Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Notepad.exe is causing my computer to run slow


  • Please log in to reply
10 replies to this topic

#1 daewezzy

daewezzy

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Local time:09:53 PM

Posted 30 July 2013 - 03:37 AM

I am running Windows 7 and just recently I noticed a dramatic slow down in my computer. I ran both MBAM and SuperAntiSpyware on both quick scan and full scan and it did not find anything harmful on my computer. I checked my task manager and noticed that I had 3 notepad.exe's running in the processes tab and one of them is causing my CPU usage to skyrocket to 95-100%. 

 

Any help would be appreciated. Thanks.



BC AdBot (Login to Remove)

 


#2 GodfatherKing

GodfatherKing

  • Members
  • 587 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:53 AM

Posted 30 July 2013 - 03:57 AM

:welcome:

 

:step1:   Running TDSSKiller to obtain log

 

Note: Don't cure or delete a threat, but choose skip for all instead.

  • Please download TDSSKiller from here and save it to your Desktop
  • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters

tds2.jpg

  • In the Additional options: Check Detect TDLFS file system
  • Click Start Scan and allow the scan process to run

tds4-1.jpg

  • Choose for all threats to Skip for all of them.
  • Click Continue
  • Please post the TDSSKiller.[Version]_[Date]_[Time]_log.txt found in your root directory (typically c:\)

===================================================

 

:step2:  ESET Online Scanner

==================

Note: If your AV is blocking Eset online scanner, please temporarily disable your AV.

 

I'd like us to scan your machine with ESET OnlineScan This process may may take several hours, that is normal.

  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and » UNCHECK "Remove found threats" <== Important
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Copy and paste the information in your next reply. (If no malware was found you will not be presented with a log).
  • Click the Back button.
  • Click the Finish button.

===================================================


If you have received help from me and I don't have respond to you for almost >= 3 days, send me a Private Message.  :hello:


#3 daewezzy

daewezzy
  • Topic Starter

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Local time:09:53 PM

Posted 30 July 2013 - 07:12 PM

10:35:19.0255 4752  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
10:35:19.0865 4752  ============================================================
10:35:19.0865 4752  Current date / time: 2013/07/30 10:35:19.0865
10:35:19.0865 4752  SystemInfo:
10:35:19.0865 4752  
10:35:19.0866 4752  OS Version: 6.1.7601 ServicePack: 1.0
10:35:19.0866 4752  Product type: Workstation
10:35:19.0866 4752  ComputerName: FAMILY-HP
10:35:19.0866 4752  UserName: Family
10:35:19.0866 4752  Windows directory: C:\Windows
10:35:19.0866 4752  System windows directory: C:\Windows
10:35:19.0866 4752  Running under WOW64
10:35:19.0866 4752  Processor architecture: Intel x64
10:35:19.0866 4752  Number of processors: 2
10:35:19.0866 4752  Page size: 0x1000
10:35:19.0866 4752  Boot type: Normal boot
10:35:19.0866 4752  ============================================================
10:35:21.0022 4752  Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
10:35:21.0033 4752  Drive \Device\Harddisk2\DR2 - Size: 0x4A85D55E00 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
10:35:21.0036 4752  ============================================================
10:35:21.0036 4752  \Device\Harddisk0\DR0:
10:35:21.0036 4752  MBR partitions:
10:35:21.0036 4752  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
10:35:21.0036 4752  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x72968000
10:35:21.0036 4752  \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x7299A800, BlocksNum 0x1D6B800
10:35:21.0036 4752  \Device\Harddisk2\DR2:
10:35:21.0037 4752  MBR partitions:
10:35:21.0037 4752  \Device\Harddisk2\DR2\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x2542D681
10:35:21.0037 4752  ============================================================
10:35:21.0069 4752  C: <-> \Device\Harddisk0\DR0\Partition2
10:35:21.0248 4752  D: <-> \Device\Harddisk0\DR0\Partition3
10:35:21.0605 4752  G: <-> \Device\Harddisk2\DR2\Partition1
10:35:21.0605 4752  ============================================================
10:35:21.0605 4752  Initialize success
10:35:21.0605 4752  ============================================================
10:35:45.0775 3972  ============================================================
10:35:45.0775 3972  Scan started
10:35:45.0775 3972  Mode: Manual; TDLFS; 
10:35:45.0775 3972  ============================================================
10:35:46.0467 3972  ================ Scan system memory ========================
10:35:46.0467 3972  System memory - ok
10:35:46.0468 3972  ================ Scan services =============================
10:35:46.0619 3972  [ 581D88B25C4D4121824FED2CA38E562F ] !SASCORE        C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
10:35:46.0626 3972  !SASCORE - ok
10:35:46.0881 3972  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
10:35:46.0886 3972  1394ohci - ok
10:35:46.0948 3972  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
10:35:46.0954 3972  ACPI - ok
10:35:47.0008 3972  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
10:35:47.0009 3972  AcpiPmi - ok
10:35:47.0172 3972  [ 9915504F602D277EE47FD843A677FD15 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
10:35:47.0178 3972  AdobeFlashPlayerUpdateSvc - ok
10:35:47.0265 3972  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
10:35:47.0270 3972  adp94xx - ok
10:35:47.0295 3972  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\drivers\adpahci.sys
10:35:47.0299 3972  adpahci - ok
10:35:47.0323 3972  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
10:35:47.0325 3972  adpu320 - ok
10:35:47.0347 3972  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
10:35:47.0349 3972  AeLookupSvc - ok
10:35:47.0418 3972  [ A6FB9DB8F1A86861D955FD6975977AE0 ] AESTFilters     C:\Program Files\IDT\WDM\AESTSr64.exe
10:35:47.0420 3972  AESTFilters - ok
10:35:47.0464 3972  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD             C:\Windows\system32\drivers\afd.sys
10:35:47.0469 3972  AFD - ok
10:35:47.0515 3972  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\drivers\agp440.sys
10:35:47.0568 3972  agp440 - ok
10:35:47.0598 3972  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
10:35:47.0599 3972  ALG - ok
10:35:47.0634 3972  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\drivers\aliide.sys
10:35:47.0636 3972  aliide - ok
10:35:47.0677 3972  [ 310F86335B0505DDC6D2DD48E66EF06B ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
10:35:47.0695 3972  AMD External Events Utility - ok
10:35:47.0771 3972  AMD FUEL Service - ok
10:35:47.0812 3972  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\drivers\amdide.sys
10:35:47.0813 3972  amdide - ok
10:35:47.0841 3972  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
10:35:47.0842 3972  AmdK8 - ok
10:35:48.0091 3972  [ 79CC9BE187E3144E1B58A54B842475E7 ] amdkmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
10:35:48.0292 3972  amdkmdag - ok
10:35:48.0384 3972  [ 07561D3B7FD99F6E186C49C2D0628E38 ] amdkmdap        C:\Windows\system32\DRIVERS\atikmpag.sys
10:35:48.0394 3972  amdkmdap - ok
10:35:48.0472 3972  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
10:35:48.0473 3972  AmdPPM - ok
10:35:48.0514 3972  [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
10:35:48.0521 3972  amdsata - ok
10:35:48.0550 3972  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
10:35:48.0553 3972  amdsbs - ok
10:35:48.0568 3972  [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
10:35:48.0569 3972  amdxata - ok
10:35:48.0578 3972  [ 2FBB00A7616106B95104574C6CD640C2 ] amd_sata        C:\Windows\system32\drivers\amd_sata.sys
10:35:48.0579 3972  amd_sata - ok
10:35:48.0594 3972  [ 87D0D7645CB0D53220649BD5FE15D93E ] amd_xata        C:\Windows\system32\drivers\amd_xata.sys
10:35:48.0595 3972  amd_xata - ok
10:35:48.0707 3972  [ 5A528A540B1AEE8B1C77ED65094E8CDF ] AODDriver4.2    C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
10:35:48.0714 3972  AODDriver4.2 - ok
10:35:48.0748 3972  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\Windows\system32\drivers\appid.sys
10:35:48.0749 3972  AppID - ok
10:35:48.0770 3972  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
10:35:48.0771 3972  AppIDSvc - ok
10:35:48.0814 3972  [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo         C:\Windows\System32\appinfo.dll
10:35:48.0815 3972  Appinfo - ok
10:35:49.0001 3972  [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
10:35:49.0003 3972  Apple Mobile Device - ok
10:35:49.0087 3972  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\drivers\arc.sys
10:35:49.0088 3972  arc - ok
10:35:49.0111 3972  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\drivers\arcsas.sys
10:35:49.0113 3972  arcsas - ok
10:35:49.0210 3972  [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
10:35:49.0211 3972  aspnet_state - ok
10:35:49.0274 3972  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
10:35:49.0275 3972  AsyncMac - ok
10:35:49.0289 3972  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\drivers\atapi.sys
10:35:49.0291 3972  atapi - ok
10:35:49.0352 3972  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
10:35:49.0359 3972  AudioEndpointBuilder - ok
10:35:49.0370 3972  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
10:35:49.0374 3972  AudioSrv - ok
10:35:49.0408 3972  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\Windows\System32\AxInstSV.dll
10:35:49.0410 3972  AxInstSV - ok
10:35:49.0456 3972  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
10:35:49.0461 3972  b06bdrv - ok
10:35:49.0517 3972  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
10:35:49.0523 3972  b57nd60a - ok
10:35:49.0553 3972  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
10:35:49.0556 3972  BDESVC - ok
10:35:49.0590 3972  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
10:35:49.0593 3972  Beep - ok
10:35:49.0645 3972  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE             C:\Windows\System32\bfe.dll
10:35:49.0652 3972  BFE - ok
10:35:49.0857 3972  [ 1D757A7E020C577C4259A755F21B7152 ] BHDrvx64        C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.0.0.128\Definitions\BASHDefs\20120121.002\BHDrvx64.sys
10:35:49.0869 3972  BHDrvx64 - ok
10:35:49.0973 3972  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\Windows\System32\qmgr.dll
10:35:49.0982 3972  BITS - ok
10:35:50.0064 3972  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\drivers\blbdrive.sys
10:35:50.0069 3972  blbdrive - ok
10:35:50.0138 3972  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
10:35:50.0143 3972  Bonjour Service - ok
10:35:50.0164 3972  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
10:35:50.0166 3972  bowser - ok
10:35:50.0177 3972  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
10:35:50.0178 3972  BrFiltLo - ok
10:35:50.0198 3972  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
10:35:50.0199 3972  BrFiltUp - ok
10:35:50.0235 3972  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\Windows\System32\browser.dll
10:35:50.0237 3972  Browser - ok
10:35:50.0254 3972  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
10:35:50.0258 3972  Brserid - ok
10:35:50.0271 3972  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
10:35:50.0273 3972  BrSerWdm - ok
10:35:50.0289 3972  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
10:35:50.0290 3972  BrUsbMdm - ok
10:35:50.0319 3972  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
10:35:50.0321 3972  BrUsbSer - ok
10:35:50.0340 3972  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
10:35:50.0342 3972  BTHMODEM - ok
10:35:50.0388 3972  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
10:35:50.0389 3972  bthserv - ok
10:35:50.0470 3972  [ A3AD13CA2747953DDD4C9AE4FB925BEC ] CalendarSynchService C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Calendar\Service\GCalService.exe
10:35:50.0471 3972  CalendarSynchService - ok
10:35:50.0603 3972  [ 2C6FFCCA37B002AAB3C7C31A6D780A76 ] ccSet_NIS       C:\Windows\system32\drivers\NISx64\1309010.00E\ccSetx64.sys
10:35:50.0621 3972  ccSet_NIS - ok
10:35:50.0634 3972  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
10:35:50.0636 3972  cdfs - ok
10:35:50.0677 3972  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
10:35:50.0679 3972  cdrom - ok
10:35:50.0707 3972  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\Windows\System32\certprop.dll
10:35:50.0713 3972  CertPropSvc - ok
10:35:50.0787 3972  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\drivers\circlass.sys
10:35:50.0788 3972  circlass - ok
10:35:50.0848 3972  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
10:35:50.0867 3972  CLFS - ok
10:35:50.0947 3972  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
10:35:50.0949 3972  clr_optimization_v2.0.50727_32 - ok
10:35:50.0977 3972  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
10:35:50.0979 3972  clr_optimization_v2.0.50727_64 - ok
10:35:51.0240 3972  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
10:35:51.0243 3972  clr_optimization_v4.0.30319_32 - ok
10:35:51.0257 3972  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
10:35:51.0261 3972  clr_optimization_v4.0.30319_64 - ok
10:35:51.0345 3972  [ 2B9A15DFDC14B4ECB1E8FC13AE43E60F ] CltMngSvc       C:\Program Files (x86)\SearchProtect\bin\CltMngSvc.exe
10:35:51.0349 3972  CltMngSvc - ok
10:35:51.0422 3972  [ D68D9F4D53010B7E84D4E80A2E485554 ] clwvd           C:\Windows\system32\DRIVERS\clwvd.sys
10:35:51.0423 3972  clwvd - ok
10:35:51.0482 3972  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\drivers\CmBatt.sys
10:35:51.0483 3972  CmBatt - ok
10:35:51.0536 3972  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\drivers\cmdide.sys
10:35:51.0541 3972  cmdide - ok
10:35:51.0609 3972  [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG             C:\Windows\system32\Drivers\cng.sys
10:35:51.0622 3972  CNG - ok
10:35:51.0639 3972  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
10:35:51.0640 3972  Compbatt - ok
10:35:51.0670 3972  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
10:35:51.0670 3972  CompositeBus - ok
10:35:51.0686 3972  COMSysApp - ok
10:35:51.0705 3972  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
10:35:51.0706 3972  crcdisk - ok
10:35:51.0758 3972  [ D8129C49798CBBFB2E4351D4B7B8EF9C ] CryptSvc        C:\Windows\system32\cryptsvc.dll
10:35:51.0764 3972  CryptSvc - ok
10:35:51.0905 3972  [ 72794D112CBAFF3BC0C29BF7350D4741 ] cvhsvc          C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
10:35:51.0914 3972  cvhsvc - ok
10:35:51.0971 3972  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\Windows\system32\rpcss.dll
10:35:51.0984 3972  DcomLaunch - ok
10:35:52.0008 3972  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
10:35:52.0012 3972  defragsvc - ok
10:35:52.0030 3972  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
10:35:52.0032 3972  DfsC - ok
10:35:52.0069 3972  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\Windows\system32\dhcpcore.dll
10:35:52.0073 3972  Dhcp - ok
10:35:52.0083 3972  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
10:35:52.0084 3972  discache - ok
10:35:52.0119 3972  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\drivers\disk.sys
10:35:52.0120 3972  Disk - ok
10:35:52.0164 3972  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
10:35:52.0166 3972  Dnscache - ok
10:35:52.0208 3972  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\Windows\System32\dot3svc.dll
10:35:52.0211 3972  dot3svc - ok
10:35:52.0226 3972  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\Windows\system32\dps.dll
10:35:52.0229 3972  DPS - ok
10:35:52.0262 3972  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
10:35:52.0263 3972  drmkaud - ok
10:35:52.0300 3972  [ A2613B4CBB8CF4BE09B03DC1ABAD510D ] DTSRVC          C:\Program Files (x86)\Common Files\Portrait Displays\Shared\dtsrvc.exe
10:35:52.0302 3972  DTSRVC - ok
10:35:52.0366 3972  [ AF2E16242AA723F68F461B6EAE2EAD3D ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
10:35:52.0375 3972  DXGKrnl - ok
10:35:52.0436 3972  EagleX64 - ok
10:35:52.0476 3972  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
10:35:52.0478 3972  EapHost - ok
10:35:52.0608 3972  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\drivers\evbda.sys
10:35:52.0641 3972  ebdrv - ok
10:35:52.0706 3972  [ 5CCF1BE80930AEB1CDEBF561666325E8 ] eeCtrl          C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
10:35:52.0711 3972  eeCtrl - ok
10:35:52.0771 3972  [ C118A82CD78818C29AB228366EBF81C3 ] EFS             C:\Windows\System32\lsass.exe
10:35:52.0789 3972  EFS - ok
10:35:52.0826 3972  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
10:35:52.0834 3972  ehRecvr - ok
10:35:52.0844 3972  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
10:35:52.0846 3972  ehSched - ok
10:35:52.0861 3972  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
10:35:52.0867 3972  elxstor - ok
10:35:52.0935 3972  [ 7A898E4A744621711BE7E7B796C69876 ] EraserUtilRebootDrv C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
10:35:52.0937 3972  EraserUtilRebootDrv - ok
10:35:52.0952 3972  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\drivers\errdev.sys
10:35:52.0953 3972  ErrDev - ok
10:35:53.0003 3972  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
10:35:53.0007 3972  EventSystem - ok
10:35:53.0031 3972  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
10:35:53.0034 3972  exfat - ok
10:35:53.0049 3972  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
10:35:53.0051 3972  fastfat - ok
10:35:53.0105 3972  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\Windows\system32\fxssvc.exe
10:35:53.0114 3972  Fax - ok
10:35:53.0130 3972  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\drivers\fdc.sys
10:35:53.0132 3972  fdc - ok
10:35:53.0167 3972  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
10:35:53.0168 3972  fdPHost - ok
10:35:53.0182 3972  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
10:35:53.0183 3972  FDResPub - ok
10:35:53.0227 3972  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
10:35:53.0229 3972  FileInfo - ok
10:35:53.0237 3972  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
10:35:53.0238 3972  Filetrace - ok
10:35:53.0261 3972  [ 35DAAD359197828D3CF3965764F5D82C ] FintekCIR       C:\Windows\system32\drivers\FintekCIR.sys
10:35:53.0262 3972  FintekCIR - ok
10:35:53.0330 3972  [ B8602C90D3C427D8A86CE60437615CF5 ] FlipShare Service C:\Program Files (x86)\Flip Video\FlipShare\FlipShareService.exe
10:35:53.0335 3972  FlipShare Service - ok
10:35:53.0413 3972  [ AC5FB7094F31534594CAE48306972CBD ] FlipShareServer C:\Program Files (x86)\Flip Video\FlipShareServer\FlipShareServer.exe
10:35:53.0424 3972  FlipShareServer - ok
10:35:53.0439 3972  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
10:35:53.0441 3972  flpydisk - ok
10:35:53.0479 3972  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
10:35:53.0482 3972  FltMgr - ok
10:35:53.0648 3972  [ C4C183E6551084039EC862DA1C945E3D ] FontCache       C:\Windows\system32\FntCache.dll
10:35:53.0661 3972  FontCache - ok
10:35:53.0720 3972  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
10:35:53.0721 3972  FontCache3.0.0.0 - ok
10:35:53.0735 3972  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
10:35:53.0736 3972  FsDepends - ok
10:35:53.0775 3972  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
10:35:53.0780 3972  Fs_Rec - ok
10:35:53.0826 3972  [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
10:35:53.0829 3972  fvevol - ok
10:35:53.0851 3972  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
10:35:53.0852 3972  gagp30kx - ok
10:35:53.0899 3972  [ C403C5DB49A0F9AAF4F2128EDC0106D8 ] GamesAppService C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
10:35:53.0902 3972  GamesAppService - ok
10:35:53.0939 3972  [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
10:35:53.0940 3972  GEARAspiWDM - ok
10:35:53.0970 3972  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\Windows\System32\gpsvc.dll
10:35:53.0977 3972  gpsvc - ok
10:35:54.0036 3972  [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
10:35:54.0038 3972  gupdate - ok
10:35:54.0058 3972  [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
10:35:54.0059 3972  gupdatem - ok
10:35:54.0088 3972  [ 1E6438D4EA6E1174A3B3B1EDC4DE660B ] hamachi         C:\Windows\system32\DRIVERS\hamachi.sys
10:35:54.0089 3972  hamachi - ok
10:35:54.0225 3972  [ B1E3F445943F06E36DC079AF28D0F86B ] Hamachi2Svc     C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
10:35:54.0269 3972  Hamachi2Svc - ok
10:35:54.0303 3972  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
10:35:54.0307 3972  hcw85cir - ok
10:35:54.0344 3972  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
10:35:54.0349 3972  HdAudAddService - ok
10:35:54.0379 3972  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
10:35:54.0381 3972  HDAudBus - ok
10:35:54.0395 3972  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
10:35:54.0396 3972  HidBatt - ok
10:35:54.0411 3972  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
10:35:54.0422 3972  HidBth - ok
10:35:54.0436 3972  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\drivers\hidir.sys
10:35:54.0438 3972  HidIr - ok
10:35:54.0455 3972  [ 7A327F2FC6CDBC499A39D615CDC190F2 ] hidkmdf         C:\Windows\system32\drivers\hidkmdf.sys
10:35:54.0456 3972  hidkmdf - ok
10:35:54.0480 3972  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\system32\hidserv.dll
10:35:54.0481 3972  hidserv - ok
10:35:54.0513 3972  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
10:35:54.0517 3972  HidUsb - ok
10:35:54.0622 3972  [ D498AD244C51B2DD0639C8C75F68E2F4 ] HiPatchService  C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
10:35:54.0635 3972  HiPatchService - ok
10:35:54.0669 3972  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\Windows\system32\kmsvc.dll
10:35:54.0687 3972  hkmsvc - ok
10:35:54.0723 3972  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
10:35:54.0726 3972  HomeGroupListener - ok
10:35:54.0804 3972  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
10:35:54.0807 3972  HomeGroupProvider - ok
10:35:54.0882 3972  [ BB1FC298BE53AAB1E110F6E786BD8AC5 ] HP Support Assistant Service C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
10:35:54.0886 3972  HP Support Assistant Service - ok
10:35:55.0049 3972  [ 6A181452D4E240B8ECC7614B9A19BDE9 ] HPClientSvc     C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
10:35:55.0066 3972  HPClientSvc - ok
10:35:55.0231 3972  [ 9B7EDD3FE7C211C36E921D34D18A3A0A ] hpqwmiex        C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
10:35:55.0248 3972  hpqwmiex - ok
10:35:55.0263 3972  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
10:35:55.0265 3972  HpSAMD - ok
10:35:55.0299 3972  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
10:35:55.0307 3972  HTTP - ok
10:35:55.0343 3972  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
10:35:55.0346 3972  hwpolicy - ok
10:35:55.0405 3972  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
10:35:55.0406 3972  i8042prt - ok
10:35:55.0441 3972  [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
10:35:55.0446 3972  iaStorV - ok
10:35:55.0495 3972  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
10:35:55.0505 3972  idsvc - ok
10:35:55.0635 3972  [ 18C40C3F368323B203ACE403CB430DB1 ] IDSVia64        C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.0.0.128\Definitions\IPSDefs\20120128.002\IDSvia64.sys
10:35:55.0643 3972  IDSVia64 - ok
10:35:55.0901 3972  [ A87261EF1546325B559374F5689CF5BC ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
10:35:55.0993 3972  igfx - ok
10:35:56.0033 3972  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
10:35:56.0041 3972  iirsp - ok
10:35:56.0081 3972  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\Windows\System32\ikeext.dll
10:35:56.0091 3972  IKEEXT - ok
10:35:56.0135 3972  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\drivers\intelide.sys
10:35:56.0143 3972  intelide - ok
10:35:56.0181 3972  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\drivers\intelppm.sys
10:35:56.0188 3972  intelppm - ok
10:35:56.0203 3972  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
10:35:56.0206 3972  IPBusEnum - ok
10:35:56.0246 3972  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
10:35:56.0248 3972  IpFilterDriver - ok
10:35:56.0328 3972  [ 08C2957BB30058E663720C5606885653 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
10:35:56.0336 3972  iphlpsvc - ok
10:35:56.0358 3972  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
10:35:56.0360 3972  IPMIDRV - ok
10:35:56.0373 3972  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
10:35:56.0381 3972  IPNAT - ok
10:35:56.0433 3972  [ 0F261EC4F514926177C70C1832374231 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
10:35:56.0439 3972  iPod Service - ok
10:35:56.0478 3972  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
10:35:56.0479 3972  IRENUM - ok
10:35:56.0497 3972  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
10:35:56.0498 3972  isapnp - ok
10:35:56.0535 3972  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
10:35:56.0539 3972  iScsiPrt - ok
10:35:56.0570 3972  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
10:35:56.0571 3972  kbdclass - ok
10:35:56.0581 3972  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
10:35:56.0582 3972  kbdhid - ok
10:35:56.0588 3972  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\Windows\system32\lsass.exe
10:35:56.0590 3972  KeyIso - ok
10:35:56.0627 3972  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
10:35:56.0639 3972  KSecDD - ok
10:35:56.0655 3972  [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
10:35:56.0658 3972  KSecPkg - ok
10:35:56.0668 3972  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
10:35:56.0669 3972  ksthunk - ok
10:35:56.0693 3972  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
10:35:56.0699 3972  KtmRm - ok
10:35:56.0777 3972  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\Windows\system32\srvsvc.dll
10:35:56.0798 3972  LanmanServer - ok
10:35:56.0831 3972  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
10:35:56.0833 3972  LanmanWorkstation - ok
10:35:56.0872 3972  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
10:35:56.0873 3972  lltdio - ok
10:35:56.0892 3972  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
10:35:56.0897 3972  lltdsvc - ok
10:35:56.0917 3972  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
10:35:56.0918 3972  lmhosts - ok
10:35:56.0958 3972  LMIInfo - ok
10:35:56.0996 3972  [ 413ECDCFAD9A82804D3674C8D7EEC24E ] lmimirr         C:\Windows\system32\DRIVERS\lmimirr.sys
10:35:56.0997 3972  lmimirr - ok
10:35:57.0002 3972  LMIRfsClientNP - ok
10:35:57.0038 3972  [ C57D3FAA50E6F395759FFB7C709BD944 ] LMIRfsDriver    C:\Windows\system32\drivers\LMIRfsDriver.sys
10:35:57.0040 3972  LMIRfsDriver - ok
10:35:57.0101 3972  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
10:35:57.0113 3972  LSI_FC - ok
10:35:57.0134 3972  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
10:35:57.0140 3972  LSI_SAS - ok
10:35:57.0153 3972  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
10:35:57.0154 3972  LSI_SAS2 - ok
10:35:57.0171 3972  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
10:35:57.0173 3972  LSI_SCSI - ok
10:35:57.0192 3972  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
10:35:57.0193 3972  luafv - ok
10:35:57.0243 3972  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
10:35:57.0245 3972  Mcx2Svc - ok
10:35:57.0262 3972  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\drivers\megasas.sys
10:35:57.0263 3972  megasas - ok
10:35:57.0290 3972  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
10:35:57.0294 3972  MegaSR - ok
10:35:57.0327 3972  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
10:35:57.0328 3972  MMCSS - ok
10:35:57.0354 3972  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
10:35:57.0355 3972  Modem - ok
10:35:57.0379 3972  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
10:35:57.0380 3972  monitor - ok
10:35:57.0421 3972  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
10:35:57.0422 3972  mouclass - ok
10:35:57.0436 3972  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
10:35:57.0437 3972  mouhid - ok
10:35:57.0456 3972  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
10:35:57.0457 3972  mountmgr - ok
10:35:57.0507 3972  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\Windows\system32\drivers\mpio.sys
10:35:57.0519 3972  mpio - ok
10:35:57.0526 3972  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
10:35:57.0528 3972  mpsdrv - ok
10:35:57.0566 3972  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc          C:\Windows\system32\mpssvc.dll
10:35:57.0575 3972  MpsSvc - ok
10:35:57.0594 3972  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
10:35:57.0596 3972  MRxDAV - ok
10:35:57.0631 3972  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
10:35:57.0636 3972  mrxsmb - ok
10:35:57.0691 3972  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
10:35:57.0701 3972  mrxsmb10 - ok
10:35:57.0724 3972  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
10:35:57.0734 3972  mrxsmb20 - ok
10:35:57.0772 3972  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\Windows\system32\drivers\msahci.sys
10:35:57.0775 3972  msahci - ok
10:35:57.0805 3972  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
10:35:57.0810 3972  msdsm - ok
10:35:57.0891 3972  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
10:35:57.0894 3972  MSDTC - ok
10:35:57.0909 3972  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
10:35:57.0910 3972  Msfs - ok
10:35:57.0965 3972  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
10:35:57.0966 3972  mshidkmdf - ok
10:35:58.0001 3972  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
10:35:58.0018 3972  msisadrv - ok
10:35:58.0043 3972  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
10:35:58.0046 3972  MSiSCSI - ok
10:35:58.0054 3972  msiserver - ok
10:35:58.0086 3972  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
10:35:58.0087 3972  MSKSSRV - ok
10:35:58.0130 3972  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
10:35:58.0131 3972  MSPCLOCK - ok
10:35:58.0145 3972  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
10:35:58.0146 3972  MSPQM - ok
10:35:58.0165 3972  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
10:35:58.0169 3972  MsRPC - ok
10:35:58.0197 3972  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
10:35:58.0198 3972  mssmbios - ok
10:35:58.0208 3972  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
10:35:58.0209 3972  MSTEE - ok
10:35:58.0246 3972  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
10:35:58.0247 3972  MTConfig - ok
10:35:58.0261 3972  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
10:35:58.0262 3972  Mup - ok
10:35:58.0297 3972  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\Windows\system32\qagentRT.dll
10:35:58.0303 3972  napagent - ok
10:35:58.0345 3972  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
10:35:58.0348 3972  NativeWifiP - ok
10:35:58.0394 3972  [ 2DBE90210DE76BE6E1653BB20EC70EC2 ] NAVENG          C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.0.0.128\Definitions\VirusDefs\20120129.008\ENG64.SYS
10:35:58.0400 3972  NAVENG - ok
10:35:58.0507 3972  [ 346DA70E203B8E2C850277713DE8F71B ] NAVEX15         C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.0.0.128\Definitions\VirusDefs\20120129.008\EX64.SYS
10:35:58.0553 3972  NAVEX15 - ok
10:35:58.0607 3972  [ 760E38053BF56E501D562B70AD796B88 ] NDIS            C:\Windows\system32\drivers\ndis.sys
10:35:58.0617 3972  NDIS - ok
10:35:58.0642 3972  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
10:35:58.0644 3972  NdisCap - ok
10:35:58.0682 3972  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
10:35:58.0683 3972  NdisTapi - ok
10:35:58.0693 3972  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
10:35:58.0695 3972  Ndisuio - ok
10:35:58.0710 3972  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
10:35:58.0712 3972  NdisWan - ok
10:35:58.0720 3972  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
10:35:58.0721 3972  NDProxy - ok
10:35:58.0732 3972  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
10:35:58.0733 3972  NetBIOS - ok
10:35:58.0751 3972  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
10:35:58.0754 3972  NetBT - ok
10:35:58.0763 3972  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\Windows\system32\lsass.exe
10:35:58.0764 3972  Netlogon - ok
10:35:58.0820 3972  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
10:35:58.0825 3972  Netman - ok
10:35:58.0869 3972  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:35:58.0871 3972  NetMsmqActivator - ok
10:35:58.0876 3972  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:35:58.0878 3972  NetPipeActivator - ok
10:35:58.0897 3972  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
10:35:58.0903 3972  netprofm - ok
10:35:58.0979 3972  [ 8B5D2D7CB0EF5B1967860B8AB742A46C ] netr28x         C:\Windows\system32\DRIVERS\netr28x.sys
10:35:59.0004 3972  netr28x - ok
10:35:59.0012 3972  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:35:59.0014 3972  NetTcpActivator - ok
10:35:59.0020 3972  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:35:59.0021 3972  NetTcpPortSharing - ok
10:35:59.0042 3972  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
10:35:59.0049 3972  nfrd960 - ok
10:35:59.0176 3972  [ F2840DBFE9322F35557219AE82CC4597 ] NIS             C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\ccSvcHst.exe
10:35:59.0192 3972  NIS - ok
10:35:59.0232 3972  [ 8AD77806D336673F270DB31645267293 ] NlaSvc          C:\Windows\System32\nlasvc.dll
10:35:59.0239 3972  NlaSvc - ok
10:35:59.0400 3972  [ 5839A8027D6D324A7CD494051A96628C ] NOBU            C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
10:35:59.0444 3972  NOBU - ok
10:35:59.0462 3972  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
10:35:59.0463 3972  Npfs - ok
10:35:59.0487 3972  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
10:35:59.0489 3972  nsi - ok
10:35:59.0501 3972  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
10:35:59.0503 3972  nsiproxy - ok
10:35:59.0617 3972  [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
10:35:59.0633 3972  Ntfs - ok
10:35:59.0666 3972  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
10:35:59.0670 3972  Null - ok
10:35:59.0720 3972  [ 0A92CB65770442ED0DC44834632F66AD ] nvraid          C:\Windows\system32\drivers\nvraid.sys
10:35:59.0723 3972  nvraid - ok
10:35:59.0768 3972  [ DAB0E87525C10052BF65F06152F37E4A ] nvstor          C:\Windows\system32\drivers\nvstor.sys
10:35:59.0785 3972  nvstor - ok
10:35:59.0852 3972  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
10:35:59.0854 3972  nv_agp - ok
10:35:59.0897 3972  [ 1E65CFD59DDFA8166D2174DC3E6D4AAE ] NWVoltron       C:\Windows\system32\drivers\NWVoltron.sys
10:35:59.0897 3972  NWVoltron - ok
10:35:59.0926 3972  [ 29B7F4F503EF7652024C28A3DD0E3586 ] NWWakeFilterV   C:\Windows\system32\drivers\NWWakeFilterV.sys
10:35:59.0927 3972  NWWakeFilterV - ok
10:35:59.0944 3972  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
10:35:59.0952 3972  ohci1394 - ok
10:35:59.0994 3972  [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
10:36:00.0011 3972  ose - ok
10:36:00.0205 3972  [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
10:36:00.0257 3972  osppsvc - ok
10:36:00.0303 3972  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
10:36:00.0307 3972  p2pimsvc - ok
10:36:00.0323 3972  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
10:36:00.0329 3972  p2psvc - ok
10:36:00.0350 3972  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\drivers\parport.sys
10:36:00.0352 3972  Parport - ok
10:36:00.0387 3972  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\Windows\system32\drivers\partmgr.sys
10:36:00.0388 3972  partmgr - ok
10:36:00.0403 3972  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
10:36:00.0407 3972  PcaSvc - ok
10:36:00.0428 3972  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\Windows\system32\drivers\pci.sys
10:36:00.0430 3972  pci - ok
10:36:00.0444 3972  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\drivers\pciide.sys
10:36:00.0445 3972  pciide - ok
10:36:00.0463 3972  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
10:36:00.0466 3972  pcmcia - ok
10:36:00.0481 3972  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
10:36:00.0483 3972  pcw - ok
10:36:00.0502 3972  pdfcDispatcher - ok
10:36:00.0524 3972  [ C7801DEF1C78747996A52C1F4C473E6F ] PdiService      C:\Program Files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe
10:36:00.0527 3972  PdiService - ok
10:36:00.0561 3972  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
10:36:00.0568 3972  PEAUTH - ok
10:36:01.0101 3972  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
10:36:01.0104 3972  PerfHost - ok
10:36:01.0186 3972  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\Windows\system32\pla.dll
10:36:01.0210 3972  pla - ok
10:36:01.0261 3972  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
10:36:01.0266 3972  PlugPlay - ok
10:36:01.0281 3972  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
10:36:01.0283 3972  PNRPAutoReg - ok
10:36:01.0311 3972  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
10:36:01.0314 3972  PNRPsvc - ok
10:36:01.0369 3972  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
10:36:01.0384 3972  PolicyAgent - ok
10:36:01.0429 3972  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
10:36:01.0432 3972  Power - ok
10:36:01.0517 3972  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
10:36:01.0520 3972  PptpMiniport - ok
10:36:01.0549 3972  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\drivers\processr.sys
10:36:01.0551 3972  Processor - ok
10:36:01.0621 3972  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc         C:\Windows\system32\profsvc.dll
10:36:01.0639 3972  ProfSvc - ok
10:36:01.0654 3972  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
10:36:01.0655 3972  ProtectedStorage - ok
10:36:01.0697 3972  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
10:36:01.0698 3972  Psched - ok
10:36:01.0806 3972  [ 4712CC14E720ECCCC0AA16949D18AAF1 ] PxHlpa64        C:\Windows\system32\Drivers\PxHlpa64.sys
10:36:01.0812 3972  PxHlpa64 - ok
10:36:01.0909 3972  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
10:36:01.0927 3972  ql2300 - ok
10:36:01.0944 3972  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
10:36:01.0946 3972  ql40xx - ok
10:36:01.0969 3972  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
10:36:01.0972 3972  QWAVE - ok
10:36:01.0982 3972  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
10:36:01.0983 3972  QWAVEdrv - ok
10:36:01.0996 3972  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
10:36:01.0997 3972  RasAcd - ok
10:36:02.0007 3972  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
10:36:02.0009 3972  RasAgileVpn - ok
10:36:02.0019 3972  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
10:36:02.0022 3972  RasAuto - ok
10:36:02.0034 3972  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
10:36:02.0036 3972  Rasl2tp - ok
10:36:02.0050 3972  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\Windows\System32\rasmans.dll
10:36:02.0055 3972  RasMan - ok
10:36:02.0082 3972  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
10:36:02.0084 3972  RasPppoe - ok
10:36:02.0099 3972  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
10:36:02.0101 3972  RasSstp - ok
10:36:02.0121 3972  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
10:36:02.0124 3972  rdbss - ok
10:36:02.0138 3972  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\drivers\rdpbus.sys
10:36:02.0139 3972  rdpbus - ok
10:36:02.0150 3972  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
10:36:02.0151 3972  RDPCDD - ok
10:36:02.0188 3972  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
10:36:02.0196 3972  RDPENCDD - ok
10:36:02.0226 3972  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
10:36:02.0227 3972  RDPREFMP - ok
10:36:02.0264 3972  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
10:36:02.0267 3972  RDPWD - ok
10:36:02.0311 3972  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
10:36:02.0316 3972  rdyboost - ok
10:36:02.0388 3972  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
10:36:02.0390 3972  RemoteAccess - ok
10:36:02.0404 3972  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
10:36:02.0407 3972  RemoteRegistry - ok
10:36:02.0437 3972  [ 085D18C71AB2611A3D61528132B6501E ] RoxioNow Service C:\Program Files (x86)\Roxio\RoxioNow Player\RNowSvc.exe
10:36:02.0442 3972  RoxioNow Service - ok
10:36:02.0483 3972  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
10:36:02.0486 3972  RpcEptMapper - ok
10:36:02.0494 3972  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
10:36:02.0496 3972  RpcLocator - ok
10:36:02.0516 3972  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\Windows\system32\rpcss.dll
10:36:02.0521 3972  RpcSs - ok
10:36:02.0550 3972  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
10:36:02.0566 3972  rspndr - ok
10:36:02.0606 3972  [ F4C374B1C46DE294B573BB43723AC3F6 ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
10:36:02.0611 3972  RTL8167 - ok
10:36:02.0621 3972  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs           C:\Windows\system32\lsass.exe
10:36:02.0622 3972  SamSs - ok
10:36:02.0686 3972  [ 3289766038DB2CB14D07DC84392138D5 ] SASDIFSV        C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
10:36:02.0687 3972  SASDIFSV - ok
10:36:02.0770 3972  [ 58A38E75F3316A83C23DF6173D41F2B5 ] SASKUTIL        C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
10:36:02.0771 3972  SASKUTIL - ok
10:36:02.0798 3972  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
10:36:02.0800 3972  sbp2port - ok
10:36:02.0814 3972  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
10:36:02.0817 3972  SCardSvr - ok
10:36:02.0828 3972  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
10:36:02.0829 3972  scfilter - ok
10:36:02.0854 3972  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\Windows\system32\schedsvc.dll
10:36:02.0865 3972  Schedule - ok
10:36:02.0887 3972  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\Windows\System32\certprop.dll
10:36:02.0888 3972  SCPolicySvc - ok
10:36:02.0897 3972  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
10:36:02.0900 3972  SDRSVC - ok
10:36:02.0915 3972  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
10:36:02.0916 3972  secdrv - ok
10:36:02.0941 3972  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\Windows\system32\seclogon.dll
10:36:02.0942 3972  seclogon - ok
10:36:02.0954 3972  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\System32\sens.dll
10:36:02.0956 3972  SENS - ok
10:36:02.0964 3972  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
10:36:02.0966 3972  SensrSvc - ok
10:36:02.0993 3972  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\drivers\serenum.sys
10:36:02.0995 3972  Serenum - ok
10:36:03.0026 3972  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\drivers\serial.sys
10:36:03.0028 3972  Serial - ok
10:36:03.0039 3972  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\drivers\sermouse.sys
10:36:03.0040 3972  sermouse - ok
10:36:03.0069 3972  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\Windows\system32\sessenv.dll
10:36:03.0072 3972  SessionEnv - ok
10:36:03.0088 3972  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
10:36:03.0089 3972  sffdisk - ok
10:36:03.0101 3972  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
10:36:03.0103 3972  sffp_mmc - ok
10:36:03.0115 3972  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
10:36:03.0116 3972  sffp_sd - ok
10:36:03.0136 3972  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
10:36:03.0137 3972  sfloppy - ok
10:36:03.0193 3972  [ C6CC9297BD53E5229653303E556AA539 ] Sftfs           C:\Windows\system32\DRIVERS\Sftfslh.sys
10:36:03.0211 3972  Sftfs - ok
10:36:03.0266 3972  [ 13693B6354DD6E72DC5131DA7D764B90 ] sftlist         C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
10:36:03.0271 3972  sftlist - ok
10:36:03.0314 3972  [ 390AA7BC52CEE43F6790CDEA1E776703 ] Sftplay         C:\Windows\system32\DRIVERS\Sftplaylh.sys
10:36:03.0328 3972  Sftplay - ok
10:36:03.0366 3972  [ 617E29A0B0A2807466560D4C4E338D3E ] Sftredir        C:\Windows\system32\DRIVERS\Sftredirlh.sys
10:36:03.0368 3972  Sftredir - ok
10:36:03.0390 3972  [ 8F571F016FA1976F445147E9E6C8AE9B ] Sftvol          C:\Windows\system32\DRIVERS\Sftvollh.sys
10:36:03.0391 3972  Sftvol - ok
10:36:03.0407 3972  [ C3CDDD18F43D44AB713CF8C4916F7696 ] sftvsa          C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
10:36:03.0410 3972  sftvsa - ok
10:36:03.0445 3972  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll
10:36:03.0449 3972  SharedAccess - ok
10:36:03.0469 3972  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
10:36:03.0473 3972  ShellHWDetection - ok
10:36:03.0496 3972  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
10:36:03.0497 3972  SiSRaid2 - ok
10:36:03.0530 3972  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
10:36:03.0532 3972  SiSRaid4 - ok
10:36:03.0768 3972  [ AE40D1BC6FB02A5625516AD74CA9A309 ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
10:36:03.0799 3972  Skype C2C Service - ok
10:36:03.0937 3972  [ F2B755D3835089590E8113F48AA931F7 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
10:36:03.0939 3972  SkypeUpdate - ok
10:36:03.0966 3972  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
10:36:03.0968 3972  Smb - ok
10:36:04.0033 3972  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
10:36:04.0038 3972  SNMPTRAP - ok
10:36:04.0085 3972  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
10:36:04.0086 3972  spldr - ok
10:36:04.0135 3972  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler         C:\Windows\System32\spoolsv.exe
10:36:04.0142 3972  Spooler - ok
10:36:04.0235 3972  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\Windows\system32\sppsvc.exe
10:36:04.0270 3972  sppsvc - ok
10:36:04.0276 3972  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
10:36:04.0279 3972  sppuinotify - ok
10:36:04.0421 3972  [ 891793E00432FA055CF040605C260E49 ] SRTSP           C:\Windows\System32\Drivers\NISx64\1309010.00E\SRTSP64.SYS
10:36:04.0448 3972  SRTSP - ok
10:36:04.0475 3972  [ 1CB7BB3B0561FB5ECFE37F7731E8BF3E ] SRTSPX          C:\Windows\system32\drivers\NISx64\1309010.00E\SRTSPX64.SYS
10:36:04.0475 3972  SRTSPX - ok
10:36:04.0503 3972  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\Windows\system32\DRIVERS\srv.sys
10:36:04.0510 3972  srv - ok
10:36:04.0534 3972  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
10:36:04.0551 3972  srv2 - ok
10:36:04.0576 3972  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
10:36:04.0578 3972  srvnet - ok
10:36:04.0610 3972  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
10:36:04.0613 3972  SSDPSRV - ok
10:36:04.0637 3972  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
10:36:04.0639 3972  SstpSvc - ok
10:36:04.0741 3972  [ E942412186178B1331F8335E30FA076F ] STacSV          C:\Program Files\IDT\WDM\STacSV64.exe
10:36:04.0748 3972  STacSV - ok
10:36:04.0821 3972  Steam Client Service - ok
10:36:04.0837 3972  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\drivers\stexstor.sys
10:36:04.0838 3972  stexstor - ok
10:36:04.0859 3972  [ DCC8845692DEA3477BCF6CE9D06C711F ] STHDA           C:\Windows\system32\DRIVERS\stwrt64.sys
10:36:04.0865 3972  STHDA - ok
10:36:04.0978 3972  [ DECACB6921DED1A38642642685D77DAC ] StillCam        C:\Windows\system32\DRIVERS\serscan.sys
10:36:04.0986 3972  StillCam - ok
10:36:05.0031 3972  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\Windows\System32\wiaservc.dll
10:36:05.0038 3972  stisvc - ok
10:36:05.0057 3972  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\drivers\swenum.sys
10:36:05.0058 3972  swenum - ok
10:36:05.0077 3972  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
10:36:05.0084 3972  swprv - ok
10:36:05.0148 3972  [ 8B2430762099598DA40686F754632EFD ] SymDS           C:\Windows\system32\drivers\NISx64\1309010.00E\SYMDS64.SYS
10:36:05.0155 3972  SymDS - ok
10:36:05.0231 3972  [ 5CB7F2FD7E30A0F52F93574BFC3A8041 ] SymEFA          C:\Windows\system32\drivers\NISx64\1309010.00E\SYMEFA64.SYS
10:36:05.0249 3972  SymEFA - ok
10:36:05.0275 3972  [ 894579207E39C465737E850A252CE4F2 ] SymEvent        C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
10:36:05.0277 3972  SymEvent - ok
10:36:05.0294 3972  [ 5013A76CAAA1D7CF1C55214B490B4E35 ] SymIRON         C:\Windows\system32\drivers\NISx64\1309010.00E\Ironx64.SYS
10:36:05.0296 3972  SymIRON - ok
10:36:05.0310 3972  [ 3911BD0E68C010E5438A87706ABBE9AB ] SymNetS         C:\Windows\System32\Drivers\NISx64\1309010.00E\SYMNETS.SYS
10:36:05.0314 3972  SymNetS - ok
10:36:05.0354 3972  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\Windows\system32\sysmain.dll
10:36:05.0371 3972  SysMain - ok
10:36:05.0388 3972  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
10:36:05.0391 3972  TabletInputService - ok
10:36:05.0408 3972  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\Windows\System32\tapisrv.dll
10:36:05.0423 3972  TapiSrv - ok
10:36:05.0440 3972  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
10:36:05.0442 3972  TBS - ok
10:36:05.0527 3972  [ 9849EA3843A2ADBDD1497E97A85D8CAE ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
10:36:05.0557 3972  Tcpip - ok
10:36:05.0593 3972  [ 9849EA3843A2ADBDD1497E97A85D8CAE ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
10:36:05.0604 3972  TCPIP6 - ok
10:36:05.0641 3972  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
10:36:05.0655 3972  tcpipreg - ok
10:36:05.0700 3972  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
10:36:05.0716 3972  TDPIPE - ok
10:36:05.0748 3972  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
10:36:05.0749 3972  TDTCP - ok
10:36:05.0814 3972  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
10:36:05.0816 3972  tdx - ok
10:36:05.0838 3972  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\Windows\system32\drivers\termdd.sys
10:36:05.0839 3972  TermDD - ok
10:36:05.0870 3972  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\Windows\System32\termsrv.dll
10:36:05.0878 3972  TermService - ok
10:36:05.0903 3972  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
10:36:05.0905 3972  Themes - ok
10:36:05.0926 3972  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
10:36:05.0928 3972  THREADORDER - ok
10:36:05.0956 3972  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
10:36:05.0959 3972  TrkWks - ok
10:36:05.0986 3972  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
10:36:05.0989 3972  TrustedInstaller - ok
10:36:06.0006 3972  [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
10:36:06.0007 3972  tssecsrv - ok
10:36:06.0017 3972  [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
10:36:06.0018 3972  TsUsbFlt - ok
10:36:06.0039 3972  [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
10:36:06.0040 3972  TsUsbGD - ok
10:36:06.0075 3972  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
10:36:06.0077 3972  tunnel - ok
10:36:06.0095 3972  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
10:36:06.0096 3972  uagp35 - ok
10:36:06.0114 3972  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
10:36:06.0119 3972  udfs - ok
10:36:06.0139 3972  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
10:36:06.0141 3972  UI0Detect - ok
10:36:06.0183 3972  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
10:36:06.0185 3972  uliagpkx - ok
10:36:06.0202 3972  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
10:36:06.0204 3972  umbus - ok
10:36:06.0221 3972  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\drivers\umpass.sys
10:36:06.0222 3972  UmPass - ok
10:36:06.0245 3972  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
10:36:06.0253 3972  upnphost - ok
10:36:06.0325 3972  [ 43228F8EDD1B0BCDD3145AD246E63D39 ] USBAAPL64       C:\Windows\system32\Drivers\usbaapl64.sys
10:36:06.0331 3972  USBAAPL64 - ok
10:36:06.0350 3972  [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
10:36:06.0351 3972  usbccgp - ok
10:36:06.0370 3972  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
10:36:06.0372 3972  usbcir - ok
10:36:06.0391 3972  [ C025055FE7B87701EB042095DF1A2D7B ] usbehci         C:\Windows\system32\drivers\usbehci.sys
10:36:06.0393 3972  usbehci - ok
10:36:06.0406 3972  [ 573D192E268F0C5B486B7E96F661E538 ] usbfilter       C:\Windows\system32\drivers\usbfilter.sys
10:36:06.0407 3972  usbfilter - ok
10:36:06.0423 3972  [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub          C:\Windows\system32\drivers\usbhub.sys
10:36:06.0426 3972  usbhub - ok
10:36:06.0435 3972  [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
10:36:06.0436 3972  usbohci - ok
10:36:06.0474 3972  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
10:36:06.0475 3972  usbprint - ok
10:36:06.0505 3972  [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
10:36:06.0509 3972  usbscan - ok
10:36:06.0529 3972  [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
10:36:06.0531 3972  USBSTOR - ok
10:36:06.0544 3972  [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
10:36:06.0546 3972  usbuhci - ok
10:36:06.0596 3972  [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo        C:\Windows\system32\Drivers\usbvideo.sys
10:36:06.0599 3972  usbvideo - ok
10:36:06.0619 3972  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
10:36:06.0622 3972  UxSms - ok
10:36:06.0629 3972  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\Windows\system32\lsass.exe
10:36:06.0630 3972  VaultSvc - ok
10:36:06.0666 3972  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
10:36:06.0668 3972  vdrvroot - ok
10:36:06.0685 3972  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\Windows\System32\vds.exe
10:36:06.0691 3972  vds - ok
10:36:06.0727 3972  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
10:36:06.0729 3972  vga - ok
10:36:06.0748 3972  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
10:36:06.0749 3972  VgaSave - ok
10:36:06.0790 3972  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
10:36:06.0807 3972  vhdmp - ok
10:36:06.0820 3972  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\drivers\viaide.sys
10:36:06.0821 3972  viaide - ok
10:36:06.0846 3972  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
10:36:06.0861 3972  volmgr - ok
10:36:06.0905 3972  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
10:36:06.0913 3972  volmgrx - ok
10:36:06.0953 3972  [ DF8126BD41180351A093A3AD2FC8903B ] volsnap         C:\Windows\system32\drivers\volsnap.sys
10:36:06.0957 3972  volsnap - ok
10:36:06.0972 3972  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
10:36:06.0975 3972  vsmraid - ok
10:36:07.0008 3972  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\Windows\system32\vssvc.exe
10:36:07.0025 3972  VSS - ok
10:36:07.0039 3972  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
10:36:07.0040 3972  vwifibus - ok
10:36:07.0081 3972  [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
10:36:07.0082 3972  vwififlt - ok
10:36:07.0109 3972  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
10:36:07.0120 3972  W32Time - ok
10:36:07.0134 3972  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
10:36:07.0136 3972  WacomPen - ok
10:36:07.0171 3972  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
10:36:07.0173 3972  WANARP - ok
10:36:07.0178 3972  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
10:36:07.0179 3972  Wanarpv6 - ok
10:36:07.0237 3972  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
10:36:07.0261 3972  WatAdminSvc - ok
10:36:07.0332 3972  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\Windows\system32\wbengine.exe
10:36:07.0369 3972  wbengine - ok
10:36:07.0401 3972  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
10:36:07.0405 3972  WbioSrvc - ok
10:36:07.0424 3972  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\Windows\System32\wcncsvc.dll
10:36:07.0429 3972  wcncsvc - ok
10:36:07.0441 3972  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
10:36:07.0443 3972  WcsPlugInService - ok
10:36:07.0461 3972  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\drivers\wd.sys
10:36:07.0462 3972  Wd - ok
10:36:07.0509 3972  [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
10:36:07.0517 3972  Wdf01000 - ok
10:36:07.0524 3972  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
10:36:07.0527 3972  WdiServiceHost - ok
10:36:07.0532 3972  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
10:36:07.0535 3972  WdiSystemHost - ok
10:36:07.0560 3972  [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient       C:\Windows\System32\webclnt.dll
10:36:07.0564 3972  WebClient - ok
10:36:07.0589 3972  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
10:36:07.0593 3972  Wecsvc - ok
10:36:07.0615 3972  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
10:36:07.0617 3972  wercplsupport - ok
10:36:07.0651 3972  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
10:36:07.0654 3972  WerSvc - ok
10:36:07.0694 3972  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
10:36:07.0695 3972  WfpLwf - ok
10:36:07.0710 3972  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
10:36:07.0712 3972  WIMMount - ok
10:36:07.0730 3972  WinDefend - ok
10:36:07.0755 3972  WinHttpAutoProxySvc - ok
10:36:07.0836 3972  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
10:36:07.0838 3972  Winmgmt - ok
10:36:07.0902 3972  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\Windows\system32\WsmSvc.dll
10:36:07.0938 3972  WinRM - ok
10:36:08.0009 3972  [ FE88B288356E7B47B74B13372ADD906D ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
10:36:08.0012 3972  WinUsb - ok
10:36:08.0049 3972  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
10:36:08.0059 3972  Wlansvc - ok
10:36:08.0087 3972  [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc        C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
10:36:08.0099 3972  wlcrasvc - ok
10:36:08.0257 3972  [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
10:36:08.0295 3972  wlidsvc - ok
10:36:08.0335 3972  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
10:36:08.0335 3972  WmiAcpi - ok
10:36:08.0364 3972  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
10:36:08.0367 3972  wmiApSrv - ok
10:36:08.0386 3972  WMPNetworkSvc - ok
10:36:08.0403 3972  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
10:36:08.0405 3972  WPCSvc - ok
10:36:08.0421 3972  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
10:36:08.0424 3972  WPDBusEnum - ok
10:36:08.0466 3972  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
10:36:08.0468 3972  ws2ifsl - ok
10:36:08.0506 3972  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\Windows\System32\wscsvc.dll
10:36:08.0510 3972  wscsvc - ok
10:36:08.0515 3972  WSearch - ok
10:36:08.0625 3972  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
10:36:08.0653 3972  wuauserv - ok
10:36:08.0697 3972  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
10:36:08.0700 3972  WudfPf - ok
10:36:08.0737 3972  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
10:36:08.0740 3972  WUDFRd - ok
10:36:08.0774 3972  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
10:36:08.0777 3972  wudfsvc - ok
10:36:08.0827 3972  [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc         C:\Windows\System32\wwansvc.dll
10:36:08.0846 3972  WwanSvc - ok
10:36:08.0940 3972  [ 38F55D07B1D3391065C40EC065F984E2 ] xusb21          C:\Windows\system32\DRIVERS\xusb21.sys
10:36:08.0942 3972  xusb21 - ok
10:36:08.0965 3972  ================ Scan global ===============================
10:36:09.0008 3972  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
10:36:09.0058 3972  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
10:36:09.0068 3972  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
10:36:09.0105 3972  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
10:36:09.0133 3972  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
10:36:09.0138 3972  [Global] - ok
10:36:09.0139 3972  ================ Scan MBR ==================================
10:36:09.0151 3972  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
10:36:13.0621 3972  \Device\Harddisk0\DR0 - ok
10:36:13.0915 3972  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk2\DR2
10:36:14.0671 3972  \Device\Harddisk2\DR2 - ok
10:36:14.0672 3972  ================ Scan VBR ==================================
10:36:14.0715 3972  [ 847B9702D4A3697709F11847EC8DD854 ] \Device\Harddisk0\DR0\Partition1
10:36:14.0723 3972  \Device\Harddisk0\DR0\Partition1 - ok
10:36:14.0773 3972  [ 4D7FCCF2EAE3D3809622BD0DD4522B8B ] \Device\Harddisk0\DR0\Partition2
10:36:14.0798 3972  \Device\Harddisk0\DR0\Partition2 - ok
10:36:14.0878 3972  [ FFD55D8285175ED07BF6A484879B37E8 ] \Device\Harddisk0\DR0\Partition3
10:36:14.0885 3972  \Device\Harddisk0\DR0\Partition3 - ok
10:36:14.0894 3972  [ EE497630A386F051167829CB81A554D5 ] \Device\Harddisk2\DR2\Partition1
10:36:14.0899 3972  \Device\Harddisk2\DR2\Partition1 - ok
10:36:14.0900 3972  ============================================================
10:36:14.0900 3972  Scan finished
10:36:14.0900 3972  ============================================================
10:36:14.0918 0996  Detected object count: 0
10:36:14.0918 0996  Actual detected object count: 0
 

 

C:\Program Files (x86)\SearchProtect\bin\ChromeModule.dll a variant of Win32/Conduit.SearchProtect.C application
C:\Program Files (x86)\SearchProtect\bin\cltmng.exe a variant of Win32/Conduit.SearchProtect.B application
C:\Program Files (x86)\SearchProtect\bin\FirefoxModule.dll a variant of Win32/Conduit.SearchProtect.C application
C:\Program Files (x86)\SearchProtect\bin\InternetExplorerModule.dll a variant of Win32/Conduit.SearchProtect.C application
C:\Program Files (x86)\SearchProtect\bin\SPHook32.dll probably a variant of Win32/Conduit.SearchProtect.C application
C:\Program Files (x86)\SearchProtect\ffprotect\application.js Win32/Conduit.SearchProtect.A application
C:\Program Files (x86)\SearchProtect\ffprotect\nsprotector.js Win32/Conduit.SearchProtect.A application
C:\Users\Family\AppData\Local\Google\Chrome\User Data\Default\ext_offermosquito\ext_offermosquito.crx JS/OfferMosquito.A application
C:\Users\Family\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\Z6O2R2Z8\SPSetup[1].exe multiple threats
C:\Users\Family\AppData\Local\Temp\1e4e1dd1.exe multiple threats
C:\Users\Family\AppData\Local\Temp\26b93e8.exe multiple threats
C:\Users\Family\AppData\Local\Temp\3126496.exe multiple threats
C:\Users\Family\AppData\Local\Temp\36cbabe.exe multiple threats
C:\Users\Family\AppData\Local\Temp\3c2.exe multiple threats
C:\Users\Family\AppData\Local\Temp\51617f66.exe multiple threats
C:\Users\Family\AppData\Local\Temp\5e.exe multiple threats
C:\Users\Family\AppData\Local\Temp\AskSLib.dll a variant of Win32/Bundled.Toolbar.Ask application
C:\Users\Family\AppData\Local\Temp\vdj2A4A.tmp.msi a variant of Win32/Bundled.Toolbar.Ask.D application
C:\Users\Family\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\11\1364560b-62448937 probably a variant of Java/TrojanDownloader.Agent.NFH trojan
C:\Users\Family\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\14\6a11eace-56f4aa41 probably a variant of Java/TrojanDownloader.Agent.NFH trojan
C:\Users\Family\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\29\78982fdd-1f149ba5 probably a variant of Java/TrojanDownloader.Agent.NFH trojan
C:\Users\Family\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\32\2d9dc4a0-6328b264 probably a variant of Java/TrojanDownloader.Agent.NFH trojan
C:\Users\Family\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\35\c159ca3-49a797cd probably a variant of Java/TrojanDownloader.Agent.NFH trojan
C:\Users\Family\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\4\56e52084-78f6eb1e probably a variant of Java/TrojanDownloader.Agent.NFH trojan
C:\Users\Family\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\40\34d74768-2124afc7 probably a variant of Java/TrojanDownloader.Agent.NFH trojan
C:\Users\Family\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\44\715aa52c-4eb3223d probably a variant of Java/TrojanDownloader.Agent.NFH trojan
C:\Users\Family\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\47\3c6e6bef-32078e44 multiple threats
C:\Users\Family\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\48\52aa8f70-60282300 probably a variant of Java/TrojanDownloader.Agent.NFH trojan
C:\Users\Family\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\52\4f8e0734-31bc18a8 probably a variant of Java/TrojanDownloader.Agent.NFH trojan
C:\Users\Family\AppData\Roaming\1e4e1dd1.exe multiple threats
C:\Users\Family\AppData\Roaming\26b93e8.exe multiple threats
C:\Users\Family\AppData\Roaming\3126496.exe multiple threats
C:\Users\Family\AppData\Roaming\36cbabe.exe multiple threats
C:\Users\Family\AppData\Roaming\3c2.exe multiple threats
C:\Users\Family\AppData\Roaming\51617f66.exe multiple threats
C:\Users\Family\AppData\Roaming\5e.exe multiple threats
C:\Users\Family\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\java.exe a variant of Win32/Injector.RRV trojan
C:\Users\Family\AppData\Roaming\SearchProtect\bin\ChromeModule.dll a variant of Win32/Conduit.SearchProtect.C application
C:\Users\Family\AppData\Roaming\SearchProtect\bin\cltmng.exe a variant of Win32/Conduit.SearchProtect.B application
C:\Users\Family\AppData\Roaming\SearchProtect\bin\FirefoxModule.dll a variant of Win32/Conduit.SearchProtect.C application
C:\Users\Family\AppData\Roaming\SearchProtect\bin\InternetExplorerModule.dll a variant of Win32/Conduit.SearchProtect.C application
C:\Users\Family\AppData\Roaming\SearchProtect\bin\SPHook32.dll probably a variant of Win32/Conduit.SearchProtect.C application
C:\Users\Family\AppData\Roaming\SearchProtect\ffprotect\application.js Win32/Conduit.SearchProtect.A application
C:\Users\Family\AppData\Roaming\SearchProtect\ffprotect\nsprotector.js Win32/Conduit.SearchProtect.A application
C:\Windows\Installer\4c62e.msi a variant of Win32/Bundled.Toolbar.Ask.D application
Operating memory multiple threats


#4 GodfatherKing

GodfatherKing

  • Members
  • 587 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:53 AM

Posted 31 July 2013 - 02:38 AM

:step1: Clean Java Cache

      ==> http://www.java.com/en/download/help/plugin_cache.xml

 

:step2: Go to start > Control panel > Add/remove programs

      Remove: SearchProtect

 

:step3:  Install and run MBAM

 

:step4: ESET Online Scanner

==================

Note: This time CHECK "Remove found threats" <== Important

 

Note: If your AV is blocking Eset online scanner, please temporarily disable your AV.

 

I'd like us to scan your machine with ESET OnlineScan This process may may take several hours, that is normal.

  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and » CHECK "Remove found threats" <== Important
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Copy and paste the information in your next reply. (If no malware was found you will not be presented with a log).
  • Click the Back button.
  • Click the Finish button.

==================================================


If you have received help from me and I don't have respond to you for almost >= 3 days, send me a Private Message.  :hello:


#5 daewezzy

daewezzy
  • Topic Starter

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Local time:09:53 PM

Posted 31 July 2013 - 08:12 PM

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org
 
Database version: v2013.07.31.06
 
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16635
Family :: FAMILY-HP [administrator]
 
7/31/2013 2:09:45 PM
mbam-log-2013-07-31 (14-09-45).txt
 
Scan type: Full scan (C:\|D:\|Q:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 583690
Time elapsed: 1 hour(s), 43 minute(s), 23 second(s)
 
Memory Processes Detected: 0
(No malicious items detected)
 
Memory Modules Detected: 0
(No malicious items detected)
 
Registry Keys Detected: 0
(No malicious items detected)
 
Registry Values Detected: 0
(No malicious items detected)
 
Registry Data Items Detected: 0
(No malicious items detected)
 
Folders Detected: 9
C:\Users\Family\AppData\Roaming\Common\LuaRT (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Family\AppData\Roaming\Common\LuaRT\alien (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Family\AppData\Roaming\Common\LuaRT\json (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Family\AppData\Roaming\Common\LuaRT\json\decode (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Family\AppData\Roaming\Common\LuaRT\json\encode (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Family\AppData\Roaming\Common\LuaRT\luasql (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Family\AppData\Roaming\Common\LuaRT\Microsoft.VC80.CRT (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Family\AppData\Roaming\Common\LuaRT\mime (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Family\AppData\Roaming\Common\LuaRT\socket (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
 
Files Detected: 57
C:\Program Files (x86)\appbario7\appbario7ToolbarHelper.exe (PUP.Optional.Conduit.A) -> Quarantined and deleted successfully.
C:\Users\Family\AppData\Local\Conduit\CT3227981\appbario7AutoUpdateHelper.exe (PUP.Optional.Conduit.A) -> Quarantined and deleted successfully.
C:\Users\Family\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\WWA9OBAV\appbario7[1].exe (PUP.Optional.Conduit.A) -> Quarantined and deleted successfully.
C:\Users\Family\AppData\Local\Temp\ToolbarHelper.exe (PUP.Optional.Conduit.A) -> Quarantined and deleted successfully.
C:\Users\Family\AppData\Local\Temp\ct3227981\ieLogic.exe (PUP.Optional.Conduit.A) -> Quarantined and deleted successfully.
C:\Users\Family\AppData\Roaming\Common\LuaRT\alien.lua (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Family\AppData\Roaming\Common\LuaRT\base.lua (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Family\AppData\Roaming\Common\LuaRT\debug_ext.lua (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Family\AppData\Roaming\Common\LuaRT\debug_init.lua (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Family\AppData\Roaming\Common\LuaRT\getopt.lua (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Family\AppData\Roaming\Common\LuaRT\io_ext.lua (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Family\AppData\Roaming\Common\LuaRT\json.lua (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Family\AppData\Roaming\Common\LuaRT\lfs.dll (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Family\AppData\Roaming\Common\LuaRT\list.lua (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Family\AppData\Roaming\Common\LuaRT\lpeg.dll (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Family\AppData\Roaming\Common\LuaRT\ltn12.lua (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Family\AppData\Roaming\Common\LuaRT\lua.exe (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Family\AppData\Roaming\Common\LuaRT\lua5.1.dll (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Family\AppData\Roaming\Common\LuaRT\lua51.dll (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Family\AppData\Roaming\Common\LuaRT\luacom.dll (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Family\AppData\Roaming\Common\LuaRT\math_ext.lua (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Family\AppData\Roaming\Common\LuaRT\mime.lua (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Family\AppData\Roaming\Common\LuaRT\modules.lua (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Family\AppData\Roaming\Common\LuaRT\package_ext.lua (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Family\AppData\Roaming\Common\LuaRT\set.lua (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Family\AppData\Roaming\Common\LuaRT\socket.lua (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Family\AppData\Roaming\Common\LuaRT\std.lua (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Family\AppData\Roaming\Common\LuaRT\strbuf.lua (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Family\AppData\Roaming\Common\LuaRT\string_ext.lua (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Family\AppData\Roaming\Common\LuaRT\table_ext.lua (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Family\AppData\Roaming\Common\LuaRT\tree.lua (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Family\AppData\Roaming\Common\LuaRT\wlua.exe (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Family\AppData\Roaming\Common\LuaRT\alien\core.dll (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Family\AppData\Roaming\Common\LuaRT\alien\struct.dll (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Family\AppData\Roaming\Common\LuaRT\json\decode.lua (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Family\AppData\Roaming\Common\LuaRT\json\encode.lua (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Family\AppData\Roaming\Common\LuaRT\json\util.lua (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Family\AppData\Roaming\Common\LuaRT\json\decode\array.lua (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Family\AppData\Roaming\Common\LuaRT\json\decode\calls.lua (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Family\AppData\Roaming\Common\LuaRT\json\decode\number.lua (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Family\AppData\Roaming\Common\LuaRT\json\decode\object.lua (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Family\AppData\Roaming\Common\LuaRT\json\decode\others.lua (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Family\AppData\Roaming\Common\LuaRT\json\decode\strings.lua (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Family\AppData\Roaming\Common\LuaRT\json\decode\util.lua (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Family\AppData\Roaming\Common\LuaRT\json\encode\array.lua (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Family\AppData\Roaming\Common\LuaRT\json\encode\calls.lua (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Family\AppData\Roaming\Common\LuaRT\json\encode\number.lua (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Family\AppData\Roaming\Common\LuaRT\json\encode\object.lua (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Family\AppData\Roaming\Common\LuaRT\json\encode\others.lua (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Family\AppData\Roaming\Common\LuaRT\json\encode\output.lua (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Family\AppData\Roaming\Common\LuaRT\json\encode\output_utility.lua (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Family\AppData\Roaming\Common\LuaRT\json\encode\strings.lua (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Family\AppData\Roaming\Common\LuaRT\luasql\sqlite3.dll (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Family\AppData\Roaming\Common\LuaRT\mime\core.dll (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Family\AppData\Roaming\Common\LuaRT\socket\core.dll (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Family\AppData\Roaming\Common\LuaRT\socket\http.lua (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
C:\Users\Family\AppData\Roaming\Common\LuaRT\socket\url.lua (PUP.Optional.LuaRT.A) -> Quarantined and deleted successfully.
 
(end)


#6 daewezzy

daewezzy
  • Topic Starter

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Local time:09:53 PM

Posted 31 July 2013 - 10:56 PM

C:\Users\Family\AppData\Local\Temp\1e4e1dd1.exe multiple threats cleaned by deleting - quarantined
C:\Users\Family\AppData\Local\Temp\26b93e8.exe multiple threats cleaned by deleting - quarantined
C:\Users\Family\AppData\Local\Temp\3126496.exe multiple threats cleaned by deleting - quarantined
C:\Users\Family\AppData\Local\Temp\36cbabe.exe multiple threats cleaned by deleting - quarantined
C:\Users\Family\AppData\Local\Temp\3c2.exe multiple threats cleaned by deleting - quarantined
C:\Users\Family\AppData\Local\Temp\51617f66.exe multiple threats cleaned by deleting - quarantined
C:\Users\Family\AppData\Local\Temp\5e.exe multiple threats cleaned by deleting - quarantined
C:\Users\Family\AppData\Roaming\1e4e1dd1.exe multiple threats cleaned by deleting - quarantined
C:\Users\Family\AppData\Roaming\26b93e8.exe multiple threats cleaned by deleting - quarantined
C:\Users\Family\AppData\Roaming\3126496.exe multiple threats cleaned by deleting - quarantined
C:\Users\Family\AppData\Roaming\36cbabe.exe multiple threats cleaned by deleting - quarantined
C:\Users\Family\AppData\Roaming\3c2.exe multiple threats cleaned by deleting - quarantined
C:\Users\Family\AppData\Roaming\51617f66.exe multiple threats cleaned by deleting - quarantined
C:\Users\Family\AppData\Roaming\5e.exe multiple threats cleaned by deleting - quarantined
C:\Users\Family\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\java.exe a variant of Win32/Injector.RRV trojan cleaned by deleting - quarantined


#7 GodfatherKing

GodfatherKing

  • Members
  • 587 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:53 AM

Posted 01 August 2013 - 02:34 AM

:step1: Repeat the scan with MBAM. Post the new log from MBAM.


If you have received help from me and I don't have respond to you for almost >= 3 days, send me a Private Message.  :hello:


#8 daewezzy

daewezzy
  • Topic Starter

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Local time:09:53 PM

Posted 01 August 2013 - 04:44 AM

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org
 
Database version: v2013.07.31.06
 
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16635
Family :: FAMILY-HP [administrator]
 
8/1/2013 12:49:25 AM
mbam-log-2013-08-01 (00-49-25).txt
 
Scan type: Full scan (C:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 582760
Time elapsed: 1 hour(s), 45 minute(s), 56 second(s)
 
Memory Processes Detected: 0
(No malicious items detected)
 
Memory Modules Detected: 0
(No malicious items detected)
 
Registry Keys Detected: 0
(No malicious items detected)
 
Registry Values Detected: 0
(No malicious items detected)
 
Registry Data Items Detected: 0
(No malicious items detected)
 
Folders Detected: 0
(No malicious items detected)
 
Files Detected: 0
(No malicious items detected)
 
(end)


#9 GodfatherKing

GodfatherKing

  • Members
  • 587 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:53 AM

Posted 01 August 2013 - 04:51 AM

I think you're clean of infections now. Do you have any issues related to malware left?

 

:step1: My advice is to keep your computer up to date with Windows Updates, Java and Adobe Reader and Flash Player.

 

:step2: Use WOT to inspect sites if they are safe or not :http://www.mywot.com/

 

:step3: A good working AntiVirus is also important. I personally advice Avast free or Avira. MSE it's detection is not so great.

 

:step4: Let's check how good your security is:

 

Download Security Check from here or here and save it to your Desktop.

  • Double-click SecurityCheck.exe
  • Follow the onscreen instructions inside of the black box.
  • Notepad document should open automatically called checkup.txt; please post the contents of that document.

NOTE 1. If one of your security applications (e.g., third-party firewall) requests permission to allow DIG.EXE access the Internet, allow it to do so.
NOTE 2 SecurityCheck may produce some false warning(s), so leave the results reading to me.


If you have received help from me and I don't have respond to you for almost >= 3 days, send me a Private Message.  :hello:


#10 daewezzy

daewezzy
  • Topic Starter

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Local time:09:53 PM

Posted 01 August 2013 - 11:28 AM

 Results of screen317's Security Check version 0.99.71  
 Windows 7 Service Pack 1 x64 (UAC is disabled!)  
 Internet Explorer 10  
``````````````Antivirus/Firewall Check:`````````````` 
 Windows Firewall Enabled!  
 Windows Firewall Disabled!  
Norton Internet Security   
 WMI entry may not exist for antivirus; attempting automatic update. 
`````````Anti-malware/Other Utilities Check:````````` 
 Malwarebytes Anti-Malware version 1.75.0.1300  
 JavaFX 2.1.1    
 Java 7 Update 25  
 Adobe Flash Player 11.7.700.224  
 Google Chrome 28.0.1500.72  
 Google Chrome 28.0.1500.95  
````````Process Check: objlist.exe by Laurent````````  
 Norton ccSvcHst.exe 
 Symantec Norton Online Backup NOBuAgent.exe  
`````````````````System Health check````````````````` 
 Total Fragmentation on Drive C: 10% 
````````````````````End of Log`````````````````````` 


#11 GodfatherKing

GodfatherKing

  • Members
  • 587 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:53 AM

Posted 01 August 2013 - 11:33 AM

Security log looks almost perfectly good, just I would enable UAC.  :thumbup2:


If you have received help from me and I don't have respond to you for almost >= 3 days, send me a Private Message.  :hello:





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users