Jump to content

Malware removal assistance needed


Recommended Posts

After Spybot scan today there were three items that came up (facebook.messenger PUPSC, Smitfraud-C generic trojan and media . I ran your Malware program also and the items are still there. At this time I still get a blue screen that states theres a problem and so on. So, I'm onto the next step.

DDS (Ver_2012-11-20.01) - NTFS_AMD64 MINIMAL

Internet Explorer: 9.0.8112.16455

Run by Nina at 14:36:37 on 2012-12-09

Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.2811.2281 [GMT -6:00]

.

AV: Norton Internet Security *Enabled/Updated* {63DF5164-9100-186D-2187-8DC619EFD8BF}

SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

SP: Norton Internet Security *Enabled/Updated* {D8BEB080-B73A-17E3-1B37-B6B462689202}

FW: Norton Internet Security *Enabled* {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4}

.

============== Running Processes ===============

.

C:\windows\system32\lsm.exe

C:\windows\system32\svchost.exe -k DcomLaunch

C:\windows\system32\svchost.exe -k RPCSS

C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted

C:\windows\system32\svchost.exe -k netsvcs

C:\windows\system32\svchost.exe -k NetworkService

C:\windows\Explorer.EXE

C:\windows\system32\ctfmon.exe

\\.\globalroot\systemroot\svchost.exe -netsvcs

C:\windows\system32\wbem\wmiprvse.exe

C:\windows\System32\svchost.exe -k swprv

C:\windows\System32\cscript.exe

.

============== Pseudo HJT Report ===============

.

uStart Page = hxxp://www.google.com/ig/redirectdomain?brand=TSND&bmod=TSND

uDefault_Page_URL = hxxp://www.google.com/ig/redirectdomain?brand=TSND&bmod=TSND

mStart Page = hxxp://www.google.com/ig/redirectdomain?brand=TSND&bmod=TSND

mDefault_Page_URL = hxxp://www.google.com/ig/redirectdomain?brand=TSND&bmod=TSND

uProxyOverride = <local>;*.local

uURLSearchHooks: {00000000-6E41-4FD3-8538-502F5495E5FC} - <orphaned>

mWinlogon: Userinit = userinit.exe,

BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

BHO: Spybot-S&D IE Protection: {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll

BHO: Norton Identity Protection: {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton 360 Premier Edition\Engine\6.4.0.9\coieplg.dll

BHO: Norton Vulnerability Protection: {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton 360 Premier Edition\Engine\6.4.0.9\ips\ipsbho.dll

BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL

BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

BHO: Windows Live Messenger Companion Helper: {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll

BHO: Skype Plug-In: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL

BHO: Bing Bar Helper: {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -

BHO: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll

BHO: TOSHIBA Media Controller Plug-in: {F3C88694-EFFA-4d78-B409-54B7B2535B14} - C:\Program Files (x86)\TOSHIBA\TOSHIBA Media Controller Plug-in\TOSHIBAMediaControllerIE.dll

TB: Bing Bar: {8dcb7100-df86-4384-8842-8fa844297b3f} -

TB: Norton Toolbar: {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360 Premier Edition\Engine\6.4.0.9\coieplg.dll

uRun: [spybotSD TeaTimer] C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe

uRun: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"

uRun: [OM2_Monitor] "C:\Program Files (x86)\OLYMPUS\OLYMPUS Master 2\MMonitor.exe"

uRun: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe

uRun: [ApplePhotoStreams] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe

uRun: [com.apple.dav.bookmarks.daemon] C:\Program Files (x86)\Common Files\Apple\Internet Services\BookmarkDAV_client.exe

uRun: [iFunBoxConnector] "C:\Program Files (x86)\i-Funbox DevTeam\ifb_conn.exe"

mRun: [startCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun

mRun: [ToshibaServiceStation] "C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe" /hide:60

mRun: [TWebCamera] "C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe" autorun

mRun: [ToshibaAppPlace] "C:\Program Files (x86)\Toshiba\Toshiba App Place\ToshibaAppPlace.exe"

mRun: [MaxMenuMgr] "C:\Program Files (x86)\Seagate\SeagateManager\FreeAgent Status\StxMenuMgr.exe"

mRun: [bCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices

mRun: [AppleSyncNotifier] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe

mRun: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

mRun: [TaskTray] <no file>

mRunOnce: [Malwarebytes Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent

mRunOnce: [Malwarebytes Anti-Malware (cleanup)] rundll32.exe "C:\ProgramData\Malwarebytes\Malwarebytes' Anti-Malware\cleanup.dll",ProcessCleanupScript

StartupFolder: C:\Users\Nina\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\Dropbox.lnk - C:\Users\Nina\AppData\Roaming\Dropbox\bin\Dropbox.exe

mPolicies-Explorer: NoActiveDesktop = dword:1

mPolicies-Explorer: NoActiveDesktopChanges = dword:1

mPolicies-System: ConsentPromptBehaviorAdmin = dword:5

mPolicies-System: ConsentPromptBehaviorUser = dword:3

mPolicies-System: EnableUIADesktopToggle = dword:0

IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~4\Office14\EXCEL.EXE/3000

IE: Free YouTube to MP3 Converter - C:\Users\Nina\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm

IE: Se&nd to OneNote - C:\PROGRA~2\MICROS~4\Office14\ONBttnIE.dll/105

IE: {0000036B-C524-4050-81A0-243669A86B9F} - {B63DBA5F-523F-4B9C-A43D-65DF1977EAD3} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll

IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll

IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll

IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll

.

INFO: HKCU has more than 50 listed domains.

If you wish to scan all of them, select the 'Force scan all domains' option.

.

.

INFO: HKLM has more than 50 listed domains.

If you wish to scan all of them, select the 'Force scan all domains' option.

.

DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab

DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab

DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab

DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab

TCP: NameServer = 192.168.254.254

TCP: Interfaces\{8A5BE709-A31A-485F-8296-303D997ED87F} : DHCPNameServer = 192.168.254.254

TCP: Interfaces\{8A5BE709-A31A-485F-8296-303D997ED87F}\3536F6F647562737 : DHCPNameServer = 98.175.198.65 68.105.28.17 68.105.29.17

TCP: Interfaces\{8A5BE709-A31A-485F-8296-303D997ED87F}\6596277696E696160294E6E6 : DHCPNameServer = 8.8.8.8 8.8.4.4

TCP: Interfaces\{8A5BE709-A31A-485F-8296-303D997ED87F}\75869647560284F65737560294E6E6 : DHCPNameServer = 68.105.28.16 68.105.29.16

TCP: Interfaces\{8A5BE709-A31A-485F-8296-303D997ED87F}\7594E4F523636393 : DHCPNameServer = 192.168.254.254

TCP: Interfaces\{8A5BE709-A31A-485F-8296-303D997ED87F}\7796C637F6E677966696 : DHCPNameServer = 192.168.1.1

TCP: Interfaces\{8A5BE709-A31A-485F-8296-303D997ED87F}\D696461647C616E64796362626 : DHCPNameServer = 10.71.0.1

Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL

Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll

Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll

SSODL: WebCheck - <orphaned>

SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL

x64-BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL

x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL

x64-Run: [cAudioFilterAgent] C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe

x64-Run: [smartAudio] C:\Program Files\CONEXANT\SAII\SAIICpl.exe /t

x64-Run: [synTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe

x64-Run: [TPwrMain] C:\Program Files (x86)\TOSHIBA\Power Saver\TPwrMain.EXE

x64-Run: [HSON] C:\Program Files (x86)\TOSHIBA\TBS\HSON.exe

x64-Run: [TosVolRegulator] C:\Program Files\TOSHIBA\TosVolRegulator\TosVolRegulator.exe

x64-Run: [TosSENotify] C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe

x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll

x64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll

.

INFO: x64-HKLM has more than 50 listed domains.

If you wish to scan all of them, select the 'Force scan all domains' option.

.

x64-Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL

x64-Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - <orphaned>

x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>

x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>

x64-SSODL: WebCheck - <orphaned>

x64-SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL

Hosts: 127.0.0.1 www.spywareinfo.com

.

============= SERVICES / DRIVERS ===============

.

R0 PxHlpa64;PxHlpa64;C:\windows\System32\drivers\PxHlpa64.sys [2011-1-20 52664]

R0 SymDS;Symantec Data Store;C:\windows\System32\drivers\N360x64\0604000.009\symds64.sys [2012-10-1 451192]

R0 SymEFA;Symantec Extended File Attributes;C:\windows\System32\drivers\N360x64\0604000.009\symefa64.sys [2012-10-1 1129120]

R2 TVALZFL;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Filter Driver;C:\windows\System32\drivers\TVALZFL.sys [2009-6-19 14472]

R3 lgbusenum;LG Bluetooth Bus Enumerator;C:\windows\System32\drivers\lgbtbs64.sys [2009-6-19 14848]

R3 QIOMem;Generic IO & Memory Access;C:\windows\System32\drivers\QIOMem.sys [2009-6-15 12800]

S1 BHDrvx64;BHDrvx64;C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.1.2\Definitions\BASHDefs\20121130.005_e0a\BHDrvx64.sys [2012-11-30 1384608]

S1 ccSet_N360;Norton 360 Settings Manager;C:\windows\System32\drivers\N360x64\0604000.009\ccsetx64.sys [2012-10-1 167072]

S1 IDSVia64;IDSVia64;C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.1.2\Definitions\IPSDefs\20121205.001\IDSviA64.sys [2012-12-6 513184]

S1 SymIRON;Symantec Iron Driver;C:\windows\System32\drivers\N360x64\0604000.009\ironx64.sys [2012-10-1 190072]

S1 SymNetS;Symantec Network Security WFP Driver;C:\windows\System32\drivers\N360x64\0604000.009\symnets.sys [2012-10-1 405624]

S2 AMD External Events Utility;AMD External Events Utility;C:\windows\System32\atiesrxx.exe [2010-11-5 202752]

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]

S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]

S2 cvhsvc;Client Virtualization Handler;C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE [2012-1-4 822624]

S2 FreeAgentGoNext Service;Seagate Service;C:\Program Files (x86)\Seagate\SeagateManager\Sync\FreeAgentService.exe [2009-12-18 189736]

S2 lxee_device;lxee_device;C:\windows\System32\lxeecoms.exe -service --> C:\windows\System32\lxeecoms.exe -service [?]

S2 lxeeCATSCustConnectService;lxeeCATSCustConnectService;C:\windows\System32\spool\drivers\x64\3\lxeeserv.exe [2010-4-14 45736]

S2 MBAMScheduler;MBAMScheduler;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2012-12-9 399432]

S2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-12-9 676936]

S2 N360;Norton 360;C:\Program Files (x86)\Norton 360 Premier Edition\Engine\6.4.0.9\ccsvchst.exe [2012-10-1 138272]

S2 Norton PC Checkup Application Launcher;Norton PC Checkup Application Launcher;C:\Program Files (x86)\PC Checkup\SymcPCCULaunchSvc.exe [2012-8-14 131512]

S2 PCCUJobMgr;Common Client Job Manager Service;C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.3.198\ccSvcHst.exe [2011-12-7 126392]

S2 SBSDWSCService;SBSD Security Center Service;C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe [2011-3-6 1153368]

S2 sftlist;Application Virtualization Client;C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2011-10-1 508776]

S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2012-7-13 160944]

S2 TomTomHOMEService;TomTomHOMEService;C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe [2011-4-22 92592]

S2 TOSHIBA eco Utility Service;TOSHIBA eco Utility Service;C:\Program Files\TOSHIBA\TECO\TecoService.exe [2010-2-25 252928]

S2 UMVPFSrv;UMVPFSrv;C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe [2011-8-19 450848]

S3 BBSvc;Bing Bar Update Service;C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE [2011-2-28 183560]

S3 EraserUtilRebootDrv;EraserUtilRebootDrv;C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2012-11-6 138912]

S3 fssfltr;fssfltr;C:\windows\System32\drivers\fssfltr.sys [2012-7-16 48488]

S3 fsssvc;Windows Live Family Safety Service;C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2012-3-8 1492840]

S3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;C:\windows\System32\drivers\L1C62x64.sys [2011-4-20 169584]

S3 LgBttPort;LGE Bluetooth TransPort;C:\windows\System32\drivers\lgbtpt64.sys [2009-6-19 16384]

S3 LGVMODEM;LGE Virtual Modem;C:\windows\System32\drivers\lgvmdm64.sys [2009-6-19 17408]

S3 LVRS64;Logitech RightSound Filter Driver;C:\windows\System32\drivers\lvrs64.sys [2011-8-19 351136]

S3 LVUVC64;Logitech Webcam Pro 9000(UVC);C:\windows\System32\drivers\lvuvc64.sys [2011-8-19 4869024]

S3 MBAMProtector;MBAMProtector;C:\windows\System32\drivers\mbam.sys [2012-12-9 25928]

S3 PGEffect;Pangu effect driver;C:\windows\System32\drivers\PGEffect.sys [2010-11-6 35008]

S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;C:\windows\System32\drivers\RtsUStor.sys [2010-11-5 239136]

S3 rtl8192Ce;Realtek Wireless LAN 802.11n PCI-E NIC Driver;C:\windows\System32\drivers\rtl8192Ce.sys [2010-4-28 932384]

S3 Sftfs;Sftfs;C:\windows\System32\drivers\Sftfslh.sys [2011-10-1 764264]

S3 Sftplay;Sftplay;C:\windows\System32\drivers\Sftplaylh.sys [2011-10-1 268648]

S3 Sftredir;Sftredir;C:\windows\System32\drivers\Sftredirlh.sys [2011-10-1 25960]

S3 Sftvol;Sftvol;C:\windows\System32\drivers\Sftvollh.sys [2011-10-1 22376]

S3 sftvsa;Application Virtualization Service Agent;C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2011-10-1 219496]

S3 SrvHsfHDA;SrvHsfHDA;C:\windows\System32\drivers\VSTAZL6.SYS [2009-7-13 292864]

S3 SrvHsfV92;SrvHsfV92;C:\windows\System32\drivers\VSTDPV6.SYS [2009-7-13 1485312]

S3 SrvHsfWinac;SrvHsfWinac;C:\windows\System32\drivers\VSTCNXT6.SYS [2009-7-13 740864]

S3 TMachInfo;TMachInfo;C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe [2010-11-5 51512]

S3 TOSHIBA HDD SSD Alert Service;TOSHIBA HDD SSD Alert Service;C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe [2010-2-5 137560]

S3 TPCHSrv;TPCH Service;C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe [2010-2-23 835952]

S3 TsUsbFlt;TsUsbFlt;C:\windows\System32\drivers\TsUsbFlt.sys [2011-5-27 59392]

S3 USBAAPL64;Apple Mobile USB Driver;C:\windows\System32\drivers\usbaapl64.sys [2012-9-28 53760]

S3 WatAdminSvc;Windows Activation Technologies Service;C:\windows\System32\Wat\WatAdminSvc.exe [2011-1-15 1255736]

S4 wlcrasvc;Windows Live Mesh remote connections service;C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-9-22 57184]

.

=============== Created Last 30 ================

.

2012-12-09 20:28:52 20480 ----a-w- C:\windows\svchost.exe

2012-12-09 20:27:52 1082654 ----a-w- C:\ProgramData\SPLA218.tmp

2012-12-09 18:54:34 -------- d-----w- C:\Users\Nina\AppData\Roaming\Malwarebytes

2012-12-09 18:54:23 -------- d-----w- C:\ProgramData\Malwarebytes

2012-12-09 18:54:22 25928 ----a-w- C:\windows\System32\drivers\mbam.sys

2012-12-09 18:54:22 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware

2012-12-09 08:37:59 1082654 ----a-w- C:\ProgramData\SPL2AB7.tmp

2012-12-09 03:04:51 1082654 ----a-w- C:\ProgramData\SPLD9F9.tmp

2012-12-09 01:20:16 -------- d-----w- C:\ProgramData\Kaspersky Lab

2012-12-08 23:33:02 1082654 ----a-w- C:\ProgramData\SPL45A6.tmp

2012-12-06 03:32:49 1082654 ----a-w- C:\ProgramData\SPL446E.tmp

2012-12-05 02:17:34 -------- d-----w- C:\Python27

2012-12-04 20:41:22 -------- d-----w- C:\Program Files\iPod

2012-12-04 20:41:21 -------- d-----w- C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69

2012-12-04 20:41:21 -------- d-----w- C:\Program Files\iTunes

2012-12-04 20:13:26 1082654 ----a-w- C:\ProgramData\SPL27F9.tmp

2012-12-04 17:04:02 -------- d-----w- C:\Python22

2012-12-04 14:28:15 -------- d-----w- C:\Users\Nina\AppData\Roaming\MusicBrainz

2012-12-03 03:47:43 -------- d-----w- C:\Users\Nina\Magic MP3

2012-11-29 22:41:01 -------- d-----w- C:\Users\Nina\AppData\Roaming\Copyright © 2011-2012 RealNetworks

2012-11-29 22:40:56 -------- d-----w- C:\Users\Nina\AppData\Local\IsolatedStorage

2012-11-29 17:31:49 -------- d-----w- C:\Users\Nina\AppData\Roaming\rinsebyreal

2012-11-29 17:31:38 -------- d-----w- C:\Program Files (x86)\Rinse

2012-11-28 03:58:49 -------- d-----w- C:\Program Files (x86)\DVDVideoSoft

2012-11-28 03:58:49 -------- d-----w- C:\Program Files (x86)\Common Files\DVDVideoSoft

2012-11-27 22:01:25 -------- d-----w- C:\Users\Nina\AppData\Roaming\iFunbox_UserCache

2012-11-27 22:00:51 -------- d-----w- C:\Program Files (x86)\i-Funbox DevTeam

2012-11-27 20:01:25 1222840 ----a-w- C:\ProgramData\SPL2E2F.tmp

2012-11-22 04:52:21 696760 ----a-w- C:\windows\SysWow64\FlashPlayerApp.exe

2012-11-18 22:04:17 159744 ----a-w- C:\Program Files (x86)\Internet Explorer\Plugins\npqtplugin7.dll

2012-11-18 22:04:16 159744 ----a-w- C:\Program Files (x86)\Internet Explorer\Plugins\npqtplugin6.dll

2012-11-18 22:04:16 159744 ----a-w- C:\Program Files (x86)\Internet Explorer\Plugins\npqtplugin5.dll

2012-11-18 22:04:16 159744 ----a-w- C:\Program Files (x86)\Internet Explorer\Plugins\npqtplugin4.dll

2012-11-18 22:04:16 159744 ----a-w- C:\Program Files (x86)\Internet Explorer\Plugins\npqtplugin3.dll

2012-11-18 22:04:16 159744 ----a-w- C:\Program Files (x86)\Internet Explorer\Plugins\npqtplugin2.dll

2012-11-18 22:04:16 159744 ----a-w- C:\Program Files (x86)\Internet Explorer\Plugins\npqtplugin.dll

2012-11-18 21:59:09 33240 ----a-w- C:\windows\System32\drivers\GEARAspiWDM.sys

2012-11-17 22:34:15 -------- d-----w- C:\Program Files\Bonjour

2012-11-17 22:34:15 -------- d-----w- C:\Program Files (x86)\Bonjour

2012-11-14 21:08:54 2560 ----a-w- C:\windows\System32\drivers\en-US\wdf01000.sys.mui

2012-11-14 21:08:50 9728 ----a-w- C:\windows\System32\Wdfres.dll

2012-11-14 21:08:50 785512 ----a-w- C:\windows\System32\drivers\Wdf01000.sys

2012-11-14 21:08:50 54376 ----a-w- C:\windows\System32\drivers\WdfLdr.sys

2012-11-14 20:29:53 -------- d-----w- C:\801c805b9c39f1fe27

2012-11-14 09:05:40 87040 ----a-w- C:\windows\System32\drivers\WUDFPf.sys

2012-11-14 09:05:40 198656 ----a-w- C:\windows\System32\drivers\WUDFRd.sys

2012-11-14 09:05:34 84992 ----a-w- C:\windows\System32\WUDFSvc.dll

2012-11-14 09:05:34 194048 ----a-w- C:\windows\System32\WUDFPlatform.dll

2012-11-14 09:05:32 45056 ----a-w- C:\windows\System32\WUDFCoinstaller.dll

2012-11-14 09:05:30 744448 ----a-w- C:\windows\System32\WUDFx.dll

2012-11-14 09:05:30 229888 ----a-w- C:\windows\System32\WUDFHost.exe

2012-11-14 01:51:13 765952 ----a-w- C:\windows\SysWow64\msvcp71d.dll

2012-11-14 01:51:13 544768 ----a-w- C:\windows\SysWow64\msvcr71d.dll

2012-11-14 01:51:13 499712 ----a-w- C:\windows\SysWow64\msvcp71.dll

2012-11-14 01:51:13 348160 ----a-w- C:\windows\SysWow64\msvcr71.dll

2012-11-14 01:51:13 344064 ----a-w- C:\windows\SysWow64\msvcr70.dll

2012-11-14 01:51:10 -------- d-----w- C:\Program Files (x86)\ALCATEL PC Suite

.

==================== Find3M ====================

.

2012-11-22 05:54:12 73656 ----a-w- C:\windows\SysWow64\FlashPlayerCPLApp.cpl

2012-11-06 12:26:26 2430242 ----a-w- C:\ProgramData\SPLA5A1.tmp

2012-11-06 11:31:33 2430242 ----a-w- C:\ProgramData\SPL3EA4.tmp

2012-11-04 23:42:29 2430242 ----a-w- C:\ProgramData\SPL4F76.tmp

2012-10-25 09:12:26 94208 ----a-w- C:\windows\SysWow64\QuickTimeVR.qtx

2012-10-25 09:12:26 69632 ----a-w- C:\windows\SysWow64\QuickTime.qts

2012-10-18 18:25:58 3149824 ----a-w- C:\windows\System32\win32k.sys

2012-10-16 08:38:37 135168 ----a-w- C:\windows\apppatch\AppPatch64\AcXtrnal.dll

2012-10-16 08:38:34 350208 ----a-w- C:\windows\apppatch\AppPatch64\AcLayers.dll

2012-10-16 07:39:52 561664 ----a-w- C:\windows\apppatch\AcLayers.dll

2012-10-09 18:17:13 55296 ----a-w- C:\windows\System32\dhcpcsvc6.dll

2012-10-09 18:17:13 226816 ----a-w- C:\windows\System32\dhcpcore6.dll

2012-10-09 17:40:31 44032 ----a-w- C:\windows\SysWow64\dhcpcsvc6.dll

2012-10-09 17:40:31 193536 ----a-w- C:\windows\SysWow64\dhcpcore6.dll

2012-10-08 11:31:03 2312704 ----a-w- C:\windows\System32\jscript9.dll

2012-10-08 11:23:52 1392128 ----a-w- C:\windows\System32\wininet.dll

2012-10-08 11:22:55 1494528 ----a-w- C:\windows\System32\inetcpl.cpl

2012-10-08 11:18:22 173056 ----a-w- C:\windows\System32\ieUnatt.exe

2012-10-08 11:17:35 599040 ----a-w- C:\windows\System32\vbscript.dll

2012-10-08 11:13:33 2382848 ----a-w- C:\windows\System32\mshtml.tlb

2012-10-08 07:56:24 1800704 ----a-w- C:\windows\SysWow64\jscript9.dll

2012-10-08 07:48:03 1129472 ----a-w- C:\windows\SysWow64\wininet.dll

2012-10-08 07:47:44 1427968 ----a-w- C:\windows\SysWow64\inetcpl.cpl

2012-10-08 07:44:05 142848 ----a-w- C:\windows\SysWow64\ieUnatt.exe

2012-10-08 07:43:21 420864 ----a-w- C:\windows\SysWow64\vbscript.dll

2012-10-08 07:40:56 2382848 ----a-w- C:\windows\SysWow64\mshtml.tlb

2012-10-03 17:56:54 1914248 ----a-w- C:\windows\System32\drivers\tcpip.sys

2012-10-03 17:44:21 70656 ----a-w- C:\windows\System32\nlaapi.dll

2012-10-03 17:44:21 303104 ----a-w- C:\windows\System32\nlasvc.dll

2012-10-03 17:44:17 246272 ----a-w- C:\windows\System32\netcorehc.dll

2012-10-03 17:44:17 18944 ----a-w- C:\windows\System32\netevent.dll

2012-10-03 17:44:16 216576 ----a-w- C:\windows\System32\ncsi.dll

2012-10-03 17:42:16 569344 ----a-w- C:\windows\System32\iphlpsvc.dll

2012-10-03 16:42:24 18944 ----a-w- C:\windows\SysWow64\netevent.dll

2012-10-03 16:42:24 175104 ----a-w- C:\windows\SysWow64\netcorehc.dll

2012-10-03 16:42:23 156672 ----a-w- C:\windows\SysWow64\ncsi.dll

2012-10-03 16:07:26 45568 ----a-w- C:\windows\System32\drivers\tcpipreg.sys

2012-09-28 16:32:56 5989776 ----a-w- C:\windows\System32\usbaaplrc.dll

2012-09-28 16:32:56 53760 ----a-w- C:\windows\System32\drivers\usbaapl64.sys

2012-09-25 22:47:43 78336 ----a-w- C:\windows\SysWow64\synceng.dll

2012-09-25 22:46:17 95744 ----a-w- C:\windows\System32\synceng.dll

2012-09-14 19:19:29 2048 ----a-w- C:\windows\System32\tzres.dll

2012-09-14 18:28:53 2048 ----a-w- C:\windows\SysWow64\tzres.dll

.

============= FINISH: 14:36:50.62 ===============

Thank you in advance.

attach.zip

Link to post
Share on other sites

  • Staff

Greetings and Welcome to The Forums!!

My name is Gringo and I'll be glad to help you with your malware problems.

I have put together somethings for you to keep in mind while I am helping you to make things go easier and faster for both of us


  • Please do not run any tools unless instructed to do so.
    • We ask you to run different tools in a specific order to ensure the malware is completely removed from your machine, and running any additional tools may detect false positives, interfere with our tools, or cause unforeseen damage or system instability.

    [*]Please do not attach logs or use code boxes, just copy and paste the text.

    • Due to the high volume of logs we receive it helps to receive everything in the same format, and code boxes make the logs very difficult to read. Also, attachments require us to download and open the reports when it is easier to just read the reports in your post.

    [*]Please read every post completely before doing anything.

    • Pay special attention to the NOTE: lines, these entries identify an individual issue or important step in the cleanup process.

    [*]Please provide feedback about your experience as we go.

    • A short statement describing how the computer is working helps us understand where to go next, for example: I am still getting redirected, the computer is running normally, etc. Please do not describe the computer as "the same", this requires the extra step of looking back at your previous post.

NOTE: At the top of your post, click on the Watch Topic Button, select Immediate Notification, and click on Proceed. This will send you an e-mail as soon as I reply to your topic, allowing us to resolve the issue faster.

NOTE: Backup any files that cannot be replaced. Removing malware can be unpredictable and this step can save a lot of heartaches if things don't go as planed. You can put them on a CD/DVD, external drive or a pen drive, anywhere except on the computer.

NOTE: It is good practice to copy and paste the instructions into notepad and print them in case it is necessary for you to go offline during the cleanup process. To open notepad, navigate to Start Menu > All Programs > Accessories > Notepad. Please remember to copy the entire post so you do not miss any instructions.

These are the programs I would like you to run next, if you have any problems with these just skip it and run the next one.

-Security Check-

  • Download Security Check by screen317 from
here.
  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.

-AdwCleaner-

  • Please download
AdwCleaner by Xplode onto your desktop.
  • Close all open programs and internet browsers.
  • Double click on AdwCleaner.exe to run the tool.
  • Click on Delete.
  • Confirm each time with Ok.
  • Your computer will be rebooted automatically. A text file will open after the restart.
  • Please post the content of that logfile with your next answer.
  • You can find the logfile at C:\AdwCleaner[s1].txt as well.

--RogueKiller--

  • Download & SAVE to your Desktop RogueKiller or from here
    • Quit all programs that you may have started.
    • Please disconnect any USB or external drives from the computer before you run this scan!
    • For Vista or Windows 7, right-click and select "Run as Administrator to start"
    • For Windows XP, double-click to start.
    • Wait until Prescan has finished ...
    • Then Click on "Scan" button
    • Wait until the Status box shows "Scan Finished"
    • click on "delete"
    • Wait until the Status box shows "Deleting Finished"
    • Click on "Report" and copy/paste the content of the Notepad into your next reply.
    • The log should be found in RKreport[1].txt on your Desktop
    • Exit/Close RogueKiller+

Gringo

Link to post
Share on other sites

Results of screen317's Security Check version 0.99.56

Windows 7 Service Pack 1 x64 (UAC is enabled)

Internet Explorer 9

``````````````Antivirus/Firewall Check:``````````````

Windows Security Center service is not running! This report may not be accurate!

Norton Internet Security

WMI entry may not exist for antivirus; attempting automatic update.

`````````Anti-malware/Other Utilities Check:`````````

MVPS Hosts File

Spybot - Search & Destroy

Malwarebytes Anti-Malware version 1.65.1.1000

Java 6 Update 26

Java 6 Update 20

Java version out of Date!

Adobe Flash Player 11.4.402.287 Flash Player out of Date!

Adobe Reader 9 Adobe Reader out of Date!

Google Chrome 21.0.1180.83

Google Chrome 21.0.1180.89

Google Chrome 22.0.1229.79

Google Chrome 22.0.1229.94

Google Chrome 23.0.1271.64

Google Chrome 23.0.1271.91

Google Chrome 23.0.1271.95

````````Process Check: objlist.exe by Laurent````````

`````````````````System Health check`````````````````

Total Fragmentation on Drive C:

````````````````````End of Log``````````````````````

RogueKiller V8.3.2 [Dec 7 2012] by Tigzy

mail : tigzyRK<at>gmail<dot>com

Feedback : http://www.geekstogo.com/forum/files/file/413-roguekiller/

Website : http://tigzy.geekstogo.com/roguekiller.php

Blog : http://tigzyrk.blogspot.com/

Operating System : Windows 7 (6.1.7601 Service Pack 1) 64 bits version

Started in : Safe mode with network support

User : Nina [Admin rights]

Mode : Remove -- Date : 12/09/2012 15:42:53

¤¤¤ Bad processes : 2 ¤¤¤

[sVCHOST] svchost.exe -- \\.\globalroot\systemroot\svchost.exe -> KILLED [TermProc]

[sUSP PATH] adwcleaner.exe -- C:\Users\Nina\Desktop\adwcleaner.exe -> KILLED [TermProc]

¤¤¤ Registry Entries : 6 ¤¤¤

[RUN][sUSP PATH] HKCU\[...]\RunOnce : SpybotDeletingB481 (command.com /c del "C:\Windows\svchost.exe_old") -> DELETED

[RUN][sUSP PATH] HKCU\[...]\RunOnce : SpybotDeletingD8323 (cmd.exe /c del "C:\Windows\svchost.exe_old") -> DELETED

[RUN][sUSP PATH] HKLM\[...]\Wow6432Node\RunOnce : SpybotDeletingA8577 (command.com /c del "C:\Windows\svchost.exe_old") -> DELETED

[RUN][sUSP PATH] HKLM\[...]\Wow6432Node\RunOnce : SpybotDeletingC7554 (cmd.exe /c del "C:\Windows\svchost.exe_old") -> DELETED

[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> REPLACED (0)

[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REPLACED (0)

¤¤¤ Particular Files / Folders: ¤¤¤

¤¤¤ Driver : [NOT LOADED] ¤¤¤

¤¤¤ HOSTS File: ¤¤¤

--> C:\windows\system32\drivers\etc\hosts

127.0.0.1 www.007guard.com

127.0.0.1 007guard.com

127.0.0.1 008i.com

127.0.0.1 www.008k.com

127.0.0.1 008k.com

127.0.0.1 www.00hq.com

127.0.0.1 00hq.com

127.0.0.1 010402.com

127.0.0.1 www.032439.com

127.0.0.1 032439.com

127.0.0.1 www.0scan.com

127.0.0.1 0scan.com

127.0.0.1 www.1000gratisproben.com

127.0.0.1 1000gratisproben.com

127.0.0.1 1001namen.com

127.0.0.1 www.1001namen.com

127.0.0.1 100888290cs.com

127.0.0.1 www.100888290cs.com

127.0.0.1 www.100sexlinks.com

127.0.0.1 100sexlinks.com

[...]

¤¤¤ MBR Check: ¤¤¤

+++++ PhysicalDrive0: Hitachi HTS545025B9A300 ATA Device +++++

--- User ---

[MBR] 51d58f286accaa0fb7111f2920281239

[bSP] 1d2d0a7d94f462bbd182eb7df44c25b4 : Windows Vista MBR Code

Partition table:

0 - [ACTIVE] ACER (0x27) [VISIBLE] Offset (sectors): 2048 | Size: 1500 Mo

1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 3074048 | Size: 226673 Mo

2 - [XXXXXX] NTFS (0x17) [HIDDEN!] Offset (sectors): 467300352 | Size: 10301 Mo

User = LL1 ... OK!

User != LL2 ... KO!

--- LL2 ---

[MBR] 60bca39ca9a16c1c1a73754cc78289ec

[bSP] 1d2d0a7d94f462bbd182eb7df44c25b4 : Windows Vista MBR Code

Partition table:

1 - [ACTIVE] ACER (0x27) [VISIBLE] Offset (sectors): 2048 | Size: 1500 Mo

2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 3074048 | Size: 226673 Mo

3 - [XXXXXX] NTFS (0x17) [HIDDEN!] Offset (sectors): 467300352 | Size: 10301 Mo

Finished : << RKreport[2]_D_12092012_02d1542.txt >>

RKreport[1]_S_12092012_02d1541.txt ; RKreport[2]_D_12092012_02d1542.txt

Link to post
Share on other sites

# AdwCleaner v2.100 - Logfile created 12/09/2012 at 15:45:25

# Updated 09/12/2012 by Xplode

# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)

# User : Nina - NINA-PC

# Boot Mode : Safe mode with networking

# Running from : C:\Users\Nina\Desktop\adwcleaner.exe

# Option [Delete]

***** [services] *****

***** [Files / Folders] *****

Folder Deleted : C:\ProgramData\Partner

***** [Registry] *****

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{00000000-6E41-4FD3-8538-502F5495E5FC}

Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{11549FE4-7C5A-4C17-9FC3-56FC5162A994}

Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{92E5039E-FF1E-4AFB-8F24-87592D20C383}

Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{20E1481B-E285-4ABC-ADC7-AE24842B81CD}

Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}

Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}

Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}

Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}

Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{CD95D125-2992-4858-B3EF-5F6FB52FBAD6}

Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}

Key Deleted : HKLM\SOFTWARE\Software

Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{00000000-6E41-4FD3-8538-502F5495E5FC}]

***** [internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16455

[OK] Registry is clean.

-\\ Google Chrome v23.0.1271.95

File : C:\Users\Nina\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[s1].txt - [1835 octets] - [09/12/2012 15:45:25]

########## EOF - C:\AdwCleaner[s1].txt - [1895 octets] ##########

Link to post
Share on other sites

  • Staff

Hello

I Would like you to do the following.

Please print out or make a copy in notpad of any instructions given, as sometimes it is necessary to go offline and you will lose access to them.

Run Combofix:

You may be asked to install or update the Recovery Console (Win XP Only) if this happens please allow it to do so (you will need to be connected to the internet for this)

Before you run Combofix I will need you to turn off any security software you have running, If you do not know how to do this you can find out >here< or >here<

Combofix may need to reboot your computer more than once to do its job this is normal.

You can download Combofix from one of these links. I want you to save it to the desktop and run it from there.

Link 1
Link 2
Link 3

1. Close any open browsers or any other programs that are open.

2. Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.

Double click on combofix.exe & follow the prompts.

When finished, it will produce a report for you.

Note 1: Do not mouseclick combofix's window while it's running. That may cause it to stall

Note 2: If you recieve an error "Illegal operation attempted on a registery key that has been marked for deletion." Please restart the computer

"information and logs"

  • In your next post I need the following
  • Log from Combofix
  • let me know of any problems you may have had
  • How is the computer doing now?

Gringo

Link to post
Share on other sites

ComboFix 12-12-07.01 - Nina 12/09/2012 17:57:06.1.2 - x64 NETWORK

Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.2811.2286 [GMT -6:00]

Running from: c:\users\Nina\Desktop\ComboFix.exe

AV: Norton Internet Security *Enabled/Updated* {63DF5164-9100-186D-2187-8DC619EFD8BF}

FW: Norton Internet Security *Enabled* {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4}

SP: Norton Internet Security *Enabled/Updated* {D8BEB080-B73A-17E3-1B37-B6B462689202}

SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

* Created a new restore point

.

.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))

.

.

c:\programdata\4829B310sm.pad

c:\programdata\SPL231.tmp

c:\programdata\SPL27F9.tmp

c:\programdata\SPL2AB7.tmp

c:\programdata\SPL2E2F.tmp

c:\programdata\SPL3CB9.tmp

c:\programdata\SPL3EA4.tmp

c:\programdata\SPL446E.tmp

c:\programdata\SPL45A6.tmp

c:\programdata\SPL4F76.tmp

c:\programdata\SPL637.tmp

c:\programdata\SPL9D86.tmp

c:\programdata\SPLA218.tmp

c:\programdata\SPLA5A1.tmp

c:\programdata\SPLB8C0.tmp

c:\programdata\SPLD49D.tmp

c:\programdata\SPLD9AB.tmp

c:\programdata\SPLD9F9.tmp

c:\programdata\SPLDEBA.tmp

c:\programdata\SPLF0D3.tmp

c:\windows\svchost.exe

c:\windows\wininit.ini

.

.

((((((((((((((((((((((((( Files Created from 2012-11-10 to 2012-12-10 )))))))))))))))))))))))))))))))

.

.

2012-12-10 00:07 . 2012-12-10 00:07 -------- d-----w- c:\users\Default\AppData\Local\temp

2012-12-09 18:54 . 2012-12-09 18:54 -------- d-----w- c:\users\Nina\AppData\Roaming\Malwarebytes

2012-12-09 18:54 . 2012-12-09 18:54 -------- d-----w- c:\programdata\Malwarebytes

2012-12-09 18:54 . 2012-12-09 18:54 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware

2012-12-09 18:54 . 2012-09-30 01:54 25928 ----a-w- c:\windows\system32\drivers\mbam.sys

2012-12-09 01:20 . 2012-12-09 01:20 -------- d-----w- c:\programdata\Kaspersky Lab

2012-12-05 02:17 . 2012-12-05 02:19 -------- d-----w- C:\Python27

2012-12-04 20:41 . 2012-12-04 20:41 -------- d-----w- c:\program files\iPod

2012-12-04 20:41 . 2012-12-04 20:41 -------- d-----w- c:\programdata\34BE82C4-E596-4e99-A191-52C6199EBF69

2012-12-04 20:41 . 2012-12-04 20:41 -------- d-----w- c:\program files\iTunes

2012-12-04 17:04 . 2012-12-04 20:07 -------- d-----w- C:\Python22

2012-12-04 14:28 . 2012-12-04 14:28 -------- d-----w- c:\users\Nina\AppData\Roaming\MusicBrainz

2012-12-03 03:47 . 2012-12-04 16:41 -------- d-----w- c:\users\Nina\Magic MP3

2012-11-29 22:41 . 2012-11-29 22:41 -------- d-----w- c:\users\Nina\AppData\Roaming\Copyright © 2011-2012 RealNetworks

2012-11-29 22:40 . 2012-11-29 22:40 -------- d-----w- c:\users\Nina\AppData\Local\IsolatedStorage

2012-11-29 17:31 . 2012-11-29 17:31 -------- d-----w- c:\users\Nina\AppData\Roaming\rinsebyreal

2012-11-29 17:31 . 2012-12-04 20:07 -------- d-----w- c:\program files (x86)\Rinse

2012-11-29 17:31 . 2012-11-29 17:31 -------- d-----w- c:\program files (x86)\Common Files\Adobe AIR

2012-11-28 03:58 . 2012-11-28 03:58 -------- d-----w- c:\program files (x86)\Common Files\DVDVideoSoft

2012-11-28 03:58 . 2012-11-28 03:58 -------- d-----w- c:\program files (x86)\DVDVideoSoft

2012-11-27 22:01 . 2012-11-28 02:44 -------- d-----w- c:\users\Nina\AppData\Roaming\iFunbox_UserCache

2012-11-27 22:00 . 2012-11-28 04:03 -------- d-----w- c:\program files (x86)\i-Funbox DevTeam

2012-11-22 04:52 . 2012-11-22 05:54 696760 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe

2012-11-18 22:04 . 2012-11-18 22:04 159744 ----a-w- c:\program files (x86)\Internet Explorer\Plugins\npqtplugin7.dll

2012-11-18 22:04 . 2012-11-18 22:04 159744 ----a-w- c:\program files (x86)\Internet Explorer\Plugins\npqtplugin6.dll

2012-11-18 22:04 . 2012-11-18 22:04 159744 ----a-w- c:\program files (x86)\Internet Explorer\Plugins\npqtplugin5.dll

2012-11-18 22:04 . 2012-11-18 22:04 159744 ----a-w- c:\program files (x86)\Internet Explorer\Plugins\npqtplugin4.dll

2012-11-18 22:04 . 2012-11-18 22:04 159744 ----a-w- c:\program files (x86)\Internet Explorer\Plugins\npqtplugin3.dll

2012-11-18 22:04 . 2012-11-18 22:04 159744 ----a-w- c:\program files (x86)\Internet Explorer\Plugins\npqtplugin2.dll

2012-11-18 22:04 . 2012-11-18 22:04 159744 ----a-w- c:\program files (x86)\Internet Explorer\Plugins\npqtplugin.dll

2012-11-18 22:03 . 2012-11-18 22:04 -------- d-----w- c:\program files (x86)\QuickTime

2012-11-18 21:59 . 2012-08-21 19:01 33240 ----a-w- c:\windows\system32\drivers\GEARAspiWDM.sys

2012-11-17 22:34 . 2012-11-17 22:34 -------- d-----w- c:\program files\Bonjour

2012-11-17 22:34 . 2012-11-17 22:34 -------- d-----w- c:\program files (x86)\Bonjour

2012-11-14 21:08 . 2012-07-26 04:47 2560 ----a-w- c:\windows\system32\drivers\en-US\wdf01000.sys.mui

2012-11-14 21:08 . 2012-07-26 04:55 785512 ----a-w- c:\windows\system32\drivers\Wdf01000.sys

2012-11-14 21:08 . 2012-07-26 04:55 54376 ----a-w- c:\windows\system32\drivers\WdfLdr.sys

2012-11-14 21:08 . 2012-07-26 02:36 9728 ----a-w- c:\windows\system32\Wdfres.dll

2012-11-14 20:29 . 2012-11-14 20:29 -------- d-----w- C:\801c805b9c39f1fe27

2012-11-14 09:05 . 2012-07-26 02:26 87040 ----a-w- c:\windows\system32\drivers\WUDFPf.sys

2012-11-14 09:05 . 2012-07-26 02:26 198656 ----a-w- c:\windows\system32\drivers\WUDFRd.sys

2012-11-14 09:05 . 2012-07-26 03:08 84992 ----a-w- c:\windows\system32\WUDFSvc.dll

2012-11-14 09:05 . 2012-07-26 03:08 194048 ----a-w- c:\windows\system32\WUDFPlatform.dll

2012-11-14 09:05 . 2012-07-26 03:08 45056 ----a-w- c:\windows\system32\WUDFCoinstaller.dll

2012-11-14 09:05 . 2012-07-26 03:08 229888 ----a-w- c:\windows\system32\WUDFHost.exe

2012-11-14 09:05 . 2012-07-26 03:08 744448 ----a-w- c:\windows\system32\WUDFx.dll

2012-11-14 01:51 . 2005-08-31 23:14 499712 ----a-w- c:\windows\SysWow64\msvcp71.dll

2012-11-14 01:51 . 2003-03-19 02:04 765952 ----a-w- c:\windows\SysWow64\msvcp71d.dll

2012-11-14 01:51 . 2003-03-19 02:03 544768 ----a-w- c:\windows\SysWow64\msvcr71d.dll

2012-11-14 01:51 . 2003-02-21 20:42 348160 ----a-w- c:\windows\SysWow64\msvcr71.dll

2012-11-14 01:51 . 2002-01-05 09:37 344064 ----a-w- c:\windows\SysWow64\msvcr70.dll

2012-11-14 01:51 . 2012-11-22 05:19 -------- d-----w- c:\program files (x86)\ALCATEL PC Suite

.

.

.

(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))

.

2012-11-22 05:54 . 2012-01-04 03:00 73656 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl

2012-11-14 20:29 . 2011-01-17 09:00 66395536 ----a-w- c:\windows\system32\MRT.exe

2012-10-25 09:12 . 2012-10-25 09:12 94208 ----a-w- c:\windows\SysWow64\QuickTimeVR.qtx

2012-10-25 09:12 . 2012-10-25 09:12 69632 ----a-w- c:\windows\SysWow64\QuickTime.qts

2012-10-16 08:38 . 2012-11-29 04:08 135168 ----a-w- c:\windows\apppatch\AppPatch64\AcXtrnal.dll

2012-10-16 08:38 . 2012-12-04 20:24 350208 ----a-w- c:\windows\apppatch\AppPatch64\AcLayers.dll

2012-10-16 07:39 . 2012-12-04 20:24 561664 ----a-w- c:\windows\apppatch\AcLayers.dll

2012-09-28 16:32 . 2012-09-28 16:32 5989776 ----a-w- c:\windows\system32\usbaaplrc.dll

2012-09-28 16:32 . 2012-09-28 16:32 53760 ----a-w- c:\windows\system32\drivers\usbaapl64.sys

2012-09-14 19:19 . 2012-10-10 02:36 2048 ----a-w- c:\windows\system32\tzres.dll

2012-09-14 18:28 . 2012-10-10 02:36 2048 ----a-w- c:\windows\SysWow64\tzres.dll

.

.

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))

.

.

*Note* empty entries & legit default entries are not shown

REGEDIT4

.

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"SpybotSD TeaTimer"="c:\program files (x86)\Spybot - Search & Destroy\TeaTimer.exe" [2009-03-05 2260480]

"OM2_Monitor"="c:\program files (x86)\OLYMPUS\OLYMPUS Master 2\MMonitor.exe" [2009-11-26 95632]

"iCloudServices"="c:\program files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe" [2012-11-28 59280]

"ApplePhotoStreams"="c:\program files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe" [2012-11-28 59280]

"com.apple.dav.bookmarks.daemon"="c:\program files (x86)\Common Files\Apple\Internet Services\BookmarkDAV_client.exe" [2012-11-28 59280]

"iFunBoxConnector"="c:\program files (x86)\i-Funbox DevTeam\ifb_conn.exe" [2012-11-20 812544]

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]

"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-03-15 98304]

"ToshibaServiceStation"="c:\program files (x86)\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe" [2009-10-06 1294136]

"TWebCamera"="c:\program files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe" [2010-02-24 2454840]

"ToshibaAppPlace"="c:\program files (x86)\Toshiba\Toshiba App Place\ToshibaAppPlace.exe" [2010-06-11 552960]

"MaxMenuMgr"="c:\program files (x86)\Seagate\SeagateManager\FreeAgent Status\StxMenuMgr.exe" [2009-12-18 197928]

"BCSSync"="c:\program files (x86)\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 91520]

"AppleSyncNotifier"="c:\program files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe" [2010-12-14 47904]

"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2011-04-08 254696]

"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-11-28 59280]

"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2012-10-25 421888]

"iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe" [2012-11-29 151952]

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\RunOnce]

"Malwarebytes Anti-Malware"="c:\program files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" [2012-09-30 766536]

.

c:\users\Nina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\

Dropbox.lnk - c:\users\Nina\AppData\Roaming\Dropbox\bin\Dropbox.exe [2012-11-21 28791288]

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]

"ConsentPromptBehaviorAdmin"= 5 (0x5)

"ConsentPromptBehaviorUser"= 3 (0x3)

"EnableUIADesktopToggle"= 0 (0x0)

.

R1 BHDrvx64;BHDrvx64;c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.1.2\Definitions\BASHDefs\20121130.005_e0a\BHDrvx64.sys [2012-11-30 1384608]

R1 ccSet_N360;Norton 360 Settings Manager;c:\windows\system32\drivers\N360x64\0604000.009\ccSetx64.sys [2012-06-07 167072]

R1 IDSVia64;IDSVia64;c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.1.2\Definitions\IPSDefs\20121205.001\IDSvia64.sys [2012-12-02 513184]

R1 SymIRON;Symantec Iron Driver;c:\windows\system32\drivers\N360x64\0604000.009\Ironx64.SYS [2011-11-17 190072]

R1 SymNetS;Symantec Network Security WFP Driver;c:\windows\System32\Drivers\N360x64\0604000.009\SYMNETS.SYS [2011-11-17 405624]

R2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2010-03-15 202752]

R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]

R2 cvhsvc;Client Virtualization Handler;c:\program files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [2012-01-04 822624]

R2 FreeAgentGoNext Service;Seagate Service;c:\program files (x86)\Seagate\SeagateManager\Sync\FreeAgentService.exe [2009-12-18 189736]

R2 lxee_device;lxee_device;c:\windows\system32\lxeecoms.exe [2010-04-15 1052328]

R2 lxeeCATSCustConnectService;lxeeCATSCustConnectService;c:\windows\system32\spool\DRIVERS\x64\3\\lxeeserv.exe [2010-04-15 45736]

R2 MBAMScheduler;MBAMScheduler;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2012-09-30 399432]

R2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-09-30 676936]

R2 N360;Norton 360;c:\program files (x86)\Norton 360 Premier Edition\Engine\6.4.0.9\ccSvcHst.exe [2012-06-16 138272]

R2 Norton PC Checkup Application Launcher;Norton PC Checkup Application Launcher;c:\program files (x86)\PC Checkup\SymcPCCULaunchSvc.exe [2012-08-14 131512]

R2 PCCUJobMgr;Common Client Job Manager Service;c:\program files (x86)\Norton PC Checkup\Engine\2.0.3.198\ccSvcHst.exe [2009-08-24 126392]

R2 SBSDWSCService;SBSD Security Center Service;c:\program files (x86)\Spybot - Search & Destroy\SDWinSec.exe [2009-01-26 1153368]

R2 sftlist;Application Virtualization Client;c:\program files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2011-10-01 508776]

R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2012-07-13 160944]

R2 TomTomHOMEService;TomTomHOMEService;c:\program files (x86)\TomTom HOME 2\TomTomHOMEService.exe [2011-04-22 92592]

R2 TOSHIBA eco Utility Service;TOSHIBA eco Utility Service;c:\program files\TOSHIBA\TECO\TecoService.exe [2010-02-26 252928]

R2 UMVPFSrv;UMVPFSrv;c:\program files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe [2011-08-19 450848]

R3 actccid;ActivCard USB Reader V2;c:\windows\system32\DRIVERS\actccid.sys [x]

R3 BBSvc;Bing Bar Update Service;c:\program files (x86)\Microsoft\BingBar\BBSvc.EXE [2011-03-01 183560]

R3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2012-11-06 138912]

R3 LgBttPort;LGE Bluetooth TransPort;c:\windows\system32\DRIVERS\lgbtpt64.sys [2009-06-19 16384]

R3 LGVMODEM;LGE Virtual Modem;c:\windows\system32\DRIVERS\lgvmdm64.sys [2009-06-19 17408]

R3 LVRS64;Logitech RightSound Filter Driver;c:\windows\system32\DRIVERS\lvrs64.sys [2011-08-19 351136]

R3 LVUVC64;Logitech Webcam Pro 9000(UVC);c:\windows\system32\DRIVERS\lvuvc64.sys [2011-08-19 4869024]

R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2012-09-30 25928]

R3 PGEffect;Pangu effect driver;c:\windows\system32\DRIVERS\pgeffect.sys [2009-06-23 35008]

R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys [2010-02-09 239136]

R3 Sftfs;Sftfs;c:\windows\system32\DRIVERS\Sftfslh.sys [2011-10-01 764264]

R3 Sftplay;Sftplay;c:\windows\system32\DRIVERS\Sftplaylh.sys [2011-10-01 268648]

R3 Sftredir;Sftredir;c:\windows\system32\DRIVERS\Sftredirlh.sys [2011-10-01 25960]

R3 Sftvol;Sftvol;c:\windows\system32\DRIVERS\Sftvollh.sys [2011-10-01 22376]

R3 sftvsa;Application Virtualization Service Agent;c:\program files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2011-10-01 219496]

R3 SrvHsfHDA;SrvHsfHDA;c:\windows\system32\DRIVERS\VSTAZL6.SYS [2009-06-10 292864]

R3 SrvHsfV92;SrvHsfV92;c:\windows\system32\DRIVERS\VSTDPV6.SYS [2009-06-10 1485312]

R3 SrvHsfWinac;SrvHsfWinac;c:\windows\system32\DRIVERS\VSTCNXT6.SYS [2009-06-10 740864]

R3 TMachInfo;TMachInfo;c:\program files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe [2009-10-06 51512]

R3 TOSHIBA HDD SSD Alert Service;TOSHIBA HDD SSD Alert Service;c:\program files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe [2010-02-06 137560]

R3 TPCHSrv;TPCH Service;c:\program files\TOSHIBA\TPHM\TPCHSrv.exe [2010-02-24 835952]

R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]

R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys [2012-09-28 53760]

R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe [2011-01-14 1255736]

R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-23 57184]

S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys [2006-07-24 52664]

S0 SymDS;Symantec Data Store;c:\windows\system32\drivers\N360x64\0604000.009\SYMDS64.SYS [2011-08-16 451192]

S0 SymEFA;Symantec Extended File Attributes;c:\windows\system32\drivers\N360x64\0604000.009\SYMEFA64.SYS [2012-05-22 1129120]

S2 TVALZFL;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Filter Driver;c:\windows\system32\DRIVERS\TVALZFL.sys [2009-06-20 14472]

S3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C62x64.sys [2011-04-20 169584]

S3 lgbusenum;LG Bluetooth Bus Enumerator;c:\windows\system32\DRIVERS\lgbtbs64.sys [2009-06-19 14848]

S3 QIOMem;Generic IO & Memory Access;c:\windows\system32\DRIVERS\QIOMem.sys [2009-06-15 12800]

S3 rtl8192Ce;Realtek Wireless LAN 802.11n PCI-E NIC Driver;c:\windows\system32\DRIVERS\rtl8192Ce.sys [2010-04-28 932384]

.

.

--- Other Services/Drivers In Memory ---

.

*NewlyCreated* - PXHLPA64

.

Contents of the 'Scheduled Tasks' folder

.

2012-12-09 c:\windows\Tasks\Adobe Flash Player Updater.job

- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-11-22 05:54]

.

2012-12-09 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job

- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-07-19 01:28]

.

2012-12-09 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job

- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-07-19 01:28]

.

.

--------- X64 Entries -----------

.

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]

@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"

[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]

2012-11-13 23:32 162552 ----a-w- c:\users\Nina\AppData\Roaming\Dropbox\bin\DropboxExt64.17.dll

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]

@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"

[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]

2012-11-13 23:32 162552 ----a-w- c:\users\Nina\AppData\Roaming\Dropbox\bin\DropboxExt64.17.dll

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]

@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"

[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]

2012-11-13 23:32 162552 ----a-w- c:\users\Nina\AppData\Roaming\Dropbox\bin\DropboxExt64.17.dll

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]

@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"

[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]

2012-11-13 23:32 162552 ----a-w- c:\users\Nina\AppData\Roaming\Dropbox\bin\DropboxExt64.17.dll

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"cAudioFilterAgent"="c:\program files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe" [2010-03-10 520760]

"SmartAudio"="c:\program files\CONEXANT\SAII\SAIICpl.exe" [2010-04-28 307768]

"TosVolRegulator"="c:\program files\TOSHIBA\TosVolRegulator\TosVolRegulator.exe" [2009-11-11 24376]

"TosSENotify"="c:\program files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe" [2010-02-06 709976]

.

------- Supplementary Scan -------

.

uLocal Page = c:\windows\system32\blank.htm

uStart Page = hxxp://www.google.com/ig/redirectdomain?brand=TSND&bmod=TSND

mDefault_Page_URL = hxxp://www.google.com/ig/redirectdomain?brand=TSND&bmod=TSND

mStart Page = hxxp://www.google.com/ig/redirectdomain?brand=TSND&bmod=TSND

mLocal Page = c:\windows\SysWOW64\blank.htm

uInternet Settings,ProxyOverride = <local>;*.local

IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~4\Office14\EXCEL.EXE/3000

IE: Free YouTube to MP3 Converter - c:\users\Nina\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm

IE: Se&nd to OneNote - c:\progra~2\MICROS~4\Office14\ONBttnIE.dll/105

TCP: DhcpNameServer = 192.168.254.254

.

- - - - ORPHANS REMOVED - - - -

.

Toolbar-Locked - (no file)

Wow6432Node-HKCU-Run-swg - c:\program files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

Wow6432Node-HKLM-Run-TaskTray - (no file)

Wow6432Node-HKLM-RunOnce-Malwarebytes Anti-Malware (cleanup) - c:\programdata\Malwarebytes\Malwarebytes' Anti-Malware\cleanup.dll

Toolbar-Locked - (no file)

HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe

HKLM-Run-TPwrMain - c:\program files (x86)\TOSHIBA\Power Saver\TPwrMain.EXE

HKLM-Run-HSON - c:\program files (x86)\TOSHIBA\TBS\HSON.exe

AddRemove-Free Audio CD Burner_is1 - c:\program files (x86)\DVDVideoSoft\Free Audio CD Burner\unins000.exe

AddRemove-Uninstall_is1 - c:\program files (x86)\Common Files\DVDVideoSoft\unins000.exe

.

.

.

[HKEY_LOCAL_MACHINE\system\ControlSet001\services\N360]

"ImagePath"="\"c:\program files (x86)\Norton 360 Premier Edition\Engine\6.4.0.9\ccSvcHst.exe\" /s \"N360\" /m \"c:\program files (x86)\Norton 360 Premier Edition\Engine\6.4.0.9\diMaster.dll\" /prefetch:1"

--

.

[HKEY_LOCAL_MACHINE\system\ControlSet001\services\PCCUJobMgr]

"ImagePath"="\"c:\program files (x86)\Norton PC Checkup\Engine\2.0.3.198\ccSvcHst.exe\" /s \"PCCUJobMgr\" /m \"c:\program files (x86)\Norton PC Checkup\Engine\2.0.3.198\diMaster.dll\" /prefetch:1"

.

--------------------- LOCKED REGISTRY KEYS ---------------------

.

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]

@Denied: (A 2) (Everyone)

@="FlashBroker"

"LocalizedString"="@c:\\windows\\system32\\Macromed\\Flash\\FlashUtil64_11_5_502_110_ActiveX.exe,-101"

.

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]

"Enabled"=dword:00000001

.

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]

@="c:\\windows\\system32\\Macromed\\Flash\\FlashUtil64_11_5_502_110_ActiveX.exe"

.

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]

@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

.

[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]

@Denied: (A 2) (Everyone)

@="IFlashBroker5"

.

[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]

@="{00020424-0000-0000-C000-000000000046}"

.

[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]

@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

"Version"="1.0"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]

@Denied: (A 2) (Everyone)

@="FlashBroker"

"LocalizedString"="@c:\\windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_5_502_110_ActiveX.exe,-101"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]

"Enabled"=dword:00000001

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]

@="c:\\windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_5_502_110_ActiveX.exe"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]

@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]

@Denied: (A 2) (Everyone)

@="Shockwave Flash Object"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]

@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_110.ocx"

"ThreadingModel"="Apartment"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]

@="0"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]

@="ShockwaveFlash.ShockwaveFlash.11"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]

@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_110.ocx, 1"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]

@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]

@="1.0"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]

@="ShockwaveFlash.ShockwaveFlash"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]

@Denied: (A 2) (Everyone)

@="Macromedia Flash Factory Object"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]

@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_110.ocx"

"ThreadingModel"="Apartment"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]

@="FlashFactory.FlashFactory.1"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]

@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_110.ocx, 1"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]

@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]

@="1.0"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]

@="FlashFactory.FlashFactory"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]

@Denied: (A 2) (Everyone)

@="IFlashBroker5"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]

@="{00020424-0000-0000-C000-000000000046}"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]

@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

"Version"="1.0"

.

[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]

@Denied: (A) (Everyone)

"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"

.

[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3]

@Denied: (A) (Everyone)

.

[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]

"Key"="ActionsPane3"

"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"

.

[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]

@Denied: (A) (Users)

@Denied: (A) (Everyone)

@Allowed: (B 1 2 3 4 5) (S-1-5-20)

"BlindDial"=dword:00000000

.

[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]

@Denied: (A) (Users)

@Denied: (A) (Everyone)

@Allowed: (B 1 2 3 4 5) (S-1-5-20)

"BlindDial"=dword:00000000

.

[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]

@Denied: (A) (Users)

@Denied: (A) (Everyone)

@Allowed: (B 1 2 3 4 5) (S-1-5-20)

"BlindDial"=dword:00000000

.

[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]

@Denied: (Full) (Everyone)

.

Completion time: 2012-12-09 18:11:26

ComboFix-quarantined-files.txt 2012-12-10 00:11

.

Pre-Run: 42,455,437,312 bytes free

Post-Run: 42,283,286,528 bytes free

.

- - End Of File - - 8C4E5C11C95BF76E87FCF6ABB8837166

Before running the program I was unable to temporarily shut down Norton Antivirus but ran the program anyways.

After running the program I was able to not start my computer in safe mode. Malwarebytes popped up saying there was a trogan, so I clicked quarentine.

Used Spybot and it is still finding Smitfraud-C.generic trojan and Right.Media virus.

Link to post
Share on other sites

  • Staff

Greetings

I want you to run these next,

tdsskiller:

Please read carefully and follow these steps.

  • Download TDSSKiller and save it to your Desktop.
  • doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste the contents of that file here.

Please download aswMBR to your desktop.

  • Double click the aswMBR.exe icon to run it
  • it will ask to download extra definitions - ALLOW IT
  • Click the Scan button to start the scan
  • On completion of the scan, click the save log button, save it to your desktop and post it in your next reply.

If you have any problems running either one come back and let me know

please reply with the reports from TDSSKiller and aswMBR

Gringo

Link to post
Share on other sites

22:01:21.0907 2088 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35

22:01:22.0734 2088 ============================================================

22:01:22.0734 2088 Current date / time: 2012/12/09 22:01:22.0734

22:01:22.0734 2088 SystemInfo:

22:01:22.0734 2088

22:01:22.0734 2088 OS Version: 6.1.7601 ServicePack: 1.0

22:01:22.0734 2088 Product type: Workstation

22:01:22.0734 2088 ComputerName: NINA-PC

22:01:22.0734 2088 UserName: Nina

22:01:22.0734 2088 Windows directory: C:\windows

22:01:22.0734 2088 System windows directory: C:\windows

22:01:22.0734 2088 Running under WOW64

22:01:22.0734 2088 Processor architecture: Intel x64

22:01:22.0734 2088 Number of processors: 2

22:01:22.0734 2088 Page size: 0x1000

22:01:22.0734 2088 Boot type: Normal boot

22:01:22.0734 2088 ============================================================

22:01:33.0295 2088 BG loaded

22:01:35.0012 2088 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040

22:01:35.0090 2088 ============================================================

22:01:35.0090 2088 \Device\Harddisk0\DR0:

22:01:35.0122 2088 MBR partitions:

22:01:35.0122 2088 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2EE800, BlocksNum 0x1BAB8800

22:01:35.0122 2088 ============================================================

22:01:35.0387 2088 C: <-> \Device\Harddisk0\DR0\Partition1

22:01:35.0387 2088 ============================================================

22:01:35.0387 2088 Initialize success

22:01:35.0387 2088 ============================================================

22:01:47.0711 2072 ============================================================

22:01:47.0711 2072 Scan started

22:01:47.0711 2072 Mode: Manual;

22:01:47.0711 2072 ============================================================

22:01:57.0354 2072 ================ Scan system memory ========================

22:01:57.0354 2072 System memory - ok

22:01:57.0354 2072 ================ Scan services =============================

22:01:58.0651 2072 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\windows\system32\drivers\1394ohci.sys

22:01:58.0683 2072 1394ohci - ok

22:01:58.0729 2072 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\windows\system32\drivers\ACPI.sys

22:01:58.0729 2072 ACPI - ok

22:01:58.0823 2072 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\windows\system32\drivers\acpipmi.sys

22:01:58.0839 2072 AcpiPmi - ok

22:01:58.0885 2072 actccid - ok

22:01:59.0104 2072 [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

22:01:59.0119 2072 AdobeFlashPlayerUpdateSvc - ok

22:01:59.0292 2072 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\windows\system32\DRIVERS\adp94xx.sys

22:01:59.0386 2072 adp94xx - ok

22:01:59.0479 2072 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\windows\system32\DRIVERS\adpahci.sys

22:01:59.0604 2072 adpahci - ok

22:01:59.0744 2072 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\windows\system32\DRIVERS\adpu320.sys

22:01:59.0776 2072 adpu320 - ok

22:01:59.0838 2072 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\windows\System32\aelupsvc.dll

22:01:59.0838 2072 AeLookupSvc - ok

22:02:00.0010 2072 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\windows\system32\drivers\afd.sys

22:02:00.0010 2072 AFD - ok

22:02:00.0134 2072 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\windows\system32\drivers\agp440.sys

22:02:00.0212 2072 agp440 - ok

22:02:00.0259 2072 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\windows\System32\alg.exe

22:02:00.0290 2072 ALG - ok

22:02:00.0368 2072 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\windows\system32\drivers\aliide.sys

22:02:00.0384 2072 aliide - ok

22:02:00.0446 2072 [ 57B773D82E8CC3C6D7E02CC8A6632043 ] AMD External Events Utility C:\windows\system32\atiesrxx.exe

22:02:00.0462 2072 AMD External Events Utility - ok

22:02:00.0478 2072 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\windows\system32\drivers\amdide.sys

22:02:00.0478 2072 amdide - ok

22:02:00.0602 2072 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\windows\system32\DRIVERS\amdk8.sys

22:02:00.0634 2072 AmdK8 - ok

22:02:03.0146 2072 [ AEFAF27F1B7E52C705DF4FB6C96732F6 ] amdkmdag C:\windows\system32\DRIVERS\atipmdag.sys

22:02:03.0177 2072 amdkmdag - ok

22:02:03.0318 2072 [ 8149DB73BE27950EC72767A1193153A6 ] amdkmdap C:\windows\system32\DRIVERS\atikmpag.sys

22:02:03.0318 2072 amdkmdap - ok

22:02:03.0349 2072 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\windows\system32\DRIVERS\amdppm.sys

22:02:03.0349 2072 AmdPPM - ok

22:02:03.0411 2072 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\windows\system32\drivers\amdsata.sys

22:02:03.0411 2072 amdsata - ok

22:02:03.0458 2072 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\windows\system32\DRIVERS\amdsbs.sys

22:02:03.0474 2072 amdsbs - ok

22:02:03.0505 2072 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\windows\system32\drivers\amdxata.sys

22:02:03.0505 2072 amdxata - ok

22:02:03.0583 2072 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\windows\system32\drivers\appid.sys

22:02:03.0599 2072 AppID - ok

22:02:03.0645 2072 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\windows\System32\appidsvc.dll

22:02:03.0645 2072 AppIDSvc - ok

22:02:03.0692 2072 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\windows\System32\appinfo.dll

22:02:03.0692 2072 Appinfo - ok

22:02:03.0879 2072 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

22:02:03.0879 2072 Apple Mobile Device - ok

22:02:03.0973 2072 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\windows\system32\DRIVERS\arc.sys

22:02:03.0973 2072 arc - ok

22:02:04.0004 2072 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\windows\system32\DRIVERS\arcsas.sys

22:02:04.0020 2072 arcsas - ok

22:02:04.0082 2072 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\windows\system32\DRIVERS\asyncmac.sys

22:02:04.0082 2072 AsyncMac - ok

22:02:04.0145 2072 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\windows\system32\drivers\atapi.sys

22:02:04.0145 2072 atapi - ok

22:02:04.0238 2072 [ 7C5D273E29DCC5505469B299C6F29163 ] AtiPcie C:\windows\system32\DRIVERS\AtiPcie.sys

22:02:04.0238 2072 AtiPcie - ok

22:02:04.0332 2072 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\windows\System32\Audiosrv.dll

22:02:04.0347 2072 AudioEndpointBuilder - ok

22:02:04.0347 2072 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\windows\System32\Audiosrv.dll

22:02:04.0363 2072 AudioSrv - ok

22:02:04.0410 2072 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\windows\System32\AxInstSV.dll

22:02:04.0425 2072 AxInstSV - ok

22:02:04.0519 2072 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\windows\system32\DRIVERS\bxvbda.sys

22:02:04.0550 2072 b06bdrv - ok

22:02:04.0628 2072 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\windows\system32\DRIVERS\b57nd60a.sys

22:02:04.0675 2072 b57nd60a - ok

22:02:05.0253 2072 [ 825F81A6F7DD073509DB101F0BA6DC59 ] BBSvc C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE

22:02:05.0284 2072 BBSvc - ok

22:02:05.0362 2072 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\windows\System32\bdesvc.dll

22:02:05.0394 2072 BDESVC - ok

22:02:05.0565 2072 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\windows\system32\drivers\Beep.sys

22:02:05.0565 2072 Beep - ok

22:02:06.0346 2072 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\windows\System32\bfe.dll

22:02:06.0346 2072 BFE - ok

22:02:07.0860 2072 [ ED97ADAF00A61F57A2CCBBB1CE58C600 ] BHDrvx64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.1.2\Definitions\BASHDefs\20121130.005_e0a\BHDrvx64.sys

22:02:07.0876 2072 BHDrvx64 - ok

22:02:07.0985 2072 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\windows\system32\qmgr.dll

22:02:08.0126 2072 BITS - ok

22:02:08.0235 2072 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\windows\system32\DRIVERS\blbdrive.sys

22:02:08.0235 2072 blbdrive - ok

22:02:08.0547 2072 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe

22:02:08.0547 2072 Bonjour Service - ok

22:02:08.0625 2072 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\windows\system32\DRIVERS\bowser.sys

22:02:08.0625 2072 bowser - ok

22:02:08.0672 2072 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\windows\system32\DRIVERS\BrFiltLo.sys

22:02:08.0703 2072 BrFiltLo - ok

22:02:08.0718 2072 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\windows\system32\DRIVERS\BrFiltUp.sys

22:02:08.0734 2072 BrFiltUp - ok

22:02:08.0796 2072 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\windows\system32\DRIVERS\bridge.sys

22:02:08.0828 2072 BridgeMP - ok

22:02:08.0890 2072 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\windows\System32\browser.dll

22:02:08.0890 2072 Browser - ok

22:02:08.0937 2072 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\windows\System32\Drivers\Brserid.sys

22:02:08.0968 2072 Brserid - ok

22:02:08.0999 2072 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\windows\System32\Drivers\BrSerWdm.sys

22:02:09.0015 2072 BrSerWdm - ok

22:02:09.0062 2072 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\windows\System32\Drivers\BrUsbMdm.sys

22:02:09.0077 2072 BrUsbMdm - ok

22:02:09.0093 2072 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\windows\System32\Drivers\BrUsbSer.sys

22:02:09.0093 2072 BrUsbSer - ok

22:02:09.0124 2072 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\windows\system32\DRIVERS\bthmodem.sys

22:02:09.0140 2072 BTHMODEM - ok

22:02:09.0171 2072 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\windows\system32\bthserv.dll

22:02:09.0171 2072 bthserv - ok

22:02:09.0218 2072 catchme - ok

22:02:09.0374 2072 [ 2C6FFCCA37B002AAB3C7C31A6D780A76 ] ccSet_N360 C:\windows\system32\drivers\N360x64\0604000.009\ccSetx64.sys

22:02:09.0374 2072 ccSet_N360 - ok

22:02:09.0389 2072 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\windows\system32\DRIVERS\cdfs.sys

22:02:09.0389 2072 cdfs - ok

22:02:09.0514 2072 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\windows\system32\DRIVERS\cdrom.sys

22:02:09.0514 2072 cdrom - ok

22:02:09.0639 2072 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\windows\System32\certprop.dll

22:02:09.0639 2072 CertPropSvc - ok

22:02:09.0670 2072 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\windows\system32\DRIVERS\circlass.sys

22:02:09.0686 2072 circlass - ok

22:02:09.0717 2072 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\windows\system32\CLFS.sys

22:02:09.0717 2072 CLFS - ok

22:02:09.0826 2072 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe

22:02:09.0842 2072 clr_optimization_v2.0.50727_32 - ok

22:02:09.0904 2072 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe

22:02:09.0904 2072 clr_optimization_v2.0.50727_64 - ok

22:02:09.0982 2072 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe

22:02:10.0029 2072 clr_optimization_v4.0.30319_32 - ok

22:02:10.0091 2072 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe

22:02:10.0311 2072 clr_optimization_v4.0.30319_64 - ok

22:02:10.0404 2072 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\windows\system32\DRIVERS\CmBatt.sys

22:02:10.0404 2072 CmBatt - ok

22:02:10.0451 2072 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\windows\system32\drivers\cmdide.sys

22:02:10.0482 2072 cmdide - ok

22:02:10.0888 2072 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\windows\system32\Drivers\cng.sys

22:02:10.0919 2072 CNG - ok

22:02:11.0247 2072 [ 25C58EE97BE0416A373E3E4F855206B5 ] CnxtHdAudService C:\windows\system32\drivers\CHDRT64.sys

22:02:11.0262 2072 CnxtHdAudService - ok

22:02:11.0605 2072 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\windows\system32\DRIVERS\compbatt.sys

22:02:11.0668 2072 Compbatt - ok

22:02:11.0793 2072 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\windows\system32\drivers\CompositeBus.sys

22:02:11.0793 2072 CompositeBus - ok

22:02:11.0839 2072 COMSysApp - ok

22:02:11.0886 2072 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\windows\system32\DRIVERS\crcdisk.sys

22:02:11.0886 2072 crcdisk - ok

22:02:12.0042 2072 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\windows\system32\cryptsvc.dll

22:02:12.0042 2072 CryptSvc - ok

22:02:12.0354 2072 [ 72794D112CBAFF3BC0C29BF7350D4741 ] cvhsvc C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE

22:02:12.0370 2072 cvhsvc - ok

22:02:12.0432 2072 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\windows\system32\rpcss.dll

22:02:12.0448 2072 DcomLaunch - ok

22:02:12.0463 2072 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\windows\System32\defragsvc.dll

22:02:12.0479 2072 defragsvc - ok

22:02:12.0746 2072 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\windows\system32\Drivers\dfsc.sys

22:02:12.0762 2072 DfsC - ok

22:02:12.0996 2072 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\windows\system32\dhcpcore.dll

22:02:13.0011 2072 Dhcp - ok

22:02:13.0041 2072 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\windows\system32\drivers\discache.sys

22:02:13.0041 2072 discache - ok

22:02:13.0213 2072 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\windows\system32\DRIVERS\disk.sys

22:02:13.0228 2072 Disk - ok

22:02:13.0369 2072 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\windows\System32\dnsrslvr.dll

22:02:13.0384 2072 Dnscache - ok

22:02:13.0743 2072 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\windows\System32\dot3svc.dll

22:02:13.0852 2072 dot3svc - ok

22:02:13.0977 2072 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\windows\system32\dps.dll

22:02:13.0977 2072 DPS - ok

22:02:14.0071 2072 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\windows\system32\drivers\drmkaud.sys

22:02:14.0164 2072 drmkaud - ok

22:02:14.0227 2072 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\windows\System32\drivers\dxgkrnl.sys

22:02:14.0227 2072 DXGKrnl - ok

22:02:14.0273 2072 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\windows\System32\eapsvc.dll

22:02:14.0273 2072 EapHost - ok

22:02:14.0617 2072 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\windows\system32\DRIVERS\evbda.sys

22:02:14.0819 2072 ebdrv - ok

22:02:15.0085 2072 [ 4353FF94D47A0A9D52B89ECCF0CDB013 ] eeCtrl C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys

22:02:15.0085 2072 eeCtrl - ok

22:02:15.0147 2072 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\windows\System32\lsass.exe

22:02:15.0147 2072 EFS - ok

22:02:15.0803 2072 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\windows\ehome\ehRecvr.exe

22:02:15.0834 2072 ehRecvr - ok

22:02:15.0928 2072 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\windows\ehome\ehsched.exe

22:02:15.0928 2072 ehSched - ok

22:02:16.0037 2072 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\windows\system32\DRIVERS\elxstor.sys

22:02:16.0053 2072 elxstor - ok

22:02:16.0193 2072 [ C5BCCB378D0A896304A3E71BE7215983 ] EraserUtilRebootDrv C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys

22:02:16.0193 2072 EraserUtilRebootDrv - ok

22:02:16.0224 2072 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\windows\system32\drivers\errdev.sys

22:02:16.0240 2072 ErrDev - ok

22:02:16.0302 2072 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\windows\system32\es.dll

22:02:16.0302 2072 EventSystem - ok

22:02:16.0318 2072 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\windows\system32\drivers\exfat.sys

22:02:16.0334 2072 exfat - ok

22:02:16.0380 2072 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\windows\system32\drivers\fastfat.sys

22:02:16.0380 2072 fastfat - ok

22:02:16.0864 2072 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\windows\system32\fxssvc.exe

22:02:16.0864 2072 Fax - ok

22:02:17.0020 2072 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\windows\system32\DRIVERS\fdc.sys

22:02:17.0145 2072 fdc - ok

22:02:17.0270 2072 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\windows\system32\fdPHost.dll

22:02:17.0301 2072 fdPHost - ok

22:02:17.0332 2072 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\windows\system32\fdrespub.dll

22:02:17.0332 2072 FDResPub - ok

22:02:17.0379 2072 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\windows\system32\drivers\fileinfo.sys

22:02:17.0410 2072 FileInfo - ok

22:02:17.0426 2072 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\windows\system32\drivers\filetrace.sys

22:02:17.0457 2072 Filetrace - ok

22:02:17.0488 2072 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\windows\system32\DRIVERS\flpydisk.sys

22:02:17.0488 2072 flpydisk - ok

22:02:17.0628 2072 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\windows\system32\drivers\fltmgr.sys

22:02:17.0628 2072 FltMgr - ok

22:02:17.0800 2072 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\windows\system32\FntCache.dll

22:02:17.0816 2072 FontCache - ok

22:02:17.0894 2072 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe

22:02:17.0894 2072 FontCache3.0.0.0 - ok

22:02:18.0003 2072 [ 81B4A2C6C9BD17FFB6031A0A61C09764 ] FreeAgentGoNext Service C:\Program Files (x86)\Seagate\SeagateManager\Sync\FreeAgentService.exe

22:02:18.0003 2072 FreeAgentGoNext Service - ok

22:02:18.0065 2072 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\windows\system32\drivers\FsDepends.sys

22:02:18.0128 2072 FsDepends - ok

22:02:18.0471 2072 [ 07DA62C960DDCCC2D35836AEAB4FC578 ] fssfltr C:\windows\system32\DRIVERS\fssfltr.sys

22:02:18.0830 2072 fssfltr - ok

22:02:20.0374 2072 [ 28DDEEEC44E988657B732CF404D504CB ] fsssvc C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe

22:02:21.0388 2072 fsssvc - ok

22:02:21.0544 2072 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\windows\system32\drivers\Fs_Rec.sys

22:02:21.0684 2072 Fs_Rec - ok

22:02:21.0981 2072 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\windows\system32\DRIVERS\fvevol.sys

22:02:22.0184 2072 fvevol - ok

22:02:22.0620 2072 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\windows\system32\DRIVERS\gagp30kx.sys

22:02:22.0964 2072 gagp30kx - ok

22:02:23.0884 2072 [ CE16683CFD11FE70BDE435DDA5EA1FCA ] GameConsoleService C:\Program Files (x86)\TOSHIBA Games\TOSHIBA Game Console\GameConsoleService.exe

22:02:24.0134 2072 GameConsoleService - ok

22:02:24.0305 2072 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\windows\system32\DRIVERS\GEARAspiWDM.sys

22:02:24.0305 2072 GEARAspiWDM - ok

22:02:24.0773 2072 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\windows\System32\gpsvc.dll

22:02:24.0789 2072 gpsvc - ok

22:02:25.0132 2072 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

22:02:25.0148 2072 gupdate - ok

22:02:25.0662 2072 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

22:02:25.0662 2072 gupdatem - ok

22:02:25.0803 2072 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\windows\system32\drivers\hcw85cir.sys

22:02:25.0881 2072 hcw85cir - ok

22:02:26.0099 2072 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys

22:02:26.0193 2072 HdAudAddService - ok

22:02:26.0286 2072 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\windows\system32\drivers\HDAudBus.sys

22:02:26.0286 2072 HDAudBus - ok

22:02:26.0349 2072 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\windows\system32\DRIVERS\HidBatt.sys

22:02:26.0427 2072 HidBatt - ok

22:02:26.0458 2072 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\windows\system32\DRIVERS\hidbth.sys

22:02:26.0536 2072 HidBth - ok

22:02:26.0661 2072 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\windows\system32\DRIVERS\hidir.sys

22:02:26.0676 2072 HidIr - ok

22:02:26.0770 2072 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\windows\System32\hidserv.dll

22:02:26.0848 2072 hidserv - ok

22:02:27.0113 2072 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\windows\system32\DRIVERS\hidusb.sys

22:02:27.0176 2072 HidUsb - ok

22:02:27.0254 2072 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\windows\system32\kmsvc.dll

22:02:27.0300 2072 hkmsvc - ok

22:02:27.0425 2072 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\windows\system32\ListSvc.dll

22:02:27.0472 2072 HomeGroupListener - ok

22:02:27.0581 2072 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\windows\system32\provsvc.dll

22:02:27.0597 2072 HomeGroupProvider - ok

22:02:27.0862 2072 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\windows\system32\drivers\HpSAMD.sys

22:02:27.0909 2072 HpSAMD - ok

22:02:28.0127 2072 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\windows\system32\drivers\HTTP.sys

22:02:28.0127 2072 HTTP - ok

22:02:28.0190 2072 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\windows\system32\drivers\hwpolicy.sys

22:02:28.0252 2072 hwpolicy - ok

22:02:28.0408 2072 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\windows\system32\drivers\i8042prt.sys

22:02:28.0408 2072 i8042prt - ok

22:02:28.0658 2072 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\windows\system32\drivers\iaStorV.sys

22:02:28.0798 2072 iaStorV - ok

22:02:29.0001 2072 [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe

22:02:29.0157 2072 IDriverT - ok

22:02:29.0484 2072 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe

22:02:29.0921 2072 idsvc - ok

22:02:30.0420 2072 [ A48928D4CCA6F8B731989DB08CF2C0AB ] IDSVia64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.1.2\Definitions\IPSDefs\20121205.001\IDSvia64.sys

22:02:30.0420 2072 IDSVia64 - ok

22:02:30.0576 2072 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\windows\system32\DRIVERS\iirsp.sys

22:02:30.0888 2072 iirsp - ok

22:02:31.0310 2072 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\windows\System32\ikeext.dll

22:02:31.0325 2072 IKEEXT - ok

22:02:31.0434 2072 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\windows\system32\drivers\intelide.sys

22:02:31.0450 2072 intelide - ok

22:02:31.0528 2072 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\windows\system32\DRIVERS\intelppm.sys

22:02:31.0668 2072 intelppm - ok

22:02:31.0746 2072 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\windows\system32\ipbusenum.dll

22:02:31.0793 2072 IPBusEnum - ok

22:02:31.0887 2072 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\windows\system32\DRIVERS\ipfltdrv.sys

22:02:31.0918 2072 IpFilterDriver - ok

22:02:32.0105 2072 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\windows\system32\drivers\IPMIDrv.sys

22:02:32.0168 2072 IPMIDRV - ok

22:02:32.0308 2072 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\windows\system32\drivers\ipnat.sys

22:02:32.0308 2072 IPNAT - ok

22:02:32.0776 2072 [ B474C756C13960793C7583B766F904C4 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe

22:02:32.0870 2072 iPod Service - ok

22:02:32.0994 2072 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\windows\system32\drivers\irenum.sys

22:02:33.0026 2072 IRENUM - ok

22:02:33.0088 2072 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\windows\system32\drivers\isapnp.sys

22:02:33.0135 2072 isapnp - ok

22:02:33.0213 2072 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\windows\system32\drivers\msiscsi.sys

22:02:33.0384 2072 iScsiPrt - ok

22:02:33.0525 2072 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\windows\system32\drivers\kbdclass.sys

22:02:33.0525 2072 kbdclass - ok

22:02:33.0603 2072 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\windows\system32\drivers\kbdhid.sys

22:02:33.0603 2072 kbdhid - ok

22:02:33.0806 2072 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\windows\system32\lsass.exe

22:02:33.0806 2072 KeyIso - ok

22:02:33.0931 2072 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\windows\system32\Drivers\ksecdd.sys

22:02:33.0962 2072 KSecDD - ok

22:02:34.0040 2072 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\windows\system32\Drivers\ksecpkg.sys

22:02:34.0055 2072 KSecPkg - ok

22:02:34.0196 2072 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\windows\system32\drivers\ksthunk.sys

22:02:34.0196 2072 ksthunk - ok

22:02:34.0414 2072 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\windows\system32\msdtckrm.dll

22:02:34.0523 2072 KtmRm - ok

22:02:34.0679 2072 [ 655A5D8E80869781CCE23760ADA7E695 ] L1C C:\windows\system32\DRIVERS\L1C62x64.sys

22:02:34.0695 2072 L1C - ok

22:02:34.0898 2072 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\windows\System32\srvsvc.dll

22:02:34.0898 2072 LanmanServer - ok

22:02:35.0023 2072 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\windows\System32\wkssvc.dll

22:02:35.0038 2072 LanmanWorkstation - ok

22:02:35.0194 2072 [ 6377A3EFA96E855FDFDF4C4CB1E55BF0 ] LgBttPort C:\windows\system32\DRIVERS\lgbtpt64.sys

22:02:35.0194 2072 LgBttPort - ok

22:02:35.0381 2072 [ 3490DCA88DAC89E53328A6160F26ED09 ] lgbusenum C:\windows\system32\DRIVERS\lgbtbs64.sys

22:02:35.0381 2072 lgbusenum - ok

22:02:35.0506 2072 [ E494371D06D6956469658969633DAC06 ] LGVMODEM C:\windows\system32\DRIVERS\lgvmdm64.sys

22:02:35.0506 2072 LGVMODEM - ok

22:02:35.0818 2072 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\windows\system32\DRIVERS\lltdio.sys

22:02:35.0818 2072 lltdio - ok

22:02:36.0021 2072 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\windows\System32\lltdsvc.dll

22:02:36.0130 2072 lltdsvc - ok

22:02:36.0177 2072 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\windows\System32\lmhsvc.dll

22:02:36.0177 2072 lmhosts - ok

22:02:36.0302 2072 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\windows\system32\DRIVERS\lsi_fc.sys

22:02:36.0380 2072 LSI_FC - ok

22:02:36.0567 2072 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\windows\system32\DRIVERS\lsi_sas.sys

22:02:36.0754 2072 LSI_SAS - ok

22:02:36.0910 2072 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\windows\system32\DRIVERS\lsi_sas2.sys

22:02:36.0988 2072 LSI_SAS2 - ok

22:02:37.0207 2072 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\windows\system32\DRIVERS\lsi_scsi.sys

22:02:37.0300 2072 LSI_SCSI - ok

22:02:37.0347 2072 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\windows\system32\drivers\luafv.sys

22:02:37.0363 2072 luafv - ok

22:02:37.0581 2072 [ EF2BE2F45D4F06410A3BD2A3467325B0 ] LVRS64 C:\windows\system32\DRIVERS\lvrs64.sys

22:02:37.0909 2072 LVRS64 - ok

22:02:40.0389 2072 [ AC22F92C6078640FE8A70D662A2F3AD5 ] LVUVC64 C:\windows\system32\DRIVERS\lvuvc64.sys

22:02:42.0199 2072 LVUVC64 - ok

22:02:43.0150 2072 [ 60B3548FFA9A2EAAED75E9F0704DFCE0 ] lxeeCATSCustConnectService C:\windows\system32\spool\DRIVERS\x64\3\\lxeeserv.exe

22:02:43.0275 2072 lxeeCATSCustConnectService - ok

22:02:43.0369 2072 lxee_device - ok

22:02:43.0525 2072 [ A8FE8F2783B2929B56F5370A89356CE9 ] MBAMProtector C:\windows\system32\drivers\mbam.sys

22:02:43.0525 2072 MBAMProtector - ok

22:02:43.0899 2072 [ 85B16A92B117A5A800032ECD904B86DB ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe

22:02:43.0915 2072 MBAMScheduler - ok

22:02:44.0133 2072 [ 20E2469DB709FC675E655CEAA11BE312 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe

22:02:44.0133 2072 MBAMService - ok

22:02:44.0195 2072 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\windows\system32\Mcx2Svc.dll

22:02:44.0351 2072 Mcx2Svc - ok

22:02:44.0445 2072 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\windows\system32\DRIVERS\megasas.sys

22:02:44.0554 2072 megasas - ok

22:02:44.0788 2072 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\windows\system32\DRIVERS\MegaSR.sys

22:02:44.0897 2072 MegaSR - ok

22:02:45.0740 2072 Microsoft SharePoint Workspace Audit Service - ok

22:02:45.0802 2072 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\windows\system32\mmcss.dll

22:02:45.0802 2072 MMCSS - ok

22:02:45.0880 2072 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\windows\system32\drivers\modem.sys

22:02:45.0880 2072 Modem - ok

22:02:46.0114 2072 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\windows\system32\DRIVERS\monitor.sys

22:02:46.0114 2072 monitor - ok

22:02:46.0177 2072 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\windows\system32\drivers\mouclass.sys

22:02:46.0177 2072 mouclass - ok

22:02:46.0395 2072 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\windows\system32\DRIVERS\mouhid.sys

22:02:46.0505 2072 mouhid - ok

22:02:46.0739 2072 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\windows\system32\drivers\mountmgr.sys

22:02:46.0833 2072 mountmgr - ok

22:02:47.0004 2072 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\windows\system32\drivers\mpio.sys

22:02:47.0583 2072 mpio - ok

22:02:47.0739 2072 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\windows\system32\drivers\mpsdrv.sys

22:02:48.0004 2072 mpsdrv - ok

22:02:48.0175 2072 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\windows\system32\drivers\mrxdav.sys

22:02:48.0222 2072 MRxDAV - ok

22:02:48.0503 2072 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\windows\system32\DRIVERS\mrxsmb.sys

22:02:48.0503 2072 mrxsmb - ok

22:02:48.0784 2072 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\windows\system32\DRIVERS\mrxsmb10.sys

22:02:48.0784 2072 mrxsmb10 - ok

22:02:48.0924 2072 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\windows\system32\DRIVERS\mrxsmb20.sys

22:02:49.0111 2072 mrxsmb20 - ok

22:02:49.0237 2072 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\windows\system32\drivers\msahci.sys

22:02:49.0237 2072 msahci - ok

22:02:49.0518 2072 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\windows\system32\drivers\msdsm.sys

22:02:49.0658 2072 msdsm - ok

22:02:49.0768 2072 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\windows\System32\msdtc.exe

22:02:50.0095 2072 MSDTC - ok

22:02:50.0252 2072 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\windows\system32\drivers\Msfs.sys

22:02:50.0252 2072 Msfs - ok

22:02:50.0393 2072 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\windows\System32\drivers\mshidkmdf.sys

22:02:50.0486 2072 mshidkmdf - ok

22:02:50.0642 2072 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\windows\system32\drivers\msisadrv.sys

22:02:50.0876 2072 msisadrv - ok

22:02:51.0032 2072 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\windows\system32\iscsiexe.dll

22:02:51.0141 2072 MSiSCSI - ok

22:02:51.0157 2072 msiserver - ok

22:02:51.0313 2072 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\windows\system32\drivers\MSKSSRV.sys

22:02:51.0407 2072 MSKSSRV - ok

22:02:51.0469 2072 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\windows\system32\drivers\MSPCLOCK.sys

22:02:51.0547 2072 MSPCLOCK - ok

22:02:51.0672 2072 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\windows\system32\drivers\MSPQM.sys

22:02:51.0687 2072 MSPQM - ok

22:02:51.0765 2072 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\windows\system32\drivers\MsRPC.sys

22:02:51.0984 2072 MsRPC - ok

22:02:52.0093 2072 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\windows\system32\drivers\mssmbios.sys

22:02:52.0093 2072 mssmbios - ok

22:02:52.0311 2072 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\windows\system32\drivers\MSTEE.sys

22:02:52.0421 2072 MSTEE - ok

22:02:52.0530 2072 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\windows\system32\DRIVERS\MTConfig.sys

22:02:52.0577 2072 MTConfig - ok

22:02:52.0670 2072 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\windows\system32\Drivers\mup.sys

22:02:52.0701 2072 Mup - ok

22:02:53.0435 2072 [ F2840DBFE9322F35557219AE82CC4597 ] N360 C:\Program Files (x86)\Norton 360 Premier Edition\Engine\6.4.0.9\ccSvcHst.exe

22:02:53.0435 2072 N360 - ok

22:02:54.0012 2072 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\windows\system32\qagentRT.dll

22:02:54.0012 2072 napagent - ok

22:02:54.0339 2072 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\windows\system32\DRIVERS\nwifi.sys

22:02:54.0339 2072 NativeWifiP - ok

22:02:54.0761 2072 [ C58D8A669D6551F616D90244BD2C2D4F ] NAVENG C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.1.2\Definitions\VirusDefs\20121209.006\ENG64.SYS

22:02:54.0761 2072 NAVENG - ok

22:02:56.0258 2072 [ A3DBDB412ADFA5882DD6843B11FE0828 ] NAVEX15 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.1.2\Definitions\VirusDefs\20121209.006\EX64.SYS

22:02:56.0274 2072 NAVEX15 - ok

22:02:57.0194 2072 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\windows\system32\drivers\ndis.sys

22:02:57.0210 2072 NDIS - ok

22:02:57.0288 2072 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\windows\system32\DRIVERS\ndiscap.sys

22:02:57.0337 2072 NdisCap - ok

22:02:57.0439 2072 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\windows\system32\DRIVERS\ndistapi.sys

22:02:57.0439 2072 NdisTapi - ok

22:02:57.0551 2072 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\windows\system32\DRIVERS\ndisuio.sys

22:02:57.0551 2072 Ndisuio - ok

22:02:57.0661 2072 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\windows\system32\DRIVERS\ndiswan.sys

22:02:57.0661 2072 NdisWan - ok

22:02:57.0911 2072 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\windows\system32\drivers\NDProxy.sys

22:02:57.0911 2072 NDProxy - ok

22:02:58.0111 2072 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\windows\system32\DRIVERS\netbios.sys

22:02:58.0111 2072 NetBIOS - ok

22:02:58.0303 2072 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\windows\system32\DRIVERS\netbt.sys

22:02:58.0313 2072 NetBT - ok

22:02:58.0383 2072 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\windows\system32\lsass.exe

22:02:58.0383 2072 Netlogon - ok

22:02:58.0803 2072 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\windows\System32\netman.dll

22:02:58.0813 2072 Netman - ok

22:02:59.0233 2072 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\windows\System32\netprofm.dll

22:02:59.0243 2072 netprofm - ok

22:02:59.0423 2072 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe

22:02:59.0443 2072 NetTcpPortSharing - ok

22:02:59.0643 2072 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\windows\system32\DRIVERS\nfrd960.sys

22:02:59.0703 2072 nfrd960 - ok

22:03:00.0373 2072 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\windows\System32\nlasvc.dll

22:03:00.0373 2072 NlaSvc - ok

22:03:00.0623 2072 Norton PC Checkup Application Launcher - ok

22:03:00.0763 2072 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\windows\system32\drivers\Npfs.sys

22:03:00.0773 2072 Npfs - ok

22:03:00.0883 2072 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\windows\system32\nsisvc.dll

22:03:00.0883 2072 nsi - ok

22:03:00.0943 2072 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\windows\system32\drivers\nsiproxy.sys

22:03:00.0943 2072 nsiproxy - ok

22:03:01.0447 2072 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\windows\system32\drivers\Ntfs.sys

22:03:01.0787 2072 Ntfs - ok

22:03:01.0847 2072 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\windows\system32\drivers\Null.sys

22:03:01.0847 2072 Null - ok

22:03:02.0087 2072 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\windows\system32\drivers\nvraid.sys

22:03:02.0127 2072 nvraid - ok

22:03:02.0207 2072 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\windows\system32\drivers\nvstor.sys

22:03:02.0287 2072 nvstor - ok

22:03:02.0407 2072 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\windows\system32\drivers\nv_agp.sys

22:03:02.0457 2072 nv_agp - ok

22:03:02.0507 2072 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\windows\system32\drivers\ohci1394.sys

22:03:02.0517 2072 ohci1394 - ok

22:03:02.0677 2072 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE

22:03:02.0817 2072 ose - ok

22:03:03.0837 2072 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE

22:03:04.0397 2072 osppsvc - ok

22:03:04.0547 2072 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\windows\system32\pnrpsvc.dll

22:03:04.0617 2072 p2pimsvc - ok

22:03:04.0687 2072 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\windows\system32\p2psvc.dll

22:03:04.0747 2072 p2psvc - ok

22:03:04.0887 2072 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\windows\system32\DRIVERS\parport.sys

22:03:04.0907 2072 Parport - ok

22:03:05.0007 2072 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\windows\system32\drivers\partmgr.sys

22:03:05.0067 2072 partmgr - ok

22:03:05.0189 2072 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\windows\System32\pcasvc.dll

22:03:05.0199 2072 PcaSvc - ok

22:03:05.0365 2072 [ 2F86BE1818C2D7AC90478E3323EE7FCB ] PCCUJobMgr C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.3.198\ccSvcHst.exe

22:03:05.0366 2072 PCCUJobMgr - ok

22:03:05.0491 2072 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\windows\system32\drivers\pci.sys

22:03:05.0491 2072 pci - ok

22:03:05.0582 2072 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\windows\system32\drivers\pciide.sys

22:03:05.0633 2072 pciide - ok

22:03:05.0813 2072 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\windows\system32\DRIVERS\pcmcia.sys

22:03:06.0417 2072 pcmcia - ok

22:03:06.0529 2072 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\windows\system32\drivers\pcw.sys

22:03:06.0649 2072 pcw - ok

22:03:07.0039 2072 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\windows\system32\drivers\peauth.sys

22:03:07.0049 2072 PEAUTH - ok

22:03:10.0071 2072 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\windows\SysWow64\perfhost.exe

22:03:10.0101 2072 PerfHost - ok

22:03:10.0215 2072 [ 663962900E7FEA522126BA287715BB4A ] PGEffect C:\windows\system32\DRIVERS\pgeffect.sys

22:03:10.0215 2072 PGEffect - ok

22:03:10.0645 2072 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\windows\system32\pla.dll

22:03:11.0135 2072 pla - ok

22:03:11.0425 2072 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\windows\system32\umpnpmgr.dll

22:03:11.0435 2072 PlugPlay - ok

22:03:11.0505 2072 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\windows\system32\pnrpauto.dll

22:03:11.0555 2072 PNRPAutoReg - ok

22:03:11.0625 2072 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\windows\system32\pnrpsvc.dll

22:03:11.0635 2072 PNRPsvc - ok

22:03:11.0725 2072 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\windows\System32\ipsecsvc.dll

22:03:11.0735 2072 PolicyAgent - ok

22:03:11.0805 2072 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\windows\system32\umpo.dll

22:03:11.0805 2072 Power - ok

22:03:11.0925 2072 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\windows\system32\DRIVERS\raspptp.sys

22:03:11.0925 2072 PptpMiniport - ok

22:03:12.0015 2072 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\windows\system32\DRIVERS\processr.sys

22:03:12.0115 2072 Processor - ok

22:03:12.0255 2072 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\windows\system32\profsvc.dll

22:03:12.0255 2072 ProfSvc - ok

22:03:12.0285 2072 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\windows\system32\lsass.exe

22:03:12.0285 2072 ProtectedStorage - ok

22:03:12.0516 2072 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\windows\system32\DRIVERS\pacer.sys

22:03:12.0516 2072 Psched - ok

22:03:12.0746 2072 [ 24DD667D22DBD29618947C804E23AA03 ] PxHlpa64 C:\windows\system32\Drivers\PxHlpa64.sys

22:03:12.0796 2072 PxHlpa64 - ok

22:03:12.0898 2072 [ C8FCB4899F8B70CC34E0D9876A80963C ] QIOMem C:\windows\system32\DRIVERS\QIOMem.sys

22:03:12.0898 2072 QIOMem - ok

22:03:13.0448 2072 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\windows\system32\DRIVERS\ql2300.sys

22:03:14.0410 2072 ql2300 - ok

22:03:14.0500 2072 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\windows\system32\DRIVERS\ql40xx.sys

22:03:14.0550 2072 ql40xx - ok

22:03:14.0790 2072 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\windows\system32\qwave.dll

22:03:14.0870 2072 QWAVE - ok

22:03:14.0910 2072 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\windows\system32\drivers\qwavedrv.sys

22:03:14.0970 2072 QWAVEdrv - ok

22:03:15.0120 2072 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\windows\system32\DRIVERS\rasacd.sys

22:03:15.0190 2072 RasAcd - ok

22:03:15.0310 2072 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\windows\system32\DRIVERS\AgileVpn.sys

22:03:15.0310 2072 RasAgileVpn - ok

22:03:15.0422 2072 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\windows\System32\rasauto.dll

22:03:15.0442 2072 RasAuto - ok

22:03:15.0562 2072 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\windows\system32\DRIVERS\rasl2tp.sys

22:03:15.0562 2072 Rasl2tp - ok

22:03:15.0772 2072 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\windows\System32\rasmans.dll

22:03:15.0782 2072 RasMan - ok

22:03:15.0887 2072 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\windows\system32\DRIVERS\raspppoe.sys

22:03:15.0888 2072 RasPppoe - ok

22:03:15.0924 2072 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\windows\system32\DRIVERS\rassstp.sys

22:03:15.0924 2072 RasSstp - ok

22:03:16.0054 2072 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\windows\system32\DRIVERS\rdbss.sys

22:03:16.0054 2072 rdbss - ok

22:03:16.0200 2072 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\windows\system32\DRIVERS\rdpbus.sys

22:03:16.0308 2072 rdpbus - ok

22:03:16.0338 2072 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\windows\system32\DRIVERS\RDPCDD.sys

22:03:16.0338 2072 RDPCDD - ok

22:03:16.0540 2072 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\windows\system32\drivers\rdpencdd.sys

22:03:16.0590 2072 RDPENCDD - ok

22:03:16.0692 2072 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\windows\system32\drivers\rdprefmp.sys

22:03:16.0692 2072 RDPREFMP - ok

22:03:17.0182 2072 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\windows\system32\drivers\RDPWD.sys

22:03:17.0272 2072 RDPWD - ok

22:03:17.0412 2072 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\windows\system32\drivers\rdyboost.sys

22:03:17.0452 2072 rdyboost - ok

22:03:17.0513 2072 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\windows\System32\mprdim.dll

22:03:17.0614 2072 RemoteAccess - ok

22:03:17.0874 2072 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\windows\system32\regsvc.dll

22:03:17.0994 2072 RemoteRegistry - ok

22:03:18.0074 2072 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\windows\System32\RpcEpMap.dll

22:03:18.0074 2072 RpcEptMapper - ok

22:03:18.0224 2072 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\windows\system32\locator.exe

22:03:18.0314 2072 RpcLocator - ok

22:03:18.0554 2072 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\windows\system32\rpcss.dll

22:03:18.0564 2072 RpcSs - ok

22:03:18.0654 2072 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\windows\system32\DRIVERS\rspndr.sys

22:03:18.0654 2072 rspndr - ok

22:03:18.0926 2072 [ 3CEEE53BBF8BA284FF44585CEC0162FE ] RSUSBSTOR C:\windows\system32\Drivers\RtsUStor.sys

22:03:18.0926 2072 RSUSBSTOR - ok

22:03:19.0126 2072 [ FFC748D848740D1BC8F330A8879C2674 ] rtl8192Ce C:\windows\system32\DRIVERS\rtl8192Ce.sys

22:03:19.0146 2072 rtl8192Ce - ok

22:03:19.0188 2072 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\windows\system32\lsass.exe

22:03:19.0198 2072 SamSs - ok

22:03:19.0268 2072 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\windows\system32\drivers\sbp2port.sys

22:03:19.0298 2072 sbp2port - ok

22:03:19.0718 2072 [ 794D4B48DFB6E999537C7C3947863463 ] SBSDWSCService C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe

22:03:19.0728 2072 SBSDWSCService - ok

22:03:19.0818 2072 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\windows\System32\SCardSvr.dll

22:03:19.0828 2072 SCardSvr - ok

22:03:19.0878 2072 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\windows\system32\DRIVERS\scfilter.sys

22:03:19.0918 2072 scfilter - ok

22:03:20.0078 2072 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\windows\system32\schedsvc.dll

22:03:20.0098 2072 Schedule - ok

22:03:20.0158 2072 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\windows\System32\certprop.dll

22:03:20.0158 2072 SCPolicySvc - ok

22:03:20.0238 2072 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\windows\System32\SDRSVC.dll

22:03:20.0258 2072 SDRSVC - ok

22:03:20.0954 2072 [ CC781378E7EDA615D2CDCA3B17829FA4 ] SeaPort C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE

22:03:20.0954 2072 SeaPort - ok

22:03:21.0074 2072 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\windows\system32\drivers\secdrv.sys

22:03:21.0074 2072 secdrv - ok

22:03:21.0214 2072 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\windows\system32\seclogon.dll

22:03:21.0214 2072 seclogon - ok

22:03:21.0284 2072 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\windows\system32\sens.dll

22:03:21.0284 2072 SENS - ok

22:03:21.0314 2072 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\windows\system32\sensrsvc.dll

22:03:21.0324 2072 SensrSvc - ok

22:03:21.0374 2072 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\windows\system32\DRIVERS\serenum.sys

22:03:21.0414 2072 Serenum - ok

22:03:21.0465 2072 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\windows\system32\DRIVERS\serial.sys

22:03:21.0543 2072 Serial - ok

22:03:21.0606 2072 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\windows\system32\DRIVERS\sermouse.sys

22:03:21.0606 2072 sermouse - ok

22:03:21.0668 2072 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\windows\system32\sessenv.dll

22:03:21.0730 2072 SessionEnv - ok

22:03:21.0808 2072 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\windows\system32\drivers\sffdisk.sys

22:03:21.0840 2072 sffdisk - ok

22:03:21.0886 2072 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\windows\system32\drivers\sffp_mmc.sys

22:03:21.0902 2072 sffp_mmc - ok

22:03:21.0933 2072 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\windows\system32\drivers\sffp_sd.sys

22:03:21.0949 2072 sffp_sd - ok

22:03:22.0011 2072 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\windows\system32\DRIVERS\sfloppy.sys

22:03:22.0011 2072 sfloppy - ok

22:03:22.0292 2072 [ C6CC9297BD53E5229653303E556AA539 ] Sftfs C:\windows\system32\DRIVERS\Sftfslh.sys

22:03:22.0308 2072 Sftfs - ok

22:03:22.0636 2072 [ 13693B6354DD6E72DC5131DA7D764B90 ] sftlist C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe

22:03:22.0683 2072 sftlist - ok

22:03:22.0855 2072 [ 390AA7BC52CEE43F6790CDEA1E776703 ] Sftplay C:\windows\system32\DRIVERS\Sftplaylh.sys

22:03:22.0870 2072 Sftplay - ok

22:03:22.0886 2072 [ 617E29A0B0A2807466560D4C4E338D3E ] Sftredir C:\windows\system32\DRIVERS\Sftredirlh.sys

22:03:22.0886 2072 Sftredir - ok

22:03:23.0011 2072 [ 8F571F016FA1976F445147E9E6C8AE9B ] Sftvol C:\windows\system32\DRIVERS\Sftvollh.sys

22:03:23.0026 2072 Sftvol - ok

22:03:23.0104 2072 [ C3CDDD18F43D44AB713CF8C4916F7696 ] sftvsa C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe

22:03:23.0120 2072 sftvsa - ok

22:03:23.0713 2072 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\windows\System32\ipnathlp.dll

22:03:23.0728 2072 SharedAccess - ok

22:03:24.0477 2072 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\windows\System32\shsvcs.dll

22:03:24.0493 2072 ShellHWDetection - ok

22:03:24.0711 2072 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\windows\system32\DRIVERS\SiSRaid2.sys

22:03:24.0742 2072 SiSRaid2 - ok

22:03:24.0820 2072 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\windows\system32\DRIVERS\sisraid4.sys

22:03:24.0851 2072 SiSRaid4 - ok

22:03:25.0179 2072 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe

22:03:25.0179 2072 SkypeUpdate - ok

22:03:25.0273 2072 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\windows\system32\DRIVERS\smb.sys

22:03:25.0304 2072 Smb - ok

22:03:25.0429 2072 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\windows\System32\snmptrap.exe

22:03:25.0444 2072 SNMPTRAP - ok

22:03:25.0507 2072 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\windows\system32\drivers\spldr.sys

22:03:25.0538 2072 spldr - ok

22:03:25.0663 2072 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\windows\System32\spoolsv.exe

22:03:25.0663 2072 Spooler - ok

22:03:26.0271 2072 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\windows\system32\sppsvc.exe

22:03:26.0411 2072 sppsvc - ok

22:03:26.0443 2072 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\windows\system32\sppuinotify.dll

22:03:26.0489 2072 sppuinotify - ok

22:03:27.0145 2072 [ 891793E00432FA055CF040605C260E49 ] SRTSP C:\windows\System32\Drivers\N360x64\0604000.009\SRTSP64.SYS

22:03:27.0223 2072 SRTSP - ok

22:03:27.0254 2072 [ 1CB7BB3B0561FB5ECFE37F7731E8BF3E ] SRTSPX C:\windows\system32\drivers\N360x64\0604000.009\SRTSPX64.SYS

22:03:27.0269 2072 SRTSPX - ok

22:03:27.0363 2072 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\windows\system32\DRIVERS\srv.sys

22:03:27.0379 2072 srv - ok

22:03:27.0441 2072 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\windows\system32\DRIVERS\srv2.sys

22:03:27.0441 2072 srv2 - ok

22:03:27.0613 2072 [ 0C4540311E11664B245A263E1154CEF8 ] SrvHsfHDA C:\windows\system32\DRIVERS\VSTAZL6.SYS

22:03:27.0753 2072 SrvHsfHDA - ok

22:03:27.0956 2072 [ 02071D207A9858FBE3A48CBFD59C4A04 ] SrvHsfV92 C:\windows\system32\DRIVERS\VSTDPV6.SYS

22:03:28.0268 2072 SrvHsfV92 - ok

22:03:28.0424 2072 [ 18E40C245DBFAF36FD0134A7EF2DF396 ] SrvHsfWinac C:\windows\system32\DRIVERS\VSTCNXT6.SYS

22:03:28.0502 2072 SrvHsfWinac - ok

22:03:28.0767 2072 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\windows\system32\DRIVERS\srvnet.sys

22:03:28.0783 2072 srvnet - ok

22:03:28.0907 2072 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\windows\System32\ssdpsrv.dll

22:03:28.0939 2072 SSDPSRV - ok

22:03:28.0954 2072 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\windows\system32\sstpsvc.dll

22:03:28.0970 2072 SstpSvc - ok

22:03:29.0017 2072 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\windows\system32\DRIVERS\stexstor.sys

22:03:29.0048 2072 stexstor - ok

22:03:29.0235 2072 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\windows\System32\wiaservc.dll

22:03:29.0251 2072 stisvc - ok

22:03:29.0329 2072 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\windows\system32\drivers\swenum.sys

22:03:29.0329 2072 swenum - ok

22:03:29.0453 2072 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\windows\System32\swprv.dll

22:03:29.0531 2072 swprv - ok

22:03:29.0687 2072 [ 8B2430762099598DA40686F754632EFD ] SymDS C:\windows\system32\drivers\N360x64\0604000.009\SYMDS64.SYS

22:03:29.0781 2072 SymDS - ok

22:03:30.0015 2072 [ 5CB7F2FD7E30A0F52F93574BFC3A8041 ] SymEFA C:\windows\system32\drivers\N360x64\0604000.009\SYMEFA64.SYS

22:03:30.0233 2072 SymEFA - ok

22:03:30.0311 2072 [ 894579207E39C465737E850A252CE4F2 ] SymEvent C:\windows\system32\Drivers\SYMEVENT64x86.SYS

22:03:30.0343 2072 SymEvent - ok

22:03:30.0421 2072 [ 5013A76CAAA1D7CF1C55214B490B4E35 ] SymIRON C:\windows\system32\drivers\N360x64\0604000.009\Ironx64.SYS

22:03:30.0452 2072 SymIRON - ok

22:03:30.0545 2072 [ 3911BD0E68C010E5438A87706ABBE9AB ] SymNetS C:\windows\System32\Drivers\N360x64\0604000.009\SYMNETS.SYS

22:03:30.0545 2072 SymNetS - ok

22:03:30.0733 2072 [ 470C47DABA9CA3966F0AB3F835D7D135 ] SynTP C:\windows\system32\DRIVERS\SynTP.sys

22:03:30.0733 2072 SynTP - ok

22:03:31.0216 2072 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\windows\system32\sysmain.dll

22:03:31.0247 2072 SysMain - ok

22:03:31.0294 2072 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\windows\System32\TabSvc.dll

22:03:31.0325 2072 TabletInputService - ok

22:03:31.0357 2072 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\windows\System32\tapisrv.dll

22:03:31.0372 2072 TapiSrv - ok

22:03:31.0419 2072 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\windows\System32\tbssvc.dll

22:03:31.0528 2072 TBS - ok

22:03:32.0277 2072 [ 37608401DFDB388CAF66917F6B2D6FB0 ] Tcpip C:\windows\system32\drivers\tcpip.sys

22:03:32.0901 2072 Tcpip - ok

22:03:33.0291 2072 [ 37608401DFDB388CAF66917F6B2D6FB0 ] TCPIP6 C:\windows\system32\DRIVERS\tcpip.sys

22:03:33.0307 2072 TCPIP6 - ok

22:03:33.0369 2072 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\windows\system32\drivers\tcpipreg.sys

22:03:33.0369 2072 tcpipreg - ok

22:03:33.0556 2072 [ FD542B661BD22FA69CA789AD0AC58C29 ] tdcmdpst C:\windows\system32\DRIVERS\tdcmdpst.sys

22:03:33.0556 2072 tdcmdpst - ok

22:03:33.0619 2072 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\windows\system32\drivers\tdpipe.sys

22:03:33.0650 2072 TDPIPE - ok

22:03:33.0681 2072 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\windows\system32\drivers\tdtcp.sys

22:03:33.0728 2072 TDTCP - ok

22:03:33.0806 2072 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\windows\system32\DRIVERS\tdx.sys

22:03:33.0806 2072 tdx - ok

22:03:33.0899 2072 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\windows\system32\drivers\termdd.sys

22:03:33.0899 2072 TermDD - ok

22:03:34.0274 2072 [ 2E648163254233755035B46DD7B89123 ] TermService C:\windows\System32\termsrv.dll

22:03:34.0289 2072 TermService - ok

22:03:34.0367 2072 [ F0344071948D1A1FA732231785A0664C ] Themes C:\windows\system32\themeservice.dll

22:03:34.0367 2072 Themes - ok

22:03:34.0445 2072 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\windows\system32\mmcss.dll

22:03:34.0445 2072 THREADORDER - ok

22:03:34.0945 2072 [ 28644B0523D64EFF2FC7312A2EE74B0A ] TMachInfo C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe

22:03:34.0976 2072 TMachInfo - ok

22:03:35.0085 2072 [ ED32035BDFECED1AD66D459FD9CC1140 ] TODDSrv C:\Windows\system32\TODDSrv.exe

22:03:35.0101 2072 TODDSrv - ok

22:03:35.0225 2072 [ EFEF22B9577E5051057FDE1AE381B50C ] TomTomHOMEService C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe

22:03:35.0225 2072 TomTomHOMEService - ok

22:03:35.0444 2072 [ 98C864481D62F86EC8AF65BE3419A95B ] TosCoSrv C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe

22:03:35.0459 2072 TosCoSrv - ok

22:03:35.0896 2072 [ BAE96AD126F4EED4D361B092BA2E61FE ] TOSHIBA eco Utility Service C:\Program Files\TOSHIBA\TECO\TecoService.exe

22:03:35.0896 2072 TOSHIBA eco Utility Service - ok

22:03:36.0130 2072 [ 74C2FA8C3765EE71A9C22182EC108457 ] TOSHIBA HDD SSD Alert Service C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe

22:03:36.0130 2072 TOSHIBA HDD SSD Alert Service - ok

22:03:37.0175 2072 [ 97687D094AA597DA366E1194B218CC6C ] TPCHSrv C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe

22:03:37.0643 2072 TPCHSrv - ok

22:03:37.0706 2072 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\windows\System32\trkwks.dll

22:03:37.0706 2072 TrkWks - ok

22:03:37.0831 2072 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe

22:03:37.0846 2072 TrustedInstaller - ok

22:03:37.0924 2072 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\windows\system32\DRIVERS\tssecsrv.sys

22:03:37.0955 2072 tssecsrv - ok

22:03:38.0065 2072 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\windows\system32\drivers\tsusbflt.sys

22:03:38.0096 2072 TsUsbFlt - ok

22:03:38.0189 2072 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\windows\system32\DRIVERS\tunnel.sys

22:03:38.0189 2072 tunnel - ok

22:03:38.0283 2072 [ 550B567F9364D8F7684C3FB3EA665A72 ] TVALZ C:\windows\system32\DRIVERS\TVALZ_O.SYS

22:03:38.0345 2072 TVALZ - ok

22:03:38.0470 2072 [ 9C7191F4B2E49BFF47A6C1144B5923FA ] TVALZFL C:\windows\system32\DRIVERS\TVALZFL.sys

22:03:38.0470 2072 TVALZFL - ok

22:03:38.0548 2072 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\windows\system32\DRIVERS\uagp35.sys

22:03:38.0657 2072 uagp35 - ok

22:03:38.0938 2072 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\windows\system32\DRIVERS\udfs.sys

22:03:39.0562 2072 udfs - ok

22:03:39.0703 2072 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\windows\system32\UI0Detect.exe

22:03:39.0781 2072 UI0Detect - ok

22:03:39.0968 2072 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\windows\system32\drivers\uliagpkx.sys

22:03:40.0015 2072 uliagpkx - ok

22:03:40.0093 2072 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\windows\system32\drivers\umbus.sys

22:03:40.0093 2072 umbus - ok

22:03:40.0155 2072 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\windows\system32\DRIVERS\umpass.sys

22:03:40.0280 2072 UmPass - ok

22:03:40.0467 2072 [ 927754ABF077AEB5504BE4E0F2C60C1B ] UMVPFSrv C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe

22:03:40.0483 2072 UMVPFSrv - ok

22:03:40.0607 2072 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\windows\System32\upnphost.dll

22:03:40.0639 2072 upnphost - ok

22:03:40.0732 2072 [ 43228F8EDD1B0BCDD3145AD246E63D39 ] USBAAPL64 C:\windows\system32\Drivers\usbaapl64.sys

22:03:40.0779 2072 USBAAPL64 - ok

22:03:40.0982 2072 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:\windows\system32\drivers\usbaudio.sys

22:03:41.0060 2072 usbaudio - ok

22:03:41.0278 2072 [ 5FCC71487888589A9244AF54CFEFAB29 ] usbbus C:\windows\system32\DRIVERS\lgx64bus.sys

22:03:41.0387 2072 usbbus - ok

22:03:41.0481 2072 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\windows\system32\DRIVERS\usbccgp.sys

22:03:41.0481 2072 usbccgp - ok

22:03:41.0731 2072 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\windows\system32\drivers\usbcir.sys

22:03:41.0809 2072 usbcir - ok

22:03:41.0933 2072 [ 3FB6E423F7567C92C32EA786F5FD0C69 ] UsbDiag C:\windows\system32\DRIVERS\lgx64diag.sys

22:03:41.0965 2072 UsbDiag - ok

22:03:42.0027 2072 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\windows\system32\DRIVERS\usbehci.sys

22:03:42.0027 2072 usbehci - ok

22:03:42.0261 2072 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\windows\system32\DRIVERS\usbhub.sys

22:03:42.0261 2072 usbhub - ok

22:03:42.0323 2072 [ 78D551F5B93488B4666F5FC8DD4815F3 ] USBModem C:\windows\system32\DRIVERS\lgx64modem.sys

22:03:42.0339 2072 USBModem - ok

22:03:42.0479 2072 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\windows\system32\DRIVERS\usbohci.sys

22:03:42.0479 2072 usbohci - ok

22:03:42.0589 2072 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\windows\system32\DRIVERS\usbprint.sys

22:03:42.0635 2072 usbprint - ok

22:03:42.0729 2072 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\windows\system32\DRIVERS\usbscan.sys

22:03:42.0760 2072 usbscan - ok

22:03:42.0823 2072 [ 4ACEE387FA8FD39F83564FCD2FC234F2 ] usbser C:\windows\system32\DRIVERS\usbser.sys

22:03:43.0025 2072 usbser - ok

22:03:43.0135 2072 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\windows\system32\DRIVERS\USBSTOR.SYS

22:03:43.0259 2072 USBSTOR - ok

22:03:43.0275 2072 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\windows\system32\drivers\usbuhci.sys

22:03:43.0322 2072 usbuhci - ok

22:03:43.0462 2072 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\windows\System32\Drivers\usbvideo.sys

22:03:43.0462 2072 usbvideo - ok

22:03:43.0681 2072 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\windows\System32\uxsms.dll

22:03:43.0681 2072 UxSms - ok

22:03:43.0696 2072 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\windows\system32\lsass.exe

22:03:43.0712 2072 VaultSvc - ok

22:03:43.0743 2072 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\windows\system32\drivers\vdrvroot.sys

22:03:43.0759 2072 vdrvroot - ok

22:03:43.0930 2072 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\windows\System32\vds.exe

22:03:44.0008 2072 vds - ok

22:03:44.0071 2072 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\windows\system32\DRIVERS\vgapnp.sys

22:03:44.0086 2072 vga - ok

22:03:44.0133 2072 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\windows\System32\drivers\vga.sys

22:03:44.0133 2072 VgaSave - ok

22:03:44.0211 2072 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\windows\system32\drivers\vhdmp.sys

22:03:44.0242 2072 vhdmp - ok

22:03:44.0273 2072 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\windows\system32\drivers\viaide.sys

22:03:44.0305 2072 viaide - ok

22:03:44.0351 2072 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\windows\system32\drivers\volmgr.sys

22:03:44.0398 2072 volmgr - ok

22:03:44.0523 2072 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\windows\system32\drivers\volmgrx.sys

22:03:44.0585 2072 volmgrx - ok

22:03:44.0710 2072 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\windows\system32\drivers\volsnap.sys

22:03:44.0741 2072 volsnap - ok

22:03:44.0991 2072 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\windows\system32\DRIVERS\vsmraid.sys

22:03:45.0038 2072 vsmraid - ok

22:03:45.0850 2072 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\windows\system32\vssvc.exe

22:03:46.0365 2072 VSS - ok

22:03:46.0458 2072 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\windows\system32\DRIVERS\vwifibus.sys

22:03:46.0458 2072 vwifibus - ok

22:03:46.0505 2072 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\windows\system32\DRIVERS\vwififlt.sys

22:03:46.0536 2072 vwififlt - ok

22:03:46.0661 2072 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\windows\system32\DRIVERS\vwifimp.sys

22:03:46.0661 2072 vwifimp - ok

22:03:46.0803 2072 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\windows\system32\w32time.dll

22:03:46.0881 2072 W32Time - ok

22:03:46.0943 2072 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\windows\system32\DRIVERS\wacompen.sys

22:03:47.0037 2072 WacomPen - ok

22:03:47.0130 2072 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\windows\system32\DRIVERS\wanarp.sys

22:03:47.0130 2072 WANARP - ok

22:03:47.0146 2072 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\windows\system32\DRIVERS\wanarp.sys

22:03:47.0146 2072 Wanarpv6 - ok

22:03:47.0427 2072 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\windows\system32\Wat\WatAdminSvc.exe

22:03:48.0004 2072 WatAdminSvc - ok

22:03:48.0597 2072 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\windows\system32\wbengine.exe

22:03:48.0846 2072 wbengine - ok

22:03:48.0987 2072 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\windows\System32\wbiosrvc.dll

22:03:49.0080 2072 WbioSrvc - ok

22:03:49.0174 2072 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\windows\System32\wcncsvc.dll

22:03:49.0205 2072 wcncsvc - ok

22:03:49.0267 2072 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll

22:03:49.0299 2072 WcsPlugInService - ok

22:03:49.0345 2072 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\windows\system32\DRIVERS\wd.sys

22:03:49.0392 2072 Wd - ok

22:03:49.0969 2072 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\windows\system32\drivers\Wdf01000.sys

22:03:50.0001 2072 Wdf01000 - ok

22:03:50.0079 2072 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\windows\system32\wdi.dll

22:03:50.0079 2072 WdiServiceHost - ok

22:03:50.0094 2072 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\windows\system32\wdi.dll

22:03:50.0094 2072 WdiSystemHost - ok

22:03:50.0203 2072 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\windows\System32\webclnt.dll

22:03:50.0250 2072 WebClient - ok

22:03:50.0391 2072 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\windows\system32\wecsvc.dll

22:03:50.0422 2072 Wecsvc - ok

22:03:50.0500 2072 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\windows\System32\wercplsupport.dll

22:03:50.0531 2072 wercplsupport - ok

22:03:50.0687 2072 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\windows\System32\WerSvc.dll

22:03:50.0718 2072 WerSvc - ok

22:03:50.0827 2072 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\windows\system32\DRIVERS\wfplwf.sys

22:03:50.0843 2072 WfpLwf - ok

22:03:50.0937 2072 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\windows\system32\drivers\wimmount.sys

22:03:51.0030 2072 WIMMount - ok

22:03:51.0139 2072 WinDefend - ok

22:03:51.0155 2072 WinHttpAutoProxySvc - ok

22:03:51.0467 2072 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\windows\system32\wbem\WMIsvc.dll

22:03:51.0483 2072 Winmgmt - ok

22:03:52.0044 2072 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\windows\system32\WsmSvc.dll

22:03:52.0965 2072 WinRM - ok

22:03:53.0323 2072 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\windows\system32\DRIVERS\WinUsb.sys

22:03:53.0417 2072 WinUsb - ok

22:03:54.0010 2072 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\windows\System32\wlansvc.dll

22:03:54.0025 2072 Wlansvc - ok

22:03:54.0400 2072 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe

22:03:54.0759 2072 wlcrasvc - ok

22:03:55.0429 2072 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE

22:03:55.0461 2072 wlidsvc - ok

22:03:55.0554 2072 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\windows\system32\drivers\wmiacpi.sys

22:03:55.0554 2072 WmiAcpi - ok

22:03:55.0695 2072 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\windows\system32\wbem\WmiApSrv.exe

22:03:55.0741 2072 wmiApSrv - ok

22:03:55.0819 2072 WMPNetworkSvc - ok

22:03:55.0897 2072 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\windows\System32\wpcsvc.dll

22:03:55.0913 2072 WPCSvc - ok

22:03:56.0022 2072 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\windows\system32\wpdbusenum.dll

22:03:56.0022 2072 WPDBusEnum - ok

22:03:56.0085 2072 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\windows\system32\drivers\ws2ifsl.sys

22:03:56.0085 2072 ws2ifsl - ok

22:03:56.0303 2072 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\windows\system32\wscsvc.dll

22:03:56.0319 2072 wscsvc - ok

22:03:56.0319 2072 WSearch - ok

Link to post
Share on other sites

22:03:56.0974 2072 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\windows\system32\wuaueng.dll

22:03:57.0067 2072 wuauserv - ok

22:03:57.0130 2072 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\windows\system32\drivers\WudfPf.sys

22:03:57.0192 2072 WudfPf - ok

22:03:57.0379 2072 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\windows\system32\DRIVERS\WUDFRd.sys

22:03:57.0504 2072 WUDFRd - ok

22:03:57.0754 2072 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\windows\System32\WUDFSvc.dll

22:03:57.0801 2072 wudfsvc - ok

22:03:57.0925 2072 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\windows\System32\wwansvc.dll

22:03:58.0003 2072 WwanSvc - ok

22:03:58.0035 2072 ================ Scan global ===============================

22:03:58.0081 2072 [ BA0CD8C393E8C9F83354106093832C7B ] C:\windows\system32\basesrv.dll

22:03:58.0128 2072 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\windows\system32\winsrv.dll

22:03:58.0191 2072 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\windows\system32\winsrv.dll

22:03:58.0253 2072 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\windows\system32\sxssrv.dll

22:03:58.0409 2072 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\windows\system32\services.exe

22:03:58.0425 2072 [Global] - ok

22:03:58.0425 2072 ================ Scan MBR ==================================

22:03:58.0456 2072 [ 5B5E648D12FCADC244C1EC30318E1EB9 ] \Device\Harddisk0\DR0

22:04:04.0853 2072 \Device\Harddisk0\DR0 - ok

22:04:04.0853 2072 ================ Scan VBR ==================================

22:04:04.0868 2072 [ 29A4D3D12EF30CC1B5C2449899940070 ] \Device\Harddisk0\DR0\Partition1

22:04:04.0884 2072 \Device\Harddisk0\DR0\Partition1 - ok

22:04:04.0884 2072 ============================================================

22:04:04.0884 2072 Scan finished

22:04:04.0900 2072 ============================================================

22:04:04.0931 1552 Detected object count: 0

22:04:04.0931 1552 Actual detected object count: 0

22:04:16.0507 5668 ============================================================

22:04:16.0507 5668 Scan started

22:04:16.0507 5668 Mode: Manual;

22:04:16.0507 5668 ============================================================

22:04:23.0215 5660 ============================================================

22:04:23.0215 5660 Scan started

22:04:23.0215 5660 Mode: Manual;

22:04:23.0215 5660 ============================================================

22:04:30.0516 5660 ================ Scan system memory ========================

22:04:30.0516 5660 System memory - ok

22:04:30.0516 5660 ================ Scan services =============================

22:04:34.0104 5660 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\windows\system32\drivers\1394ohci.sys

22:04:34.0104 5660 1394ohci - ok

22:04:34.0260 5660 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\windows\system32\drivers\ACPI.sys

22:04:34.0260 5660 ACPI - ok

22:04:34.0354 5660 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\windows\system32\drivers\acpipmi.sys

22:04:34.0354 5660 AcpiPmi - ok

22:04:34.0369 5660 actccid - ok

22:04:35.0508 5660 [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

22:04:35.0508 5660 AdobeFlashPlayerUpdateSvc - ok

22:04:35.0711 5660 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\windows\system32\DRIVERS\adp94xx.sys

22:04:35.0711 5660 adp94xx - ok

22:04:35.0789 5660 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\windows\system32\DRIVERS\adpahci.sys

22:04:35.0804 5660 adpahci - ok

22:04:35.0867 5660 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\windows\system32\DRIVERS\adpu320.sys

22:04:35.0867 5660 adpu320 - ok

22:04:35.0960 5660 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\windows\System32\aelupsvc.dll

22:04:35.0976 5660 AeLookupSvc - ok

22:04:36.0101 5660 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\windows\system32\drivers\afd.sys

22:04:36.0116 5660 AFD - ok

22:04:36.0210 5660 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\windows\system32\drivers\agp440.sys

22:04:36.0210 5660 agp440 - ok

22:04:36.0257 5660 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\windows\System32\alg.exe

22:04:36.0257 5660 ALG - ok

22:04:36.0366 5660 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\windows\system32\drivers\aliide.sys

22:04:36.0366 5660 aliide - ok

22:04:36.0444 5660 [ 57B773D82E8CC3C6D7E02CC8A6632043 ] AMD External Events Utility C:\windows\system32\atiesrxx.exe

22:04:36.0444 5660 AMD External Events Utility - ok

22:04:36.0553 5660 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\windows\system32\drivers\amdide.sys

22:04:36.0584 5660 amdide - ok

22:04:36.0662 5660 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\windows\system32\DRIVERS\amdk8.sys

22:04:36.0662 5660 AmdK8 - ok

22:04:38.0207 5660 [ AEFAF27F1B7E52C705DF4FB6C96732F6 ] amdkmdag C:\windows\system32\DRIVERS\atipmdag.sys

22:04:38.0254 5660 amdkmdag - ok

22:04:38.0441 5660 [ 8149DB73BE27950EC72767A1193153A6 ] amdkmdap C:\windows\system32\DRIVERS\atikmpag.sys

22:04:38.0441 5660 amdkmdap - ok

22:04:38.0503 5660 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\windows\system32\DRIVERS\amdppm.sys

22:04:38.0566 5660 AmdPPM - ok

22:04:38.0815 5660 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\windows\system32\drivers\amdsata.sys

22:04:38.0815 5660 amdsata - ok

22:04:38.0940 5660 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\windows\system32\DRIVERS\amdsbs.sys

22:04:38.0940 5660 amdsbs - ok

22:04:39.0002 5660 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\windows\system32\drivers\amdxata.sys

22:04:39.0002 5660 amdxata - ok

22:04:39.0080 5660 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\windows\system32\drivers\appid.sys

22:04:39.0080 5660 AppID - ok

22:04:39.0221 5660 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\windows\System32\appidsvc.dll

22:04:39.0221 5660 AppIDSvc - ok

22:04:39.0314 5660 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\windows\System32\appinfo.dll

22:04:39.0314 5660 Appinfo - ok

22:04:40.0063 5660 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

22:04:40.0063 5660 Apple Mobile Device - ok

22:04:40.0188 5660 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\windows\system32\DRIVERS\arc.sys

22:04:40.0188 5660 arc - ok

22:04:40.0235 5660 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\windows\system32\DRIVERS\arcsas.sys

22:04:40.0235 5660 arcsas - ok

22:04:40.0344 5660 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\windows\system32\DRIVERS\asyncmac.sys

22:04:40.0344 5660 AsyncMac - ok

22:04:40.0438 5660 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\windows\system32\drivers\atapi.sys

22:04:40.0438 5660 atapi - ok

22:04:40.0500 5660 [ 7C5D273E29DCC5505469B299C6F29163 ] AtiPcie C:\windows\system32\DRIVERS\AtiPcie.sys

22:04:40.0500 5660 AtiPcie - ok

22:04:40.0812 5660 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\windows\System32\Audiosrv.dll

22:04:40.0812 5660 AudioEndpointBuilder - ok

22:04:40.0999 5660 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\windows\System32\Audiosrv.dll

22:04:40.0999 5660 AudioSrv - ok

22:04:41.0108 5660 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\windows\System32\AxInstSV.dll

22:04:41.0108 5660 AxInstSV - ok

22:04:41.0342 5660 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\windows\system32\DRIVERS\bxvbda.sys

22:04:41.0342 5660 b06bdrv - ok

22:04:41.0514 5660 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\windows\system32\DRIVERS\b57nd60a.sys

22:04:41.0514 5660 b57nd60a - ok

22:04:41.0732 5660 [ 825F81A6F7DD073509DB101F0BA6DC59 ] BBSvc C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE

22:04:41.0732 5660 BBSvc - ok

22:04:41.0842 5660 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\windows\System32\bdesvc.dll

22:04:41.0842 5660 BDESVC - ok

22:04:41.0904 5660 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\windows\system32\drivers\Beep.sys

22:04:41.0904 5660 Beep - ok

22:04:42.0076 5660 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\windows\System32\bfe.dll

22:04:42.0076 5660 BFE - ok

22:04:43.0261 5660 [ ED97ADAF00A61F57A2CCBBB1CE58C600 ] BHDrvx64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.1.2\Definitions\BASHDefs\20121130.005_e0a\BHDrvx64.sys

22:04:43.0277 5660 BHDrvx64 - ok

22:04:43.0620 5660 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\windows\system32\qmgr.dll

22:04:43.0636 5660 BITS - ok

22:04:43.0854 5660 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\windows\system32\DRIVERS\blbdrive.sys

22:04:43.0854 5660 blbdrive - ok

22:04:44.0182 5660 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe

22:04:44.0182 5660 Bonjour Service - ok

22:04:44.0260 5660 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\windows\system32\DRIVERS\bowser.sys

22:04:44.0260 5660 bowser - ok

22:04:44.0322 5660 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\windows\system32\DRIVERS\BrFiltLo.sys

22:04:44.0322 5660 BrFiltLo - ok

22:04:44.0384 5660 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\windows\system32\DRIVERS\BrFiltUp.sys

22:04:44.0384 5660 BrFiltUp - ok

22:04:44.0447 5660 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\windows\system32\DRIVERS\bridge.sys

22:04:44.0447 5660 BridgeMP - ok

22:04:44.0525 5660 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\windows\System32\browser.dll

22:04:44.0540 5660 Browser - ok

22:04:44.0759 5660 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\windows\System32\Drivers\Brserid.sys

22:04:44.0759 5660 Brserid - ok

22:04:44.0774 5660 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\windows\System32\Drivers\BrSerWdm.sys

22:04:44.0774 5660 BrSerWdm - ok

22:04:44.0884 5660 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\windows\System32\Drivers\BrUsbMdm.sys

22:04:44.0884 5660 BrUsbMdm - ok

22:04:44.0930 5660 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\windows\System32\Drivers\BrUsbSer.sys

22:04:44.0930 5660 BrUsbSer - ok

22:04:44.0977 5660 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\windows\system32\DRIVERS\bthmodem.sys

22:04:44.0977 5660 BTHMODEM - ok

22:04:45.0040 5660 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\windows\system32\bthserv.dll

22:04:45.0040 5660 bthserv - ok

22:04:45.0040 5660 catchme - ok

22:04:45.0180 5660 [ 2C6FFCCA37B002AAB3C7C31A6D780A76 ] ccSet_N360 C:\windows\system32\drivers\N360x64\0604000.009\ccSetx64.sys

22:04:45.0180 5660 ccSet_N360 - ok

22:04:45.0305 5660 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\windows\system32\DRIVERS\cdfs.sys

22:04:45.0305 5660 cdfs - ok

22:04:45.0445 5660 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\windows\system32\DRIVERS\cdrom.sys

22:04:45.0445 5660 cdrom - ok

22:04:45.0523 5660 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\windows\System32\certprop.dll

22:04:45.0539 5660 CertPropSvc - ok

22:04:45.0648 5660 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\windows\system32\DRIVERS\circlass.sys

22:04:45.0648 5660 circlass - ok

22:04:45.0710 5660 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\windows\system32\CLFS.sys

22:04:45.0726 5660 CLFS - ok

22:04:46.0038 5660 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe

22:04:46.0038 5660 clr_optimization_v2.0.50727_32 - ok

22:04:46.0225 5660 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe

22:04:46.0225 5660 clr_optimization_v2.0.50727_64 - ok

22:04:46.0444 5660 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe

22:04:46.0444 5660 clr_optimization_v4.0.30319_32 - ok

22:04:46.0771 5660 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe

22:04:46.0771 5660 clr_optimization_v4.0.30319_64 - ok

22:04:46.0802 5660 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\windows\system32\DRIVERS\CmBatt.sys

22:04:46.0802 5660 CmBatt - ok

22:04:46.0834 5660 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\windows\system32\drivers\cmdide.sys

22:04:46.0834 5660 cmdide - ok

22:04:46.0990 5660 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\windows\system32\Drivers\cng.sys

22:04:46.0990 5660 CNG - ok

22:04:47.0177 5660 [ 25C58EE97BE0416A373E3E4F855206B5 ] CnxtHdAudService C:\windows\system32\drivers\CHDRT64.sys

22:04:47.0192 5660 CnxtHdAudService - ok

22:04:47.0255 5660 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\windows\system32\DRIVERS\compbatt.sys

22:04:47.0255 5660 Compbatt - ok

22:04:47.0317 5660 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\windows\system32\drivers\CompositeBus.sys

22:04:47.0317 5660 CompositeBus - ok

22:04:47.0333 5660 COMSysApp - ok

22:04:47.0364 5660 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\windows\system32\DRIVERS\crcdisk.sys

22:04:47.0364 5660 crcdisk - ok

22:04:47.0473 5660 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\windows\system32\cryptsvc.dll

22:04:47.0489 5660 CryptSvc - ok

22:04:47.0941 5660 [ 72794D112CBAFF3BC0C29BF7350D4741 ] cvhsvc C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE

22:04:47.0957 5660 cvhsvc - ok

22:04:48.0113 5660 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\windows\system32\rpcss.dll

22:04:48.0113 5660 DcomLaunch - ok

22:04:48.0222 5660 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\windows\System32\defragsvc.dll

22:04:48.0238 5660 defragsvc - ok

22:04:48.0331 5660 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\windows\system32\Drivers\dfsc.sys

22:04:48.0331 5660 DfsC - ok

22:04:48.0440 5660 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\windows\system32\dhcpcore.dll

22:04:48.0456 5660 Dhcp - ok

22:04:48.0518 5660 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\windows\system32\drivers\discache.sys

22:04:48.0518 5660 discache - ok

22:04:48.0628 5660 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\windows\system32\DRIVERS\disk.sys

22:04:48.0628 5660 Disk - ok

22:04:48.0721 5660 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\windows\System32\dnsrslvr.dll

22:04:48.0737 5660 Dnscache - ok

22:04:48.0846 5660 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\windows\System32\dot3svc.dll

22:04:48.0846 5660 dot3svc - ok

22:04:48.0955 5660 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\windows\system32\dps.dll

22:04:48.0971 5660 DPS - ok

22:04:49.0033 5660 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\windows\system32\drivers\drmkaud.sys

22:04:49.0033 5660 drmkaud - ok

22:04:49.0220 5660 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\windows\System32\drivers\dxgkrnl.sys

22:04:49.0252 5660 DXGKrnl - ok

22:04:49.0314 5660 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\windows\System32\eapsvc.dll

22:04:49.0314 5660 EapHost - ok

22:04:50.0437 5660 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\windows\system32\DRIVERS\evbda.sys

22:04:50.0500 5660 ebdrv - ok

22:04:50.0749 5660 [ 4353FF94D47A0A9D52B89ECCF0CDB013 ] eeCtrl C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys

22:04:50.0780 5660 eeCtrl - ok

22:04:50.0827 5660 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\windows\System32\lsass.exe

22:04:50.0843 5660 EFS - ok

22:04:51.0233 5660 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\windows\ehome\ehRecvr.exe

22:04:51.0248 5660 ehRecvr - ok

22:04:51.0326 5660 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\windows\ehome\ehsched.exe

22:04:51.0326 5660 ehSched - ok

22:04:51.0482 5660 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\windows\system32\DRIVERS\elxstor.sys

22:04:51.0498 5660 elxstor - ok

22:04:51.0592 5660 [ C5BCCB378D0A896304A3E71BE7215983 ] EraserUtilRebootDrv C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys

22:04:51.0607 5660 EraserUtilRebootDrv - ok

22:04:51.0623 5660 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\windows\system32\drivers\errdev.sys

22:04:51.0623 5660 ErrDev - ok

22:04:51.0763 5660 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\windows\system32\es.dll

22:04:51.0779 5660 EventSystem - ok

22:04:51.0857 5660 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\windows\system32\drivers\exfat.sys

22:04:51.0857 5660 exfat - ok

22:04:51.0950 5660 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\windows\system32\drivers\fastfat.sys

22:04:51.0950 5660 fastfat - ok

22:04:52.0169 5660 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\windows\system32\fxssvc.exe

22:04:52.0200 5660 Fax - ok

22:04:52.0231 5660 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\windows\system32\DRIVERS\fdc.sys

22:04:52.0247 5660 fdc - ok

22:04:52.0340 5660 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\windows\system32\fdPHost.dll

22:04:52.0340 5660 fdPHost - ok

22:04:52.0387 5660 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\windows\system32\fdrespub.dll

22:04:52.0403 5660 FDResPub - ok

22:04:52.0450 5660 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\windows\system32\drivers\fileinfo.sys

22:04:52.0465 5660 FileInfo - ok

22:04:52.0481 5660 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\windows\system32\drivers\filetrace.sys

22:04:52.0481 5660 Filetrace - ok

22:04:52.0512 5660 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\windows\system32\DRIVERS\flpydisk.sys

22:04:52.0528 5660 flpydisk - ok

22:04:52.0730 5660 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\windows\system32\drivers\fltmgr.sys

22:04:52.0746 5660 FltMgr - ok

22:04:52.0996 5660 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\windows\system32\FntCache.dll

22:04:53.0011 5660 FontCache - ok

22:04:53.0136 5660 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe

22:04:53.0136 5660 FontCache3.0.0.0 - ok

22:04:53.0308 5660 [ 81B4A2C6C9BD17FFB6031A0A61C09764 ] FreeAgentGoNext Service C:\Program Files (x86)\Seagate\SeagateManager\Sync\FreeAgentService.exe

22:04:53.0323 5660 FreeAgentGoNext Service - ok

22:04:53.0401 5660 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\windows\system32\drivers\FsDepends.sys

22:04:53.0401 5660 FsDepends - ok

22:04:53.0464 5660 [ 07DA62C960DDCCC2D35836AEAB4FC578 ] fssfltr C:\windows\system32\DRIVERS\fssfltr.sys

22:04:53.0464 5660 fssfltr - ok

22:04:54.0025 5660 [ 28DDEEEC44E988657B732CF404D504CB ] fsssvc C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe

22:04:54.0056 5660 fsssvc - ok

22:04:54.0119 5660 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\windows\system32\drivers\Fs_Rec.sys

22:04:54.0119 5660 Fs_Rec - ok

22:04:54.0228 5660 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\windows\system32\DRIVERS\fvevol.sys

22:04:54.0244 5660 fvevol - ok

22:04:54.0322 5660 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\windows\system32\DRIVERS\gagp30kx.sys

22:04:54.0322 5660 gagp30kx - ok

22:04:54.0509 5660 [ CE16683CFD11FE70BDE435DDA5EA1FCA ] GameConsoleService C:\Program Files (x86)\TOSHIBA Games\TOSHIBA Game Console\GameConsoleService.exe

22:04:54.0509 5660 GameConsoleService - ok

22:04:54.0571 5660 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\windows\system32\DRIVERS\GEARAspiWDM.sys

22:04:54.0587 5660 GEARAspiWDM - ok

22:04:54.0836 5660 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\windows\System32\gpsvc.dll

22:04:54.0899 5660 gpsvc - ok

22:04:55.0086 5660 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

22:04:55.0117 5660 gupdate - ok

22:04:55.0148 5660 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

22:04:55.0164 5660 gupdatem - ok

22:04:55.0195 5660 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\windows\system32\drivers\hcw85cir.sys

22:04:55.0195 5660 hcw85cir - ok

22:04:55.0320 5660 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys

22:04:55.0320 5660 HdAudAddService - ok

22:04:55.0398 5660 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\windows\system32\drivers\HDAudBus.sys

22:04:55.0414 5660 HDAudBus - ok

22:04:55.0476 5660 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\windows\system32\DRIVERS\HidBatt.sys

22:04:55.0476 5660 HidBatt - ok

22:04:55.0523 5660 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\windows\system32\DRIVERS\hidbth.sys

22:04:55.0523 5660 HidBth - ok

22:04:55.0663 5660 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\windows\system32\DRIVERS\hidir.sys

22:04:55.0663 5660 HidIr - ok

22:04:55.0772 5660 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\windows\System32\hidserv.dll

22:04:55.0804 5660 hidserv - ok

22:04:55.0882 5660 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\windows\system32\DRIVERS\hidusb.sys

22:04:55.0882 5660 HidUsb - ok

22:04:55.0975 5660 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\windows\system32\kmsvc.dll

22:04:56.0006 5660 hkmsvc - ok

22:04:56.0069 5660 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\windows\system32\ListSvc.dll

22:04:56.0069 5660 HomeGroupListener - ok

22:04:56.0209 5660 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\windows\system32\provsvc.dll

22:04:56.0209 5660 HomeGroupProvider - ok

22:04:56.0365 5660 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\windows\system32\drivers\HpSAMD.sys

22:04:56.0365 5660 HpSAMD - ok

22:04:56.0724 5660 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\windows\system32\drivers\HTTP.sys

22:04:56.0755 5660 HTTP - ok

22:04:56.0833 5660 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\windows\system32\drivers\hwpolicy.sys

22:04:56.0833 5660 hwpolicy - ok

22:04:56.0896 5660 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\windows\system32\drivers\i8042prt.sys

22:04:56.0927 5660 i8042prt - ok

22:04:57.0036 5660 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\windows\system32\drivers\iaStorV.sys

22:04:57.0052 5660 iaStorV - ok

22:04:57.0145 5660 [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe

22:04:57.0145 5660 IDriverT - ok

22:04:57.0504 5660 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe

22:04:57.0520 5660 idsvc - ok

22:04:57.0800 5660 [ A48928D4CCA6F8B731989DB08CF2C0AB ] IDSVia64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.1.2\Definitions\IPSDefs\20121205.001\IDSvia64.sys

22:04:57.0832 5660 IDSVia64 - ok

22:04:57.0941 5660 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\windows\system32\DRIVERS\iirsp.sys

22:04:57.0941 5660 iirsp - ok

22:04:58.0222 5660 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\windows\System32\ikeext.dll

22:04:58.0268 5660 IKEEXT - ok

22:04:58.0331 5660 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\windows\system32\drivers\intelide.sys

22:04:58.0331 5660 intelide - ok

22:04:58.0378 5660 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\windows\system32\DRIVERS\intelppm.sys

22:04:58.0393 5660 intelppm - ok

22:04:58.0440 5660 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\windows\system32\ipbusenum.dll

22:04:58.0440 5660 IPBusEnum - ok

22:04:58.0518 5660 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\windows\system32\DRIVERS\ipfltdrv.sys

22:04:58.0534 5660 IpFilterDriver - ok

22:04:58.0705 5660 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\windows\system32\drivers\IPMIDrv.sys

22:04:58.0705 5660 IPMIDRV - ok

22:04:58.0799 5660 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\windows\system32\drivers\ipnat.sys

22:04:58.0799 5660 IPNAT - ok

22:04:59.0048 5660 [ B474C756C13960793C7583B766F904C4 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe

22:04:59.0048 5660 iPod Service - ok

22:04:59.0095 5660 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\windows\system32\drivers\irenum.sys

22:04:59.0095 5660 IRENUM - ok

22:04:59.0142 5660 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\windows\system32\drivers\isapnp.sys

22:04:59.0142 5660 isapnp - ok

22:04:59.0251 5660 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\windows\system32\drivers\msiscsi.sys

22:04:59.0251 5660 iScsiPrt - ok

22:04:59.0360 5660 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\windows\system32\drivers\kbdclass.sys

22:04:59.0360 5660 kbdclass - ok

22:04:59.0407 5660 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\windows\system32\drivers\kbdhid.sys

22:04:59.0407 5660 kbdhid - ok

22:04:59.0454 5660 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\windows\system32\lsass.exe

22:04:59.0470 5660 KeyIso - ok

22:04:59.0532 5660 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\windows\system32\Drivers\ksecdd.sys

22:04:59.0532 5660 KSecDD - ok

22:04:59.0594 5660 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\windows\system32\Drivers\ksecpkg.sys

22:04:59.0594 5660 KSecPkg - ok

22:04:59.0657 5660 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\windows\system32\drivers\ksthunk.sys

22:04:59.0688 5660 ksthunk - ok

22:04:59.0782 5660 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\windows\system32\msdtckrm.dll

22:04:59.0782 5660 KtmRm - ok

22:04:59.0875 5660 [ 655A5D8E80869781CCE23760ADA7E695 ] L1C C:\windows\system32\DRIVERS\L1C62x64.sys

22:04:59.0891 5660 L1C - ok

22:05:00.0031 5660 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\windows\System32\srvsvc.dll

22:05:00.0062 5660 LanmanServer - ok

22:05:00.0125 5660 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\windows\System32\wkssvc.dll

22:05:00.0140 5660 LanmanWorkstation - ok

22:05:00.0203 5660 [ 6377A3EFA96E855FDFDF4C4CB1E55BF0 ] LgBttPort C:\windows\system32\DRIVERS\lgbtpt64.sys

22:05:00.0218 5660 LgBttPort - ok

22:05:00.0296 5660 [ 3490DCA88DAC89E53328A6160F26ED09 ] lgbusenum C:\windows\system32\DRIVERS\lgbtbs64.sys

22:05:00.0296 5660 lgbusenum - ok

22:05:00.0359 5660 [ E494371D06D6956469658969633DAC06 ] LGVMODEM C:\windows\system32\DRIVERS\lgvmdm64.sys

22:05:00.0374 5660 LGVMODEM - ok

22:05:00.0452 5660 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\windows\system32\DRIVERS\lltdio.sys

22:05:00.0452 5660 lltdio - ok

22:05:00.0655 5660 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\windows\System32\lltdsvc.dll

22:05:00.0655 5660 lltdsvc - ok

22:05:00.0671 5660 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\windows\System32\lmhsvc.dll

22:05:00.0686 5660 lmhosts - ok

22:05:00.0733 5660 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\windows\system32\DRIVERS\lsi_fc.sys

22:05:00.0733 5660 LSI_FC - ok

22:05:00.0749 5660 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\windows\system32\DRIVERS\lsi_sas.sys

22:05:00.0749 5660 LSI_SAS - ok

22:05:00.0780 5660 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\windows\system32\DRIVERS\lsi_sas2.sys

22:05:00.0780 5660 LSI_SAS2 - ok

22:05:00.0842 5660 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\windows\system32\DRIVERS\lsi_scsi.sys

22:05:00.0842 5660 LSI_SCSI - ok

22:05:00.0874 5660 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\windows\system32\drivers\luafv.sys

22:05:00.0889 5660 luafv - ok

22:05:01.0014 5660 [ EF2BE2F45D4F06410A3BD2A3467325B0 ] LVRS64 C:\windows\system32\DRIVERS\lvrs64.sys

22:05:01.0030 5660 LVRS64 - ok

22:05:02.0028 5660 [ AC22F92C6078640FE8A70D662A2F3AD5 ] LVUVC64 C:\windows\system32\DRIVERS\lvuvc64.sys

22:05:02.0059 5660 LVUVC64 - ok

22:05:02.0324 5660 [ 60B3548FFA9A2EAAED75E9F0704DFCE0 ] lxeeCATSCustConnectService C:\windows\system32\spool\DRIVERS\x64\3\\lxeeserv.exe

22:05:02.0340 5660 lxeeCATSCustConnectService - ok

22:05:02.0356 5660 lxee_device - ok

22:05:02.0418 5660 [ A8FE8F2783B2929B56F5370A89356CE9 ] MBAMProtector C:\windows\system32\drivers\mbam.sys

22:05:02.0434 5660 MBAMProtector - ok

22:05:02.0808 5660 [ 85B16A92B117A5A800032ECD904B86DB ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe

22:05:02.0824 5660 MBAMScheduler - ok

22:05:03.0120 5660 [ 20E2469DB709FC675E655CEAA11BE312 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe

22:05:03.0167 5660 MBAMService - ok

22:05:03.0370 5660 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\windows\system32\Mcx2Svc.dll

22:05:03.0370 5660 Mcx2Svc - ok

22:05:03.0448 5660 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\windows\system32\DRIVERS\megasas.sys

22:05:03.0448 5660 megasas - ok

22:05:03.0572 5660 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\windows\system32\DRIVERS\MegaSR.sys

22:05:03.0572 5660 MegaSR - ok

22:05:04.0072 5660 Microsoft SharePoint Workspace Audit Service - ok

22:05:04.0118 5660 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\windows\system32\mmcss.dll

22:05:04.0134 5660 MMCSS - ok

22:05:04.0196 5660 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\windows\system32\drivers\modem.sys

22:05:04.0228 5660 Modem - ok

22:05:04.0243 5660 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\windows\system32\DRIVERS\monitor.sys

22:05:04.0290 5660 monitor - ok

22:05:04.0321 5660 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\windows\system32\drivers\mouclass.sys

22:05:04.0337 5660 mouclass - ok

22:05:04.0384 5660 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\windows\system32\DRIVERS\mouhid.sys

22:05:04.0384 5660 mouhid - ok

22:05:04.0446 5660 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\windows\system32\drivers\mountmgr.sys

22:05:04.0446 5660 mountmgr - ok

22:05:04.0540 5660 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\windows\system32\drivers\mpio.sys

22:05:04.0555 5660 mpio - ok

22:05:04.0696 5660 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\windows\system32\drivers\mpsdrv.sys

22:05:04.0696 5660 mpsdrv - ok

22:05:04.0805 5660 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\windows\system32\drivers\mrxdav.sys

22:05:04.0805 5660 MRxDAV - ok

22:05:04.0914 5660 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\windows\system32\DRIVERS\mrxsmb.sys

22:05:04.0930 5660 mrxsmb - ok

22:05:05.0008 5660 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\windows\system32\DRIVERS\mrxsmb10.sys

22:05:05.0023 5660 mrxsmb10 - ok

22:05:05.0086 5660 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\windows\system32\DRIVERS\mrxsmb20.sys

22:05:05.0101 5660 mrxsmb20 - ok

22:05:05.0179 5660 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\windows\system32\drivers\msahci.sys

22:05:05.0195 5660 msahci - ok

22:05:05.0242 5660 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\windows\system32\drivers\msdsm.sys

22:05:05.0242 5660 msdsm - ok

22:05:05.0320 5660 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\windows\System32\msdtc.exe

22:05:05.0320 5660 MSDTC - ok

22:05:05.0398 5660 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\windows\system32\drivers\Msfs.sys

22:05:05.0413 5660 Msfs - ok

22:05:05.0444 5660 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\windows\System32\drivers\mshidkmdf.sys

22:05:05.0444 5660 mshidkmdf - ok

22:05:05.0522 5660 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\windows\system32\drivers\msisadrv.sys

22:05:05.0522 5660 msisadrv - ok

22:05:05.0944 5660 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\windows\system32\iscsiexe.dll

22:05:05.0944 5660 MSiSCSI - ok

22:05:05.0944 5660 msiserver - ok

22:05:06.0022 5660 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\windows\system32\drivers\MSKSSRV.sys

22:05:06.0022 5660 MSKSSRV - ok

22:05:06.0084 5660 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\windows\system32\drivers\MSPCLOCK.sys

22:05:06.0100 5660 MSPCLOCK - ok

22:05:06.0146 5660 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\windows\system32\drivers\MSPQM.sys

22:05:06.0146 5660 MSPQM - ok

22:05:06.0380 5660 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\windows\system32\drivers\MsRPC.sys

22:05:06.0380 5660 MsRPC - ok

22:05:06.0490 5660 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\windows\system32\drivers\mssmbios.sys

22:05:06.0490 5660 mssmbios - ok

22:05:06.0583 5660 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\windows\system32\drivers\MSTEE.sys

22:05:06.0583 5660 MSTEE - ok

22:05:06.0646 5660 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\windows\system32\DRIVERS\MTConfig.sys

22:05:06.0646 5660 MTConfig - ok

22:05:06.0677 5660 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\windows\system32\Drivers\mup.sys

22:05:06.0677 5660 Mup - ok

22:05:07.0114 5660 [ F2840DBFE9322F35557219AE82CC4597 ] N360 C:\Program Files (x86)\Norton 360 Premier Edition\Engine\6.4.0.9\ccSvcHst.exe

22:05:07.0129 5660 N360 - ok

22:05:07.0410 5660 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\windows\system32\qagentRT.dll

22:05:07.0441 5660 napagent - ok

22:05:07.0628 5660 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\windows\system32\DRIVERS\nwifi.sys

22:05:07.0675 5660 NativeWifiP - ok

22:05:07.0909 5660 [ C58D8A669D6551F616D90244BD2C2D4F ] NAVENG C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.1.2\Definitions\VirusDefs\20121209.006\ENG64.SYS

22:05:07.0956 5660 NAVENG - ok

22:05:09.0017 5660 [ A3DBDB412ADFA5882DD6843B11FE0828 ] NAVEX15 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.0.1.2\Definitions\VirusDefs\20121209.006\EX64.SYS

22:05:09.0095 5660 NAVEX15 - ok

22:05:09.0391 5660 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\windows\system32\drivers\ndis.sys

22:05:09.0438 5660 NDIS - ok

22:05:09.0547 5660 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\windows\system32\DRIVERS\ndiscap.sys

22:05:09.0547 5660 NdisCap - ok

22:05:09.0610 5660 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\windows\system32\DRIVERS\ndistapi.sys

22:05:09.0672 5660 NdisTapi - ok

22:05:09.0766 5660 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\windows\system32\DRIVERS\ndisuio.sys

22:05:09.0812 5660 Ndisuio - ok

22:05:09.0922 5660 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\windows\system32\DRIVERS\ndiswan.sys

22:05:09.0984 5660 NdisWan - ok

22:05:10.0078 5660 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\windows\system32\drivers\NDProxy.sys

22:05:10.0093 5660 NDProxy - ok

22:05:10.0218 5660 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\windows\system32\DRIVERS\netbios.sys

22:05:10.0249 5660 NetBIOS - ok

22:05:10.0390 5660 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\windows\system32\DRIVERS\netbt.sys

22:05:10.0436 5660 NetBT - ok

22:05:10.0499 5660 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\windows\system32\lsass.exe

22:05:10.0499 5660 Netlogon - ok

22:05:10.0748 5660 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\windows\System32\netman.dll

22:05:10.0780 5660 Netman - ok

22:05:11.0060 5660 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\windows\System32\netprofm.dll

22:05:11.0107 5660 netprofm - ok

22:05:11.0216 5660 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe

22:05:11.0216 5660 NetTcpPortSharing - ok

22:05:11.0279 5660 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\windows\system32\DRIVERS\nfrd960.sys

22:05:11.0279 5660 nfrd960 - ok

22:05:11.0497 5660 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\windows\System32\nlasvc.dll

22:05:11.0560 5660 NlaSvc - ok

22:05:11.0887 5660 Norton PC Checkup Application Launcher - ok

22:05:11.0965 5660 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\windows\system32\drivers\Npfs.sys

22:05:12.0012 5660 Npfs - ok

22:05:12.0121 5660 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\windows\system32\nsisvc.dll

22:05:12.0152 5660 nsi - ok

22:05:12.0277 5660 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\windows\system32\drivers\nsiproxy.sys

22:05:12.0277 5660 nsiproxy - ok

22:05:12.0870 5660 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\windows\system32\drivers\Ntfs.sys

22:05:12.0886 5660 Ntfs - ok

22:05:12.0979 5660 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\windows\system32\drivers\Null.sys

22:05:13.0042 5660 Null - ok

22:05:13.0198 5660 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\windows\system32\drivers\nvraid.sys

22:05:13.0213 5660 nvraid - ok

22:05:13.0338 5660 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\windows\system32\drivers\nvstor.sys

22:05:13.0338 5660 nvstor - ok

22:05:13.0432 5660 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\windows\system32\drivers\nv_agp.sys

22:05:13.0432 5660 nv_agp - ok

22:05:13.0525 5660 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\windows\system32\drivers\ohci1394.sys

22:05:13.0525 5660 ohci1394 - ok

22:05:13.0759 5660 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE

22:05:13.0759 5660 ose - ok

22:05:15.0678 5660 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE

22:05:15.0725 5660 osppsvc - ok

22:05:16.0115 5660 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\windows\system32\pnrpsvc.dll

22:05:16.0130 5660 p2pimsvc - ok

22:05:16.0333 5660 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\windows\system32\p2psvc.dll

22:05:16.0349 5660 p2psvc - ok

22:05:16.0442 5660 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\windows\system32\DRIVERS\parport.sys

22:05:16.0442 5660 Parport - ok

22:05:16.0614 5660 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\windows\system32\drivers\partmgr.sys

22:05:16.0630 5660 partmgr - ok

22:05:16.0864 5660 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\windows\System32\pcasvc.dll

22:05:16.0895 5660 PcaSvc - ok

22:05:17.0129 5660 [ 2F86BE1818C2D7AC90478E3323EE7FCB ] PCCUJobMgr C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.3.198\ccSvcHst.exe

22:05:17.0144 5660 PCCUJobMgr - ok

22:05:17.0378 5660 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\windows\system32\drivers\pci.sys

22:05:17.0410 5660 pci - ok

22:05:17.0675 5660 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\windows\system32\drivers\pciide.sys

22:05:17.0675 5660 pciide - ok

22:05:17.0878 5660 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\windows\system32\DRIVERS\pcmcia.sys

22:05:17.0878 5660 pcmcia - ok

22:05:17.0987 5660 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\windows\system32\drivers\pcw.sys

22:05:17.0987 5660 pcw - ok

22:05:18.0174 5660 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\windows\system32\drivers\peauth.sys

22:05:18.0314 5660 PEAUTH - ok

22:05:24.0227 5660 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\windows\SysWow64\perfhost.exe

22:05:24.0274 5660 PerfHost - ok

22:05:24.0398 5660 [ 663962900E7FEA522126BA287715BB4A ] PGEffect C:\windows\system32\DRIVERS\pgeffect.sys

22:05:24.0476 5660 PGEffect - ok

22:05:24.0929 5660 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\windows\system32\pla.dll

22:05:24.0944 5660 pla - ok

22:05:25.0194 5660 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\windows\system32\umpnpmgr.dll

22:05:25.0241 5660 PlugPlay - ok

22:05:25.0381 5660 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\windows\system32\pnrpauto.dll

22:05:25.0381 5660 PNRPAutoReg - ok

22:05:25.0537 5660 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\windows\system32\pnrpsvc.dll

22:05:25.0568 5660 PNRPsvc - ok

22:05:25.0834 5660 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\windows\System32\ipsecsvc.dll

22:05:25.0865 5660 PolicyAgent - ok

22:05:26.0068 5660 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\windows\system32\umpo.dll

22:05:26.0114 5660 Power - ok

22:05:26.0192 5660 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\windows\system32\DRIVERS\raspptp.sys

22:05:26.0224 5660 PptpMiniport - ok

22:05:26.0333 5660 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\windows\system32\DRIVERS\processr.sys

22:05:26.0333 5660 Processor - ok

22:05:26.0520 5660 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\windows\system32\profsvc.dll

22:05:26.0598 5660 ProfSvc - ok

22:05:26.0848 5660 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\windows\system32\lsass.exe

22:05:26.0848 5660 ProtectedStorage - ok

22:05:27.0066 5660 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\windows\system32\DRIVERS\pacer.sys

22:05:27.0097 5660 Psched - ok

22:05:27.0238 5660 [ 24DD667D22DBD29618947C804E23AA03 ] PxHlpa64 C:\windows\system32\Drivers\PxHlpa64.sys

22:05:27.0238 5660 PxHlpa64 - ok

22:05:27.0440 5660 [ C8FCB4899F8B70CC34E0D9876A80963C ] QIOMem C:\windows\system32\DRIVERS\QIOMem.sys

22:05:27.0472 5660 QIOMem - ok

22:05:28.0142 5660 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\windows\system32\DRIVERS\ql2300.sys

22:05:28.0158 5660 ql2300 - ok

22:05:28.0330 5660 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\windows\system32\DRIVERS\ql40xx.sys

22:05:28.0330 5660 ql40xx - ok

22:05:28.0564 5660 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\windows\system32\qwave.dll

22:05:28.0564 5660 QWAVE - ok

22:05:28.0642 5660 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\windows\system32\drivers\qwavedrv.sys

22:05:28.0642 5660 QWAVEdrv - ok

22:05:28.0891 5660 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\windows\system32\DRIVERS\rasacd.sys

22:05:28.0891 5660 RasAcd - ok

22:05:29.0047 5660 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\windows\system32\DRIVERS\AgileVpn.sys

22:05:29.0125 5660 RasAgileVpn - ok

22:05:29.0219 5660 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\windows\System32\rasauto.dll

22:05:29.0219 5660 RasAuto - ok

22:05:29.0375 5660 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\windows\system32\DRIVERS\rasl2tp.sys

22:05:29.0390 5660 Rasl2tp - ok

22:05:29.0500 5660 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\windows\System32\rasmans.dll

22:05:29.0531 5660 RasMan - ok

22:05:29.0624 5660 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\windows\system32\DRIVERS\raspppoe.sys

22:05:29.0671 5660 RasPppoe - ok

22:05:29.0702 5660 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\windows\system32\DRIVERS\rassstp.sys

22:05:29.0718 5660 RasSstp - ok

22:05:29.0968 5660 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\windows\system32\DRIVERS\rdbss.sys

22:05:29.0983 5660 rdbss - ok

22:05:30.0046 5660 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\windows\system32\DRIVERS\rdpbus.sys

22:05:30.0061 5660 rdpbus - ok

22:05:30.0092 5660 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\windows\system32\DRIVERS\RDPCDD.sys

22:05:30.0092 5660 RDPCDD - ok

22:05:30.0139 5660 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\windows\system32\drivers\rdpencdd.sys

22:05:30.0139 5660 RDPENCDD - ok

22:05:30.0202 5660 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\windows\system32\drivers\rdprefmp.sys

22:05:30.0202 5660 RDPREFMP - ok

22:05:30.0358 5660 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\windows\system32\drivers\RDPWD.sys

22:05:30.0358 5660 RDPWD - ok

22:05:30.0482 5660 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\windows\system32\drivers\rdyboost.sys

22:05:30.0482 5660 rdyboost - ok

22:05:30.0654 5660 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\windows\System32\mprdim.dll

22:05:30.0654 5660 RemoteAccess - ok

22:05:30.0841 5660 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\windows\system32\regsvc.dll

22:05:30.0841 5660 RemoteRegistry - ok

22:05:30.0904 5660 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\windows\System32\RpcEpMap.dll

22:05:30.0919 5660 RpcEptMapper - ok

22:05:31.0013 5660 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\windows\system32\locator.exe

22:05:31.0013 5660 RpcLocator - ok

22:05:31.0184 5660 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\windows\system32\rpcss.dll

22:05:31.0200 5660 RpcSs - ok

22:05:31.0340 5660 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\windows\system32\DRIVERS\rspndr.sys

22:05:31.0356 5660 rspndr - ok

22:05:31.0465 5660 [ 3CEEE53BBF8BA284FF44585CEC0162FE ] RSUSBSTOR C:\windows\system32\Drivers\RtsUStor.sys

22:05:31.0496 5660 RSUSBSTOR - ok

22:05:31.0933 5660 [ FFC748D848740D1BC8F330A8879C2674 ] rtl8192Ce C:\windows\system32\DRIVERS\rtl8192Ce.sys

22:05:31.0996 5660 rtl8192Ce - ok

22:05:32.0027 5660 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\windows\system32\lsass.exe

22:05:32.0027 5660 SamSs - ok

22:05:32.0120 5660 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\windows\system32\drivers\sbp2port.sys

22:05:32.0120 5660 sbp2port - ok

22:05:32.0588 5660 [ 794D4B48DFB6E999537C7C3947863463 ] SBSDWSCService C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe

22:05:32.0620 5660 SBSDWSCService - ok

22:05:32.0698 5660 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\windows\System32\SCardSvr.dll

22:05:32.0729 5660 SCardSvr - ok

22:05:32.0885 5660 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\windows\system32\DRIVERS\scfilter.sys

22:05:32.0885 5660 scfilter - ok

22:05:33.0244 5660 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\windows\system32\schedsvc.dll

22:05:33.0337 5660 Schedule - ok

22:05:33.0431 5660 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\windows\System32\certprop.dll

22:05:33.0446 5660 SCPolicySvc - ok

22:05:33.0524 5660 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\windows\System32\SDRSVC.dll

22:05:33.0524 5660 SDRSVC - ok

22:05:33.0868 5660 [ CC781378E7EDA615D2CDCA3B17829FA4 ] SeaPort C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE

22:05:33.0883 5660 SeaPort - ok

22:05:33.0946 5660 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\windows\system32\drivers\secdrv.sys

22:05:33.0977 5660 secdrv - ok

22:05:34.0024 5660 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\windows\system32\seclogon.dll

22:05:34.0039 5660 seclogon - ok

22:05:34.0102 5660 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\windows\system32\sens.dll

22:05:34.0133 5660 SENS - ok

22:05:34.0211 5660 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\windows\system32\sensrsvc.dll

22:05:34.0211 5660 SensrSvc - ok

22:05:34.0336 5660 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\windows\system32\DRIVERS\serenum.sys

22:05:34.0351 5660 Serenum - ok

22:05:34.0398 5660 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\windows\system32\DRIVERS\serial.sys

22:05:34.0398 5660 Serial - ok

22:05:34.0507 5660 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\windows\system32\DRIVERS\sermouse.sys

22:05:34.0538 5660 sermouse - ok

22:05:34.0663 5660 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\windows\system32\sessenv.dll

22:05:34.0694 5660 SessionEnv - ok

22:05:34.0757 5660 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\windows\system32\drivers\sffdisk.sys

22:05:34.0757 5660 sffdisk - ok

22:05:34.0835 5660 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\windows\system32\drivers\sffp_mmc.sys

22:05:34.0835 5660 sffp_mmc - ok

22:05:34.0866 5660 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\windows\system32\drivers\sffp_sd.sys

22:05:34.0866 5660 sffp_sd - ok

22:05:34.0913 5660 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\windows\system32\DRIVERS\sfloppy.sys

22:05:34.0913 5660 sfloppy - ok

22:05:35.0209 5660 [ C6CC9297BD53E5229653303E556AA539 ] Sftfs C:\windows\system32\DRIVERS\Sftfslh.sys

22:05:35.0256 5660 Sftfs - ok

22:05:35.0584 5660 [ 13693B6354DD6E72DC5131DA7D764B90 ] sftlist C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe

22:05:35.0615 5660 sftlist - ok

22:05:35.0724 5660 [ 390AA7BC52CEE43F6790CDEA1E776703 ] Sftplay C:\windows\system32\DRIVERS\Sftplaylh.sys

22:05:35.0755 5660 Sftplay - ok

22:05:35.0818 5660 [ 617E29A0B0A2807466560D4C4E338D3E ] Sftredir C:\windows\system32\DRIVERS\Sftredirlh.sys

22:05:35.0849 5660 Sftredir - ok

22:05:35.0974 5660 [ 8F571F016FA1976F445147E9E6C8AE9B ] Sftvol C:\windows\system32\DRIVERS\Sftvollh.sys

22:05:36.0005 5660 Sftvol - ok

22:05:36.0083 5660 [ C3CDDD18F43D44AB713CF8C4916F7696 ] sftvsa C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe

22:05:36.0114 5660 sftvsa - ok

22:05:36.0332 5660 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\windows\System32\ipnathlp.dll

22:05:36.0379 5660 SharedAccess - ok

22:05:36.0504 5660 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\windows\System32\shsvcs.dll

22:05:36.0676 5660 ShellHWDetection - ok

22:05:36.0722 5660 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\windows\system32\DRIVERS\SiSRaid2.sys

22:05:36.0722 5660 SiSRaid2 - ok

22:05:36.0816 5660 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\windows\system32\DRIVERS\sisraid4.sys

22:05:36.0816 5660 SiSRaid4 - ok

22:05:36.0972 5660 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe

22:05:36.0988 5660 SkypeUpdate - ok

22:05:37.0050 5660 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\windows\system32\DRIVERS\smb.sys

22:05:37.0050 5660 Smb - ok

22:05:37.0159 5660 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\windows\System32\snmptrap.exe

22:05:37.0159 5660 SNMPTRAP - ok

22:05:37.0206 5660 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\windows\system32\drivers\spldr.sys

22:05:37.0206 5660 spldr - ok

22:05:37.0487 5660 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\windows\System32\spoolsv.exe

22:05:37.0549 5660 Spooler - ok

22:05:38.0984 5660 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\windows\system32\sppsvc.exe

22:05:39.0016 5660 sppsvc - ok

22:05:39.0078 5660 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\windows\system32\sppuinotify.dll

22:05:39.0078 5660 sppuinotify - ok

22:05:39.0421 5660 [ 891793E00432FA055CF040605C260E49 ] SRTSP C:\windows\System32\Drivers\N360x64\0604000.009\SRTSP64.SYS

22:05:39.0437 5660 SRTSP - ok

22:05:39.0484 5660 [ 1CB7BB3B0561FB5ECFE37F7731E8BF3E ] SRTSPX C:\windows\system32\drivers\N360x64\0604000.009\SRTSPX64.SYS

22:05:39.0484 5660 SRTSPX - ok

22:05:39.0655 5660 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\windows\system32\DRIVERS\srv.sys

22:05:39.0686 5660 srv - ok

22:05:39.0858 5660 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\windows\system32\DRIVERS\srv2.sys

22:05:39.0874 5660 srv2 - ok

22:05:40.0061 5660 [ 0C4540311E11664B245A263E1154CEF8 ] SrvHsfHDA C:\windows\system32\DRIVERS\VSTAZL6.SYS

22:05:40.0061 5660 SrvHsfHDA - ok

22:05:40.0435 5660 [ 02071D207A9858FBE3A48CBFD59C4A04 ] SrvHsfV92 C:\windows\system32\DRIVERS\VSTDPV6.SYS

22:05:40.0451 5660 SrvHsfV92 - ok

22:05:40.0919 5660 [ 18E40C245DBFAF36FD0134A7EF2DF396 ] SrvHsfWinac C:\windows\system32\DRIVERS\VSTCNXT6.SYS

22:05:40.0919 5660 SrvHsfWinac - ok

22:05:40.0997 5660 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\windows\system32\DRIVERS\srvnet.sys

22:05:41.0028 5660 srvnet - ok

22:05:41.0153 5660 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\windows\System32\ssdpsrv.dll

22:05:41.0168 5660 SSDPSRV - ok

22:05:41.0246 5660 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\windows\system32\sstpsvc.dll

22:05:41.0293 5660 SstpSvc - ok

22:05:41.0340 5660 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\windows\system32\DRIVERS\stexstor.sys

22:05:41.0340 5660 stexstor - ok

22:05:41.0496 5660 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\windows\System32\wiaservc.dll

22:05:41.0543 5660 stisvc - ok

22:05:41.0590 5660 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\windows\system32\drivers\swenum.sys

22:05:41.0605 5660 swenum - ok

22:05:41.0746 5660 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\windows\System32\swprv.dll

22:05:41.0746 5660 swprv - ok

22:05:41.0917 5660 [ 8B2430762099598DA40686F754632EFD ] SymDS C:\windows\system32\drivers\N360x64\0604000.009\SYMDS64.SYS

22:05:41.0917 5660 SymDS - ok

22:05:42.0229 5660 [ 5CB7F2FD7E30A0F52F93574BFC3A8041 ] SymEFA C:\windows\system32\drivers\N360x64\0604000.009\SYMEFA64.SYS

22:05:42.0245 5660 SymEFA - ok

22:05:42.0370 5660 [ 894579207E39C465737E850A252CE4F2 ] SymEvent C:\windows\system32\Drivers\SYMEVENT64x86.SYS

22:05:42.0385 5660 SymEvent - ok

22:05:42.0463 5660 [ 5013A76CAAA1D7CF1C55214B490B4E35 ] SymIRON C:\windows\system32\drivers\N360x64\0604000.009\Ironx64.SYS

22:05:42.0463 5660 SymIRON - ok

22:05:42.0853 5660 [ 3911BD0E68C010E5438A87706ABBE9AB ] SymNetS C:\windows\System32\Drivers\N360x64\0604000.009\SYMNETS.SYS

22:05:42.0869 5660 SymNetS - ok

22:05:43.0009 5660 [ 470C47DABA9CA3966F0AB3F835D7D135 ] SynTP C:\windows\system32\DRIVERS\SynTP.sys

22:05:43.0009 5660 SynTP - ok

22:05:43.0525 5660 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\windows\system32\sysmain.dll

22:05:43.0619 5660 SysMain - ok

22:05:43.0712 5660 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\windows\System32\TabSvc.dll

22:05:43.0728 5660 TabletInputService - ok

22:05:43.0853 5660 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\windows\System32\tapisrv.dll

22:05:43.0868 5660 TapiSrv - ok

22:05:43.0977 5660 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\windows\System32\tbssvc.dll

22:05:43.0977 5660 TBS - ok

22:05:44.0540 5660 [ 37608401DFDB388CAF66917F6B2D6FB0 ] Tcpip C:\windows\system32\drivers\tcpip.sys

22:05:44.0571 5660 Tcpip - ok

22:05:45.0164 5660 [ 37608401DFDB388CAF66917F6B2D6FB0 ] TCPIP6 C:\windows\system32\DRIVERS\tcpip.sys

22:05:45.0195 5660 TCPIP6 - ok

22:05:45.0242 5660 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\windows\system32\drivers\tcpipreg.sys

22:05:45.0258 5660 tcpipreg - ok

22:05:45.0305 5660 [ FD542B661BD22FA69CA789AD0AC58C29 ] tdcmdpst C:\windows\system32\DRIVERS\tdcmdpst.sys

22:05:45.0321 5660 tdcmdpst - ok

22:05:45.0352 5660 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\windows\system32\drivers\tdpipe.sys

22:05:45.0368 5660 TDPIPE - ok

22:05:45.0571 5660 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\windows\system32\drivers\tdtcp.sys

22:05:45.0571 5660 TDTCP - ok

22:05:45.0633 5660 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\windows\system32\DRIVERS\tdx.sys

22:05:45.0649 5660 tdx - ok

22:05:45.0742 5660 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\windows\system32\drivers\termdd.sys

22:05:45.0758 5660 TermDD - ok

22:05:45.0976 5660 [ 2E648163254233755035B46DD7B89123 ] TermService C:\windows\System32\termsrv.dll

22:05:46.0023 5660 TermService - ok

22:05:46.0117 5660 [ F0344071948D1A1FA732231785A0664C ] Themes C:\windows\system32\themeservice.dll

22:05:46.0132 5660 Themes - ok

22:05:46.0179 5660 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\windows\system32\mmcss.dll

22:05:46.0195 5660 THREADORDER - ok

22:05:46.0320 5660 [ 28644B0523D64EFF2FC7312A2EE74B0A ] TMachInfo C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe

22:05:46.0320 5660 TMachInfo - ok

22:05:46.0461 5660 [ ED32035BDFECED1AD66D459FD9CC1140 ] TODDSrv C:\Windows\system32\TODDSrv.exe

22:05:46.0492 5660 TODDSrv - ok

22:05:46.0742 5660 [ EFEF22B9577E5051057FDE1AE381B50C ] TomTomHOMEService C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe

22:05:46.0757 5660 TomTomHOMEService - ok

22:05:46.0976 5660 [ 98C864481D62F86EC8AF65BE3419A95B ] TosCoSrv C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe

22:05:46.0991 5660 TosCoSrv - ok

22:05:47.0116 5660 [ BAE96AD126F4EED4D361B092BA2E61FE ] TOSHIBA eco Utility Service C:\Program Files\TOSHIBA\TECO\TecoService.exe

22:05:47.0132 5660 TOSHIBA eco Utility Service - ok

22:05:47.0288 5660 [ 74C2FA8C3765EE71A9C22182EC108457 ] TOSHIBA HDD SSD Alert Service C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe

22:05:47.0288 5660 TOSHIBA HDD SSD Alert Service - ok

22:05:47.0506 5660 [ 97687D094AA597DA366E1194B218CC6C ] TPCHSrv C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe

22:05:47.0522 5660 TPCHSrv - ok

22:05:47.0724 5660 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\windows\System32\trkwks.dll

22:05:47.0740 5660 TrkWks - ok

22:05:47.0896 5660 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe

22:05:47.0927 5660 TrustedInstaller - ok

22:05:48.0021 5660 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\windows\system32\DRIVERS\tssecsrv.sys

22:05:48.0021 5660 tssecsrv - ok

22:05:48.0224 5660 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\windows\system32\drivers\tsusbflt.sys

22:05:48.0224 5660 TsUsbFlt - ok

22:05:48.0333 5660 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\windows\system32\DRIVERS\tunnel.sys

22:05:48.0380 5660 tunnel - ok

22:05:48.0458 5660 [ 550B567F9364D8F7684C3FB3EA665A72 ] TVALZ C:\windows\system32\DRIVERS\TVALZ_O.SYS

22:05:48.0458 5660 TVALZ - ok

22:05:48.0551 5660 [ 9C7191F4B2E49BFF47A6C1144B5923FA ] TVALZFL C:\windows\system32\DRIVERS\TVALZFL.sys

22:05:48.0614 5660 TVALZFL - ok

22:05:48.0692 5660 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\windows\system32\DRIVERS\uagp35.sys

22:05:48.0692 5660 uagp35 - ok

22:05:48.0879 5660 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\windows\system32\DRIVERS\udfs.sys

22:05:48.0879 5660 udfs - ok

22:05:48.0972 5660 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\windows\system32\UI0Detect.exe

22:05:48.0972 5660 UI0Detect - ok

22:05:48.0988 5660 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\windows\system32\drivers\uliagpkx.sys

22:05:48.0988 5660 uliagpkx - ok

22:05:49.0050 5660 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\windows\system32\drivers\umbus.sys

22:05:49.0066 5660 umbus - ok

22:05:49.0113 5660 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\windows\system32\DRIVERS\umpass.sys

22:05:49.0113 5660 UmPass - ok

22:05:49.0440 5660 [ 927754ABF077AEB5504BE4E0F2C60C1B ] UMVPFSrv C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe

22:05:49.0472 5660 UMVPFSrv - ok

22:05:49.0737 5660 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\windows\System32\upnphost.dll

22:05:49.0737 5660 upnphost - ok

22:05:49.0815 5660 [ 43228F8EDD1B0BCDD3145AD246E63D39 ] USBAAPL64 C:\windows\system32\Drivers\usbaapl64.sys

22:05:49.0815 5660 USBAAPL64 - ok

22:05:49.0862 5660 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:\windows\system32\drivers\usbaudio.sys

22:05:49.0862 5660 usbaudio - ok

22:05:49.0893 5660 [ 5FCC71487888589A9244AF54CFEFAB29 ] usbbus C:\windows\system32\DRIVERS\lgx64bus.sys

22:05:49.0893 5660 usbbus - ok

22:05:49.0955 5660 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\windows\system32\DRIVERS\usbccgp.sys

22:05:49.0955 5660 usbccgp - ok

22:05:49.0986 5660 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\windows\system32\drivers\usbcir.sys

22:05:49.0986 5660 usbcir - ok

22:05:50.0033 5660 [ 3FB6E423F7567C92C32EA786F5FD0C69 ] UsbDiag C:\windows\system32\DRIVERS\lgx64diag.sys

22:05:50.0033 5660 UsbDiag - ok

22:05:50.0096 5660 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\windows\system32\DRIVERS\usbehci.sys

22:05:50.0142 5660 usbehci - ok

22:05:50.0220 5660 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\windows\system32\DRIVERS\usbhub.sys

22:05:50.0236 5660 usbhub - ok

22:05:50.0298 5660 [ 78D551F5B93488B4666F5FC8DD4815F3 ] USBModem C:\windows\system32\DRIVERS\lgx64modem.sys

22:05:50.0314 5660 USBModem - ok

22:05:50.0361 5660 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\windows\system32\DRIVERS\usbohci.sys

22:05:50.0408 5660 usbohci - ok

22:05:50.0454 5660 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\windows\system32\DRIVERS\usbprint.sys

22:05:50.0470 5660 usbprint - ok

22:05:50.0517 5660 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\windows\system32\DRIVERS\usbscan.sys

22:05:50.0517 5660 usbscan - ok

22:05:50.0564 5660 [ 4ACEE387FA8FD39F83564FCD2FC234F2 ] usbser C:\windows\system32\DRIVERS\usbser.sys

22:05:50.0564 5660 usbser - ok

22:05:50.0626 5660 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\windows\system32\DRIVERS\USBSTOR.SYS

22:05:50.0642 5660 USBSTOR - ok

22:05:50.0657 5660 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\windows\system32\drivers\usbuhci.sys

22:05:50.0657 5660 usbuhci - ok

22:05:50.0751 5660 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\windows\System32\Drivers\usbvideo.sys

22:05:50.0766 5660 usbvideo - ok

22:05:50.0813 5660 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\windows\System32\uxsms.dll

22:05:50.0829 5660 UxSms - ok

22:05:50.0860 5660 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\windows\system32\lsass.exe

22:05:50.0860 5660 VaultSvc - ok

22:05:50.0954 5660 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\windows\system32\drivers\vdrvroot.sys

22:05:50.0954 5660 vdrvroot - ok

22:05:51.0032 5660 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\windows\System32\vds.exe

22:05:51.0032 5660 vds - ok

22:05:51.0078 5660 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\windows\system32\DRIVERS\vgapnp.sys

22:05:51.0078 5660 vga - ok

22:05:51.0110 5660 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\windows\System32\drivers\vga.sys

22:05:51.0125 5660 VgaSave - ok

22:05:51.0203 5660 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\windows\system32\drivers\vhdmp.sys

22:05:51.0219 5660 vhdmp - ok

22:05:51.0266 5660 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\windows\system32\drivers\viaide.sys

22:05:51.0266 5660 viaide - ok

22:05:51.0438 5660 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\windows\system32\drivers\volmgr.sys

22:05:51.0438 5660 volmgr - ok

22:05:51.0563 5660 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\windows\system32\drivers\volmgrx.sys

22:05:51.0563 5660 volmgrx - ok

22:05:51.0781 5660 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\windows\system32\drivers\volsnap.sys

22:05:51.0797 5660 volsnap - ok

22:05:51.0844 5660 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\windows\system32\DRIVERS\vsmraid.sys

22:05:51.0844 5660 vsmraid - ok

22:05:52.0203 5660 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\windows\system32\vssvc.exe

22:05:52.0249 5660 VSS - ok

22:05:52.0312 5660 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\windows\system32\DRIVERS\vwifibus.sys

22:05:52.0312 5660 vwifibus - ok

22:05:52.0359 5660 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\windows\system32\DRIVERS\vwififlt.sys

22:05:52.0374 5660 vwififlt - ok

22:05:52.0390 5660 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\windows\system32\DRIVERS\vwifimp.sys

22:05:52.0390 5660 vwifimp - ok

22:05:52.0452 5660 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\windows\system32\w32time.dll

22:05:52.0468 5660 W32Time - ok

22:05:52.0515 5660 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\windows\system32\DRIVERS\wacompen.sys

22:05:52.0515 5660 WacomPen - ok

22:05:52.0593 5660 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\windows\system32\DRIVERS\wanarp.sys

22:05:52.0624 5660 WANARP - ok

22:05:52.0639 5660 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\windows\system32\DRIVERS\wanarp.sys

22:05:52.0639 5660 Wanarpv6 - ok

22:05:52.0920 5660 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\windows\system32\Wat\WatAdminSvc.exe

22:05:52.0936 5660 WatAdminSvc - ok

22:05:53.0123 5660 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\windows\system32\wbengine.exe

22:05:53.0154 5660 wbengine - ok

22:05:53.0201 5660 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\windows\System32\wbiosrvc.dll

22:05:53.0217 5660 WbioSrvc - ok

22:05:53.0310 5660 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\windows\System32\wcncsvc.dll

22:05:53.0326 5660 wcncsvc - ok

22:05:53.0357 5660 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll

22:05:53.0357 5660 WcsPlugInService - ok

22:05:53.0404 5660 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\windows\system32\DRIVERS\wd.sys

22:05:53.0404 5660 Wd - ok

22:05:53.0482 5660 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\windows\system32\drivers\Wdf01000.sys

22:05:53.0482 5660 Wdf01000 - ok

22:05:53.0794 5660 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\windows\system32\wdi.dll

22:05:53.0809 5660 WdiServiceHost - ok

22:05:53.0809 5660 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\windows\system32\wdi.dll

22:05:53.0825 5660 WdiSystemHost - ok

22:05:53.0872 5660 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\windows\System32\webclnt.dll

22:05:53.0872 5660 WebClient - ok

22:05:53.0919 5660 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\windows\system32\wecsvc.dll

22:05:53.0919 5660 Wecsvc - ok

22:05:53.0950 5660 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\windows\System32\wercplsupport.dll

22:05:53.0981 5660 wercplsupport - ok

22:05:53.0997 5660 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\windows\System32\WerSvc.dll

22:05:53.0997 5660 WerSvc - ok

22:05:54.0043 5660 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\windows\system32\DRIVERS\wfplwf.sys

22:05:54.0059 5660 WfpLwf - ok

22:05:54.0121 5660 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\windows\system32\drivers\wimmount.sys

22:05:54.0121 5660 WIMMount - ok

22:05:54.0153 5660 WinDefend - ok

22:05:54.0168 5660 WinHttpAutoProxySvc - ok

22:05:54.0293 5660 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\windows\system32\wbem\WMIsvc.dll

22:05:54.0309 5660 Winmgmt - ok

22:05:54.0433 5660 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\windows\system32\WsmSvc.dll

22:05:54.0465 5660 WinRM - ok

22:05:54.0652 5660 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\windows\system32\DRIVERS\WinUsb.sys

22:05:54.0652 5660 WinUsb - ok

22:05:54.0745 5660 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\windows\System32\wlansvc.dll

22:05:54.0777 5660 Wlansvc - ok

22:05:54.0870 5660 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe

22:05:54.0870 5660 wlcrasvc - ok

22:05:55.0073 5660 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE

22:05:55.0151 5660 wlidsvc - ok

22:05:55.0198 5660 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\windows\system32\drivers\wmiacpi.sys

22:05:55.0198 5660 WmiAcpi - ok

22:05:55.0323 5660 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\windows\system32\wbem\WmiApSrv.exe

22:05:55.0338 5660 wmiApSrv - ok

22:05:55.0369 5660 WMPNetworkSvc - ok

22:05:55.0416 5660 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\windows\System32\wpcsvc.dll

22:05:55.0416 5660 WPCSvc - ok

22:05:55.0479 5660 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\windows\system32\wpdbusenum.dll

22:05:55.0494 5660 WPDBusEnum - ok

22:05:55.0541 5660 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\windows\system32\drivers\ws2ifsl.sys

22:05:55.0541 5660 ws2ifsl - ok

22:05:55.0603 5660 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\windows\system32\wscsvc.dll

22:05:55.0619 5660 wscsvc - ok

22:05:55.0635 5660 WSearch - ok

22:05:55.0759 5660 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\windows\system32\wuaueng.dll

22:05:55.0791 5660 wuauserv - ok

22:05:55.0822 5660 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\windows\system32\drivers\WudfPf.sys

22:05:55.0822 5660 WudfPf - ok

22:05:55.0900 5660 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\windows\system32\DRIVERS\WUDFRd.sys

22:05:55.0900 5660 WUDFRd - ok

22:05:55.0978 5660 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\windows\System32\WUDFSvc.dll

22:05:55.0978 5660 wudfsvc - ok

22:05:56.0040 5660 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\windows\System32\wwansvc.dll

22:05:56.0040 5660 WwanSvc - ok

22:05:56.0071 5660 ================ Scan global ===============================

22:05:56.0149 5660 [ BA0CD8C393E8C9F83354106093832C7B ] C:\windows\system32\basesrv.dll

22:05:56.0243 5660 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\windows\system32\winsrv.dll

22:05:56.0274 5660 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\windows\system32\winsrv.dll

22:05:56.0321 5660 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\windows\system32\sxssrv.dll

22:05:56.0399 5660 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\windows\system32\services.exe

22:05:56.0415 5660 [Global] - ok

22:05:56.0415 5660 ================ Scan MBR ==================================

22:05:56.0477 5660 [ 5B5E648D12FCADC244C1EC30318E1EB9 ] \Device\Harddisk0\DR0

22:05:57.0663 5660 \Device\Harddisk0\DR0 - ok

22:05:57.0663 5660 ================ Scan VBR ==================================

22:05:57.0694 5660 [ 29A4D3D12EF30CC1B5C2449899940070 ] \Device\Harddisk0\DR0\Partition1

22:05:57.0709 5660 \Device\Harddisk0\DR0\Partition1 - ok

22:05:57.0709 5660 ============================================================

22:05:57.0709 5660 Scan finished

22:05:57.0709 5660 ============================================================

22:05:57.0725 4964 Detected object count: 0

22:05:57.0725 4964 Actual detected object count: 0

22:06:05.0514 1844 Deinitialize success

aswMBR version 0.9.9.1707 Copyright© 2011 AVAST Software

Run date: 2012-12-09 22:30:02

-----------------------------

22:30:02.177 OS Version: Windows x64 6.1.7601 Service Pack 1

22:30:02.177 Number of processors: 2 586 0x603

22:30:02.177 ComputerName: NINA-PC UserName: Nina

22:31:01.467 Initialze error C000010E - driver not loaded

22:31:01.521 write error "aswCmnB.dll". The process cannot access the file because it is being used by another process.

22:31:08.372 AVAST engine defs: 12120902

22:31:36.413 Service scanning

22:33:06.466 Modules scanning

22:33:06.472 Disk 0 trace - called modules:

22:33:06.475

22:33:15.327 AVAST engine scan C:\windows

22:33:27.173 AVAST engine scan C:\windows\system32

22:39:42.297 AVAST engine scan C:\windows\system32\drivers

22:40:12.059 AVAST engine scan C:\Users\Nina

22:46:14.262 The log file has been saved successfully to "C:\Users\Nina\Desktop\aswMBR.txt"

Smitfraud-C.generic is still showing in Spybot.

Link to post
Share on other sites

I took a screen shot but for some reason am unable to paste it.

When I click the + beside the Smitfraud-C.generic this is what is seen: [sBI $5926A588) Executable, C:\Windows\svchost.exe. When I clicked on that file Malwarebytes Anti-Malware popped up saying that it has blocked the malicious process attempt and to select an option...disable protection, ignore or quarantine. Since I had to click something I clicked quarantine.

Link to post
Share on other sites

  • Staff

Greetings

At this time I would like you to run this script for me and it is a good time to check out the computer to see if there is anything else that needs to be addressed.

:Run CFScript:

Open Notepad and copy/paste the text in the box into the window:

 ClearJavaCache:: 

Save it to your desktop as CFScript.txt

Refering to the picture above, drag CFScript.txt into ComboFix.exe

CFScriptB-4.gif

This will let ComboFix run again.

Restart if you have to.

Save the produced logfile to your desktop.

Note: Do not mouseclick combofix's window whilst it's running. That may cause it to stall

Note 2: If you recieve an error "Illegal operation attempted on a registery key that has been marked for deletion." Please restart the computer

"information and logs"

  • In your next post I need the following
  1. report from Combofix
  2. let me know of any problems you may have had
  3. How is the computer doing now after running the script?

Gringo

Link to post
Share on other sites

  • Staff

Greetings

I have not heard from you in a couple of days so I am coming by to check on you to see if you are having problems or you just need some more time.

Also to remind you that it is very important that we finish the process completely so as to not get reinfected. I will let you know when we are complete and I will ask to remove our tools

Gringo

Link to post
Share on other sites

Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.