Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

smart hdd virus. malware bytes finds 2 in registry, delete?


  • Please log in to reply
10 replies to this topic

#1 dkittl20

dkittl20

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:01:23 PM

Posted 20 April 2012 - 12:20 PM

Hi,
Ive been infected with a Smart HDD. Ive ran Rkill and malware bytes. Malware bytes shows two registry files that are infected. should I delete these?

Registry Data Items Detected: 2
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced|Start_ShowMyComputer (PUM.Hijack.StartMenu) -> Bad: (0) Good: (1) -> No action taken.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced|Start_ShowSearch (PUM.Hijack.StartMenu) -> Bad: (0) Good: (1) -> No action taken.

Thanks in Advance.

BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,344 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:02:23 PM

Posted 20 April 2012 - 03:22 PM

Yes please do that.. Then run this ...

Please download TDSSKiller.zip and and extract it.
  • Run TDSSKiller.exe.
  • Click Start scan.
  • When it is finished the utility outputs a list of detected objects with description.
    The utility automatically selects an action (Cure or Delete) for malicious objects.
    The utility prompts the user to select an action to apply to suspicious objects (Skip, by default). Let the options as it is and click Continue
  • Let reboot if needed and tell me if the tool needed a reboot.
  • Click on Report and post the contents of the text file that will open.

    Note: By default, the utility outputs the log into system disk (it is usually the disk with installed operating system, C:\) root folder. The Log has a name like: TDSSKiller.Version_Date_Time_log.txt.



If TDSSKiller does not run, try renaming it. To do this, right-click on TDSSKiller.exe, select Rename and give it a random name with the .com file extension (i.e. 123abc.com). If you do not see the file extension, please refer to these[/color] instructions. [color=green]In some cases it may be necessary to redownload TDSSKiller and randomly rename it before downloading and saving to the computer.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 dkittl20

dkittl20
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:01:23 PM

Posted 20 April 2012 - 08:19 PM

Thanks!
no reboot needed. below is the log

20:15:02.0860 2724 TDSS rootkit removing tool 2.7.31.0 Apr 20 2012 19:49:47
20:15:03.0584 2724 ============================================================
20:15:03.0584 2724 Current date / time: 2012/04/20 20:15:03.0584
20:15:03.0584 2724 SystemInfo:
20:15:03.0584 2724
20:15:03.0584 2724 OS Version: 6.1.7601 ServicePack: 1.0
20:15:03.0584 2724 Product type: Workstation
20:15:03.0585 2724 ComputerName: KITTLE-PC
20:15:03.0585 2724 UserName: Kittle
20:15:03.0585 2724 Windows directory: C:\Windows
20:15:03.0585 2724 System windows directory: C:\Windows
20:15:03.0585 2724 Running under WOW64
20:15:03.0585 2724 Processor architecture: Intel x64
20:15:03.0585 2724 Number of processors: 8
20:15:03.0585 2724 Page size: 0x1000
20:15:03.0585 2724 Boot type: Safe boot with network
20:15:03.0585 2724 ============================================================
20:15:03.0830 2724 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
20:15:03.0842 2724 \Device\Harddisk0\DR0:
20:15:03.0842 2724 MBR partitions:
20:15:03.0842 2724 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x14000, BlocksNum 0x1A7F000
20:15:03.0842 2724 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1A93000, BlocksNum 0x72C73000
20:15:03.0876 2724 C: <-> \Device\Harddisk0\DR0\Partition1
20:15:03.0876 2724 Initialize success
20:15:03.0876 2724 ============================================================
20:15:08.0938 3024 ============================================================
20:15:08.0938 3024 Scan started
20:15:08.0938 3024 Mode: Manual;
20:15:08.0938 3024 ============================================================
20:15:09.0436 3024 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
20:15:09.0438 3024 1394ohci - ok
20:15:09.0461 3024 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
20:15:09.0464 3024 ACPI - ok
20:15:09.0489 3024 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
20:15:09.0490 3024 AcpiPmi - ok
20:15:09.0533 3024 Adobe LM Service (85ae7a3a151a9a12a87e029df3b1b3e3) C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
20:15:09.0534 3024 Adobe LM Service - ok
20:15:09.0621 3024 AdobeARMservice (11a52cf7b265631deeb24c6149309eff) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
20:15:09.0622 3024 AdobeARMservice - ok
20:15:09.0704 3024 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\drivers\adp94xx.sys
20:15:09.0708 3024 adp94xx - ok
20:15:09.0731 3024 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\drivers\adpahci.sys
20:15:09.0733 3024 adpahci - ok
20:15:09.0744 3024 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\drivers\adpu320.sys
20:15:09.0746 3024 adpu320 - ok
20:15:09.0766 3024 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
20:15:09.0767 3024 AeLookupSvc - ok
20:15:09.0807 3024 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
20:15:09.0810 3024 AFD - ok
20:15:10.0004 3024 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
20:15:10.0005 3024 agp440 - ok
20:15:10.0044 3024 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
20:15:10.0044 3024 ALG - ok
20:15:10.0073 3024 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
20:15:10.0074 3024 aliide - ok
20:15:10.0101 3024 AMD External Events Utility (11276158eeeeadf3eb154061bfc80a19) C:\Windows\system32\atiesrxx.exe
20:15:10.0103 3024 AMD External Events Utility - ok
20:15:10.0116 3024 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
20:15:10.0116 3024 amdide - ok
20:15:10.0137 3024 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\drivers\amdk8.sys
20:15:10.0138 3024 AmdK8 - ok
20:15:10.0257 3024 amdkmdag (df943a113060d3abfda4730ae4163d6f) C:\Windows\system32\DRIVERS\atikmdag.sys
20:15:10.0358 3024 amdkmdag - ok
20:15:10.0374 3024 amdkmdap (4003b34b4a83de29cd1c88eb6c869e58) C:\Windows\system32\DRIVERS\atikmpag.sys
20:15:10.0376 3024 amdkmdap - ok
20:15:10.0386 3024 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\drivers\amdppm.sys
20:15:10.0387 3024 AmdPPM - ok
20:15:10.0433 3024 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
20:15:10.0434 3024 amdsata - ok
20:15:10.0460 3024 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\drivers\amdsbs.sys
20:15:10.0462 3024 amdsbs - ok
20:15:10.0472 3024 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
20:15:10.0473 3024 amdxata - ok
20:15:10.0513 3024 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
20:15:10.0514 3024 AppID - ok
20:15:10.0540 3024 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
20:15:10.0541 3024 AppIDSvc - ok
20:15:10.0550 3024 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
20:15:10.0551 3024 Appinfo - ok
20:15:10.0613 3024 Apple Mobile Device (3debbecf665dcdde3a95d9b902010817) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
20:15:10.0614 3024 Apple Mobile Device - ok
20:15:10.0655 3024 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\drivers\arc.sys
20:15:10.0655 3024 arc - ok
20:15:10.0671 3024 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\drivers\arcsas.sys
20:15:10.0672 3024 arcsas - ok
20:15:10.0734 3024 aspnet_state (9217d874131ae6ff8f642f124f00a555) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
20:15:10.0735 3024 aspnet_state - ok
20:15:10.0762 3024 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
20:15:10.0762 3024 AsyncMac - ok
20:15:10.0796 3024 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
20:15:10.0797 3024 atapi - ok
20:15:10.0833 3024 AtiHDAudioService (4bf5bca6e2608cd8a00bc4a6673a9f47) C:\Windows\system32\drivers\AtihdW76.sys
20:15:10.0834 3024 AtiHDAudioService - ok
20:15:10.0877 3024 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
20:15:10.0882 3024 AudioEndpointBuilder - ok
20:15:10.0888 3024 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
20:15:10.0891 3024 AudioSrv - ok
20:15:10.0919 3024 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
20:15:10.0920 3024 AxInstSV - ok
20:15:10.0939 3024 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\drivers\bxvbda.sys
20:15:10.0942 3024 b06bdrv - ok
20:15:10.0956 3024 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
20:15:10.0958 3024 b57nd60a - ok
20:15:11.0004 3024 BCM43XX (8b5d16d20774fc3727f44e161be2c0ac) C:\Windows\system32\DRIVERS\bcmwl664.sys
20:15:11.0044 3024 BCM43XX - ok
20:15:11.0074 3024 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
20:15:11.0075 3024 BDESVC - ok
20:15:11.0092 3024 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
20:15:11.0092 3024 Beep - ok
20:15:11.0126 3024 BFE (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
20:15:11.0130 3024 BFE - ok
20:15:11.0166 3024 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\System32\qmgr.dll
20:15:11.0182 3024 BITS - ok
20:15:11.0220 3024 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
20:15:11.0221 3024 blbdrive - ok
20:15:11.0271 3024 Bonjour Service (ebbcd5dfbb1de70e8f4af8fa59e401fd) C:\Program Files\Bonjour\mDNSResponder.exe
20:15:11.0272 3024 Bonjour Service - ok
20:15:11.0309 3024 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
20:15:11.0310 3024 bowser - ok
20:15:11.0324 3024 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\drivers\BrFiltLo.sys
20:15:11.0324 3024 BrFiltLo - ok
20:15:11.0342 3024 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\drivers\BrFiltUp.sys
20:15:11.0342 3024 BrFiltUp - ok
20:15:11.0367 3024 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
20:15:11.0368 3024 Browser - ok
20:15:11.0386 3024 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
20:15:11.0388 3024 Brserid - ok
20:15:11.0412 3024 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
20:15:11.0413 3024 BrSerWdm - ok
20:15:11.0418 3024 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
20:15:11.0419 3024 BrUsbMdm - ok
20:15:11.0424 3024 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
20:15:11.0424 3024 BrUsbSer - ok
20:15:11.0440 3024 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\drivers\bthmodem.sys
20:15:11.0441 3024 BTHMODEM - ok
20:15:11.0472 3024 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
20:15:11.0473 3024 bthserv - ok
20:15:11.0487 3024 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
20:15:11.0493 3024 cdfs - ok
20:15:11.0512 3024 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys
20:15:11.0514 3024 cdrom - ok
20:15:11.0537 3024 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
20:15:11.0538 3024 CertPropSvc - ok
20:15:11.0566 3024 cfwids (ed0263b2eb24f0f4e3898036fa1d28a1) C:\Windows\system32\drivers\cfwids.sys
20:15:11.0567 3024 cfwids - ok
20:15:11.0578 3024 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\drivers\circlass.sys
20:15:11.0579 3024 circlass - ok
20:15:11.0597 3024 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
20:15:11.0600 3024 CLFS - ok
20:15:11.0671 3024 CLKMSVC10_9EC60124 (730bf325e4cc1e3935b81943ac6da216) C:\Program Files (x86)\Cyberlink\PowerDVD9\NavFilter\kmsvc.exe
20:15:11.0673 3024 CLKMSVC10_9EC60124 - ok
20:15:11.0737 3024 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
20:15:11.0737 3024 clr_optimization_v2.0.50727_32 - ok
20:15:11.0767 3024 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
20:15:11.0768 3024 clr_optimization_v2.0.50727_64 - ok
20:15:11.0816 3024 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
20:15:11.0817 3024 clr_optimization_v4.0.30319_32 - ok
20:15:11.0843 3024 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
20:15:11.0845 3024 clr_optimization_v4.0.30319_64 - ok
20:15:11.0900 3024 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\drivers\CmBatt.sys
20:15:11.0901 3024 CmBatt - ok
20:15:11.0912 3024 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
20:15:11.0912 3024 cmdide - ok
20:15:11.0951 3024 CNG (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys
20:15:11.0954 3024 CNG - ok
20:15:11.0973 3024 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\drivers\compbatt.sys
20:15:11.0974 3024 Compbatt - ok
20:15:11.0990 3024 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\DRIVERS\CompositeBus.sys
20:15:11.0991 3024 CompositeBus - ok
20:15:12.0003 3024 COMSysApp - ok
20:15:12.0013 3024 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\drivers\crcdisk.sys
20:15:12.0014 3024 crcdisk - ok
20:15:12.0056 3024 CryptSvc (15597883fbe9b056f276ada3ad87d9af) C:\Windows\system32\cryptsvc.dll
20:15:12.0058 3024 CryptSvc - ok
20:15:12.0089 3024 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
20:15:12.0093 3024 DcomLaunch - ok
20:15:12.0110 3024 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
20:15:12.0112 3024 defragsvc - ok
20:15:12.0128 3024 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
20:15:12.0129 3024 DfsC - ok
20:15:12.0148 3024 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
20:15:12.0150 3024 Dhcp - ok
20:15:12.0158 3024 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
20:15:12.0159 3024 discache - ok
20:15:12.0179 3024 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\drivers\disk.sys
20:15:12.0180 3024 Disk - ok
20:15:12.0202 3024 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
20:15:12.0204 3024 Dnscache - ok
20:15:12.0220 3024 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
20:15:12.0222 3024 dot3svc - ok
20:15:12.0275 3024 Dot4 (b42ed0320c6e41102fde0005154849bb) C:\Windows\system32\DRIVERS\Dot4.sys
20:15:12.0277 3024 Dot4 - ok
20:15:12.0322 3024 Dot4Print (e9f5969233c5d89f3c35e3a66a52a361) C:\Windows\system32\DRIVERS\Dot4Prt.sys
20:15:12.0323 3024 Dot4Print - ok
20:15:12.0357 3024 dot4usb (fd05a02b0370bc3000f402e543ca5814) C:\Windows\system32\DRIVERS\dot4usb.sys
20:15:12.0357 3024 dot4usb - ok
20:15:12.0373 3024 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
20:15:12.0375 3024 DPS - ok
20:15:12.0399 3024 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
20:15:12.0399 3024 drmkaud - ok
20:15:12.0446 3024 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
20:15:12.0453 3024 DXGKrnl - ok
20:15:12.0472 3024 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
20:15:12.0473 3024 EapHost - ok
20:15:12.0527 3024 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\drivers\evbda.sys
20:15:12.0567 3024 ebdrv - ok
20:15:12.0610 3024 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
20:15:12.0611 3024 EFS - ok
20:15:12.0653 3024 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
20:15:12.0658 3024 ehRecvr - ok
20:15:12.0687 3024 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
20:15:12.0688 3024 ehSched - ok
20:15:12.0704 3024 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\drivers\elxstor.sys
20:15:12.0708 3024 elxstor - ok
20:15:12.0722 3024 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
20:15:12.0723 3024 ErrDev - ok
20:15:12.0753 3024 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
20:15:12.0756 3024 EventSystem - ok
20:15:12.0773 3024 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
20:15:12.0774 3024 exfat - ok
20:15:12.0790 3024 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
20:15:12.0792 3024 fastfat - ok
20:15:12.0820 3024 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
20:15:12.0825 3024 Fax - ok
20:15:12.0848 3024 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\drivers\fdc.sys
20:15:12.0848 3024 fdc - ok
20:15:12.0864 3024 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
20:15:12.0865 3024 fdPHost - ok
20:15:12.0877 3024 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
20:15:12.0878 3024 FDResPub - ok
20:15:12.0947 3024 File Backup (ed59ad1c8db2f26324051b035ae56cdd) C:\Program Files (x86)\Workspace\offSyncService.exe
20:15:12.0953 3024 File Backup - ok
20:15:12.0975 3024 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
20:15:12.0976 3024 FileInfo - ok
20:15:12.0982 3024 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
20:15:12.0982 3024 Filetrace - ok
20:15:13.0019 3024 FLEXnet Licensing Service (8669be94f63944e4f899c3950b520241) C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
20:15:13.0026 3024 FLEXnet Licensing Service - ok
20:15:13.0047 3024 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\drivers\flpydisk.sys
20:15:13.0047 3024 flpydisk - ok
20:15:13.0071 3024 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
20:15:13.0074 3024 FltMgr - ok
20:15:13.0100 3024 FlyUsb (6cd6bb45bd3e0eef6ce496bf52854ff1) C:\Windows\system32\DRIVERS\FlyUsb.sys
20:15:13.0101 3024 FlyUsb - ok
20:15:13.0130 3024 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
20:15:13.0137 3024 FontCache - ok
20:15:13.0185 3024 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
20:15:13.0185 3024 FontCache3.0.0.0 - ok
20:15:13.0198 3024 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
20:15:13.0198 3024 FsDepends - ok
20:15:13.0223 3024 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
20:15:13.0223 3024 Fs_Rec - ok
20:15:13.0250 3024 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
20:15:13.0252 3024 fvevol - ok
20:15:13.0263 3024 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\drivers\gagp30kx.sys
20:15:13.0264 3024 gagp30kx - ok
20:15:13.0279 3024 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
20:15:13.0280 3024 GEARAspiWDM - ok
20:15:13.0312 3024 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
20:15:13.0318 3024 gpsvc - ok
20:15:13.0333 3024 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
20:15:13.0333 3024 hcw85cir - ok
20:15:13.0357 3024 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\DRIVERS\HDAudBus.sys
20:15:13.0358 3024 HDAudBus - ok
20:15:13.0371 3024 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\drivers\HidBatt.sys
20:15:13.0371 3024 HidBatt - ok
20:15:13.0382 3024 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\drivers\hidbth.sys
20:15:13.0383 3024 HidBth - ok
20:15:13.0398 3024 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\drivers\hidir.sys
20:15:13.0398 3024 HidIr - ok
20:15:13.0404 3024 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
20:15:13.0405 3024 hidserv - ok
20:15:13.0426 3024 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
20:15:13.0426 3024 HidUsb - ok
20:15:13.0444 3024 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
20:15:13.0445 3024 hkmsvc - ok
20:15:13.0458 3024 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
20:15:13.0460 3024 HomeGroupListener - ok
20:15:13.0484 3024 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
20:15:13.0485 3024 HomeGroupProvider - ok
20:15:13.0661 3024 hpqcxs08 (1dae5c46d42b02a6d5862e1482efb390) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
20:15:13.0663 3024 hpqcxs08 - ok
20:15:13.0676 3024 hpqddsvc (99e8eef42fe2f4af29b08c3355dd7685) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
20:15:13.0677 3024 hpqddsvc - ok
20:15:13.0709 3024 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
20:15:13.0710 3024 HpSAMD - ok
20:15:13.0740 3024 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
20:15:13.0746 3024 HTTP - ok
20:15:13.0758 3024 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
20:15:13.0759 3024 hwpolicy - ok
20:15:13.0790 3024 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
20:15:13.0791 3024 i8042prt - ok
20:15:13.0822 3024 iaStor (f7ce9be72edac499b713eca6dae5d26f) C:\Windows\system32\drivers\iaStor.sys
20:15:13.0824 3024 iaStor - ok
20:15:13.0888 3024 IAStorDataMgrSvc (b25f192ea1f84a316eb7c19efcccf33d) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
20:15:13.0888 3024 IAStorDataMgrSvc - ok
20:15:13.0931 3024 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
20:15:13.0934 3024 iaStorV - ok
20:15:14.0000 3024 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
20:15:14.0006 3024 idsvc - ok
20:15:14.0038 3024 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\drivers\iirsp.sys
20:15:14.0039 3024 iirsp - ok
20:15:14.0067 3024 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
20:15:14.0073 3024 IKEEXT - ok
20:15:14.0091 3024 Impcd (dd587a55390ed2295bce6d36ad567da9) C:\Windows\system32\drivers\Impcd.sys
20:15:14.0093 3024 Impcd - ok
20:15:14.0152 3024 IntcAzAudAddService (235362d403d9d677514649d88db31914) C:\Windows\system32\drivers\RTKVHD64.sys
20:15:14.0183 3024 IntcAzAudAddService - ok
20:15:14.0221 3024 IntcDAud (fc727061c0f47c8059e88e05d5c8e381) C:\Windows\system32\DRIVERS\IntcDAud.sys
20:15:14.0224 3024 IntcDAud - ok
20:15:14.0240 3024 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
20:15:14.0240 3024 intelide - ok
20:15:14.0255 3024 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
20:15:14.0256 3024 intelppm - ok
20:15:14.0279 3024 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
20:15:14.0280 3024 IPBusEnum - ok
20:15:14.0295 3024 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
20:15:14.0296 3024 IpFilterDriver - ok
20:15:14.0316 3024 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
20:15:14.0320 3024 iphlpsvc - ok
20:15:14.0331 3024 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
20:15:14.0332 3024 IPMIDRV - ok
20:15:14.0337 3024 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
20:15:14.0338 3024 IPNAT - ok
20:15:14.0403 3024 iPod Service (ee4c2a137c7088911a8919effc9812e7) C:\Program Files\iPod\bin\iPodService.exe
20:15:14.0409 3024 iPod Service - ok
20:15:14.0444 3024 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
20:15:14.0444 3024 IRENUM - ok
20:15:14.0468 3024 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
20:15:14.0469 3024 isapnp - ok
20:15:14.0483 3024 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
20:15:14.0486 3024 iScsiPrt - ok
20:15:14.0516 3024 k57nd60a (12e27942dbb7c91880163634b0d8a776) C:\Windows\system32\DRIVERS\k57nd60a.sys
20:15:14.0519 3024 k57nd60a - ok
20:15:14.0539 3024 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
20:15:14.0540 3024 kbdclass - ok
20:15:14.0560 3024 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\DRIVERS\kbdhid.sys
20:15:14.0560 3024 kbdhid - ok
20:15:14.0594 3024 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
20:15:14.0594 3024 KeyIso - ok
20:15:14.0611 3024 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys
20:15:14.0612 3024 KSecDD - ok
20:15:14.0640 3024 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys
20:15:14.0641 3024 KSecPkg - ok
20:15:14.0653 3024 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
20:15:14.0653 3024 ksthunk - ok
20:15:14.0675 3024 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
20:15:14.0678 3024 KtmRm - ok
20:15:14.0710 3024 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\system32\srvsvc.dll
20:15:14.0713 3024 LanmanServer - ok
20:15:14.0730 3024 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
20:15:14.0732 3024 LanmanWorkstation - ok
20:15:14.0886 3024 LeapFrog Connect Device Service (3c879d04bb6466e2853c3155b635cc45) C:\Program Files (x86)\LeapFrog\LeapFrog Connect\CommandService.exe
20:15:14.0962 3024 LeapFrog Connect Device Service - ok
20:15:15.0009 3024 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
20:15:15.0010 3024 lltdio - ok
20:15:15.0034 3024 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
20:15:15.0037 3024 lltdsvc - ok
20:15:15.0050 3024 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
20:15:15.0051 3024 lmhosts - ok
20:15:15.0080 3024 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\drivers\lsi_fc.sys
20:15:15.0081 3024 LSI_FC - ok
20:15:15.0104 3024 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\drivers\lsi_sas.sys
20:15:15.0105 3024 LSI_SAS - ok
20:15:15.0115 3024 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\drivers\lsi_sas2.sys
20:15:15.0116 3024 LSI_SAS2 - ok
20:15:15.0129 3024 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\drivers\lsi_scsi.sys
20:15:15.0131 3024 LSI_SCSI - ok
20:15:15.0159 3024 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
20:15:15.0160 3024 luafv - ok
20:15:15.0214 3024 MBAMProtector (dbc08862a71459e74f7538b432c114cc) C:\Windows\system32\drivers\mbam.sys
20:15:15.0214 3024 MBAMProtector - ok
20:15:15.0285 3024 MBAMService (ba400ed640bca1eae5c727ae17c10207) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
20:15:15.0287 3024 MBAMService - ok
20:15:15.0408 3024 McAfee SiteAdvisor Service (acb01bf1a905356ab7f978c7fe852209) C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
20:15:15.0410 3024 McAfee SiteAdvisor Service - ok
20:15:15.0420 3024 McMPFSvc (acb01bf1a905356ab7f978c7fe852209) C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
20:15:15.0421 3024 McMPFSvc - ok
20:15:15.0424 3024 mcmscsvc (acb01bf1a905356ab7f978c7fe852209) C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
20:15:15.0425 3024 mcmscsvc - ok
20:15:15.0428 3024 McNaiAnn (acb01bf1a905356ab7f978c7fe852209) C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
20:15:15.0429 3024 McNaiAnn - ok
20:15:15.0474 3024 McNASvc (acb01bf1a905356ab7f978c7fe852209) C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
20:15:15.0475 3024 McNASvc - ok
20:15:15.0524 3024 McODS (b3914a7c97a81acb1e9befe07e4c387f) C:\Program Files\McAfee\VirusScan\mcods.exe
20:15:15.0528 3024 McODS - ok
20:15:15.0537 3024 McProxy (acb01bf1a905356ab7f978c7fe852209) C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
20:15:15.0538 3024 McProxy - ok
20:15:15.0592 3024 McShield (4a463d645b48bb487ca7df12ba5d1602) C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe
20:15:15.0594 3024 McShield - ok
20:15:15.0662 3024 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
20:15:15.0663 3024 Mcx2Svc - ok
20:15:15.0693 3024 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\drivers\megasas.sys
20:15:15.0693 3024 megasas - ok
20:15:15.0712 3024 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\drivers\MegaSR.sys
20:15:15.0715 3024 MegaSR - ok
20:15:15.0741 3024 MEIx64 (1c6e73fc46b509eff9d0086aa37132df) C:\Windows\system32\DRIVERS\HECIx64.sys
20:15:15.0741 3024 MEIx64 - ok
20:15:15.0789 3024 mfeapfk (ef3acfb7e3f82d5f7cde9ef5f0a4e2e2) C:\Windows\system32\drivers\mfeapfk.sys
20:15:15.0790 3024 mfeapfk - ok
20:15:15.0827 3024 mfeavfk (e7a60bdb4365b561d896019b82fb7dd0) C:\Windows\system32\drivers\mfeavfk.sys
20:15:15.0829 3024 mfeavfk - ok
20:15:15.0898 3024 mfefire (c53b7aba204d9f7e9568ec147a1485c5) C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
20:15:15.0900 3024 mfefire - ok
20:15:15.0928 3024 mfefirek (670dffe55e2f9ab99d9169c428bcece9) C:\Windows\system32\drivers\mfefirek.sys
20:15:15.0931 3024 mfefirek - ok
20:15:15.0982 3024 mfehidk (1892616b7f9291fd77c3fa0a5811fe9f) C:\Windows\system32\drivers\mfehidk.sys
20:15:15.0986 3024 mfehidk - ok
20:15:15.0999 3024 mfenlfk (1721261c77f6e7a9e0cb51b7d9f31b60) C:\Windows\system32\DRIVERS\mfenlfk.sys
20:15:16.0000 3024 mfenlfk - ok
20:15:16.0026 3024 mferkdet (65776bd8029e409935b90de30bf99526) C:\Windows\system32\drivers\mferkdet.sys
20:15:16.0027 3024 mferkdet - ok
20:15:16.0044 3024 mfevtp (8f3b3c3625e3aaa11d6d4db8423e1721) C:\Windows\system32\mfevtps.exe
20:15:16.0045 3024 mfevtp - ok
20:15:16.0075 3024 mfewfpk (4f17d8b85b903d96ef7033bb6ef50516) C:\Windows\system32\drivers\mfewfpk.sys
20:15:16.0077 3024 mfewfpk - ok
20:15:16.0113 3024 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
20:15:16.0114 3024 MMCSS - ok
20:15:16.0129 3024 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
20:15:16.0130 3024 Modem - ok
20:15:16.0154 3024 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
20:15:16.0154 3024 monitor - ok
20:15:16.0181 3024 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
20:15:16.0181 3024 mouclass - ok
20:15:16.0204 3024 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
20:15:16.0205 3024 mouhid - ok
20:15:16.0218 3024 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
20:15:16.0219 3024 mountmgr - ok
20:15:16.0231 3024 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
20:15:16.0232 3024 mpio - ok
20:15:16.0243 3024 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
20:15:16.0243 3024 mpsdrv - ok
20:15:16.0272 3024 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
20:15:16.0275 3024 MpsSvc - ok
20:15:16.0290 3024 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
20:15:16.0292 3024 MRxDAV - ok
20:15:16.0312 3024 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
20:15:16.0314 3024 mrxsmb - ok
20:15:16.0350 3024 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
20:15:16.0353 3024 mrxsmb10 - ok
20:15:16.0367 3024 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
20:15:16.0368 3024 mrxsmb20 - ok
20:15:16.0392 3024 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
20:15:16.0393 3024 msahci - ok
20:15:16.0402 3024 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
20:15:16.0404 3024 msdsm - ok
20:15:16.0421 3024 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
20:15:16.0423 3024 MSDTC - ok
20:15:16.0697 3024 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
20:15:16.0698 3024 Msfs - ok
20:15:16.0713 3024 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
20:15:16.0714 3024 mshidkmdf - ok
20:15:16.0727 3024 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
20:15:16.0728 3024 msisadrv - ok
20:15:16.0763 3024 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
20:15:16.0765 3024 MSiSCSI - ok
20:15:16.0769 3024 msiserver - ok
20:15:16.0874 3024 MSK80Service (acb01bf1a905356ab7f978c7fe852209) C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
20:15:16.0876 3024 MSK80Service - ok
20:15:16.0899 3024 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
20:15:16.0899 3024 MSKSSRV - ok
20:15:16.0908 3024 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
20:15:16.0909 3024 MSPCLOCK - ok
20:15:16.0918 3024 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
20:15:16.0918 3024 MSPQM - ok
20:15:16.0934 3024 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
20:15:16.0937 3024 MsRPC - ok
20:15:16.0953 3024 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\DRIVERS\mssmbios.sys
20:15:16.0954 3024 mssmbios - ok
20:15:16.0960 3024 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
20:15:16.0960 3024 MSTEE - ok
20:15:16.0971 3024 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\drivers\MTConfig.sys
20:15:16.0971 3024 MTConfig - ok
20:15:16.0985 3024 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
20:15:16.0986 3024 Mup - ok
20:15:17.0012 3024 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
20:15:17.0016 3024 napagent - ok
20:15:17.0052 3024 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
20:15:17.0055 3024 NativeWifiP - ok
20:15:17.0098 3024 NDIS (c38b8ae57f78915905064a9a24dc1586) C:\Windows\system32\drivers\ndis.sys
20:15:17.0104 3024 NDIS - ok
20:15:17.0129 3024 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
20:15:17.0130 3024 NdisCap - ok
20:15:17.0161 3024 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
20:15:17.0161 3024 NdisTapi - ok
20:15:17.0173 3024 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
20:15:17.0174 3024 Ndisuio - ok
20:15:17.0190 3024 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
20:15:17.0191 3024 NdisWan - ok
20:15:17.0213 3024 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
20:15:17.0214 3024 NDProxy - ok
20:15:17.0265 3024 Net Driver HPZ12 (d5ac41ae382738483faffbd7e373d49a) C:\Windows\system32\HPZinw12.dll
20:15:17.0266 3024 Net Driver HPZ12 - ok
20:15:17.0280 3024 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
20:15:17.0281 3024 NetBIOS - ok
20:15:17.0298 3024 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
20:15:17.0300 3024 NetBT - ok
20:15:17.0335 3024 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
20:15:17.0336 3024 Netlogon - ok
20:15:17.0382 3024 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
20:15:17.0384 3024 Netman - ok
20:15:17.0447 3024 NetMsmqActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:15:17.0448 3024 NetMsmqActivator - ok
20:15:17.0450 3024 NetPipeActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:15:17.0451 3024 NetPipeActivator - ok
20:15:17.0465 3024 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
20:15:17.0469 3024 netprofm - ok
20:15:17.0474 3024 NetTcpActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:15:17.0475 3024 NetTcpActivator - ok
20:15:17.0480 3024 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:15:17.0481 3024 NetTcpPortSharing - ok
20:15:17.0522 3024 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\drivers\nfrd960.sys
20:15:17.0523 3024 nfrd960 - ok
20:15:17.0544 3024 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
20:15:17.0547 3024 NlaSvc - ok
20:15:17.0629 3024 NOBU (b9b72faaaa41d59b73b88fe3dd737ed1) C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe
20:15:17.0658 3024 NOBU - ok
20:15:17.0682 3024 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
20:15:17.0683 3024 Npfs - ok
20:15:17.0692 3024 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
20:15:17.0693 3024 nsi - ok
20:15:17.0700 3024 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
20:15:17.0701 3024 nsiproxy - ok
20:15:17.0755 3024 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
20:15:17.0769 3024 Ntfs - ok
20:15:17.0812 3024 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
20:15:17.0812 3024 Null - ok
20:15:17.0849 3024 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
20:15:17.0850 3024 nvraid - ok
20:15:17.0880 3024 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
20:15:17.0882 3024 nvstor - ok
20:15:17.0895 3024 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
20:15:17.0896 3024 nv_agp - ok
20:15:17.0910 3024 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
20:15:17.0911 3024 ohci1394 - ok
20:15:17.0961 3024 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
20:15:17.0962 3024 ose - ok
20:15:18.0098 3024 osppsvc (61bffb5f57ad12f83ab64b7181829b34) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
20:15:18.0158 3024 osppsvc - ok
20:15:18.0441 3024 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
20:15:18.0444 3024 p2pimsvc - ok
20:15:18.0470 3024 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
20:15:18.0473 3024 p2psvc - ok
20:15:18.0488 3024 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\drivers\parport.sys
20:15:18.0489 3024 Parport - ok
20:15:18.0509 3024 partmgr (871eadac56b0a4c6512bbe32753ccf79) C:\Windows\system32\drivers\partmgr.sys
20:15:18.0510 3024 partmgr - ok
20:15:18.0522 3024 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
20:15:18.0524 3024 PcaSvc - ok
20:15:18.0566 3024 PCDSRVC{1E208CE0-FB7451FF-06020101}_0 (7317a0b550f7ac0223b7070897670476) c:\program files\dell support center\pcdsrvc_x64.pkms
20:15:18.0567 3024 PCDSRVC{1E208CE0-FB7451FF-06020101}_0 - ok
20:15:18.0585 3024 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
20:15:18.0586 3024 pci - ok
20:15:18.0598 3024 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
20:15:18.0598 3024 pciide - ok
20:15:18.0612 3024 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\drivers\pcmcia.sys
20:15:18.0614 3024 pcmcia - ok
20:15:18.0626 3024 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
20:15:18.0627 3024 pcw - ok
20:15:18.0637 3024 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
20:15:18.0641 3024 PEAUTH - ok
20:15:18.0676 3024 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
20:15:18.0676 3024 PerfHost - ok
20:15:18.0705 3024 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
20:15:18.0714 3024 pla - ok
20:15:18.0755 3024 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
20:15:18.0759 3024 PlugPlay - ok
20:15:18.0813 3024 Pml Driver HPZ12 (37f6046cdc630442d7dc087501ff6fc6) C:\Windows\system32\HPZipm12.dll
20:15:18.0814 3024 Pml Driver HPZ12 - ok
20:15:18.0827 3024 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
20:15:18.0828 3024 PNRPAutoReg - ok
20:15:18.0849 3024 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
20:15:18.0851 3024 PNRPsvc - ok
20:15:18.0876 3024 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
20:15:18.0879 3024 PolicyAgent - ok
20:15:18.0899 3024 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
20:15:18.0901 3024 Power - ok
20:15:18.0945 3024 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
20:15:18.0947 3024 PptpMiniport - ok
20:15:18.0965 3024 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\drivers\processr.sys
20:15:18.0966 3024 Processor - ok
20:15:18.0994 3024 ProfSvc (5c78838b4d166d1a27db3a8a820c799a) C:\Windows\system32\profsvc.dll
20:15:18.0996 3024 ProfSvc - ok
20:15:19.0027 3024 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
20:15:19.0027 3024 ProtectedStorage - ok
20:15:19.0048 3024 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
20:15:19.0049 3024 Psched - ok
20:15:19.0071 3024 PxHlpa64 (87b04878a6d59d6c79251dc960c674c1) C:\Windows\system32\Drivers\PxHlpa64.sys
20:15:19.0071 3024 PxHlpa64 - ok
20:15:19.0098 3024 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\drivers\ql2300.sys
20:15:19.0108 3024 ql2300 - ok
20:15:19.0121 3024 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\drivers\ql40xx.sys
20:15:19.0122 3024 ql40xx - ok
20:15:19.0134 3024 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
20:15:19.0136 3024 QWAVE - ok
20:15:19.0149 3024 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
20:15:19.0149 3024 QWAVEdrv - ok
20:15:19.0159 3024 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
20:15:19.0160 3024 RasAcd - ok
20:15:19.0179 3024 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
20:15:19.0180 3024 RasAgileVpn - ok
20:15:19.0192 3024 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
20:15:19.0193 3024 RasAuto - ok
20:15:19.0205 3024 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
20:15:19.0206 3024 Rasl2tp - ok
20:15:19.0223 3024 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
20:15:19.0226 3024 RasMan - ok
20:15:19.0233 3024 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
20:15:19.0234 3024 RasPppoe - ok
20:15:19.0246 3024 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
20:15:19.0247 3024 RasSstp - ok
20:15:19.0260 3024 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
20:15:19.0263 3024 rdbss - ok
20:15:19.0276 3024 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\drivers\rdpbus.sys
20:15:19.0277 3024 rdpbus - ok
20:15:19.0293 3024 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
20:15:19.0293 3024 RDPCDD - ok
20:15:19.0319 3024 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
20:15:19.0319 3024 RDPENCDD - ok
20:15:19.0329 3024 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
20:15:19.0329 3024 RDPREFMP - ok
20:15:19.0357 3024 RDPWD (6d76e6433574b058adcb0c50df834492) C:\Windows\system32\drivers\RDPWD.sys
20:15:19.0359 3024 RDPWD - ok
20:15:19.0376 3024 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
20:15:19.0378 3024 rdyboost - ok
20:15:19.0408 3024 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
20:15:19.0409 3024 RemoteAccess - ok
20:15:19.0430 3024 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
20:15:19.0432 3024 RemoteRegistry - ok
20:15:19.0503 3024 RoxMediaDB12OEM (3c957189b31c34d3ad21967b12b6aed7) C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe
20:15:19.0511 3024 RoxMediaDB12OEM - ok
20:15:19.0548 3024 RoxWatch12 (2b73088cc2ca757a172b425c9398e5bc) C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe
20:15:19.0550 3024 RoxWatch12 - ok
20:15:19.0583 3024 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
20:15:19.0584 3024 RpcEptMapper - ok
20:15:19.0604 3024 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
20:15:19.0605 3024 RpcLocator - ok
20:15:19.0622 3024 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
20:15:19.0624 3024 RpcSs - ok
20:15:19.0640 3024 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
20:15:19.0640 3024 rspndr - ok
20:15:19.0677 3024 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
20:15:19.0677 3024 SamSs - ok
20:15:19.0699 3024 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
20:15:19.0700 3024 sbp2port - ok
20:15:19.0792 3024 SBSDWSCService (794d4b48dfb6e999537c7c3947863463) C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
20:15:19.0796 3024 SBSDWSCService - ok
20:15:19.0820 3024 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
20:15:19.0822 3024 SCardSvr - ok
20:15:19.0831 3024 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
20:15:19.0831 3024 scfilter - ok
20:15:19.0857 3024 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
20:15:19.0864 3024 Schedule - ok
20:15:19.0886 3024 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
20:15:19.0887 3024 SCPolicySvc - ok
20:15:19.0900 3024 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
20:15:19.0902 3024 SDRSVC - ok
20:15:19.0943 3024 SeaPort (331e7bde228914574fc9ae6cd520dafa) C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
20:15:19.0945 3024 SeaPort - ok
20:15:19.0968 3024 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
20:15:19.0969 3024 secdrv - ok
20:15:19.0984 3024 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
20:15:19.0985 3024 seclogon - ok
20:15:19.0998 3024 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
20:15:19.0999 3024 SENS - ok
20:15:20.0020 3024 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
20:15:20.0021 3024 SensrSvc - ok
20:15:20.0055 3024 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\drivers\serenum.sys
20:15:20.0056 3024 Serenum - ok
20:15:20.0072 3024 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\drivers\serial.sys
20:15:20.0073 3024 Serial - ok
20:15:20.0088 3024 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\drivers\sermouse.sys
20:15:20.0089 3024 sermouse - ok
20:15:20.0111 3024 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
20:15:20.0113 3024 SessionEnv - ok
20:15:20.0127 3024 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
20:15:20.0127 3024 sffdisk - ok
20:15:20.0137 3024 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
20:15:20.0138 3024 sffp_mmc - ok
20:15:20.0145 3024 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
20:15:20.0146 3024 sffp_sd - ok
20:15:20.0151 3024 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\drivers\sfloppy.sys
20:15:20.0152 3024 sfloppy - ok
20:15:20.0230 3024 SftService (74ec60e20516aaa573be74f31175270f) C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
20:15:20.0239 3024 SftService - ok
20:15:20.0260 3024 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
20:15:20.0263 3024 SharedAccess - ok
20:15:20.0275 3024 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
20:15:20.0279 3024 ShellHWDetection - ok
20:15:20.0292 3024 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\drivers\SiSRaid2.sys
20:15:20.0293 3024 SiSRaid2 - ok
20:15:20.0306 3024 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\drivers\sisraid4.sys
20:15:20.0307 3024 SiSRaid4 - ok
20:15:20.0319 3024 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
20:15:20.0320 3024 Smb - ok
20:15:20.0344 3024 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
20:15:20.0345 3024 SNMPTRAP - ok
20:15:20.0361 3024 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
20:15:20.0361 3024 spldr - ok
20:15:20.0382 3024 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
20:15:20.0386 3024 Spooler - ok
20:15:20.0445 3024 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
20:15:20.0491 3024 sppsvc - ok
20:15:20.0502 3024 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
20:15:20.0503 3024 sppuinotify - ok
20:15:20.0534 3024 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
20:15:20.0537 3024 srv - ok
20:15:20.0552 3024 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
20:15:20.0555 3024 srv2 - ok
20:15:20.0566 3024 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
20:15:20.0568 3024 srvnet - ok
20:15:20.0587 3024 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
20:15:20.0589 3024 SSDPSRV - ok
20:15:20.0598 3024 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
20:15:20.0599 3024 SstpSvc - ok
20:15:20.0612 3024 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\drivers\stexstor.sys
20:15:20.0613 3024 stexstor - ok
20:15:20.0652 3024 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
20:15:20.0656 3024 stisvc - ok
20:15:20.0712 3024 stllssvr (7731f46ec0d687a931cba063e8f90ef0) C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
20:15:20.0713 3024 stllssvr - ok
20:15:20.0737 3024 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\DRIVERS\swenum.sys
20:15:20.0738 3024 swenum - ok
20:15:20.0758 3024 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
20:15:20.0762 3024 swprv - ok
20:15:20.0792 3024 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
20:15:20.0811 3024 SysMain - ok
20:15:20.0823 3024 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
20:15:20.0825 3024 TabletInputService - ok
20:15:20.0987 3024 TabletServiceWacom (b9e475ab1aabb21f278ea74965f918b9) C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe
20:15:21.0080 3024 TabletServiceWacom - ok
20:15:21.0094 3024 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
20:15:21.0097 3024 TapiSrv - ok
20:15:21.0111 3024 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
20:15:21.0112 3024 TBS - ok
20:15:21.0162 3024 Tcpip (fc62769e7bff2896035aeed399108162) C:\Windows\system32\drivers\tcpip.sys
20:15:21.0175 3024 Tcpip - ok
20:15:21.0201 3024 TCPIP6 (fc62769e7bff2896035aeed399108162) C:\Windows\system32\DRIVERS\tcpip.sys
20:15:21.0208 3024 TCPIP6 - ok
20:15:21.0238 3024 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
20:15:21.0239 3024 tcpipreg - ok
20:15:21.0256 3024 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
20:15:21.0256 3024 TDPIPE - ok
20:15:21.0291 3024 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
20:15:21.0291 3024 TDTCP - ok
20:15:21.0322 3024 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
20:15:21.0323 3024 tdx - ok
20:15:21.0337 3024 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\DRIVERS\termdd.sys
20:15:21.0338 3024 TermDD - ok
20:15:21.0356 3024 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
20:15:21.0361 3024 TermService - ok
20:15:21.0369 3024 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
20:15:21.0370 3024 Themes - ok
20:15:21.0396 3024 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
20:15:21.0397 3024 THREADORDER - ok
20:15:21.0494 3024 TouchServiceWacom (b8f4a8affaae521a20e8d2af3f487124) C:\Program Files\Tablet\Wacom\Wacom_TouchService.exe
20:15:21.0497 3024 TouchServiceWacom - ok
20:15:21.0508 3024 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
20:15:21.0509 3024 TrkWks - ok
20:15:21.0546 3024 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
20:15:21.0548 3024 TrustedInstaller - ok
20:15:21.0559 3024 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
20:15:21.0560 3024 tssecsrv - ok
20:15:21.0579 3024 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
20:15:21.0580 3024 TsUsbFlt - ok
20:15:21.0592 3024 TsUsbGD (9cc2ccae8a84820eaecb886d477cbcb8) C:\Windows\system32\drivers\TsUsbGD.sys
20:15:21.0593 3024 TsUsbGD - ok
20:15:21.0622 3024 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
20:15:21.0623 3024 tunnel - ok
20:15:21.0637 3024 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\drivers\uagp35.sys
20:15:21.0638 3024 uagp35 - ok
20:15:21.0650 3024 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
20:15:21.0652 3024 udfs - ok
20:15:21.0677 3024 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
20:15:21.0679 3024 UI0Detect - ok
20:15:21.0695 3024 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
20:15:21.0696 3024 uliagpkx - ok
20:15:21.0717 3024 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\DRIVERS\umbus.sys
20:15:21.0718 3024 umbus - ok
20:15:21.0732 3024 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\drivers\umpass.sys
20:15:21.0732 3024 UmPass - ok
20:15:21.0754 3024 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
20:15:21.0757 3024 upnphost - ok
20:15:21.0796 3024 USBAAPL64 (aa33fc47ed58c34e6e9261e4f850b7eb) C:\Windows\system32\Drivers\usbaapl64.sys
20:15:21.0796 3024 USBAAPL64 - ok
20:15:21.0831 3024 usbaudio (82e8f44688e6fac57b5b7c6fc7adbc2a) C:\Windows\system32\drivers\usbaudio.sys
20:15:21.0832 3024 usbaudio - ok
20:15:21.0865 3024 usbccgp (19ad7990c0b67e48dac5b26f99628223) C:\Windows\system32\DRIVERS\usbccgp.sys
20:15:21.0866 3024 usbccgp - ok
20:15:21.0878 3024 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
20:15:21.0879 3024 usbcir - ok
20:15:21.0895 3024 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\drivers\usbehci.sys
20:15:21.0896 3024 usbehci - ok
20:15:21.0925 3024 usbhub (8b892002d7b79312821169a14317ab86) C:\Windows\system32\DRIVERS\usbhub.sys
20:15:21.0928 3024 usbhub - ok
20:15:21.0940 3024 usbohci (58e546bbaf87664fc57e0f6081e4f609) C:\Windows\system32\drivers\usbohci.sys
20:15:21.0941 3024 usbohci - ok
20:15:21.0962 3024 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
20:15:21.0963 3024 usbprint - ok
20:15:21.0976 3024 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
20:15:21.0977 3024 usbscan - ok
20:15:22.0014 3024 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
20:15:22.0015 3024 USBSTOR - ok
20:15:22.0035 3024 usbuhci (81fb2216d3a60d1284455d511797db3d) C:\Windows\system32\drivers\usbuhci.sys
20:15:22.0036 3024 usbuhci - ok
20:15:22.0054 3024 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\Windows\system32\Drivers\usbvideo.sys
20:15:22.0056 3024 usbvideo - ok
20:15:22.0066 3024 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
20:15:22.0067 3024 UxSms - ok
20:15:22.0101 3024 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
20:15:22.0102 3024 VaultSvc - ok
20:15:22.0125 3024 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
20:15:22.0125 3024 vdrvroot - ok
20:15:22.0152 3024 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
20:15:22.0156 3024 vds - ok
20:15:22.0173 3024 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
20:15:22.0179 3024 vga - ok
20:15:22.0194 3024 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
20:15:22.0194 3024 VgaSave - ok
20:15:22.0210 3024 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
20:15:22.0212 3024 vhdmp - ok
20:15:22.0231 3024 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
20:15:22.0232 3024 viaide - ok
20:15:22.0245 3024 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
20:15:22.0246 3024 volmgr - ok
20:15:22.0270 3024 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
20:15:22.0273 3024 volmgrx - ok
20:15:22.0284 3024 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
20:15:22.0286 3024 volsnap - ok
20:15:22.0292 3024 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\drivers\vsmraid.sys
20:15:22.0294 3024 vsmraid - ok
20:15:22.0327 3024 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
20:15:22.0342 3024 VSS - ok
20:15:22.0361 3024 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
20:15:22.0361 3024 vwifibus - ok
20:15:22.0390 3024 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
20:15:22.0391 3024 vwififlt - ok
20:15:22.0409 3024 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
20:15:22.0412 3024 W32Time - ok
20:15:22.0453 3024 wacmoumonitor (fe75777289278a4941fe6139e82b3bd9) C:\Windows\system32\DRIVERS\wacmoumonitor.sys
20:15:22.0454 3024 wacmoumonitor - ok
20:15:22.0494 3024 wacommousefilter (e04d43c7d1641e95d35cae6086c7e350) C:\Windows\system32\DRIVERS\wacommousefilter.sys
20:15:22.0495 3024 wacommousefilter - ok
20:15:22.0508 3024 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\drivers\wacompen.sys
20:15:22.0508 3024 WacomPen - ok
20:15:22.0546 3024 wacomvhid (ec1ceb237e365330c1fcfc4876aa0ac0) C:\Windows\system32\DRIVERS\wacomvhid.sys
20:15:22.0547 3024 wacomvhid - ok
20:15:22.0563 3024 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
20:15:22.0564 3024 WANARP - ok
20:15:22.0567 3024 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
20:15:22.0567 3024 Wanarpv6 - ok
20:15:22.0612 3024 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
20:15:22.0620 3024 WatAdminSvc - ok
20:15:22.0651 3024 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
20:15:22.0661 3024 wbengine - ok
20:15:22.0672 3024 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
20:15:22.0674 3024 WbioSrvc - ok
20:15:22.0689 3024 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
20:15:22.0692 3024 wcncsvc - ok
20:15:22.0710 3024 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
20:15:22.0711 3024 WcsPlugInService - ok
20:15:22.0717 3024 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\drivers\wd.sys
20:15:22.0717 3024 Wd - ok
20:15:22.0757 3024 WDC_SAM (a3d04ebf5227886029b4532f20d026f7) C:\Windows\system32\DRIVERS\wdcsam64.sys
20:15:22.0757 3024 WDC_SAM - ok
20:15:22.0785 3024 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
20:15:22.0789 3024 Wdf01000 - ok
20:15:22.0805 3024 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
20:15:22.0806 3024 WdiServiceHost - ok
20:15:22.0808 3024 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
20:15:22.0809 3024 WdiSystemHost - ok
20:15:22.0823 3024 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
20:15:22.0826 3024 WebClient - ok
20:15:22.0843 3024 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
20:15:22.0845 3024 Wecsvc - ok
20:15:22.0858 3024 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
20:15:22.0860 3024 wercplsupport - ok
20:15:22.0880 3024 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
20:15:22.0881 3024 WerSvc - ok
20:15:22.0893 3024 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
20:15:22.0893 3024 WfpLwf - ok
20:15:22.0920 3024 WimFltr (b14ef15bd757fa488f9c970eee9c0d35) C:\Windows\system32\DRIVERS\wimfltr.sys
20:15:22.0921 3024 WimFltr - ok
20:15:22.0932 3024 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
20:15:22.0933 3024 WIMMount - ok
20:15:22.0949 3024 WinDefend - ok
20:15:22.0953 3024 WinHttpAutoProxySvc - ok
20:15:22.0999 3024 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
20:15:23.0001 3024 Winmgmt - ok
20:15:23.0035 3024 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
20:15:23.0055 3024 WinRM - ok
20:15:23.0096 3024 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
20:15:23.0097 3024 WinUsb - ok
20:15:23.0121 3024 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
20:15:23.0128 3024 Wlansvc - ok
20:15:23.0171 3024 wlcrasvc (06c8fa1cf39de6a735b54d906ba791c6) C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
20:15:23.0172 3024 wlcrasvc - ok
20:15:23.0226 3024 wlidsvc (7e47c328fc4768cb8beafbcfafa70362) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
20:15:23.0259 3024 wlidsvc - ok
20:15:23.0279 3024 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
20:15:23.0280 3024 WmiAcpi - ok
20:15:23.0323 3024 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
20:15:23.0325 3024 wmiApSrv - ok
20:15:23.0359 3024 WMPNetworkSvc - ok
20:15:23.0383 3024 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
20:15:23.0384 3024 WPCSvc - ok
20:15:23.0399 3024 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
20:15:23.0401 3024 WPDBusEnum - ok
20:15:23.0414 3024 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
20:15:23.0415 3024 ws2ifsl - ok
20:15:23.0428 3024 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\System32\wscsvc.dll
20:15:23.0429 3024 wscsvc - ok
20:15:23.0434 3024 WSearch - ok
20:15:23.0478 3024 wuauserv (9df12edbc698b0bc353b3ef84861e430) C:\Windows\system32\wuaueng.dll
20:15:23.0509 3024 wuauserv - ok
20:15:23.0541 3024 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
20:15:23.0542 3024 WudfPf - ok
20:15:23.0559 3024 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
20:15:23.0561 3024 WUDFRd - ok
20:15:23.0574 3024 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
20:15:23.0575 3024 wudfsvc - ok
20:15:23.0582 3024 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
20:15:23.0585 3024 WwanSvc - ok
20:15:23.0596 3024 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0
20:15:23.0653 3024 \Device\Harddisk0\DR0 - ok
20:15:23.0654 3024 Boot (0x1200) (b6c12378244a371b58b118215441c55d) \Device\Harddisk0\DR0\Partition0
20:15:23.0655 3024 \Device\Harddisk0\DR0\Partition0 - ok
20:15:23.0664 3024 Boot (0x1200) (bd7597085b5ee9fd02e2c74a10b729b4) \Device\Harddisk0\DR0\Partition1
20:15:23.0664 3024 \Device\Harddisk0\DR0\Partition1 - ok
20:15:23.0664 3024 ============================================================
20:15:23.0664 3024 Scan finished
20:15:23.0664 3024 ============================================================
20:15:23.0668 0420 Detected object count: 0
20:15:23.0668 0420 Actual detected object count: 0

#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,344 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:02:23 PM

Posted 20 April 2012 - 08:33 PM

You're welcome! That was good.

Lets be sure we misss nothing.

I'd like us to scan your machine with ESET OnlineScan
  • Hold down Control and click on the following link to open ESET OnlineScan in a new window.
    ESET OnlineScan
  • Click the Posted Image button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on Posted Image to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the Posted Image icon on your desktop.
  • Check Posted Image
  • Click the Posted Image button.
  • Accept any security warnings from your browser.
  • Under scan settings, check Posted Image and check Remove found threats
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, push Posted Image
  • Push Posted Image, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Push the Posted Image button.
  • Push Posted Image


NOTE: In some instances if no malware is found there will be no log produced.


A system check//
Please download MiniToolBox, save it to your desktop and run it.

Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.

Note: When using "Reset FF Proxy Settings" option Firefox should be closed.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#5 dkittl20

dkittl20
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:01:23 PM

Posted 21 April 2012 - 06:06 PM

Great,
I appreciate it

C:\Program Files (x86)\Dell DataSafe Local Backup\hstart.exe a variant of Win32/HiddenStart.A application cleaned by deleting - quarantined
C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\hstart.exe a variant of Win32/HiddenStart.A application cleaned by deleting - quarantined
C:\ProgramData\scAhtCRONyPyTy.exe a variant of Win32/Kryptik.AELK trojan cleaned by deleting - quarantined
C:\Users\Kittle\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\55\675584f7-12ee0339 multiple threats deleted - quarantined
C:\Users\Kittle\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\63\27eb933f-66d5f22f multiple threats deleted - quarantined

MiniToolBox by Farbar Version: 18-01-2012
Ran by Kittle (administrator) on 21-04-2012 at 18:02:39
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Nerwork
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================



========================= IP Configuration: ================================

Broadcom NetLink ™ Gigabit Ethernet = Local Area Connection (Connected)
DW1501 Wireless-N WLAN Half-Mini Card = Wireless Network Connection (Connected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Kittle-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : DW1501 Wireless-N WLAN Half-Mini Card
Physical Address. . . . . . . . . : 38-59-F9-14-7E-AD
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::384e:8eda:287a:caea%13(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.5(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Friday, April 20, 2012 12:13:25 AM
Lease Expires . . . . . . . . . . : Sunday, April 22, 2012 12:13:27 PM
Default Gateway . . . . . . . . . : 192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 221796857
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-15-B9-11-29-78-2B-CB-AD-8D-81
DNS Servers . . . . . . . . . . . : 192.168.1.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Broadcom NetLink ™ Gigabit Ethernet
Physical Address. . . . . . . . . : 78-2B-CB-AD-8D-81
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::e5e9:762e:7391:36a7%11(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.2(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Friday, April 20, 2012 12:13:03 AM
Lease Expires . . . . . . . . . . : Sunday, April 22, 2012 12:13:02 PM
Default Gateway . . . . . . . . . : 192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 242756555
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-15-B9-11-29-78-2B-CB-AD-8D-81
DNS Servers . . . . . . . . . . . : 192.168.1.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.{62F7BBE2-48AE-46D4-B66D-45C50734D664}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 11:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{DD1CB9E0-01F5-48CE-A21D-4CA6C076BCED}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: UnKnown
Address: 192.168.1.1

Name: google.com
Addresses: 74.125.227.100
74.125.227.101
74.125.227.102
74.125.227.103
74.125.227.104
74.125.227.105
74.125.227.110
74.125.227.96
74.125.227.97
74.125.227.98
74.125.227.99


Pinging google.com [74.125.227.14] with 32 bytes of data:
Reply from 74.125.227.14: bytes=32 time=334ms TTL=56
Reply from 74.125.227.14: bytes=32 time=26ms TTL=56

Ping statistics for 74.125.227.14:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 26ms, Maximum = 334ms, Average = 180ms
Server: UnKnown
Address: 192.168.1.1

Name: yahoo.com
Addresses: 209.191.122.70
72.30.38.140
98.139.183.24


Pinging yahoo.com [209.191.122.70] with 32 bytes of data:
Reply from 209.191.122.70: bytes=32 time=124ms TTL=55
Reply from 209.191.122.70: bytes=32 time=27ms TTL=55

Ping statistics for 209.191.122.70:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 27ms, Maximum = 124ms, Average = 75ms
Server: UnKnown
Address: 192.168.1.1

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Request timed out.
Request timed out.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 0, Lost = 2 (100% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
13...38 59 f9 14 7e ad ......DW1501 Wireless-N WLAN Half-Mini Card
11...78 2b cb ad 8d 81 ......Broadcom NetLink ™ Gigabit Ethernet
1...........................Software Loopback Interface 1
12...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
14...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter
16...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
15...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.2 20
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.5 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.2 276
192.168.1.0 255.255.255.0 On-link 192.168.1.5 281
192.168.1.2 255.255.255.255 On-link 192.168.1.2 276
192.168.1.5 255.255.255.255 On-link 192.168.1.5 281
192.168.1.255 255.255.255.255 On-link 192.168.1.2 276
192.168.1.255 255.255.255.255 On-link 192.168.1.5 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.2 276
224.0.0.0 240.0.0.0 On-link 192.168.1.5 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.2 276
255.255.255.255 255.255.255.255 On-link 192.168.1.5 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
11 276 fe80::/64 On-link
13 281 fe80::/64 On-link
13 281 fe80::384e:8eda:287a:caea/128
On-link
11 276 fe80::e5e9:762e:7391:36a7/128
On-link
1 306 ff00::/8 On-link
11 276 ff00::/8 On-link
13 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 09 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 09 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (04/20/2012 00:14:44 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/19/2012 11:45:37 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/19/2012 11:19:20 PM) (Source: Adobe Version Cue CS3) (User: )
Description: AssetServicesCS3class vcfoundation::base::VCIllegalState: IVCPipeServer already closed
Trace: (null)

Error: (04/19/2012 11:19:20 PM) (Source: Adobe Version Cue CS3) (User: )
Description: AssetServicesCS3class vcfoundation::base::VCIllegalState: IVCPipeServer already closed
Trace: (null)

Error: (04/19/2012 11:19:20 PM) (Source: Adobe Version Cue CS3) (User: )
Description: AssetServicesCS3class vcfoundation::base::VCIllegalState: IVCPipeServer already closed
Trace: (null)

Error: (04/19/2012 11:19:20 PM) (Source: Adobe Version Cue CS3) (User: )
Description: AssetServicesCS3class vcfoundation::base::VCIllegalState: IVCPipeServer already closed
Trace: (null)

Error: (04/19/2012 11:19:20 PM) (Source: Adobe Version Cue CS3) (User: )
Description: AssetServicesCS3class vcfoundation::base::VCIllegalState: IVCPipeServer already closed
Trace: (null)

Error: (04/19/2012 11:19:20 PM) (Source: Adobe Version Cue CS3) (User: )
Description: AssetServicesCS3class vcfoundation::base::VCIllegalState: IVCPipeServer already closed
Trace: (null)

Error: (04/19/2012 11:19:20 PM) (Source: Adobe Version Cue CS3) (User: )
Description: AssetServicesCS3class vcfoundation::base::VCIllegalState: IVCPipeServer already closed
Trace: (null)

Error: (04/19/2012 11:19:20 PM) (Source: Adobe Version Cue CS3) (User: )
Description: AssetServicesCS3class vcfoundation::base::VCIllegalState: IVCPipeServer already closed
Trace: (null)


System errors:
=============
Error: (04/21/2012 06:02:43 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (04/21/2012 06:02:43 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (04/21/2012 06:02:43 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (04/21/2012 06:02:43 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (04/21/2012 06:02:43 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (04/21/2012 06:02:43 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (04/21/2012 06:02:43 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (04/21/2012 06:02:43 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (04/21/2012 06:02:43 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (04/21/2012 06:02:43 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068


Microsoft Office Sessions:
=========================
Error: (04/20/2012 00:14:44 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/19/2012 11:45:37 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (04/19/2012 11:19:20 PM) (Source: Adobe Version Cue CS3)(User: )
Description: AssetServicesCS3class vcfoundation::base::VCIllegalState: IVCPipeServer already closed
Trace: (null)

Error: (04/19/2012 11:19:20 PM) (Source: Adobe Version Cue CS3)(User: )
Description: AssetServicesCS3class vcfoundation::base::VCIllegalState: IVCPipeServer already closed
Trace: (null)

Error: (04/19/2012 11:19:20 PM) (Source: Adobe Version Cue CS3)(User: )
Description: AssetServicesCS3class vcfoundation::base::VCIllegalState: IVCPipeServer already closed
Trace: (null)

Error: (04/19/2012 11:19:20 PM) (Source: Adobe Version Cue CS3)(User: )
Description: AssetServicesCS3class vcfoundation::base::VCIllegalState: IVCPipeServer already closed
Trace: (null)

Error: (04/19/2012 11:19:20 PM) (Source: Adobe Version Cue CS3)(User: )
Description: AssetServicesCS3class vcfoundation::base::VCIllegalState: IVCPipeServer already closed
Trace: (null)

Error: (04/19/2012 11:19:20 PM) (Source: Adobe Version Cue CS3)(User: )
Description: AssetServicesCS3class vcfoundation::base::VCIllegalState: IVCPipeServer already closed
Trace: (null)

Error: (04/19/2012 11:19:20 PM) (Source: Adobe Version Cue CS3)(User: )
Description: AssetServicesCS3class vcfoundation::base::VCIllegalState: IVCPipeServer already closed
Trace: (null)

Error: (04/19/2012 11:19:20 PM) (Source: Adobe Version Cue CS3)(User: )
Description: AssetServicesCS3class vcfoundation::base::VCIllegalState: IVCPipeServer already closed
Trace: (null)


=========================== Installed Programs ============================

64 Bit HP CIO Components Installer (Version: 6.2.1)
Adobe AIR (Version: 3.1.0.4880)
Adobe Anchor Service CS3 (Version: 1.0)
Adobe Asset Services CS3 (Version: 3)
Adobe Bridge 1.0 (Version: 001.000.000)
Adobe Bridge CS3 (Version: 2)
Adobe Bridge Start Meeting (Version: 1.0)
Adobe Camera Raw 4.0 (Version: 4.0)
Adobe CMaps (Version: 1.0)
Adobe Color - Photoshop Specific (Version: 1.0)
Adobe Color Common Settings (Version: 1.0)
Adobe Color EU Extra Settings (Version: 1.0)
Adobe Color JA Extra Settings (Version: 1.0)
Adobe Color NA Recommended Settings (Version: 1.0)
Adobe Common File Installer (Version: 1.00.0000)
Adobe Default Language CS3 (Version: 1.0)
Adobe Device Central CS3 (Version: 1.0)
Adobe Dreamweaver CS3 (Version: 9)
Adobe Dreamweaver CS3 (Version: 9.0)
Adobe ExtendScript Toolkit 2 (Version: 2.0)
Adobe Extension Manager CS3 (Version: 1.8)
Adobe Flash Player 10 Plugin (Version: 10.3.183.7)
Adobe Flash Player 11 ActiveX 64-bit (Version: 11.1.102.63)
Adobe Fonts All (Version: 1.0)
Adobe Help Center 1.0 (Version: 001.000.000)
Adobe Help Viewer CS3 (Version: 1)
Adobe Illustrator CS2 (Version: 12.000.000)
Adobe Linguistics CS3 (Version: 3.0.0)
Adobe PDF Library Files (Version: 8.0)
Adobe Photoshop CS3 (Version: 10)
Adobe Photoshop CS3 (Version: 10.0)
Adobe Reader X (10.1.1) MUI (Version: 10.1.1)
Adobe Setup (Version: 1.0)
Adobe Stock Photos 1.0 (Version: 001.000.000)
Adobe Stock Photos CS3 (Version: 1.5)
Adobe SVG Viewer 3.0 (Version: 3.0)
Adobe Type Support (Version: 1.0)
Adobe Update Manager CS3 (Version: 5.1.0)
Adobe Version Cue CS3 Client (Version: 3)
Adobe WinSoft Linguistics Plugin (Version: 1.0)
Adobe XMP Panels CS3 (Version: 1.0)
AIO_Scan (Version: 130.0.365.000)
Apple Application Support (Version: 2.1.6)
Apple Mobile Device Support (Version: 4.0.0.97)
Apple Software Update (Version: 2.1.3.127)
ATI AVIVO64 Codecs (Version: 11.6.0.10104)
ATI Catalyst Install Manager (Version: 3.0.808.0)
Autodesk SketchBookPro 2010 R1 (Version: 4.10.0000)
Bing Bar (Version: 6.0.2282.0)
Bing Bar Platform (Version: 6.0.2282.0)
Bing Rewards Client Installer (Version: 16.0.345.0)
Bonjour (Version: 3.0.0.10)
BufferChm (Version: 130.0.331.000)
C4200 (Version: 130.0.365.000)
c4200_Help (Version: 82.0.210.000)
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center InstallProxy (Version: 2011.0104.2155.39304)
Catalyst Control Center Localization All (Version: 2011.0104.2155.39304)
ccc-core-static (Version: 2011.0104.2155.39304)
ccc-utility64 (Version: 2011.0104.2155.39304)
CCC Help Chinese Standard (Version: 2011.0104.2154.39304)
CCC Help Chinese Traditional (Version: 2011.0104.2154.39304)
CCC Help Czech (Version: 2011.0104.2154.39304)
CCC Help Danish (Version: 2011.0104.2154.39304)
CCC Help Dutch (Version: 2011.0104.2154.39304)
CCC Help English (Version: 2011.0104.2154.39304)
CCC Help Finnish (Version: 2011.0104.2154.39304)
CCC Help French (Version: 2011.0104.2154.39304)
CCC Help German (Version: 2011.0104.2154.39304)
CCC Help Greek (Version: 2011.0104.2154.39304)
CCC Help Hungarian (Version: 2011.0104.2154.39304)
CCC Help Italian (Version: 2011.0104.2154.39304)
CCC Help Japanese (Version: 2011.0104.2154.39304)
CCC Help Korean (Version: 2011.0104.2154.39304)
CCC Help Norwegian (Version: 2011.0104.2154.39304)
CCC Help Polish (Version: 2011.0104.2154.39304)
CCC Help Portuguese (Version: 2011.0104.2154.39304)
CCC Help Russian (Version: 2011.0104.2154.39304)
CCC Help Spanish (Version: 2011.0104.2154.39304)
CCC Help Swedish (Version: 2011.0104.2154.39304)
CCC Help Thai (Version: 2011.0104.2154.39304)
CCC Help Turkish (Version: 2011.0104.2154.39304)
Consumer In-Home Service Agreement (Version: 2.0.0)
Copy (Version: 130.0.428.000)
Coupon Printer for Windows (Version: 5.0.0.1)
Coupons.com Toolbar (Version: 6.3.8.0)
Cozi (Version: 1.0.6505.38692)
CyberLink PowerDVD 9.5 (Version: 9.5.1.3426)
D3DX10 (Version: 15.4.2368.0902)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
Dell DataSafe Local Backup - Support Software (Version: 9.4.60)
Dell DataSafe Local Backup (Version: 9.4.60)
Dell DataSafe Online (Version: 2.1.19634)
Dell Edoc Viewer (Version: 1.0.0)
Dell Getting Started Guide (Version: 1.00.0000)
Dell MusicStage (Version: 1.5.201.0)
Dell PhotoStage (Version: 1.5.0.65)
Dell Stage (Version: 1.5.201.0)
Dell Support Center (Version: 3.1.5907.16)
Dell VideoStage (Version: 1.2.0.1712)
Destinations (Version: 130.0.0.0)
DeviceDiscovery (Version: 130.0.465.000)
DirectX 9 Runtime (Version: 1.00.0000)
DocProc (Version: 13.0.0.0)
DW WLAN Card (Version: 5.60.48.35)
ESET Online Scanner v3
Garmin Communicator Plugin (Version: 3.0.1)
Garmin USB Drivers (Version: 2.3.0.0)
Garmin WebUpdater (Version: 2.5.4)
GoToMeeting 4.8.0.723 (Version: 4.8.0.723)
GPBaseService2 (Version: 130.0.371.000)
HP Customer Participation Program 13.0 (Version: 13.0)
HP Imaging Device Functions 13.0 (Version: 13.0)
HP Photosmart C4200 All-In-One Driver Software 13.0 Rel. 1 (Version: 13.0)
HP Photosmart Essential 3.5 (Version: 3.5)
HP Smart Web Printing 4.51 (Version: 4.51)
HP Solution Center 13.0 (Version: 13.0)
HP Update (Version: 4.000.011.006)
HPPhotoGadget (Version: 130.0.282.000)
HPPhotoSmartDiscLabelContent1 (Version: 2.04.0000)
HPPhotosmartEssential (Version: 2.04.0000)
HPProductAssistant (Version: 130.0.371.000)
HPSSupply (Version: 130.0.371.000)
Intel® Rapid Storage Technology (Version: 10.0.0.1046)
iTunes (Version: 10.5.3.3)
Java Auto Updater (Version: 2.0.3.1)
Java™ 6 Update 24 (64-bit) (Version: 6.0.240)
Java™ 6 Update 24 (Version: 6.0.240)
Junk Mail filter update (Version: 15.4.3502.0922)
LeapFrog Connect (Version: 3.2.19.13664)
LeapFrog My Pals Plugin (Version: 3.2.19.13664)
LeapFrog Tag Junior Plugin (Version: 3.2.19.13664)
Malwarebytes Anti-Malware version 1.61.0.1400 (Version: 1.61.0.1400)
MarketResearch (Version: 130.0.374.000)
McAfee SecurityCenter (Version: 11.0.654)
Mesh Runtime (Version: 15.4.5722.2)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Default Manager (Version: 2.2.114.0)
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Home and Student 2010 (Version: 14.0.6029.1000)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.6029.1000)
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Single Image 2010 (Version: 14.0.6029.1000)
Microsoft Office Word MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Search Enhancement Pack (Version: 3.0.131.0)
Microsoft Silverlight (Version: 4.1.10111.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable - KB2467175 (Version: 8.0.51011)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.58299)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (Version: 10.0.30319)
Mozilla Firefox 8.0.1 (x86 en-US) (Version: 8.0.1)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Multimedia Card Reader (Version: 1.7.915.93)
OCR Software by I.R.I.S. 13.0 (Version: 13.0)
PDF Settings (Version: 1.0)
PhotoShowExpress (Version: 2.0.063)
PS_AIO_Software_min (Version: 130.0.365.000)
QuickTime (Version: 7.69.80.9)
RBVirtualFolder64Inst (Version: 1.00.0000)
Realtek High Definition Audio Driver (Version: 6.0.1.6141)
Roxio Activation Module (Version: 1.0)
Roxio BackOnTrack (Version: 1.3.3)
Roxio Burn (Version: 1.8)
Roxio Creator Starter (Version: 1.0.439)
Roxio Creator Starter (Version: 12.1.77.0)
Roxio Creator Starter (Version: 5.0.0)
Roxio Express Labeler 3 (Version: 3.2.2)
Roxio File Backup (Version: 1.3.2)
Scan (Version: 13.0.0.0)
Shop for HP Supplies (Version: 13.0)
Shutterfly Express Uploader (Version: 1.1.0)
Shutterfly Express Uploader (Version: 1.1.0.0)
Skype Toolbars (Version: 1.0.4051)
Skype™ 5.5 (Version: 5.5.124)
SmartWebPrinting (Version: 130.0.457.000)
SolutionCenter (Version: 130.0.373.000)
Sonic CinePlayer Decoder Pack (Version: 4.3.0)
Spybot - Search & Destroy (Version: 1.6.2)
Status (Version: 130.0.469.000)
TheBestSpinner
THX TruStudio PC (Version: 1.0)
Toolbox (Version: 130.0.648.000)
Tracker (Version: 2.2.3)
TrayApp (Version: 130.0.422.000)
UnloadSupport (Version: 11.0.0)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2473228) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
Update for Microsoft Excel 2010 (KB2553439) 32-Bit Edition
Update for Microsoft Office 2010 (KB2494150)
Update for Microsoft Office 2010 (KB2553065)
Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553270) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553385) 32-Bit Edition
Update for Microsoft Office 2010 (KB2566458)
Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition
Update for Microsoft Office 2010 (KB2597091) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2553248) 32-Bit Edition
Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition
Use the entry named LeapFrog Connect to uninstall (LeapFrog My Pals Plugin)
Use the entry named LeapFrog Connect to uninstall (LeapFrog Tag Junior Plugin)
Wacom Tablet (Version: 6.2.0w5)
WebReg (Version: 130.0.132.017)
WebTablet FB Plugin (Version: 2.0.0.4)
WebTablet IE Plugin (Version: 1.1.0.12)
WebTablet Netscape Plugin (Version: 1.1.0.10)
Windows Driver Package - Garmin (grmnusb) GARMIN Devices (06/03/2009 2.3.0.0) (Version: 06/03/2009 2.3.0.0)
Windows Driver Package - LeapFrog (FlyUsb) USB (11/05/2008 1.1.1.0) (Version: 11/05/2008 1.1.1.0)
Windows Driver Package - Leapfrog (Leapfrog-USBLAN) Net (09/10/2009 02.03.05.012) (Version: 09/10/2009 02.03.05.012)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3508.1109)
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3508.1109)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
Workspace Desktop

========================= Memory info: ===================================

Percentage of memory in use: 32%
Total physical RAM: 8174.45 MB
Available physical RAM: 5503.95 MB
Total Pagefile: 16347.08 MB
Available Pagefile: 13718.55 MB
Total Virtual: 4095.88 MB
Available Virtual: 3979.14 MB

========================= Partitions: =====================================

1 Drive c: (OS) (Fixed) (Total:918.22 GB) (Free:185.76 GB) NTFS

========================= Users: ========================================

User accounts for \\KITTLE-PC

Administrator Guest Kittle


**** End of log ****

#6 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,344 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:02:23 PM

Posted 22 April 2012 - 01:55 PM

Looks good,how is it running..

Important Note: Your version of Java is out of date. Older versions have vulnerabilities that malicious sites can use to exploit and infect your system.Please follow these steps to remove older version Java components and update:
  • Download the latest version of Java Runtime Environment (JRE) Version 7 and save it to your desktop.
  • Look for "Java Platform, Standard Edition".
  • Click the "Download JRE" button to the right.
  • Read the License Agreement, and then check the box that says: "Accept License Agreement".
  • From the list, select your OS and Platform (32-bit or 64-bit).
  • If a download for an Offline Installation is available, it is recommended to choose that and save the file to your desktop.
  • Close any programs you may have running - especially your web browser.
Go to Posted Image > Control Panel, double-click on Add/Remove Programs or Programs and Features in Vista/Windows 7 and remove all older versions of Java.
  • Check (highlight) any item with Java Runtime Environment (JRE or J2SE) in the name.
  • Click the Remove or Change/Remove button and follow the onscreen instructions for the Java uninstaller.
  • Repeat as many times as necessary to remove each Java versions.
  • Reboot your computer once all Java components are removed.
  • Then from your desktop double-click on jre-7u3-windows-i586.exe (or jre-7u3-windows-x64.exe for 64-bit) to install the newest version.
  • If using Windows 7 or Vista and the installer refuses to launch due to insufficient user permissions, then Run As Administrator.
  • When the Java Setup - Welcome window opens, click the Install > button.
  • If offered to install a Toolbar, just uncheck the box before continuing unless you want it.
  • The McAfee Security Scan Plus tool is installed by default unless you uncheck the McAfee installation box when updating Java.
Note: The Java Quick Starter (JQS.exe) adds a service to improve the initial startup time of Java applets and applications but it's not necessary.
To disable the JQS service if you don't want to use it:
  • Go to Start > Control Panel > Java > Advanced > Miscellaneous and uncheck the box for Java Quick Starter.
  • Click Ok and reboot your computer.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#7 dkittl20

dkittl20
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:01:23 PM

Posted 22 April 2012 - 07:01 PM

Thanks I appreciate it!
My computer seems to be working fine, however all the programs seem to be missing or empty. All my desktop files are gone. Firefox is gone, but Im using it so I know its there.
Any ideas?

#8 dkittl20

dkittl20
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:01:23 PM

Posted 22 April 2012 - 07:25 PM

Ok got my desktop files unhidden. but the programs in the start menu still say "empty"

#9 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,344 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:02:23 PM

Posted 22 April 2012 - 08:26 PM

Good, This will restore the default start menu that came with Windows.

Windows 7 64-bit US English
http://download.bleepingcomputer.com/grinler/fakehdd/win7-x64-sm-reset.exe
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#10 dkittl20

dkittl20
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:01:23 PM

Posted 23 April 2012 - 10:11 PM

Looking good now. Thank you again for your help. You rock!

#11 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,344 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:02:23 PM

Posted 24 April 2012 - 10:41 AM

Thanks and you're welcome!!

If there are no more problems or signs of infection, you should Create a New Restore Point to prevent possible reinfection from an old one. Some of the malware you picked up could have been backed up, renamed and saved in System Restore. Since this is a protected directory your tools cannot access to delete these files, they sometimes can reinfect your system if you accidentally use an old restore point. Setting a new restore point AFTER cleaning your system will help prevent this and enable your computer to "roll-back" to a clean working state.

The easiest and safest way to do this is:
  • Go to Posted Image > Programs > Accessories > System Tools and click "System Restore".
  • Choose the radio button marked "Create a Restore Point" on the first screen then click "Next". Give the R.P. a name, then click "Create". The new point will be stamped with the current date and time. Keep a log of this so you can find it easily should you need to use System Restore.
  • Then use Disk Cleanup to remove all but the most recently created Restore Point.
  • Go to Posted Image > Run... and type: Cleanmgr
  • Click "Ok". Disk Cleanup will scan your files for several minutes, then open.
  • Click the "More Options" tab, then click the "Clean up" button under System Restore.
  • Click Ok. You will be prompted with "Are you sure you want to delete all but the most recent restore point?"
  • Click Yes, then click Ok.
  • Click Yes again when prompted with "Are you sure you want to perform these actions?"
  • Disk Cleanup will remove the files and close automatically.
Vista and Windows 7 users can refer to these links:
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users