Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

SMART HDD


  • This topic is locked This topic is locked
17 replies to this topic

#1 Crystal-PC

Crystal-PC

  • Members
  • 56 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Missouri
  • Local time:12:18 PM

Posted 01 May 2012 - 06:40 PM

MY COMPUTER HAS THE SMART HDD VIRUS AND I FOLLOWED ONE OF THE LINKS ON HOW TO REMOVE IT WHICH WAS THE RKILL I JUST WANTED TO KNOW WHAT DO I DO NEXT

BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,490 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:01:18 PM

Posted 01 May 2012 - 06:49 PM

Hello, did you follow our Removal Guide here Remove Smart HDD .
If so please posr those logs and tell me what issues are left.

After reading how the malware is misleading you ...
You will move to the Automated Removal Instructions

After you completed that, post your scan log here,let me know how things are.
The log is automatically saved and can be viewed by clicking the Logs tab in MBAM.
Copy and paste the contents of that report in your next reply. Be sure to post the complete log to include the top portion which shows MBAM's database version and your operating system.

Also the other tool log.. A log file named TDSSKiller_version_date_time_log.txt (i.e. TDSSKiller.2.4.0.0_27.07.2010_09.o7.26_log.txt) will be created and saved to the root directory (usually Local Disk C:).
Copy and paste the contents of that file in your next reply.



I would alos like to see this.

Please download MiniToolBox, save it to your desktop and run it.

Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.

Note: When using "Reset FF Proxy Settings" option Firefox should be closed.

Edited by boopme, 01 May 2012 - 07:40 PM.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 Crystal-PC

Crystal-PC
  • Topic Starter

  • Members
  • 56 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Missouri
  • Local time:12:18 PM

Posted 01 May 2012 - 07:17 PM

This log file is located at C:\rkill.log.
Please post this only if requested to by the person helping you.
Otherwise you can close this log when you wish.

Rkill was run on 05/01/2012 at 19:03:12.
Operating System: Windows 7 Home Premium


Processes terminated by Rkill or while it was running:

C:\Program Files (x86)\Dell Support Center\gs_agent\dsc.exe
C:\ProgramData\LGMOBILEAX\B2C_Client\B2CNotiAgent.exe
C:\ProgramData\KnRMgeWkMD.exe
C:\ProgramData\5e3yFFDs.exe


Rkill completed on 05/01/2012 at 19:06:19.

#4 Crystal-PC

Crystal-PC
  • Topic Starter

  • Members
  • 56 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Missouri
  • Local time:12:18 PM

Posted 01 May 2012 - 07:19 PM

19:14:30.0872 2840 TDSS rootkit removing tool 2.7.33.0 Apr 24 2012 18:43:43
19:14:31.0278 2840 ============================================================
19:14:31.0278 2840 Current date / time: 2012/05/01 19:14:31.0278
19:14:31.0278 2840 SystemInfo:
19:14:31.0278 2840
19:14:31.0278 2840 OS Version: 6.1.7601 ServicePack: 1.0
19:14:31.0278 2840 Product type: Workstation
19:14:31.0278 2840 ComputerName: CRYSTAL-PC
19:14:31.0278 2840 UserName: Crystal
19:14:31.0278 2840 Windows directory: C:\Windows
19:14:31.0278 2840 System windows directory: C:\Windows
19:14:31.0278 2840 Running under WOW64
19:14:31.0278 2840 Processor architecture: Intel x64
19:14:31.0278 2840 Number of processors: 2
19:14:31.0278 2840 Page size: 0x1000
19:14:31.0278 2840 Boot type: Normal boot
19:14:31.0278 2840 ============================================================
19:14:32.0698 2840 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
19:14:32.0713 2840 ============================================================
19:14:32.0713 2840 \Device\Harddisk0\DR0:
19:14:32.0713 2840 MBR partitions:
19:14:32.0713 2840 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
19:14:32.0713 2840 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x253FB800
19:14:32.0713 2840 ============================================================
19:14:32.0760 2840 C: <-> \Device\Harddisk0\DR0\Partition1
19:14:32.0760 2840 ============================================================
19:14:32.0760 2840 Initialize success
19:14:32.0760 2840 ============================================================
19:14:34.0086 4464 ============================================================
19:14:34.0086 4464 Scan started
19:14:34.0086 4464 Mode: Manual;
19:14:34.0086 4464 ============================================================
19:14:37.0783 4464 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
19:14:37.0799 4464 1394ohci - ok
19:14:37.0861 4464 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
19:14:37.0861 4464 ACPI - ok
19:14:37.0892 4464 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
19:14:37.0892 4464 AcpiPmi - ok
19:14:38.0126 4464 AdobeFlashPlayerUpdateSvc (459ac130c6ab892b1cd5d7544626efc5) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
19:14:38.0142 4464 AdobeFlashPlayerUpdateSvc - ok
19:14:38.0298 4464 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
19:14:38.0298 4464 adp94xx - ok
19:14:38.0376 4464 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
19:14:38.0376 4464 adpahci - ok
19:14:38.0392 4464 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
19:14:38.0392 4464 adpu320 - ok
19:14:38.0470 4464 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
19:14:38.0470 4464 AeLookupSvc - ok
19:14:38.0579 4464 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
19:14:38.0610 4464 AFD - ok
19:14:38.0672 4464 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
19:14:38.0672 4464 agp440 - ok
19:14:38.0719 4464 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
19:14:38.0719 4464 ALG - ok
19:14:38.0735 4464 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
19:14:38.0735 4464 aliide - ok
19:14:38.0813 4464 AMD External Events Utility (d696f317bd465a602566f8e1dcce15f7) C:\Windows\system32\atiesrxx.exe
19:14:38.0828 4464 AMD External Events Utility - ok
19:14:38.0891 4464 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
19:14:38.0891 4464 amdide - ok
19:14:38.0938 4464 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
19:14:38.0938 4464 AmdK8 - ok
19:14:38.0953 4464 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
19:14:38.0953 4464 AmdPPM - ok
19:14:38.0984 4464 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
19:14:38.0984 4464 amdsata - ok
19:14:39.0047 4464 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
19:14:39.0062 4464 amdsbs - ok
19:14:39.0078 4464 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
19:14:39.0078 4464 amdxata - ok
19:14:39.0172 4464 Andbus (60257f0a7ed9781719a6b7b6f661a5b6) C:\Windows\system32\DRIVERS\lgandbus64.sys
19:14:39.0187 4464 Andbus - ok
19:14:39.0187 4464 androidusb (27466e519371c6fc3a39b1f7b8a297fc) C:\Windows\system32\Drivers\androidusb.sys
19:14:39.0187 4464 androidusb - ok
19:14:39.0343 4464 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
19:14:39.0359 4464 AppID - ok
19:14:39.0390 4464 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
19:14:39.0390 4464 AppIDSvc - ok
19:14:39.0437 4464 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
19:14:39.0437 4464 Appinfo - ok
19:14:39.0484 4464 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
19:14:39.0484 4464 arc - ok
19:14:39.0515 4464 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
19:14:39.0515 4464 arcsas - ok
19:14:39.0780 4464 aspnet_state (9217d874131ae6ff8f642f124f00a555) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
19:14:39.0811 4464 aspnet_state - ok
19:14:39.0874 4464 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
19:14:39.0874 4464 AsyncMac - ok
19:14:39.0889 4464 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
19:14:39.0889 4464 atapi - ok
19:14:40.0560 4464 atikmdag (52bd95caa9cae8977fe043e9ad6d2d0e) C:\Windows\system32\DRIVERS\atikmdag.sys
19:14:40.0700 4464 atikmdag - ok
19:14:40.0919 4464 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
19:14:40.0950 4464 AudioEndpointBuilder - ok
19:14:40.0966 4464 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
19:14:40.0981 4464 AudioSrv - ok
19:14:41.0012 4464 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
19:14:41.0012 4464 AxInstSV - ok
19:14:41.0153 4464 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
19:14:41.0168 4464 b06bdrv - ok
19:14:41.0387 4464 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
19:14:41.0402 4464 b57nd60a - ok
19:14:41.0668 4464 BBSvc (a2494901e7226b356b8c1005c45f1c5f) C:\Program Files (x86)\Microsoft\BingBar\7.1.361.0\BBSvc.exe
19:14:41.0683 4464 BBSvc - ok
19:14:41.0761 4464 BBUpdate (63b1cbbae4790b5bac98f01bf9449722) C:\Program Files (x86)\Microsoft\BingBar\7.1.361.0\SeaPort.exe
19:14:41.0761 4464 BBUpdate - ok
19:14:41.0792 4464 BCM42RLY (5c0f919666954885d7760dffe4b29a25) C:\Windows\system32\drivers\BCM42RLY.sys
19:14:41.0792 4464 BCM42RLY - ok
19:14:42.0058 4464 BCM43XX (bab887a2b2786310a966881f074f4a99) C:\Windows\system32\DRIVERS\bcmwl664.sys
19:14:42.0073 4464 BCM43XX - ok
19:14:42.0510 4464 BcmVWL (d98f22c21d2969dad4f1faad8cd4faac) C:\Windows\system32\DRIVERS\bcmvwl64.sys
19:14:42.0510 4464 BcmVWL - ok
19:14:42.0541 4464 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
19:14:42.0557 4464 BDESVC - ok
19:14:42.0619 4464 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
19:14:42.0619 4464 Beep - ok
19:14:42.0962 4464 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\System32\qmgr.dll
19:14:42.0978 4464 BITS - ok
19:14:43.0025 4464 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
19:14:43.0025 4464 blbdrive - ok
19:14:43.0087 4464 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
19:14:43.0087 4464 bowser - ok
19:14:43.0087 4464 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
19:14:43.0087 4464 BrFiltLo - ok
19:14:43.0118 4464 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
19:14:43.0118 4464 BrFiltUp - ok
19:14:43.0165 4464 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
19:14:43.0165 4464 Browser - ok
19:14:43.0181 4464 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
19:14:43.0196 4464 Brserid - ok
19:14:43.0196 4464 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
19:14:43.0196 4464 BrSerWdm - ok
19:14:43.0196 4464 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
19:14:43.0196 4464 BrUsbMdm - ok
19:14:43.0212 4464 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
19:14:43.0212 4464 BrUsbSer - ok
19:14:43.0212 4464 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
19:14:43.0228 4464 BTHMODEM - ok
19:14:43.0306 4464 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
19:14:43.0306 4464 bthserv - ok
19:14:43.0384 4464 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
19:14:43.0384 4464 cdfs - ok
19:14:43.0477 4464 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\drivers\cdrom.sys
19:14:43.0477 4464 cdrom - ok
19:14:43.0540 4464 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
19:14:43.0555 4464 CertPropSvc - ok
19:14:43.0571 4464 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
19:14:43.0571 4464 circlass - ok
19:14:43.0649 4464 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
19:14:43.0649 4464 CLFS - ok
19:14:43.0758 4464 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:14:43.0758 4464 clr_optimization_v2.0.50727_32 - ok
19:14:43.0789 4464 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
19:14:43.0789 4464 clr_optimization_v2.0.50727_64 - ok
19:14:44.0320 4464 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:14:44.0366 4464 clr_optimization_v4.0.30319_32 - ok
19:14:44.0554 4464 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
19:14:44.0616 4464 clr_optimization_v4.0.30319_64 - ok
19:14:44.0647 4464 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
19:14:44.0647 4464 CmBatt - ok
19:14:44.0678 4464 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
19:14:44.0678 4464 cmdide - ok
19:14:44.0756 4464 CNG (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys
19:14:44.0756 4464 CNG - ok
19:14:44.0772 4464 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
19:14:44.0772 4464 Compbatt - ok
19:14:44.0788 4464 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
19:14:44.0788 4464 CompositeBus - ok
19:14:44.0803 4464 COMSysApp - ok
19:14:44.0803 4464 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
19:14:44.0803 4464 crcdisk - ok
19:14:44.0850 4464 CryptSvc (15597883fbe9b056f276ada3ad87d9af) C:\Windows\system32\cryptsvc.dll
19:14:44.0866 4464 CryptSvc - ok
19:14:44.0897 4464 CtClsFlt (916f311a84b4d528694fd4d44b5eab1b) C:\Windows\system32\DRIVERS\CtClsFlt.sys
19:14:44.0912 4464 CtClsFlt - ok
19:14:44.0975 4464 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
19:14:44.0990 4464 DcomLaunch - ok
19:14:45.0037 4464 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
19:14:45.0053 4464 defragsvc - ok
19:14:45.0100 4464 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
19:14:45.0100 4464 DfsC - ok
19:14:45.0256 4464 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
19:14:45.0256 4464 Dhcp - ok
19:14:45.0349 4464 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
19:14:45.0349 4464 discache - ok
19:14:45.0412 4464 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
19:14:45.0427 4464 Disk - ok
19:14:45.0490 4464 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
19:14:45.0536 4464 Dnscache - ok
19:14:45.0614 4464 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
19:14:45.0630 4464 dot3svc - ok
19:14:45.0677 4464 Dot4 (b42ed0320c6e41102fde0005154849bb) C:\Windows\system32\DRIVERS\Dot4.sys
19:14:45.0677 4464 Dot4 - ok
19:14:45.0708 4464 Dot4Print (e9f5969233c5d89f3c35e3a66a52a361) C:\Windows\system32\drivers\Dot4Prt.sys
19:14:45.0708 4464 Dot4Print - ok
19:14:45.0708 4464 dot4usb (fd05a02b0370bc3000f402e543ca5814) C:\Windows\system32\DRIVERS\dot4usb.sys
19:14:45.0708 4464 dot4usb - ok
19:14:45.0739 4464 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
19:14:45.0755 4464 DPS - ok
19:14:45.0755 4464 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
19:14:45.0755 4464 drmkaud - ok
19:14:45.0880 4464 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
19:14:45.0880 4464 DXGKrnl - ok
19:14:45.0926 4464 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
19:14:45.0926 4464 EapHost - ok
19:14:46.0441 4464 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
19:14:46.0488 4464 ebdrv - ok
19:14:46.0628 4464 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
19:14:46.0628 4464 EFS - ok
19:14:46.0800 4464 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
19:14:46.0847 4464 ehRecvr - ok
19:14:46.0894 4464 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
19:14:46.0909 4464 ehSched - ok
19:14:47.0050 4464 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
19:14:47.0065 4464 elxstor - ok
19:14:47.0081 4464 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
19:14:47.0081 4464 ErrDev - ok
19:14:47.0159 4464 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
19:14:47.0190 4464 EventSystem - ok
19:14:47.0268 4464 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
19:14:47.0299 4464 exfat - ok
19:14:47.0346 4464 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
19:14:47.0346 4464 fastfat - ok
19:14:47.0455 4464 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
19:14:47.0486 4464 Fax - ok
19:14:47.0502 4464 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
19:14:47.0502 4464 fdc - ok
19:14:47.0533 4464 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
19:14:47.0533 4464 fdPHost - ok
19:14:47.0564 4464 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
19:14:47.0564 4464 FDResPub - ok
19:14:47.0596 4464 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
19:14:47.0596 4464 FileInfo - ok
19:14:47.0596 4464 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
19:14:47.0611 4464 Filetrace - ok
19:14:47.0611 4464 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
19:14:47.0611 4464 flpydisk - ok
19:14:47.0689 4464 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
19:14:47.0689 4464 FltMgr - ok
19:14:47.0845 4464 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
19:14:47.0861 4464 FontCache - ok
19:14:48.0032 4464 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
19:14:48.0032 4464 FontCache3.0.0.0 - ok
19:14:48.0126 4464 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
19:14:48.0126 4464 FsDepends - ok
19:14:48.0313 4464 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
19:14:48.0313 4464 Fs_Rec - ok
19:14:48.0516 4464 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
19:14:48.0516 4464 fvevol - ok
19:14:48.0563 4464 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
19:14:48.0563 4464 gagp30kx - ok
19:14:48.0672 4464 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
19:14:48.0703 4464 gpsvc - ok
19:14:48.0875 4464 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
19:14:48.0875 4464 gupdate - ok
19:14:48.0890 4464 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
19:14:48.0906 4464 gupdatem - ok
19:14:48.0968 4464 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
19:14:48.0968 4464 hcw85cir - ok
19:14:49.0031 4464 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
19:14:49.0031 4464 HdAudAddService - ok
19:14:49.0078 4464 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
19:14:49.0078 4464 HDAudBus - ok
19:14:49.0093 4464 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
19:14:49.0093 4464 HidBatt - ok
19:14:49.0109 4464 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
19:14:49.0109 4464 HidBth - ok
19:14:49.0140 4464 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
19:14:49.0140 4464 HidIr - ok
19:14:49.0156 4464 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
19:14:49.0156 4464 hidserv - ok
19:14:49.0187 4464 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\drivers\hidusb.sys
19:14:49.0187 4464 HidUsb - ok
19:14:49.0218 4464 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
19:14:49.0218 4464 hkmsvc - ok
19:14:49.0249 4464 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
19:14:49.0312 4464 HomeGroupListener - ok
19:14:49.0358 4464 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
19:14:49.0374 4464 HomeGroupProvider - ok
19:14:49.0608 4464 hpqcxs08 (5da42d24712e00728cea2342a65009b2) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
19:14:49.0624 4464 hpqcxs08 - ok
19:14:49.0655 4464 hpqddsvc (d86a39bf100069444d026d22d9a6e555) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
19:14:49.0670 4464 hpqddsvc - ok
19:14:49.0702 4464 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
19:14:49.0702 4464 HpSAMD - ok
19:14:49.0889 4464 HPSLPSVC (f37882f128efacefe353e0bae2766909) C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL
19:14:49.0904 4464 HPSLPSVC - ok
19:14:49.0920 4464 htcnprot (b8b1b284362e1d8135112573395d5da5) C:\Windows\system32\DRIVERS\htcnprot.sys
19:14:49.0936 4464 htcnprot - ok
19:14:50.0045 4464 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
19:14:50.0060 4464 HTTP - ok
19:14:50.0092 4464 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
19:14:50.0092 4464 hwpolicy - ok
19:14:50.0154 4464 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
19:14:50.0154 4464 i8042prt - ok
19:14:50.0232 4464 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
19:14:50.0232 4464 iaStorV - ok
19:14:50.0435 4464 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
19:14:50.0466 4464 idsvc - ok
19:14:50.0466 4464 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
19:14:50.0466 4464 iirsp - ok
19:14:50.0606 4464 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
19:14:50.0669 4464 IKEEXT - ok
19:14:50.0684 4464 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
19:14:50.0684 4464 intelide - ok
19:14:50.0731 4464 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
19:14:50.0747 4464 intelppm - ok
19:14:50.0794 4464 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
19:14:50.0794 4464 IPBusEnum - ok
19:14:50.0840 4464 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
19:14:50.0856 4464 IpFilterDriver - ok
19:14:50.0872 4464 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
19:14:50.0872 4464 IPMIDRV - ok
19:14:50.0934 4464 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
19:14:50.0950 4464 IPNAT - ok
19:14:50.0996 4464 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
19:14:50.0996 4464 IRENUM - ok
19:14:51.0012 4464 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
19:14:51.0012 4464 isapnp - ok
19:14:51.0074 4464 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
19:14:51.0090 4464 iScsiPrt - ok
19:14:51.0106 4464 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\drivers\kbdclass.sys
19:14:51.0106 4464 kbdclass - ok
19:14:51.0152 4464 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\drivers\kbdhid.sys
19:14:51.0152 4464 kbdhid - ok
19:14:51.0184 4464 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
19:14:51.0184 4464 KeyIso - ok
19:14:51.0215 4464 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys
19:14:51.0230 4464 KSecDD - ok
19:14:51.0277 4464 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys
19:14:51.0277 4464 KSecPkg - ok
19:14:51.0308 4464 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
19:14:51.0308 4464 ksthunk - ok
19:14:51.0386 4464 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
19:14:51.0386 4464 KtmRm - ok
19:14:51.0480 4464 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\system32\srvsvc.dll
19:14:51.0480 4464 LanmanServer - ok
19:14:51.0558 4464 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
19:14:51.0574 4464 LanmanWorkstation - ok
19:14:51.0652 4464 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
19:14:51.0652 4464 lltdio - ok
19:14:51.0730 4464 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
19:14:51.0745 4464 lltdsvc - ok
19:14:51.0776 4464 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
19:14:51.0776 4464 lmhosts - ok
19:14:51.0854 4464 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
19:14:51.0870 4464 LSI_FC - ok
19:14:51.0886 4464 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
19:14:51.0886 4464 LSI_SAS - ok
19:14:51.0901 4464 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
19:14:51.0901 4464 LSI_SAS2 - ok
19:14:51.0917 4464 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
19:14:51.0917 4464 LSI_SCSI - ok
19:14:51.0995 4464 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
19:14:52.0010 4464 luafv - ok
19:14:52.0073 4464 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
19:14:52.0073 4464 Mcx2Svc - ok
19:14:52.0104 4464 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
19:14:52.0104 4464 megasas - ok
19:14:52.0135 4464 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
19:14:52.0135 4464 MegaSR - ok
19:14:52.0166 4464 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
19:14:52.0182 4464 MMCSS - ok
19:14:52.0213 4464 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
19:14:52.0213 4464 Modem - ok
19:14:52.0244 4464 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
19:14:52.0244 4464 monitor - ok
19:14:52.0260 4464 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\drivers\mouclass.sys
19:14:52.0260 4464 mouclass - ok
19:14:52.0276 4464 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
19:14:52.0276 4464 mouhid - ok
19:14:52.0307 4464 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
19:14:52.0307 4464 mountmgr - ok
19:14:52.0322 4464 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
19:14:52.0338 4464 mpio - ok
19:14:52.0369 4464 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
19:14:52.0369 4464 mpsdrv - ok
19:14:52.0416 4464 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
19:14:52.0432 4464 MRxDAV - ok
19:14:52.0494 4464 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
19:14:52.0494 4464 mrxsmb - ok
19:14:52.0541 4464 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
19:14:52.0556 4464 mrxsmb10 - ok
19:14:52.0588 4464 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
19:14:52.0603 4464 mrxsmb20 - ok
19:14:52.0666 4464 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
19:14:52.0666 4464 msahci - ok
19:14:52.0681 4464 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
19:14:52.0681 4464 msdsm - ok
19:14:52.0759 4464 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
19:14:52.0775 4464 MSDTC - ok
19:14:52.0806 4464 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
19:14:52.0822 4464 Msfs - ok
19:14:52.0837 4464 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
19:14:52.0837 4464 mshidkmdf - ok
19:14:52.0884 4464 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
19:14:52.0884 4464 msisadrv - ok
19:14:52.0962 4464 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
19:14:52.0993 4464 MSiSCSI - ok
19:14:52.0993 4464 msiserver - ok
19:14:53.0024 4464 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
19:14:53.0024 4464 MSKSSRV - ok
19:14:53.0071 4464 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
19:14:53.0071 4464 MSPCLOCK - ok
19:14:53.0102 4464 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
19:14:53.0102 4464 MSPQM - ok
19:14:53.0165 4464 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
19:14:53.0180 4464 MsRPC - ok
19:14:53.0212 4464 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
19:14:53.0212 4464 mssmbios - ok
19:14:53.0227 4464 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
19:14:53.0243 4464 MSTEE - ok
19:14:53.0243 4464 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
19:14:53.0243 4464 MTConfig - ok
19:14:53.0258 4464 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
19:14:53.0258 4464 Mup - ok
19:14:53.0352 4464 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
19:14:53.0368 4464 napagent - ok
19:14:53.0461 4464 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
19:14:53.0477 4464 NativeWifiP - ok
19:14:53.0633 4464 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
19:14:53.0648 4464 NDIS - ok
19:14:53.0680 4464 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
19:14:53.0680 4464 NdisCap - ok
19:14:53.0711 4464 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
19:14:53.0711 4464 NdisTapi - ok
19:14:53.0773 4464 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
19:14:53.0789 4464 Ndisuio - ok
19:14:53.0804 4464 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
19:14:53.0804 4464 NdisWan - ok
19:14:53.0836 4464 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
19:14:53.0851 4464 NDProxy - ok
19:14:53.0914 4464 Net Driver HPZ12 (2334dc48997ba203b794df3ee70521db) C:\Windows\system32\HPZinw12.dll
19:14:53.0914 4464 Net Driver HPZ12 - ok
19:14:53.0992 4464 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
19:14:53.0992 4464 NetBIOS - ok
19:14:54.0054 4464 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
19:14:54.0054 4464 NetBT - ok
19:14:54.0101 4464 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
19:14:54.0101 4464 Netlogon - ok
19:14:54.0194 4464 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
19:14:54.0210 4464 Netman - ok
19:14:54.0491 4464 NetMsmqActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:14:54.0553 4464 NetMsmqActivator - ok
19:14:54.0569 4464 NetPipeActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:14:54.0584 4464 NetPipeActivator - ok
19:14:54.0662 4464 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
19:14:54.0694 4464 netprofm - ok
19:14:54.0725 4464 NetTcpActivator (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:14:54.0725 4464 NetTcpActivator - ok
19:14:54.0740 4464 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:14:54.0740 4464 NetTcpPortSharing - ok
19:14:54.0834 4464 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
19:14:54.0850 4464 nfrd960 - ok
19:14:54.0928 4464 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
19:14:54.0943 4464 NlaSvc - ok
19:14:54.0974 4464 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
19:14:54.0990 4464 Npfs - ok
19:14:55.0021 4464 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
19:14:55.0021 4464 nsi - ok
19:14:55.0037 4464 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
19:14:55.0037 4464 nsiproxy - ok
19:14:55.0240 4464 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
19:14:55.0286 4464 Ntfs - ok
19:14:55.0442 4464 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
19:14:55.0442 4464 Null - ok
19:14:55.0520 4464 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
19:14:55.0536 4464 nvraid - ok
19:14:55.0567 4464 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
19:14:55.0567 4464 nvstor - ok
19:14:55.0598 4464 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
19:14:55.0598 4464 nv_agp - ok
19:14:55.0614 4464 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
19:14:55.0614 4464 ohci1394 - ok
19:14:55.0676 4464 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
19:14:55.0676 4464 p2pimsvc - ok
19:14:55.0723 4464 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
19:14:55.0754 4464 p2psvc - ok
19:14:55.0754 4464 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
19:14:55.0754 4464 Parport - ok
19:14:55.0801 4464 partmgr (871eadac56b0a4c6512bbe32753ccf79) C:\Windows\system32\drivers\partmgr.sys
19:14:55.0801 4464 partmgr - ok
19:14:55.0942 4464 PassThru Service (a1e779a0cf7a21b42e8fd3e8856d8481) C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
19:14:55.0957 4464 PassThru Service - ok
19:14:56.0004 4464 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
19:14:56.0035 4464 PcaSvc - ok
19:14:56.0082 4464 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
19:14:56.0082 4464 pci - ok
19:14:56.0113 4464 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
19:14:56.0113 4464 pciide - ok
19:14:56.0144 4464 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
19:14:56.0144 4464 pcmcia - ok
19:14:56.0176 4464 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
19:14:56.0176 4464 pcw - ok
19:14:56.0238 4464 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
19:14:56.0254 4464 PEAUTH - ok
19:14:56.0332 4464 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
19:14:56.0332 4464 PerfHost - ok
19:14:56.0519 4464 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
19:14:56.0534 4464 pla - ok
19:14:56.0659 4464 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
19:14:56.0690 4464 PlugPlay - ok
19:14:56.0815 4464 Pml Driver HPZ12 (ac78df349f0e4cfb8b667c0cfff83cce) C:\Windows\system32\HPZipm12.dll
19:14:56.0815 4464 Pml Driver HPZ12 - ok
19:14:56.0909 4464 pneteth (a010f13d27c1033a8be09d5fa9bf348b) C:\Windows\system32\DRIVERS\pneteth.sys
19:14:56.0909 4464 pneteth - ok
19:14:56.0909 4464 pnetmdm (06841f5cd8410b6bdc0b5a631b8f8787) C:\Windows\system32\DRIVERS\pnetmdm64.sys
19:14:56.0924 4464 pnetmdm - ok
19:14:56.0956 4464 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
19:14:56.0956 4464 PNRPAutoReg - ok
19:14:57.0002 4464 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
19:14:57.0002 4464 PNRPsvc - ok
19:14:57.0096 4464 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
19:14:57.0112 4464 PolicyAgent - ok
19:14:57.0174 4464 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
19:14:57.0174 4464 Power - ok
19:14:57.0252 4464 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
19:14:57.0252 4464 PptpMiniport - ok
19:14:57.0299 4464 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
19:14:57.0299 4464 Processor - ok
19:14:57.0377 4464 ProfSvc (5c78838b4d166d1a27db3a8a820c799a) C:\Windows\system32\profsvc.dll
19:14:57.0377 4464 ProfSvc - ok
19:14:57.0424 4464 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
19:14:57.0424 4464 ProtectedStorage - ok
19:14:57.0502 4464 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
19:14:57.0502 4464 Psched - ok
19:14:57.0564 4464 PxHlpa64 (aed797cca02783296c68aa10d0cff8a9) C:\Windows\system32\Drivers\PxHlpa64.sys
19:14:57.0564 4464 PxHlpa64 - ok
19:14:57.0720 4464 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
19:14:57.0767 4464 ql2300 - ok
19:14:57.0923 4464 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
19:14:57.0938 4464 ql40xx - ok
19:14:57.0985 4464 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
19:14:58.0001 4464 QWAVE - ok
19:14:58.0016 4464 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
19:14:58.0016 4464 QWAVEdrv - ok
19:14:58.0048 4464 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
19:14:58.0048 4464 RasAcd - ok
19:14:58.0110 4464 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
19:14:58.0110 4464 RasAgileVpn - ok
19:14:58.0141 4464 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
19:14:58.0141 4464 RasAuto - ok
19:14:58.0188 4464 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
19:14:58.0188 4464 Rasl2tp - ok
19:14:58.0235 4464 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
19:14:58.0235 4464 RasMan - ok
19:14:58.0282 4464 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
19:14:58.0282 4464 RasPppoe - ok
19:14:58.0313 4464 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
19:14:58.0313 4464 RasSstp - ok
19:14:58.0344 4464 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
19:14:58.0344 4464 rdbss - ok
19:14:58.0375 4464 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
19:14:58.0375 4464 rdpbus - ok
19:14:58.0406 4464 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
19:14:58.0406 4464 RDPCDD - ok
19:14:58.0422 4464 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
19:14:58.0422 4464 RDPENCDD - ok
19:14:58.0469 4464 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
19:14:58.0469 4464 RDPREFMP - ok
19:14:58.0531 4464 RDPWD (6d76e6433574b058adcb0c50df834492) C:\Windows\system32\drivers\RDPWD.sys
19:14:58.0547 4464 RDPWD - ok
19:14:58.0640 4464 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
19:14:58.0640 4464 rdyboost - ok
19:14:58.0703 4464 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
19:14:58.0718 4464 RemoteAccess - ok
19:14:58.0765 4464 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
19:14:58.0781 4464 RemoteRegistry - ok
19:14:58.0812 4464 ROOTMODEM (388d3dd1a6457280f3badba9f3acd6b1) C:\Windows\system32\Drivers\RootMdm.sys
19:14:58.0812 4464 ROOTMODEM - ok
19:14:59.0140 4464 RoxMediaDB10 (05fc44d32a144925eae45570029fd6e1) C:\Program Files (x86)\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe
19:14:59.0186 4464 RoxMediaDB10 - ok
19:14:59.0218 4464 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
19:14:59.0218 4464 RpcEptMapper - ok
19:14:59.0249 4464 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
19:14:59.0249 4464 RpcLocator - ok
19:14:59.0342 4464 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
19:14:59.0342 4464 RpcSs - ok
19:14:59.0452 4464 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
19:14:59.0452 4464 rspndr - ok
19:14:59.0545 4464 RSUSBSTOR (30f463768d5143bfd7b2df822b53cf4d) C:\Windows\system32\Drivers\RtsUStor.sys
19:14:59.0561 4464 RSUSBSTOR - ok
19:14:59.0639 4464 RTL8167 (fd978b2bf8a9b2390dcbef435e9c1f9f) C:\Windows\system32\DRIVERS\Rt64win7.sys
19:14:59.0639 4464 RTL8167 - ok
19:14:59.0639 4464 RxFilter - ok
19:14:59.0686 4464 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
19:14:59.0686 4464 SamSs - ok
19:14:59.0701 4464 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
19:14:59.0701 4464 sbp2port - ok
19:14:59.0764 4464 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
19:14:59.0764 4464 SCardSvr - ok
19:14:59.0795 4464 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
19:14:59.0795 4464 scfilter - ok
19:14:59.0920 4464 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
19:14:59.0951 4464 Schedule - ok
19:14:59.0998 4464 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
19:14:59.0998 4464 SCPolicySvc - ok
19:15:00.0044 4464 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
19:15:00.0060 4464 SDRSVC - ok
19:15:00.0169 4464 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
19:15:00.0169 4464 secdrv - ok
19:15:00.0185 4464 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
19:15:00.0200 4464 seclogon - ok
19:15:00.0232 4464 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
19:15:00.0232 4464 SENS - ok
19:15:00.0247 4464 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
19:15:00.0247 4464 SensrSvc - ok
19:15:00.0247 4464 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
19:15:00.0247 4464 Serenum - ok
19:15:00.0278 4464 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
19:15:00.0278 4464 Serial - ok
19:15:00.0294 4464 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
19:15:00.0294 4464 sermouse - ok
19:15:00.0341 4464 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
19:15:00.0356 4464 SessionEnv - ok
19:15:00.0622 4464 SessionLauncher - ok
19:15:00.0668 4464 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
19:15:00.0668 4464 sffdisk - ok
19:15:00.0700 4464 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
19:15:00.0700 4464 sffp_mmc - ok
19:15:00.0715 4464 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
19:15:00.0715 4464 sffp_sd - ok
19:15:00.0731 4464 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
19:15:00.0731 4464 sfloppy - ok
19:15:00.0824 4464 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
19:15:00.0856 4464 SharedAccess - ok
19:15:00.0934 4464 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
19:15:00.0965 4464 ShellHWDetection - ok
19:15:00.0980 4464 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
19:15:00.0980 4464 SiSRaid2 - ok
19:15:01.0012 4464 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
19:15:01.0012 4464 SiSRaid4 - ok
19:15:01.0074 4464 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
19:15:01.0074 4464 Smb - ok
19:15:01.0152 4464 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
19:15:01.0168 4464 SNMPTRAP - ok
19:15:01.0183 4464 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
19:15:01.0183 4464 spldr - ok
19:15:01.0261 4464 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
19:15:01.0277 4464 Spooler - ok
19:15:01.0604 4464 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
19:15:01.0698 4464 sppsvc - ok
19:15:01.0838 4464 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
19:15:01.0838 4464 sppuinotify - ok
19:15:02.0057 4464 sprtsvc_DellSupportCenter (d630b6f2e8379b6f10dc16e82a426552) C:\Program Files (x86)\Dell Support Center\bin\sprtsvc.exe
19:15:02.0072 4464 sprtsvc_DellSupportCenter - ok
19:15:02.0213 4464 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
19:15:02.0228 4464 srv - ok
19:15:02.0322 4464 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
19:15:02.0338 4464 srv2 - ok
19:15:02.0400 4464 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
19:15:02.0416 4464 srvnet - ok
19:15:02.0494 4464 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
19:15:02.0509 4464 SSDPSRV - ok
19:15:02.0525 4464 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
19:15:02.0525 4464 SstpSvc - ok
19:15:02.0572 4464 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
19:15:02.0587 4464 stexstor - ok
19:15:02.0696 4464 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
19:15:02.0712 4464 stisvc - ok
19:15:02.0899 4464 stllssvr (ff5eb78af7dfb68c2fb363537aaf753e) C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
19:15:02.0899 4464 stllssvr - ok
19:15:02.0946 4464 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
19:15:02.0946 4464 swenum - ok
19:15:03.0024 4464 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
19:15:03.0055 4464 swprv - ok
19:15:03.0149 4464 SynTP (8a3fbcb3d6d4710730d27da4392a4863) C:\Windows\system32\DRIVERS\SynTP.sys
19:15:03.0164 4464 SynTP - ok
19:15:03.0367 4464 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
19:15:03.0414 4464 SysMain - ok
19:15:03.0539 4464 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
19:15:03.0554 4464 TabletInputService - ok
19:15:03.0632 4464 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
19:15:03.0648 4464 TapiSrv - ok
19:15:03.0679 4464 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
19:15:03.0679 4464 TBS - ok
19:15:03.0991 4464 Tcpip (fc62769e7bff2896035aeed399108162) C:\Windows\system32\drivers\tcpip.sys
19:15:04.0022 4464 Tcpip - ok
19:15:04.0428 4464 TCPIP6 (fc62769e7bff2896035aeed399108162) C:\Windows\system32\DRIVERS\tcpip.sys
19:15:04.0444 4464 TCPIP6 - ok
19:15:04.0600 4464 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
19:15:04.0600 4464 tcpipreg - ok
19:15:04.0646 4464 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
19:15:04.0646 4464 TDPIPE - ok
19:15:04.0709 4464 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
19:15:04.0709 4464 TDTCP - ok
19:15:04.0756 4464 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
19:15:04.0756 4464 tdx - ok
19:15:04.0802 4464 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
19:15:04.0802 4464 TermDD - ok
19:15:04.0896 4464 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
19:15:04.0912 4464 TermService - ok
19:15:04.0943 4464 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
19:15:04.0943 4464 Themes - ok
19:15:04.0974 4464 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
19:15:04.0990 4464 THREADORDER - ok
19:15:05.0005 4464 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
19:15:05.0021 4464 TrkWks - ok
19:15:05.0083 4464 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
19:15:05.0099 4464 TrustedInstaller - ok
19:15:05.0146 4464 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
19:15:05.0146 4464 tssecsrv - ok
19:15:05.0192 4464 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
19:15:05.0192 4464 TsUsbFlt - ok
19:15:05.0239 4464 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
19:15:05.0255 4464 tunnel - ok
19:15:05.0302 4464 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
19:15:05.0302 4464 uagp35 - ok
19:15:05.0364 4464 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
19:15:05.0364 4464 udfs - ok
19:15:05.0411 4464 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
19:15:05.0426 4464 UI0Detect - ok
19:15:05.0442 4464 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
19:15:05.0442 4464 uliagpkx - ok
19:15:05.0458 4464 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys
19:15:05.0473 4464 umbus - ok
19:15:05.0473 4464 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
19:15:05.0473 4464 UmPass - ok
19:15:05.0536 4464 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
19:15:05.0551 4464 upnphost - ok
19:15:05.0567 4464 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
19:15:05.0582 4464 usbccgp - ok
19:15:05.0614 4464 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
19:15:05.0614 4464 usbcir - ok
19:15:05.0614 4464 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\DRIVERS\usbehci.sys
19:15:05.0614 4464 usbehci - ok
19:15:05.0660 4464 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
19:15:05.0660 4464 usbhub - ok
19:15:05.0676 4464 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\DRIVERS\usbohci.sys
19:15:05.0676 4464 usbohci - ok
19:15:05.0692 4464 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
19:15:05.0692 4464 usbprint - ok
19:15:05.0707 4464 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
19:15:05.0707 4464 usbscan - ok
19:15:05.0723 4464 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
19:15:05.0723 4464 USBSTOR - ok
19:15:05.0723 4464 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
19:15:05.0738 4464 usbuhci - ok
19:15:05.0770 4464 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\Windows\System32\Drivers\usbvideo.sys
19:15:05.0770 4464 usbvideo - ok
19:15:05.0801 4464 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
19:15:05.0801 4464 UxSms - ok
19:15:05.0848 4464 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
19:15:05.0848 4464 VaultSvc - ok
19:15:05.0894 4464 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
19:15:05.0894 4464 vdrvroot - ok
19:15:05.0972 4464 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
19:15:06.0004 4464 vds - ok
19:15:06.0019 4464 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
19:15:06.0019 4464 vga - ok
19:15:06.0050 4464 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
19:15:06.0050 4464 VgaSave - ok
19:15:06.0082 4464 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
19:15:06.0082 4464 vhdmp - ok
19:15:06.0082 4464 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
19:15:06.0082 4464 viaide - ok
19:15:06.0128 4464 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
19:15:06.0128 4464 volmgr - ok
19:15:06.0160 4464 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
19:15:06.0175 4464 volmgrx - ok
19:15:06.0191 4464 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
19:15:06.0206 4464 volsnap - ok
19:15:06.0222 4464 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
19:15:06.0222 4464 vsmraid - ok
19:15:06.0425 4464 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
19:15:06.0472 4464 VSS - ok
19:15:06.0659 4464 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
19:15:06.0659 4464 vwifibus - ok
19:15:06.0706 4464 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
19:15:06.0706 4464 vwififlt - ok
19:15:06.0768 4464 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
19:15:06.0784 4464 W32Time - ok
19:15:06.0862 4464 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
19:15:06.0862 4464 WacomPen - ok
19:15:06.0924 4464 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
19:15:06.0940 4464 WANARP - ok
19:15:06.0955 4464 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
19:15:06.0955 4464 Wanarpv6 - ok
19:15:07.0142 4464 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
19:15:07.0189 4464 WatAdminSvc - ok
19:15:07.0345 4464 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
19:15:07.0376 4464 wbengine - ok
19:15:07.0548 4464 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
19:15:07.0564 4464 WbioSrvc - ok
19:15:07.0642 4464 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
19:15:07.0642 4464 wcncsvc - ok
19:15:07.0673 4464 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
19:15:07.0688 4464 WcsPlugInService - ok
19:15:07.0766 4464 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
19:15:07.0766 4464 Wd - ok
19:15:07.0876 4464 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
19:15:07.0891 4464 Wdf01000 - ok
19:15:07.0922 4464 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
19:15:07.0922 4464 WdiServiceHost - ok
19:15:07.0922 4464 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
19:15:07.0938 4464 WdiSystemHost - ok
19:15:08.0000 4464 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
19:15:08.0000 4464 WebClient - ok
19:15:08.0063 4464 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
19:15:08.0063 4464 Wecsvc - ok
19:15:08.0094 4464 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
19:15:08.0094 4464 wercplsupport - ok
19:15:08.0156 4464 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
19:15:08.0156 4464 WerSvc - ok
19:15:08.0266 4464 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
19:15:08.0266 4464 WfpLwf - ok
19:15:08.0281 4464 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
19:15:08.0281 4464 WIMMount - ok
19:15:08.0312 4464 WinHttpAutoProxySvc - ok
19:15:08.0437 4464 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
19:15:08.0437 4464 Winmgmt - ok
19:15:08.0702 4464 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
19:15:08.0812 4464 WinRM - ok
19:15:08.0999 4464 WinUSB (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUSB.sys
19:15:09.0014 4464 WinUSB - ok
19:15:09.0124 4464 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
19:15:09.0155 4464 Wlansvc - ok
19:15:09.0451 4464 wlidsvc (98f138897ef4246381d197cb81846d62) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
19:15:09.0514 4464 wlidsvc - ok
19:15:09.0623 4464 wltrysvc (a96d6c0613dcf84f2d07faeb75663072) C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE
19:15:09.0623 4464 wltrysvc - ok
19:15:09.0826 4464 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
19:15:09.0826 4464 WmiAcpi - ok
19:15:09.0919 4464 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
19:15:09.0935 4464 wmiApSrv - ok
19:15:10.0060 4464 WMPNetworkSvc - ok
19:15:10.0091 4464 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
19:15:10.0091 4464 WPCSvc - ok
19:15:10.0153 4464 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
19:15:10.0153 4464 WPDBusEnum - ok
19:15:10.0184 4464 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
19:15:10.0184 4464 ws2ifsl - ok
19:15:10.0184 4464 WSearch - ok
19:15:10.0434 4464 wuauserv (9df12edbc698b0bc353b3ef84861e430) C:\Windows\system32\wuaueng.dll
19:15:10.0496 4464 wuauserv - ok
19:15:10.0730 4464 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
19:15:10.0730 4464 WudfPf - ok
19:15:10.0793 4464 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
19:15:10.0793 4464 WUDFRd - ok
19:15:10.0808 4464 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
19:15:10.0824 4464 wudfsvc - ok
19:15:10.0871 4464 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
19:15:10.0886 4464 WwanSvc - ok
19:15:10.0949 4464 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
19:15:11.0011 4464 \Device\Harddisk0\DR0 - ok
19:15:11.0027 4464 Boot (0x1200) (0b439bbeadeb8496883aee376bdd6df3) \Device\Harddisk0\DR0\Partition0
19:15:11.0027 4464 \Device\Harddisk0\DR0\Partition0 - ok
19:15:11.0042 4464 Boot (0x1200) (95fd52ee1e9259e23681f1e9e57ce212) \Device\Harddisk0\DR0\Partition1
19:15:11.0042 4464 \Device\Harddisk0\DR0\Partition1 - ok
19:15:11.0042 4464 ============================================================
19:15:11.0042 4464 Scan finished
19:15:11.0042 4464 ============================================================
19:15:11.0074 4412 Detected object count: 0
19:15:11.0074 4412 Actual detected object count: 0
19:16:06.0454 2120 Deinitialize success

when am i suppose to do unhide

#5 Crystal-PC

Crystal-PC
  • Topic Starter

  • Members
  • 56 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Missouri
  • Local time:12:18 PM

Posted 01 May 2012 - 07:25 PM

MiniToolBox by Farbar Version: 18-01-2012
Ran by Crystal (administrator) on 01-05-2012 at 19:23:48
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================

"network.proxy.type", 0

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================


94.63.147.16 www.google.com
94.63.147.17 www.bing.com


========================= IP Configuration: ================================

DW1501 Wireless-N WLAN Half-Mini Card = Wireless Network Connection (Connected)
Broadcom Virtual Wireless Adapter = Local Area Connection 2 (Media disconnected)
PdaNet Broadband Adapter = Local Area Connection 3 (Media disconnected)
The following helper DLL cannot be loaded: WSHELPER.DLL.


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Crystal-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Ethernet adapter Local Area Connection 3:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : PdaNet Broadband Adapter
Physical Address. . . . . . . . . : 00-26-37-BD-39-42
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Local Area Connection 2:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Broadcom Virtual Wireless Adapter
Physical Address. . . . . . . . . : F0-7B-CB-88-39-D5
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : DW1501 Wireless-N WLAN Half-Mini Card
Physical Address. . . . . . . . . : F0-7B-CB-88-39-D5
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::9519:b472:bb55:b121%11(Preferred)
IPv4 Address. . . . . . . . . . . : 10.10.20.150(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Tuesday, May 01, 2012 7:01:44 PM
Lease Expires . . . . . . . . . . : Tuesday, May 01, 2012 8:01:41 PM
Default Gateway . . . . . . . . . : 10.10.20.1
DHCP Server . . . . . . . . . . . : 10.10.20.1
DHCPv6 IAID . . . . . . . . . . . : 233864139
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-15-B9-5B-12-A4-BA-DB-BE-2B-3E
DNS Servers . . . . . . . . . . . : 10.10.20.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.Belkin:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{3A51EDA1-1439-46E7-8D32-09FAC256A37B}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.freemanhealth.org:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #4
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{8D4C700D-7E9A-4998-A937-7CECE78243F7}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #5
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Pinging google.com [74.125.225.136] with 32 bytes of data:
Reply from 74.125.225.136: bytes=32 time=23ms TTL=55
Reply from 74.125.225.136: bytes=32 time=23ms TTL=55

Ping statistics for 74.125.225.136:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 23ms, Maximum = 23ms, Average = 23ms

Pinging yahoo.com [209.191.122.70] with 32 bytes of data:
Reply from 209.191.122.70: bytes=32 time=49ms TTL=53
Reply from 209.191.122.70: bytes=32 time=103ms TTL=53

Ping statistics for 209.191.122.70:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 49ms, Maximum = 103ms, Average = 76ms

Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
17...00 26 37 bd 39 42 ......PdaNet Broadband Adapter
12...f0 7b cb 88 39 d5 ......Broadcom Virtual Wireless Adapter
11...f0 7b cb 88 39 d5 ......DW1501 Wireless-N WLAN Half-Mini Card
1...........................Software Loopback Interface 1
18...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
14...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
21...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
19...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #4
20...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #5
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 10.10.20.1 10.10.20.150 25
10.10.20.0 255.255.255.0 On-link 10.10.20.150 281
10.10.20.150 255.255.255.255 On-link 10.10.20.150 281
10.10.20.255 255.255.255.255 On-link 10.10.20.150 281
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 10.10.20.150 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 10.10.20.150 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
11 281 fe80::/64 On-link
11 281 fe80::9519:b472:bb55:b121/128
On-link
1 306 ff00::/8 On-link
11 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 mswsock.dll [File Not found] ()
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [134528] (Microsoft Corporation)
Catalog5 06 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [134528] (Microsoft Corporation)
Catalog5 07 mswsock.dll [File Not found] ()
Catalog5 08 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog9 01 mswsock.dll [File Not found] ()
Catalog9 02 mswsock.dll [File Not found] ()
Catalog9 03 mswsock.dll [File Not found] ()
Catalog9 04 mswsock.dll [File Not found] ()
Catalog9 05 mswsock.dll [File Not found] ()
Catalog9 06 mswsock.dll [File Not found] ()
Catalog9 07 mswsock.dll [File Not found] ()
Catalog9 08 mswsock.dll [File Not found] ()
Catalog9 09 mswsock.dll [File Not found] ()
Catalog9 10 mswsock.dll [File Not found] ()
x64-Catalog5 01 mswsock.dll [File Not found] ()
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [168304] (Microsoft Corporation)
x64-Catalog5 06 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [168304] (Microsoft Corporation)
x64-Catalog5 07 mswsock.dll [File Not found] ()
x64-Catalog5 08 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog9 01 mswsock.dll [File Not found] ()
x64-Catalog9 02 mswsock.dll [File Not found] ()
x64-Catalog9 03 mswsock.dll [File Not found] ()
x64-Catalog9 04 mswsock.dll [File Not found] ()
x64-Catalog9 05 mswsock.dll [File Not found] ()
x64-Catalog9 06 mswsock.dll [File Not found] ()
x64-Catalog9 07 mswsock.dll [File Not found] ()
x64-Catalog9 08 mswsock.dll [File Not found] ()
x64-Catalog9 09 mswsock.dll [File Not found] ()
x64-Catalog9 10 mswsock.dll [File Not found] ()

========================= Event log errors: ===============================

Application errors:
==================
Error: (04/27/2012 11:07:45 PM) (Source: Microsoft-Windows-LoadPerf) (User: SYSTEM)SYSTEM
Description: Installing the performance counter strings for service WmiApRpl (WmiApRpl) failed. The first DWORD in the Data section contains the error code.

Error: (04/27/2012 11:07:45 PM) (Source: Microsoft-Windows-LoadPerf) (User: SYSTEM)SYSTEM
Description: Unable to update the performance counter strings defined for the 009 language ID. The first DWORD in the Data section contains the error code.

Error: (04/27/2012 11:07:41 PM) (Source: Microsoft-Windows-LoadPerf) (User: SYSTEM)SYSTEM
Description: Unloading the performance counter strings for service WmiApRpl (WmiApRpl) failed. The first DWORD in the Data section contains the error code.

Error: (04/27/2012 11:07:41 PM) (Source: Microsoft-Windows-LoadPerf) (User: SYSTEM)SYSTEM
Description: Unable to update the performance counter strings defined for the 009 language ID. The first DWORD in the Data section contains the error code.

Error: (04/27/2012 10:48:21 PM) (Source: System Restore) (User: )
Description: Failed to create restore point (Process = C:\Windows\system32\DrvInst.exe "4" "20" "C:\Users\Crystal\AppData\Local\Temp\{2a951341-4749-2e6a-0c7b-eb0f72e0f548}\android_usb.inf" "9" "6b2dc67bb" "0000000000000598" "WinSta0\Default" "00000000000000AC" "208" "C:\Program Files (x86)\PdaNet for Android\usbwin"; Description = Device Driver Package Install: Google, Inc ADB Interface; Error = 0x8007043c).

Error: (04/27/2012 10:40:18 PM) (Source: System Restore) (User: )
Description: The restore point selected was damaged or deleted during the restore (Windows Update).

Error: (04/27/2012 10:33:37 PM) (Source: System Restore) (User: )
Description: The restore point selected was damaged or deleted during the restore (Windows Update).

Error: (04/24/2012 11:52:28 PM) (Source: Application Error) (User: )
Description: Faulting application name: PdaNetPC.exe, version: 0.0.0.0, time stamp: 0x4f21c8e2
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x000103bb
Faulting process id: 0x740
Faulting application start time: 0xPdaNetPC.exe0
Faulting application path: PdaNetPC.exe1
Faulting module path: PdaNetPC.exe2
Report Id: PdaNetPC.exe3

Error: (04/24/2012 11:45:28 PM) (Source: Application Error) (User: )
Description: Faulting application name: sprtcmd.exe, version: 7.0.1619.0, time stamp: 0x49a35cf0
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0x80000001
Fault offset: 0x04cb1225
Faulting process id: 0xc70
Faulting application start time: 0xsprtcmd.exe0
Faulting application path: sprtcmd.exe1
Faulting module path: sprtcmd.exe2
Report Id: sprtcmd.exe3

Error: (04/24/2012 11:43:42 PM) (Source: Application Error) (User: )
Description: Faulting application name: hpqtra08.exe, version: 140.0.212.0, time stamp: 0x4b03eb8e
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0x80000001
Fault offset: 0x00391225
Faulting process id: 0x91c
Faulting application start time: 0xhpqtra08.exe0
Faulting application path: hpqtra08.exe1
Faulting module path: hpqtra08.exe2
Report Id: hpqtra08.exe3


System errors:
=============
Error: (05/01/2012 07:02:36 PM) (Source: WMPNetworkSvc) (User: )
Description: 0x80070005

Error: (05/01/2012 07:02:36 PM) (Source: WMPNetworkSvc) (User: )
Description: 0x80070005

Error: (05/01/2012 07:00:15 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
RxFilter

Error: (05/01/2012 07:00:01 PM) (Source: Service Control Manager) (User: )
Description: The SessionLauncher service failed to start due to the following error:
%%2

Error: (05/01/2012 06:59:38 PM) (Source: atikmdag) (User: )
Description: Display is not active

Error: (05/01/2012 06:59:38 PM) (Source: atikmdag) (User: )
Description: CPLIB :: General - Invalid Parameter

Error: (05/01/2012 06:05:21 PM) (Source: DCOM) (User: )
Description: 1068fdPHost{D3DCB472-7261-43CE-924B-0704BD730D5F}

Error: (05/01/2012 06:05:21 PM) (Source: DCOM) (User: )
Description: 1068fdPHost{145B4335-FE2A-4927-A040-7C35AD3180EF}

Error: (05/01/2012 05:42:08 PM) (Source: DCOM) (User: )
Description: 1084WSearch{9E175B6D-F52A-11D8-B9A5-505054503030}

Error: (05/01/2012 05:42:08 PM) (Source: DCOM) (User: )
Description: 1084WSearch{7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}


Microsoft Office Sessions:
=========================
Error: (04/27/2012 11:07:45 PM) (Source: Microsoft-Windows-LoadPerf)(User: SYSTEM)SYSTEM
Description: WmiApRplWmiApRpl805000000C9120000

Error: (04/27/2012 11:07:45 PM) (Source: Microsoft-Windows-LoadPerf)(User: SYSTEM)SYSTEM
Description: 0098050000005A0D0000

Error: (04/27/2012 11:07:41 PM) (Source: Microsoft-Windows-LoadPerf)(User: SYSTEM)SYSTEM
Description: WmiApRplWmiApRpl8050000004D070000

Error: (04/27/2012 11:07:41 PM) (Source: Microsoft-Windows-LoadPerf)(User: SYSTEM)SYSTEM
Description: 00912050000004CE1010025030000

Error: (04/27/2012 10:48:21 PM) (Source: System Restore)(User: )
Description: C:\Windows\system32\DrvInst.exe "4" "20" "C:\Users\Crystal\AppData\Local\Temp\{2a951341-4749-2e6a-0c7b-eb0f72e0f548}\android_usb.inf" "9" "6b2dc67bb" "0000000000000598" "WinSta0\Default" "00000000000000AC" "208" "C:\Program Files (x86)\PdaNet for Android\usbwin"Device Driver Package Install: Google, Inc ADB Interface0x8007043c

Error: (04/27/2012 10:40:18 PM) (Source: System Restore)(User: )
Description: Windows Update

Error: (04/27/2012 10:33:37 PM) (Source: System Restore)(User: )
Description: Windows Update

Error: (04/24/2012 11:52:28 PM) (Source: Application Error)(User: )
Description: PdaNetPC.exe0.0.0.04f21c8e2unknown0.0.0.000000000c0000005000103bb74001cd229f35e7ebe3C:\Program Files (x86)\PdaNet for Android\PdaNetPC.exeunknown74cf54f8-8e92-11e1-817d-813d1e5d3042

Error: (04/24/2012 11:45:28 PM) (Source: Application Error)(User: )
Description: sprtcmd.exe7.0.1619.049a35cf0unknown0.0.0.0000000008000000104cb1225c7001cd229b9dfc71a8C:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exeunknown7aa917bc-8e91-11e1-817d-813d1e5d3042

Error: (04/24/2012 11:43:42 PM) (Source: Application Error)(User: )
Description: hpqtra08.exe140.0.212.04b03eb8eunknown0.0.0.000000000800000010039122591c01cd229b99f956f1C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exeunknown3b40045c-8e91-11e1-817d-813d1e5d3042


=========================== Installed Programs ============================

64 Bit HP CIO Components Installer (Version: 7.2.8)
Adobe AIR (Version: 2.6.0.19120)
Adobe Flash Player 11 ActiveX 64-bit (Version: 11.2.202.233)
Adobe Flash Player 11 Plugin 64-bit (Version: 11.2.202.233)
Advanced Audio FX Engine (Version: 1.12.05)
Ask Toolbar (Version: 1.12.2.0)
BFlix Toolbar (Version: 1.0.0.0)
Bing Bar (Version: 7.1.361.0)
blinkx beat (Version: 1.5.0)
BufferChm (Version: 140.0.212.000)
Cisco EAP-FAST Module (Version: 2.2.14)
Cisco LEAP Module (Version: 1.0.19)
Cisco PEAP Module (Version: 1.1.6)
Compatibility Pack for the 2007 Office system (Version: 12.0.6612.1000)
Coupon Printer for Windows (Version: 5.0.0.1)
Coupons.com Toolbar (Version: 6.3.8.0)
D110 (Version: 140.0.283.000)
Dell Resource CD (Version: 1.00.0000)
Dell Support Center (Support Software) (Version: 2.5.09100)
Dell Webcam Central (Version: 2.00.33)
Destinations (Version: 140.0.77.000)
DeviceDiscovery (Version: 140.0.212.000)
DirectXInstallService (Version: 9.0.2)
DW WLAN Card Utility (Version: 5.60.48.18)
EMC 10 Content (Version: 1.0.035)
EMCGadgets64 (Version: 1.0.302)
Facebook Video Calling 1.2.0.159 (Version: 1.2.159)
Google Chrome (Version: 18.0.1025.162)
Google Update Helper (Version: 1.3.21.111)
GPBaseService2 (Version: 140.0.211.000)
Hauppauge TV Tuner Diagnostics (1.2.7076) (Version: 1.2.7076)
Hauppauge TV Tuner Driver (Version: 4.2.10.27180)
HP Customer Participation Program 14.0 (Version: 14.0)
HP Imaging Device Functions 14.0 (Version: 14.0)
HP Photo Creations (Version: 1.0.0.${CAB_VERSION})
HP Photosmart D110 All-In-One Driver Software 14.0 Rel. 7 (Version: 14.0)
HP Smart Web Printing 4.60 (Version: 4.60)
HP Solution Center 14.0 (Version: 14.0)
HP Update (Version: 5.003.001.001)
HPAppStudio (Version: 140.0.95.000)
HPPhotoGadget (Version: 140.0.524.000)
HPProductAssistant (Version: 140.0.212.000)
HPSSupply (Version: 140.0.211.000)
HTC BMP USB Driver (Version: 1.0.5375)
HTC Driver Installer (Version: 3.0.0.007)
Internet TV for Windows Media Center (Version: 4.2.2.0)
Java Auto Updater (Version: 2.0.5.1)
Java™ 6 Update 18 (64-bit) (Version: 6.0.180)
Java™ 6 Update 26 (Version: 6.0.260)
MarketResearch (Version: 140.0.212.000)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Office PowerPoint Viewer 2007 (English) (Version: 12.0.6612.1000)
Microsoft Silverlight (Version: 4.1.10111.0)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Works (Version: 9.7.0621)
Mozilla Firefox 11.0 (x86 en-US) (Version: 11.0)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML 4.0 SP3 Parser (KB973685) (Version: 4.30.2107.0)
MSXML 4.0 SP3 Parser (Version: 4.30.2100.0)
Network64 (Version: 140.0.215.000)
Network64 (Version: 140.0.221.000)
PdaNet for Android 3.25
PowerDVD DX (Version: 8.3.5424)
PS_AIO_07_D110_SW_Min (Version: 140.0.142.000)
QuickTransfer (Version: 140.0.98.000)
RealNetworks - Microsoft Visual C++ 2008 Runtime (Version: 9.0)
RealPlayer
Realtek Ethernet Controller Driver For Windows 7 (Version: 7.13.112.2010)
Realtek USB 2.0 Card Reader (Version: 6.1.7600.30109)
RealUpgrade 1.1 (Version: 1.1.0)
Roxio Activation Module (Version: 1.0)
Roxio BackOnTrack (Version: 1.3.0)
Roxio Burn (Version: 1.0.0)
Roxio Central Audio (Version: 3.8.0)
Roxio Central Copy (Version: 3.8.0)
Roxio Central Core (Version: 3.8.0)
Roxio Central Data (Version: 3.8.0)
Roxio Central Tools (Version: 3.8.0)
Roxio Easy CD and DVD Burning (Version: 10.3)
Roxio Easy CD and DVD Burning (Version: 10.3.105)
Roxio Express Labeler 3 (Version: 3.2.1)
Roxio File Backup (Version: 1.3.0)
Roxio Update Manager (Version: 6.0.0)
Scan (Version: 140.0.80.000)
Shop for HP Supplies (Version: 14.0)
SmartWebPrinting (Version: 140.0.186.000)
SolutionCenter (Version: 140.0.214.000)
Sonic CinePlayer Decoder Pack (Version: 4.3.0)
Status (Version: 140.0.256.000)
Synaptics Pointing Device Driver (Version: 15.0.0.1)
The Weather Channel App
The Weather Channel Desktop 6
Toolbox (Version: 140.0.428.000)
TrayApp (Version: 140.0.212.000)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
WebReg (Version: 140.0.212.017)
Windows Live ID Sign-in Assistant (Version: 6.500.3165.0)
Windows Media Player Firefox Plugin (Version: 1.0.0.8)

========================= Devices: ================================

Name: Photosmart D110 series
Description: Photosmart D110 series
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: HP
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Photosmart D110 series
Description: Photosmart D110 series
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: HP
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: HP LaserJet 2100 Series
Description: HP LaserJet 2100 Series
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: Hewlett-Packard
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


========================= Memory info: ===================================

Percentage of memory in use: 67%
Total physical RAM: 2811.94 MB
Available physical RAM: 904.54 MB
Total Pagefile: 5622.07 MB
Available Pagefile: 3416.7 MB
Total Virtual: 4095.88 MB
Available Virtual: 3954.77 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:297.99 GB) (Free:258.26 GB) NTFS

========================= Users: ========================================

User accounts for \\CRYSTAL-PC

Administrator Crystal Guest

========================= Minidump Files ==================================


**** End of log ****

#6 Crystal-PC

Crystal-PC
  • Topic Starter

  • Members
  • 56 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Missouri
  • Local time:12:18 PM

Posted 01 May 2012 - 07:42 PM

Unhide by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2012 BleepingComputer.com
More Information about Unhide.exe can be found at this link:
http://www.bleepingcomputer.com/forums/topic405109.html

Program started at: 05/01/2012 07:27:01 PM
Windows Version: Windows 7

Please be patient while your files are made visible again.

Processing the C:\ drive
Finished processing the C:\ drive. 211278 files processed.

Processing the E:\ drive
Finished processing the E:\ drive. 0 files processed.

Restoring the Start Menu.
* 0 Shortcuts and Desktop items were restored.


Searching for Windows Registry changes made by FakeHDD rogues.
- Checking HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer
- Checking HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer
- Checking HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System
- Checking HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced
No registry changes detected.

Restarting Explorer.exe in order to apply changes.

Program finished at: 05/01/2012 07:38:36 PM
Execution time: 0 hours(s), 11 minute(s), and 34 seconds(s)

#7 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,490 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:01:18 PM

Posted 01 May 2012 - 07:43 PM

We still have work to do. Are you searches being redirected to pages ither than you wanted?

Run Unhide now and tell me if everything is back.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#8 Crystal-PC

Crystal-PC
  • Topic Starter

  • Members
  • 56 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Missouri
  • Local time:12:18 PM

Posted 03 May 2012 - 02:14 AM

everything is back but a few days ago i did a system restore so it restored it but no i want to do another restore to like last week so do i need to do everything over again and windows defender can not scan my computer is it because of the restore?

#9 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,490 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:01:18 PM

Posted 03 May 2012 - 10:01 AM

OK, do another restore,then you only need to run RKill,MBAM
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#10 Crystal-PC

Crystal-PC
  • Topic Starter

  • Members
  • 56 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Missouri
  • Local time:12:18 PM

Posted 03 May 2012 - 05:11 PM

ok should i post after that as well

#11 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,490 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:01:18 PM

Posted 03 May 2012 - 08:28 PM

If it still finds malware then I'd like to see what it is.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#12 Crystal-PC

Crystal-PC
  • Topic Starter

  • Members
  • 56 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Missouri
  • Local time:12:18 PM

Posted 04 May 2012 - 03:55 AM

after the restore


This log file is located at C:\rkill.log.
Please post this only if requested to by the person helping you.
Otherwise you can close this log when you wish.

Rkill was run on 05/04/2012 at 3:54:40.
Operating System: Windows 7 Home Premium


Processes terminated by Rkill or while it was running:



Rkill completed on 05/04/2012 at 3:54:47.

#13 Crystal-PC

Crystal-PC
  • Topic Starter

  • Members
  • 56 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Missouri
  • Local time:12:18 PM

Posted 04 May 2012 - 04:01 AM

MiniToolBox by Farbar Version: 18-01-2012
Ran by Crystal (administrator) on 04-05-2012 at 03:58:53
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Nerwork
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================

"network.proxy.type", 0

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================


94.63.147.16 www.google.com
94.63.147.17 www.bing.com


========================= IP Configuration: ================================

DW1501 Wireless-N WLAN Half-Mini Card = Wireless Network Connection (Connected)
Broadcom Virtual Wireless Adapter = Local Area Connection 2 (Media disconnected)
PdaNet Broadband Adapter = Local Area Connection 3 (Media disconnected)
The following helper DLL cannot be loaded: WSHELPER.DLL.


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Crystal-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : freemanhealth.org

Ethernet adapter Local Area Connection 3:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : PdaNet Broadband Adapter
Physical Address. . . . . . . . . : 00-26-37-BD-39-42
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Local Area Connection 2:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Broadcom Virtual Wireless Adapter
Physical Address. . . . . . . . . : F0-7B-CB-88-39-D5
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . : freemanhealth.org
Description . . . . . . . . . . . : DW1501 Wireless-N WLAN Half-Mini Card
Physical Address. . . . . . . . . : F0-7B-CB-88-39-D5
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::9519:b472:bb55:b121%11(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.169.72(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.252.0
Lease Obtained. . . . . . . . . . : Friday, May 04, 2012 3:51:07 AM
Lease Expires . . . . . . . . . . : Friday, May 04, 2012 4:51:20 AM
Default Gateway . . . . . . . . . : 192.168.171.254
DHCP Server . . . . . . . . . . . : 2.2.2.2
DHCPv6 IAID . . . . . . . . . . . : 233864139
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-15-B9-5B-12-A4-BA-DB-BE-2B-3E
DNS Servers . . . . . . . . . . . : 10.10.64.48
10.64.2.1
Primary WINS Server . . . . . . . : 10.64.2.38
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.Belkin:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{3A51EDA1-1439-46E7-8D32-09FAC256A37B}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.freemanhealth.org:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #4
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{8D4C700D-7E9A-4998-A937-7CECE78243F7}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #5
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Pinging google.com [74.125.227.71] with 32 bytes of data:
Request timed out.
Request timed out.

Ping statistics for 74.125.227.71:
Packets: Sent = 2, Received = 0, Lost = 2 (100% loss),

Pinging yahoo.com [72.30.38.140] with 32 bytes of data:
Request timed out.
Request timed out.

Ping statistics for 72.30.38.140:
Packets: Sent = 2, Received = 0, Lost = 2 (100% loss),

Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Request timed out.
Request timed out.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 0, Lost = 2 (100% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
17...00 26 37 bd 39 42 ......PdaNet Broadband Adapter
12...f0 7b cb 88 39 d5 ......Broadcom Virtual Wireless Adapter
11...f0 7b cb 88 39 d5 ......DW1501 Wireless-N WLAN Half-Mini Card
1...........................Software Loopback Interface 1
18...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
14...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
21...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
19...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #4
20...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #5
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.171.254 192.168.169.72 30
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.168.0 255.255.252.0 On-link 192.168.169.72 286
192.168.169.72 255.255.255.255 On-link 192.168.169.72 286
192.168.171.255 255.255.255.255 On-link 192.168.169.72 286
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.169.72 286
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.169.72 286
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
11 286 fe80::/64 On-link
11 286 fe80::9519:b472:bb55:b121/128
On-link
1 306 ff00::/8 On-link
11 286 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 mswsock.dll [File Not found] ()
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [134528] (Microsoft Corporation)
Catalog5 06 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [134528] (Microsoft Corporation)
Catalog5 07 mswsock.dll [File Not found] ()
Catalog5 08 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog9 01 mswsock.dll [File Not found] ()
Catalog9 02 mswsock.dll [File Not found] ()
Catalog9 03 mswsock.dll [File Not found] ()
Catalog9 04 mswsock.dll [File Not found] ()
Catalog9 05 mswsock.dll [File Not found] ()
Catalog9 06 mswsock.dll [File Not found] ()
Catalog9 07 mswsock.dll [File Not found] ()
Catalog9 08 mswsock.dll [File Not found] ()
Catalog9 09 mswsock.dll [File Not found] ()
Catalog9 10 mswsock.dll [File Not found] ()
x64-Catalog5 01 mswsock.dll [File Not found] ()
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [168304] (Microsoft Corporation)
x64-Catalog5 06 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [168304] (Microsoft Corporation)
x64-Catalog5 07 mswsock.dll [File Not found] ()
x64-Catalog5 08 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog9 01 mswsock.dll [File Not found] ()
x64-Catalog9 02 mswsock.dll [File Not found] ()
x64-Catalog9 03 mswsock.dll [File Not found] ()
x64-Catalog9 04 mswsock.dll [File Not found] ()
x64-Catalog9 05 mswsock.dll [File Not found] ()
x64-Catalog9 06 mswsock.dll [File Not found] ()
x64-Catalog9 07 mswsock.dll [File Not found] ()
x64-Catalog9 08 mswsock.dll [File Not found] ()
x64-Catalog9 09 mswsock.dll [File Not found] ()
x64-Catalog9 10 mswsock.dll [File Not found] ()

========================= Event log errors: ===============================

Application errors:
==================
Error: (05/04/2012 03:25:36 AM) (Source: Application Hang) (User: )
Description: The program Explorer.EXE version 6.1.7601.17567 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 99c

Start Time: 01cd29cf6332a738

Termination Time: 47

Application Path: C:\Windows\Explorer.EXE

Report Id: aeea2e19-95c2-11e1-884a-8b34e4ffc54d

Error: (05/04/2012 03:14:45 AM) (Source: System Restore) (User: )
Description: Failed to create restore point (Process = C:\Windows\system32\DrvInst.exe "4" "20" "C:\Users\Crystal\AppData\Local\Temp\{1f3d7d1b-57a4-44dc-367f-782758fdcd5a}\android_usb.inf" "9" "6b2dc67bb" "0000000000000554" "WinSta0\Default" "00000000000003C8" "208" "C:\Program Files (x86)\PdaNet for Android\usbwin"; Description = Device Driver Package Install: Google, Inc ADB Interface; Error = 0x8007043c).

Error: (05/03/2012 11:30:56 PM) (Source: Application Hang) (User: )
Description: The program iexplore.exe version 8.0.7601.17514 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 106c

Start Time: 01cd298e419fa50d

Termination Time: 109

Application Path: C:\Program Files (x86)\Internet Explorer\iexplore.exe

Report Id: dfcfe4a1-95a1-11e1-a474-cd86f9583b76

Error: (05/03/2012 11:26:12 PM) (Source: Application Hang) (User: )
Description: The program DllHost.exe version 6.1.7600.16385 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 1150

Start Time: 01cd29adc6d52989

Termination Time: 68

Application Path: C:\Windows\system32\DllHost.exe

Report Id: 36fb57a7-95a1-11e1-a474-cd86f9583b76

Error: (05/03/2012 11:03:18 PM) (Source: Google Update) (User: Crystal)Crystal
Description: Network Request Error.
Error: 0x80040880. Http status code: 200.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=FireFox, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80040880. Http status code 200.
trying WinHTTP.
Send request returned 0x80072ee2. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80040880. Http status code 200.
trying WinHTTP.
Send request returned 0x80072ee2. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=FireFox, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80040880. Http status code 200.
trying WinHTTP.
Send request returned 0x80072ee2. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request r

Error: (05/03/2012 05:13:05 PM) (Source: Application Error) (User: )
Description: Faulting application name: WLTRAY.EXE, version: 5.60.48.18, time stamp: 0x4b1e7c08
Faulting module name: opls64.dll_unloaded, version: 0.0.0.0, time stamp: 0x4e79f7c9
Exception code: 0xc0000005
Fault offset: 0x00000000023784a2
Faulting process id: 0x87c
Faulting application start time: 0xWLTRAY.EXE0
Faulting application path: WLTRAY.EXE1
Faulting module path: WLTRAY.EXE2
Report Id: WLTRAY.EXE3

Error: (05/03/2012 04:27:40 PM) (Source: Google Update) (User: Crystal)Crystal
Description: Network Request Error.
Error: 0x80040880. Http status code: 200.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=FireFox, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80040880. Http status code 200.
trying WinHTTP.
Send request returned 0x80072f8f. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80040880. Http status code 200.
trying WinHTTP.
Send request returned 0x80072f8f. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=FireFox, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80040880. Http status code 200.
trying WinHTTP.
Send request returned 0x80072f8f. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request r

Error: (05/01/2012 11:01:06 PM) (Source: Google Update) (User: Crystal)Crystal
Description: Network Request Error.
Error: 0x80072ee7. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=FireFox, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=FireFox, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80

Error: (04/27/2012 11:07:45 PM) (Source: Microsoft-Windows-LoadPerf) (User: SYSTEM)SYSTEM
Description: Installing the performance counter strings for service WmiApRpl (WmiApRpl) failed. The first DWORD in the Data section contains the error code.

Error: (04/27/2012 11:07:45 PM) (Source: Microsoft-Windows-LoadPerf) (User: SYSTEM)SYSTEM
Description: Unable to update the performance counter strings defined for the 009 language ID. The first DWORD in the Data section contains the error code.


System errors:
=============
Error: (05/04/2012 03:59:50 AM) (Source: DCOM) (User: )
Description: 1068fdPHost{D3DCB472-7261-43CE-924B-0704BD730D5F}

Error: (05/04/2012 03:59:50 AM) (Source: DCOM) (User: )
Description: 1068fdPHost{145B4335-FE2A-4927-A040-7C35AD3180EF}

Error: (05/04/2012 03:51:05 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (User: SYSTEM)
Description: WLAN Extensibility Module has failed to start.

Module Path: C:\Windows\System32\bcmihvsrv64.dll
Error Code: 21

Error: (05/04/2012 03:51:02 AM) (Source: DCOM) (User: )
Description: 1084WSearch{9E175B6D-F52A-11D8-B9A5-505054503030}

Error: (05/04/2012 03:51:02 AM) (Source: DCOM) (User: )
Description: 1084WSearch{7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}

Error: (05/04/2012 03:51:00 AM) (Source: DCOM) (User: )
Description: 1084EventSystem{1BE1F766-5536-11D1-B726-00C04FB926AF}

Error: (05/04/2012 03:50:54 AM) (Source: DCOM) (User: )
Description: 1084ShellHWDetection{DD522ACC-F821-461A-A407-50B198B896DC}

Error: (05/04/2012 03:50:45 AM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
discache
RxFilter
spldr
Wanarpv6

Error: (05/04/2012 03:32:02 AM) (Source: Service Control Manager) (User: )
Description: The Windows Update service hung on starting.

Error: (05/04/2012 03:24:43 AM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
RxFilter


Microsoft Office Sessions:
=========================
Error: (05/04/2012 03:25:36 AM) (Source: Application Hang)(User: )
Description: Explorer.EXE6.1.7601.1756799c01cd29cf6332a73847C:\Windows\Explorer.EXEaeea2e19-95c2-11e1-884a-8b34e4ffc54d

Error: (05/04/2012 03:14:45 AM) (Source: System Restore)(User: )
Description: C:\Windows\system32\DrvInst.exe "4" "20" "C:\Users\Crystal\AppData\Local\Temp\{1f3d7d1b-57a4-44dc-367f-782758fdcd5a}\android_usb.inf" "9" "6b2dc67bb" "0000000000000554" "WinSta0\Default" "00000000000003C8" "208" "C:\Program Files (x86)\PdaNet for Android\usbwin"Device Driver Package Install: Google, Inc ADB Interface0x8007043c

Error: (05/03/2012 11:30:56 PM) (Source: Application Hang)(User: )
Description: iexplore.exe8.0.7601.17514106c01cd298e419fa50d109C:\Program Files (x86)\Internet Explorer\iexplore.exedfcfe4a1-95a1-11e1-a474-cd86f9583b76

Error: (05/03/2012 11:26:12 PM) (Source: Application Hang)(User: )
Description: DllHost.exe6.1.7600.16385115001cd29adc6d5298968C:\Windows\system32\DllHost.exe36fb57a7-95a1-11e1-a474-cd86f9583b76

Error: (05/03/2012 11:03:18 PM) (Source: Google Update)(User: Crystal)Crystal
Description: Network Request Error.
Error: 0x80040880. Http status code: 200.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=FireFox, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80040880. Http status code 200.
trying WinHTTP.
Send request returned 0x80072ee2. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80040880. Http status code 200.
trying WinHTTP.
Send request returned 0x80072ee2. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=FireFox, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80040880. Http status code 200.
trying WinHTTP.
Send request returned 0x80072ee2. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request r

Error: (05/03/2012 05:13:05 PM) (Source: Application Error)(User: )
Description: WLTRAY.EXE5.60.48.184b1e7c08opls64.dll_unloaded0.0.0.04e79f7c9c000000500000000023784a287c01cd29737da46b95C:\Program Files\Dell\DW WLAN Card\WLTRAY.EXEopls64.dll2789d27d-956d-11e1-ab8c-da9d1559b847

Error: (05/03/2012 04:27:40 PM) (Source: Google Update)(User: Crystal)Crystal
Description: Network Request Error.
Error: 0x80040880. Http status code: 200.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=FireFox, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80040880. Http status code 200.
trying WinHTTP.
Send request returned 0x80072f8f. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80040880. Http status code 200.
trying WinHTTP.
Send request returned 0x80072f8f. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=FireFox, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80040880. Http status code 200.
trying WinHTTP.
Send request returned 0x80072f8f. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=auto, wpad=1, script=.
trying CUP:WinHTTP.
Send request r

Error: (05/01/2012 11:01:06 PM) (Source: Google Update)(User: Crystal)Crystal
Description: Network Request Error.
Error: 0x80072ee7. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=FireFox, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=FireFox, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80

Error: (04/27/2012 11:07:45 PM) (Source: Microsoft-Windows-LoadPerf)(User: SYSTEM)SYSTEM
Description: WmiApRplWmiApRpl805000000C9120000

Error: (04/27/2012 11:07:45 PM) (Source: Microsoft-Windows-LoadPerf)(User: SYSTEM)SYSTEM
Description: 0098050000005A0D0000


=========================== Installed Programs ============================

64 Bit HP CIO Components Installer (Version: 7.2.8)
Adobe AIR (Version: 2.6.0.19120)
Adobe Flash Player 11 ActiveX 64-bit (Version: 11.2.202.233)
Adobe Flash Player 11 Plugin 64-bit (Version: 11.2.202.233)
Advanced Audio FX Engine (Version: 1.12.05)
Ask Toolbar (Version: 1.12.2.0)
BFlix Toolbar (Version: 1.0.0.0)
Bing Bar (Version: 7.1.361.0)
blinkx beat (Version: 1.5.0)
BufferChm (Version: 140.0.212.000)
Cisco EAP-FAST Module (Version: 2.2.14)
Cisco LEAP Module (Version: 1.0.19)
Cisco PEAP Module (Version: 1.1.6)
Compatibility Pack for the 2007 Office system (Version: 12.0.6612.1000)
Coupon Printer for Windows (Version: 5.0.0.1)
Coupons.com Toolbar (Version: 6.3.8.0)
D110 (Version: 140.0.283.000)
Dell Resource CD (Version: 1.00.0000)
Dell Support Center (Support Software) (Version: 2.5.09100)
Dell Webcam Central (Version: 2.00.33)
Destinations (Version: 140.0.77.000)
DeviceDiscovery (Version: 140.0.212.000)
DirectXInstallService (Version: 9.0.2)
DW WLAN Card Utility (Version: 5.60.48.18)
EMC 10 Content (Version: 1.0.035)
EMCGadgets64 (Version: 1.0.302)
Facebook Video Calling 1.2.0.159 (Version: 1.2.159)
Google Chrome (Version: 18.0.1025.162)
Google Update Helper (Version: 1.3.21.111)
GPBaseService2 (Version: 140.0.211.000)
Hauppauge TV Tuner Diagnostics (1.2.7076) (Version: 1.2.7076)
Hauppauge TV Tuner Driver (Version: 4.2.10.27180)
HP Customer Participation Program 14.0 (Version: 14.0)
HP Imaging Device Functions 14.0 (Version: 14.0)
HP Photo Creations (Version: 1.0.0.${CAB_VERSION})
HP Photosmart D110 All-In-One Driver Software 14.0 Rel. 7 (Version: 14.0)
HP Smart Web Printing 4.60 (Version: 4.60)
HP Solution Center 14.0 (Version: 14.0)
HP Update (Version: 5.003.001.001)
HPAppStudio (Version: 140.0.95.000)
HPPhotoGadget (Version: 140.0.524.000)
HPProductAssistant (Version: 140.0.212.000)
HPSSupply (Version: 140.0.211.000)
HTC BMP USB Driver (Version: 1.0.5375)
HTC Driver Installer (Version: 3.0.0.007)
Internet TV for Windows Media Center (Version: 4.2.2.0)
Java Auto Updater (Version: 2.0.5.1)
Java™ 6 Update 18 (64-bit) (Version: 6.0.180)
Java™ 6 Update 26 (Version: 6.0.260)
MarketResearch (Version: 140.0.212.000)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Office PowerPoint Viewer 2007 (English) (Version: 12.0.6612.1000)
Microsoft Silverlight (Version: 4.1.10111.0)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Works (Version: 9.7.0621)
Mozilla Firefox 11.0 (x86 en-US) (Version: 11.0)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML 4.0 SP3 Parser (KB973685) (Version: 4.30.2107.0)
MSXML 4.0 SP3 Parser (Version: 4.30.2100.0)
Network64 (Version: 140.0.215.000)
Network64 (Version: 140.0.221.000)
PdaNet for Android 3.25
PowerDVD DX (Version: 8.3.5424)
PS_AIO_07_D110_SW_Min (Version: 140.0.142.000)
QuickTransfer (Version: 140.0.98.000)
RealNetworks - Microsoft Visual C++ 2008 Runtime (Version: 9.0)
RealPlayer
Realtek Ethernet Controller Driver For Windows 7 (Version: 7.13.112.2010)
Realtek USB 2.0 Card Reader (Version: 6.1.7600.30109)
RealUpgrade 1.1 (Version: 1.1.0)
Roxio Activation Module (Version: 1.0)
Roxio BackOnTrack (Version: 1.3.0)
Roxio Burn (Version: 1.0.0)
Roxio Central Audio (Version: 3.8.0)
Roxio Central Copy (Version: 3.8.0)
Roxio Central Core (Version: 3.8.0)
Roxio Central Data (Version: 3.8.0)
Roxio Central Tools (Version: 3.8.0)
Roxio Easy CD and DVD Burning (Version: 10.3)
Roxio Easy CD and DVD Burning (Version: 10.3.105)
Roxio Express Labeler 3 (Version: 3.2.1)
Roxio File Backup (Version: 1.3.0)
Roxio Update Manager (Version: 6.0.0)
Scan (Version: 140.0.80.000)
Shop for HP Supplies (Version: 14.0)
SmartWebPrinting (Version: 140.0.186.000)
SolutionCenter (Version: 140.0.214.000)
Sonic CinePlayer Decoder Pack (Version: 4.3.0)
Status (Version: 140.0.256.000)
Synaptics Pointing Device Driver (Version: 15.0.0.1)
The Weather Channel App
The Weather Channel Desktop 6
Toolbox (Version: 140.0.428.000)
TrayApp (Version: 140.0.212.000)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
WebReg (Version: 140.0.212.017)
Windows Live ID Sign-in Assistant (Version: 6.500.3165.0)
Windows Media Player Firefox Plugin (Version: 1.0.0.8)

========================= Devices: ================================

Name: Security Processor Loader Driver
Description: Security Processor Loader Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: spldr
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: Photosmart D110 series
Description: Photosmart D110 series
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: HP
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Photosmart D110 series
Description: Photosmart D110 series
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: HP
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: HP LaserJet 2100 Series
Description: HP LaserJet 2100 Series
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: Hewlett-Packard
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


========================= Memory info: ===================================

Percentage of memory in use: 20%
Total physical RAM: 2811.94 MB
Available physical RAM: 2244.53 MB
Total Pagefile: 5622.07 MB
Available Pagefile: 5077.06 MB
Total Virtual: 4095.88 MB
Available Virtual: 3978 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:297.99 GB) (Free:259.1 GB) NTFS

========================= Users: ========================================

User accounts for \\CRYSTAL-PC

Administrator Crystal Guest

========================= Minidump Files ==================================


**** End of log ****

#14 Crystal-PC

Crystal-PC
  • Topic Starter

  • Members
  • 56 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Missouri
  • Local time:12:18 PM

Posted 04 May 2012 - 10:17 AM

Malwarebytes Anti-Malware (Trial) 1.61.0.1400
www.malwarebytes.org

Database version: v2012.05.04.01

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 8.0.7601.17514
Crystal :: CRYSTAL-PC [administrator]

Protection: Enabled

5/4/2012 10:16:20 AM
mbam-log-2012-05-04 (10-16-20).txt

Scan type: Custom scan
Scan options enabled: File System | Heuristics/Shuriken | PUP | PUM
Scan options disabled: Memory | Startup | Registry | Heuristics/Extra | P2P
Objects scanned: 2
Time elapsed: 2 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0

#15 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,490 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:01:18 PM

Posted 04 May 2012 - 12:12 PM

Hello, I see what looks like a deep seated zeroaccess infection. We need special tools to get it.

Please go here....Preparation Guide ,do steps 6-9.

Create a DDS log and post it in the new topic explained in step 9 which is here Virus, Trojan, Spyware, and Malware Removal Logs and not in this topic,thanks.
If GMER won't run skip it and move on.

Let me know if that went well.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users