64 CS4
Adobe Bridge CS4
Adobe CMaps CS4
Adobe CMaps x64 CS4
Adobe Color - Photoshop Specific CS4
Adobe Color EU Extra Settings CS4
Adobe Color JA Extra Settings CS4
Adobe Color NA Recommended Settings CS4
Adobe Color Video Profiles CS CS4
Adobe CSI CS4
Adobe CSI CS4 x64
Adobe Default Language CS4
Adobe Device Central CS4
Adobe Drive CS4
Adobe Drive CS4 x64
Adobe ExtendScript Toolkit CS4
Adobe Extension Manager CS4
Adobe Flash Player 11 ActiveX
Adobe Flash Player 11 Plugin
Adobe Fonts All
Adobe Fonts All x64
Adobe Linguistics CS4
Adobe Linguistics CS4 x64
Adobe Media Player
Adobe Output Module
Adobe PDF Library Files CS4
Adobe PDF Library Files x64 CS4
Adobe Photoshop CS4
Adobe Photoshop CS4 (64 Bit)
Adobe Photoshop CS4 Support
Adobe Photoshop Lightroom 2.3 64-bit
Adobe Photoshop.com Inspiration Browser
Adobe Premiere Elements 8.0
Adobe Reader 9.5.5
Adobe Search for Help
Adobe Service Manager Extension
Adobe Setup
Adobe Type Support CS4
Adobe Type Support x64 CS4
Adobe Update Manager CS4
Adobe WinSoft Linguistics Plugin
Adobe WinSoft Linguistics Plugin x64
Adobe XMP Panels CS4
AdobeColorCommonSetCMYK
AdobeColorCommonSetRGB
Amazon Kindle
Amazon MP3 Downloader 1.0.3
Apple Application Support
Apple Mobile Device Support
Apple Software Update
Applian Director
ArcSoft Print Creations
ArcSoft Print Creations - Album Page
ArcSoft Print Creations - Funhouse
ArcSoft Print Creations - Greeting Card
ArcSoft Print Creations - Photo Book
ArcSoft Print Creations - Photo Calendar
ArcSoft Print Creations - Scrapbook
ArcSoft Print Creations - Slimline Card
ATI Catalyst Control Center
ATI Catalyst Install Manager
Audible Download Manager
Banctec Service Agreement
Bonjour
Business Contact Manager for Outlook 2007 SP2
Canon Camera Access Library
Canon Camera Window DC_DV 6 for ZoomBrowser EX
Canon Camera Window MC 6 for ZoomBrowser EX
Canon Easy-PhotoPrint EX
Canon Easy-WebPrint EX
Canon G.726 WMP-Decoder
Canon IJ Network Scan Utility
Canon IJ Network Scanner Selector EX
Canon IJ Network Tool
Canon MovieEdit Task for ZoomBrowser EX
Canon MP Navigator EX 1.1
Canon MP Navigator EX 5.1
Canon MX850 series
Canon MX890 series MP Drivers
Canon MX890 series On-screen Manual
Canon MX890 series User Registration
Canon My Printer
Canon RAW Image Task for ZoomBrowser EX
Canon RemoteCapture Task for ZoomBrowser EX
Canon Solution Menu EX
Canon Speed Dial Utility
Canon Utilities Digital Photo Professional 3.5
Canon Utilities EOS Utility
Canon Utilities Picture Style Editor
Canon Utilities Solution Menu
Canon Utilities WFT-E1/E2/E3 Utility
Canon Utilities ZoomBrowser EX
Catalyst Control Center Core Implementation
Catalyst Control Center Graphics Full Existing
Catalyst Control Center Graphics Full New
Catalyst Control Center Graphics Light
Catalyst Control Center Graphics Previews Common
Catalyst Control Center Graphics Previews Vista
Catalyst Control Center InstallProxy
Catalyst Control Center Localization Chinese Standard
Catalyst Control Center Localization Chinese Traditional
Catalyst Control Center Localization French
Catalyst Control Center Localization German
Catalyst Control Center Localization Hungarian
Catalyst Control Center Localization Italian
Catalyst Control Center Localization Japanese
Catalyst Control Center Localization Korean
Catalyst Control Center Localization Polish
Catalyst Control Center Localization Portuguese
Catalyst Control Center Localization Spanish
Catalyst Control Center Localization Thai
Catalyst Control Center Localization Turkish
ccc-core-static
ccc-utility64
CCC Help Chinese Standard
CCC Help Chinese Traditional
CCC Help English
CCC Help French
CCC Help German
CCC Help Hungarian
CCC Help Italian
CCC Help Japanese
CCC Help Korean
CCC Help Polish
CCC Help Portuguese
CCC Help Spanish
CCC Help Thai
CCC Help Turkish
Cisco Connect
Cisco EAP-FAST Module
Cisco LEAP Module
Cisco PEAP Module
Connect
Cox Online Support Controls
Dell DataSafe Online
Dell Dock
Dell Getting Started Guide
Dell Remote Access
Dell Wireless WLAN Card Utility
Dropbox
EDocs
FileZilla Client 3.3.4.1
FlipShare
Google Update Helper
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Intel® Network Connections 13.1.33.0
Intel® Matrix Storage Manager
iPhone Configuration Utility
iTunes
Java Auto Updater
Java™ 6 Update 31
Java™ 6 Update 7
kuler
Logitech QuickCam
Logitech QuickCam Driver Package
Malwarebytes Anti-Malware version 1.75.0.1300
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 4 Client Profile
Microsoft Application Error Reporting
Microsoft IntelliPoint 6.2
Microsoft IntelliType Pro 6.2
Microsoft Office 2003 Web Components
Microsoft Office 2007 Primary Interop Assemblies
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Excel MUI (English) 2007
Microsoft Office Office 64-bit Components 2007
Microsoft Office Outlook MUI (English) 2007
Microsoft Office PowerPoint MUI (English) 2007
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (English) 2007
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Publisher MUI (English) 2007
Microsoft Office Shared 64-bit MUI (English) 2007
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office Small Business 2007
Microsoft Office Small Business Connectivity Components
Microsoft Office Word MUI (English) 2007
Microsoft Silverlight
Microsoft SQL Server 2005
Microsoft SQL Server 2005 Express Edition (MSSMLBIZ)
Microsoft SQL Server Native Client
Microsoft SQL Server Setup Support Files (English)
Microsoft SQL Server VSS Writer
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2005 Redistributable (x64)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175
Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Visual Studio 2005 Tools for Office Runtime
MobileMe Control Panel
Move Networks Media Player for Internet Explorer
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
MSXML 4.0 SP2 and SOAP Toolkit 3.0
MSXML 4.0 SP2 Parser and SDK
NVIDIA Drivers
PDF Settings CS4
Photoshop Camera Raw
Photoshop Camera Raw_x64
Presto! PageManager 7.15.20
QuickBooks
QuickBooks Pro 2010
QuickTime
Realtek High Definition Audio Driver
Replay AV 8
Replay Converter 3
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2604111)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2657424)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2736416)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2840629)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2160841)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2804576)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2832407)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2835393)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628)
Security Update for Microsoft Office 2007 suites (KB2596615) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596744) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596785) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2687309) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2687311) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2687499) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2760416) 32-Bit Edition
Security Update for Microsoft Office Excel 2007 (KB2687307) 32-Bit Edition
Security Update for Microsoft Office InfoPath 2007 (KB2687440) 32-Bit Edition
Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit Edition
Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition
Security Update for Microsoft Office Publisher 2007 (KB2597971) 32-Bit Edition
Security Update for Microsoft Office Word 2007 (KB2760421) 32-Bit Edition
Shared C Run-time for x64
Skins
Skype™ 5.10
SmartSound Quicktracks for Premiere Elements 8.0
SQLite ADO.NET 2.0/3.5 Provider
Suite Shared Configuration CS4
SUPERAntiSpyware
SUPERAntiSpyware Free Edition
SupportSoft Assisted Service
TextPad 5
TurboTax 2008
TurboTax 2008 wcaiper
TurboTax 2008 WinPerFedFormset
TurboTax 2008 WinPerProgramHelp
TurboTax 2008 WinPerReleaseEngine
TurboTax 2008 WinPerTaxSupport
TurboTax 2008 WinPerUserEducation
TurboTax 2008 wrapper
TurboTax 2009
TurboTax 2009 wcaiper
TurboTax 2009 WinPerFedFormset
TurboTax 2009 WinPerReleaseEngine
TurboTax 2009 WinPerTaxSupport
TurboTax 2009 wrapper
TurboTax 2011
TurboTax 2011 wcaiper
TurboTax 2011 WinPerFedFormset
TurboTax 2011 WinPerReleaseEngine
TurboTax 2011 WinPerTaxSupport
TurboTax 2011 wrapper
TurboTax 2012
TurboTax 2012 WinPerFedFormset
TurboTax 2012 WinPerReleaseEngine
TurboTax 2012 WinPerTaxSupport
TurboTax 2012 wrapper
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596660) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596802) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596848) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2817563) 32-Bit Edition
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Publisher 2007 Help (KB963667)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
Visual C++ 8.0 ATL (x86) WinSXS MSM
Visual C++ 8.0 CRT (x86) WinSXS MSM
Visual Studio 2005 Tools for Office Second Edition Runtime
Webroot SecureAnywhere
WIDCOMM Bluetooth Software 6.0.1.4300
Windows Live OneCare safety scanner
WinPcap 4.0.2
WinZip 12.0
Xobni
Xobni Core
YouSendIt Express
.
==== End Of File ===========================
 



#4 dallasgrl32

dallasgrl32
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Newport Beach, CA
  • Local time:10:29 PM

Posted 02 August 2013 - 03:44 PM

I DONT SEE MY WEBROOT SECURE ANYWHERE COMPLETE LISTED HERE ?

 

 

 Results of screen317's Security Check version 0.99.71 
 Windows Vista Service Pack 2 x64 (UAC is enabled) 
 Internet Explorer 9 
 Internet Explorer 8 
``````````````Antivirus/Firewall Check:``````````````
 Windows Firewall Enabled! 
 WMI entry may not exist for antivirus; attempting automatic update.
`````````Anti-malware/Other Utilities Check:`````````
 SUPERAntiSpyware Free Edition  
 Malwarebytes Anti-Malware version 1.75.0.1300 
 Java™ 6 Update 31 
 Java™ 6 Update 7 
 Java version out of Date!
 Adobe Flash Player  11.7.700.224 
 Adobe Reader 9 Adobe Reader out of Date!
 Google Chrome 4.1.249.1064 
````````Process Check: objlist.exe by Laurent```````` 
 Windows Defender MSASCui.exe
 Malwarebytes Anti-Malware mbamservice.exe 
 Malwarebytes Anti-Malware mbamgui.exe 
 Malwarebytes Anti-Malware mbam.exe 
 Microsoft Small Business Business Contact Manager BcmSqlStartupSvc.exe 
 Malwarebytes' Anti-Malware mbamscheduler.exe  
 Windows Defender MSASCui.exe  
`````````````````System Health check`````````````````
 Total Fragmentation on Drive C: 0 %
````````````````````End of Log``````````````````````

 



#5 nasdaq

nasdaq

  • Malware Response Team
  • 39,888 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:01:29 AM

Posted 03 August 2013 - 07:43 AM


Your DDS log is clean.

DO NOT FORGET TO LET ME KNOW WHAT IS WRONG WITH THIS COMPUTER.

Read carefully and follow these steps.
  • Download TDSSKiller and save it to your Desktop.
  • Double-click on TDSSKiller.exe to run the application.
    tdss1.png
  • Click Change parameters
    settings20121003115955.png
  • Check the boxes next to Verify Driver Digital Signature and Detect TDLFS file system, then click OK
    tdss3.png
  • Click on the Start Scan button to begin the scan and wait for it to finish.
    NOTE: Do not use the computer during the scan!
  • During the scan it will look similar to the image below:
    tdss4.jpg
  • When it finishes, you will either see a report that no threats were found like below:
    tdss5.jpg
    If no threats are found at this point, just click the Report selection on the top right of the form to generate a log. A log file report will pop which you can just close since the report file is already saved.
  • If any infection or suspected items are found, you will see a window similar to below:
    tdss7.jpg
    • If you have files that are shown to fail signature check do not take any action on these. Make sure you select Skip. I will tell you what to do with these later. They may not be issues at all.
    • If Suspicious objects are detected, the default action will be Skip. Leave the default set to Skip.
    • If Malicious objects are detected, they will show in the Scan results. TDSSKiller automatically selects an action (Cure or Delete) for malicious objects
    • Make sure that Cure is selected. Important! - If Cure is not available, please choose Skip instead. Do not choose Delete unless instructed to do so.
  • Click Continue to apply selected actions.
  • A reboot may be required to complete disinfection. A window like the below will appear:
    tdss6.jpg
    Reboot immediately if TDSSKiller states that one is needed.
  • Whether an infection is found or not, a log file should have already been created on your C: drive (or whatever drive you boot from) in the root folder named something like TDSSKiller.2.1.1_27.12.2009_14.17.04_log.txt which is based on the program version # and date and time run.
  • Paste the log to your next reply, DO NOT ATTACH IT.
===

Download http://public.avast.com/~gmerek/aswMBR.exe (aswMBR.exe) to your desktop. Double click the aswMBR.exe to run it.
  • Click the "Scan" button to start scan.
  • Upon completion of the scan, click Save log, and save it to your desktop. (Note - do not select any Fix at this time) <- IMPORTANT
  • Please paste the contents of that log in your next reply.
There shall also be a file on your desktop named MBR.dat. Right click that file and select Send To>Compressed (zipped) folder. Please attach that zipped file in your next reply.
===

#6 dallasgrl32

dallasgrl32
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Newport Beach, CA
  • Local time:10:29 PM

Posted 04 August 2013 - 02:20 AM

Hello - Thank you for helping me.  My computer locks-up / freezes and is very slow sometimes - (takes forever to respond and click between programs, etc).  I ran these with real time protection ENABLED.  If I should re-run with it disabled, please let me know. Thank you! :bubbles:

 

Here is the result from the first one:

 

23:52:02.0332 700576 TDSS rootkit removing tool 2.8.18.0 Jun 10 2013 21:44:19

23:52:03.0160 700576 ============================================================

23:52:03.0160 700576 Current date / time: 2013/08/03 23:52:03.0160

23:52:03.0160 700576 SystemInfo:

23:52:03.0160 700576

23:52:03.0160 700576 OS Version: 6.0.6002 ServicePack: 2.0

23:52:03.0160 700576 Product type: Workstation

23:52:03.0160 700576 ComputerName: KIM-PC

23:52:03.0160 700576 UserName: Kim

23:52:03.0160 700576 Windows directory: C:\Windows

23:52:03.0160 700576 System windows directory: C:\Windows

23:52:03.0160 700576 Running under WOW64

23:52:03.0160 700576 Processor architecture: Intel x64

23:52:03.0160 700576 Number of processors: 8

23:52:03.0160 700576 Page size: 0x1000

23:52:03.0160 700576 Boot type: Normal boot

23:52:03.0160 700576 ============================================================

23:52:05.0638 700576 Drive \Device\Harddisk0\DR0 - Size: 0x950AE00000 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040

23:52:05.0697 700576 ============================================================

23:52:05.0697 700576 \Device\Harddisk0\DR0:

23:52:05.0772 700576 MBR partitions:

23:52:05.0772 700576 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1F800, BlocksNum 0x1E00000

23:52:05.0772 700576 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1E1F800, BlocksNum 0x48A37000

23:52:05.0772 700576 ============================================================

23:52:05.0958 700576 C: <-> \Device\Harddisk0\DR0\Partition2

23:52:06.0004 700576 D: <-> \Device\Harddisk0\DR0\Partition1

23:52:06.0004 700576 ============================================================

23:52:06.0004 700576 Initialize success

23:52:06.0004 700576 ============================================================

00:01:10.0983 701932 ============================================================

00:01:10.0983 701932 Scan started

00:01:10.0983 701932 Mode: Manual; SigCheck; TDLFS;

00:01:10.0983 701932 ============================================================

00:01:11.0293 701932 ================ Scan system memory ========================

00:01:11.0293 701932 System memory - ok

00:01:11.0294 701932 ================ Scan services =============================

00:01:11.0467 701932 [ ABDCD326E1DD1C62509ED94C278A7453 ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE

00:01:11.0878 701932 !SASCORE - ok

00:01:11.0972 701932 [ ADC420616C501B45D26C0FD3EF1E54E4 ] ACDaemon C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe

00:01:12.0043 701932 ACDaemon - ok

00:01:12.0180 701932 [ 1965AAFFAB07E3FB03C77F81BEBA3547 ] ACPI C:\Windows\system32\drivers\acpi.sys

00:01:12.0196 701932 ACPI - ok

00:01:12.0255 701932 [ 2F0683FD2DF1D92E891CACA14B45A8C1 ] adfs C:\Windows\system32\drivers\adfs.sys

00:01:12.0278 701932 adfs - ok

00:01:12.0408 701932 [ 9915504F602D277EE47FD843A677FD15 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

00:01:12.0419 701932 AdobeFlashPlayerUpdateSvc - ok

00:01:12.0461 701932 [ F14215E37CF124104575073F782111D2 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys

00:01:12.0495 701932 adp94xx - ok

00:01:12.0553 701932 [ 7D05A75E3066861A6610F7EE04FF085C ] adpahci C:\Windows\system32\drivers\adpahci.sys

00:01:12.0568 701932 adpahci - ok

00:01:12.0596 701932 [ 820A201FE08A0C345B3BEDBC30E1A77C ] adpu160m C:\Windows\system32\drivers\adpu160m.sys

00:01:12.0606 701932 adpu160m - ok

00:01:12.0617 701932 [ 9B4AB6854559DC168FBB4C24FC52E794 ] adpu320 C:\Windows\system32\drivers\adpu320.sys

00:01:12.0628 701932 adpu320 - ok

00:01:12.0649 701932 [ 0F421175574BFE0BF2F4D8E910A253BB ] AeLookupSvc C:\Windows\System32\aelupsvc.dll

00:01:12.0787 701932 AeLookupSvc - ok

00:01:12.0824 701932 [ 233EE06F203F6FD78CCBB8E0D139A271 ] AERTFilters C:\Windows\system32\AERTSr64.exe

00:01:12.0920 701932 AERTFilters - ok

00:01:12.0993 701932 [ C4F6CE6087760AD70960C9EB130E7943 ] AFD C:\Windows\system32\drivers\afd.sys

00:01:13.0093 701932 AFD - ok

00:01:13.0135 701932 [ F6F6793B7F17B550ECFDBD3B229173F7 ] agp440 C:\Windows\system32\drivers\agp440.sys

00:01:13.0144 701932 agp440 - ok

00:01:13.0208 701932 [ 222CB641B4B8A1D1126F8033F9FD6A00 ] aic78xx C:\Windows\system32\drivers\djsvs.sys

00:01:13.0218 701932 aic78xx - ok

00:01:13.0228 701932 [ 5922F4F59B7868F3D74BBBBEB7B825A3 ] ALG C:\Windows\System32\alg.exe

00:01:13.0379 701932 ALG - ok

00:01:13.0389 701932 [ 9544C2C55541C0C6BFD7B489D0E7D430 ] aliide C:\Windows\system32\drivers\aliide.sys

00:01:13.0397 701932 aliide - ok

00:01:13.0400 701932 [ 970FA5059E61E30D25307B99903E991E ] amdide C:\Windows\system32\drivers\amdide.sys

00:01:13.0407 701932 amdide - ok

00:01:13.0409 701932 [ CDC3632A3A5EA4DBB83E46076A3165A1 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys

00:01:13.0482 701932 AmdK8 - ok

00:01:13.0578 701932 [ EA504A3E708A37CDA81D214D09B8A62F ] Apache2.2 C:\ProgramData\SingleClick Systems\apache\bin\httpd.exe

00:01:13.0614 701932 Apache2.2 ( UnsignedFile.Multi.Generic ) - warning

00:01:13.0614 701932 Apache2.2 - detected UnsignedFile.Multi.Generic (1)

00:01:13.0616 701932 APLMp50a64 - ok

00:01:13.0656 701932 [ 9C37B3FD5615477CB9A0CD116CF43F5C ] Appinfo C:\Windows\System32\appinfo.dll

00:01:13.0711 701932 Appinfo - ok

00:01:13.0802 701932 [ 4FE5C6D40664AE07BE5105874357D2ED ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

00:01:13.0811 701932 Apple Mobile Device - ok

00:01:13.0832 701932 [ 3DA98C07B18A676180FE7EED924D1673 ] AppMgmt C:\Windows\System32\appmgmts.dll

00:01:13.0913 701932 AppMgmt - ok

00:01:13.0923 701932 [ BA8417D4765F3988FF921F30F630E303 ] arc C:\Windows\system32\drivers\arc.sys

00:01:13.0932 701932 arc - ok

00:01:13.0935 701932 [ 9D41C435619733B34CC16A511E644B11 ] arcsas C:\Windows\system32\drivers\arcsas.sys

00:01:13.0944 701932 arcsas - ok

00:01:13.0957 701932 [ 22D13FF3DAFEC2A80634752B1EAA2DE6 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys

00:01:14.0000 701932 AsyncMac - ok

00:01:14.0002 701932 [ F988BB0690CD660318037908E9B8DBF7 ] atapi C:\Windows\system32\drivers\atapi.sys

00:01:14.0010 701932 atapi - ok

00:01:14.0064 701932 [ DB3CAC73FBD321ECF401E804E9F32B70 ] Ati External Event Utility C:\Windows\system32\Ati2evxx.exe

00:01:14.0173 701932 Ati External Event Utility - ok

00:01:14.0288 701932 [ 4AC28891BB930B0CDFF8D958DE34488A ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys

00:01:14.0453 701932 atikmdag - ok

00:01:14.0494 701932 [ 79318C744693EC983D20E9337A2F8196 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll

00:01:14.0561 701932 AudioEndpointBuilder - ok

00:01:14.0610 701932 [ 79318C744693EC983D20E9337A2F8196 ] AudioSrv C:\Windows\System32\Audiosrv.dll

00:01:14.0647 701932 AudioSrv - ok

00:01:14.0700 701932 [ A7C9995BA861FCE78B2CEAAE61D39FD7 ] BCM42RLY C:\Windows\system32\drivers\BCM42RLY.sys

00:01:14.0706 701932 BCM42RLY - ok

00:01:14.0766 701932 [ D32F962B71FEE6BDAAEE630BB2C17280 ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl664.sys

00:01:14.0812 701932 BCM43XX - ok

00:01:14.0921 701932 [ 6163664C7E9CD110AF70180C126C3FDC ] BcmSqlStartupSvc C:\Program Files (x86)\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe

00:01:14.0929 701932 BcmSqlStartupSvc - ok

00:01:14.0961 701932 [ FFB96C2589FFA60473EAD78B39FBDE29 ] BFE C:\Windows\System32\bfe.dll

00:01:15.0023 701932 BFE - ok

00:01:15.0122 701932 [ 6D316F4859634071CC25C4FD4589AD2C ] BITS C:\Windows\System32\qmgr.dll

00:01:15.0235 701932 BITS - ok

00:01:15.0270 701932 [ 79FEEB40056683F8F61398D81DDA65D2 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys

00:01:15.0311 701932 blbdrive - ok

00:01:15.0360 701932 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe

00:01:15.0391 701932 Bonjour Service - ok

00:01:15.0438 701932 [ 2348447A80920B2493A9B582A23E81E1 ] bowser C:\Windows\system32\DRIVERS\bowser.sys

00:01:15.0491 701932 bowser - ok

00:01:15.0500 701932 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys

00:01:15.0546 701932 BrFiltLo - ok

00:01:15.0549 701932 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys

00:01:15.0582 701932 BrFiltUp - ok

00:01:15.0614 701932 [ A1B39DE453433B115B4EA69EE0343816 ] Browser C:\Windows\System32\browser.dll

00:01:15.0660 701932 Browser - ok

00:01:15.0685 701932 [ F0F0BA4D815BE446AA6A4583CA3BCA9B ] Brserid C:\Windows\system32\drivers\brserid.sys

00:01:15.0892 701932 Brserid - ok

00:01:15.0926 701932 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys

00:01:16.0015 701932 BrSerWdm - ok

00:01:16.0017 701932 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys

00:01:16.0106 701932 BrUsbMdm - ok

00:01:16.0107 701932 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys

00:01:16.0143 701932 BrUsbSer - ok

00:01:16.0178 701932 [ 09F926A0D9C0BAFD8417A4307D2ED13C ] BthEnum C:\Windows\system32\DRIVERS\BthEnum.sys

00:01:16.0235 701932 BthEnum - ok

00:01:16.0246 701932 [ E0777B34E05F8A82A21856EFC900C29F ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys

00:01:16.0304 701932 BTHMODEM - ok

00:01:16.0357 701932 [ BEFC5311736B475AC5B60C14FF7C775A ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys

00:01:16.0422 701932 BthPan - ok

00:01:16.0467 701932 [ E1466882252FF51EDDE48C3F7EDA2591 ] BTHPORT C:\Windows\system32\Drivers\BTHport.sys

00:01:16.0541 701932 BTHPORT - ok

00:01:16.0567 701932 [ 22E65FFD640F16968F855F5B3528D366 ] BthServ C:\Windows\System32\bthserv.dll

00:01:16.0594 701932 BthServ - ok

00:01:16.0623 701932 [ 970192CDED77A128E7E30722E5EE6B9C ] BTHUSB C:\Windows\system32\Drivers\BTHUSB.sys

00:01:16.0660 701932 BTHUSB - ok

00:01:16.0699 701932 [ A44AD9AB3BF98A65EB58662E3C78EAE0 ] btwaudio C:\Windows\system32\drivers\btwaudio.sys

00:01:16.0706 701932 btwaudio - ok

00:01:16.0714 701932 [ A441D453821A6336F516F97F79BBFA17 ] btwavdt C:\Windows\system32\drivers\btwavdt.sys

00:01:16.0721 701932 btwavdt - ok

00:01:16.0758 701932 [ B550C75397D96251A92391555FE5534C ] btwrchid C:\Windows\system32\DRIVERS\btwrchid.sys

00:01:16.0764 701932 btwrchid - ok

00:01:16.0837 701932 [ 20F89E232173985A455BC9A5F70D1166 ] CCALib8 C:\Program Files (x86)\Canon\CAL\CALMAIN.exe

00:01:16.0858 701932 CCALib8 ( UnsignedFile.Multi.Generic ) - warning

00:01:16.0858 701932 CCALib8 - detected UnsignedFile.Multi.Generic (1)

00:01:16.0875 701932 [ B4D787DB8D30793A4D4DF9FEED18F136 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys

00:01:16.0898 701932 cdfs - ok

00:01:16.0934 701932 [ C025AA69BE3D0D25C7A2E746EF6F94FC ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys

00:01:16.0972 701932 cdrom - ok

00:01:17.0031 701932 [ 5A268127633C7EE2A7FB87F39D748D56 ] CertPropSvc C:\Windows\System32\certprop.dll

00:01:17.0061 701932 CertPropSvc - ok

00:01:17.0093 701932 [ 02EA568D498BBDD4BA55BF3FCE34D456 ] circlass C:\Windows\system32\drivers\circlass.sys

00:01:17.0136 701932 circlass - ok

00:01:17.0180 701932 [ 3DCA9A18B204939CFB24BEA53E31EB48 ] CLFS C:\Windows\system32\CLFS.sys

00:01:17.0196 701932 CLFS - ok

00:01:17.0310 701932 [ 8EE772032E2FE80A924F3B8DD5082194 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe

00:01:17.0335 701932 clr_optimization_v2.0.50727_32 - ok

00:01:17.0396 701932 [ CE07A466201096F021CD09D631B21540 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe

00:01:17.0404 701932 clr_optimization_v2.0.50727_64 - ok

00:01:17.0473 701932 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe

00:01:17.0482 701932 clr_optimization_v4.0.30319_32 - ok

00:01:17.0522 701932 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe

00:01:17.0531 701932 clr_optimization_v4.0.30319_64 - ok

00:01:17.0533 701932 [ E5D5499A1C50A54B5161296B6AFE6192 ] cmdide C:\Windows\system32\drivers\cmdide.sys

00:01:17.0541 701932 cmdide - ok

00:01:17.0543 701932 [ 7FB8AD01DB0EABE60C8A861531A8F431 ] Compbatt C:\Windows\system32\drivers\compbatt.sys

00:01:17.0551 701932 Compbatt - ok

00:01:17.0553 701932 COMSysApp - ok

00:01:17.0555 701932 [ A8585B6412253803CE8EFCBD6D6DC15C ] crcdisk C:\Windows\system32\drivers\crcdisk.sys

00:01:17.0564 701932 crcdisk - ok

00:01:17.0612 701932 [ 1B22BC0B71F65001479DAB792C3F626C ] CryptSvc C:\Windows\system32\cryptsvc.dll

00:01:17.0656 701932 CryptSvc - ok

00:01:17.0690 701932 [ F60F50C8ED3FCBE358430B95FE27D09C ] CSC C:\Windows\system32\drivers\csc.sys

00:01:17.0751 701932 CSC - ok

00:01:17.0788 701932 [ 1B5F256D31836ED2BA60B3A6C800200C ] CscService C:\Windows\System32\cscsvc.dll

00:01:17.0838 701932 CscService - ok

00:01:17.0874 701932 [ CF8B9A3A5E7DC57724A89D0C3E8CF9EF ] DcomLaunch C:\Windows\system32\rpcss.dll

00:01:17.0945 701932 DcomLaunch - ok

00:01:17.0978 701932 [ 8B722BA35205C71E7951CDC4CDBADE19 ] DfsC C:\Windows\system32\Drivers\dfsc.sys

00:01:18.0003 701932 DfsC - ok

00:01:18.0110 701932 [ C647F468F7DE343DF8C143655C5557D4 ] DFSR C:\Windows\system32\DFSR.exe

00:01:18.0273 701932 DFSR - ok

00:01:18.0321 701932 [ 3ED0321127CE70ACDAABBF77E157C2A7 ] Dhcp C:\Windows\System32\dhcpcsvc.dll

00:01:18.0357 701932 Dhcp - ok

00:01:18.0387 701932 [ B0107E40ECDB5FA692EBF832F295D905 ] disk C:\Windows\system32\drivers\disk.sys

00:01:18.0397 701932 disk - ok

00:01:18.0435 701932 [ 06230F1B721494A6DF8D47FD395BB1B0 ] Dnscache C:\Windows\System32\dnsrslvr.dll

00:01:18.0473 701932 Dnscache - ok

00:01:18.0519 701932 [ DB29915209770D8B59654345EC2D943A ] DockLoginService C:\Program Files\Dell\DellDock\DockLogin.exe

00:01:18.0539 701932 DockLoginService ( UnsignedFile.Multi.Generic ) - warning

00:01:18.0539 701932 DockLoginService - detected UnsignedFile.Multi.Generic (1)

00:01:18.0568 701932 [ 1A7156DD1E850E9914E5E991E3225B94 ] dot3svc C:\Windows\System32\dot3svc.dll

00:01:18.0587 701932 dot3svc - ok

00:01:18.0605 701932 [ 1583B39790DB3EAEC7EDB0CB0140C708 ] DPS C:\Windows\system32\dps.dll

00:01:18.0649 701932 DPS - ok

00:01:18.0685 701932 [ F1A78A98CFC2EE02144C6BEC945447E6 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys

00:01:18.0717 701932 drmkaud - ok

00:01:18.0831 701932 [ 0BB913F9F02677BD4AE96D4967CACFEE ] dsl-db C:\ProgramData\SingleClick Systems\MySQL\bin\mysqld.exe

00:01:19.0020 701932 dsl-db ( UnsignedFile.Multi.Generic ) - warning

00:01:19.0020 701932 dsl-db - detected UnsignedFile.Multi.Generic (1)

00:01:19.0046 701932 [ D2B7D4BC4445C4EBE79D9D4308D54C42 ] dsl-fs-sync C:\ProgramData\SingleClick Systems\Remote Access File Sync Service\dsl_fs_sync.exe

00:01:19.0098 701932 dsl-fs-sync - ok

00:01:19.0159 701932 [ F3932288EEECD776FF1F9F653AD878F3 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys

00:01:19.0193 701932 DXGKrnl - ok

00:01:19.0257 701932 [ 17D40652EF3E55EEAE187A89DF40965A ] e1express C:\Windows\system32\DRIVERS\e1e6032e.sys

00:01:19.0303 701932 e1express - ok

00:01:19.0307 701932 [ 264CEE7B031A9D6C827F3D0CB031F2FE ] E1G60 C:\Windows\system32\DRIVERS\E1G6032E.sys

00:01:19.0337 701932 E1G60 - ok

00:01:19.0377 701932 [ B37F6853D6E0C6F5F8EFDE33E831B5F8 ] e1yexpress C:\Windows\system32\DRIVERS\e1y60x64.sys

00:01:19.0388 701932 e1yexpress - ok

00:01:19.0394 701932 [ C2303883FD9BE49DC36A6400643002EA ] EapHost C:\Windows\System32\eapsvc.dll

00:01:19.0427 701932 EapHost - ok

00:01:19.0461 701932 [ 5F94962BE5A62DB6E447FF6470C4F48A ] Ecache C:\Windows\system32\drivers\ecache.sys

00:01:19.0472 701932 Ecache - ok

00:01:19.0557 701932 [ 14CE384D2E27B64C256BDA4DC39C312D ] ehRecvr C:\Windows\ehome\ehRecvr.exe

00:01:19.0600 701932 ehRecvr - ok

00:01:19.0628 701932 [ B93159C1313D66FDFBBE876F5189CD52 ] ehSched C:\Windows\ehome\ehsched.exe

00:01:19.0654 701932 ehSched - ok

00:01:19.0682 701932 [ F5EE2527D74449868E3C3227A59BCD28 ] ehstart C:\Windows\ehome\ehstart.dll

00:01:19.0896 701932 ehstart - ok

00:01:19.0918 701932 [ C4636D6E10469404AB5308D9FD45ED07 ] elxstor C:\Windows\system32\drivers\elxstor.sys

00:01:19.0933 701932 elxstor - ok

00:01:19.0965 701932 [ A9B18B63A4FD6BAAB83326706D857FAB ] EMDMgmt C:\Windows\system32\emdmgmt.dll

00:01:20.0027 701932 EMDMgmt - ok

00:01:20.0030 701932 [ BC3A58E938BB277E46BF4B3003B01ABD ] ErrDev C:\Windows\system32\drivers\errdev.sys

00:01:20.0099 701932 ErrDev - ok

00:01:20.0384 701932 [ E12F22B73F153DECE721CD45EC05B4AF ] EventSystem C:\Windows\system32\es.dll

00:01:20.0438 701932 EventSystem - ok

00:01:20.0531 701932 [ 486844F47B6636044A42454614ED4523 ] exfat C:\Windows\system32\drivers\exfat.sys

00:01:20.0629 701932 exfat - ok

00:01:20.0684 701932 [ 1A4BEE34277784619DDAF0422C0C6E23 ] fastfat C:\Windows\system32\drivers\fastfat.sys

00:01:20.0725 701932 fastfat - ok

00:01:20.0812 701932 [ 989A776A2FF32A148FCF15C44058B129 ] Fax C:\Windows\system32\fxssvc.exe

00:01:20.0905 701932 Fax - ok

00:01:20.0945 701932 [ 81B79B6DF71FA1D2C6D688D830616E39 ] fdc C:\Windows\system32\DRIVERS\fdc.sys

00:01:20.0967 701932 fdc - ok

00:01:21.0010 701932 [ BB9267ACACD8B7533DD936C34A0CBA5E ] fdPHost C:\Windows\system32\fdPHost.dll

00:01:21.0052 701932 fdPHost - ok

00:01:21.0070 701932 [ 300C80931EABBE1DB7591C516EFE8D0F ] FDResPub C:\Windows\system32\fdrespub.dll

00:01:21.0123 701932 FDResPub - ok

00:01:21.0149 701932 [ 457B7D1D533E4BD62A99AED9C7BB4C59 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys

00:01:21.0159 701932 FileInfo - ok

00:01:21.0177 701932 [ D421327FD6EFCCAF884A54C58E1B0D7F ] Filetrace C:\Windows\system32\drivers\filetrace.sys

00:01:21.0209 701932 Filetrace - ok

00:01:21.0260 701932 [ ABEDFD48AC042C6AAAD32452E77217A1 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe

00:01:21.0290 701932 FLEXnet Licensing Service - ok

00:01:21.0400 701932 [ 1C3FB052A0BB72EDAED90785C34D6EED ] FLEXnet Licensing Service 64 C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe

00:01:21.0447 701932 FLEXnet Licensing Service 64 - ok

00:01:21.0563 701932 [ 7A7F1D1C598C5C8B21CEAAAB892B9FB8 ] FlipShare Service C:\Program Files (x86)\Flip Video\FlipShare\FlipShareService.exe

00:01:21.0578 701932 FlipShare Service - ok

00:01:21.0608 701932 [ 230923EA2B80F79B0F88D90F87B87EBD ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys

00:01:21.0630 701932 flpydisk - ok

00:01:21.0670 701932 [ E3041BC26D6930D61F42AEDB79C91720 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys

00:01:21.0683 701932 FltMgr - ok

00:01:21.0747 701932 [ F20A97F51C104DD0A163251325460747 ] FontCache C:\Windows\system32\FntCache.dll

00:01:21.0841 701932 FontCache - ok

00:01:21.0892 701932 [ BC5B0BE5AF3510B0FD8C140EE42C6D3E ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe

00:01:21.0899 701932 FontCache3.0.0.0 - ok

00:01:21.0927 701932 [ 5779B86CD8B32519FBECB136394D946A ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys

00:01:22.0026 701932 Fs_Rec - ok

00:01:22.0087 701932 [ 849E38DB7D829962D0233A0A252B60C3 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys

00:01:22.0101 701932 fvevol - ok

00:01:22.0132 701932 [ C8E416668D3DC2BE3D4FE4C79224997F ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys

00:01:22.0141 701932 gagp30kx - ok

00:01:22.0198 701932 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys

00:01:22.0205 701932 GEARAspiWDM - ok

00:01:22.0317 701932 [ A0E1B575BA8F504968CD40C0FAEB2384 ] gpsvc C:\Windows\System32\gpsvc.dll

00:01:22.0347 701932 gpsvc - ok

00:01:22.0444 701932 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

00:01:22.0453 701932 gupdate - ok

00:01:22.0461 701932 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

00:01:22.0468 701932 gupdatem - ok

00:01:22.0501 701932 [ 68E732382B32417FF61FD663259B4B09 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys

00:01:22.0514 701932 HdAudAddService - ok

00:01:22.0584 701932 [ F942C5820205F2FB453243EDFEC82A3D ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys

00:01:22.0658 701932 HDAudBus - ok

00:01:22.0680 701932 [ B4881C84A180E75B8C25DC1D726C375F ] HidBth C:\Windows\system32\drivers\hidbth.sys

00:01:22.0733 701932 HidBth - ok

00:01:22.0735 701932 [ 4E77A77E2C986E8F88F996BB3E1AD829 ] HidIr C:\Windows\system32\drivers\hidir.sys

00:01:22.0779 701932 HidIr - ok

00:01:22.0824 701932 [ 59361D38A297755D46A540E450202B2A ] hidserv C:\Windows\system32\hidserv.dll

00:01:22.0859 701932 hidserv - ok

00:01:22.0895 701932 [ 443BDD2D30BB4F00795C797E2CF99EDF ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys

00:01:22.0927 701932 HidUsb - ok

00:01:22.0969 701932 [ B12F367EA39C0795FD57E31242CE1A5A ] hkmsvc C:\Windows\system32\kmsvc.dll

00:01:23.0011 701932 hkmsvc - ok

00:01:23.0079 701932 [ 11ACCB0D76E0FE109624224B6713893C ] hnmsvc c:\ProgramData\SingleClick Systems\Advanced Networking Service\hnm_svc.exe

00:01:23.0131 701932 hnmsvc - ok

00:01:23.0162 701932 [ D7109A1E6BD2DFDBCBA72A6BC626A13B ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys

00:01:23.0171 701932 HpCISSs - ok

00:01:23.0231 701932 [ 098F1E4E5C9CB5B0063A959063631610 ] HTTP C:\Windows\system32\drivers\HTTP.sys

00:01:23.0337 701932 HTTP - ok

00:01:23.0377 701932 [ DA94C854CEA5FAC549D4E1F6E88349E8 ] i2omp C:\Windows\system32\drivers\i2omp.sys

00:01:23.0386 701932 i2omp - ok

00:01:23.0388 701932 [ CBB597659A2713CE0C9CC20C88C7591F ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys

00:01:23.0421 701932 i8042prt - ok

00:01:23.0525 701932 [ 3E42C4691AAD4B1E8D0466F9CBF05CBE ] IAANTMON C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe

00:01:23.0559 701932 IAANTMON - ok

00:01:23.0616 701932 [ FC28E90F2204D8FD147FA9BFA8A51C01 ] iaStor C:\Windows\system32\drivers\iastor.sys

00:01:23.0654 701932 iaStor - ok

00:01:23.0696 701932 [ 3E3BF3627D886736D0B4E90054F929F6 ] iaStorV C:\Windows\system32\drivers\iastorv.sys

00:01:23.0709 701932 iaStorV - ok

00:01:23.0801 701932 [ 6F95324909B502E2651442C1548AB12F ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe

00:01:23.0832 701932 IDriverT ( UnsignedFile.Multi.Generic ) - warning

00:01:23.0832 701932 IDriverT - detected UnsignedFile.Multi.Generic (1)

00:01:23.0899 701932 [ 749F5F8CEDCA70F2A512945325FC489D ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe

00:01:23.0970 701932 idsvc - ok

00:01:23.0973 701932 [ 8C3951AD2FE886EF76C7B5027C3125D3 ] iirsp C:\Windows\system32\drivers\iirsp.sys

00:01:23.0981 701932 iirsp - ok

00:01:24.0041 701932 [ 0C9EA6E654E7B0471741E343A6C671AF ] IKEEXT C:\Windows\System32\ikeext.dll

00:01:24.0078 701932 IKEEXT - ok

00:01:24.0158 701932 [ 358A23ACF3A78893EEACD4BEB20953D5 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys

00:01:24.0204 701932 IntcAzAudAddService - ok

00:01:24.0243 701932 [ DF797A12176F11B2D301C5B234BB200E ] intelide C:\Windows\system32\drivers\intelide.sys

00:01:24.0252 701932 intelide - ok

00:01:24.0263 701932 [ BFD84AF32FA1BAD6231C4585CB469630 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys

00:01:24.0304 701932 intelppm - ok

00:01:24.0386 701932 [ 7BDB4E00E1CB174B56E5B2C31DDE68A7 ] IntuitUpdateService C:\Program Files (x86)\Common Files\Intuit\Update Service\IntuitUpdateService.exe

00:01:24.0392 701932 IntuitUpdateService - ok

00:01:24.0454 701932 [ D9DA7B3117BF5EFF921C0CDED4D58050 ] IntuitUpdateServiceV4 C:\Program Files (x86)\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe

00:01:24.0460 701932 IntuitUpdateServiceV4 - ok

00:01:24.0518 701932 [ 5624BC1BC5EEB49C0AB76A8114F05EA3 ] IPBusEnum C:\Windows\system32\ipbusenum.dll

00:01:24.0564 701932 IPBusEnum - ok

00:01:24.0596 701932 [ D8AABC341311E4780D6FCE8C73C0AD81 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys

00:01:24.0632 701932 IpFilterDriver - ok

00:01:24.0703 701932 [ BF0DBFA9792C5C14FA00F61C75116C1B ] iphlpsvc C:\Windows\System32\iphlpsvc.dll

00:01:24.0750 701932 iphlpsvc - ok

00:01:24.0751 701932 IpInIp - ok

00:01:24.0768 701932 [ 9C2EE2E6E5A7203BFAE15C299475EC67 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys

00:01:24.0813 701932 IPMIDRV - ok

00:01:24.0816 701932 [ B7E6212F581EA5F6AB0C3A6CEEEB89BE ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys

00:01:24.0846 701932 IPNAT - ok

00:01:24.0898 701932 [ 2872B90D57C8310194A78A9787406467 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe

00:01:24.0948 701932 iPod Service - ok

00:01:24.0986 701932 [ 8C42CA155343A2F11D29FECA67FAA88D ] IRENUM C:\Windows\system32\drivers\irenum.sys

00:01:25.0023 701932 IRENUM - ok

00:01:25.0025 701932 [ 0672BFCEDC6FC468A2B0500D81437F4F ] isapnp C:\Windows\system32\drivers\isapnp.sys

00:01:25.0034 701932 isapnp - ok

00:01:25.0079 701932 [ E4FDF99599F27EC25D2CF6D754243520 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys

00:01:25.0091 701932 iScsiPrt - ok

00:01:25.0093 701932 [ 63C766CDC609FF8206CB447A65ABBA4A ] iteatapi C:\Windows\system32\drivers\iteatapi.sys

00:01:25.0101 701932 iteatapi - ok

00:01:25.0103 701932 [ 1281FE73B17664631D12F643CBEA3F59 ] iteraid C:\Windows\system32\drivers\iteraid.sys

00:01:25.0111 701932 iteraid - ok

00:01:25.0132 701932 [ 423696F3BA6472DD17699209B933BC26 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys

00:01:25.0140 701932 kbdclass - ok

00:01:25.0174 701932 [ DBDF75D51464FBC47D0104EC3D572C05 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys

00:01:25.0212 701932 kbdhid - ok

00:01:25.0248 701932 [ 260BF9C43EE12C6898A9F5AAB0FB0E5D ] KeyIso C:\Windows\system32\lsass.exe

00:01:25.0265 701932 KeyIso - ok

00:01:25.0322 701932 [ 88956AD9FA510848AD176777A6C6C1F5 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys

00:01:25.0340 701932 KSecDD - ok

00:01:25.0374 701932 [ 1D419CF43DB29396ECD7113D129D94EB ] ksthunk C:\Windows\system32\drivers\ksthunk.sys

00:01:25.0414 701932 ksthunk - ok

00:01:25.0459 701932 [ 1FAF6926F3416D3DA05C5B265491BDAE ] KtmRm C:\Windows\system32\msdtckrm.dll

00:01:25.0576 701932 KtmRm - ok

00:01:25.0638 701932 [ 50C7A3CB427E9BB5ED0708A669956AB5 ] LanmanServer C:\Windows\system32\srvsvc.dll

00:01:25.0727 701932 LanmanServer - ok

00:01:25.0757 701932 [ CAF86FC1388BE1E470F1A7B43E348ADB ] LanmanWorkstation C:\Windows\System32\wkssvc.dll

00:01:25.0845 701932 LanmanWorkstation - ok

00:01:25.0862 701932 [ 96ECE2659B6654C10A0C310AE3A6D02C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys

00:01:25.0907 701932 lltdio - ok

00:01:25.0952 701932 [ 961CCBD0B1CCB5675D64976FAE37D092 ] lltdsvc C:\Windows\System32\lltdsvc.dll

00:01:26.0001 701932 lltdsvc - ok

00:01:26.0030 701932 [ A47F8080CACC23C91FE823AD19AA5612 ] lmhosts C:\Windows\System32\lmhsvc.dll

00:01:26.0067 701932 lmhosts - ok

00:01:26.0105 701932 [ ACBE1AF32D3123E330A07BFBC5EC4A9B ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys

00:01:26.0115 701932 LSI_FC - ok

00:01:26.0118 701932 [ 799FFB2FC4729FA46D2157C0065B3525 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys

00:01:26.0127 701932 LSI_SAS - ok

00:01:26.0135 701932 [ F445FF1DAAD8A226366BFAF42551226B ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys

00:01:26.0145 701932 LSI_SCSI - ok

00:01:26.0158 701932 [ 52F87B9CC8932C2A7375C3B2A9BE5E3E ] luafv C:\Windows\system32\drivers\luafv.sys

00:01:26.0202 701932 luafv - ok

00:01:26.0253 701932 [ C7039D97DCD940ABA7CDF2074DE828CA ] LVcKap64 C:\Windows\system32\DRIVERS\LVcKap64.sys

00:01:26.0304 701932 LVcKap64 - ok

00:01:26.0402 701932 [ 254B2D815D90942E8AE5D84640FC8E4C ] LVCOMSer C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVCSer64.exe

00:01:26.0413 701932 LVCOMSer - ok

00:01:27.0278 701932 [ 5AC4CD0E92449213E338CD1CBCB0FB7A ] LVMVDrv C:\Windows\system32\DRIVERS\LVMVDrv.sys

00:01:27.0443 701932 LVMVDrv - ok

00:01:27.0557 701932 [ 70F452363EC50149697B0DF4FC3CF171 ] lvpopf64 C:\Windows\system32\DRIVERS\lvpopf64.sys

00:01:27.0641 701932 lvpopf64 - ok

00:01:27.0686 701932 [ 8D53FE6DDD9855189A823C2A6A99A65F ] LVPr2M64 C:\Windows\system32\DRIVERS\LVPr2M64.sys

00:01:27.0693 701932 LVPr2M64 - ok

00:01:27.0769 701932 [ EE0A3A04E1DB4FC5D376E4E5E3FDB224 ] LVPrcS64 C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe

00:01:27.0778 701932 LVPrcS64 - ok

00:01:27.0820 701932 [ 415444C8AB57F9750B51C1906B7CB599 ] LVRS64 C:\Windows\system32\DRIVERS\lvrs64.sys

00:01:27.0909 701932 LVRS64 - ok

00:01:28.0005 701932 [ C4E0E5CB5F71E15A7A51D0A73BCD2BA6 ] lvsels64 C:\Windows\system32\DRIVERS\lvsels64.sys

00:01:28.0065 701932 lvsels64 - ok

00:01:28.0104 701932 [ B409D1C5FE799A8706E38653671A9688 ] LVSrvLauncher C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe

00:01:28.0113 701932 LVSrvLauncher - ok

00:01:28.0150 701932 [ 6562FCEE704F14C05F5338B147D67A16 ] LVUSBS64 C:\Windows\system32\drivers\LVUSBS64.sys

00:01:28.0157 701932 LVUSBS64 - ok

00:01:28.0256 701932 [ 8949E26AF63DFDE319C9B194FA6EA977 ] LVUVC64 C:\Windows\system32\DRIVERS\lvuvc64.sys

00:01:28.0395 701932 LVUVC64 - ok

00:01:28.0438 701932 [ 0BB97D43299910CBFBA59C461B99B910 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys

00:01:28.0447 701932 MBAMProtector - ok

00:01:28.0505 701932 [ 65085456FD9A74D7F1A999520C299ECB ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe

00:01:28.0519 701932 MBAMScheduler - ok

00:01:28.0576 701932 [ E0D7732F2D2E24B2DB3F67B6750295B8 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe

00:01:28.0605 701932 MBAMService - ok

00:01:28.0669 701932 [ 76A58DF02BD4EA29F189B82D0BEF17F8 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll

00:01:28.0712 701932 Mcx2Svc - ok

00:01:28.0753 701932 [ 5C5CD6AACED32FB26C3FB34B3DCF972F ] megasas C:\Windows\system32\drivers\megasas.sys

00:01:28.0761 701932 megasas - ok

00:01:28.0773 701932 [ 859BC2436B076C77C159ED694ACFE8F8 ] MegaSR C:\Windows\system32\drivers\megasr.sys

00:01:28.0790 701932 MegaSR - ok

00:01:28.0831 701932 [ 624D717B11E5004F68442B5740F17F21 ] mferkdk C:\Windows\system32\drivers\mferkdk.sys

00:01:28.0838 701932 mferkdk - ok

00:01:28.0869 701932 [ 0CD9DE7B96735F33F078C4EA044E8B34 ] mfesmfk C:\Windows\system32\drivers\mfesmfk.sys

00:01:28.0876 701932 mfesmfk - ok

00:01:28.0894 701932 [ 3CBE4995E80E13CCFBC42E5DCF3AC81A ] MMCSS C:\Windows\system32\mmcss.dll

00:01:28.0949 701932 MMCSS - ok

00:01:28.0951 701932 [ 59848D5CC74606F0EE7557983BB73C2E ] Modem C:\Windows\system32\drivers\modem.sys

00:01:28.0980 701932 Modem - ok

00:01:28.0996 701932 [ C247CC2A57E0A0C8C6DCCF7807B3E9E5 ] monitor C:\Windows\system32\DRIVERS\monitor.sys

00:01:29.0040 701932 monitor - ok

00:01:29.0074 701932 [ 9367304E5E412B120CF5F4EA14E4E4F1 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys

00:01:29.0082 701932 mouclass - ok

00:01:29.0091 701932 [ C2C2BD5C5CE5AAF786DDD74B75D2AC69 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys

00:01:29.0134 701932 mouhid - ok

00:01:29.0154 701932 [ 11BC9B1E8801B01F7F6ADB9EAD30019B ] MountMgr C:\Windows\system32\drivers\mountmgr.sys

00:01:29.0163 701932 MountMgr - ok

00:01:29.0172 701932 [ F8276EB8698142884498A528DFEA8478 ] mpio C:\Windows\system32\drivers\mpio.sys

00:01:29.0182 701932 mpio - ok

00:01:29.0197 701932 [ C92B9ABDB65A5991E00C28F13491DBA2 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys

00:01:29.0214 701932 mpsdrv - ok

00:01:29.0269 701932 [ 897E3BAF68BA406A61682AE39C83900C ] MpsSvc C:\Windows\system32\mpssvc.dll

00:01:29.0354 701932 MpsSvc - ok

00:01:29.0356 701932 [ 3C200630A89EF2C0864D515B7A75802E ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys

00:01:29.0364 701932 Mraid35x - ok

00:01:29.0395 701932 [ 7C1DE4AA96DC0C071611F9E7DE02A68D ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys

00:01:29.0406 701932 MRxDAV - ok

00:01:29.0448 701932 [ 1485811B320FF8C7EDAD1CAEBB1C6C2B ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys

00:01:29.0513 701932 mrxsmb - ok

00:01:29.0549 701932 [ 3B929A60C833FC615FD97FBA82BC7632 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys

00:01:29.0561 701932 mrxsmb10 - ok

00:01:29.0582 701932 [ C64AB3E1F53B4F5B5BB6D796B2D7BEC3 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys

00:01:29.0604 701932 mrxsmb20 - ok

00:01:29.0633 701932 [ 730B784962D22D2C6481EAE2370E7C8C ] msahci C:\Windows\system32\drivers\msahci.sys

00:01:29.0642 701932 msahci - ok

00:01:29.0645 701932 [ 264BBB4AAF312A485F0E44B65A6B7202 ] msdsm C:\Windows\system32\drivers\msdsm.sys

00:01:29.0654 701932 msdsm - ok

00:01:29.0694 701932 [ 7EC02CE772F068ED0BEAFA3DA341A9BC ] MSDTC C:\Windows\System32\msdtc.exe

00:01:29.0732 701932 MSDTC - ok

00:01:29.0758 701932 [ 704F59BFC4512D2BB0146AEC31B10A7C ] Msfs C:\Windows\system32\drivers\Msfs.sys

00:01:29.0801 701932 Msfs - ok

00:01:29.0803 701932 [ 00EBC952961664780D43DCA157E79B27 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys

00:01:29.0811 701932 msisadrv - ok

00:01:29.0868 701932 [ 366B0C1F4478B519C181E37D43DCDA32 ] MSiSCSI C:\Windows\system32\iscsiexe.dll

00:01:29.0892 701932 MSiSCSI - ok

00:01:29.0894 701932 msiserver - ok

00:01:29.0908 701932 [ 0EA73E498F53B96D83DBFCA074AD4CF8 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys

00:01:29.0945 701932 MSKSSRV - ok

00:01:29.0947 701932 [ 52E59B7E992A58E740AA63F57EDBAE8B ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys

00:01:29.0972 701932 MSPCLOCK - ok

00:01:29.0974 701932 [ 49084A75BAE043AE02D5B44D02991BB2 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys

00:01:30.0000 701932 MSPQM - ok

00:01:30.0037 701932 [ DC6CCF440CDEDE4293DB41C37A5060A5 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys

00:01:30.0051 701932 MsRPC - ok

00:01:30.0081 701932 [ 855796E59DF77EA93AF46F20155BF55B ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys

00:01:30.0089 701932 mssmbios - ok

00:01:30.0175 701932 MSSQL$MSSMLBIZ - ok

00:01:30.0222 701932 [ 1D89EB4E2A99CABD4E81225F4F4C4B25 ] MSSQLServerADHelper c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqladhlp90.exe

00:01:30.0229 701932 MSSQLServerADHelper - ok

00:01:30.0240 701932 [ 86D632D75D05D5B7C7C043FA3564AE86 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys

00:01:30.0277 701932 MSTEE - ok

00:01:30.0306 701932 [ 0CC49F78D8ACA0877D885F149084E543 ] Mup C:\Windows\system32\Drivers\mup.sys

00:01:30.0315 701932 Mup - ok

00:01:30.0337 701932 [ B5A7DED4455D6D694091827DC91FED99 ] NAL C:\Windows\system32\Drivers\iqvw64e.sys

00:01:30.0343 701932 NAL - ok

00:01:30.0365 701932 [ A5B10C845E7538C60C0F5D87A57CB3F5 ] napagent C:\Windows\system32\qagentRT.dll

00:01:30.0411 701932 napagent - ok

00:01:30.0467 701932 [ 2007B826C4ACD94AE32232B41F0842B9 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys

00:01:30.0490 701932 NativeWifiP - ok

00:01:30.0577 701932 [ 65950E07329FCEE8E6516B17C8D0ABB6 ] NDIS C:\Windows\system32\drivers\ndis.sys

00:01:30.0628 701932 NDIS - ok

00:01:30.0661 701932 [ 64DF698A425478E321981431AC171334 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys

00:01:30.0698 701932 NdisTapi - ok

00:01:30.0758 701932 [ 8BAA43196D7B5BB972C9A6B2BBF61A19 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys

00:01:30.0780 701932 Ndisuio - ok

00:01:30.0829 701932 [ F8158771905260982CE724076419EF19 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys

00:01:30.0896 701932 NdisWan - ok

00:01:30.0899 701932 [ 9CB77ED7CB72850253E973A2D6AFDF49 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys

00:01:30.0948 701932 NDProxy - ok

00:01:30.0990 701932 [ A499294F5029A7862ADC115BDA7371CE ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys

00:01:31.0034 701932 NetBIOS - ok

00:01:31.0088 701932 [ FC2C792EBDDC8E28DF939D6A92C83D61 ] netbt C:\Windows\system32\DRIVERS\netbt.sys

00:01:31.0107 701932 netbt - ok

00:01:31.0125 701932 [ 260BF9C43EE12C6898A9F5AAB0FB0E5D ] Netlogon C:\Windows\system32\lsass.exe

00:01:31.0133 701932 Netlogon - ok

00:01:31.0161 701932 [ 9B63B29DEFC0F3115A559D2597BF5D75 ] Netman C:\Windows\System32\netman.dll

00:01:31.0208 701932 Netman - ok

00:01:31.0251 701932 [ 7846D0136CC2B264926A73047BA7688A ] netprofm C:\Windows\System32\netprofm.dll

00:01:31.0294 701932 netprofm - ok

00:01:31.0335 701932 [ 74751DDA198165947FD7454D83F49825 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe

00:01:31.0343 701932 NetTcpPortSharing - ok

00:01:31.0380 701932 [ 4AC08BD6AF2DF42E0C3196D826C8AEA7 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys

00:01:31.0388 701932 nfrd960 - ok

00:01:31.0398 701932 [ F145BF4C4668E7E312069F81EF847CFC ] NlaSvc C:\Windows\System32\nlasvc.dll

00:01:31.0440 701932 NlaSvc - ok

00:01:31.0472 701932 [ 3CEEE0BE85D24D911B9C02714817774C ] NPF C:\Windows\system32\drivers\npf.sys

00:01:31.0478 701932 NPF - ok

00:01:31.0530 701932 [ B298874F8E0EA93F06EC40AA8D146478 ] Npfs C:\Windows\system32\drivers\Npfs.sys

00:01:31.0568 701932 Npfs - ok

00:01:31.0600 701932 [ ACB62BAA1C319B17752553DF3026EEEB ] nsi C:\Windows\system32\nsisvc.dll

00:01:31.0640 701932 nsi - ok

00:01:31.0663 701932 [ 1523AF19EE8B030BA682F7A53537EAEB ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys

00:01:31.0704 701932 nsiproxy - ok

00:01:31.0750 701932 [ 2ACCAA3C3C55370A32F17B3595E1A217 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys

00:01:31.0834 701932 Ntfs - ok

00:01:31.0865 701932 [ DD5D684975352B85B52E3FD5347C20CB ] Null C:\Windows\system32\drivers\Null.sys

00:01:31.0904 701932 Null - ok

00:01:31.0943 701932 [ 2C040B7ADA5B06F6FACADAC8514AA034 ] nvraid C:\Windows\system32\drivers\nvraid.sys

00:01:31.0953 701932 nvraid - ok

00:01:31.0962 701932 [ F7EA0FE82842D05EDA3EFDD376DBFDBA ] nvstor C:\Windows\system32\drivers\nvstor.sys

00:01:31.0970 701932 nvstor - ok

00:01:32.0015 701932 [ 19067CA93075EF4823E3938A686F532F ] nv_agp C:\Windows\system32\drivers\nv_agp.sys

00:01:32.0025 701932 nv_agp - ok

00:01:32.0027 701932 NwlnkFlt - ok

00:01:32.0029 701932 NwlnkFwd - ok

00:01:32.0112 701932 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE

00:01:32.0127 701932 odserv - ok

00:01:32.0170 701932 [ B5B1CE65AC15BBD11C0619E3EF7CFC28 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys

00:01:32.0216 701932 ohci1394 - ok

00:01:32.0249 701932 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE

00:01:32.0257 701932 ose - ok

00:01:32.0303 701932 [ 9AE31D2E1D15C10D91318E0EC149CEAC ] p2pimsvc C:\Windows\system32\p2psvc.dll

00:01:32.0389 701932 p2pimsvc - ok

00:01:32.0415 701932 [ 9AE31D2E1D15C10D91318E0EC149CEAC ] p2psvc C:\Windows\system32\p2psvc.dll

00:01:32.0431 701932 p2psvc - ok

00:01:32.0556 701932 [ 43E24699A18126F11E3D9BF6DB85518B ] Packet C:\Windows\system32\DRIVERS\packet.sys

00:01:32.0673 701932 Packet - ok

00:01:32.0688 701932 [ AECD57F94C887F58919F307C35498EA0 ] Parport C:\Windows\system32\drivers\parport.sys

00:01:32.0739 701932 Parport - ok

00:01:32.0768 701932 [ B43751085E2ABE389DA466BC62A4B987 ] partmgr C:\Windows\system32\drivers\partmgr.sys

00:01:32.0777 701932 partmgr - ok

00:01:32.0799 701932 [ 9AB157B374192FF276C1628FBDBA2B0E ] PcaSvc C:\Windows\System32\pcasvc.dll

00:01:32.0868 701932 PcaSvc - ok

00:01:32.0902 701932 [ 47AB1E0FC9D0E12BB53BA246E3A0906D ] pci C:\Windows\system32\drivers\pci.sys

00:01:32.0913 701932 pci - ok

00:01:32.0943 701932 [ 8D618C829034479985A9ED56106CC732 ] pciide C:\Windows\system32\drivers\pciide.sys

00:01:32.0951 701932 pciide - ok

00:01:32.0957 701932 [ 037661F3D7C507C9993B7010CEEE6288 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys

00:01:32.0968 701932 pcmcia - ok

00:01:32.0984 701932 [ 58865916F53592A61549B04941BFD80D ] PEAUTH C:\Windows\system32\drivers\peauth.sys

00:01:33.0038 701932 PEAUTH - ok

00:01:33.0124 701932 [ 0ED8727EA0172860F47258456C06CAEA ] PerfHost C:\Windows\SysWow64\perfhost.exe

00:01:33.0163 701932 PerfHost - ok

00:01:33.0240 701932 [ E9E68C1A0F25CF4A7AC966EEA74EE89E ] pla C:\Windows\system32\pla.dll

00:01:33.0334 701932 pla - ok

00:01:33.0369 701932 [ FE6B0F59215C9FD9F9D26539C58C8B82 ] PlugPlay C:\Windows\system32\umpnpmgr.dll

00:01:33.0399 701932 PlugPlay - ok

00:01:33.0425 701932 [ 9AE31D2E1D15C10D91318E0EC149CEAC ] PNRPAutoReg C:\Windows\system32\p2psvc.dll

00:01:33.0462 701932 PNRPAutoReg - ok

00:01:33.0507 701932 [ 9AE31D2E1D15C10D91318E0EC149CEAC ] PNRPsvc C:\Windows\system32\p2psvc.dll

00:01:33.0523 701932 PNRPsvc - ok

00:01:33.0578 701932 [ F69344F62A3DC83D2BD03E5626A16B1C ] Point64 C:\Windows\system32\DRIVERS\point64k.sys

00:01:33.0631 701932 Point64 - ok

00:01:33.0689 701932 [ 89A5560671C2D8B4A4B51F3E1AA069D8 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll

00:01:33.0724 701932 PolicyAgent - ok

00:01:33.0754 701932 [ 23386E9952025F5F21C368971E2E7301 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys

00:01:33.0785 701932 PptpMiniport - ok

00:01:33.0823 701932 [ 5080E59ECEE0BC923F14018803AA7A01 ] Processor C:\Windows\system32\drivers\processr.sys

00:01:33.0859 701932 Processor - ok

00:01:33.0898 701932 [ E058CE4FC2449D8BFA14739C83B7FF2A ] ProfSvc C:\Windows\system32\profsvc.dll

00:01:33.0950 701932 ProfSvc - ok

00:01:33.0981 701932 [ 260BF9C43EE12C6898A9F5AAB0FB0E5D ] ProtectedStorage C:\Windows\system32\lsass.exe

00:01:33.0989 701932 ProtectedStorage - ok

00:01:34.0020 701932 [ C5AB7F0809392D0DA027F4A2A81BFA31 ] PSched C:\Windows\system32\DRIVERS\pacer.sys

00:01:34.0049 701932 PSched - ok

00:01:34.0081 701932 [ FBF4DB6D53585437E41A113300002A2B ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys

00:01:34.0088 701932 PxHlpa64 - ok

00:01:34.0135 701932 [ 40440F19490E7D0335919D768C290360 ] QBCFMonitorService C:\Program Files (x86)\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe

00:01:34.0162 701932 QBCFMonitorService ( UnsignedFile.Multi.Generic ) - warning

00:01:34.0162 701932 QBCFMonitorService - detected UnsignedFile.Multi.Generic (1)

00:01:34.0235 701932 [ 6BEE1814470DC12FA20C53DFC3C97EBB ] QBFCService C:\Program Files (x86)\Common Files\Intuit\QuickBooks\FCS\Intuit.QuickBooks.FCS.exe

00:01:34.0254 701932 QBFCService ( UnsignedFile.Multi.Generic ) - warning

00:01:34.0254 701932 QBFCService - detected UnsignedFile.Multi.Generic (1)

00:01:34.0306 701932 [ 0B83F4E681062F3839BE2EC1D98FD94A ] ql2300 C:\Windows\system32\drivers\ql2300.sys

00:01:34.0343 701932 ql2300 - ok

00:01:34.0346 701932 [ E1C80F8D4D1E39EF9595809C1369BF2A ] ql40xx C:\Windows\system32\drivers\ql40xx.sys

00:01:34.0355 701932 ql40xx - ok

00:01:34.0413 701932 [ 90574842C3DA781E279061A3EFF91F07 ] QWAVE C:\Windows\system32\qwave.dll

00:01:34.0446 701932 QWAVE - ok

00:01:34.0475 701932 [ E8D76EDAB77EC9C634C27B8EAC33ADC5 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys

00:01:34.0484 701932 QWAVEdrv - ok

00:01:34.0561 701932 [ 4AC28891BB930B0CDFF8D958DE34488A ] R300 C:\Windows\system32\DRIVERS\atikmdag.sys

00:01:34.0914 701932 R300 - ok

00:01:35.0018 701932 [ 1013B3B663A56D3DDD784F581C1BD005 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys

00:01:35.0182 701932 RasAcd - ok

00:01:35.0230 701932 [ B2AE18F847D07F0044404DDF7CB04497 ] RasAuto C:\Windows\System32\rasauto.dll

00:01:35.0314 701932 RasAuto - ok

00:01:35.0395 701932 [ AC7BC4D42A7E558718DFDEC599BBFC2C ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys

00:01:35.0425 701932 Rasl2tp - ok

00:01:35.0442 701932 [ 3AD83E4046C43BE510DE681588ACB8AF ] RasMan C:\Windows\System32\rasmans.dll

00:01:35.0479 701932 RasMan - ok

00:01:35.0545 701932 [ 4517FBF8B42524AFE4EDE1DE102AAE3E ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys

00:01:35.0590 701932 RasPppoe - ok

00:01:35.0883 701932 [ C6A593B51F34C33E5474539544072527 ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys

00:01:35.0978 701932 RasSstp - ok

00:01:36.0359 701932 [ 322DB5C6B55E8D8EE8D6F358B2AAABB1 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys

00:01:36.0398 701932 rdbss - ok

00:01:36.0439 701932 [ 603900CC05F6BE65CCBF373800AF3716 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys

00:01:36.0462 701932 RDPCDD - ok

00:01:36.0500 701932 [ AE23E79B13FEB62939E2CA1189E71735 ] rdpdr C:\Windows\system32\DRIVERS\rdpdr.sys

00:01:36.0523 701932 rdpdr - ok

00:01:36.0568 701932 [ CAB9421DAF3D97B33D0D055858E2C3AB ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys

00:01:36.0607 701932 RDPENCDD - ok

00:01:36.0642 701932 [ AE4BD9E1C33D351D8E607FC81F15160C ] RDPWD C:\Windows\system32\drivers\RDPWD.sys

00:01:36.0697 701932 RDPWD - ok

00:01:36.0752 701932 [ C612B9557DA73F70D41F8A6FBC8E5344 ] RemoteAccess C:\Windows\System32\mprdim.dll

00:01:36.0827 701932 RemoteAccess - ok

00:01:37.0007 701932 [ 44B9D8EC2F3EF3A0EFB00857AF70D861 ] RemoteRegistry C:\Windows\system32\regsvc.dll

00:01:37.0062 701932 RemoteRegistry - ok

00:01:37.0120 701932 [ CD71E053D7260E4102D99A28F9196070 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys

00:01:37.0154 701932 RFCOMM - ok

00:01:37.0156 701932 RimUsb - ok

00:01:37.0200 701932 [ 0DE22421179D5A8440B68517DDF2B051 ] RimVSerPort C:\Windows\system32\DRIVERS\RimSerial_AMD64.sys

00:01:37.0239 701932 RimVSerPort - ok

00:01:37.0262 701932 [ 6A0CF73B019CBC9255E23C9192EC3702 ] ROOTMODEM C:\Windows\system32\Drivers\RootMdm.sys

00:01:37.0306 701932 ROOTMODEM - ok

00:01:37.0399 701932 RoxLiveShare9 - ok

00:01:37.0430 701932 [ E51A8D02B4BD33EBA1F7A5B76C3766ED ] rpcapd C:\Program Files (x86)\WinPcap\rpcapd.exe

00:01:37.0437 701932 rpcapd - ok

00:01:37.0464 701932 [ F46C457840D4B7A4DAAFEE739CE04102 ] RpcLocator C:\Windows\system32\locator.exe

00:01:37.0481 701932 RpcLocator - ok

00:01:37.0522 701932 [ CF8B9A3A5E7DC57724A89D0C3E8CF9EF ] RpcSs C:\Windows\system32\rpcss.dll

00:01:37.0610 701932 RpcSs - ok

00:01:37.0637 701932 [ 22A9CB08B1A6707C1550C6BF099AAE73 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys

00:01:37.0681 701932 rspndr - ok

00:01:37.0697 701932 [ 260BF9C43EE12C6898A9F5AAB0FB0E5D ] SamSs C:\Windows\system32\lsass.exe

00:01:37.0706 701932 SamSs - ok

00:01:37.0761 701932 [ 3289766038DB2CB14D07DC84392138D5 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS

00:01:37.0767 701932 SASDIFSV - ok

00:01:37.0809 701932 [ 7CE61C25C159F50F9EAF6D77FC83FA35 ] SASENUM C:\Program Files (x86)\SUPERAntiSpyware\SASENUM.SYS

00:01:37.0816 701932 SASENUM - ok

00:01:37.0862 701932 [ 58A38E75F3316A83C23DF6173D41F2B5 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS

00:01:37.0867 701932 SASKUTIL - ok

00:01:37.0931 701932 [ 8C8862DC7417D89B375492C981C491F7 ] sbp2port C:\Windows\system32\DRIVERS\sbp2port.sys

00:01:37.0941 701932 sbp2port - ok

00:01:37.0999 701932 [ FD1CDCF108D5EF3366F00D18B70FB89B ] SCardSvr C:\Windows\System32\SCardSvr.dll

00:01:38.0079 701932 SCardSvr - ok

00:01:38.0129 701932 [ 0F838C811AD295D2A4489B9993096C63 ] Schedule C:\Windows\system32\schedsvc.dll

00:01:38.0227 701932 Schedule - ok

00:01:38.0253 701932 [ 5A268127633C7EE2A7FB87F39D748D56 ] SCPolicySvc C:\Windows\System32\certprop.dll

00:01:38.0285 701932 SCPolicySvc - ok

00:01:38.0324 701932 [ 4FF71B076A7760FE75EA5AE2D0EE0018 ] SDRSVC C:\Windows\System32\SDRSVC.dll

00:01:38.0381 701932 SDRSVC - ok

00:01:38.0394 701932 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys

00:01:38.0443 701932 secdrv - ok

00:01:38.0471 701932 [ 5ACDCBC67FCF894A1815B9F96D704490 ] seclogon C:\Windows\system32\seclogon.dll

00:01:38.0494 701932 seclogon - ok

00:01:38.0540 701932 [ 90973A64B96CD647FF81C79443618EED ] SENS C:\Windows\System32\sens.dll

00:01:38.0577 701932 SENS - ok

00:01:38.0595 701932 [ F71BFE7AC6C52273B7C82CBF1BB2A222 ] Serenum C:\Windows\system32\drivers\serenum.sys

00:01:38.0628 701932 Serenum - ok

00:01:38.0631 701932 [ E62FAC91EE288DB29A9696A9D279929C ] Serial C:\Windows\system32\drivers\serial.sys

00:01:38.0690 701932 Serial - ok

00:01:38.0713 701932 [ A842F04833684BCEEA7336211BE478DF ] sermouse C:\Windows\system32\drivers\sermouse.sys

00:01:38.0752 701932 sermouse - ok

00:01:38.0758 701932 [ A8E4A4407A09F35DCCC3771AF590B0C4 ] SessionEnv C:\Windows\system32\sessenv.dll

00:01:38.0806 701932 SessionEnv - ok

00:01:38.0808 701932 [ 14D4B4465193A87C127933978E8C4106 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys

00:01:38.0850 701932 sffdisk - ok

00:01:38.0881 701932 [ 7073AEE3F82F3D598E3825962AA98AB2 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys

00:01:38.0919 701932 sffp_mmc - ok

00:01:38.0922 701932 [ 35E59EBE4A01A0532ED67975161C7B82 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys

00:01:38.0951 701932 sffp_sd - ok

00:01:38.0983 701932 [ 6B7838C94135768BD455CBDC23E39E5F ] sfloppy C:\Windows\system32\drivers\sfloppy.sys

00:01:39.0032 701932 sfloppy - ok

00:01:39.0072 701932 [ 4C5AEE179DA7E1EE9A9CCB9DA289AF34 ] SharedAccess C:\Windows\System32\ipnathlp.dll

00:01:39.0143 701932 SharedAccess - ok

00:01:39.0192 701932 [ 56793271ECDEDD350C5ADD305603E963 ] ShellHWDetection C:\Windows\System32\shsvcs.dll

00:01:39.0248 701932 ShellHWDetection - ok

00:01:39.0250 701932 [ 7A5DE502AEB719D4594C6471060A78B3 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys

00:01:39.0258 701932 SiSRaid2 - ok

00:01:39.0270 701932 [ 3A2F769FAB9582BC720E11EA1DFB184D ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys

00:01:39.0279 701932 SiSRaid4 - ok

00:01:39.0341 701932 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe

00:01:39.0350 701932 SkypeUpdate - ok

00:01:39.0400 701932 [ A9A27A8E257B45A604FDAD4F26FE7241 ] slsvc C:\Windows\system32\SLsvc.exe

00:01:39.0522 701932 slsvc - ok

00:01:39.0574 701932 [ FD74B4B7C2088E390A30C85A896FC3AF ] SLUINotify C:\Windows\system32\SLUINotify.dll

00:01:39.0609 701932 SLUINotify - ok

00:01:39.0654 701932 [ 290B6F6A0EC4FCDFC90F5CB6D7020473 ] Smb C:\Windows\system32\DRIVERS\smb.sys

00:01:39.0685 701932 Smb - ok

00:01:39.0708 701932 [ F8F47F38909823B1AF28D60B96340CFF ] SNMPTRAP C:\Windows\System32\snmptrap.exe

00:01:39.0738 701932 SNMPTRAP - ok

00:01:39.0772 701932 [ 386C3C63F00A7040C7EC5E384217E89D ] spldr C:\Windows\system32\drivers\spldr.sys

00:01:39.0780 701932 spldr - ok

00:01:39.0837 701932 [ F66FF751E7EFC816D266977939EF5DC3 ] Spooler C:\Windows\System32\spoolsv.exe

00:01:39.0878 701932 Spooler - ok

00:01:39.0914 701932 [ 86EBD8B1F23E743AAD21F4D5B4D40985 ] SQLBrowser c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe

00:01:39.0940 701932 SQLBrowser - ok

00:01:40.0000 701932 [ 3C432A96363097870995E2A3C8B66ABD ] SQLWriter c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe

00:01:40.0009 701932 SQLWriter - ok

00:01:40.0051 701932 [ 880A57FCCB571EBD063D4DD50E93E46D ] srv C:\Windows\system32\DRIVERS\srv.sys

00:01:40.0120 701932 srv - ok

00:01:40.0159 701932 [ A1AD14A6D7A37891FFFECA35EBBB0730 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys

00:01:40.0206 701932 srv2 - ok

00:01:40.0251 701932 [ 4BED62F4FA4D8300973F1151F4C4D8A7 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys

00:01:40.0271 701932 srvnet - ok

00:01:40.0308 701932 [ 192C74646EC5725AEF3F80D19FF75F6A ] SSDPSRV C:\Windows\System32\ssdpsrv.dll

00:01:40.0351 701932 SSDPSRV - ok

00:01:40.0405 701932 [ A4C4A1FEDFBED04B39EFAE9F1311ED5E ] ssfmonm C:\Windows\system32\DRIVERS\ssfmonm.sys

00:01:40.0412 701932 ssfmonm - ok

00:01:40.0434 701932 [ 1CC88F50BD4E6FD6EAC5C5365CEB6583 ] ssidrv C:\Windows\system32\DRIVERS\ssidrv.sys

00:01:40.0442 701932 ssidrv - ok

00:01:40.0485 701932 [ 2EE3FA0308E6185BA64A9A7F2E74332B ] SstpSvc C:\Windows\system32\sstpsvc.dll

00:01:40.0510 701932 SstpSvc - ok

00:01:40.0550 701932 [ 14B4DB4381E4A55F570D8BB699B791D6 ] StillCam C:\Windows\system32\DRIVERS\serscan.sys

00:01:40.0585 701932 StillCam - ok

00:01:40.0653 701932 [ 15825C1FBFB8779992CB65087F316AF5 ] stisvc C:\Windows\System32\wiaservc.dll

00:01:40.0681 701932 stisvc - ok

00:01:40.0737 701932 svcboot - ok

00:01:40.0760 701932 [ 8A851CA908B8B974F89C50D2E18D4F0C ] swenum C:\Windows\system32\DRIVERS\swenum.sys

00:01:40.0768 701932 swenum - ok

00:01:40.0824 701932 [ 6DE37F4DE19D4EFD9C48C43ADDBC949A ] swprv C:\Windows\System32\swprv.dll

00:01:40.0888 701932 swprv - ok

00:01:40.0939 701932 [ 2F26A2C6FC96B29BEFF5D8ED74E6625B ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys

00:01:40.0947 701932 Symc8xx - ok

00:01:40.0960 701932 [ A909667976D3BCCD1DF813FED517D837 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys

00:01:40.0968 701932 Sym_hi - ok

00:01:41.0000 701932 [ 36887B56EC2D98B9C362F6AE4DE5B7B0 ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys

00:01:41.0008 701932 Sym_u3 - ok

00:01:41.0054 701932 [ 92D7A8B0F87B036F17D25885937897A6 ] SysMain C:\Windows\system32\sysmain.dll

00:01:41.0110 701932 SysMain - ok

00:01:41.0173 701932 [ 005CE42567F9113A3BCCB3B20073B029 ] TabletInputService C:\Windows\System32\TabSvc.dll

00:01:41.0207 701932 TabletInputService - ok

00:01:41.0249 701932 [ CC2562B4D55E0B6A4758C65407F63B79 ] TapiSrv C:\Windows\System32\tapisrv.dll

00:01:41.0281 701932 TapiSrv - ok

00:01:41.0311 701932 [ CDBE8D7C1E201B911CDC346D06617FB5 ] TBS C:\Windows\System32\tbssvc.dll

00:01:41.0356 701932 TBS - ok

00:01:41.0413 701932 [ C7C60777592EEF169A11647AAE7A91C3 ] Tcpip C:\Windows\system32\drivers\tcpip.sys

00:01:41.0482 701932 Tcpip - ok

00:01:41.0555 701932 [ C7C60777592EEF169A11647AAE7A91C3 ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys

00:01:41.0604 701932 Tcpip6 - ok

00:01:41.0664 701932 [ C7E72A4071EE0200E3C075DACFB2B334 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys

00:01:41.0733 701932 tcpipreg - ok

00:01:41.0786 701932 [ 1D8BF4AAA5FB7A2761475781DC1195BC ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys

00:01:41.0829 701932 TDPIPE - ok

00:01:41.0847 701932 [ 7F7E00CDF609DF657F4CDA02DD1C9BB1 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys

00:01:41.0889 701932 TDTCP - ok

00:01:41.0922 701932 [ 458919C8C42E398DC4802178D5FFEE27 ] tdx C:\Windows\system32\DRIVERS\tdx.sys

00:01:41.0939 701932 tdx - ok

00:01:41.0963 701932 [ 8C19678D22649EC002EF2282EAE92F98 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys

00:01:41.0972 701932 TermDD - ok

00:01:42.0026 701932 [ 5CDD30BC217082DAC71A9878D9BFD566 ] TermService C:\Windows\System32\termsrv.dll

00:01:42.0090 701932 TermService - ok

00:01:42.0159 701932 [ 56793271ECDEDD350C5ADD305603E963 ] Themes C:\Windows\system32\shsvcs.dll

00:01:42.0169 701932 Themes - ok

00:01:42.0226 701932 [ 3CBE4995E80E13CCFBC42E5DCF3AC81A ] THREADORDER C:\Windows\system32\mmcss.dll

00:01:42.0248 701932 THREADORDER - ok

00:01:42.0308 701932 [ F4689F05AF472A651A7B1B7B02D200E7 ] TrkWks C:\Windows\System32\trkwks.dll

00:01:42.0347 701932 TrkWks - ok

00:01:42.0409 701932 [ 66328B08EF5A9305D8EDE36B93930369 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe

00:01:42.0444 701932 TrustedInstaller - ok

00:01:42.0469 701932 [ 9E5409CD17C8BEF193AAD498F3BC2CB8 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys

00:01:42.0492 701932 tssecsrv - ok

00:01:42.0502 701932 [ 89EC74A9E602D16A75A4170511029B3C ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys

00:01:42.0517 701932 tunmp - ok

00:01:42.0550 701932 [ 30A9B3F45AD081BFFC3BCAA9C812B609 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys

00:01:42.0577 701932 tunnel - ok

00:01:42.0609 701932 [ FEC266EF401966311744BD0F359F7F56 ] uagp35 C:\Windows\system32\drivers\uagp35.sys

00:01:42.0618 701932 uagp35 - ok

00:01:42.0666 701932 [ FAF2640A2A76ED03D449E443194C4C34 ] udfs C:\Windows\system32\DRIVERS\udfs.sys

00:01:42.0706 701932 udfs - ok

00:01:42.0715 701932 [ 060507C4113391394478F6953A79EEDC ] UI0Detect C:\Windows\system32\UI0Detect.exe

00:01:42.0745 701932 UI0Detect - ok

00:01:42.0774 701932 [ 4EC9447AC3AB462647F60E547208CA00 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys

00:01:42.0783 701932 uliagpkx - ok

00:01:42.0791 701932 [ 697F0446134CDC8F99E69306184FBBB4 ] uliahci C:\Windows\system32\drivers\uliahci.sys

00:01:42.0803 701932 uliahci - ok

00:01:42.0807 701932 [ 31707F09846056651EA2C37858F5DDB0 ] UlSata C:\Windows\system32\drivers\ulsata.sys

00:01:42.0816 701932 UlSata - ok

00:01:42.0824 701932 [ 85E5E43ED5B48C8376281BAB519271B7 ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys

00:01:42.0834 701932 ulsata2 - ok

00:01:42.0847 701932 [ 46E9A994C4FED537DD951F60B86AD3F4 ] umbus C:\Windows\system32\DRIVERS\umbus.sys

00:01:42.0890 701932 umbus - ok

00:01:42.0917 701932 [ DC5E34F189B827199B9CC8481C648269 ] UmRdpService C:\Windows\System32\umrdp.dll

00:01:42.0999 701932 UmRdpService - ok

00:01:43.0017 701932 [ 7093799FF80E9DECA0680D2E3535BE60 ] upnphost C:\Windows\System32\upnphost.dll

00:01:43.0087 701932 upnphost - ok

00:01:43.0159 701932 [ C9E9D59C0099A9FF51697E9306A44240 ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys

00:01:43.0207 701932 USBAAPL64 - ok

00:01:43.0244 701932 [ C6BA890DE6E41857FBE84175519CAE7D ] usbaudio C:\Windows\system32\drivers\usbaudio.sys

00:01:43.0279 701932 usbaudio - ok

00:01:43.0327 701932 [ 07E3498FC60834219D2356293DA0FECC ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys

00:01:43.0354 701932 usbccgp - ok

00:01:43.0357 701932 [ 9247F7E0B65852C1F6631480984D6ED2 ] usbcir C:\Windows\system32\drivers\usbcir.sys

00:01:43.0398 701932 usbcir - ok

00:01:43.0438 701932 [ 827E44DE934A736EA31E91D353EB126F ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys

00:01:43.0473 701932 usbehci - ok

00:01:43.0504 701932 [ BB35CD80A2ECECFADC73569B3D70C7D1 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys

00:01:43.0523 701932 usbhub - ok

00:01:43.0546 701932 [ EBA14EF0C07CEC233F1529C698D0D154 ] usbohci C:\Windows\system32\drivers\usbohci.sys

00:01:43.0595 701932 usbohci - ok

00:01:43.0625 701932 [ 28B693B6D31E7B9332C1BDCEFEF228C1 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys

00:01:43.0647 701932 usbprint - ok

00:01:43.0662 701932 [ EA0BF666868964FBE8CB10E50C97B9F1 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys

00:01:43.0699 701932 usbscan - ok

00:01:43.0722 701932 [ B854C1558FCA0C269A38663E8B59B581 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS

00:01:43.0751 701932 USBSTOR - ok

00:01:43.0783 701932 [ B2872CBF9F47316ABD0E0C74A1ABA507 ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys

00:01:43.0816 701932 usbuhci - ok

00:01:43.0856 701932 [ D76E231E4850BB3F88A3D9A78DF191E3 ] UxSms C:\Windows\System32\uxsms.dll

00:01:43.0873 701932 UxSms - ok

00:01:43.0918 701932 [ 294945381DFA7CE58CECF0A9896AF327 ] vds C:\Windows\System32\vds.exe

00:01:43.0995 701932 vds - ok

00:01:44.0030 701932 [ 916B94BCF1E09873FFF2D5FB11767BBC ] vga C:\Windows\system32\DRIVERS\vgapnp.sys

00:01:44.0071 701932 vga - ok

00:01:44.0101 701932 [ B83AB16B51FEDA65DD81B8C59D114D63 ] VgaSave C:\Windows\System32\drivers\vga.sys

00:01:44.0123 701932 VgaSave - ok

00:01:44.0169 701932 [ 8294B6C3FDB6C33F24E150DE647ECDAA ] viaide C:\Windows\system32\drivers\viaide.sys

00:01:44.0177 701932 viaide - ok

00:01:44.0189 701932 [ 2B7E885ED951519A12C450D24535DFCA ] volmgr C:\Windows\system32\drivers\volmgr.sys

00:01:44.0198 701932 volmgr - ok

00:01:44.0230 701932 [ CEC5AC15277D75D9E5DEC2E1C6EAF877 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys

00:01:44.0247 701932 volmgrx - ok

00:01:44.0302 701932 [ 582F710097B46140F5A89A19A6573D4B ] volsnap C:\Windows\system32\drivers\volsnap.sys

00:01:44.0315 701932 volsnap - ok

00:01:44.0327 701932 [ A68F455ED2673835209318DD61BFBB0E ] vsmraid C:\Windows\system32\drivers\vsmraid.sys

00:01:44.0338 701932 vsmraid - ok

00:01:44.0415 701932 [ B75232DAD33BFD95BF6F0A3E6BFF51E1 ] VSS C:\Windows\system32\vssvc.exe

00:01:44.0569 701932 VSS - ok

00:01:44.0602 701932 [ F14A7DE2EA41883E250892E1E5230A9A ] W32Time C:\Windows\system32\w32time.dll

00:01:44.0643 701932 W32Time - ok

00:01:44.0647 701932 [ FEF8FE5923FEAD2CEE4DFABFCE3393A7 ] WacomPen C:\Windows\system32\drivers\wacompen.sys

00:01:44.0712 701932 WacomPen - ok

00:01:44.0755 701932 [ B8E7049622300D20BA6D8BE0C47C0CFD ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys

00:01:44.0772 701932 Wanarp - ok

00:01:44.0775 701932 [ B8E7049622300D20BA6D8BE0C47C0CFD ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys

00:01:44.0791 701932 Wanarpv6 - ok

00:01:44.0847 701932 [ 48EEE289DF9E4989128B2283F3EEACC6 ] wbengine C:\Windows\system32\wbengine.exe

00:01:44.0952 701932 wbengine - ok

00:01:44.0994 701932 [ B4E4C37D0AA6100090A53213EE2BF1C1 ] wcncsvc C:\Windows\System32\wcncsvc.dll

00:01:45.0053 701932 wcncsvc - ok

00:01:45.0096 701932 [ EA4B369560E986F19D93F45A881484AC ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll

00:01:45.0131 701932 WcsPlugInService - ok

00:01:45.0134 701932 [ 0C17A0816F65B89E362E682AD5E7266E ] Wd C:\Windows\system32\drivers\wd.sys

00:01:45.0142 701932 Wd - ok

00:01:45.0197 701932 [ A3D04EBF5227886029B4532F20D026F7 ] WDC_SAM C:\Windows\system32\DRIVERS\wdcsam64.sys

00:01:45.0243 701932 WDC_SAM - ok

00:01:45.0283 701932 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys

00:01:45.0325 701932 Wdf01000 - ok

00:01:45.0369 701932 [ C5EFDA73EBFCA8B02A094898DE0A9276 ] WdiServiceHost C:\Windows\system32\wdi.dll

00:01:45.0409 701932 WdiServiceHost - ok

00:01:45.0411 701932 [ C5EFDA73EBFCA8B02A094898DE0A9276 ] WdiSystemHost C:\Windows\system32\wdi.dll

00:01:45.0434 701932 WdiSystemHost - ok

00:01:45.0472 701932 [ 3E6D05381CF35F75EBB055544A8ED9AC ] WebClient C:\Windows\System32\webclnt.dll

00:01:45.0497 701932 WebClient - ok

00:01:45.0657 701932 [ BE0050EA38AC55F12774B625CB4D7563 ] WebrootSpySweeperService C:\Program Files (x86)\Webroot\Security\current\plugins\antimalware\AEI.exe

00:01:45.0844 701932 WebrootSpySweeperService - ok

00:01:45.0882 701932 [ 8D40BC587993F876658BF9FB0F7D3462 ] Wecsvc C:\Windows\system32\wecsvc.dll

00:01:45.0927 701932 Wecsvc - ok

00:01:45.0941 701932 [ 9C980351D7E96288EA0C23AE232BD065 ] wercplsupport C:\Windows\System32\wercplsupport.dll

00:01:45.0980 701932 wercplsupport - ok

00:01:46.0010 701932 [ 66B9ECEBC46683F47EDC06333C075FEF ] WerSvc C:\Windows\System32\WerSvc.dll

00:01:46.0028 701932 WerSvc - ok

00:01:46.0040 701932 WinDefend - ok

00:01:46.0042 701932 WinHttpAutoProxySvc - ok

00:01:46.0090 701932 [ D2E7296ED1BD26D8DB2799770C077A02 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll

00:01:46.0125 701932 Winmgmt - ok

00:01:46.0188 701932 [ 6CBB0C68F13B9C2EC1B16F5FA5E7C869 ] WinRM C:\Windows\system32\WsmSvc.dll

00:01:46.0299 701932 WinRM - ok

00:01:46.0358 701932 [ 7F2F9E48566B2087F2AAAD258CB2A8D4 ] winusb C:\Windows\system32\DRIVERS\WinUSB.SYS

00:01:46.0389 701932 winusb - ok

00:01:46.0420 701932 [ EC339C8115E91BAED835957E9A677F16 ] Wlansvc C:\Windows\System32\wlansvc.dll

00:01:46.0476 701932 Wlansvc - ok

00:01:46.0478 701932 wltrysvc - ok

00:01:46.0547 701932 [ E18AEBAAA5A773FE11AA2C70F65320F5 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys

00:01:46.0584 701932 WmiAcpi - ok

00:01:46.0620 701932 [ 21FA389E65A852698B6A1341F36EE02D ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe

00:01:46.0638 701932 wmiApSrv - ok

00:01:46.0673 701932 WMPNetworkSvc - ok

00:01:46.0683 701932 [ CBC156C913F099E6680D1DF9307DB7A8 ] WPCSvc C:\Windows\System32\wpcsvc.dll

00:01:46.0733 701932 WPCSvc - ok

00:01:46.0774 701932 [ 490A18B4E4D53DC10879DEAA8E8B70D9 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll

00:01:46.0816 701932 WPDBusEnum - ok

00:01:46.0841 701932 [ 5E2401B3FC1089C90E081291357371A9 ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys

00:01:46.0849 701932 WpdUsb - ok

00:01:47.0003 701932 [ 8E344C1B4FE7EDE0E9055405B9987862 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\WPF\WPFFontCache_v0400.exe

00:01:47.0060 701932 WPFFontCache_v0400 - ok

00:01:47.0112 701932 [ 281F01942C6E9051B8B3CC13BCDDB2FD ] WRkrn C:\Windows\system32\drivers\WRkrn.sys

00:01:47.0121 701932 WRkrn - ok

00:01:47.0209 701932 [ 6D5CA39D2B6E99F6389AC3471232E58C ] WRSVC C:\Program Files (x86)\Webroot\WRSA.exe

00:01:47.0471 701932 WRSVC - ok

00:01:47.0512 701932 [ 8A900348370E359B6BFF6A550E4649E1 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys

00:01:47.0551 701932 ws2ifsl - ok

00:01:47.0610 701932 [ 9EA3E6D0EF7A5C2B9181961052A4B01A ] wscsvc C:\Windows\System32\wscsvc.dll

00:01:47.0636 701932 wscsvc - ok

00:01:47.0638 701932 WSearch - ok

00:01:47.0747 701932 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll

00:01:47.0880 701932 wuauserv - ok

00:01:47.0928 701932 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys

00:01:47.0975 701932 WudfPf - ok

00:01:48.0015 701932 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys

00:01:48.0047 701932 WUDFRd - ok

00:01:48.0081 701932 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll

00:01:48.0185 701932 wudfsvc - ok

00:01:48.0255 701932 [ 1ED4FDE418F5278D3D681CA33EC26E9C ] XobniService C:\Program Files (x86)\Xobni\XobniService.exe

00:01:48.0261 701932 XobniService - ok

00:01:48.0293 701932 ================ Scan global ===============================

00:01:48.0386 701932 [ 060DC3A7A9A2626031EB23D90151428D ] C:\Windows\system32\basesrv.dll

00:01:48.0419 701932 [ D665D594B7E11133D29D726BDDC7A5B0 ] C:\Windows\system32\winsrv.dll

00:01:48.0432 701932 [ D665D594B7E11133D29D726BDDC7A5B0 ] C:\Windows\system32\winsrv.dll

00:01:48.0485 701932 [ 934E0B7D77FF78C18D9F8891221B6DE3 ] C:\Windows\system32\services.exe

00:01:48.0490 701932 [Global] - ok

00:01:48.0491 701932 ================ Scan MBR ==================================

00:01:48.0519 701932 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0

00:01:48.0893 701932 \Device\Harddisk0\DR0 - ok

00:01:48.0893 701932 ================ Scan VBR ==================================

00:01:48.0916 701932 [ 69E5CC25045DECDA4122E1002006CF4C ] \Device\Harddisk0\DR0\Partition1

00:01:48.0918 701932 \Device\Harddisk0\DR0\Partition1 - ok

00:01:48.0932 701932 [ 0D51499D7880B8927632BAED77A699C9 ] \Device\Harddisk0\DR0\Partition2

00:01:48.0934 701932 \Device\Harddisk0\DR0\Partition2 - ok

00:01:48.0934 701932 ============================================================

00:01:48.0934 701932 Scan finished

00:01:48.0934 701932 ============================================================

00:01:48.0939 701924 Detected object count: 7

00:01:48.0939 701924 Actual detected object count: 7

00:03:13.0642 701924 Apache2.2 ( UnsignedFile.Multi.Generic ) - skipped by user

00:03:13.0642 701924 Apache2.2 ( UnsignedFile.Multi.Generic ) - User select action: Skip

00:03:13.0643 701924 CCALib8 ( UnsignedFile.Multi.Generic ) - skipped by user

00:03:13.0643 701924 CCALib8 ( UnsignedFile.Multi.Generic ) - User select action: Skip

00:03:13.0644 701924 DockLoginService ( UnsignedFile.Multi.Generic ) - skipped by user

00:03:13.0644 701924 DockLoginService ( UnsignedFile.Multi.Generic ) - User select action: Skip

00:03:13.0644 701924 dsl-db ( UnsignedFile.Multi.Generic ) - skipped by user

00:03:13.0644 701924 dsl-db ( UnsignedFile.Multi.Generic ) - User select action: Skip

00:03:13.0645 701924 IDriverT ( UnsignedFile.Multi.Generic ) - skipped by user

00:03:13.0645 701924 IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Skip

00:03:13.0645 701924 QBCFMonitorService ( UnsignedFile.Multi.Generic ) - skipped by user

00:03:13.0645 701924 QBCFMonitorService ( UnsignedFile.Multi.Generic ) - User select action: Skip

00:03:13.0646 701924 QBFCService ( UnsignedFile.Multi.Generic ) - skipped by user

00:03:13.0646 701924 QBFCService ( UnsignedFile.Multi.Generic ) - User select action:

 

 

Here is the SECOND One:

\

aswMBR version 0.9.9.1771 Copyright© 2011 AVAST Software
Run date: 2013-07-28 22:55:09
-----------------------------
22:55:09.720    OS Version: Windows x64 6.0.6002 Service Pack 2
22:55:09.720    Number of processors: 8 586 0x1A04
22:55:09.720    ComputerName: KIM-PC  UserName: Kim
22:55:23.495    Initialize success
22:57:13.177    AVAST engine defs: 13072801
23:22:35.581    Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-2
23:22:35.581    Disk 0 Vendor: Intel___ 1.0. Size: 610478MB BusType: 8
23:22:35.722    Disk 0 MBR read successfully
23:22:35.722    Disk 0 MBR scan
23:22:35.722    Disk 0 Windows VISTA default MBR code
23:22:35.722    Disk 0 Partition 1 00     DE Dell Utility Dell 8.0       62 MB offset 63
23:22:35.722    Disk 0 Partition 2 00     07    HPFS/NTFS NTFS        15360 MB offset 129024
23:22:35.737    Disk 0 Partition 3 80 (A) 07    HPFS/NTFS NTFS       595054 MB offset 31586304
23:22:35.753    Disk 0 scanning C:\Windows\system32\drivers
23:22:46.252    Service scanning
23:23:14.410    Modules scanning
23:23:14.410    Disk 0 trace - called modules:
23:23:14.456    ntoskrnl.exe CLASSPNP.SYS disk.sys iastor.sys hal.dll
23:23:14.456    1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa800b1c3540]
23:23:14.456    3 CLASSPNP.SYS[fffffa6000d55c33] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-2[0xfffffa800aded050]
23:23:17.639    AVAST engine scan C:\Windows
23:23:21.726    AVAST engine scan C:\Windows\system32
23:27:49.235    AVAST engine scan C:\Windows\system32\drivers
23:28:07.877    AVAST engine scan C:\Users\Kim
00:00:03.133    Disk 0 MBR has been saved successfully to "C:\Users\Kim\Downloads\Virus Removal 2013\MBR.dat"
00:00:03.133    The log file has been saved successfully to "C:\Users\Kim\Downloads\Virus Removal 2013\aswMBR.txt"

aswMBR version 0.9.9.1771 Copyright© 2011 AVAST Software
Run date: 2013-08-04 00:05:31
-----------------------------
00:05:31.242    OS Version: Windows x64 6.0.6002 Service Pack 2
00:05:31.242    Number of processors: 8 586 0x1A04
00:05:31.243    ComputerName: KIM-PC  UserName: Kim
00:05:33.086    Initialize success
00:06:25.410    Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-2
00:06:25.411    Disk 0 Vendor: Intel___ 1.0. Size: 610478MB BusType: 8
00:06:25.547    Disk 0 MBR read successfully
00:06:25.549    Disk 0 MBR scan
00:06:25.550    Disk 0 Windows VISTA default MBR code
00:06:25.551    Disk 0 Partition 1 00     DE Dell Utility Dell 8.0       62 MB offset 63
00:06:25.562    Disk 0 Partition 2 00     07    HPFS/NTFS NTFS        15360 MB offset 129024
00:06:25.578    Disk 0 Partition 3 80 (A) 07    HPFS/NTFS NTFS       595054 MB offset 31586304
00:06:25.599    Disk 0 scanning C:\Windows\system32\drivers
00:06:32.136    Service scanning
00:06:54.808    Modules scanning
00:06:54.808    Disk 0 trace - called modules:
00:06:54.820    ntoskrnl.exe CLASSPNP.SYS disk.sys iastor.sys hal.dll
00:06:54.820    1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa800add3060]
00:06:54.821    3 CLASSPNP.SYS[fffffa6000d38c33] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-2[0xfffffa800add5050]
00:06:54.821    Scan finished successfully
00:07:46.977    Disk 0 MBR has been saved successfully to "C:\Users\Kim\Downloads\Virus Removal 2013\MBR.dat"
00:07:46.988    The log file has been saved successfully to "C:\Users\Kim\Downloads\Virus Removal 2013\aswMBR.txt"

 



#7 nasdaq

nasdaq

  • Malware Response Team
  • 39,888 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:01:29 AM

Posted 04 August 2013 - 07:47 AM


You are clear to run these tools.

Search and delete the AdWare, PUP (Potentially Unwanted Program) installed on your computer.

Please download AdwCleaner by Xplode onto your Desktop.
  • Close all open programs and internet browsers.
  • Double click on AdwCleaner.exe to run the tool.
  • Click on Delete tab follow the prompts.
  • A log file will automatically open after the scan has finished.
  • Please post the content of that log file with your next answer.
  • You can find the log file at C:\AdwCleaner[Rn].txt (n is a number).
===

thisisujrt.gif Please download
Junkware Removal Tool to your Desktop.
  • Please close your security software to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista or 7, right-mouse click it and select Run as administrator.
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete, depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your Desktop and will automatically open.
  • Please post the contents of JRT.txt into your reply.
===

Please download ComboFix from any of the links below, and save it to your desktop. For information regarding this download, please visit this web page: Turorial
Link 1
Link 2

IMPORTANT !!! Save ComboFix.exe to your Desktop

1. Close any open browsers.
2. Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.
3. Do not install any other programs until this if fixed.


How to : Disable Anti-virus and Firewall...
http://www.bleepingcomputer.com/forums/topic114351.html

Double click on ComboFix.exe and follow the prompts.
  • When finished, it will produce a report for you.
  • Please post the C:\ComboFix.txt
Note: Do not mouse click ComboFix's window while it's running. That may cause it to stall

Note: If you have difficulty properly disabling your protective programs, refer to this link --> http://www.bleepingcomputer.com/forums/topic114351.html

Note: If after running ComboFix you get this error message "Illegal operation attempted on a registry key that has been marked for deletion." when attempting to run a program all you need to do is restart the computer to reset the registry.
===

Third party programs if not up to date can be the cause of infiltration an infection.

Please restart the computer before running this security check.

Download Security Check by screen317 from here.
  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.
p.s.
If the SecurityCheck program fails to run for any reason, run it as an Administrator.
===

Please paste the logs in your next reply DO NOT ATTACH THEM.
Let me know what problem persists.

#8 nasdaq

nasdaq

  • Malware Response Team
  • 39,888 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:01:29 AM

Posted 11 August 2013 - 07:30 AM

Are you still with me?

#9 nasdaq

nasdaq

  • Malware Response Team
  • 39,888 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:01:29 AM

Posted 17 August 2013 - 07:54 AM

Due to the lack of feedback, this topic is now closed.

In the event you still have problems, please send me or any Moderator a Private Message and ask them to reopen this topic within the next 5 days.

Please include a link to your topic in the Private Message. Thank you.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users