Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Happili Redirect


  • Please log in to reply
10 replies to this topic

#1 heethuis

heethuis

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:03:18 PM

Posted 15 April 2012 - 04:23 PM

looking for someone to guide me through getting rid of the happili redirect? anyone available?

BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,221 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:03:18 PM

Posted 15 April 2012 - 07:18 PM

Welcome heethuis
Are you on a router? Are other machines on it,if so are they redirecting?

Do you use Firefox?

Lets run a few tools

Please download MiniToolBox, save it to your desktop and run it.

Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.

Note: When using "Reset FF Proxy Settings" option Firefox should be closed.

>>>>

Please download TDSSKiller.zip and and extract it.
  • Run TDSSKiller.exe.
  • Click on Change Parameters
  • Put a check in the box of Detect TDLFS file system
  • Click Start scan.
  • When it is finished the utility outputs a list of detected objects with description.
    The utility automatically selects an action (Cure or Delete) for malicious objects.
    The utility prompts the user to select an action to apply to suspicious objects (Skip, by default). Let the options as it is and click Continue
  • Let reboot if needed and tell me if the tool needed a reboot.
  • Click on Report and post the contents of the text file that will open.

    Note: By default, the utility outputs the log into system disk (it is usually the disk with installed operating system, C:\) root folder. The Log have a name like: TDSSKiller.Version_Date_Time_log.txt.



Next run MBAM (MalwareBytes):

Please download Malwarebytes Anti-Malware Posted Image and save it to your desktop.
  • Important!! When you save the mbam-setup file, rename it to something random (such as 123abc.exe) before beginning the download.
Malwarebytes may "make changes to your registry" as part of its disinfection routine. If using other security programs that detect registry changes (ie Spybot's Teatimer), they may interfere or alert you. Temporarily disable such programs or permit them to allow the changes.

  • Make sure you are connected to the Internet and double-click on the renamed file to install the application.
  • When the installation begins, follow the prompts and do not make any changes to default settings.
  • Malwarebytes will automatically start and you will be asked to update the program before performing a scan.
  • If an update is found, the program will automatically update itself. Press the OK button and continue.
  • If you cannot update Malwarebytes or use the Internet to download any files to the infected computer, manually update the database by following the instructions in FAQ Section A: 4. Issues.
  • Under the Scanner tab, make sure the "Perform Quick Scan" option is selected.
  • Click on the Scan button.
  • When finished, a message box will say "The scan completed successfully. Click 'Show Results' to display all objects found".
  • Click OK to close the message box, then click the Show Results button to see a list of any malware that was found.
  • Make sure that everything is checked and then click Remove Selected.
  • When removal is completed, a log report will open in Notepad.
  • The log is automatically saved and can be viewed by clicking the Logs tab.
  • Copy and paste the contents of that report in your next reply. Be sure to post the complete log to include the top portion which shows the database version and your operating system.
  • Exit Malwarebytes when done.
Note: If Malwarebytes encounters a file that is difficult to remove, you will be asked to reboot your computer so it can proceed with the disinfection process. If asked to restart the computer, please do so immediately. Failure to reboot normally will prevent Malwarebytes from removing all the malware.

-- Some types of malware will target Malwarebytes and other security tools to keep them from running properly. If that's the case, go to Start > All Programs > Malwarebytes Anti-Malware folder > Tools > click on Malwarebytes Chameleon and follow the onscreen instructions. The Chameleon folder can be accessed by opening the program folder for Malwarebytes Anti-Malware (normally C:\Program Files\Malwarebytes' Anti-Malware or C:\Program Files (x86)\Malwarebytes' Anti-Malware).
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 heethuis

heethuis
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:03:18 PM

Posted 15 April 2012 - 07:58 PM

MiniToolBox by Farbar Version: 18-01-2012
Ran by heethuis (administrator) on 15-04-2012 at 20:56:22
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================



========================= IP Configuration: ================================

Dell Wireless 1520 Wireless-N WLAN Mini-Card = Wireless Network Connection (Connected)
Realtek PCIe FE Family Controller = Local Area Connection (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : heethuis-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Broadcast
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Wireless LAN adapter Wireless Network Connection 2:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
Physical Address. . . . . . . . . : F0-7B-CB-20-C1-A1
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Dell Wireless 1520 Wireless-N WLAN Mini-Card
Physical Address. . . . . . . . . : F0-7B-CB-20-C1-A1
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::ec63:88d6:3677:fa78%11(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.3(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Sunday, April 15, 2012 4:53:46 PM
Lease Expires . . . . . . . . . . : Monday, April 16, 2012 8:53:42 PM
Default Gateway . . . . . . . . . : 192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 250641355
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-13-44-87-97-B8-AC-6F-5C-F9-D0
DNS Servers . . . . . . . . . . . : 192.168.1.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Realtek PCIe FE Family Controller
Physical Address. . . . . . . . . : B8-AC-6F-5C-F9-D0
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{2E8FBD09-1C91-4DFC-B967-8DE885A7B7D5}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Reusable ISATAP Interface {E68F2BC8-FE76-47C1-B0B3-30F6EDA382F7}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{20745E4E-6DB7-4285-9EBB-4654D1A23412}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:3059:2c36:b832:5b5c(Preferred)
Link-local IPv6 Address . . . . . : fe80::3059:2c36:b832:5b5c%12(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter isatap.{9EB7F377-8FA7-4FED-92BB-D3AFF205DB06}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #4
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: UnKnown
Address: 192.168.1.1

Name: google.com
Addresses: 74.125.225.134
74.125.225.133
74.125.225.130
74.125.225.128
74.125.225.132
74.125.225.129
74.125.225.135
74.125.225.142
74.125.225.131
74.125.225.137
74.125.225.136


Pinging google.com [74.125.225.32] with 32 bytes of data:
Reply from 74.125.225.32: bytes=32 time=45ms TTL=54
Reply from 74.125.225.32: bytes=32 time=45ms TTL=54

Ping statistics for 74.125.225.32:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 45ms, Maximum = 45ms, Average = 45ms
Server: UnKnown
Address: 192.168.1.1

Name: yahoo.com
Addresses: 72.30.38.140
209.191.122.70
98.139.183.24


Pinging yahoo.com [209.191.122.70] with 32 bytes of data:
Reply from 209.191.122.70: bytes=32 time=59ms TTL=50
Reply from 209.191.122.70: bytes=32 time=61ms TTL=50

Ping statistics for 209.191.122.70:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 59ms, Maximum = 61ms, Average = 60ms
Server: UnKnown
Address: 192.168.1.1

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time=5ms TTL=128
Reply from 127.0.0.1: bytes=32 time=2ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 2ms, Maximum = 5ms, Average = 3ms
===========================================================================
Interface List
13...f0 7b cb 20 c1 a1 ......Microsoft Virtual WiFi Miniport Adapter
11...f0 7b cb 20 c1 a1 ......Dell Wireless 1520 Wireless-N WLAN Mini-Card
10...b8 ac 6f 5c f9 d0 ......Realtek PCIe FE Family Controller
1...........................Software Loopback Interface 1
16...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
17...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
18...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
12...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
31...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #4
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.3 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.3 281
192.168.1.3 255.255.255.255 On-link 192.168.1.3 281
192.168.1.255 255.255.255.255 On-link 192.168.1.3 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.3 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.3 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
12 58 ::/0 On-link
1 306 ::1/128 On-link
12 58 2001::/32 On-link
12 306 2001:0:4137:9e76:3059:2c36:b832:5b5c/128
On-link
11 281 fe80::/64 On-link
12 306 fe80::/64 On-link
12 306 fe80::3059:2c36:b832:5b5c/128
On-link
11 281 fe80::ec63:88d6:3677:fa78/128
On-link
1 306 ff00::/8 On-link
12 306 ff00::/8 On-link
11 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (04/15/2012 08:53:48 PM) (Source: Windows Backup) (User: )
Description: The backup did not complete because of an error writing to the backup location F:\. The error is: The backup location cannot be found or is not valid. Review your backup settings and check the backup location. (0x81000006).

Error: (04/15/2012 04:48:00 PM) (Source: MsiInstaller) (User: heethuis)heethuis
Description: Product: Support.com Toolbar -- Error 1316.A network error occurred while attempting to read from the file C:\Windows\Installer\Ask Toolbar.msi

Error: (04/15/2012 04:47:33 PM) (Source: MsiInstaller) (User: heethuis)heethuis
Description: Product: Support.com Toolbar -- Error 1316.A network error occurred while attempting to read from the file C:\Windows\Installer\Ask Toolbar.msi

Error: (04/15/2012 04:22:38 PM) (Source: MsiInstaller) (User: heethuis)heethuis
Description: Product: Support.com Toolbar -- Error 1730.You must be an Administrator to remove this application. To remove this application, you can log on as an administrator, or contact your technical support group for assistance.

Error: (04/15/2012 04:22:06 PM) (Source: MsiInstaller) (User: heethuis)heethuis
Description: Product: Support.com Toolbar -- Error 1316.A network error occurred while attempting to read from the file C:\Windows\Installer\Ask Toolbar.msi

Error: (04/15/2012 04:21:35 PM) (Source: MsiInstaller) (User: heethuis)heethuis
Description: Product: Support.com Toolbar -- Error 1316.A network error occurred while attempting to read from the file C:\Windows\Installer\Ask Toolbar.msi

Error: (04/15/2012 04:13:43 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.
.

Error: (04/15/2012 00:47:10 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 37367778

Error: (04/15/2012 00:47:10 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 37367778

Error: (04/15/2012 00:47:10 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second


System errors:
=============
Error: (04/15/2012 05:07:58 PM) (Source: Disk) (User: )
Description: The device, \Device\Harddisk1\DR1, has a bad block.

Error: (04/15/2012 05:07:58 PM) (Source: Disk) (User: )
Description: The device, \Device\Harddisk1\DR1, has a bad block.

Error: (04/15/2012 05:07:58 PM) (Source: Disk) (User: )
Description: The device, \Device\Harddisk1\DR1, has a bad block.

Error: (04/15/2012 05:07:58 PM) (Source: Disk) (User: )
Description: The device, \Device\Harddisk1\DR1, has a bad block.

Error: (04/15/2012 05:07:58 PM) (Source: Disk) (User: )
Description: The device, \Device\Harddisk1\DR1, has a bad block.

Error: (04/15/2012 04:54:54 PM) (Source: DCOM) (User: SYSTEM)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

Error: (04/15/2012 04:54:15 PM) (Source: Microsoft Antimalware) (User: )
Description: %%860 Real-Time Protection feature has encountered an error and failed.

Feature: %%835

Error Code: 0x80004005

Error description: Unspecified error

Reason: %%842

Error: (04/15/2012 04:25:36 PM) (Source: DCOM) (User: SYSTEM)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

Error: (04/15/2012 04:25:00 PM) (Source: Microsoft Antimalware) (User: )
Description: %%860 Real-Time Protection feature has encountered an error and failed.

Feature: %%835

Error Code: 0x80004005

Error description: Unspecified error

Reason: %%842

Error: (04/15/2012 02:15:21 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the CISVC service.


Microsoft Office Sessions:
=========================

=========================== Installed Programs ============================

Update for Microsoft Office 2007 (KB2508958)
Adobe AIR (Version: 2.7.1.19610)
Adobe Flash Player 10 ActiveX (Version: 10.2.159.1)
Adobe Flash Player 10 Plugin (Version: 10.2.159.1)
Adobe Reader X (10.1.2) (Version: 10.1.2)
Advanced Audio FX Engine (Version: 1.12.05)
Apple Application Support (Version: 2.1.5)
Apple Mobile Device Support (Version: 4.0.0.96)
Apple Software Update (Version: 2.1.3.127)
ARO 2011 (Version: 7.0)
ATI AVIVO64 Codecs (Version: 10.12.0.00122)
ATI Catalyst Control Center (Version: 2.009.0908.2224)
ATI Catalyst Install Manager (Version: 3.0.758.0)
AVG 2012 (Version: 12.0.2109)
Banctec Service Agreement (Version: 2.0.0)
Bonjour (Version: 3.0.0.10)
BookSmartŪ 3.2.2 3.2.2
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center Core Implementation (Version: 2009.0908.2225.38429)
Catalyst Control Center Core Implementation (Version: 2010.0122.858.16002)
Catalyst Control Center Graphics Full Existing (Version: 2009.0908.2225.38429)
Catalyst Control Center Graphics Full Existing (Version: 2010.0122.858.16002)
Catalyst Control Center Graphics Full New (Version: 2009.0908.2225.38429)
Catalyst Control Center Graphics Full New (Version: 2010.0122.858.16002)
Catalyst Control Center Graphics Light (Version: 2009.0908.2225.38429)
Catalyst Control Center Graphics Light (Version: 2010.0122.858.16002)
Catalyst Control Center Graphics Previews Common (Version: 2009.0908.2225.38429)
Catalyst Control Center Graphics Previews Common (Version: 2010.0122.858.16002)
Catalyst Control Center Graphics Previews Vista (Version: 2009.0908.2225.38429)
Catalyst Control Center Graphics Previews Vista (Version: 2010.0122.858.16002)
Catalyst Control Center InstallProxy (Version: 2009.0908.2225.38429)
Catalyst Control Center InstallProxy (Version: 2010.0122.858.16002)
Catalyst Control Center Localization All (Version: 2009.0908.2225.38429)
Catalyst Control Center Localization All (Version: 2010.0122.858.16002)
ccc-core-static (Version: 2009.0908.2225.38429)
ccc-core-static (Version: 2010.0122.858.16002)
ccc-utility64 (Version: 2009.0908.2225.38429)
ccc-utility64 (Version: 2010.0122.858.16002)
CCC Help Chinese Standard (Version: 2009.0908.2224.38429)
CCC Help Chinese Standard (Version: 2010.0122.0857.16002)
CCC Help Chinese Traditional (Version: 2009.0908.2224.38429)
CCC Help Chinese Traditional (Version: 2010.0122.0857.16002)
CCC Help Danish (Version: 2009.0908.2224.38429)
CCC Help Danish (Version: 2010.0122.0857.16002)
CCC Help Dutch (Version: 2009.0908.2224.38429)
CCC Help Dutch (Version: 2010.0122.0857.16002)
CCC Help English (Version: 2009.0908.2224.38429)
CCC Help English (Version: 2010.0122.0857.16002)
CCC Help Finnish (Version: 2009.0908.2224.38429)
CCC Help Finnish (Version: 2010.0122.0857.16002)
CCC Help French (Version: 2009.0908.2224.38429)
CCC Help French (Version: 2010.0122.0857.16002)
CCC Help German (Version: 2009.0908.2224.38429)
CCC Help German (Version: 2010.0122.0857.16002)
CCC Help Italian (Version: 2009.0908.2224.38429)
CCC Help Italian (Version: 2010.0122.0857.16002)
CCC Help Japanese (Version: 2009.0908.2224.38429)
CCC Help Japanese (Version: 2010.0122.0857.16002)
CCC Help Korean (Version: 2009.0908.2224.38429)
CCC Help Korean (Version: 2010.0122.0857.16002)
CCC Help Norwegian (Version: 2009.0908.2224.38429)
CCC Help Norwegian (Version: 2010.0122.0857.16002)
CCC Help Portuguese (Version: 2009.0908.2224.38429)
CCC Help Portuguese (Version: 2010.0122.0857.16002)
CCC Help Russian (Version: 2009.0908.2224.38429)
CCC Help Russian (Version: 2010.0122.0857.16002)
CCC Help Spanish (Version: 2009.0908.2224.38429)
CCC Help Spanish (Version: 2010.0122.0857.16002)
CCC Help Swedish (Version: 2009.0908.2224.38429)
CCC Help Swedish (Version: 2010.0122.0857.16002)
Cisco EAP-FAST Module (Version: 2.2.14)
Cisco LEAP Module (Version: 1.0.19)
Cisco PEAP Module (Version: 1.1.6)
Compatibility Pack for the 2007 Office system (Version: 12.0.6612.1000)
Complete Care Business Service Agreement (Version: 2.0.0)
Complete Care Consumer Service Agreement (Version: 2.0.0)
Consumer In-Home Service Agreement (Version: 2.0.0)
CouponBar
Cozi (Version: 1.0.4323.24051)
Dell DataSafe Online (Version: 1.2.0009)
Dell Dock (Version: 2.0)
Dell Edoc Viewer (Version: 1.0.0)
Dell Home Systems Service Agreement (Version: 2.0.0)
Dell Support Center (Version: 3.1.5907.29)
Dell Touchpad (Version: 7.102.101.303)
Dell V310-V510 Series
Dell Webcam Central (Version: 1.40.05)
Dell Wireless WLAN Card Utility (Version: 5.30.21.0)
GIMP 2.6.11 (Version: 2.6.11)
Google Update Helper (Version: 1.3.21.111)
Intel® Management Engine Components (Version: 6.0.0.1179)
Intel® Turbo Boost Technology Monitor (Version: 1.0.186.6)
Internet TV for Windows Media Center (Version: 4.2.2.0)
iTunes (Version: 10.5.0.142)
Malwarebytes Anti-Malware version 1.60.1.1000 (Version: 1.60.1.1000)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Antimalware (Version: 3.0.8402.2)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Home and Student 2007 (Version: 12.0.6612.1000)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint Viewer 2007 (English) (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Suite Activation Assistant (Version: 1.2.1)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Security Client (Version: 2.1.1116.0)
Microsoft Security Essentials (Version: 2.1.1116.0)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (Version: 8.0.51011)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
MobileMe Control Panel (Version: 3.1.5.0)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Norton Security Scan (Version: 3.6.1.11)
Picasa 3 (Version: 3.8)
PowerDVD DX (Version: 8.3.6029)
QualXServ Service Agreement (Version: 2.0.0)
Quickset64 (Version: 9.6.11)
QuickTime (Version: 7.71.80.42)
RealNetworks - Microsoft Visual C++ 2008 Runtime (Version: 9.0)
RealPlayer
Realtek High Definition Audio Driver (Version: 6.0.1.5951)
RealUpgrade 1.1 (Version: 1.1.0)
Roxio Burn (Version: 1.01)
Safari (Version: 5.34.51.22)
Skins (Version: 2009.0908.2225.38429)
SUPERAntiSpyware (Version: 5.0.1142)
Support.com Toolbar (Version: 1.14.1.0)
Support.com Toolbar Updater (Version: 1.2.0.20007)
Unity Web Player (Version: )
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2007 suites (KB2596651) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596789) 32-Bit Edition
Update for Microsoft Office Excel 2007 (KB2596596) 32-Bit Edition
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
Visual Studio 2008 x64 Redistributables (Version: 10.0.0.2)

========================= Devices: ================================


========================= Memory info: ===================================

Percentage of memory in use: 42%
Total physical RAM: 3956.52 MB
Available physical RAM: 2279.34 MB
Total Pagefile: 7911.24 MB
Available Pagefile: 5842.83 MB
Total Virtual: 4095.88 MB
Available Virtual: 3966.9 MB

========================= Partitions: =====================================

1 Drive c: (OS) (Fixed) (Total:58.59 GB) (Free:2.91 GB) NTFS
2 Drive d: () (Fixed) (Total:229.63 GB) (Free:107.64 GB) NTFS
3 Drive e: (MUPPETS) (CDROM) (Total:4.37 GB) (Free:0 GB) UDF
4 Drive f: () (Fixed) (Total:465.76 GB) (Free:94.32 GB) NTFS

========================= Users: ========================================

User accounts for \\HEETHUIS-PC

Administrator Guest heethuis


**** End of log ****

#4 heethuis

heethuis
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:03:18 PM

Posted 15 April 2012 - 07:59 PM

and thank you...

i am on a router.

i uninstalled firefox and am using ie

i also uninstalled google chrome...

did i mention i appreciate your help.

#5 heethuis

heethuis
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:03:18 PM

Posted 15 April 2012 - 08:04 PM

21:00:55.0783 5508 TDSS rootkit removing tool 2.7.28.0 Apr 10 2012 16:54:05
21:00:56.0073 5508 ============================================================
21:00:56.0073 5508 Current date / time: 2012/04/15 21:00:56.0073
21:00:56.0073 5508 SystemInfo:
21:00:56.0073 5508
21:00:56.0073 5508 OS Version: 6.1.7601 ServicePack: 1.0
21:00:56.0073 5508 Product type: Workstation
21:00:56.0073 5508 ComputerName: HEETHUIS-PC
21:00:56.0073 5508 UserName: heethuis
21:00:56.0073 5508 Windows directory: C:\Windows
21:00:56.0073 5508 System windows directory: C:\Windows
21:00:56.0073 5508 Running under WOW64
21:00:56.0073 5508 Processor architecture: Intel x64
21:00:56.0073 5508 Number of processors: 4
21:00:56.0073 5508 Page size: 0x1000
21:00:56.0073 5508 Boot type: Normal boot
21:00:56.0073 5508 ============================================================
21:00:57.0333 5508 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
21:00:57.0343 5508 Drive \Device\Harddisk1\DR2 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
21:00:57.0363 5508 \Device\Harddisk0\DR0:
21:00:57.0363 5508 MBR used
21:00:57.0363 5508 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x1388000
21:00:57.0363 5508 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x13BA800, BlocksNum 0x7530000
21:00:57.0373 5508 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x88EB000, BlocksNum 0x1CB43000
21:00:57.0373 5508 \Device\Harddisk1\DR2:
21:00:57.0383 5508 MBR used
21:00:57.0383 5508 \Device\Harddisk1\DR2\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x3A384C02
21:00:57.0463 5508 Initialize success
21:00:57.0463 5508 ============================================================
21:01:09.0849 4552 ============================================================
21:01:09.0849 4552 Scan started
21:01:09.0849 4552 Mode: Manual; TDLFS;
21:01:09.0849 4552 ============================================================
21:01:10.0925 4552 !SASCORE (7d9d615201a483d6fa99491c2e655a5a) C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
21:01:10.0925 4552 !SASCORE - ok
21:01:11.0050 4552 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
21:01:11.0066 4552 1394ohci - ok
21:01:11.0113 4552 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
21:01:11.0113 4552 ACPI - ok
21:01:11.0253 4552 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
21:01:11.0253 4552 AcpiPmi - ok
21:01:11.0378 4552 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
21:01:11.0378 4552 AdobeARMservice - ok
21:01:11.0674 4552 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
21:01:11.0674 4552 adp94xx - ok
21:01:11.0768 4552 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
21:01:11.0783 4552 adpahci - ok
21:01:11.0815 4552 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
21:01:11.0815 4552 adpu320 - ok
21:01:11.0846 4552 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
21:01:11.0861 4552 AeLookupSvc - ok
21:01:11.0924 4552 AERTFilters (3ac22a3dfa8a050e35f0e3cd99d0cdf2) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
21:01:11.0924 4552 AERTFilters - ok
21:01:12.0033 4552 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
21:01:12.0033 4552 AFD - ok
21:01:12.0173 4552 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
21:01:12.0173 4552 agp440 - ok
21:01:12.0220 4552 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
21:01:12.0220 4552 ALG - ok
21:01:12.0329 4552 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
21:01:12.0329 4552 aliide - ok
21:01:12.0376 4552 AMD External Events Utility (3d90cf67db75823a8480e56bbcd2e028) C:\Windows\system32\atiesrxx.exe
21:01:12.0392 4552 AMD External Events Utility - ok
21:01:12.0439 4552 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
21:01:12.0439 4552 amdide - ok
21:01:12.0532 4552 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
21:01:12.0532 4552 AmdK8 - ok
21:01:12.0782 4552 amdkmdag (52679612d742bf74ca1ba6ab86ddf431) C:\Windows\system32\DRIVERS\atipmdag.sys
21:01:12.0844 4552 amdkmdag - ok
21:01:12.0875 4552 amdkmdap (414e0788920a8c856032be2cbf29f984) C:\Windows\system32\DRIVERS\atikmpag.sys
21:01:12.0875 4552 amdkmdap - ok
21:01:12.0985 4552 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
21:01:12.0985 4552 AmdPPM - ok
21:01:13.0031 4552 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
21:01:13.0031 4552 amdsata - ok
21:01:13.0078 4552 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
21:01:13.0078 4552 amdsbs - ok
21:01:13.0109 4552 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
21:01:13.0109 4552 amdxata - ok
21:01:13.0234 4552 ApfiltrService (8b522286c8d6a20133d12225b7759596) C:\Windows\system32\DRIVERS\Apfiltr.sys
21:01:13.0234 4552 ApfiltrService - ok
21:01:13.0406 4552 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
21:01:13.0406 4552 AppID - ok
21:01:13.0499 4552 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
21:01:13.0499 4552 AppIDSvc - ok
21:01:13.0562 4552 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
21:01:13.0577 4552 Appinfo - ok
21:01:13.0655 4552 Apple Mobile Device (d8e18021f91ad79ca8491cb5a5da22d4) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
21:01:13.0655 4552 Apple Mobile Device - ok
21:01:13.0765 4552 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
21:01:13.0765 4552 arc - ok
21:01:13.0811 4552 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
21:01:13.0811 4552 arcsas - ok
21:01:13.0889 4552 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
21:01:13.0889 4552 AsyncMac - ok
21:01:13.0905 4552 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
21:01:13.0921 4552 atapi - ok
21:01:14.0045 4552 AtiHdmiService (fb7602c5c508be281368aae0b61b51c6) C:\Windows\system32\drivers\AtiHdmi.sys
21:01:14.0045 4552 AtiHdmiService - ok
21:01:14.0217 4552 atikmdag (52679612d742bf74ca1ba6ab86ddf431) C:\Windows\system32\DRIVERS\atikmdag.sys
21:01:14.0279 4552 atikmdag - ok
21:01:14.0373 4552 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
21:01:14.0389 4552 AudioEndpointBuilder - ok
21:01:14.0404 4552 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
21:01:14.0420 4552 AudioSrv - ok
21:01:14.0529 4552 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
21:01:14.0529 4552 AxInstSV - ok
21:01:14.0607 4552 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
21:01:14.0623 4552 b06bdrv - ok
21:01:14.0732 4552 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
21:01:14.0747 4552 b57nd60a - ok
21:01:14.0779 4552 BCM42RLY (e001dd475a7c27ebe5a0db45c11bad71) C:\Windows\system32\drivers\BCM42RLY.sys
21:01:14.0779 4552 BCM42RLY - ok
21:01:14.0950 4552 BCM43XX (37394d3553e220fb732c21e217e1bd8b) C:\Windows\system32\DRIVERS\bcmwl664.sys
21:01:14.0966 4552 BCM43XX - ok
21:01:15.0184 4552 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
21:01:15.0184 4552 BDESVC - ok
21:01:15.0371 4552 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
21:01:15.0371 4552 Beep - ok
21:01:15.0512 4552 BFE (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
21:01:15.0527 4552 BFE - ok
21:01:15.0559 4552 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\System32\qmgr.dll
21:01:15.0559 4552 BITS - ok
21:01:15.0621 4552 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
21:01:15.0621 4552 blbdrive - ok
21:01:15.0730 4552 Bonjour Service (ebbcd5dfbb1de70e8f4af8fa59e401fd) C:\Program Files\Bonjour\mDNSResponder.exe
21:01:15.0730 4552 Bonjour Service - ok
21:01:15.0824 4552 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
21:01:15.0824 4552 bowser - ok
21:01:15.0871 4552 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
21:01:15.0871 4552 BrFiltLo - ok
21:01:15.0886 4552 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
21:01:15.0886 4552 BrFiltUp - ok
21:01:16.0011 4552 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
21:01:16.0011 4552 Browser - ok
21:01:16.0058 4552 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
21:01:16.0058 4552 Brserid - ok
21:01:16.0089 4552 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
21:01:16.0089 4552 BrSerWdm - ok
21:01:16.0198 4552 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
21:01:16.0198 4552 BrUsbMdm - ok
21:01:16.0245 4552 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
21:01:16.0245 4552 BrUsbSer - ok
21:01:16.0276 4552 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
21:01:16.0276 4552 BTHMODEM - ok
21:01:16.0385 4552 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
21:01:16.0385 4552 bthserv - ok
21:01:16.0479 4552 BVRPMPR5a64 (9887ca12f407d7fbc7f48f3678f5f0b6) C:\Windows\system32\drivers\BVRPMPR5a64.SYS
21:01:16.0479 4552 BVRPMPR5a64 - ok
21:01:16.0573 4552 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
21:01:16.0573 4552 cdfs - ok
21:01:17.0025 4552 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\drivers\cdrom.sys
21:01:17.0025 4552 cdrom - ok
21:01:17.0119 4552 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
21:01:17.0134 4552 CertPropSvc - ok
21:01:17.0197 4552 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
21:01:17.0197 4552 circlass - ok
21:01:17.0259 4552 CISVC (ff60401f1c659ca2ed4bae85d3fd14da) C:\Windows\system32\CISVC.EXE
21:01:17.0259 4552 CISVC - ok
21:01:17.0337 4552 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
21:01:17.0337 4552 CLFS - ok
21:01:17.0680 4552 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:01:17.0680 4552 clr_optimization_v2.0.50727_32 - ok
21:01:17.0789 4552 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
21:01:17.0789 4552 clr_optimization_v2.0.50727_64 - ok
21:01:17.0883 4552 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
21:01:17.0899 4552 clr_optimization_v4.0.30319_32 - ok
21:01:18.0023 4552 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
21:01:18.0023 4552 clr_optimization_v4.0.30319_64 - ok
21:01:18.0133 4552 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
21:01:18.0133 4552 CmBatt - ok
21:01:18.0164 4552 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
21:01:18.0164 4552 cmdide - ok
21:01:18.0211 4552 CNG (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys
21:01:18.0211 4552 CNG - ok
21:01:18.0335 4552 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
21:01:18.0335 4552 Compbatt - ok
21:01:18.0398 4552 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
21:01:18.0398 4552 CompositeBus - ok
21:01:18.0476 4552 COMSysApp - ok
21:01:18.0538 4552 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
21:01:18.0538 4552 crcdisk - ok
21:01:18.0663 4552 CryptSvc (15597883fbe9b056f276ada3ad87d9af) C:\Windows\system32\cryptsvc.dll
21:01:18.0679 4552 CryptSvc - ok
21:01:18.0757 4552 CtClsFlt (ed5cf92396a62f4c15110dcdb5e854d9) C:\Windows\system32\DRIVERS\CtClsFlt.sys
21:01:18.0757 4552 CtClsFlt - ok
21:01:18.0897 4552 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
21:01:18.0897 4552 DcomLaunch - ok
21:01:18.0928 4552 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
21:01:18.0928 4552 defragsvc - ok
21:01:19.0053 4552 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
21:01:19.0053 4552 DfsC - ok
21:01:19.0100 4552 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
21:01:19.0100 4552 Dhcp - ok
21:01:19.0162 4552 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
21:01:19.0162 4552 discache - ok
21:01:19.0287 4552 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
21:01:19.0287 4552 Disk - ok
21:01:19.0443 4552 dleaCATSCustConnectService (e0d525515537e60aba8f3e29209f02e8) C:\Windows\system32\spool\DRIVERS\x64\3\\dleaserv.exe
21:01:19.0443 4552 dleaCATSCustConnectService - ok
21:01:19.0459 4552 dlea_device - ok
21:01:19.0521 4552 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
21:01:19.0521 4552 Dnscache - ok
21:01:19.0615 4552 DockLoginService (0840abbbdf438691ee65a20040635cbe) C:\Program Files\Dell\DellDock\DockLogin.exe
21:01:19.0615 4552 DockLoginService - ok
21:01:19.0724 4552 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
21:01:19.0724 4552 dot3svc - ok
21:01:19.0771 4552 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
21:01:19.0771 4552 DPS - ok
21:01:19.0818 4552 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
21:01:19.0818 4552 drmkaud - ok
21:01:19.0880 4552 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
21:01:19.0896 4552 DXGKrnl - ok
21:01:19.0927 4552 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
21:01:19.0927 4552 EapHost - ok
21:01:20.0036 4552 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
21:01:20.0067 4552 ebdrv - ok
21:01:20.0114 4552 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
21:01:20.0114 4552 EFS - ok
21:01:20.0176 4552 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
21:01:20.0176 4552 ehRecvr - ok
21:01:20.0208 4552 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
21:01:20.0208 4552 ehSched - ok
21:01:20.0301 4552 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
21:01:20.0301 4552 elxstor - ok
21:01:20.0348 4552 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
21:01:20.0348 4552 ErrDev - ok
21:01:20.0410 4552 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
21:01:20.0410 4552 EventSystem - ok
21:01:20.0457 4552 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
21:01:20.0457 4552 exfat - ok
21:01:20.0488 4552 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
21:01:20.0488 4552 fastfat - ok
21:01:20.0613 4552 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
21:01:20.0629 4552 Fax - ok
21:01:20.0676 4552 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
21:01:20.0676 4552 fdc - ok
21:01:20.0707 4552 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
21:01:20.0707 4552 fdPHost - ok
21:01:20.0738 4552 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
21:01:20.0738 4552 FDResPub - ok
21:01:20.0785 4552 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
21:01:20.0785 4552 FileInfo - ok
21:01:20.0800 4552 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
21:01:20.0800 4552 Filetrace - ok
21:01:20.0832 4552 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
21:01:20.0832 4552 flpydisk - ok
21:01:20.0878 4552 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
21:01:20.0894 4552 FltMgr - ok
21:01:20.0956 4552 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
21:01:20.0972 4552 FontCache - ok
21:01:21.0066 4552 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
21:01:21.0066 4552 FontCache3.0.0.0 - ok
21:01:21.0128 4552 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
21:01:21.0128 4552 FsDepends - ok
21:01:21.0222 4552 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
21:01:21.0222 4552 Fs_Rec - ok
21:01:21.0300 4552 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
21:01:21.0300 4552 fvevol - ok
21:01:21.0346 4552 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
21:01:21.0346 4552 gagp30kx - ok
21:01:21.0378 4552 GameConsoleService - ok
21:01:21.0487 4552 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
21:01:21.0487 4552 GEARAspiWDM - ok
21:01:21.0534 4552 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
21:01:21.0549 4552 gpsvc - ok
21:01:21.0658 4552 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:01:21.0658 4552 gupdate - ok
21:01:21.0690 4552 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:01:21.0690 4552 gupdatem - ok
21:01:21.0768 4552 gusvc (cc839e8d766cc31a7710c9f38cf3e375) C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
21:01:21.0768 4552 gusvc - ok
21:01:21.0861 4552 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
21:01:21.0861 4552 hcw85cir - ok
21:01:21.0924 4552 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
21:01:21.0924 4552 HDAudBus - ok
21:01:21.0955 4552 HECIx64 (b6ac71aaa2b10848f57fc49d55a651af) C:\Windows\system32\DRIVERS\HECIx64.sys
21:01:21.0955 4552 HECIx64 - ok
21:01:21.0986 4552 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
21:01:21.0986 4552 HidBatt - ok
21:01:22.0002 4552 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
21:01:22.0002 4552 HidBth - ok
21:01:22.0126 4552 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
21:01:22.0126 4552 HidIr - ok
21:01:22.0158 4552 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
21:01:22.0173 4552 hidserv - ok
21:01:22.0282 4552 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
21:01:22.0282 4552 HidUsb - ok
21:01:22.0329 4552 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
21:01:22.0329 4552 hkmsvc - ok
21:01:22.0376 4552 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
21:01:22.0392 4552 HomeGroupListener - ok
21:01:22.0438 4552 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
21:01:22.0438 4552 HomeGroupProvider - ok
21:01:22.0548 4552 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
21:01:22.0548 4552 HpSAMD - ok
21:01:22.0610 4552 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
21:01:22.0626 4552 HTTP - ok
21:01:22.0766 4552 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
21:01:22.0766 4552 hwpolicy - ok
21:01:22.0813 4552 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
21:01:22.0813 4552 i8042prt - ok
21:01:22.0922 4552 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
21:01:22.0922 4552 iaStorV - ok
21:01:23.0031 4552 IDriverT (1cf03c69b49acb70c722df92755c0c8c) C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
21:01:23.0031 4552 IDriverT - ok
21:01:23.0125 4552 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
21:01:23.0140 4552 idsvc - ok
21:01:23.0203 4552 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
21:01:23.0203 4552 iirsp - ok
21:01:23.0250 4552 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
21:01:23.0281 4552 IKEEXT - ok
21:01:23.0390 4552 Impcd (36fdf367a1dabff903e2214023d71368) C:\Windows\system32\DRIVERS\Impcd.sys
21:01:23.0390 4552 Impcd - ok
21:01:23.0468 4552 IntcAzAudAddService (2a7cf87be453241fe0baa1c8651e7aa4) C:\Windows\system32\drivers\RTKVHD64.sys
21:01:23.0530 4552 IntcAzAudAddService - ok
21:01:23.0640 4552 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
21:01:23.0640 4552 intelide - ok
21:01:23.0702 4552 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
21:01:23.0702 4552 intelppm - ok
21:01:23.0796 4552 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
21:01:23.0811 4552 IPBusEnum - ok
21:01:23.0874 4552 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:01:23.0889 4552 IpFilterDriver - ok
21:01:23.0936 4552 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
21:01:23.0952 4552 iphlpsvc - ok
21:01:24.0014 4552 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
21:01:24.0014 4552 IPMIDRV - ok
21:01:24.0045 4552 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
21:01:24.0061 4552 IPNAT - ok
21:01:24.0139 4552 iPod Service (3c0d4b3e80fc4854ca325dd123cc4ded) C:\Program Files\iPod\bin\iPodService.exe
21:01:24.0154 4552 iPod Service - ok
21:01:24.0232 4552 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
21:01:24.0232 4552 IRENUM - ok
21:01:24.0295 4552 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
21:01:24.0295 4552 isapnp - ok
21:01:24.0326 4552 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
21:01:24.0326 4552 iScsiPrt - ok
21:01:24.0373 4552 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\drivers\kbdclass.sys
21:01:24.0373 4552 kbdclass - ok
21:01:24.0404 4552 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\drivers\kbdhid.sys
21:01:24.0404 4552 kbdhid - ok
21:01:24.0435 4552 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:01:24.0435 4552 KeyIso - ok
21:01:24.0498 4552 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys
21:01:24.0498 4552 KSecDD - ok
21:01:24.0529 4552 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys
21:01:24.0529 4552 KSecPkg - ok
21:01:24.0576 4552 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
21:01:24.0576 4552 ksthunk - ok
21:01:24.0622 4552 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
21:01:24.0622 4552 KtmRm - ok
21:01:24.0685 4552 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\system32\srvsvc.dll
21:01:24.0685 4552 LanmanServer - ok
21:01:24.0732 4552 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
21:01:24.0747 4552 LanmanWorkstation - ok
21:01:24.0810 4552 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
21:01:24.0810 4552 lltdio - ok
21:01:24.0872 4552 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
21:01:24.0872 4552 lltdsvc - ok
21:01:24.0903 4552 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
21:01:24.0903 4552 lmhosts - ok
21:01:24.0966 4552 LMS (7485fbcef9136f530953575e2977859d) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
21:01:24.0966 4552 LMS - ok
21:01:25.0059 4552 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
21:01:25.0059 4552 LSI_FC - ok
21:01:25.0075 4552 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
21:01:25.0075 4552 LSI_SAS - ok
21:01:25.0106 4552 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
21:01:25.0106 4552 LSI_SAS2 - ok
21:01:25.0137 4552 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
21:01:25.0137 4552 LSI_SCSI - ok
21:01:25.0231 4552 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
21:01:25.0231 4552 luafv - ok
21:01:25.0356 4552 MBAMProtector (79da94b35371b9e7104460c7693dcb2c) C:\Windows\system32\drivers\mbam.sys
21:01:25.0356 4552 MBAMProtector - ok
21:01:25.0465 4552 MBAMService (056b19651bd7b7ce5f89a3ac46dbdc08) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
21:01:25.0465 4552 MBAMService - ok
21:01:25.0543 4552 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
21:01:25.0558 4552 Mcx2Svc - ok
21:01:25.0605 4552 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
21:01:25.0605 4552 megasas - ok
21:01:25.0621 4552 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
21:01:25.0621 4552 MegaSR - ok
21:01:25.0668 4552 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
21:01:25.0668 4552 MMCSS - ok
21:01:25.0714 4552 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
21:01:25.0714 4552 Modem - ok
21:01:25.0792 4552 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
21:01:25.0792 4552 monitor - ok
21:01:25.0839 4552 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\drivers\mouclass.sys
21:01:25.0839 4552 mouclass - ok
21:01:25.0948 4552 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
21:01:25.0948 4552 mouhid - ok
21:01:25.0980 4552 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
21:01:25.0980 4552 mountmgr - ok
21:01:26.0042 4552 MpFilter (c177a7ebf5e8a0b596f618870516cab8) C:\Windows\system32\DRIVERS\MpFilter.sys
21:01:26.0042 4552 MpFilter - ok
21:01:26.0136 4552 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
21:01:26.0151 4552 mpio - ok
21:01:26.0198 4552 MpNWMon (8fbf6b31fe8af1833d93c5913d5b4d55) C:\Windows\system32\DRIVERS\MpNWMon.sys
21:01:26.0198 4552 MpNWMon - ok
21:01:26.0229 4552 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
21:01:26.0245 4552 mpsdrv - ok
21:01:26.0323 4552 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
21:01:26.0354 4552 MpsSvc - ok
21:01:26.0401 4552 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
21:01:26.0401 4552 MRxDAV - ok
21:01:26.0448 4552 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
21:01:26.0448 4552 mrxsmb - ok
21:01:26.0494 4552 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:01:26.0510 4552 mrxsmb10 - ok
21:01:26.0526 4552 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:01:26.0526 4552 mrxsmb20 - ok
21:01:26.0557 4552 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
21:01:26.0557 4552 msahci - ok
21:01:26.0588 4552 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
21:01:26.0604 4552 msdsm - ok
21:01:26.0635 4552 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
21:01:26.0635 4552 MSDTC - ok
21:01:26.0713 4552 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
21:01:26.0713 4552 Msfs - ok
21:01:26.0728 4552 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
21:01:26.0728 4552 mshidkmdf - ok
21:01:26.0760 4552 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
21:01:26.0760 4552 msisadrv - ok
21:01:26.0806 4552 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
21:01:26.0806 4552 MSiSCSI - ok
21:01:26.0806 4552 msiserver - ok
21:01:26.0853 4552 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
21:01:26.0853 4552 MSKSSRV - ok
21:01:26.0962 4552 MsMpSvc (157e9e498206a3366baa7e4697bdd947) C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
21:01:26.0962 4552 MsMpSvc - ok
21:01:27.0040 4552 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
21:01:27.0056 4552 MSPCLOCK - ok
21:01:27.0087 4552 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
21:01:27.0087 4552 MSPQM - ok
21:01:27.0274 4552 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
21:01:27.0321 4552 MsRPC - ok
21:01:27.0430 4552 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
21:01:27.0430 4552 mssmbios - ok
21:01:27.0477 4552 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
21:01:27.0493 4552 MSTEE - ok
21:01:27.0508 4552 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
21:01:27.0508 4552 MTConfig - ok
21:01:27.0540 4552 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
21:01:27.0540 4552 Mup - ok
21:01:27.0571 4552 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
21:01:27.0586 4552 napagent - ok
21:01:27.0711 4552 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
21:01:27.0711 4552 NativeWifiP - ok
21:01:27.0805 4552 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
21:01:27.0820 4552 NDIS - ok
21:01:27.0945 4552 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
21:01:27.0945 4552 NdisCap - ok
21:01:27.0976 4552 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
21:01:27.0976 4552 NdisTapi - ok
21:01:28.0023 4552 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
21:01:28.0023 4552 Ndisuio - ok
21:01:28.0070 4552 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
21:01:28.0070 4552 NdisWan - ok
21:01:28.0164 4552 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
21:01:28.0164 4552 NDProxy - ok
21:01:28.0210 4552 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
21:01:28.0210 4552 NetBIOS - ok
21:01:28.0257 4552 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
21:01:28.0257 4552 NetBT - ok
21:01:28.0288 4552 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:01:28.0304 4552 Netlogon - ok
21:01:28.0398 4552 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
21:01:28.0398 4552 Netman - ok
21:01:28.0429 4552 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
21:01:28.0444 4552 netprofm - ok
21:01:28.0522 4552 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
21:01:28.0522 4552 NetTcpPortSharing - ok
21:01:28.0600 4552 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
21:01:28.0600 4552 nfrd960 - ok
21:01:28.0710 4552 NisDrv (5f7d72cbcdd025af1f38fdeee5646968) C:\Windows\system32\DRIVERS\NisDrvWFP.sys
21:01:28.0710 4552 NisDrv - ok
21:01:28.0834 4552 NisSrv (566ddd5d82520da01d75f81428ac4c38) C:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe
21:01:28.0834 4552 NisSrv - ok
21:01:28.0944 4552 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
21:01:28.0944 4552 NlaSvc - ok
21:01:28.0990 4552 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
21:01:28.0990 4552 Npfs - ok
21:01:29.0022 4552 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
21:01:29.0022 4552 nsi - ok
21:01:29.0037 4552 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
21:01:29.0037 4552 nsiproxy - ok
21:01:29.0115 4552 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
21:01:29.0178 4552 Ntfs - ok
21:01:29.0287 4552 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
21:01:29.0287 4552 Null - ok
21:01:29.0334 4552 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
21:01:29.0334 4552 nvraid - ok
21:01:29.0349 4552 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
21:01:29.0365 4552 nvstor - ok
21:01:29.0536 4552 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
21:01:29.0536 4552 nv_agp - ok
21:01:29.0630 4552 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
21:01:29.0630 4552 odserv - ok
21:01:29.0739 4552 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
21:01:29.0739 4552 ohci1394 - ok
21:01:29.0802 4552 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:01:29.0802 4552 ose - ok
21:01:29.0864 4552 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
21:01:29.0864 4552 p2pimsvc - ok
21:01:29.0926 4552 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
21:01:29.0926 4552 p2psvc - ok
21:01:29.0958 4552 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
21:01:29.0958 4552 Parport - ok
21:01:30.0004 4552 partmgr (871eadac56b0a4c6512bbe32753ccf79) C:\Windows\system32\drivers\partmgr.sys
21:01:30.0004 4552 partmgr - ok
21:01:30.0051 4552 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
21:01:30.0051 4552 PcaSvc - ok
21:01:30.0160 4552 PCDSRVC{1E208CE0-FB7451FF-06020101}_0 (7317a0b550f7ac0223b7070897670476) c:\program files\dell support center\pcdsrvc_x64.pkms
21:01:30.0160 4552 PCDSRVC{1E208CE0-FB7451FF-06020101}_0 - ok
21:01:30.0270 4552 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
21:01:30.0270 4552 pci - ok
21:01:30.0301 4552 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
21:01:30.0301 4552 pciide - ok
21:01:30.0332 4552 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
21:01:30.0332 4552 pcmcia - ok
21:01:30.0363 4552 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
21:01:30.0363 4552 pcw - ok
21:01:30.0394 4552 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
21:01:30.0394 4552 PEAUTH - ok
21:01:30.0457 4552 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
21:01:30.0457 4552 PerfHost - ok
21:01:30.0550 4552 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
21:01:30.0597 4552 pla - ok
21:01:30.0691 4552 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
21:01:30.0706 4552 PlugPlay - ok
21:01:30.0738 4552 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
21:01:30.0738 4552 PNRPAutoReg - ok
21:01:30.0769 4552 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
21:01:30.0769 4552 PNRPsvc - ok
21:01:30.0816 4552 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
21:01:30.0831 4552 PolicyAgent - ok
21:01:30.0862 4552 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
21:01:30.0862 4552 Power - ok
21:01:30.0925 4552 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
21:01:30.0925 4552 PptpMiniport - ok
21:01:30.0956 4552 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
21:01:30.0956 4552 Processor - ok
21:01:31.0018 4552 ProfSvc (5c78838b4d166d1a27db3a8a820c799a) C:\Windows\system32\profsvc.dll
21:01:31.0018 4552 ProfSvc - ok
21:01:31.0050 4552 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:01:31.0050 4552 ProtectedStorage - ok
21:01:31.0128 4552 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
21:01:31.0128 4552 Psched - ok
21:01:31.0159 4552 PxHlpa64 (4712cc14e720ecccc0aa16949d18aaf1) C:\Windows\system32\Drivers\PxHlpa64.sys
21:01:31.0159 4552 PxHlpa64 - ok
21:01:31.0237 4552 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
21:01:31.0284 4552 ql2300 - ok
21:01:31.0299 4552 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
21:01:31.0315 4552 ql40xx - ok
21:01:31.0346 4552 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
21:01:31.0362 4552 QWAVE - ok
21:01:31.0377 4552 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
21:01:31.0377 4552 QWAVEdrv - ok
21:01:31.0408 4552 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
21:01:31.0408 4552 RasAcd - ok
21:01:31.0455 4552 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
21:01:31.0455 4552 RasAgileVpn - ok
21:01:31.0486 4552 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
21:01:31.0486 4552 RasAuto - ok
21:01:31.0564 4552 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
21:01:31.0564 4552 Rasl2tp - ok
21:01:31.0611 4552 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
21:01:31.0611 4552 RasMan - ok
21:01:31.0674 4552 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
21:01:31.0674 4552 RasPppoe - ok
21:01:31.0705 4552 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
21:01:31.0705 4552 RasSstp - ok
21:01:31.0736 4552 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
21:01:31.0752 4552 rdbss - ok
21:01:31.0783 4552 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
21:01:31.0783 4552 rdpbus - ok
21:01:31.0814 4552 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
21:01:31.0814 4552 RDPCDD - ok
21:01:31.0845 4552 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
21:01:31.0845 4552 RDPENCDD - ok
21:01:31.0861 4552 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
21:01:31.0861 4552 RDPREFMP - ok
21:01:31.0908 4552 RDPWD (6d76e6433574b058adcb0c50df834492) C:\Windows\system32\drivers\RDPWD.sys
21:01:31.0908 4552 RDPWD - ok
21:01:32.0032 4552 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
21:01:32.0032 4552 rdyboost - ok
21:01:32.0079 4552 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
21:01:32.0079 4552 RemoteAccess - ok
21:01:32.0157 4552 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
21:01:32.0173 4552 RemoteRegistry - ok
21:01:32.0282 4552 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
21:01:32.0298 4552 RpcEptMapper - ok
21:01:32.0329 4552 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
21:01:32.0329 4552 RpcLocator - ok
21:01:32.0766 4552 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
21:01:32.0766 4552 RpcSs - ok
21:01:32.0875 4552 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
21:01:32.0875 4552 rspndr - ok
21:01:32.0922 4552 RSUSBSTOR (502b316947ea887cddd325d4745eb7d0) C:\Windows\system32\Drivers\RtsUStor.sys
21:01:32.0922 4552 RSUSBSTOR - ok
21:01:33.0046 4552 RTL8167 (3b01789ee4eaee97f5eb46b711387d5e) C:\Windows\system32\DRIVERS\Rt64win7.sys
21:01:33.0046 4552 RTL8167 - ok
21:01:33.0078 4552 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:01:33.0093 4552 SamSs - ok
21:01:33.0156 4552 SASDIFSV (3289766038db2cb14d07dc84392138d5) C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
21:01:33.0156 4552 SASDIFSV - ok
21:01:33.0202 4552 SASKUTIL (58a38e75f3316a83c23df6173d41f2b5) C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
21:01:33.0202 4552 SASKUTIL - ok
21:01:33.0280 4552 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
21:01:33.0280 4552 sbp2port - ok
21:01:33.0312 4552 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
21:01:33.0327 4552 SCardSvr - ok
21:01:33.0374 4552 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
21:01:33.0374 4552 scfilter - ok
21:01:33.0436 4552 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
21:01:33.0468 4552 Schedule - ok
21:01:33.0514 4552 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
21:01:33.0514 4552 SCPolicySvc - ok
21:01:33.0561 4552 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
21:01:33.0561 4552 SDRSVC - ok
21:01:33.0592 4552 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
21:01:33.0592 4552 secdrv - ok
21:01:33.0639 4552 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
21:01:33.0639 4552 seclogon - ok
21:01:33.0686 4552 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
21:01:33.0686 4552 SENS - ok
21:01:33.0702 4552 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
21:01:33.0702 4552 SensrSvc - ok
21:01:33.0748 4552 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
21:01:33.0748 4552 Serenum - ok
21:01:33.0795 4552 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
21:01:33.0795 4552 Serial - ok
21:01:33.0858 4552 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
21:01:33.0858 4552 sermouse - ok
21:01:33.0920 4552 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
21:01:33.0920 4552 SessionEnv - ok
21:01:33.0967 4552 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
21:01:33.0967 4552 sffdisk - ok
21:01:33.0998 4552 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
21:01:33.0998 4552 sffp_mmc - ok
21:01:34.0014 4552 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
21:01:34.0029 4552 sffp_sd - ok
21:01:34.0060 4552 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
21:01:34.0060 4552 sfloppy - ok
21:01:34.0092 4552 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
21:01:34.0092 4552 SharedAccess - ok
21:01:34.0154 4552 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
21:01:34.0154 4552 ShellHWDetection - ok
21:01:34.0216 4552 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
21:01:34.0216 4552 SiSRaid2 - ok
21:01:34.0232 4552 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
21:01:34.0248 4552 SiSRaid4 - ok
21:01:34.0279 4552 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
21:01:34.0279 4552 Smb - ok
21:01:34.0326 4552 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
21:01:34.0326 4552 SNMPTRAP - ok
21:01:34.0372 4552 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
21:01:34.0372 4552 spldr - ok
21:01:34.0419 4552 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
21:01:34.0419 4552 Spooler - ok
21:01:34.0544 4552 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
21:01:34.0638 4552 sppsvc - ok
21:01:34.0762 4552 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
21:01:34.0762 4552 sppuinotify - ok
21:01:34.0840 4552 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
21:01:34.0856 4552 srv - ok
21:01:34.0887 4552 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
21:01:34.0903 4552 srv2 - ok
21:01:34.0934 4552 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
21:01:34.0934 4552 srvnet - ok
21:01:34.0981 4552 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
21:01:34.0996 4552 SSDPSRV - ok
21:01:35.0012 4552 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
21:01:35.0012 4552 SstpSvc - ok
21:01:35.0059 4552 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
21:01:35.0059 4552 stexstor - ok
21:01:35.0168 4552 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
21:01:35.0184 4552 stisvc - ok
21:01:35.0199 4552 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
21:01:35.0199 4552 swenum - ok
21:01:35.0246 4552 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
21:01:35.0246 4552 swprv - ok
21:01:35.0324 4552 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
21:01:35.0371 4552 SysMain - ok
21:01:35.0418 4552 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
21:01:35.0418 4552 TabletInputService - ok
21:01:35.0480 4552 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
21:01:35.0480 4552 TapiSrv - ok
21:01:35.0511 4552 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
21:01:35.0511 4552 TBS - ok
21:01:35.0589 4552 Tcpip (fc62769e7bff2896035aeed399108162) C:\Windows\system32\drivers\tcpip.sys
21:01:35.0636 4552 Tcpip - ok
21:01:35.0761 4552 TCPIP6 (fc62769e7bff2896035aeed399108162) C:\Windows\system32\DRIVERS\tcpip.sys
21:01:35.0776 4552 TCPIP6 - ok
21:01:35.0839 4552 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
21:01:35.0839 4552 tcpipreg - ok
21:01:35.0870 4552 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
21:01:35.0870 4552 TDPIPE - ok
21:01:35.0932 4552 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
21:01:35.0932 4552 TDTCP - ok
21:01:35.0995 4552 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
21:01:35.0995 4552 tdx - ok
21:01:36.0026 4552 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
21:01:36.0026 4552 TermDD - ok
21:01:36.0073 4552 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
21:01:36.0088 4552 TermService - ok
21:01:36.0120 4552 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
21:01:36.0135 4552 Themes - ok
21:01:36.0166 4552 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
21:01:36.0166 4552 THREADORDER - ok
21:01:36.0276 4552 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
21:01:36.0276 4552 TrkWks - ok
21:01:36.0338 4552 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
21:01:36.0338 4552 TrustedInstaller - ok
21:01:36.0416 4552 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
21:01:36.0416 4552 tssecsrv - ok
21:01:36.0541 4552 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
21:01:36.0541 4552 TsUsbFlt - ok
21:01:36.0603 4552 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
21:01:36.0603 4552 tunnel - ok
21:01:36.0634 4552 TurboB (825e7a1f48fb8bcfba27c178aab4e275) C:\Windows\system32\DRIVERS\TurboB.sys
21:01:36.0634 4552 TurboB - ok
21:01:36.0697 4552 TurboBoost (b206be1174d5964d49a56bb6c4e0524a) C:\Program Files\Intel\TurboBoost\TurboBoost.exe
21:01:36.0697 4552 TurboBoost - ok
21:01:36.0775 4552 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
21:01:36.0775 4552 uagp35 - ok
21:01:36.0822 4552 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
21:01:36.0822 4552 udfs - ok
21:01:36.0868 4552 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
21:01:36.0868 4552 UI0Detect - ok
21:01:36.0915 4552 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
21:01:36.0931 4552 uliagpkx - ok
21:01:37.0024 4552 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys
21:01:37.0024 4552 umbus - ok
21:01:37.0071 4552 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
21:01:37.0071 4552 UmPass - ok
21:01:37.0196 4552 UNS (765f2dd351ba064f657751d8d75e58c0) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
21:01:37.0258 4552 UNS - ok
21:01:37.0305 4552 Updater Service for StartNow Toolbar - ok
21:01:37.0430 4552 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
21:01:37.0446 4552 upnphost - ok
21:01:37.0633 4552 USBAAPL64 (aa33fc47ed58c34e6e9261e4f850b7eb) C:\Windows\system32\Drivers\usbaapl64.sys
21:01:37.0633 4552 USBAAPL64 - ok
21:01:37.0680 4552 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
21:01:37.0680 4552 usbccgp - ok
21:01:38.0054 4552 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
21:01:38.0054 4552 usbcir - ok
21:01:38.0179 4552 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\drivers\usbehci.sys
21:01:38.0179 4552 usbehci - ok
21:01:38.0304 4552 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
21:01:38.0304 4552 usbhub - ok
21:01:38.0350 4552 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
21:01:38.0350 4552 usbohci - ok
21:01:38.0382 4552 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
21:01:38.0382 4552 usbprint - ok
21:01:38.0506 4552 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
21:01:38.0506 4552 usbscan - ok
21:01:38.0553 4552 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
21:01:38.0569 4552 USBSTOR - ok
21:01:38.0678 4552 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
21:01:38.0678 4552 usbuhci - ok
21:01:38.0725 4552 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\Windows\System32\Drivers\usbvideo.sys
21:01:38.0725 4552 usbvideo - ok
21:01:38.0756 4552 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
21:01:38.0756 4552 UxSms - ok
21:01:38.0787 4552 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
21:01:38.0803 4552 VaultSvc - ok
21:01:38.0928 4552 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
21:01:38.0928 4552 vdrvroot - ok
21:01:38.0974 4552 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
21:01:38.0990 4552 vds - ok
21:01:39.0099 4552 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
21:01:39.0099 4552 vga - ok
21:01:39.0115 4552 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
21:01:39.0115 4552 VgaSave - ok
21:01:39.0162 4552 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
21:01:39.0162 4552 vhdmp - ok
21:01:39.0255 4552 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
21:01:39.0255 4552 viaide - ok
21:01:39.0302 4552 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
21:01:39.0302 4552 volmgr - ok
21:01:39.0396 4552 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
21:01:39.0411 4552 volmgrx - ok
21:01:39.0458 4552 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
21:01:39.0458 4552 volsnap - ok
21:01:39.0505 4552 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
21:01:39.0520 4552 vsmraid - ok
21:01:39.0598 4552 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
21:01:39.0645 4552 VSS - ok
21:01:39.0692 4552 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
21:01:39.0708 4552 vwifibus - ok
21:01:39.0723 4552 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
21:01:39.0723 4552 vwififlt - ok
21:01:39.0879 4552 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys
21:01:39.0879 4552 vwifimp - ok
21:01:39.0926 4552 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
21:01:39.0926 4552 W32Time - ok
21:01:39.0973 4552 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
21:01:39.0973 4552 WacomPen - ok
21:01:40.0035 4552 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
21:01:40.0051 4552 WANARP - ok
21:01:40.0051 4552 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
21:01:40.0051 4552 Wanarpv6 - ok
21:01:40.0129 4552 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
21:01:40.0176 4552 WatAdminSvc - ok
21:01:40.0285 4552 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
21:01:40.0332 4552 wbengine - ok
21:01:40.0363 4552 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
21:01:40.0378 4552 WbioSrvc - ok
21:01:40.0394 4552 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
21:01:40.0410 4552 wcncsvc - ok
21:01:40.0425 4552 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
21:01:40.0441 4552 WcsPlugInService - ok
21:01:40.0488 4552 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
21:01:40.0488 4552 Wd - ok
21:01:40.0519 4552 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
21:01:40.0534 4552 Wdf01000 - ok
21:01:40.0566 4552 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
21:01:40.0566 4552 WdiServiceHost - ok
21:01:40.0581 4552 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
21:01:40.0581 4552 WdiSystemHost - ok
21:01:40.0628 4552 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
21:01:40.0628 4552 WebClient - ok
21:01:40.0659 4552 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
21:01:40.0675 4552 Wecsvc - ok
21:01:40.0690 4552 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
21:01:40.0706 4552 wercplsupport - ok
21:01:40.0722 4552 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
21:01:40.0722 4552 WerSvc - ok
21:01:40.0784 4552 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
21:01:40.0784 4552 WfpLwf - ok
21:01:40.0815 4552 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
21:01:40.0815 4552 WIMMount - ok
21:01:40.0831 4552 WinDefend - ok
21:01:40.0831 4552 WinHttpAutoProxySvc - ok
21:01:40.0909 4552 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
21:01:40.0924 4552 Winmgmt - ok
21:01:41.0002 4552 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
21:01:41.0049 4552 WinRM - ok
21:01:41.0205 4552 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
21:01:41.0205 4552 WinUsb - ok
21:01:41.0252 4552 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
21:01:41.0283 4552 Wlansvc - ok
21:01:41.0377 4552 wltrysvc (13b0a570e1ae451c92da550085d72cf3) C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRYSVC.EXE
21:01:41.0377 4552 wltrysvc - ok
21:01:41.0517 4552 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
21:01:41.0517 4552 WmiAcpi - ok
21:01:41.0564 4552 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
21:01:41.0564 4552 wmiApSrv - ok
21:01:41.0611 4552 WMPNetworkSvc - ok
21:01:41.0704 4552 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
21:01:41.0704 4552 WPCSvc - ok
21:01:41.0736 4552 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
21:01:41.0751 4552 WPDBusEnum - ok
21:01:41.0782 4552 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
21:01:41.0782 4552 ws2ifsl - ok
21:01:41.0829 4552 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\System32\wscsvc.dll
21:01:41.0829 4552 wscsvc - ok
21:01:41.0954 4552 WSDPrintDevice (8d918b1db190a4d9b1753a66fa8c96e8) C:\Windows\system32\DRIVERS\WSDPrint.sys
21:01:41.0954 4552 WSDPrintDevice - ok
21:01:41.0970 4552 WSearch - ok
21:01:42.0063 4552 wuauserv (9df12edbc698b0bc353b3ef84861e430) C:\Windows\system32\wuaueng.dll
21:01:42.0141 4552 wuauserv - ok
21:01:42.0188 4552 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
21:01:42.0188 4552 WudfPf - ok
21:01:42.0235 4552 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
21:01:42.0250 4552 WUDFRd - ok
21:01:42.0282 4552 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
21:01:42.0297 4552 wudfsvc - ok
21:01:42.0329 4552 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
21:01:42.0329 4552 WwanSvc - ok
21:01:42.0361 4552 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
21:01:42.0610 4552 \Device\Harddisk0\DR0 - ok
21:01:42.0626 4552 MBR (0x1B8) (a4a15d6782e6fe1dce41a606cb3affe3) \Device\Harddisk1\DR2
21:01:42.0829 4552 \Device\Harddisk1\DR2 - ok
21:01:42.0844 4552 Boot (0x1200) (d6882cab9992beb45569aaef134498eb) \Device\Harddisk0\DR0\Partition0
21:01:42.0844 4552 \Device\Harddisk0\DR0\Partition0 - ok
21:01:42.0860 4552 Boot (0x1200) (648a5e096581ccef30c7bbc0de874e61) \Device\Harddisk0\DR0\Partition1
21:01:42.0860 4552 \Device\Harddisk0\DR0\Partition1 - ok
21:01:42.0875 4552 Boot (0x1200) (6ea395e98a10514d4a5c5efd49765d25) \Device\Harddisk0\DR0\Partition2
21:01:42.0875 4552 \Device\Harddisk0\DR0\Partition2 - ok
21:01:42.0875 4552 Boot (0x1200) (9943f89d3bcfdb7cf7d7b132d5e79af1) \Device\Harddisk1\DR2\Partition0
21:01:42.0875 4552 \Device\Harddisk1\DR2\Partition0 - ok
21:01:42.0891 4552 ============================================================
21:01:42.0891 4552 Scan finished
21:01:42.0891 4552 ============================================================
21:01:42.0891 4908 Detected object count: 0
21:01:42.0891 4908 Actual detected object count: 0

#6 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,221 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:03:18 PM

Posted 15 April 2012 - 08:16 PM

You're welcme. After removal of FF and Chrome ( you need to reboot after) ,did the redirects stop?

Do you know why these are instealled?

Support.com Toolbar (Version: 1.14.1.0)
Support.com Toolbar Updater (Version: 1.2.0.20007)
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#7 heethuis

heethuis
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:03:18 PM

Posted 15 April 2012 - 08:19 PM

i did not see either of those installed. i was unable to uninstall ask.com.


quite frankly, i never checked to see if it was gone after i uninstalled chrome and firefox.

#8 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,221 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:03:18 PM

Posted 15 April 2012 - 08:24 PM

They are in the Installed list in the MINI log.

Sometimes the Happili infection is in either or both of their add ons and since you removed them it may have fixed the issue.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#9 heethuis

heethuis
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:03:18 PM

Posted 15 April 2012 - 10:47 PM

Malwarebytes Anti-Malware 1.61.0.1400
www.malwarebytes.org

Database version: v2012.04.15.07

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
heethuis :: HEETHUIS-PC [administrator]

Protection: Enabled

4/15/2012 9:36:05 PM
mbam-log-2012-04-15 (21-36-05).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 204613
Time elapsed: 3 minute(s), 22 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

#10 heethuis

heethuis
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:03:18 PM

Posted 15 April 2012 - 10:49 PM

i think i got through all the steps. please let me know if there is anything that i missed or that you see that i need to yet address. thank you again for the assistance

#11 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,221 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:03:18 PM

Posted 16 April 2012 - 02:29 PM

Has it stopped redirecting?
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users