Windows 7 Forums
Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.


Windows 7: DDOS Attacks UDP files comeing in please take a look at this Combofix


04 Aug 2012   #1

64bit windows 7 ultimate
 
 
DDOS Attacks UDP files comeing in please take a look at this Combofix

Hello everyone ive recently found out ive been getting ddos attacks from multiple networks it shows on my avg about 30 difrent ip logs perfect of UDP files going in an out. i did a scan with combo fix recently but couldnt figure it out myself what was the problem exactly so if some one could help me out with this id really apriciate it im trying to get rid of this issue due to the fact that i think that some ones tapping my skype/facebook and is tapping my mic/vid.


Heres the combo fix Logs.

Code:
 
ComboFix 12-08-04.02 - George 08/04/2012 12:14:46.1.2 - x64
Microsoft Windows 7 Ultimate 6.1.7600.0.1252.1.1033.18.4095.2724 [GMT -7:00]
Running from: c:\users\George\Downloads\ComboFix.exe
AV: AVG Internet Security 2012 *Enabled/Updated* {5A2746B1-DEE9-F85A-FBCD-ADB11639C5F0}
FW: AVG Internet Security 2012 *Enabled* {621CC794-9486-F902-D092-0484E8EA828B}
SP: AVG Internet Security 2012 *Enabled/Updated* {E146A755-F8D3-F7D4-C17D-96C36DBE8F4D}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((( Files Created from 2012-07-04 to 2012-08-04 )))))))))))))))))))))))))))))))
.
.
2012-08-04 19:18 . 2012-08-04 19:18 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-08-04 02:49 . 2012-08-04 02:49 -------- d-----w- c:\program files\SUPERAntiSpyware
2012-08-04 02:49 . 2012-08-04 02:49 -------- d-----w- c:\programdata\SUPERAntiSpyware.com
2012-08-03 20:49 . 2009-03-09 22:27 520544 ----a-w- c:\windows\system32\d3dx10_41.dll
2012-08-03 20:48 . 2012-08-03 20:48 -------- d-----w- c:\program files (x86)\Bohemia Interactive
2012-08-03 20:45 . 2012-08-03 20:45 -------- d-----w- c:\program files (x86)\SIX Projects
2012-08-03 20:30 . 2012-08-03 20:30 -------- d-----w- c:\program files (x86)\Microsoft.NET
2012-08-03 20:29 . 2009-11-25 19:47 99176 ----a-w- c:\windows\SysWow64\PresentationHostProxy.dll
2012-08-03 20:29 . 2009-11-25 19:47 297808 ----a-w- c:\windows\SysWow64\mscoree.dll
2012-08-03 20:29 . 2009-11-25 19:47 295264 ----a-w- c:\windows\SysWow64\PresentationHost.exe
2012-08-03 20:29 . 2009-11-25 19:47 49472 ----a-w- c:\windows\SysWow64\netfxperf.dll
2012-08-03 20:29 . 2009-11-25 19:47 48960 ----a-w- c:\windows\system32\netfxperf.dll
2012-08-03 20:29 . 2009-11-25 19:47 1130824 ----a-w- c:\windows\SysWow64\dfshim.dll
2012-08-03 20:29 . 2009-11-25 19:47 109912 ----a-w- c:\windows\system32\PresentationHostProxy.dll
2012-08-03 20:29 . 2009-11-25 19:47 444752 ----a-w- c:\windows\system32\mscoree.dll
2012-08-03 20:29 . 2009-11-25 19:47 320352 ----a-w- c:\windows\system32\PresentationHost.exe
2012-08-03 20:29 . 2009-11-25 19:47 1942856 ----a-w- c:\windows\system32\dfshim.dll
2012-08-03 04:21 . 2008-07-31 17:41 68616 ----a-w- c:\windows\SysWow64\XAPOFX1_1.dll
2012-08-03 04:21 . 2008-07-31 17:40 509448 ----a-w- c:\windows\SysWow64\XAudio2_2.dll
2012-08-03 04:21 . 2008-07-12 15:18 467984 ----a-w- c:\windows\SysWow64\d3dx10_39.dll
2012-08-03 04:21 . 2008-07-12 15:18 1493528 ----a-w- c:\windows\SysWow64\D3DCompiler_39.dll
2012-08-03 04:21 . 2008-07-12 15:18 3851784 ----a-w- c:\windows\SysWow64\D3DX9_39.dll
2012-08-03 04:18 . 2012-08-03 04:18 -------- d-----w- C:\Riot Games
2012-08-03 04:18 . 2012-08-03 04:18 -------- d--h--w- c:\program files (x86)\InstallShield Installation Information
2012-08-03 03:50 . 2012-08-03 03:50 -------- d-----w- c:\program files (x86)\Microsoft LifeCam
2012-08-03 03:50 . 2012-08-03 03:50 -------- d-----w- c:\program files\Microsoft LifeCam
2012-08-03 03:50 . 2009-09-05 00:29 1974616 ----a-w- c:\windows\SysWow64\D3DCompiler_42.dll
2012-08-03 03:50 . 2009-09-05 00:29 1892184 ----a-w- c:\windows\SysWow64\D3DX9_42.dll
2012-08-03 03:47 . 2012-08-03 02:54 -------- d-----w- c:\windows\Panther
2012-08-03 03:47 . 2012-08-03 03:47 -------- d-----w- C:\Boot
2012-08-03 03:45 . 2012-08-03 04:43 70344 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-08-03 03:45 . 2012-08-03 04:43 426184 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2012-08-03 03:45 . 2012-08-03 03:45 -------- d-----w- c:\windows\SysWow64\Macromed
2012-08-03 03:45 . 2012-08-03 03:45 -------- d-----w- c:\windows\system32\Macromed
2012-08-03 03:38 . 2012-08-03 20:55 -------- d-----w- c:\program files (x86)\Common Files\Steam
2012-08-03 03:38 . 2012-08-04 19:22 -------- d-----w- c:\program files (x86)\Steam
2012-08-03 03:32 . 2012-08-03 03:32 -------- d-----w- c:\program files (x86)\Common Files\Skype
2012-08-03 03:32 . 2012-08-03 03:32 -------- d-----r- c:\program files (x86)\Skype
2012-08-03 03:32 . 2012-08-03 03:33 -------- d-----w- c:\programdata\Skype
2012-08-03 03:27 . 2012-08-04 11:00 -------- d-----w- c:\programdata\PMB Files
2012-08-03 03:26 . 2012-08-03 03:26 -------- d-----w- c:\program files (x86)\Pando Networks
2012-08-03 03:25 . 2012-08-03 03:25 -------- d-----w- c:\program files\Ventrilo
2012-08-03 03:25 . 2012-08-03 03:25 -------- d-----w- c:\program files (x86)\Common Files\Wise Installation Wizard
2012-08-03 03:10 . 2012-08-03 03:10 -------- d-----w- c:\program files (x86)\Mozilla Maintenance Service
2012-08-03 03:01 . 2012-08-03 03:06 -------- d-----w- c:\programdata\AVG Secure Search
2012-08-03 03:00 . 2012-08-03 03:00 31080 ----a-w- c:\windows\system32\drivers\avgtpx64.sys
2012-08-03 03:00 . 2012-08-03 03:00 -------- d-----w- c:\program files (x86)\Common Files\AVG Secure Search
2012-08-03 03:00 . 2012-08-03 03:01 -------- d-----w- c:\program files (x86)\AVG Secure Search
2012-08-03 03:00 . 2012-08-03 03:00 -------- d-----w- c:\windows\SysWow64\drivers\AVG
2012-08-03 03:00 . 2012-08-04 18:08 -------- d-----w- c:\windows\system32\drivers\AVG
2012-08-03 03:00 . 2012-08-03 03:17 -------- d-----w- c:\programdata\AVG2012
2012-08-03 03:00 . 2012-08-03 03:00 -------- d-----w- C:\$AVG
2012-08-03 03:00 . 2012-08-03 03:00 -------- d-----w- c:\program files (x86)\AVG
2012-08-03 02:57 . 2012-08-03 20:45 -------- d-sh--w- c:\windows\Installer
2012-08-03 02:57 . 2012-08-03 02:57 -------- d--h--w- c:\programdata\Common Files
2012-08-03 02:57 . 2012-08-04 18:08 -------- d-----w- c:\programdata\MFAData
2012-08-03 02:55 . 2012-08-03 03:38 -------- d-----w- c:\users\George
2012-08-03 02:54 . 2012-08-03 02:54 -------- d-----w- C:\Recovery
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown 
REGEDIT4
.
[HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}]
2012-08-03 03:00 2086496 ----a-w- c:\program files (x86)\AVG Secure Search\12.1.0.21\AVG Secure Search_toolbar.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar]
"{95B7759C-8C7F-4BF1-B163-73684A933233}"= "c:\program files (x86)\AVG Secure Search\12.1.0.21\AVG Secure Search_toolbar.dll" [2012-08-03 2086496]
.
[HKEY_CLASSES_ROOT\clsid\{95b7759c-8c7f-4bf1-b163-73684a933233}]
[HKEY_CLASSES_ROOT\AVG Secure Search.PugiObj.1]
[HKEY_CLASSES_ROOT\AVG Secure Search.PugiObj]
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2012-07-13 17418928]
"Steam"="c:\program files (x86)\Steam\Steam.exe" [2012-08-04 1353080]
"SUPERAntiSpyware"="c:\program files\SUPERAntiSpyware\SUPERAntiSpyware.exe" [2012-07-09 5661056]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"AVG_TRAY"="c:\program files (x86)\AVG\AVG2012\avgtray.exe" [2012-04-05 2587008]
"vProt"="c:\program files (x86)\AVG Secure Search\vprot.exe" [2012-08-03 1147488]
"LifeCam"="c:\program files (x86)\Microsoft LifeCam\LifeExp.exe" [2010-05-20 119152]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0c:\progra~2\AVG\AVG2012\avgrsa.exe /sync /restart
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
@=""
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2012-07-13 160944]
R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-08-03 250056]
R3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2012-07-14 113120]
S0 AVGIDSHA;AVGIDSHA;c:\windows\system32\DRIVERS\avgidsha.sys [2012-04-19 28480]
S0 Avgrkx64;AVG Anti-Rootkit Driver;c:\windows\system32\DRIVERS\avgrkx64.sys [2012-01-31 36944]
S1 Avgfwfd;AVG network filter service;c:\windows\system32\DRIVERS\avgfwd6a.sys [2011-05-23 48992]
S1 Avgldx64;AVG AVI Loader Driver;c:\windows\system32\DRIVERS\avgldx64.sys [2012-02-22 289872]
S1 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\DRIVERS\avgmfx64.sys [2011-12-23 47696]
S1 Avgtdia;AVG TDI Driver;c:\windows\system32\DRIVERS\avgtdia.sys [2012-03-19 383808]
S1 avgtp;avgtp;c:\windows\system32\drivers\avgtpx64.sys [2012-08-03 31080]
S1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
S1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
S2 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCORE64.EXE [2011-08-11 140672]
S2 avgfws;AVG Firewall;c:\program files (x86)\AVG\AVG2012\avgfws.exe [2012-06-13 2321560]
S2 AVGIDSAgent;AVGIDSAgent;c:\program files (x86)\AVG\AVG2012\avgidsagent.exe [2012-07-05 5160568]
S2 avgwd;AVG WatchDog;c:\program files (x86)\AVG\AVG2012\avgwdsvc.exe [2012-02-14 193288]
S2 vToolbarUpdater12.1.5;vToolbarUpdater12.1.5;c:\program files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\12.1.5\ToolbarUpdater.exe [2012-08-03 830048]
S3 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\DRIVERS\avgidsdrivera.sys [2011-12-23 124496]
S3 AVGIDSFilter;AVGIDSFilter;c:\windows\system32\DRIVERS\avgidsfiltera.sys [2011-12-23 29776]
S3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;c:\windows\system32\DRIVERS\yk62x64.sys [2009-06-10 389120]
.
.
--- Other Services/Drivers In Memory ---
.
*NewlyCreated* - WS2IFSL
.
Contents of the 'Scheduled Tasks' folder
.
2012-08-04 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-08-03 04:43]
.
2012-08-04 c:\windows\Tasks\SUPERAntiSpyware Scheduled Task 7c6df976-724d-4c84-9c32-d2218777cfe0.job
- c:\program files\SUPERAntiSpyware\SASTask.exe [2011-05-04 17:52]
.
2012-08-04 c:\windows\Tasks\SUPERAntiSpyware Scheduled Task 8402c268-805d-4ad8-aa3a-3e159ce5bf98.job
- c:\program files\SUPERAntiSpyware\SASTask.exe [2011-05-04 17:52]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"VX1000"="c:\windows\vVX1000.exe" [2010-05-20 762736]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"LoadAppInit_DLLs"=0x0
.
------- Supplementary Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
TCP: DhcpNameServer = 192.168.1.1
Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - c:\program files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\12.1.5\ViProtocol.dll
FF - ProfilePath - c:\users\George\AppData\Roaming\Mozilla\Firefox\Profiles\tgajq5el.default\
FF - prefs.js: browser.startup.homepage - Google
.
- - - - ORPHANS REMOVED - - - -
.
WebBrowser-{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - (no file)
AddRemove-BattlEye for A2 - c:\program files (x86)\steam\steamapps\common\arma 2BattlEye\UnInstallBE.exe
.
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Completion time: 2012-08-04 12:25:02 - machine was rebooted
ComboFix-quarantined-files.txt 2012-08-04 19:25
.
Pre-Run: 448,740,659,200 bytes free
Post-Run: 448,784,015,360 bytes free
.
- - End Of File - - A74B429A84B740E80DE4C9874CE06DC4

This is a difrent software that i used to scan the computer with its just like combo fix but slightly difrent

Code:
 
aswMBR version 0.9.9.1665 Copyright(c) 2011 AVAST Software
Run date: 2012-08-04 12:09:12
-----------------------------
12:09:12.467 OS Version: Windows x64 6.1.7600 
12:09:12.467 Number of processors: 2 586 0x170A
12:09:12.467 ComputerName: GEORGE-PC UserName: George
12:09:17.222 Initialize success
12:09:33.021 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP2T0L0-2
12:09:33.021 Disk 0 Vendor: ST3500410AS CC34 Size: 476940MB BusType: 3
12:09:33.021 Disk 1 \Device\Harddisk1\DR1 -> \Device\Ide\IdeDeviceP3T1L0-7
12:09:33.021 Disk 1 Vendor: WDC_WD7500AAKS-00RBA0 30.04G30 Size: 715404MB BusType: 3
12:09:33.036 Disk 0 MBR read successfully
12:09:33.036 Disk 0 MBR scan
12:09:33.036 Disk 0 Windows 7 default MBR code
12:09:33.052 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 476939 MB offset 4
12:09:33.052 Disk 0 scanning C:\Windows\system32\drivers
12:09:36.905 Service scanning
12:09:44.502 Modules scanning
12:09:44.502 Disk 0 trace - called modules:
12:09:44.518 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys ataport.SYS pciide.sys PCIIDEX.SYS hal.dll atapi.sys 
12:09:44.518 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa80048fc060]
12:09:45.033 3 CLASSPNP.SYS[fffff880019a943f] -> nt!IofCallDriver -> [0xfffffa800443b580]
12:09:45.033 5 ACPI.sys[fffff88000fa4781] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP2T0L0-2[0xfffffa80047b4060]
12:09:45.033 Scan finished successfully
12:10:15.927 Disk 0 MBR has been saved successfully to "C:\Users\George\Desktop\MBR.dat"
12:10:15.927 The log file has been saved successfully to "C:\Users\George\Desktop\aswMBR.txt"



i hope this is enough info to figure out what im exactly dealing with but heres all the info i gathered so far apriciate all the help thanks all.


My System SpecsSystem Spec
.

04 Aug 2012   #2

Microsoft Community Contributor Award Recipient

Windows 8.1 Pro x64
 
 

Hello Nep12 and welcome to the forums

You should never use Combofix, aswMBR or any other advanced malware removal tool without the supervision of a trained analyst. They are extremely powerful tools and can cause all sorts of problems if you don't know what you're doing.

As stated by the creator of Combofix (sUBs):
Quote:
ComboFix is a very powerful tool which when improperly used may render your machine to a doorstop.

We first need to verify if there are any rootkits present and how they could affect our tools. Thus, we use preliminary scans like DDS and GMER and their logs to map our strategy for attack.

With these logs, we can determine the infections present and decide whether to deploy ComboFix.
You may think everything has ran properly, but you've actually run Combofix in the wrong way. Just be warned for future reference

Do not use Combofix on your own!!

Tom
My System SpecsSystem Spec
04 Aug 2012   #3

64bit windows 7 ultimate
 
 

thanks for your reply tom i do apriciate it and will definitly be more carefull what and how i run some programs but ive been haveing some serious issues lately and i need some serious help.
My System SpecsSystem Spec
.


04 Aug 2012   #4

Microsoft Community Contributor Award Recipient

Windows 8.1 Pro x64
 
 

Quote   Quote: Originally Posted by Nep12 View Post
thanks for your reply tom i do apriciate it and will definitly be more carefull what and how i run some programs but ive been haveing some serious issues lately and i need some serious help.
Lesson learnt then I understand people can get in a bit of a fluster when they start realising they have problems.

Can you upload the AVG logs please?

Tom
My System SpecsSystem Spec
04 Aug 2012   #5

64bit windows 7 ultimate
 
 

Alright this is the vault i found ill upload traffic logs in a phew.





Code:
[AVG.LOG.SM] ALL 2012-08-03 03:04:38,791 GEORGE-PC PID:608 THID:3160 ID:AVG.LOG.SM:0.0.0.0 MSG:c00000008791786006576bAKLFAsrZ9thbrt1xYXbyDSNF5DO3psNIdxmUwYvB6eNjMEysVD/vNSKdabbUd6lh5OXp44eQzd9b3WtKAv/qQ/KWDfRq4A4dNVflzSefBfIy3OZ0lI9ryCWOgJZbAEbwRis3oJG7YLeWSPsI4+oMGY5czWiSDI5+NmDJndFn7MF4Qmgz15qQWH/88WyFST+Ajs1wSGZJ5e6mX5TTZZ7C4ss33GRo0to2KyKYkdfEAskKbgUW+uHP05J0Gsux+pd844Plk2x7yzcVA9sDlfnaXjSypsYWiLW9ghaLr/BqKiISkym+qSlH9rzz356NnbaOcDeGGg6sxGIMWITzzRRKQhU=
[AVG.VAULT.FALSEALARM] INFO 2012-08-03 03:04:38,869 GEORGE-PC PID:608 THID:3160 ID:FA:1086.2111.2a23f7a.0 MSG:*
[AVG.LOG.SM] ALL 2012-08-03 03:04:38,791 GEORGE-PC PID:608 THID:3160 ID:AVG.LOG.SM:0.0.0.0 MSG:c00000008791786006576bAKLFAsrZ9thbrt1xYXbyDSNF5DO3psNIdxmUwYvB6eNjMEysVD/vNSKdabbUd6lh5OXp44eQzd9b3WtKAv/qQ/KWDfRq4A4dNVflzSefBfIy3OZ0lI9ryCWOgJZbAEbwRis3oJG7YLeWSPsI4+oMGY5czWiSDI5+NmDJndFn7MF4Qmgz15qQWH/88WyFST+Ajs1wSGZJ5e6mX5TTZZ7C4ss33GRo0to2KyKYkdfEAskKbgUW+uHP05J0Gsux+pd844Plk2x7yzcVA9sDlfnaXjSypsYWiLW9ghaLr/BqKiISkym+qSlH9rzz356NnbaOcDeGGg6sxGIMWITzzRRKQhU=
[AVG.VAULT.FALSEALARM] INFO 2012-08-03 03:04:39,025 GEORGE-PC PID:608 THID:3160 ID:FA:1099.2111.2a23f7a.0 MSG:*
[AVG.VAULT.FALSEALARM] INFO 2012-08-03 03:04:39,025 GEORGE-PC PID:608 THID:3160 ID:FA:1145.2111.2a23f7a.0 MSG:*
[AVG.LOG.SM] ALL 2012-08-03 03:04:38,791 GEORGE-PC PID:608 THID:3160 ID:AVG.LOG.SM:0.0.0.0 MSG:c00000008791786006576bAKLFAsrZ9thbrt1xYXbyDSNF5DO3psNIdxmUwYvB6eNjMEysVD/vNSKdabbUd6lh5OXp44eQzd9b3WtKAv/qQ/KWDfRq4A4dNVflzSefBfIy3OZ0lI9ryCWOgJZbAEbwRis3oJG7YLeWSPsI4+oMGY5czWiSDI5+NmDJndFn7MF4Qmgz15qQWH/88WyFST+Ajs1wSGZJ5e6mX5TTZZ7C4ss33GRo0to2KyKYkdfEAskKbgUW+uHP05J0Gsux+pd844Plk2x7yzcVA9sDlfnaXjSypsYWiLW9ghaLr/BqKiISkym+qSlH9rzz356NnbaOcDeGGg6sxGIMWITzzRRKQhU=
[AVG.VAULT] INFO 2012-08-03 03:04:39,134 GEORGE-PC PID:608 THID:3160 ID:{FB35234C-DFA5-447c-BB78-D36ECAB5F4F5}:86.2111.2a23f7a.0 MSG:*
[AVG.VAULT.FALSEALARM] INFO 2012-08-03 03:04:39,680 GEORGE-PC PID:608 THID:3160 ID:FA:1158.2111.2a23f7a.0 MSG:*
[AVG.VAULT.FALSEALARM] INFO 2012-08-03 03:04:39,680 GEORGE-PC PID:608 THID:3160 ID:FA:902.2111.2a23f7a.0 MSG:*
[AVG.LOG.SM] ALL 2012-08-03 03:04:38,791 GEORGE-PC PID:608 THID:3160 ID:AVG.LOG.SM:0.0.0.0 MSG:c00000008791786006576bAKLFAsrZ9thbrt1xYXbyDSNF5DO3psNIdxmUwYvB6eNjMEysVD/vNSKdabbUd6lh5OXp44eQzd9b3WtKAv/qQ/KWDfRq4A4dNVflzSefBfIy3OZ0lI9ryCWOgJZbAEbwRis3oJG7YLeWSPsI4+oMGY5czWiSDI5+NmDJndFn7MF4Qmgz15qQWH/88WyFST+Ajs1wSGZJ5e6mX5TTZZ7C4ss33GRo0to2KyKYkdfEAskKbgUW+uHP05J0Gsux+pd844Plk2x7yzcVA9sDlfnaXjSypsYWiLW9ghaLr/BqKiISkym+qSlH9rzz356NnbaOcDeGGg6sxGIMWITzzRRKQhU=
[AVG.VAULT.FALSEALARM] INFO 2012-08-03 03:04:41,989 GEORGE-PC PID:608 THID:3160 ID:FA:941.2111.2a23f7a.0 MSG:*
[AVG.VAULT.FALSEALARM] INFO 2012-08-03 03:04:41,989 GEORGE-PC PID:608 THID:3160 ID:FA:653.2111.2a23f7a.0 MSG:*
[AVG.LOG.SM] ALL 2012-08-03 03:04:38,791 GEORGE-PC PID:608 THID:3160 ID:AVG.LOG.SM:0.0.0.0 MSG:c00000008791786006576bAKLFAsrZ9thbrt1xYXbyDSNF5DO3psNIdxmUwYvB6eNjMEysVD/vNSKdabbUd6lh5OXp44eQzd9b3WtKAv/qQ/KWDfRq4A4dNVflzSefBfIy3OZ0lI9ryCWOgJZbAEbwRis3oJG7YLeWSPsI4+oMGY5czWiSDI5+NmDJndFn7MF4Qmgz15qQWH/88WyFST+Ajs1wSGZJ5e6mX5TTZZ7C4ss33GRo0to2KyKYkdfEAskKbgUW+uHP05J0Gsux+pd844Plk2x7yzcVA9sDlfnaXjSypsYWiLW9ghaLr/BqKiISkym+qSlH9rzz356NnbaOcDeGGg6sxGIMWITzzRRKQhU=
[AVG.VAULT.FALSEALARM] INFO 2012-08-03 03:04:41,989 GEORGE-PC PID:608 THID:3160 ID:FA:660.2111.2a23f7a.0 MSG:*
[AVG.LOG.SM] ALL 2012-08-03 03:04:38,791 GEORGE-PC PID:608 THID:3160 ID:AVG.LOG.SM:0.0.0.0 MSG:c00000008791786006576bAKLFAsrZ9thbrt1xYXbyDSNF5DO3psNIdxmUwYvB6eNjMEysVD/vNSKdabbUd6lh5OXp44eQzd9b3WtKAv/qQ/KWDfRq4A4dNVflzSefBfIy3OZ0lI9ryCWOgJZbAEbwRis3oJG7YLeWSPsI4+oMGY5czWiSDI5+NmDJndFn7MF4Qmgz15qQWH/88WyFST+Ajs1wSGZJ5e6mX5TTZZ7C4ss33GRo0to2KyKYkdfEAskKbgUW+uHP05J0Gsux+pd844Plk2x7yzcVA9sDlfnaXjSypsYWiLW9ghaLr/BqKiISkym+qSlH9rzz356NnbaOcDeGGg6sxGIMWITzzRRKQhU=
[AVG.VAULT] INFO 2012-08-03 03:04:42,020 GEORGE-PC PID:608 THID:3160 ID:{092C0D4D-E5F0-4456-9310-C128588B4492}:667.2111.2a23f7a.0 MSG:*
[AVG.VAULT.FALSEALARM] INFO 2012-08-03 03:04:42,691 GEORGE-PC PID:608 THID:3160 ID:FA:713.2111.2a23f7a.0 MSG:aAQ5rkF51f4gMqERfDoC/nA0NSYD66x1notEs
[AVG.VAULT.FALSEALARM] INFO 2012-08-03 03:04:42,831 GEORGE-PC PID:608 THID:3160 ID:FA:954.2111.2a23f7a.0 MSG:*
[AVG.VAULT.FALSEALARM] INFO 2012-08-03 03:04:42,831 GEORGE-PC PID:608 THID:3160 ID:FA:1169.2111.2a23f7a.0 MSG:*
[AVG.VAULT] INFO 2012-08-03 03:04:42,831 GEORGE-PC PID:608 THID:3160 ID:{FB35234C-DFA5-447c-BB78-D36ECAB5F4F5}:95.2111.2a23f7a.0 MSG:*
[AVG.VAULT.FALSEALARM] INFO 2012-08-03 03:04:42,831 GEORGE-PC PID:608 THID:3160 ID:FA:1111.2111.2a23f7a.0 MSG:*
[AVG.VAULT.FALSEALARM] INFO 2012-08-03 03:04:42,831 GEORGE-PC PID:608 THID:3160 ID:FA:675.2111.2a23f7a.0 MSG:*
[AVG.VAULT.FALSEALARM] INFO 2012-08-03 03:04:42,831 GEORGE-PC PID:608 THID:3160 ID:FA:683.2111.2a23f7a.0 MSG:*
[AVG.LOG.SM] ALL 2012-08-03 06:36:57,538 GEORGE-PC PID:356 THID:2768 ID:AVG.LOG.SM:0.0.0.0 MSG:c00000000001938037904bAAeFIXhQxFEsAuxkXKPS/oyGl5kt7QDjm5E2dYbTl6CsgKMpjjkJ+EGsj5nA81d51yAEzmi0h5P/1dSCqcS7C/W2C/n7hD2IhYAQu/eyGTbWJsqSL7WrVsmMVrxVRuVzK8AGk5bL+J+h57y6vtnaMwdOhRtnio4M3+buOnow5kL2AuAecbQcu86B7lctWUz8ZaM7rnEna7uwYnaGN1tegUSX9Kn9RShKeYIzVB+q/3ohHKoPK1Knt2sPSPaYmPs+m9CCddGWRkxEpzpiRUYlIGM25mi9pLfnntkyleqcEC0EQh91GX6A3Vs8L/tnSWbmLUeUzeiPY3QDWzfeg5xFnNw=
[AVG.VAULT] INFO 2012-08-03 06:36:57,681 GEORGE-PC PID:356 THID:2768 ID:{FB35234C-DFA5-447c-BB78-D36ECAB5F4F5}:86.2111.2a23f7a.0 MSG:*
[AVG.LOG.SM] ALL 2012-08-03 06:36:57,538 GEORGE-PC PID:356 THID:2768 ID:AVG.LOG.SM:0.0.0.0 MSG:c00000000001938037904bAAeFIXhQxFEsAuxkXKPS/oyGl5kt7QDjm5E2dYbTl6CsgKMpjjkJ+EGsj5nA81d51yAEzmi0h5P/1dSCqcS7C/W2C/n7hD2IhYAQu/eyGTbWJsqSL7WrVsmMVrxVRuVzK8AGk5bL+J+h57y6vtnaMwdOhRtnio4M3+buOnow5kL2AuAecbQcu86B7lctWUz8ZaM7rnEna7uwYnaGN1tegUSX9Kn9RShKeYIzVB+q/3ohHKoPK1Knt2sPSPaYmPs+m9CCddGWRkxEpzpiRUYlIGM25mi9pLfnntkyleqcEC0EQh91GX6A3Vs8L/tnSWbmLUeUzeiPY3QDWzfeg5xFnNw=
[AVG.VAULT] INFO 2012-08-03 06:36:58,725 GEORGE-PC PID:356 THID:2768 ID:{FB35234C-DFA5-447c-BB78-D36ECAB5F4F5}:95.2111.2a23f7a.0 MSG:*
[AVG.LOG.SM] ALL 2012-08-03 10:20:56,704 GEORGE-PC PID:3108 THID:7692 ID:AVG.LOG.SM:0.0.0.0 MSG:c00000008791785089072bAEU6QZi06J29H1SWycUv9ndd46lh5A24G0VxwlrdFIHLzfJizNAcy9l1ePQAqANTYoIpFH6CadMYmXYqk+sDFSN0vE7XHVGA/gcphi8NN+84Bq001U6ckoK3R+FXKPq+yfgRJrHB1Y2EaqHTbe3iMbIbzCM+CrufYQGkO0rRiuEJgMGJS105j/Datx6rxxJqiTXfnBOjt7meZx1aLLOxFddQrWn7h/AR9U2z2GriFOkyx1moyP1QKGWRW4EIaKerFIFDWUeiOkZW1wjOwXaztAXnEH9KpiPIpiuDVSCzTsypPvD8F4Qa1zfaYChwcehmH8OslknW48dTdf4JTjZa03k=
[AVG.VAULT.FALSEALARM] INFO 2012-08-03 10:20:56,705 GEORGE-PC PID:3108 THID:7692 ID:FA:1086.2111.2a23f7a.0 MSG:*
[AVG.LOG.SM] ALL 2012-08-03 10:20:56,704 GEORGE-PC PID:3108 THID:7692 ID:AVG.LOG.SM:0.0.0.0 MSG:c00000008791785089072bAEU6QZi06J29H1SWycUv9ndd46lh5A24G0VxwlrdFIHLzfJizNAcy9l1ePQAqANTYoIpFH6CadMYmXYqk+sDFSN0vE7XHVGA/gcphi8NN+84Bq001U6ckoK3R+FXKPq+yfgRJrHB1Y2EaqHTbe3iMbIbzCM+CrufYQGkO0rRiuEJgMGJS105j/Datx6rxxJqiTXfnBOjt7meZx1aLLOxFddQrWn7h/AR9U2z2GriFOkyx1moyP1QKGWRW4EIaKerFIFDWUeiOkZW1wjOwXaztAXnEH9KpiPIpiuDVSCzTsypPvD8F4Qa1zfaYChwcehmH8OslknW48dTdf4JTjZa03k=
[AVG.VAULT.FALSEALARM] INFO 2012-08-03 10:20:56,716 GEORGE-PC PID:3108 THID:7692 ID:FA:1099.2111.2a23f7a.0 MSG:*
[AVG.VAULT.FALSEALARM] INFO 2012-08-03 10:20:56,716 GEORGE-PC PID:3108 THID:7692 ID:FA:1145.2111.2a23f7a.0 MSG:*
[AVG.LOG.SM] ALL 2012-08-03 10:20:56,704 GEORGE-PC PID:3108 THID:7692 ID:AVG.LOG.SM:0.0.0.0 MSG:c00000008791785089072bAEU6QZi06J29H1SWycUv9ndd46lh5A24G0VxwlrdFIHLzfJizNAcy9l1ePQAqANTYoIpFH6CadMYmXYqk+sDFSN0vE7XHVGA/gcphi8NN+84Bq001U6ckoK3R+FXKPq+yfgRJrHB1Y2EaqHTbe3iMbIbzCM+CrufYQGkO0rRiuEJgMGJS105j/Datx6rxxJqiTXfnBOjt7meZx1aLLOxFddQrWn7h/AR9U2z2GriFOkyx1moyP1QKGWRW4EIaKerFIFDWUeiOkZW1wjOwXaztAXnEH9KpiPIpiuDVSCzTsypPvD8F4Qa1zfaYChwcehmH8OslknW48dTdf4JTjZa03k=
[AVG.VAULT] INFO 2012-08-03 10:20:56,720 GEORGE-PC PID:3108 THID:7692 ID:{FB35234C-DFA5-447c-BB78-D36ECAB5F4F5}:86.2111.2a23f7a.0 MSG:*
[AVG.VAULT.FALSEALARM] INFO 2012-08-03 10:20:56,722 GEORGE-PC PID:3108 THID:7692 ID:FA:1158.2111.2a23f7a.0 MSG:*
[AVG.VAULT.FALSEALARM] INFO 2012-08-03 10:20:56,722 GEORGE-PC PID:3108 THID:7692 ID:FA:902.2111.2a23f7a.0 MSG:*
[AVG.LOG.SM] ALL 2012-08-03 10:20:56,704 GEORGE-PC PID:3108 THID:7692 ID:AVG.LOG.SM:0.0.0.0 MSG:c00000008791785089072bAEU6QZi06J29H1SWycUv9ndd46lh5A24G0VxwlrdFIHLzfJizNAcy9l1ePQAqANTYoIpFH6CadMYmXYqk+sDFSN0vE7XHVGA/gcphi8NN+84Bq001U6ckoK3R+FXKPq+yfgRJrHB1Y2EaqHTbe3iMbIbzCM+CrufYQGkO0rRiuEJgMGJS105j/Datx6rxxJqiTXfnBOjt7meZx1aLLOxFddQrWn7h/AR9U2z2GriFOkyx1moyP1QKGWRW4EIaKerFIFDWUeiOkZW1wjOwXaztAXnEH9KpiPIpiuDVSCzTsypPvD8F4Qa1zfaYChwcehmH8OslknW48dTdf4JTjZa03k=
[AVG.VAULT.FALSEALARM] INFO 2012-08-03 10:20:56,796 GEORGE-PC PID:3108 THID:7692 ID:FA:941.2111.2a23f7a.0 MSG:*
[AVG.VAULT.FALSEALARM] INFO 2012-08-03 10:20:56,796 GEORGE-PC PID:3108 THID:7692 ID:FA:653.2111.2a23f7a.0 MSG:*
[AVG.LOG.SM] ALL 2012-08-03 10:20:56,704 GEORGE-PC PID:3108 THID:7692 ID:AVG.LOG.SM:0.0.0.0 MSG:c00000008791785089072bAEU6QZi06J29H1SWycUv9ndd46lh5A24G0VxwlrdFIHLzfJizNAcy9l1ePQAqANTYoIpFH6CadMYmXYqk+sDFSN0vE7XHVGA/gcphi8NN+84Bq001U6ckoK3R+FXKPq+yfgRJrHB1Y2EaqHTbe3iMbIbzCM+CrufYQGkO0rRiuEJgMGJS105j/Datx6rxxJqiTXfnBOjt7meZx1aLLOxFddQrWn7h/AR9U2z2GriFOkyx1moyP1QKGWRW4EIaKerFIFDWUeiOkZW1wjOwXaztAXnEH9KpiPIpiuDVSCzTsypPvD8F4Qa1zfaYChwcehmH8OslknW48dTdf4JTjZa03k=
[AVG.VAULT.FALSEALARM] INFO 2012-08-03 10:20:56,796 GEORGE-PC PID:3108 THID:7692 ID:FA:660.2111.2a23f7a.0 MSG:*
[AVG.LOG.SM] ALL 2012-08-03 10:20:56,704 GEORGE-PC PID:3108 THID:7692 ID:AVG.LOG.SM:0.0.0.0 MSG:c00000008791785089072bAEU6QZi06J29H1SWycUv9ndd46lh5A24G0VxwlrdFIHLzfJizNAcy9l1ePQAqANTYoIpFH6CadMYmXYqk+sDFSN0vE7XHVGA/gcphi8NN+84Bq001U6ckoK3R+FXKPq+yfgRJrHB1Y2EaqHTbe3iMbIbzCM+CrufYQGkO0rRiuEJgMGJS105j/Datx6rxxJqiTXfnBOjt7meZx1aLLOxFddQrWn7h/AR9U2z2GriFOkyx1moyP1QKGWRW4EIaKerFIFDWUeiOkZW1wjOwXaztAXnEH9KpiPIpiuDVSCzTsypPvD8F4Qa1zfaYChwcehmH8OslknW48dTdf4JTjZa03k=
[AVG.VAULT] INFO 2012-08-03 10:20:56,798 GEORGE-PC PID:3108 THID:7692 ID:{092C0D4D-E5F0-4456-9310-C128588B4492}:667.2111.2a23f7a.0 MSG:*
[AVG.VAULT.FALSEALARM] INFO 2012-08-03 10:20:56,924 GEORGE-PC PID:3108 THID:7692 ID:FA:713.2111.2a23f7a.0 MSG:aBORTM9VxzfaV8mj0D3iBRvmrjZxNnwXE430l
[AVG.VAULT.FALSEALARM] INFO 2012-08-03 10:20:57,074 GEORGE-PC PID:3108 THID:7692 ID:FA:954.2111.2a23f7a.0 MSG:*
[AVG.VAULT.FALSEALARM] INFO 2012-08-03 10:20:57,076 GEORGE-PC PID:3108 THID:7692 ID:FA:1169.2111.2a23f7a.0 MSG:*
[AVG.VAULT] INFO 2012-08-03 10:20:57,076 GEORGE-PC PID:3108 THID:7692 ID:{FB35234C-DFA5-447c-BB78-D36ECAB5F4F5}:95.2111.2a23f7a.0 MSG:*
[AVG.VAULT.FALSEALARM] INFO 2012-08-03 10:20:57,076 GEORGE-PC PID:3108 THID:7692 ID:FA:1111.2111.2a23f7a.0 MSG:*
[AVG.VAULT.FALSEALARM] INFO 2012-08-03 10:20:57,076 GEORGE-PC PID:3108 THID:7692 ID:FA:675.2111.2a23f7a.0 MSG:*
[AVG.VAULT.FALSEALARM] INFO 2012-08-03 10:20:57,076 GEORGE-PC PID:3108 THID:7692 ID:FA:683.2111.2a23f7a.0 MSG:*
[AVG.LOG.SM] ALL 2012-08-03 20:30:48,684 GEORGE-PC PID:4372 THID:572 ID:AVG.LOG.SM:0.0.0.0 MSG:c00000000001938037904bALSrGFKEYBOvtw/GJkWiiowl1wSoA0Fm3QzHrilO3wxgQLe24haJsXmVus73l+jsKtY1NLhZxsvx+Rc9S7m+/G5SKu8l6vqPIgzsQAL77771ipSd6T7381unOXjvcJgBVwmwFoJfLjL5JpGTtOI9Ep89QJFLV1JTk36VsoNpvyjTc8AY87Je75FNYsNAf7AUuhPpJfBeRjBlrm5O2nmbNfXGX1WYnjhxENu3Mg1N5QCP+qACJPQMxKGarzuejqXiESN77A4vs4HLbkTDSbLnDUxTqQ+9slZ7bfAcYX0HLzHry2Ns7R3V8irLTQ8vDtT66y6y9BxZX4LmV+tYffA0z0s=
[AVG.VAULT] INFO 2012-08-03 20:30:48,703 GEORGE-PC PID:4372 THID:572 ID:{FB35234C-DFA5-447c-BB78-D36ECAB5F4F5}:86.2111.2a23f7a.0 MSG:*
[AVG.LOG.SM] ALL 2012-08-03 20:30:48,684 GEORGE-PC PID:4372 THID:572 ID:AVG.LOG.SM:0.0.0.0 MSG:c00000000001938037904bALSrGFKEYBOvtw/GJkWiiowl1wSoA0Fm3QzHrilO3wxgQLe24haJsXmVus73l+jsKtY1NLhZxsvx+Rc9S7m+/G5SKu8l6vqPIgzsQAL77771ipSd6T7381unOXjvcJgBVwmwFoJfLjL5JpGTtOI9Ep89QJFLV1JTk36VsoNpvyjTc8AY87Je75FNYsNAf7AUuhPpJfBeRjBlrm5O2nmbNfXGX1WYnjhxENu3Mg1N5QCP+qACJPQMxKGarzuejqXiESN77A4vs4HLbkTDSbLnDUxTqQ+9slZ7bfAcYX0HLzHry2Ns7R3V8irLTQ8vDtT66y6y9BxZX4LmV+tYffA0z0s=
[AVG.VAULT] INFO 2012-08-03 20:30:48,828 GEORGE-PC PID:4372 THID:572 ID:{FB35234C-DFA5-447c-BB78-D36ECAB5F4F5}:95.2111.2a23f7a.0 MSG:*
[AVG.LOG.SM] ALL 2012-08-04 00:57:00,631 GEORGE-PC PID:4500 THID:3152 ID:AVG.LOG.SM:0.0.0.0 MSG:c00000000001952193680bAA/sedDh6c4zQh/6zmwEnayJ8pIVbFCOpVieqQ6/JuFcsUbFY0kfekNsz+G8UP1Sjk5K2LQ5HxFki2qbFZ721ruMnOKbEGveNM1aF+k87OqEDWEIgRSDiii1I2t5x2gByU+xs3pZM4u2q2+Hfe9BVp0GAv1zI209igiSz+jfGcqFk2OITHcePo8Wzc7ytMw29aS+7I4sihUPMpsKttJkpznZdzgc/GDPI4Yn02z9n9GYVPX7zu831nBXE7i7KMztkYJWiaA52DUCC+UgvkugVPusrnMge6lwWGYu8mZ/P6Lrt0DTY61a9Aq5OWUZwNZsi99zXLaPLdg6U/3CnQOzl5c=
[AVG.VAULT] INFO 2012-08-04 00:57:00,665 GEORGE-PC PID:4500 THID:3152 ID:{FB35234C-DFA5-447c-BB78-D36ECAB5F4F5}:86.2111.2a23f7a.0 MSG:*
[AVG.LOG.SM] ALL 2012-08-04 00:57:00,631 GEORGE-PC PID:4500 THID:3152 ID:AVG.LOG.SM:0.0.0.0 MSG:c00000000001952193680bAA/sedDh6c4zQh/6zmwEnayJ8pIVbFCOpVieqQ6/JuFcsUbFY0kfekNsz+G8UP1Sjk5K2LQ5HxFki2qbFZ721ruMnOKbEGveNM1aF+k87OqEDWEIgRSDiii1I2t5x2gByU+xs3pZM4u2q2+Hfe9BVp0GAv1zI209igiSz+jfGcqFk2OITHcePo8Wzc7ytMw29aS+7I4sihUPMpsKttJkpznZdzgc/GDPI4Yn02z9n9GYVPX7zu831nBXE7i7KMztkYJWiaA52DUCC+UgvkugVPusrnMge6lwWGYu8mZ/P6Lrt0DTY61a9Aq5OWUZwNZsi99zXLaPLdg6U/3CnQOzl5c=
[AVG.VAULT] INFO 2012-08-04 00:57:01,107 GEORGE-PC PID:4500 THID:3152 ID:{FB35234C-DFA5-447c-BB78-D36ECAB5F4F5}:95.2111.2a23f7a.0 MSG:*
[AVG.LOG.SM] ALL 2012-08-04 02:34:21,483 GEORGE-PC PID:4552 THID:4912 ID:AVG.LOG.SM:0.0.0.0 MSG:c00000008791778928688bALc49mEsvLIEfzju9IGHrSaz9U4eV5r0kuGRCmi77ahcJGlbA28pducjYmnIUmXicHKMajBdiWr6QNg7OWhbUi0JGSFRgteOGxj9R8EkzW1BYllj2DsFLASTJoos+n2Lz/Cqnh/UtgSNdr7KJtIodPaI5PyKTsdYnLclA8Ji4zVzT++bvyUOOznH+6VrKp9wAmmZz6zGOp6nZY9wd2m4l5cVRgfiftBQHWlwjpWOfVunaWsgO3ZIcnDKa4NeDY92q16zgeRpuOji7S/18Z0Mbi+k90oEhRFZaMddqeIxb+XcI7a5ip+rvSCgKXh1q6k+8loU1PZ4r8oMby/owDdyvi4=
[AVG.VAULT.FALSEALARM] INFO 2012-08-04 02:34:21,485 GEORGE-PC PID:4552 THID:4912 ID:FA:1086.2111.2a23f7a.0 MSG:*
[AVG.LOG.SM] ALL 2012-08-04 02:34:21,483 GEORGE-PC PID:4552 THID:4912 ID:AVG.LOG.SM:0.0.0.0 MSG:c00000008791778928688bALc49mEsvLIEfzju9IGHrSaz9U4eV5r0kuGRCmi77ahcJGlbA28pducjYmnIUmXicHKMajBdiWr6QNg7OWhbUi0JGSFRgteOGxj9R8EkzW1BYllj2DsFLASTJoos+n2Lz/Cqnh/UtgSNdr7KJtIodPaI5PyKTsdYnLclA8Ji4zVzT++bvyUOOznH+6VrKp9wAmmZz6zGOp6nZY9wd2m4l5cVRgfiftBQHWlwjpWOfVunaWsgO3ZIcnDKa4NeDY92q16zgeRpuOji7S/18Z0Mbi+k90oEhRFZaMddqeIxb+XcI7a5ip+rvSCgKXh1q6k+8loU1PZ4r8oMby/owDdyvi4=
[AVG.VAULT.FALSEALARM] INFO 2012-08-04 02:34:21,493 GEORGE-PC PID:4552 THID:4912 ID:FA:1099.2111.2a23f7a.0 MSG:*
[AVG.VAULT.FALSEALARM] INFO 2012-08-04 02:34:21,493 GEORGE-PC PID:4552 THID:4912 ID:FA:1145.2111.2a23f7a.0 MSG:*
[AVG.LOG.SM] ALL 2012-08-04 02:34:21,483 GEORGE-PC PID:4552 THID:4912 ID:AVG.LOG.SM:0.0.0.0 MSG:c00000008791778928688bALc49mEsvLIEfzju9IGHrSaz9U4eV5r0kuGRCmi77ahcJGlbA28pducjYmnIUmXicHKMajBdiWr6QNg7OWhbUi0JGSFRgteOGxj9R8EkzW1BYllj2DsFLASTJoos+n2Lz/Cqnh/UtgSNdr7KJtIodPaI5PyKTsdYnLclA8Ji4zVzT++bvyUOOznH+6VrKp9wAmmZz6zGOp6nZY9wd2m4l5cVRgfiftBQHWlwjpWOfVunaWsgO3ZIcnDKa4NeDY92q16zgeRpuOji7S/18Z0Mbi+k90oEhRFZaMddqeIxb+XcI7a5ip+rvSCgKXh1q6k+8loU1PZ4r8oMby/owDdyvi4=
[AVG.VAULT] INFO 2012-08-04 02:34:21,498 GEORGE-PC PID:4552 THID:4912 ID:{FB35234C-DFA5-447c-BB78-D36ECAB5F4F5}:86.2111.2a23f7a.0 MSG:*
[AVG.VAULT.FALSEALARM] INFO 2012-08-04 02:34:21,502 GEORGE-PC PID:4552 THID:4912 ID:FA:1158.2111.2a23f7a.0 MSG:*
[AVG.VAULT.FALSEALARM] INFO 2012-08-04 02:34:21,502 GEORGE-PC PID:4552 THID:4912 ID:FA:902.2111.2a23f7a.0 MSG:*
[AVG.LOG.SM] ALL 2012-08-04 02:34:21,483 GEORGE-PC PID:4552 THID:4912 ID:AVG.LOG.SM:0.0.0.0 MSG:c00000008791778928688bALc49mEsvLIEfzju9IGHrSaz9U4eV5r0kuGRCmi77ahcJGlbA28pducjYmnIUmXicHKMajBdiWr6QNg7OWhbUi0JGSFRgteOGxj9R8EkzW1BYllj2DsFLASTJoos+n2Lz/Cqnh/UtgSNdr7KJtIodPaI5PyKTsdYnLclA8Ji4zVzT++bvyUOOznH+6VrKp9wAmmZz6zGOp6nZY9wd2m4l5cVRgfiftBQHWlwjpWOfVunaWsgO3ZIcnDKa4NeDY92q16zgeRpuOji7S/18Z0Mbi+k90oEhRFZaMddqeIxb+XcI7a5ip+rvSCgKXh1q6k+8loU1PZ4r8oMby/owDdyvi4=
[AVG.VAULT.FALSEALARM] INFO 2012-08-04 02:34:21,565 GEORGE-PC PID:4552 THID:4912 ID:FA:941.2111.2a23f7a.0 MSG:*
[AVG.VAULT.FALSEALARM] INFO 2012-08-04 02:34:21,565 GEORGE-PC PID:4552 THID:4912 ID:FA:653.2111.2a23f7a.0 MSG:*
[AVG.LOG.SM] ALL 2012-08-04 02:34:21,483 GEORGE-PC PID:4552 THID:4912 ID:AVG.LOG.SM:0.0.0.0 MSG:c00000008791778928688bALc49mEsvLIEfzju9IGHrSaz9U4eV5r0kuGRCmi77ahcJGlbA28pducjYmnIUmXicHKMajBdiWr6QNg7OWhbUi0JGSFRgteOGxj9R8EkzW1BYllj2DsFLASTJoos+n2Lz/Cqnh/UtgSNdr7KJtIodPaI5PyKTsdYnLclA8Ji4zVzT++bvyUOOznH+6VrKp9wAmmZz6zGOp6nZY9wd2m4l5cVRgfiftBQHWlwjpWOfVunaWsgO3ZIcnDKa4NeDY92q16zgeRpuOji7S/18Z0Mbi+k90oEhRFZaMddqeIxb+XcI7a5ip+rvSCgKXh1q6k+8loU1PZ4r8oMby/owDdyvi4=
[AVG.VAULT.FALSEALARM] INFO 2012-08-04 02:34:21,566 GEORGE-PC PID:4552 THID:4912 ID:FA:660.2111.2a23f7a.0 MSG:*
[AVG.LOG.SM] ALL 2012-08-04 02:34:21,483 GEORGE-PC PID:4552 THID:4912 ID:AVG.LOG.SM:0.0.0.0 MSG:c00000008791778928688bALc49mEsvLIEfzju9IGHrSaz9U4eV5r0kuGRCmi77ahcJGlbA28pducjYmnIUmXicHKMajBdiWr6QNg7OWhbUi0JGSFRgteOGxj9R8EkzW1BYllj2DsFLASTJoos+n2Lz/Cqnh/UtgSNdr7KJtIodPaI5PyKTsdYnLclA8Ji4zVzT++bvyUOOznH+6VrKp9wAmmZz6zGOp6nZY9wd2m4l5cVRgfiftBQHWlwjpWOfVunaWsgO3ZIcnDKa4NeDY92q16zgeRpuOji7S/18Z0Mbi+k90oEhRFZaMddqeIxb+XcI7a5ip+rvSCgKXh1q6k+8loU1PZ4r8oMby/owDdyvi4=
[AVG.VAULT] INFO 2012-08-04 02:34:21,567 GEORGE-PC PID:4552 THID:4912 ID:{092C0D4D-E5F0-4456-9310-C128588B4492}:667.2111.2a23f7a.0 MSG:*
[AVG.VAULT.FALSEALARM] INFO 2012-08-04 02:34:22,249 GEORGE-PC PID:4552 THID:4912 ID:FA:713.2111.2a23f7a.0 MSG:aCyImk4tvgla+nfr47kZxwJqqVODlkdE5GiFj
[AVG.VAULT.FALSEALARM] INFO 2012-08-04 02:34:22,641 GEORGE-PC PID:4552 THID:4912 ID:FA:954.2111.2a23f7a.0 MSG:*
[AVG.VAULT.FALSEALARM] INFO 2012-08-04 02:34:22,642 GEORGE-PC PID:4552 THID:4912 ID:FA:1169.2111.2a23f7a.0 MSG:*
[AVG.VAULT] INFO 2012-08-04 02:34:22,642 GEORGE-PC PID:4552 THID:4912 ID:{FB35234C-DFA5-447c-BB78-D36ECAB5F4F5}:95.2111.2a23f7a.0 MSG:*
[AVG.VAULT.FALSEALARM] INFO 2012-08-04 02:34:22,642 GEORGE-PC PID:4552 THID:4912 ID:FA:1111.2111.2a23f7a.0 MSG:*
[AVG.VAULT.FALSEALARM] INFO 2012-08-04 02:34:22,642 GEORGE-PC PID:4552 THID:4912 ID:FA:675.2111.2a23f7a.0 MSG:*
[AVG.VAULT.FALSEALARM] INFO 2012-08-04 02:34:22,642 GEORGE-PC PID:4552 THID:4912 ID:FA:683.2111.2a23f7a.0 MSG:*
[AVG.LOG.SM] ALL 2012-08-04 06:57:58,421 GEORGE-PC PID:4420 THID:3616 ID:AVG.LOG.SM:0.0.0.0 MSG:c00000000001941052560bAH6/3ZeVMQlRLqWB/+wKhzknAS4C6yAokKL3NgtrsuYzrc0h9BlwpMuovqaA1SGRj2Y7mmbfZgn4Dx9fgLyNlJYhb6/XyuzohwK3SAn8gqQyMnK3J69dR3cxDF3CMVd8dZ39sDkCk/yGhiHaUJOCW+fYullmdaMJEZbsudInGLCzuVXYQV9O/VK4fCmTu+KROjt7jUgu0CWfHn4DjaZc8Xmdh8nllWQWUr55tCAdOteLOYBVTtAcIpxXQZP3MQmoU6cn4Z6gXjxpZnMX5jGjHy1AHgyAcBX0Z64MiZ8dvhA9wTFfYinm0mu9PKPdN+kiwY4kbkUWkcFKbIK8el49s+I=
[AVG.VAULT] INFO 2012-08-04 06:57:58,445 GEORGE-PC PID:4420 THID:3616 ID:{FB35234C-DFA5-447c-BB78-D36ECAB5F4F5}:86.2111.2a23f7a.0 MSG:*
[AVG.LOG.SM] ALL 2012-08-04 06:57:58,421 GEORGE-PC PID:4420 THID:3616 ID:AVG.LOG.SM:0.0.0.0 MSG:c00000000001941052560bAH6/3ZeVMQlRLqWB/+wKhzknAS4C6yAokKL3NgtrsuYzrc0h9BlwpMuovqaA1SGRj2Y7mmbfZgn4Dx9fgLyNlJYhb6/XyuzohwK3SAn8gqQyMnK3J69dR3cxDF3CMVd8dZ39sDkCk/yGhiHaUJOCW+fYullmdaMJEZbsudInGLCzuVXYQV9O/VK4fCmTu+KROjt7jUgu0CWfHn4DjaZc8Xmdh8nllWQWUr55tCAdOteLOYBVTtAcIpxXQZP3MQmoU6cn4Z6gXjxpZnMX5jGjHy1AHgyAcBX0Z64MiZ8dvhA9wTFfYinm0mu9PKPdN+kiwY4kbkUWkcFKbIK8el49s+I=
[AVG.VAULT] INFO 2012-08-04 06:57:58,747 GEORGE-PC PID:4420 THID:3616 ID:{FB35234C-DFA5-447c-BB78-D36ECAB5F4F5}:95.2111.2a23f7a.0 MSG:*
[AVG.LOG.SM] ALL 2012-08-04 10:24:17,018 GEORGE-PC PID:5296 THID:1796 ID:AVG.LOG.SM:0.0.0.0 MSG:c00000008791788103728bAFSXjtuYReF/ZavAb3UTfxqgVrLfImckEJRMSdECSVzTKmih39Glcx/wE/dFxvO+m2EAtUMKAyfsysKMFzN6bCiJcnOPFngtvcf2tUI5fcvNeS+QJPxn5M3N23UMSvAdSu2mChmKxkcV5itrw9EbhZaP7xcPO2mvSRcTES3nTz0cGFuU8DQ3DmZr3CNhWPd6C0YG6ga9SF7pLCHfTUiyQk/ZYxTsLrwvyC2ZTkYesh5FKnb1w4UyElvTDNwJ36hiMHMCik4bMN3cHNm5NzVIonD3/+bERBzlTOxPjaejsCTeSn0Vp/k6JNQeHB9CFqsigF4780RQP4iH+kqh+eWKgHI=
[AVG.VAULT.FALSEALARM] INFO 2012-08-04 10:24:17,019 GEORGE-PC PID:5296 THID:1796 ID:FA:1086.2111.2a23f7a.0 MSG:*
[AVG.LOG.SM] ALL 2012-08-04 10:24:17,018 GEORGE-PC PID:5296 THID:1796 ID:AVG.LOG.SM:0.0.0.0 MSG:c00000008791788103728bAFSXjtuYReF/ZavAb3UTfxqgVrLfImckEJRMSdECSVzTKmih39Glcx/wE/dFxvO+m2EAtUMKAyfsysKMFzN6bCiJcnOPFngtvcf2tUI5fcvNeS+QJPxn5M3N23UMSvAdSu2mChmKxkcV5itrw9EbhZaP7xcPO2mvSRcTES3nTz0cGFuU8DQ3DmZr3CNhWPd6C0YG6ga9SF7pLCHfTUiyQk/ZYxTsLrwvyC2ZTkYesh5FKnb1w4UyElvTDNwJ36hiMHMCik4bMN3cHNm5NzVIonD3/+bERBzlTOxPjaejsCTeSn0Vp/k6JNQeHB9CFqsigF4780RQP4iH+kqh+eWKgHI=
[AVG.VAULT.FALSEALARM] INFO 2012-08-04 10:24:17,026 GEORGE-PC PID:5296 THID:1796 ID:FA:1099.2111.2a23f7a.0 MSG:*
[AVG.VAULT.FALSEALARM] INFO 2012-08-04 10:24:17,026 GEORGE-PC PID:5296 THID:1796 ID:FA:1145.2111.2a23f7a.0 MSG:*
[AVG.LOG.SM] ALL 2012-08-04 10:24:17,018 GEORGE-PC PID:5296 THID:1796 ID:AVG.LOG.SM:0.0.0.0 MSG:c00000008791788103728bAFSXjtuYReF/ZavAb3UTfxqgVrLfImckEJRMSdECSVzTKmih39Glcx/wE/dFxvO+m2EAtUMKAyfsysKMFzN6bCiJcnOPFngtvcf2tUI5fcvNeS+QJPxn5M3N23UMSvAdSu2mChmKxkcV5itrw9EbhZaP7xcPO2mvSRcTES3nTz0cGFuU8DQ3DmZr3CNhWPd6C0YG6ga9SF7pLCHfTUiyQk/ZYxTsLrwvyC2ZTkYesh5FKnb1w4UyElvTDNwJ36hiMHMCik4bMN3cHNm5NzVIonD3/+bERBzlTOxPjaejsCTeSn0Vp/k6JNQeHB9CFqsigF4780RQP4iH+kqh+eWKgHI=
[AVG.VAULT] INFO 2012-08-04 10:24:17,031 GEORGE-PC PID:5296 THID:1796 ID:{FB35234C-DFA5-447c-BB78-D36ECAB5F4F5}:86.2111.2a23f7a.0 MSG:*
[AVG.VAULT.FALSEALARM] INFO 2012-08-04 10:24:17,032 GEORGE-PC PID:5296 THID:1796 ID:FA:1158.2111.2a23f7a.0 MSG:*
[AVG.VAULT.FALSEALARM] INFO 2012-08-04 10:24:17,032 GEORGE-PC PID:5296 THID:1796 ID:FA:902.2111.2a23f7a.0 MSG:*
[AVG.LOG.SM] ALL 2012-08-04 10:24:17,018 GEORGE-PC PID:5296 THID:1796 ID:AVG.LOG.SM:0.0.0.0 MSG:c00000008791788103728bAFSXjtuYReF/ZavAb3UTfxqgVrLfImckEJRMSdECSVzTKmih39Glcx/wE/dFxvO+m2EAtUMKAyfsysKMFzN6bCiJcnOPFngtvcf2tUI5fcvNeS+QJPxn5M3N23UMSvAdSu2mChmKxkcV5itrw9EbhZaP7xcPO2mvSRcTES3nTz0cGFuU8DQ3DmZr3CNhWPd6C0YG6ga9SF7pLCHfTUiyQk/ZYxTsLrwvyC2ZTkYesh5FKnb1w4UyElvTDNwJ36hiMHMCik4bMN3cHNm5NzVIonD3/+bERBzlTOxPjaejsCTeSn0Vp/k6JNQeHB9CFqsigF4780RQP4iH+kqh+eWKgHI=
[AVG.VAULT.FALSEALARM] INFO 2012-08-04 10:24:17,127 GEORGE-PC PID:5296 THID:1796 ID:FA:941.2111.2a23f7a.0 MSG:*
[AVG.VAULT.FALSEALARM] INFO 2012-08-04 10:24:17,128 GEORGE-PC PID:5296 THID:1796 ID:FA:653.2111.2a23f7a.0 MSG:*
[AVG.LOG.SM] ALL 2012-08-04 10:24:17,018 GEORGE-PC PID:5296 THID:1796 ID:AVG.LOG.SM:0.0.0.0 MSG:c00000008791788103728bAFSXjtuYReF/ZavAb3UTfxqgVrLfImckEJRMSdECSVzTKmih39Glcx/wE/dFxvO+m2EAtUMKAyfsysKMFzN6bCiJcnOPFngtvcf2tUI5fcvNeS+QJPxn5M3N23UMSvAdSu2mChmKxkcV5itrw9EbhZaP7xcPO2mvSRcTES3nTz0cGFuU8DQ3DmZr3CNhWPd6C0YG6ga9SF7pLCHfTUiyQk/ZYxTsLrwvyC2ZTkYesh5FKnb1w4UyElvTDNwJ36hiMHMCik4bMN3cHNm5NzVIonD3/+bERBzlTOxPjaejsCTeSn0Vp/k6JNQeHB9CFqsigF4780RQP4iH+kqh+eWKgHI=
[AVG.VAULT.FALSEALARM] INFO 2012-08-04 10:24:17,129 GEORGE-PC PID:5296 THID:1796 ID:FA:660.2111.2a23f7a.0 MSG:*
[AVG.LOG.SM] ALL 2012-08-04 10:24:17,018 GEORGE-PC PID:5296 THID:1796 ID:AVG.LOG.SM:0.0.0.0 MSG:c00000008791788103728bAFSXjtuYReF/ZavAb3UTfxqgVrLfImckEJRMSdECSVzTKmih39Glcx/wE/dFxvO+m2EAtUMKAyfsysKMFzN6bCiJcnOPFngtvcf2tUI5fcvNeS+QJPxn5M3N23UMSvAdSu2mChmKxkcV5itrw9EbhZaP7xcPO2mvSRcTES3nTz0cGFuU8DQ3DmZr3CNhWPd6C0YG6ga9SF7pLCHfTUiyQk/ZYxTsLrwvyC2ZTkYesh5FKnb1w4UyElvTDNwJ36hiMHMCik4bMN3cHNm5NzVIonD3/+bERBzlTOxPjaejsCTeSn0Vp/k6JNQeHB9CFqsigF4780RQP4iH+kqh+eWKgHI=
[AVG.VAULT] INFO 2012-08-04 10:24:17,130 GEORGE-PC PID:5296 THID:1796 ID:{092C0D4D-E5F0-4456-9310-C128588B4492}:667.2111.2a23f7a.0 MSG:*
[AVG.VAULT.FALSEALARM] INFO 2012-08-04 10:24:17,194 GEORGE-PC PID:5296 THID:1796 ID:FA:713.2111.2a23f7a.0 MSG:aDkxXuiR2pexLobe/88V6NVmf9dwP5PhnIqOg
[AVG.VAULT.FALSEALARM] INFO 2012-08-04 10:24:17,719 GEORGE-PC PID:5296 THID:1796 ID:FA:954.2111.2a23f7a.0 MSG:*
[AVG.VAULT.FALSEALARM] INFO 2012-08-04 10:24:17,765 GEORGE-PC PID:5296 THID:1796 ID:FA:1169.2111.2a23f7a.0 MSG:*
[AVG.VAULT] INFO 2012-08-04 10:24:17,765 GEORGE-PC PID:5296 THID:1796 ID:{FB35234C-DFA5-447c-BB78-D36ECAB5F4F5}:95.2111.2a23f7a.0 MSG:*
[AVG.VAULT.FALSEALARM] INFO 2012-08-04 10:24:17,765 GEORGE-PC PID:5296 THID:1796 ID:FA:1111.2111.2a23f7a.0 MSG:*
[AVG.VAULT.FALSEALARM] INFO 2012-08-04 10:24:17,765 GEORGE-PC PID:5296 THID:1796 ID:FA:675.2111.2a23f7a.0 MSG:*
[AVG.VAULT.FALSEALARM] INFO 2012-08-04 10:24:17,765 GEORGE-PC PID:5296 THID:1796 ID:FA:683.2111.2a23f7a.0 MSG:*
[AVG.LOG.SM] ALL 2012-08-04 18:08:58,085 GEORGE-PC PID:5400 THID:4680 ID:AVG.LOG.SM:0.0.0.0 MSG:c00000008791788103728bAMjIV2+VSQAd02mACwHE7SFrBPsAt5a1GLfYvIpProZpuYxs/9zLA0r+F9P6duI5sZMJoAdiET8pCmoaH7nnblrvFxYVmd/CudQegqH79h3RC5qCDb4VT5JNg2SNyDv2I5nM+fConaOZMQcrcebC3NfFsq27+l+7t3M6A4WhEKXjkdA9Iuzz8I1dSl1wKQwNMnNczo6FVIA5zFKNK13p1frNwJXTGALvxDLUYXY1bAJqIU+GtF+KTfJbdvFB/MB0CAO6tFKytTH7Ddh0Kz3eI2Qrst0oTNLC1AltAFzV73o3Pa0WO7FhS47lMX3ZyJjnT9bRtIxNUdwk4oDCSMQGwW8=
[AVG.VAULT.FALSEALARM] INFO 2012-08-04 18:08:58,085 GEORGE-PC PID:5400 THID:4680 ID:FA:1086.2111.2a23f7a.0 MSG:*
[AVG.LOG.SM] ALL 2012-08-04 18:08:58,085 GEORGE-PC PID:5400 THID:4680 ID:AVG.LOG.SM:0.0.0.0 MSG:c00000008791788103728bAMjIV2+VSQAd02mACwHE7SFrBPsAt5a1GLfYvIpProZpuYxs/9zLA0r+F9P6duI5sZMJoAdiET8pCmoaH7nnblrvFxYVmd/CudQegqH79h3RC5qCDb4VT5JNg2SNyDv2I5nM+fConaOZMQcrcebC3NfFsq27+l+7t3M6A4WhEKXjkdA9Iuzz8I1dSl1wKQwNMnNczo6FVIA5zFKNK13p1frNwJXTGALvxDLUYXY1bAJqIU+GtF+KTfJbdvFB/MB0CAO6tFKytTH7Ddh0Kz3eI2Qrst0oTNLC1AltAFzV73o3Pa0WO7FhS47lMX3ZyJjnT9bRtIxNUdwk4oDCSMQGwW8=
[AVG.VAULT.FALSEALARM] INFO 2012-08-04 18:08:58,085 GEORGE-PC PID:5400 THID:4680 ID:FA:1099.2111.2a23f7a.0 MSG:*
[AVG.VAULT.FALSEALARM] INFO 2012-08-04 18:08:58,085 GEORGE-PC PID:5400 THID:4680 ID:FA:1145.2111.2a23f7a.0 MSG:*
[AVG.LOG.SM] ALL 2012-08-04 18:08:58,085 GEORGE-PC PID:5400 THID:4680 ID:AVG.LOG.SM:0.0.0.0 MSG:c00000008791788103728bAMjIV2+VSQAd02mACwHE7SFrBPsAt5a1GLfYvIpProZpuYxs/9zLA0r+F9P6duI5sZMJoAdiET8pCmoaH7nnblrvFxYVmd/CudQegqH79h3RC5qCDb4VT5JNg2SNyDv2I5nM+fConaOZMQcrcebC3NfFsq27+l+7t3M6A4WhEKXjkdA9Iuzz8I1dSl1wKQwNMnNczo6FVIA5zFKNK13p1frNwJXTGALvxDLUYXY1bAJqIU+GtF+KTfJbdvFB/MB0CAO6tFKytTH7Ddh0Kz3eI2Qrst0oTNLC1AltAFzV73o3Pa0WO7FhS47lMX3ZyJjnT9bRtIxNUdwk4oDCSMQGwW8=
[AVG.VAULT] INFO 2012-08-04 18:08:58,085 GEORGE-PC PID:5400 THID:4680 ID:{FB35234C-DFA5-447c-BB78-D36ECAB5F4F5}:86.2111.2a23f7a.0 MSG:*
[AVG.VAULT.FALSEALARM] INFO 2012-08-04 18:08:58,085 GEORGE-PC PID:5400 THID:4680 ID:FA:1158.2111.2a23f7a.0 MSG:*
[AVG.VAULT.FALSEALARM] INFO 2012-08-04 18:08:58,085 GEORGE-PC PID:5400 THID:4680 ID:FA:902.2111.2a23f7a.0 MSG:*
[AVG.LOG.SM] ALL 2012-08-04 18:08:58,085 GEORGE-PC PID:5400 THID:4680 ID:AVG.LOG.SM:0.0.0.0 MSG:c00000008791788103728bAMjIV2+VSQAd02mACwHE7SFrBPsAt5a1GLfYvIpProZpuYxs/9zLA0r+F9P6duI5sZMJoAdiET8pCmoaH7nnblrvFxYVmd/CudQegqH79h3RC5qCDb4VT5JNg2SNyDv2I5nM+fConaOZMQcrcebC3NfFsq27+l+7t3M6A4WhEKXjkdA9Iuzz8I1dSl1wKQwNMnNczo6FVIA5zFKNK13p1frNwJXTGALvxDLUYXY1bAJqIU+GtF+KTfJbdvFB/MB0CAO6tFKytTH7Ddh0Kz3eI2Qrst0oTNLC1AltAFzV73o3Pa0WO7FhS47lMX3ZyJjnT9bRtIxNUdwk4oDCSMQGwW8=
[AVG.VAULT.FALSEALARM] INFO 2012-08-04 18:08:58,132 GEORGE-PC PID:5400 THID:4680 ID:FA:941.2111.2a23f7a.0 MSG:*
[AVG.VAULT.FALSEALARM] INFO 2012-08-04 18:08:58,132 GEORGE-PC PID:5400 THID:4680 ID:FA:653.2111.2a23f7a.0 MSG:*
[AVG.LOG.SM] ALL 2012-08-04 18:08:58,085 GEORGE-PC PID:5400 THID:4680 ID:AVG.LOG.SM:0.0.0.0 MSG:c00000008791788103728bAMjIV2+VSQAd02mACwHE7SFrBPsAt5a1GLfYvIpProZpuYxs/9zLA0r+F9P6duI5sZMJoAdiET8pCmoaH7nnblrvFxYVmd/CudQegqH79h3RC5qCDb4VT5JNg2SNyDv2I5nM+fConaOZMQcrcebC3NfFsq27+l+7t3M6A4WhEKXjkdA9Iuzz8I1dSl1wKQwNMnNczo6FVIA5zFKNK13p1frNwJXTGALvxDLUYXY1bAJqIU+GtF+KTfJbdvFB/MB0CAO6tFKytTH7Ddh0Kz3eI2Qrst0oTNLC1AltAFzV73o3Pa0WO7FhS47lMX3ZyJjnT9bRtIxNUdwk4oDCSMQGwW8=
[AVG.VAULT.FALSEALARM] INFO 2012-08-04 18:08:58,132 GEORGE-PC PID:5400 THID:4680 ID:FA:660.2111.2a23f7a.0 MSG:*
[AVG.LOG.SM] ALL 2012-08-04 18:08:58,085 GEORGE-PC PID:5400 THID:4680 ID:AVG.LOG.SM:0.0.0.0 MSG:c00000008791788103728bAMjIV2+VSQAd02mACwHE7SFrBPsAt5a1GLfYvIpProZpuYxs/9zLA0r+F9P6duI5sZMJoAdiET8pCmoaH7nnblrvFxYVmd/CudQegqH79h3RC5qCDb4VT5JNg2SNyDv2I5nM+fConaOZMQcrcebC3NfFsq27+l+7t3M6A4WhEKXjkdA9Iuzz8I1dSl1wKQwNMnNczo6FVIA5zFKNK13p1frNwJXTGALvxDLUYXY1bAJqIU+GtF+KTfJbdvFB/MB0CAO6tFKytTH7Ddh0Kz3eI2Qrst0oTNLC1AltAFzV73o3Pa0WO7FhS47lMX3ZyJjnT9bRtIxNUdwk4oDCSMQGwW8=
[AVG.VAULT] INFO 2012-08-04 18:08:58,132 GEORGE-PC PID:5400 THID:4680 ID:{092C0D4D-E5F0-4456-9310-C128588B4492}:667.2111.2a23f7a.0 MSG:*
[AVG.VAULT.FALSEALARM] INFO 2012-08-04 18:08:58,288 GEORGE-PC PID:5400 THID:4680 ID:FA:713.2111.2a23f7a.0 MSG:aDMnXyeoe+XIAfF/ubkryWa7h8qoxwlOI7hQX
[AVG.VAULT.FALSEALARM] INFO 2012-08-04 18:08:58,412 GEORGE-PC PID:5400 THID:4680 ID:FA:954.2111.2a23f7a.0 MSG:*
[AVG.VAULT.FALSEALARM] INFO 2012-08-04 18:08:58,412 GEORGE-PC PID:5400 THID:4680 ID:FA:1169.2111.2a23f7a.0 MSG:*
[AVG.VAULT] INFO 2012-08-04 18:08:58,412 GEORGE-PC PID:5400 THID:4680 ID:{FB35234C-DFA5-447c-BB78-D36ECAB5F4F5}:95.2111.2a23f7a.0 MSG:*
[AVG.VAULT.FALSEALARM] INFO 2012-08-04 18:08:58,412 GEORGE-PC PID:5400 THID:4680 ID:FA:1111.2111.2a23f7a.0 MSG:*
[AVG.VAULT.FALSEALARM] INFO 2012-08-04 18:08:58,412 GEORGE-PC PID:5400 THID:4680 ID:FA:675.2111.2a23f7a.0 MSG:*
[AVG.VAULT.FALSEALARM] INFO 2012-08-04 18:08:58,412 GEORGE-PC PID:5400 THID:4680 ID:FA:683.2111.2a23f7a.0 MSG:*
[AVG.LOG.SM] ALL 2012-08-04 18:13:37,357 GEORGE-PC PID:984 THID:5168 ID:AVG.LOG.SM:0.0.0.0 MSG:c00000000001941052560bAHYzY8ase1B4EuTbHxdf8T3358Rl5PuNu0dJRxA2O8eQWpGLK/Ikq4O3jJDrji24oMi7YW1tBceAsKDW0VsCGzXv3PHM9Fy+kLPToKZ+67RXAouHm+2sRJc0HCnA28g89JuUW36yjihJs3rk4hRNxND+ovSSG42psrX9mvAV5Vf/4Pbk/YjLMZiTO/BKLvFoIa2wTXYxb+BVtwSYpV6BWOmb7imEmZwBH6wmQscXM+fWG/zYhQbT5PnAUpjVj/0xRth53rS32SfLiY0ur2AggNVYyCDVgtz3GJG2uKRlgQnMABoGjDb5JvUMlzfFZZzMSEV8kqmcSIXzNUtwWOXeylc=
[AVG.VAULT] INFO 2012-08-04 18:13:37,388 GEORGE-PC PID:984 THID:5168 ID:{FB35234C-DFA5-447c-BB78-D36ECAB5F4F5}:86.2111.2a23f7a.0 MSG:*
[AVG.LOG.SM] ALL 2012-08-04 18:13:37,357 GEORGE-PC PID:984 THID:5168 ID:AVG.LOG.SM:0.0.0.0 MSG:c00000000001941052560bAHYzY8ase1B4EuTbHxdf8T3358Rl5PuNu0dJRxA2O8eQWpGLK/Ikq4O3jJDrji24oMi7YW1tBceAsKDW0VsCGzXv3PHM9Fy+kLPToKZ+67RXAouHm+2sRJc0HCnA28g89JuUW36yjihJs3rk4hRNxND+ovSSG42psrX9mvAV5Vf/4Pbk/YjLMZiTO/BKLvFoIa2wTXYxb+BVtwSYpV6BWOmb7imEmZwBH6wmQscXM+fWG/zYhQbT5PnAUpjVj/0xRth53rS32SfLiY0ur2AggNVYyCDVgtz3GJG2uKRlgQnMABoGjDb5JvUMlzfFZZzMSEV8kqmcSIXzNUtwWOXeylc=
[AVG.VAULT] INFO 2012-08-04 18:13:37,575 GEORGE-PC PID:984 THID:5168 ID:{FB35234C-DFA5-447c-BB78-D36ECAB5F4F5}:95.2111.2a23f7a.0 MSG:*
[AVG.LOG.SM] ALL 2012-08-04 18:25:58,219 GEORGE-PC PID:4348 THID:4624 ID:AVG.LOG.SM:0.0.0.0 MSG:c00000000001941052560bAFWo0OIME2kTYfdshO5qlzkhWZbeMo3sQHfye/3UrKcRGlanMhlZEl6iK36Tryo4dyQAzqbN05nuvTNnO0koBDYnaaJyYlcPrnhcuR/lf0FgBGssZ68J+1PQ/OEGalCtWyt9jQxSNkxDNGeOA+e5VYoJBsWDG2/Jp6RX7+Zeb3NKRyXapgf0+yxt24kJYZdMWZqH/bz8L96pxR8c6JiapHGm2U9HwdTwbI5BqoBaEgi92TROgjJXm82jFc0eCAFDcbzk9+A8k9HWaADXRPWd2XVpypjOXOrg8JbMAePNNTa2EowNFt1znFfq+PyDTcL8IvBcxpKS2OluK0CBJbbobdM=
[AVG.VAULT] INFO 2012-08-04 18:25:58,234 GEORGE-PC PID:4348 THID:4624 ID:{FB35234C-DFA5-447c-BB78-D36ECAB5F4F5}:86.2111.2a23f7a.0 MSG:*
[AVG.LOG.SM] ALL 2012-08-04 18:25:58,219 GEORGE-PC PID:4348 THID:4624 ID:AVG.LOG.SM:0.0.0.0 MSG:c00000000001941052560bAFWo0OIME2kTYfdshO5qlzkhWZbeMo3sQHfye/3UrKcRGlanMhlZEl6iK36Tryo4dyQAzqbN05nuvTNnO0koBDYnaaJyYlcPrnhcuR/lf0FgBGssZ68J+1PQ/OEGalCtWyt9jQxSNkxDNGeOA+e5VYoJBsWDG2/Jp6RX7+Zeb3NKRyXapgf0+yxt24kJYZdMWZqH/bz8L96pxR8c6JiapHGm2U9HwdTwbI5BqoBaEgi92TROgjJXm82jFc0eCAFDcbzk9+A8k9HWaADXRPWd2XVpypjOXOrg8JbMAePNNTa2EowNFt1znFfq+PyDTcL8IvBcxpKS2OluK0CBJbbobdM=
[AVG.VAULT] INFO 2012-08-04 18:25:58,297 GEORGE-PC PID:4348 THID:4624 ID:{FB35234C-DFA5-447c-BB78-D36ECAB5F4F5}:95.2111.2a23f7a.0 MSG:*
[AVG.LOG.SM] ALL 2012-08-04 21:28:15,021 GEORGE-PC PID:1564 THID:3672 ID:AVG.LOG.SM:0.0.0.0 MSG:c00000000001937185936bAFE9TDdcFvQpwofSlGQ8mUcCvfJOlRSx9e2kfvXT+axElVSTpsL2Yr3kA+sDYtQWuyzItvxDs0XxgVuQavH5fUB/S5AQogx4v0HTt3G+VqLsmmtMFYEM5R5MG3GvZQeGA2d0ClLikcBW3lx4rueyl2nT4B3gkxVJ31GhgLpmrSYZx8Pwani6o3AlhcRL5/4Riw3uqB+gOIpxZU+dGlS0eWyeev5XRsEpFaRAVRmAagQtFJ3fgUCpVl+8fnJ2MUpQWDAgQxJjYK8vKJWLoo6AXQviSSY7CFpciurHXXYqE/MN4S/zXAfjxzOA69KXboEV6h4meHvfAFSte5Vp4j8Y2vY=
[AVG.VAULT] INFO 2012-08-04 21:39:20,286 GEORGE-PC PID:1564 THID:3672 ID:{FB35234C-DFA5-447c-BB78-D36ECAB5F4F5}:86.2111.2a23f7a.0 MSG:*
[AVG.LOG.SM] ALL 2012-08-04 21:28:15,021 GEORGE-PC PID:1564 THID:3672 ID:AVG.LOG.SM:0.0.0.0 MSG:c00000000001937185936bAFE9TDdcFvQpwofSlGQ8mUcCvfJOlRSx9e2kfvXT+axElVSTpsL2Yr3kA+sDYtQWuyzItvxDs0XxgVuQavH5fUB/S5AQogx4v0HTt3G+VqLsmmtMFYEM5R5MG3GvZQeGA2d0ClLikcBW3lx4rueyl2nT4B3gkxVJ31GhgLpmrSYZx8Pwani6o3AlhcRL5/4Riw3uqB+gOIpxZU+dGlS0eWyeev5XRsEpFaRAVRmAagQtFJ3fgUCpVl+8fnJ2MUpQWDAgQxJjYK8vKJWLoo6AXQviSSY7CFpciurHXXYqE/MN4S/zXAfjxzOA69KXboEV6h4meHvfAFSte5Vp4j8Y2vY=
[AVG.VAULT] INFO 2012-08-04 21:39:20,582 GEORGE-PC PID:1564 THID:3436 ID:{092C0D4D-E5F0-4456-9310-C128588B4492}:667.2111.2a23f7a.0 MSG:*
[AVG.VAULT] INFO 2012-08-04 21:39:24,335 GEORGE-PC PID:1564 THID:3672 ID:{FB35234C-DFA5-447c-BB78-D36ECAB5F4F5}:95.2111.2a23f7a.0 MSG:*
[AVG.LOG.SM] ALL 2012-08-04 21:28:15,021 GEORGE-PC PID:1564 THID:3672 ID:AVG.LOG.SM:0.0.0.0 MSG:c00000000001937185936bAFE9TDdcFvQpwofSlGQ8mUcCvfJOlRSx9e2kfvXT+axElVSTpsL2Yr3kA+sDYtQWuyzItvxDs0XxgVuQavH5fUB/S5AQogx4v0HTt3G+VqLsmmtMFYEM5R5MG3GvZQeGA2d0ClLikcBW3lx4rueyl2nT4B3gkxVJ31GhgLpmrSYZx8Pwani6o3AlhcRL5/4Riw3uqB+gOIpxZU+dGlS0eWyeev5XRsEpFaRAVRmAagQtFJ3fgUCpVl+8fnJ2MUpQWDAgQxJjYK8vKJWLoo6AXQviSSY7CFpciurHXXYqE/MN4S/zXAfjxzOA69KXboEV6h4meHvfAFSte5Vp4j8Y2vY=
[AVG.VAULT] INFO 2012-08-04 21:39:56,611 GEORGE-PC PID:1564 THID:3672 ID:{FB35234C-DFA5-447c-BB78-D36ECAB5F4F5}:86.2111.2a23f7a.0 MSG:*
[AVG.LOG.SM] ALL 2012-08-04 21:28:15,021 GEORGE-PC PID:1564 THID:3672 ID:AVG.LOG.SM:0.0.0.0 MSG:c00000000001937185936bAFE9TDdcFvQpwofSlGQ8mUcCvfJOlRSx9e2kfvXT+axElVSTpsL2Yr3kA+sDYtQWuyzItvxDs0XxgVuQavH5fUB/S5AQogx4v0HTt3G+VqLsmmtMFYEM5R5MG3GvZQeGA2d0ClLikcBW3lx4rueyl2nT4B3gkxVJ31GhgLpmrSYZx8Pwani6o3AlhcRL5/4Riw3uqB+gOIpxZU+dGlS0eWyeev5XRsEpFaRAVRmAagQtFJ3fgUCpVl+8fnJ2MUpQWDAgQxJjYK8vKJWLoo6AXQviSSY7CFpciurHXXYqE/MN4S/zXAfjxzOA69KXboEV6h4meHvfAFSte5Vp4j8Y2vY=
[AVG.VAULT] INFO 2012-08-04 22:03:10,133 GEORGE-PC PID:1564 THID:3672 ID:{FB35234C-DFA5-447c-BB78-D36ECAB5F4F5}:95.2111.2a23f7a.0 MSG:*
My System SpecsSystem Spec
04 Aug 2012   #6

64bit windows 7 ultimate
 
 

Code:
2012-08-04 19:23:05,727 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 19:23:05,790 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: IGMP RemotePort: 0 RemoteIp: 224.0.0.22 LocalPort: 0 LocalIp: 192.168.1.2
2012-08-04 19:23:05,790 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: IGMP RemotePort: 0 RemoteIp: 224.0.0.22 LocalPort: 0 LocalIp: 192.168.1.2
2012-08-04 19:23:05,790 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: ff02::1:3 LocalPort: 58647 LocalIp: ::
2012-08-04 19:23:05,790 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: ff02::1:3 LocalPort: 58647 LocalIp: ::
2012-08-04 19:23:05,790 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: 224.0.0.252 LocalPort: 53857 LocalIp: 0.0.0.0
2012-08-04 19:23:05,790 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: 224.0.0.252 LocalPort: 53857 LocalIp: 0.0.0.0
2012-08-04 19:23:05,790 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: IGMP RemotePort: 0 RemoteIp: 224.0.0.22 LocalPort: 0 LocalIp: 192.168.1.2
2012-08-04 19:23:05,790 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: IGMP RemotePort: 0 RemoteIp: 224.0.0.22 LocalPort: 0 LocalIp: 192.168.1.2
2012-08-04 19:23:05,790 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: IGMP RemotePort: 0 RemoteIp: 224.0.0.22 LocalPort: 0 LocalIp: 192.168.1.2
2012-08-04 19:23:05,790 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: IGMP RemotePort: 0 RemoteIp: 224.0.0.22 LocalPort: 0 LocalIp: 192.168.1.2
2012-08-04 19:23:05,790 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: ff02::1:3 LocalPort: 56877 LocalIp: ::
2012-08-04 19:23:05,790 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: ff02::1:3 LocalPort: 56877 LocalIp: ::
2012-08-04 19:23:05,790 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: 224.0.0.252 LocalPort: 63877 LocalIp: 0.0.0.0
2012-08-04 19:23:05,790 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: 224.0.0.252 LocalPort: 63877 LocalIp: 0.0.0.0
2012-08-04 19:23:05,790 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1596) User: "LOCAL SERVICE" Direction: Out Proto: UDP RemotePort: 3702 RemoteIp: 239.255.255.250 LocalPort: 51522 LocalIp: 0.0.0.0
2012-08-04 19:23:05,790 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1596) User: "LOCAL SERVICE" Direction: Out Proto: UDP RemotePort: 3702 RemoteIp: 239.255.255.250 LocalPort: 51522 LocalIp: 0.0.0.0
2012-08-04 19:23:05,790 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1596) User: "LOCAL SERVICE" Direction: Out Proto: UDP RemotePort: 3702 RemoteIp: 239.255.255.250 LocalPort: 51522 LocalIp: 0.0.0.0
2012-08-04 19:23:05,790 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1596) User: "LOCAL SERVICE" Direction: Out Proto: UDP RemotePort: 3702 RemoteIp: 239.255.255.250 LocalPort: 51522 LocalIp: 0.0.0.0
2012-08-04 19:23:05,790 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1596) User: "LOCAL SERVICE" Direction: Out Proto: UDP RemotePort: 3702 RemoteIp: ff02::c LocalPort: 51523 LocalIp: ::
2012-08-04 19:23:05,790 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1596) User: "LOCAL SERVICE" Direction: Out Proto: UDP RemotePort: 3702 RemoteIp: ff02::c LocalPort: 51523 LocalIp: ::
2012-08-04 19:23:05,790 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1596) User: "LOCAL SERVICE" Direction: Out Proto: UDP RemotePort: 3702 RemoteIp: ff02::c LocalPort: 51523 LocalIp: ::
2012-08-04 19:23:05,790 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1596) User: "LOCAL SERVICE" Direction: Out Proto: UDP RemotePort: 3702 RemoteIp: ff02::c LocalPort: 51523 LocalIp: ::
2012-08-04 19:23:05,790 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: IGMP RemotePort: 0 RemoteIp: 224.0.0.22 LocalPort: 0 LocalIp: 192.168.1.2
2012-08-04 19:23:05,790 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: ff02::1:3 LocalPort: 58407 LocalIp: ::
2012-08-04 19:23:05,790 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: ff02::1:3 LocalPort: 58407 LocalIp: ::
2012-08-04 19:23:05,790 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: 224.0.0.252 LocalPort: 55346 LocalIp: 0.0.0.0
2012-08-04 19:23:05,790 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: 224.0.0.252 LocalPort: 55346 LocalIp: 0.0.0.0
2012-08-04 19:23:05,790 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 19:23:05,992 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 19:23:06,445 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 19:23:06,757 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 19:23:07,209 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 19:23:07,521 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: ff02::1:3 LocalPort: 57022 LocalIp: ::
2012-08-04 19:23:07,521 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: ff02::1:3 LocalPort: 57022 LocalIp: ::
2012-08-04 19:23:07,521 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: 224.0.0.252 LocalPort: 53801 LocalIp: 0.0.0.0
2012-08-04 19:23:07,521 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: 224.0.0.252 LocalPort: 53801 LocalIp: 0.0.0.0
2012-08-04 19:23:07,521 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 19:23:08,005 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: ff02::1:3 LocalPort: 53491 LocalIp: ::
2012-08-04 19:23:08,005 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: ff02::1:3 LocalPort: 53491 LocalIp: ::
2012-08-04 19:23:08,005 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: 224.0.0.252 LocalPort: 62555 LocalIp: 0.0.0.0
2012-08-04 19:23:08,005 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: 224.0.0.252 LocalPort: 62555 LocalIp: 0.0.0.0
2012-08-04 19:23:08,005 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 19:23:08,286 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 19:23:08,769 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 19:23:09,050 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 19:23:09,534 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 19:23:10,329 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: ff02::1:3 LocalPort: 54552 LocalIp: ::
2012-08-04 19:23:10,329 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: ff02::1:3 LocalPort: 54552 LocalIp: ::
2012-08-04 19:23:10,329 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: 224.0.0.252 LocalPort: 52271 LocalIp: 0.0.0.0
2012-08-04 19:23:10,345 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: 224.0.0.252 LocalPort: 52271 LocalIp: 0.0.0.0
2012-08-04 19:23:10,345 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 19:23:11,094 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 19:23:11,858 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 19:23:12,622 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: ff02::1:3 LocalPort: 49769 LocalIp: ::
2012-08-04 19:23:12,622 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: ff02::1:3 LocalPort: 49769 LocalIp: ::
2012-08-04 19:23:12,622 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: 224.0.0.252 LocalPort: 50373 LocalIp: 0.0.0.0
2012-08-04 19:23:12,622 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: 224.0.0.252 LocalPort: 50373 LocalIp: 0.0.0.0
2012-08-04 19:23:12,622 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 19:23:13,387 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 19:23:14,151 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 19:23:14,916 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: ff02::1:3 LocalPort: 54797 LocalIp: ::
2012-08-04 19:23:14,916 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: ff02::1:3 LocalPort: 54797 LocalIp: ::
2012-08-04 19:23:14,916 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: 224.0.0.252 LocalPort: 63715 LocalIp: 0.0.0.0
2012-08-04 19:23:14,916 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: 224.0.0.252 LocalPort: 63715 LocalIp: 0.0.0.0
2012-08-04 19:23:14,916 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 19:23:15,680 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 19:23:16,444 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 19:23:17,209 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: ff02::1:3 LocalPort: 54007 LocalIp: ::
2012-08-04 19:23:17,209 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: ff02::1:3 LocalPort: 54007 LocalIp: ::
2012-08-04 19:23:17,209 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: 224.0.0.252 LocalPort: 60726 LocalIp: 0.0.0.0
2012-08-04 19:23:17,209 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: 224.0.0.252 LocalPort: 60726 LocalIp: 0.0.0.0
2012-08-04 19:23:17,209 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 19:23:17,973 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 19:23:18,738 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 19:23:21,109 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: ff02::1:3 LocalPort: 56385 LocalIp: ::
2012-08-04 19:23:21,109 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: ff02::1:3 LocalPort: 56385 LocalIp: ::
2012-08-04 19:23:21,109 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: 224.0.0.252 LocalPort: 52216 LocalIp: 0.0.0.0
2012-08-04 19:23:21,109 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: 224.0.0.252 LocalPort: 52216 LocalIp: 0.0.0.0
2012-08-04 19:23:21,109 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 19:23:21,873 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 19:23:22,638 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 19:23:23,402 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: ff02::1:3 LocalPort: 53663 LocalIp: ::
2012-08-04 19:23:23,402 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: ff02::1:3 LocalPort: 53663 LocalIp: ::
2012-08-04 19:23:23,402 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: 224.0.0.252 LocalPort: 64949 LocalIp: 0.0.0.0
2012-08-04 19:23:23,402 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: 224.0.0.252 LocalPort: 64949 LocalIp: 0.0.0.0
2012-08-04 19:23:23,402 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 19:23:24,166 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 19:23:24,931 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 19:23:25,882 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: ff02::1:3 LocalPort: 56669 LocalIp: ::
2012-08-04 19:23:25,882 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: ff02::1:3 LocalPort: 56669 LocalIp: ::
2012-08-04 19:23:25,882 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: 224.0.0.252 LocalPort: 61298 LocalIp: 0.0.0.0
2012-08-04 19:23:25,882 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: 224.0.0.252 LocalPort: 61298 LocalIp: 0.0.0.0
2012-08-04 19:23:25,882 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 19:23:26,647 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 19:23:27,411 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 19:23:28,176 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: ff02::1:3 LocalPort: 65451 LocalIp: ::
2012-08-04 19:23:28,176 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: ff02::1:3 LocalPort: 65451 LocalIp: ::
2012-08-04 19:23:28,176 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: 224.0.0.252 LocalPort: 56923 LocalIp: 0.0.0.0
2012-08-04 19:23:28,176 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: 224.0.0.252 LocalPort: 56923 LocalIp: 0.0.0.0
2012-08-04 19:23:28,176 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 19:23:28,940 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 19:23:29,704 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 19:23:30,484 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: ff02::1:3 LocalPort: 50336 LocalIp: ::
2012-08-04 19:23:30,484 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: ff02::1:3 LocalPort: 50336 LocalIp: ::
2012-08-04 19:23:30,484 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: 224.0.0.252 LocalPort: 64052 LocalIp: 0.0.0.0
2012-08-04 19:23:30,484 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: 224.0.0.252 LocalPort: 64052 LocalIp: 0.0.0.0
2012-08-04 19:23:30,484 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 19:23:31,249 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 19:23:32,013 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 19:23:32,778 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: ff02::1:3 LocalPort: 65343 LocalIp: ::
2012-08-04 19:23:32,778 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: ff02::1:3 LocalPort: 65343 LocalIp: ::
2012-08-04 19:23:32,778 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: 224.0.0.252 LocalPort: 53584 LocalIp: 0.0.0.0
2012-08-04 19:23:32,778 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: 224.0.0.252 LocalPort: 53584 LocalIp: 0.0.0.0
2012-08-04 19:23:32,778 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 19:23:33,542 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 19:23:34,166 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 138 RemoteIp: 192.168.1.255 LocalPort: 138 LocalIp: 192.168.1.2
2012-08-04 19:23:34,306 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 19:23:35,071 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: ff02::1:3 LocalPort: 60078 LocalIp: ::
2012-08-04 19:23:35,071 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: ff02::1:3 LocalPort: 60078 LocalIp: ::
2012-08-04 19:23:35,071 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: 224.0.0.252 LocalPort: 60087 LocalIp: 0.0.0.0
2012-08-04 19:23:35,071 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: 224.0.0.252 LocalPort: 60087 LocalIp: 0.0.0.0
2012-08-04 19:23:35,071 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 19:23:35,835 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 19:23:36,600 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 19:23:37,364 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: ff02::1:3 LocalPort: 60057 LocalIp: ::
2012-08-04 19:23:37,364 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: ff02::1:3 LocalPort: 60057 LocalIp: ::
2012-08-04 19:23:37,364 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: 224.0.0.252 LocalPort: 62278 LocalIp: 0.0.0.0
2012-08-04 19:23:37,364 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: 224.0.0.252 LocalPort: 62278 LocalIp: 0.0.0.0
2012-08-04 19:23:37,364 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 19:23:38,128 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 19:23:38,893 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 19:23:39,782 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: ff02::1:3 LocalPort: 61344 LocalIp: ::
2012-08-04 19:23:39,782 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: ff02::1:3 LocalPort: 61344 LocalIp: ::
2012-08-04 19:23:39,782 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: 224.0.0.252 LocalPort: 55372 LocalIp: 0.0.0.0
2012-08-04 19:23:39,782 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: 224.0.0.252 LocalPort: 55372 LocalIp: 0.0.0.0
2012-08-04 19:23:39,782 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 19:23:39,829 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: IGMP RemotePort: 0 RemoteIp: 224.0.0.22 LocalPort: 0 LocalIp: 192.168.1.2
2012-08-04 19:23:39,829 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: IGMP RemotePort: 0 RemoteIp: 224.0.0.22 LocalPort: 0 LocalIp: 192.168.1.2
2012-08-04 19:23:39,829 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1596) User: "LOCAL SERVICE" Direction: Out Proto: UDP RemotePort: 3702 RemoteIp: 239.255.255.250 LocalPort: 51522 LocalIp: 0.0.0.0
2012-08-04 19:23:39,829 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1596) User: "LOCAL SERVICE" Direction: Out Proto: UDP RemotePort: 3702 RemoteIp: 239.255.255.250 LocalPort: 51522 LocalIp: 0.0.0.0
2012-08-04 19:23:39,829 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1596) User: "LOCAL SERVICE" Direction: Out Proto: UDP RemotePort: 3702 RemoteIp: 239.255.255.250 LocalPort: 51522 LocalIp: 0.0.0.0
2012-08-04 19:23:39,829 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1596) User: "LOCAL SERVICE" Direction: Out Proto: UDP RemotePort: 3702 RemoteIp: 239.255.255.250 LocalPort: 51522 LocalIp: 0.0.0.0
2012-08-04 19:23:39,829 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1596) User: "LOCAL SERVICE" Direction: Out Proto: UDP RemotePort: 3702 RemoteIp: ff02::c LocalPort: 51523 LocalIp: ::
2012-08-04 19:23:39,829 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1596) User: "LOCAL SERVICE" Direction: Out Proto: UDP RemotePort: 3702 RemoteIp: ff02::c LocalPort: 51523 LocalIp: ::
2012-08-04 19:23:39,829 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1596) User: "LOCAL SERVICE" Direction: Out Proto: UDP RemotePort: 3702 RemoteIp: ff02::c LocalPort: 51523 LocalIp: ::
2012-08-04 19:23:39,829 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1596) User: "LOCAL SERVICE" Direction: Out Proto: UDP RemotePort: 3702 RemoteIp: ff02::c LocalPort: 51523 LocalIp: ::
2012-08-04 19:23:39,860 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: IGMP RemotePort: 0 RemoteIp: 224.0.0.22 LocalPort: 0 LocalIp: 192.168.1.2
2012-08-04 19:23:39,860 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: IGMP RemotePort: 0 RemoteIp: 224.0.0.22 LocalPort: 0 LocalIp: 192.168.1.2
2012-08-04 19:23:39,891 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: ff02::1:3 LocalPort: 52120 LocalIp: ::
2012-08-04 19:23:39,891 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: ff02::1:3 LocalPort: 52120 LocalIp: ::
2012-08-04 19:23:39,891 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: 224.0.0.252 LocalPort: 60195 LocalIp: 0.0.0.0
2012-08-04 19:23:39,891 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: 224.0.0.252 LocalPort: 60195 LocalIp: 0.0.0.0
2012-08-04 19:23:39,969 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: IGMP RemotePort: 0 RemoteIp: 224.0.0.22 LocalPort: 0 LocalIp: 192.168.1.2
2012-08-04 19:23:39,969 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: IGMP RemotePort: 0 RemoteIp: 224.0.0.22 LocalPort: 0 LocalIp: 192.168.1.2
2012-08-04 19:23:39,969 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: IGMP RemotePort: 0 RemoteIp: 224.0.0.22 LocalPort: 0 LocalIp: 192.168.1.2
2012-08-04 19:23:39,969 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: ff02::1:3 LocalPort: 62090 LocalIp: ::
2012-08-04 19:23:39,969 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: ff02::1:3 LocalPort: 62090 LocalIp: ::
2012-08-04 19:23:39,969 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: 224.0.0.252 LocalPort: 52997 LocalIp: 0.0.0.0
2012-08-04 19:23:39,969 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: 224.0.0.252 LocalPort: 52997 LocalIp: 0.0.0.0
2012-08-04 19:23:39,985 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: IGMP RemotePort: 0 RemoteIp: 224.0.0.22 LocalPort: 0 LocalIp: 192.168.1.2
2012-08-04 19:23:39,985 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: IGMP RemotePort: 0 RemoteIp: 224.0.0.22 LocalPort: 0 LocalIp: 192.168.1.2
2012-08-04 19:23:39,985 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: ff02::1:3 LocalPort: 50453 LocalIp: ::
2012-08-04 19:23:39,985 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: ff02::1:3 LocalPort: 50453 LocalIp: ::
2012-08-04 19:23:39,985 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: 224.0.0.252 LocalPort: 49272 LocalIp: 0.0.0.0
2012-08-04 19:23:39,985 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: 224.0.0.252 LocalPort: 49272 LocalIp: 0.0.0.0
2012-08-04 19:23:40,000 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: IGMP RemotePort: 0 RemoteIp: 224.0.0.22 LocalPort: 0 LocalIp: 192.168.1.2
2012-08-04 19:23:40,000 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: IGMP RemotePort: 0 RemoteIp: 224.0.0.22 LocalPort: 0 LocalIp: 192.168.1.2
2012-08-04 19:23:40,000 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1596) User: "LOCAL SERVICE" Direction: Out Proto: UDP RemotePort: 3702 RemoteIp: 239.255.255.250 LocalPort: 51522 LocalIp: 0.0.0.0
2012-08-04 19:23:40,000 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1596) User: "LOCAL SERVICE" Direction: Out Proto: UDP RemotePort: 3702 RemoteIp: 239.255.255.250 LocalPort: 51522 LocalIp: 0.0.0.0
2012-08-04 19:23:40,000 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1596) User: "LOCAL SERVICE" Direction: Out Proto: UDP RemotePort: 3702 RemoteIp: 239.255.255.250 LocalPort: 51522 LocalIp: 0.0.0.0
2012-08-04 19:23:40,000 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1596) User: "LOCAL SERVICE" Direction: Out Proto: UDP RemotePort: 3702 RemoteIp: 239.255.255.250 LocalPort: 51522 LocalIp: 0.0.0.0
2012-08-04 19:23:40,000 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1596) User: "LOCAL SERVICE" Direction: Out Proto: UDP RemotePort: 3702 RemoteIp: ff02::c LocalPort: 51523 LocalIp: ::
2012-08-04 19:23:40,000 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1596) User: "LOCAL SERVICE" Direction: Out Proto: UDP RemotePort: 3702 RemoteIp: ff02::c LocalPort: 51523 LocalIp: ::
2012-08-04 19:23:40,000 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1596) User: "LOCAL SERVICE" Direction: Out Proto: UDP RemotePort: 3702 RemoteIp: ff02::c LocalPort: 51523 LocalIp: ::
2012-08-04 19:23:40,000 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1596) User: "LOCAL SERVICE" Direction: Out Proto: UDP RemotePort: 3702 RemoteIp: ff02::c LocalPort: 51523 LocalIp: ::
2012-08-04 19:23:40,468 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: IGMP RemotePort: 0 RemoteIp: 224.0.0.22 LocalPort: 0 LocalIp: 192.168.1.2
2012-08-04 19:23:40,546 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 19:23:41,342 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 19:23:42,075 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: ff02::1:3 LocalPort: 61588 LocalIp: ::
2012-08-04 19:23:42,075 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: ff02::1:3 LocalPort: 61588 LocalIp: ::
2012-08-04 19:23:42,075 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: 224.0.0.252 LocalPort: 63365 LocalIp: 0.0.0.0
2012-08-04 19:23:42,075 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: 224.0.0.252 LocalPort: 63365 LocalIp: 0.0.0.0
2012-08-04 19:23:42,075 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 19:23:42,840 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 19:23:43,604 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 19:23:53,089 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: IGMP RemotePort: 0 RemoteIp: 224.0.0.22 LocalPort: 0 LocalIp: 192.168.1.2
2012-08-04 19:23:53,089 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: IGMP RemotePort: 0 RemoteIp: 224.0.0.22 LocalPort: 0 LocalIp: 192.168.1.2
2012-08-04 19:23:53,089 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: IGMP RemotePort: 0 RemoteIp: 224.0.0.22 LocalPort: 0 LocalIp: 192.168.1.2
2012-08-04 19:23:53,089 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: IGMP RemotePort: 0 RemoteIp: 224.0.0.22 LocalPort: 0 LocalIp: 192.168.1.2
2012-08-04 19:23:53,089 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: ff02::1:3 LocalPort: 56523 LocalIp: ::
2012-08-04 19:23:53,089 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: ff02::1:3 LocalPort: 56523 LocalIp: ::
2012-08-04 19:23:53,089 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: 224.0.0.252 LocalPort: 53428 LocalIp: 0.0.0.0
2012-08-04 19:23:53,089 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: 224.0.0.252 LocalPort: 53428 LocalIp: 0.0.0.0
2012-08-04 19:23:53,463 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: IGMP RemotePort: 0 RemoteIp: 224.0.0.22 LocalPort: 0 LocalIp: 192.168.1.2
2012-08-04 19:24:34,179 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 138 RemoteIp: 192.168.1.255 LocalPort: 138 LocalIp: 192.168.1.2
2012-08-04 19:25:49,356 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 138 RemoteIp: 192.168.1.255 LocalPort: 138 LocalIp: 192.168.1.2
2012-08-04 19:27:49,992 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 138 RemoteIp: 192.168.1.255 LocalPort: 138 LocalIp: 192.168.1.2
2012-08-04 19:29:34,182 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 138 RemoteIp: 192.168.1.255 LocalPort: 138 LocalIp: 192.168.1.2
2012-08-04 19:31:49,668 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 138 RemoteIp: 192.168.1.255 LocalPort: 138 LocalIp: 192.168.1.2
2012-08-04 19:32:56,220 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: In Proto: UDP RemotePort: 138 RemoteIp: 192.168.1.3 LocalPort: 138 LocalIp: 192.168.1.255
2012-08-04 19:34:34,182 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 138 RemoteIp: 192.168.1.255 LocalPort: 138 LocalIp: 192.168.1.2
2012-08-04 19:34:57,191 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: In Proto: UDP RemotePort: 138 RemoteIp: 192.168.1.3 LocalPort: 138 LocalIp: 192.168.1.255
2012-08-04 19:39:47,730 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 138 RemoteIp: 192.168.1.255 LocalPort: 138 LocalIp: 192.168.1.2
2012-08-04 19:44:34,183 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 138 RemoteIp: 192.168.1.255 LocalPort: 138 LocalIp: 192.168.1.2
2012-08-04 19:44:53,378 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: In Proto: UDP RemotePort: 138 RemoteIp: 192.168.1.3 LocalPort: 138 LocalIp: 192.168.1.255
2012-08-04 19:49:57,213 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: In Proto: UDP RemotePort: 138 RemoteIp: 192.168.1.3 LocalPort: 138 LocalIp: 192.168.1.255
2012-08-04 19:51:47,631 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 138 RemoteIp: 192.168.1.255 LocalPort: 138 LocalIp: 192.168.1.2
2012-08-04 19:54:34,183 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 138 RemoteIp: 192.168.1.255 LocalPort: 138 LocalIp: 192.168.1.2
2012-08-04 19:56:53,754 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: In Proto: UDP RemotePort: 138 RemoteIp: 192.168.1.3 LocalPort: 138 LocalIp: 192.168.1.255
2012-08-04 20:03:49,336 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 138 RemoteIp: 192.168.1.255 LocalPort: 138 LocalIp: 192.168.1.2
2012-08-04 20:04:57,252 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: In Proto: UDP RemotePort: 138 RemoteIp: 192.168.1.3 LocalPort: 138 LocalIp: 192.168.1.255
2012-08-04 20:06:18,365 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: In Proto: UDP RemotePort: 60881 RemoteIp: fe80::04a5:814b:27ca:0d66 LocalPort: 5355 LocalIp: ff02::1:3
2012-08-04 20:06:18,366 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: In Proto: UDP RemotePort: 50455 RemoteIp: 192.168.1.3 LocalPort: 5355 LocalIp: 224.0.0.252
2012-08-04 20:06:18,374 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: In Proto: UDP RemotePort: 63338 RemoteIp: fe80::04a5:814b:27ca:0d66 LocalPort: 5355 LocalIp: ff02::1:3
2012-08-04 20:06:18,374 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 992) User: "NETWORK SERVICE" Direction: In Proto: UDP RemotePort: 53528 RemoteIp: 192.168.1.3 LocalPort: 5355 LocalIp: 224.0.0.252
2012-08-04 20:06:18,665 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: In Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.3 LocalPort: 137 LocalIp: 192.168.1.255
2012-08-04 20:08:56,520 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: In Proto: UDP RemotePort: 138 RemoteIp: 192.168.1.3 LocalPort: 138 LocalIp: 192.168.1.255
2012-08-04 20:09:34,183 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 138 RemoteIp: 192.168.1.255 LocalPort: 138 LocalIp: 192.168.1.2
2012-08-04 20:15:49,149 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 138 RemoteIp: 192.168.1.255 LocalPort: 138 LocalIp: 192.168.1.2
2012-08-04 20:19:08,332 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1004) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: ff02::1:3 LocalPort: 62842 LocalIp: ::
2012-08-04 20:19:08,457 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1004) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: ff02::1:3 LocalPort: 62842 LocalIp: ::
2012-08-04 20:19:08,473 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1004) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: 224.0.0.252 LocalPort: 53344 LocalIp: 0.0.0.0
2012-08-04 20:19:08,707 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1004) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: 224.0.0.252 LocalPort: 53344 LocalIp: 0.0.0.0
2012-08-04 20:19:10,625 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1004) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: ff02::1:3 LocalPort: 50301 LocalIp: ::
2012-08-04 20:19:10,625 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1004) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: ff02::1:3 LocalPort: 50301 LocalIp: ::
2012-08-04 20:19:10,625 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1004) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: 224.0.0.252 LocalPort: 53727 LocalIp: 0.0.0.0
2012-08-04 20:19:10,625 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1004) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: 224.0.0.252 LocalPort: 53727 LocalIp: 0.0.0.0
2012-08-04 20:19:11,390 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 20:19:12,154 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 20:19:17,334 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1004) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: ff02::1:3 LocalPort: 61702 LocalIp: ::
2012-08-04 20:19:17,334 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1004) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: ff02::1:3 LocalPort: 61702 LocalIp: ::
2012-08-04 20:19:17,334 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1004) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: 224.0.0.252 LocalPort: 58651 LocalIp: 0.0.0.0
2012-08-04 20:19:17,334 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1004) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: 224.0.0.252 LocalPort: 58651 LocalIp: 0.0.0.0
2012-08-04 20:19:17,334 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 20:19:17,927 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 20:19:18,098 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 20:19:18,691 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 20:19:18,863 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 20:19:19,393 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1004) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: ff02::1:3 LocalPort: 61850 LocalIp: ::
2012-08-04 20:19:19,393 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1004) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: ff02::1:3 LocalPort: 61850 LocalIp: ::
2012-08-04 20:19:19,393 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1004) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: 224.0.0.252 LocalPort: 62155 LocalIp: 0.0.0.0
2012-08-04 20:19:19,393 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1004) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: 224.0.0.252 LocalPort: 62155 LocalIp: 0.0.0.0
2012-08-04 20:19:19,393 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 20:19:19,455 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 20:19:19,752 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1004) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: ff02::1:3 LocalPort: 61588 LocalIp: ::
2012-08-04 20:19:19,752 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1004) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: ff02::1:3 LocalPort: 61588 LocalIp: ::
2012-08-04 20:19:19,752 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1004) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: 224.0.0.252 LocalPort: 63259 LocalIp: 0.0.0.0
2012-08-04 20:19:19,752 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1004) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: 224.0.0.252 LocalPort: 63259 LocalIp: 0.0.0.0
2012-08-04 20:19:19,752 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 20:19:20,157 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 20:19:20,220 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 20:19:20,329 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: IGMP RemotePort: 0 RemoteIp: 224.0.0.22 LocalPort: 0 LocalIp: 192.168.1.2
2012-08-04 20:19:20,719 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: IGMP RemotePort: 0 RemoteIp: 224.0.0.22 LocalPort: 0 LocalIp: 192.168.1.2
2012-08-04 20:19:20,719 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1604) User: "LOCAL SERVICE" Direction: Out Proto: UDP RemotePort: 3702 RemoteIp: 239.255.255.250 LocalPort: 64892 LocalIp: 0.0.0.0
2012-08-04 20:19:20,719 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1604) User: "LOCAL SERVICE" Direction: Out Proto: UDP RemotePort: 3702 RemoteIp: 239.255.255.250 LocalPort: 64892 LocalIp: 0.0.0.0
2012-08-04 20:19:20,719 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1604) User: "LOCAL SERVICE" Direction: Out Proto: UDP RemotePort: 3702 RemoteIp: 239.255.255.250 LocalPort: 64892 LocalIp: 0.0.0.0
2012-08-04 20:19:20,719 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1604) User: "LOCAL SERVICE" Direction: Out Proto: UDP RemotePort: 3702 RemoteIp: 239.255.255.250 LocalPort: 64892 LocalIp: 0.0.0.0
2012-08-04 20:19:20,719 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1604) User: "LOCAL SERVICE" Direction: Out Proto: UDP RemotePort: 3702 RemoteIp: ff02::c LocalPort: 64893 LocalIp: ::
2012-08-04 20:19:20,719 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1604) User: "LOCAL SERVICE" Direction: Out Proto: UDP RemotePort: 3702 RemoteIp: ff02::c LocalPort: 64893 LocalIp: ::
2012-08-04 20:19:20,719 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1604) User: "LOCAL SERVICE" Direction: Out Proto: UDP RemotePort: 3702 RemoteIp: ff02::c LocalPort: 64893 LocalIp: ::
2012-08-04 20:19:20,719 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1604) User: "LOCAL SERVICE" Direction: Out Proto: UDP RemotePort: 3702 RemoteIp: ff02::c LocalPort: 64893 LocalIp: ::
2012-08-04 20:19:20,719 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: IGMP RemotePort: 0 RemoteIp: 224.0.0.22 LocalPort: 0 LocalIp: 192.168.1.2
2012-08-04 20:19:20,719 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: IGMP RemotePort: 0 RemoteIp: 224.0.0.22 LocalPort: 0 LocalIp: 192.168.1.2
2012-08-04 20:19:20,719 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: IGMP RemotePort: 0 RemoteIp: 224.0.0.22 LocalPort: 0 LocalIp: 192.168.1.2
2012-08-04 20:19:20,719 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: IGMP RemotePort: 0 RemoteIp: 224.0.0.22 LocalPort: 0 LocalIp: 192.168.1.2
2012-08-04 20:19:20,719 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1604) User: "LOCAL SERVICE" Direction: Out Proto: UDP RemotePort: 3702 RemoteIp: 239.255.255.250 LocalPort: 64892 LocalIp: 0.0.0.0
2012-08-04 20:19:20,719 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1604) User: "LOCAL SERVICE" Direction: Out Proto: UDP RemotePort: 3702 RemoteIp: 239.255.255.250 LocalPort: 64892 LocalIp: 0.0.0.0
2012-08-04 20:19:20,719 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1604) User: "LOCAL SERVICE" Direction: Out Proto: UDP RemotePort: 3702 RemoteIp: 239.255.255.250 LocalPort: 64892 LocalIp: 0.0.0.0
2012-08-04 20:19:20,719 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1604) User: "LOCAL SERVICE" Direction: Out Proto: UDP RemotePort: 3702 RemoteIp: 239.255.255.250 LocalPort: 64892 LocalIp: 0.0.0.0
2012-08-04 20:19:20,719 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1604) User: "LOCAL SERVICE" Direction: Out Proto: UDP RemotePort: 3702 RemoteIp: ff02::c LocalPort: 64893 LocalIp: ::
2012-08-04 20:19:20,719 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1604) User: "LOCAL SERVICE" Direction: Out Proto: UDP RemotePort: 3702 RemoteIp: ff02::c LocalPort: 64893 LocalIp: ::
2012-08-04 20:19:20,719 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1604) User: "LOCAL SERVICE" Direction: Out Proto: UDP RemotePort: 3702 RemoteIp: ff02::c LocalPort: 64893 LocalIp: ::
2012-08-04 20:19:20,719 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1604) User: "LOCAL SERVICE" Direction: Out Proto: UDP RemotePort: 3702 RemoteIp: ff02::c LocalPort: 64893 LocalIp: ::
2012-08-04 20:19:20,719 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1004) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: ff02::1:3 LocalPort: 60994 LocalIp: ::
2012-08-04 20:19:20,719 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1004) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: ff02::1:3 LocalPort: 60994 LocalIp: ::
2012-08-04 20:19:20,719 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1004) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: 224.0.0.252 LocalPort: 49938 LocalIp: 0.0.0.0
2012-08-04 20:19:20,719 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1004) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: 224.0.0.252 LocalPort: 49938 LocalIp: 0.0.0.0
2012-08-04 20:19:20,719 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 20:19:20,719 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: IGMP RemotePort: 0 RemoteIp: 224.0.0.22 LocalPort: 0 LocalIp: 192.168.1.2
2012-08-04 20:19:20,719 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: IGMP RemotePort: 0 RemoteIp: 224.0.0.22 LocalPort: 0 LocalIp: 192.168.1.2
2012-08-04 20:19:20,719 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: IGMP RemotePort: 0 RemoteIp: 224.0.0.22 LocalPort: 0 LocalIp: 192.168.1.2
2012-08-04 20:19:20,719 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1004) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: ff02::1:3 LocalPort: 49916 LocalIp: ::
2012-08-04 20:19:20,719 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1004) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: ff02::1:3 LocalPort: 49916 LocalIp: ::
2012-08-04 20:19:20,719 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1004) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: 224.0.0.252 LocalPort: 58367 LocalIp: 0.0.0.0
2012-08-04 20:19:20,719 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1004) User: "NETWORK SERVICE" Direction: Out Proto: UDP RemotePort: 5355 RemoteIp: 224.0.0.252 LocalPort: 58367 LocalIp: 0.0.0.0
2012-08-04 20:19:20,719 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: IGMP RemotePort: 0 RemoteIp: 224.0.0.22 LocalPort: 0 LocalIp: 192.168.1.2
2012-08-04 20:19:20,719 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: IGMP RemotePort: 0 RemoteIp: 224.0.0.22 LocalPort: 0 LocalIp: 192.168.1.2
2012-08-04 20:19:20,719 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1604) User: "LOCAL SERVICE" Direction: Out Proto: UDP RemotePort: 3702 RemoteIp: 239.255.255.250 LocalPort: 64892 LocalIp: 0.0.0.0
2012-08-04 20:19:20,719 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1604) User: "LOCAL SERVICE" Direction: Out Proto: UDP RemotePort: 3702 RemoteIp: 239.255.255.250 LocalPort: 64892 LocalIp: 0.0.0.0
2012-08-04 20:19:20,719 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1604) User: "LOCAL SERVICE" Direction: Out Proto: UDP RemotePort: 3702 RemoteIp: 239.255.255.250 LocalPort: 64892 LocalIp: 0.0.0.0
2012-08-04 20:19:20,735 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1604) User: "LOCAL SERVICE" Direction: Out Proto: UDP RemotePort: 3702 RemoteIp: 239.255.255.250 LocalPort: 64892 LocalIp: 0.0.0.0
2012-08-04 20:19:20,735 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1604) User: "LOCAL SERVICE" Direction: Out Proto: UDP RemotePort: 3702 RemoteIp: ff02::c LocalPort: 64893 LocalIp: ::
2012-08-04 20:19:20,735 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1604) User: "LOCAL SERVICE" Direction: Out Proto: UDP RemotePort: 3702 RemoteIp: ff02::c LocalPort: 64893 LocalIp: ::
2012-08-04 20:19:20,735 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1604) User: "LOCAL SERVICE" Direction: Out Proto: UDP RemotePort: 3702 RemoteIp: ff02::c LocalPort: 64893 LocalIp: ::
2012-08-04 20:19:20,735 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1604) User: "LOCAL SERVICE" Direction: Out Proto: UDP RemotePort: 3702 RemoteIp: ff02::c LocalPort: 64893 LocalIp: ::
2012-08-04 20:19:20,922 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 20:19:20,984 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 138 RemoteIp: 192.168.1.255 LocalPort: 138 LocalIp: 192.168.1.2
2012-08-04 20:19:20,984 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 138 RemoteIp: 192.168.1.255 LocalPort: 138 LocalIp: 192.168.1.2
2012-08-04 20:19:21,078 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: IGMP RemotePort: 0 RemoteIp: 224.0.0.22 LocalPort: 0 LocalIp: 192.168.1.2
2012-08-04 20:19:21,205 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 20:19:22,499 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 138 RemoteIp: 192.168.1.255 LocalPort: 138 LocalIp: 192.168.1.2
2012-08-04 20:19:24,013 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 138 RemoteIp: 192.168.1.255 LocalPort: 138 LocalIp: 192.168.1.2
2012-08-04 20:19:25,526 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 138 RemoteIp: 192.168.1.255 LocalPort: 138 LocalIp: 192.168.1.2
2012-08-04 20:19:27,039 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 138 RemoteIp: 192.168.1.255 LocalPort: 138 LocalIp: 192.168.1.2
2012-08-04 20:19:28,053 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 138 RemoteIp: 192.168.1.255 LocalPort: 138 LocalIp: 192.168.1.2
2012-08-04 20:19:29,067 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 138 RemoteIp: 192.168.1.255 LocalPort: 138 LocalIp: 192.168.1.2
2012-08-04 20:19:30,081 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 138 RemoteIp: 192.168.1.255 LocalPort: 138 LocalIp: 192.168.1.2
2012-08-04 20:19:31,095 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 20:19:31,859 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 20:19:32,624 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 20:19:33,388 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 20:19:34,153 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 20:19:34,917 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 20:19:35,681 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 20:19:36,446 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 20:19:37,226 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 138 RemoteIp: 192.168.1.255 LocalPort: 138 LocalIp: 192.168.1.2
2012-08-04 20:19:37,226 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 138 RemoteIp: 192.168.1.255 LocalPort: 138 LocalIp: 192.168.1.2
2012-08-04 20:19:37,226 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 138 RemoteIp: 192.168.1.255 LocalPort: 138 LocalIp: 192.168.1.2
2012-08-04 20:20:37,225 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 138 RemoteIp: 192.168.1.255 LocalPort: 138 LocalIp: 192.168.1.2
2012-08-04 20:20:54,073 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: In Proto: UDP RemotePort: 138 RemoteIp: 192.168.1.3 LocalPort: 138 LocalIp: 192.168.1.255
2012-08-04 20:21:25,912 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 138 RemoteIp: 192.168.1.255 LocalPort: 138 LocalIp: 192.168.1.2
2012-08-04 20:21:37,238 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 138 RemoteIp: 192.168.1.255 LocalPort: 138 LocalIp: 192.168.1.2
2012-08-04 20:23:23,724 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 138 RemoteIp: 192.168.1.255 LocalPort: 138 LocalIp: 192.168.1.2
2012-08-04 20:26:37,238 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 138 RemoteIp: 192.168.1.255 LocalPort: 138 LocalIp: 192.168.1.2
2012-08-04 20:27:24,124 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 138 RemoteIp: 192.168.1.255 LocalPort: 138 LocalIp: 192.168.1.2
2012-08-04 20:31:37,239 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 138 RemoteIp: 192.168.1.255 LocalPort: 138 LocalIp: 192.168.1.2
2012-08-04 20:32:52,624 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: In Proto: UDP RemotePort: 138 RemoteIp: 192.168.1.3 LocalPort: 138 LocalIp: 192.168.1.255
2012-08-04 20:35:25,958 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 138 RemoteIp: 192.168.1.255 LocalPort: 138 LocalIp: 192.168.1.2
2012-08-04 20:41:37,239 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 138 RemoteIp: 192.168.1.255 LocalPort: 138 LocalIp: 192.168.1.2
2012-08-04 20:44:49,752 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: In Proto: UDP RemotePort: 138 RemoteIp: 192.168.1.3 LocalPort: 138 LocalIp: 192.168.1.255
2012-08-04 20:47:24,123 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 138 RemoteIp: 192.168.1.255 LocalPort: 138 LocalIp: 192.168.1.2
2012-08-04 20:51:37,239 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 138 RemoteIp: 192.168.1.255 LocalPort: 138 LocalIp: 192.168.1.2
2012-08-04 20:56:50,260 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: In Proto: UDP RemotePort: 138 RemoteIp: 192.168.1.3 LocalPort: 138 LocalIp: 192.168.1.255
2012-08-04 20:59:21,743 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 138 RemoteIp: 192.168.1.255 LocalPort: 138 LocalIp: 192.168.1.2
2012-08-04 21:06:37,240 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 138 RemoteIp: 192.168.1.255 LocalPort: 138 LocalIp: 192.168.1.2
2012-08-04 21:08:52,449 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: In Proto: UDP RemotePort: 138 RemoteIp: 192.168.1.3 LocalPort: 138 LocalIp: 192.168.1.255
2012-08-04 21:11:21,541 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 138 RemoteIp: 192.168.1.255 LocalPort: 138 LocalIp: 192.168.1.2
2012-08-04 21:20:49,497 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: In Proto: UDP RemotePort: 138 RemoteIp: 192.168.1.3 LocalPort: 138 LocalIp: 192.168.1.255
2012-08-04 21:21:37,240 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 138 RemoteIp: 192.168.1.255 LocalPort: 138 LocalIp: 192.168.1.2
2012-08-04 21:23:22,359 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 138 RemoteIp: 192.168.1.255 LocalPort: 138 LocalIp: 192.168.1.2
2012-08-04 21:27:51,705 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 21:27:52,455 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 21:27:53,205 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 21:32:49,356 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: In Proto: UDP RemotePort: 138 RemoteIp: 192.168.1.3 LocalPort: 138 LocalIp: 192.168.1.255
2012-08-04 21:35:20,921 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 138 RemoteIp: 192.168.1.255 LocalPort: 138 LocalIp: 192.168.1.2
2012-08-04 21:36:37,241 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 138 RemoteIp: 192.168.1.255 LocalPort: 138 LocalIp: 192.168.1.2
2012-08-04 21:37:03,397 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 21:37:04,146 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 21:37:04,896 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 21:40:25,652 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1004) User: "NETWORK SERVICE" Direction: In Proto: UDP RemotePort: 61803 RemoteIp: fe80::04a5:814b:27ca:0d66 LocalPort: 5355 LocalIp: ff02::1:3
2012-08-04 21:40:25,652 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1004) User: "NETWORK SERVICE" Direction: In Proto: UDP RemotePort: 57897 RemoteIp: 192.168.1.3 LocalPort: 5355 LocalIp: 224.0.0.252
2012-08-04 21:40:25,952 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: In Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.3 LocalPort: 137 LocalIp: 192.168.1.255
2012-08-04 21:41:00,991 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 21:41:01,739 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 21:41:02,489 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 21:41:05,782 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 21:41:06,532 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 21:41:07,282 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 21:44:47,154 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1004) User: "NETWORK SERVICE" Direction: In Proto: UDP RemotePort: 51405 RemoteIp: fe80::04a5:814b:27ca:0d66 LocalPort: 5355 LocalIp: ff02::1:3
2012-08-04 21:44:47,156 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1004) User: "NETWORK SERVICE" Direction: In Proto: UDP RemotePort: 64716 RemoteIp: 192.168.1.3 LocalPort: 5355 LocalIp: 224.0.0.252
2012-08-04 21:44:47,445 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: In Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.3 LocalPort: 137 LocalIp: 192.168.1.255
2012-08-04 21:44:48,232 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: In Proto: UDP RemotePort: 138 RemoteIp: 192.168.1.3 LocalPort: 138 LocalIp: 192.168.1.255
2012-08-04 21:47:22,378 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 138 RemoteIp: 192.168.1.255 LocalPort: 138 LocalIp: 192.168.1.2
2012-08-04 21:51:37,241 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 138 RemoteIp: 192.168.1.255 LocalPort: 138 LocalIp: 192.168.1.2
2012-08-04 21:56:49,576 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: In Proto: UDP RemotePort: 138 RemoteIp: 192.168.1.3 LocalPort: 138 LocalIp: 192.168.1.255
2012-08-04 21:57:13,102 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1004) User: "NETWORK SERVICE" Direction: In Proto: UDP RemotePort: 53125 RemoteIp: fe80::04a5:814b:27ca:0d66 LocalPort: 5355 LocalIp: ff02::1:3
2012-08-04 21:57:13,102 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1004) User: "NETWORK SERVICE" Direction: In Proto: UDP RemotePort: 49753 RemoteIp: 192.168.1.3 LocalPort: 5355 LocalIp: 224.0.0.252
2012-08-04 21:57:13,402 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: In Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.3 LocalPort: 137 LocalIp: 192.168.1.255
2012-08-04 21:59:22,113 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 138 RemoteIp: 192.168.1.255 LocalPort: 138 LocalIp: 192.168.1.2
2012-08-04 22:06:37,242 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 138 RemoteIp: 192.168.1.255 LocalPort: 138 LocalIp: 192.168.1.2
2012-08-04 22:08:22,651 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 22:08:23,400 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 22:08:24,150 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.255 LocalPort: 137 LocalIp: 192.168.1.2
2012-08-04 22:08:48,786 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: In Proto: UDP RemotePort: 138 RemoteIp: 192.168.1.3 LocalPort: 138 LocalIp: 192.168.1.255
2012-08-04 22:11:17,378 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1004) User: "NETWORK SERVICE" Direction: In Proto: UDP RemotePort: 59325 RemoteIp: fe80::04a5:814b:27ca:0d66 LocalPort: 5355 LocalIp: ff02::1:3
2012-08-04 22:11:17,378 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1004) User: "NETWORK SERVICE" Direction: In Proto: UDP RemotePort: 50948 RemoteIp: 192.168.1.3 LocalPort: 5355 LocalIp: 224.0.0.252
2012-08-04 22:11:17,678 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: In Proto: UDP RemotePort: 137 RemoteIp: 192.168.1.3 LocalPort: 137 LocalIp: 192.168.1.255
2012-08-04 22:11:23,150 GEORGE-PC MSG:1:1 Action: Block (10) App: "SYSTEM" (PID: 4) User: "" Direction: Out Proto: UDP RemotePort: 138 RemoteIp: 192.168.1.255 LocalPort: 138 LocalIp: 192.168.1.2
2012-08-04 22:11:24,060 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1004) User: "NETWORK SERVICE" Direction: In Proto: UDP RemotePort: 64558 RemoteIp: fe80::04a5:814b:27ca:0d66 LocalPort: 5355 LocalIp: ff02::1:3
2012-08-04 22:11:24,060 GEORGE-PC MSG:1:1 Action: Block (10) App: "C:\WINDOWS\SYSTEM32\SVCHOST.EXE" (PID: 1004) User: "NETWORK SERVICE" Direction: In Proto: UDP RemotePort: 51722 RemoteIp: 192.168.1.3 LocalPort: 5355 LocalIp: 224.0.0.252
My System SpecsSystem Spec
04 Aug 2012   #7

64bit windows 7 ultimate
 
 

Code:
[AVG.LOG.SM] ALL 2012-08-04 20:19:00,767 GEORGE-PC PID:2040 THID:2044 ID:AVG.LOG.SM:0.0.0.0 MSG:c00000000001937185936bAEZOzV7wUDMtX9HGj5Jax2nW615Jfz98VsU8geLrPIe005rsggTACWKvr84Q/0y9yWCF+e4KoCqicYwa2HLharGZJWOkkRG8xeQcLmzg4cGpcXoslx5GGSq6pSm7Ez4TlduxWzCKc9596B4/G/j7WAyYxRmxvezAxSWBWBqOwnBgYaQYyvGy2te3B6FZFvEdQ6l6XuA43BYiJG/4017vq8ivAEEY/VEWnbrsCCovmAtLuEAwwTz2+ohc205wPdPM0pr+E3VjcKZp07rYS5CibVK0tz6BIfRYJLTApJKMBuHhCRmwKEVtyz8DGKPPxqW6yxVtVjFYJ7qWWEONzoNOn4M=
[AVG.IDP] INFO 2012-08-04 20:19:05,916 GEORGE-PC PID:2040 THID:3036 ID:{8993A2F2-FEB1-45e0-9EFC-A60288BB468F}:370.2195.8462b70.0 MSG:*
[AVG.IDP] INFO 2012-08-04 20:19:06,126 GEORGE-PC PID:2040 THID:1708 ID:{7C053ED6-1C58-4d89-88BF-6D43362C2C68}:119.2195.8462b70.0 MSG:aA8raG73tnfmzCzKHrWC1eQ==
[AVG.IDP] INFO 2012-08-04 20:19:06,126 GEORGE-PC PID:2040 THID:1708 ID:{E72BCD66-0E85-48be-BCC0-F71443D388E2}:80.2195.8462b70.0 MSG:aAQ5rh0BgaPYG4AxfDoC/nA0NS5fm+woTxa5Zx0YE7PyZW/ZQ9eTruDZd+BrWjTU1VYZNHaBiiS3Tzb18
[AVG.IDP] INFO 2012-08-04 20:19:06,126 GEORGE-PC PID:2040 THID:3048 ID:{15E498A9-5721-42e6-8B5E-852670142582}:3183.2195.8462b70.0 MSG:*
[AVG.IDP] INFO 2012-08-04 20:19:06,126 GEORGE-PC PID:2040 THID:3052 ID:{9A7A7C21-0B82-4704-80BD-0DC3A6F36F6D}:68.2195.8462b70.0 MSG:*
[AVG.IDP] INFO 2012-08-04 20:19:06,126 GEORGE-PC PID:2040 THID:3032 ID:{7C053ED6-1C58-4d89-88BF-6D43362C2C68}:73.2195.8462b70.0 MSG:aDMnXyfcWhhpVaQCoOx6PCPKmo+hktgLMv2lRMkI7AOtm
[AVG.IDP] INFO 2012-08-04 20:19:06,126 GEORGE-PC PID:2040 THID:3032 ID:{7C053ED6-1C58-4d89-88BF-6D43362C2C68}:119.2195.8462b70.0 MSG:aBwx2NG2tC5lF7H8bVQK96/Ion4WmC0dC2r/JiNZs3oo7
[AVG.IDP] INFO 2012-08-04 20:19:06,126 GEORGE-PC PID:2040 THID:1708 ID:{7C053ED6-1C58-4d89-88BF-6D43362C2C68}:119.2195.8462b70.0 MSG:aCyImk5Zn/Tj8hKmtrDM3lcTuILmm0YB9SXkh540=
[AVG.IDP] INFO 2012-08-04 20:19:06,126 GEORGE-PC PID:2040 THID:1708 ID:{E72BCD66-0E85-48be-BCC0-F71443D388E2}:80.2195.8462b70.0 MSG:aDkxXrTpjspJB6f+/88V6NVmf98sT9O8TRdzVxnnig7DWKb2vDyOtj1bGVglmcBMfEMFCkPqB88w3720w
[AVG.IDP] INFO 2012-08-04 20:19:06,126 GEORGE-PC PID:2040 THID:3056 ID:{E2053475-D91A-433c-B444-2519546F00CA}:111.2195.8462b70.0 MSG:*
[AVG.IDP] INFO 2012-08-04 20:19:06,126 GEORGE-PC PID:2040 THID:1708 ID:{7C053ED6-1C58-4d89-88BF-6D43362C2C68}:119.2195.8462b70.0 MSG:aBtfKZVsoBi7YJyGTDN2HLm6U5Qn1eg==
[AVG.IDP] INFO 2012-08-04 20:19:06,126 GEORGE-PC PID:2040 THID:1708 ID:{E72BCD66-0E85-48be-BCC0-F71443D388E2}:80.2195.8462b70.0 MSG:aCYTZzFHWri46mGg1PhITIXoBOW0QD3thpWtBw2QspVhxFQUuhqWSsgYYiKti/Aq8MDQZiCOocL5Hjxjo
[AVG.IDP] INFO 2012-08-04 20:19:06,126 GEORGE-PC PID:2040 THID:3064 ID:{9B00229A-446F-4afe-8F36-9B4F0E22BB26}:291.2195.8462b70.0 MSG:*
[AVG.IDP] INFO 2012-08-04 20:19:06,186 GEORGE-PC PID:2040 THID:1708 ID:{7C053ED6-1C58-4d89-88BF-6D43362C2C68}:119.2195.8462b70.0 MSG:aCYTZ21LLxjl522RgY3JRfixYZy9xTjJElUFhoA==
[AVG.IDP] INFO 2012-08-04 20:19:06,186 GEORGE-PC PID:2040 THID:1708 ID:{E72BCD66-0E85-48be-BCC0-F71443D388E2}:80.2195.8462b70.0 MSG:aBwx2I26wY48asWhdAFbAuq5vzNDvbwFy7L36oo07w8gsDoaDC4MY3/Fh9QtUEVMmSGS2+md+OOsJ1cuC
[AVG.IDP] INFO 2012-08-04 20:19:06,186 GEORGE-PC PID:2040 THID:1708 ID:{7C053ED6-1C58-4d89-88BF-6D43362C2C68}:119.2195.8462b70.0 MSG:aA8raG73tne20Jz+QtmKiLNY=
[AVG.IDP] INFO 2012-08-04 20:19:06,186 GEORGE-PC PID:2040 THID:1708 ID:{E72BCD66-0E85-48be-BCC0-F71443D388E2}:80.2195.8462b70.0 MSG:aBORTJMtk2oifuiD0D3iBRvmrj4tRjxKwhAJQ94aqIJ+8NVQV2ggOHjHLgXi9suXcgizWLkBT28VSB5B2
[AVG.IDP] INFO 2012-08-04 20:19:06,186 GEORGE-PC PID:2040 THID:2056 ID:{F008B382-B9A7-47ac-8394-49D6A8023009}:3072.2195.8462b70.0 MSG:*
[AVG.IDP] INFO 2012-08-04 20:19:06,186 GEORGE-PC PID:2040 THID:1708 ID:{7C053ED6-1C58-4d89-88BF-6D43362C2C68}:119.2195.8462b70.0 MSG:aBUSkeamTf3Q0zAqp3g0reToqEs0=
[AVG.IDP] INFO 2012-08-04 20:19:06,186 GEORGE-PC PID:2040 THID:1708 ID:{E72BCD66-0E85-48be-BCC0-F71443D388E2}:80.2195.8462b70.0 MSG:aA8raDL7w9fznWibO5zX3bsHsKsnXgOZTCMOmefYdaTwcQuBKkxahemu5mxnF9xuJcl5EEBQeuwGIa0mm
[AVG.IDP] INFO 2012-08-04 20:19:06,186 GEORGE-PC PID:2040 THID:1708 ID:{E72BCD66-0E85-48be-BCC0-F71443D388E2}:80.2195.8462b70.0 MSG:aAuF9wtoOjeEiq8p6mo2o1LNnBXkgrnh5po0HX/s0vmwdstE0q49kxklEIEClRnGLHtQXRMlCpJFx4bW3
[AVG.IDP] INFO 2012-08-04 20:19:06,186 GEORGE-PC PID:2040 THID:2052 ID:{74B5C779-FADB-4e26-AF6C-10D0DEFD5507}:126.2195.8462b70.0 MSG:*
[AVG.IDP] INFO 2012-08-04 20:19:06,186 GEORGE-PC PID:2040 THID:1708 ID:{E72BCD66-0E85-48be-BCC0-F71443D388E2}:80.2195.8462b70.0 MSG:aAuF9wtoOjeEiq8p6mo2o1LNnA3kgrnh5po0HX/s0vmwdstE0q482xklEIEClRnGLHtQXRMlCpJFx4bW3
[AVG.IDP] INFO 2012-08-04 20:19:06,186 GEORGE-PC PID:2040 THID:1708 ID:{69AAF9F3-74D2-4896-846D-FECE09BA3BB4}:101.2195.8462b70.0 MSG:*
[AVG.IDP] INFO 2012-08-04 20:19:11,187 GEORGE-PC PID:2040 THID:3048 ID:{15E498A9-5721-42e6-8B5E-852670142582}:3216.2195.8462b70.0 MSG:*
[AVG.IDP] INFO 2012-08-04 20:19:13,090 GEORGE-PC PID:2040 THID:3048 ID:{15E498A9-5721-42e6-8B5E-852670142582}:3237.2195.8462b70.0 MSG:*
[AVG.IDP] INFO 2012-08-04 20:19:13,356 GEORGE-PC PID:2040 THID:3048 ID:{15E498A9-5721-42e6-8B5E-852670142582}:3266.2195.8462b70.0 MSG:*
[AVG.IDP] INFO 2012-08-04 20:19:17,053 GEORGE-PC PID:2040 THID:2052 ID:{F008B382-B9A7-47ac-8394-49D6A8023009}:2170.2195.8462b70.0 MSG:*
[AVG.IDP] INFO 2012-08-04 20:19:17,084 GEORGE-PC PID:2040 THID:896 ID:{767763C4-9DCA-435f-99B3-AF8E04521B40}:400.2195.8462b70.0 MSG:aA8raG73tnZeeBTOOuGuiMIWvN6e/8O5EK+2AWOs=
[AVG.IDP] INFO 2012-08-04 20:19:17,193 GEORGE-PC PID:2040 THID:1708 ID:{767763C4-9DCA-435f-99B3-AF8E04521B40}:174.2195.8462b70.0 MSG:*
[AVG.IDP] INFO 2012-08-04 20:19:17,193 GEORGE-PC PID:2040 THID:1708 ID:{767763C4-9DCA-435f-99B3-AF8E04521B40}:191.2195.8462b70.0 MSG:aCIZsFf7cdebXIAXfh25fLLGno1s=
[AVG.IDP] INFO 2012-08-04 20:19:17,193 GEORGE-PC PID:2040 THID:1708 ID:{767763C4-9DCA-435f-99B3-AF8E04521B40}:198.2195.8462b70.0 MSG:aD/kLyVqmkH8nqLqaFuCs8cvLqy8T4H22PfrKtSr8
[AVG.IDP] INFO 2012-08-04 20:19:17,193 GEORGE-PC PID:2040 THID:1708 ID:{767763C4-9DCA-435f-99B3-AF8E04521B40}:205.2195.8462b70.0 MSG:aD/kLyVqmkH8nqLqaFvyi99rLrD4K4EeIKuvbtxC64R96f2PL
[AVG.IDP] INFO 2012-08-04 20:19:17,193 GEORGE-PC PID:2040 THID:1708 ID:{767763C4-9DCA-435f-99B3-AF8E04521B40}:213.2195.8462b70.0 MSG:aAuF9wtoOjeEiq8p6mo2o1LQxD3k=
[AVG.IDP] INFO 2012-08-04 20:19:32,327 GEORGE-PC PID:2040 THID:3052 ID:{E8C4237C-9AE1-44a6-B5D7-DF646A5BC553}:219.2195.8462b70.0 MSG:aDMnXyfcWhhRsKjOuNwqnNcGWp/VzlQbn5xQEA3xtUq14MxbBmLNdp9eoz339yl7xI793gAh/Fgbnr2dpjL4ta7SP
[AVG.IDP] INFO 2012-08-04 20:20:50,469 GEORGE-PC PID:2040 THID:896 ID:{21FCA021-A4C8-4400-9AD9-813759350FB5}:25.2195.8462b70.0 MSG:*
[AVG.IDP] INFO 2012-08-04 20:20:50,516 GEORGE-PC PID:2040 THID:896 ID:{21FCA021-A4C8-4400-9AD9-813759350FB5}:25.2195.8462b70.0 MSG:*
[AVG.IDP] INFO 2012-08-04 20:20:53,012 GEORGE-PC PID:2040 THID:896 ID:{21FCA021-A4C8-4400-9AD9-813759350FB5}:25.2195.8462b70.0 MSG:*
[AVG.IDP] INFO 2012-08-04 20:20:53,761 GEORGE-PC PID:2040 THID:896 ID:{21FCA021-A4C8-4400-9AD9-813759350FB5}:25.2195.8462b70.0 MSG:*
[AVG.IDP] ERROR 2012-08-04 20:28:59,747 GEORGE-PC PID:2040 THID:3012 ID:5EA975A9-A100-4656-A4A2-2483438DCD08:294.2195.8462b70.0 MSG:aCyImhZBniD7Nqo6N5EY5kZqqVeizwNYu
[AVG.LOG.SM] ALL 2012-08-04 20:19:00,767 GEORGE-PC PID:2040 THID:2044 ID:AVG.LOG.SM:0.0.0.0 MSG:c00000000001937185936bAEZOzV7wUDMtX9HGj5Jax2nW615Jfz98VsU8geLrPIe005rsggTACWKvr84Q/0y9yWCF+e4KoCqicYwa2HLharGZJWOkkRG8xeQcLmzg4cGpcXoslx5GGSq6pSm7Ez4TlduxWzCKc9596B4/G/j7WAyYxRmxvezAxSWBWBqOwnBgYaQYyvGy2te3B6FZFvEdQ6l6XuA43BYiJG/4017vq8ivAEEY/VEWnbrsCCovmAtLuEAwwTz2+ohc205wPdPM0pr+E3VjcKZp07rYS5CibVK0tz6BIfRYJLTApJKMBuHhCRmwKEVtyz8DGKPPxqW6yxVtVjFYJ7qWWEONzoNOn4M=
[AVG.IDP] INFO 2012-08-04 20:34:09,023 GEORGE-PC PID:2040 THID:3032 ID:{9AD70DFC-315C-4712-895F-AAF7B49C4D42}:1794.2195.8462b70.0 MSG:aCyImhJV6lSi01bL47kZxwJKpXff5gcZafkN+pZpqVSGds3LPVKhMEQ==
[AVG.IDP] INFO 2012-08-04 20:49:09,439 GEORGE-PC PID:2040 THID:3032 ID:{9AD70DFC-315C-4712-895F-AAF7B49C4D42}:1794.2195.8462b70.0 MSG:aAQ5rh0BgaPYG4AxfDoC/nAUOQJfm+woExrMxs0wOpPyTW/ZO9uDnuA==
[AVG.IDP] INFO 2012-08-04 21:04:09,872 GEORGE-PC PID:2040 THID:3032 ID:{9AD70DFC-315C-4712-895F-AAF7B49C4D42}:1794.2195.8462b70.0 MSG:aDMnX3vQL7gwKNBfubkryWabi+70t0kTrinYKbBNmVal7MhfbnqkPtQ==
[AVG.IDP] INFO 2012-08-04 21:19:10,571 GEORGE-PC PID:2040 THID:3032 ID:{9AD70DFC-315C-4712-895F-AAF7B49C4D42}:1794.2195.8462b70.0 MSG:aDkxXrTpjspJB6f+/88V6NVGdpssT9O8ERsG9snPoy7DcKb2xCyCtjw==
[AVG.IDP] INFO 2012-08-04 21:20:00,170 GEORGE-PC PID:2040 THID:3020 ID:{EBF383B8-4513-4759-BADE-B863A7BD170B}:200.2195.8462b70.0 MSG:aAQ5rkkBgaPYG4AxfDoC/nA0NSYD66x1notc+pA==
[AVG.IDP] INFO 2012-08-04 21:34:11,196 GEORGE-PC PID:2040 THID:3032 ID:{9AD70DFC-315C-4712-895F-AAF7B49C4D42}:1794.2195.8462b70.0 MSG:aCyImhJV6lSi01bL47kZxwJKoB/f5gcZafkN+pZpqVSGds3LPVKJKEQ==
[AVG.IDP] INFO 2012-08-04 21:36:11,296 GEORGE-PC PID:2040 THID:896 ID:{21FCA021-A4C8-4400-9AD9-813759350FB5}:25.2195.8462b70.0 MSG:*
[AVG.IDP] INFO 2012-08-04 21:40:54,205 GEORGE-PC PID:2040 THID:2856 ID:{A312CB7C-1B34-42ec-9357-D8D11E1963D8}:656.2195.8462b70.0 MSG:aCrCXUf5H5j741v7tHb99f8Au9cZ7RW2EsVN2zdYoAzJsRNzjVhDcU5ysYFO/7imq4N5ushmUuNFXLJLxi7Qu9tSUly6KMp4yjcaT8AGudw+/UoHdZ0Rg6r5Ef8LeXH9TAkjHgl9y3zX83wI2
[AVG.IDP] INFO 2012-08-04 21:49:15,840 GEORGE-PC PID:2040 THID:3032 ID:{9AD70DFC-315C-4712-895F-AAF7B49C4D42}:1794.2195.8462b70.0 MSG:aCrCXRv1ajjn4utGUY8sCGKtBl7gEKwuDrFcJoatBY0MfOrjjIH2gUw==
[AVG.IDP] INFO 2012-08-04 22:04:16,284 GEORGE-PC PID:2040 THID:3032 ID:{9AD70DFC-315C-4712-895F-AAF7B49C4D42}:1794.2195.8462b70.0 MSG:aCYTZzFHWri46mGg1PhITIXICOm0QD3t2pnYpt24m7Vh7FQUwhayXsg==
My System SpecsSystem Spec
04 Aug 2012   #8

Microsoft Community Contributor Award Recipient

Windows 8.1 Pro x64
 
 

What makes you think you're being DDOSed? Firstly, if you were being DDOSed, I highly doubt you'd have the bandwidth to connect to this site and secondly, the IPs in that list are either for your local network, or 224.0.0.22 which is Internet Group Management Protocol (it's perfectly normal).
My System SpecsSystem Spec
04 Aug 2012   #9

64bit windows 7 ultimate
 
 

the thing is Before it actully showed difrent ip adresses instead of my local network ips and all of a sudden it changed into my own and the traffic logs are still going.

and why does it say on AVG that its being blocked ? my logs sretch alot longer then the one i posted with difrent ips from china/russia/brazil/etc and thats why im worried something might be in my bios maybe i just dont know what to think of anymore
My System SpecsSystem Spec
04 Aug 2012   #10

Microsoft Community Contributor Award Recipient

Windows 8.1 Pro x64
 
 

Hi,

Can you run OTL for me please? I'm not allowed to fix anything, but I just want to see what's running on your computer

OTL

  1. Download OTL to your Desktop
  2. Double click on the OTL icon to run it. Make sure all other windows are closed and to let it run uninterrupted.
  3. Click the Quick Scan button. Do not change any settings unless otherwise told to do so. The scan won't take long.

When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt. These are saved in the same location as OTL.
Please copy (Edit->Select All, Edit->Copy) the contents of these files, one at a time, and paste them into your reply.

Tom
My System SpecsSystem Spec
Reply

 DDOS Attacks UDP files comeing in please take a look at this Combofix




Thread Tools



Similar help and support threads for2: DDOS Attacks UDP files comeing in please take a look at this Combofix
Thread Forum
Help stopping UDP/Ddos attacks System Security
Solved Multiple DDoS attacks prevention? System Security
DDoS Attacks: Size doesn’t matter Security News
Binary Planting Attacks Extend to EXE Files News
Unfashionable DDoS attacks still menace websites. Security News
DDoS Attacks Are Back. Security News
Malware Responsible for DDoS Attacks Deletes Data on Ho Chillout Room

Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

© Designer Media Ltd

All times are GMT -5. The time now is 04:17 AM.
Twitter Facebook Google+



Windows 7 Forums

Seven Forums Android App Seven Forums IOS App
  

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33