Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

IE redirecting, TDSSKiller won't run, Java won't install


  • Please log in to reply
7 replies to this topic

#1 ejhonda

ejhonda

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:07:43 AM

Posted 20 June 2012 - 01:19 AM

Began noticing issues with Google searches being redirected to odd URLs. Ditched AVG and installed MS Sec Essentials, which promptly found 3 Java infections and quarantined them. Can't recall what they were since I deleted the logs accidentally thinking I was deleting the infected files that had been quarantined. Tried scanning with MBAM but scan comes out clean. Noticed a Windows alert stating Windows Security Center wouldn't run. Ran Combofix, which seemed to allow Windows Security Center to be started, but redirects persisted. Tried running TDSSKiller, but even when naming it randomly, it won't fire up. Redirections are still occurring.

Uninstalled and reinstalled Java, but it won't install successfully. I get two messages when trying to install Java:
"Downloaded File C:\Users\<name>\AppData\Local\Temp\\fx-runtime.exe is corrupt.", and "Installer: Wrapper.CreateFile failed with error 5: Access is denied."

This is on a Win7 x64 PC.

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:43 AM

Posted 20 June 2012 - 02:03 AM

Download

FIXTDSS

Launch it ,It may ask for restart,reboot the PC

On reboot,click on REPAIR

Now

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner


Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 ejhonda

ejhonda
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:07:43 AM

Posted 20 June 2012 - 11:14 PM

1) Ran FIXTDSS. Immediately asked for a reboot
2) FIXTDSS said Master Boot Record was infected and cleaned it.
3) MS Sec Essentials immediately chimed in it detected Trojan:DOS/Alureon.E, quarantined it, and I selected 'Remove'.
4) MSE wanted a reboot, so I did. Noticed IE no longer redirected search results and was noticeably faster.
5) Ran TDSSKiller, said it found 0 threats, quarantined 0 objects; log below...

TDSSKiller Log:
23:08:37.0285 0880 TDSS rootkit removing tool 2.7.40.0 Jun 15 2012 15:13:31
23:08:37.0550 0880 ============================================================
23:08:37.0550 0880 Current date / time: 2012/06/20 23:08:37.0550
23:08:37.0550 0880 SystemInfo:
23:08:37.0550 0880
23:08:37.0550 0880 OS Version: 6.1.7601 ServicePack: 1.0
23:08:37.0550 0880 Product type: Workstation
23:08:37.0550 0880 ComputerName: LOIS-PC
23:08:37.0550 0880 UserName: lois
23:08:37.0550 0880 Windows directory: C:\Windows
23:08:37.0550 0880 System windows directory: C:\Windows
23:08:37.0550 0880 Running under WOW64
23:08:37.0550 0880 Processor architecture: Intel x64
23:08:37.0550 0880 Number of processors: 2
23:08:37.0550 0880 Page size: 0x1000
23:08:37.0550 0880 Boot type: Normal boot
23:08:37.0550 0880 ============================================================
23:08:39.0141 0880 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
23:08:39.0172 0880 ============================================================
23:08:39.0172 0880 \Device\Harddisk0\DR0:
23:08:39.0188 0880 MBR partitions:
23:08:39.0188 0880 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x14000, BlocksNum 0x1B9F000
23:08:39.0188 0880 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1BB3000, BlocksNum 0x387D2800
23:08:39.0188 0880 ============================================================
23:08:39.0203 0880 C: <-> \Device\Harddisk0\DR0\Partition1
23:08:39.0203 0880 ============================================================
23:08:39.0203 0880 Initialize success
23:08:39.0203 0880 ============================================================
23:09:11.0043 3744 ============================================================
23:09:11.0043 3744 Scan started
23:09:11.0043 3744 Mode: Manual; TDLFS;
23:09:11.0043 3744 ============================================================
23:09:11.0761 3744 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
23:09:11.0776 3744 1394ohci - ok
23:09:11.0823 3744 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
23:09:11.0839 3744 ACPI - ok
23:09:11.0870 3744 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
23:09:11.0870 3744 AcpiPmi - ok
23:09:12.0026 3744 AdobeFlashPlayerUpdateSvc (f3cd7b20b27d1772c946df993ff3635c) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
23:09:12.0026 3744 AdobeFlashPlayerUpdateSvc - ok
23:09:12.0088 3744 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
23:09:12.0088 3744 adp94xx - ok
23:09:12.0119 3744 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
23:09:12.0135 3744 adpahci - ok
23:09:12.0151 3744 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
23:09:12.0151 3744 adpu320 - ok
23:09:12.0166 3744 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
23:09:12.0166 3744 AeLookupSvc - ok
23:09:12.0229 3744 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
23:09:12.0244 3744 AFD - ok
23:09:12.0275 3744 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
23:09:12.0275 3744 agp440 - ok
23:09:12.0291 3744 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
23:09:12.0291 3744 ALG - ok
23:09:12.0322 3744 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
23:09:12.0322 3744 aliide - ok
23:09:12.0369 3744 AMD External Events Utility (a359974eaac83a435497c52f62a2e590) C:\Windows\system32\atiesrxx.exe
23:09:12.0369 3744 AMD External Events Utility - ok
23:09:12.0400 3744 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
23:09:12.0416 3744 amdide - ok
23:09:12.0463 3744 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
23:09:12.0463 3744 AmdK8 - ok
23:09:13.0633 3744 amdkmdag (60216b0e704584de6d5a9f59e9c34c47) C:\Windows\system32\DRIVERS\atikmdag.sys
23:09:13.0773 3744 amdkmdag - ok
23:09:15.0099 3744 amdkmdap (6b4e9261b613b047a9a145f328889968) C:\Windows\system32\DRIVERS\atikmpag.sys
23:09:15.0115 3744 amdkmdap - ok
23:09:15.0317 3744 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
23:09:15.0317 3744 AmdPPM - ok
23:09:15.0442 3744 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
23:09:15.0458 3744 amdsata - ok
23:09:15.0520 3744 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
23:09:15.0520 3744 amdsbs - ok
23:09:15.0551 3744 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
23:09:15.0551 3744 amdxata - ok
23:09:15.0614 3744 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
23:09:15.0614 3744 AppID - ok
23:09:15.0707 3744 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
23:09:15.0707 3744 AppIDSvc - ok
23:09:15.0785 3744 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
23:09:15.0785 3744 Appinfo - ok
23:09:15.0832 3744 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
23:09:15.0832 3744 arc - ok
23:09:15.0832 3744 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
23:09:15.0848 3744 arcsas - ok
23:09:15.0941 3744 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
23:09:15.0941 3744 AsyncMac - ok
23:09:16.0019 3744 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
23:09:16.0019 3744 atapi - ok
23:09:16.0175 3744 AtiHdmiService (fb7602c5c508be281368aae0b61b51c6) C:\Windows\system32\drivers\AtiHdmi.sys
23:09:16.0175 3744 AtiHdmiService - ok
23:09:16.0643 3744 atikmdag (60216b0e704584de6d5a9f59e9c34c47) C:\Windows\system32\DRIVERS\atikmdag.sys
23:09:16.0690 3744 atikmdag - ok
23:09:16.0815 3744 AtiPcie (7c5d273e29dcc5505469b299c6f29163) C:\Windows\system32\DRIVERS\AtiPcie.sys
23:09:16.0815 3744 AtiPcie - ok
23:09:16.0877 3744 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
23:09:16.0893 3744 AudioEndpointBuilder - ok
23:09:16.0893 3744 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
23:09:16.0893 3744 AudioSrv - ok
23:09:16.0940 3744 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
23:09:16.0940 3744 AxInstSV - ok
23:09:17.0002 3744 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
23:09:17.0002 3744 b06bdrv - ok
23:09:17.0049 3744 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
23:09:17.0049 3744 b57nd60a - ok
23:09:17.0096 3744 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
23:09:17.0096 3744 BDESVC - ok
23:09:17.0111 3744 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
23:09:17.0111 3744 Beep - ok
23:09:17.0205 3744 BFE (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
23:09:17.0221 3744 BFE - ok
23:09:17.0267 3744 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\system32\qmgr.dll
23:09:17.0267 3744 BITS - ok
23:09:17.0314 3744 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
23:09:17.0330 3744 blbdrive - ok
23:09:17.0361 3744 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
23:09:17.0377 3744 bowser - ok
23:09:17.0392 3744 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
23:09:17.0392 3744 BrFiltLo - ok
23:09:17.0392 3744 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
23:09:17.0408 3744 BrFiltUp - ok
23:09:17.0423 3744 BridgeMP (5c2f352a4e961d72518261257aae204b) C:\Windows\system32\DRIVERS\bridge.sys
23:09:17.0423 3744 BridgeMP - ok
23:09:17.0455 3744 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
23:09:17.0455 3744 Browser - ok
23:09:17.0486 3744 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
23:09:17.0486 3744 Brserid - ok
23:09:17.0501 3744 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
23:09:17.0501 3744 BrSerWdm - ok
23:09:17.0501 3744 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
23:09:17.0501 3744 BrUsbMdm - ok
23:09:17.0501 3744 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
23:09:17.0501 3744 BrUsbSer - ok
23:09:17.0517 3744 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
23:09:17.0517 3744 BTHMODEM - ok
23:09:17.0564 3744 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
23:09:17.0564 3744 bthserv - ok
23:09:17.0579 3744 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
23:09:17.0595 3744 cdfs - ok
23:09:17.0642 3744 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\drivers\cdrom.sys
23:09:17.0657 3744 cdrom - ok
23:09:17.0704 3744 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
23:09:17.0704 3744 CertPropSvc - ok
23:09:17.0720 3744 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
23:09:17.0720 3744 circlass - ok
23:09:17.0767 3744 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
23:09:17.0767 3744 CLFS - ok
23:09:17.0845 3744 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
23:09:17.0845 3744 clr_optimization_v2.0.50727_32 - ok
23:09:17.0891 3744 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
23:09:17.0891 3744 clr_optimization_v2.0.50727_64 - ok
23:09:17.0985 3744 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
23:09:18.0001 3744 clr_optimization_v4.0.30319_32 - ok
23:09:18.0047 3744 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
23:09:18.0047 3744 clr_optimization_v4.0.30319_64 - ok
23:09:18.0079 3744 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
23:09:18.0079 3744 CmBatt - ok
23:09:18.0110 3744 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
23:09:18.0110 3744 cmdide - ok
23:09:18.0157 3744 CNG (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys
23:09:18.0157 3744 CNG - ok
23:09:18.0172 3744 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
23:09:18.0172 3744 Compbatt - ok
23:09:18.0219 3744 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
23:09:18.0219 3744 CompositeBus - ok
23:09:18.0235 3744 COMSysApp - ok
23:09:18.0235 3744 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
23:09:18.0235 3744 crcdisk - ok
23:09:18.0281 3744 CryptSvc (4f5414602e2544a4554d95517948b705) C:\Windows\system32\cryptsvc.dll
23:09:18.0281 3744 CryptSvc - ok
23:09:18.0422 3744 cvhsvc (72794d112cbaff3bc0c29bf7350d4741) C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
23:09:18.0422 3744 cvhsvc - ok
23:09:18.0484 3744 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
23:09:18.0500 3744 DcomLaunch - ok
23:09:18.0547 3744 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
23:09:18.0562 3744 defragsvc - ok
23:09:18.0609 3744 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
23:09:18.0609 3744 DfsC - ok
23:09:18.0687 3744 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
23:09:18.0687 3744 Dhcp - ok
23:09:18.0718 3744 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
23:09:18.0734 3744 discache - ok
23:09:18.0749 3744 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
23:09:18.0749 3744 Disk - ok
23:09:18.0796 3744 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
23:09:18.0796 3744 Dnscache - ok
23:09:18.0890 3744 DockLoginService (0840abbbdf438691ee65a20040635cbe) C:\Program Files\Dell\DellDock\DockLogin.exe
23:09:18.0890 3744 DockLoginService - ok
23:09:18.0952 3744 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
23:09:18.0952 3744 dot3svc - ok
23:09:18.0999 3744 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
23:09:18.0999 3744 DPS - ok
23:09:19.0030 3744 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
23:09:19.0030 3744 drmkaud - ok
23:09:19.0124 3744 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
23:09:19.0124 3744 DXGKrnl - ok
23:09:19.0155 3744 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
23:09:19.0155 3744 EapHost - ok
23:09:19.0327 3744 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
23:09:19.0342 3744 ebdrv - ok
23:09:19.0451 3744 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
23:09:19.0451 3744 EFS - ok
23:09:19.0529 3744 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
23:09:19.0545 3744 ehRecvr - ok
23:09:19.0561 3744 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
23:09:19.0561 3744 ehSched - ok
23:09:19.0639 3744 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
23:09:19.0654 3744 elxstor - ok
23:09:19.0685 3744 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
23:09:19.0685 3744 ErrDev - ok
23:09:19.0732 3744 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
23:09:19.0732 3744 EventSystem - ok
23:09:19.0748 3744 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
23:09:19.0748 3744 exfat - ok
23:09:19.0779 3744 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
23:09:19.0779 3744 fastfat - ok
23:09:19.0873 3744 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
23:09:19.0888 3744 Fax - ok
23:09:19.0888 3744 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
23:09:19.0888 3744 fdc - ok
23:09:19.0904 3744 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
23:09:19.0904 3744 fdPHost - ok
23:09:19.0904 3744 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
23:09:19.0904 3744 FDResPub - ok
23:09:19.0919 3744 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
23:09:19.0919 3744 FileInfo - ok
23:09:19.0935 3744 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
23:09:19.0935 3744 Filetrace - ok
23:09:19.0935 3744 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
23:09:19.0951 3744 flpydisk - ok
23:09:19.0997 3744 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
23:09:19.0997 3744 FltMgr - ok
23:09:20.0075 3744 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
23:09:20.0091 3744 FontCache - ok
23:09:20.0185 3744 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
23:09:20.0185 3744 FontCache3.0.0.0 - ok
23:09:20.0231 3744 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
23:09:20.0231 3744 FsDepends - ok
23:09:20.0263 3744 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
23:09:20.0278 3744 Fs_Rec - ok
23:09:20.0325 3744 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
23:09:20.0325 3744 fvevol - ok
23:09:20.0356 3744 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
23:09:20.0356 3744 gagp30kx - ok
23:09:20.0450 3744 GamesAppService (c403c5db49a0f9aaf4f2128edc0106d8) C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
23:09:20.0450 3744 GamesAppService - ok
23:09:20.0497 3744 GoToAssist (d3316f6e3c011435f36e3d6e49b3196c) C:\Program Files (x86)\Citrix\GoToAssist\514\g2aservice.exe
23:09:20.0497 3744 GoToAssist - ok
23:09:20.0590 3744 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
23:09:20.0606 3744 gpsvc - ok
23:09:20.0606 3744 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
23:09:20.0606 3744 hcw85cir - ok
23:09:20.0653 3744 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
23:09:20.0653 3744 HDAudBus - ok
23:09:20.0668 3744 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
23:09:20.0668 3744 HidBatt - ok
23:09:20.0684 3744 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
23:09:20.0684 3744 HidBth - ok
23:09:20.0699 3744 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
23:09:20.0699 3744 HidIr - ok
23:09:20.0715 3744 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\System32\hidserv.dll
23:09:20.0715 3744 hidserv - ok
23:09:20.0746 3744 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
23:09:20.0746 3744 HidUsb - ok
23:09:20.0777 3744 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
23:09:20.0777 3744 hkmsvc - ok
23:09:20.0840 3744 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
23:09:20.0840 3744 HomeGroupListener - ok
23:09:20.0871 3744 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
23:09:20.0887 3744 HomeGroupProvider - ok
23:09:20.0918 3744 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
23:09:20.0918 3744 HpSAMD - ok
23:09:20.0996 3744 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
23:09:21.0011 3744 HTTP - ok
23:09:21.0043 3744 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
23:09:21.0043 3744 hwpolicy - ok
23:09:21.0074 3744 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
23:09:21.0074 3744 i8042prt - ok
23:09:21.0121 3744 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
23:09:21.0121 3744 iaStorV - ok
23:09:21.0261 3744 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
23:09:21.0277 3744 idsvc - ok
23:09:21.0308 3744 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
23:09:21.0308 3744 iirsp - ok
23:09:21.0386 3744 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
23:09:21.0401 3744 IKEEXT - ok
23:09:21.0511 3744 IntcAzAudAddService (9526f32b8a76f8dc25a1587400e30084) C:\Windows\system32\drivers\RTKVHD64.sys
23:09:21.0526 3744 IntcAzAudAddService - ok
23:09:21.0620 3744 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
23:09:21.0620 3744 intelide - ok
23:09:21.0667 3744 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
23:09:21.0667 3744 intelppm - ok
23:09:21.0698 3744 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
23:09:21.0698 3744 IPBusEnum - ok
23:09:21.0745 3744 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
23:09:21.0745 3744 IpFilterDriver - ok
23:09:21.0823 3744 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
23:09:21.0823 3744 iphlpsvc - ok
23:09:21.0854 3744 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
23:09:21.0854 3744 IPMIDRV - ok
23:09:21.0869 3744 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
23:09:21.0869 3744 IPNAT - ok
23:09:21.0885 3744 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
23:09:21.0885 3744 IRENUM - ok
23:09:21.0916 3744 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
23:09:21.0916 3744 isapnp - ok
23:09:21.0947 3744 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
23:09:21.0947 3744 iScsiPrt - ok
23:09:22.0010 3744 k57nd60a (3c20f584bef50c26d1b198039658a80c) C:\Windows\system32\DRIVERS\k57nd60a.sys
23:09:22.0057 3744 k57nd60a - ok
23:09:22.0072 3744 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
23:09:22.0072 3744 kbdclass - ok
23:09:22.0103 3744 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\DRIVERS\kbdhid.sys
23:09:22.0103 3744 kbdhid - ok
23:09:22.0135 3744 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
23:09:22.0135 3744 KeyIso - ok
23:09:22.0166 3744 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys
23:09:22.0166 3744 KSecDD - ok
23:09:22.0181 3744 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys
23:09:22.0181 3744 KSecPkg - ok
23:09:22.0213 3744 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
23:09:22.0213 3744 ksthunk - ok
23:09:22.0259 3744 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
23:09:22.0259 3744 KtmRm - ok
23:09:22.0322 3744 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\System32\srvsvc.dll
23:09:22.0322 3744 LanmanServer - ok
23:09:22.0353 3744 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
23:09:22.0369 3744 LanmanWorkstation - ok
23:09:22.0415 3744 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
23:09:22.0415 3744 lltdio - ok
23:09:22.0462 3744 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
23:09:22.0462 3744 lltdsvc - ok
23:09:22.0478 3744 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
23:09:22.0493 3744 lmhosts - ok
23:09:22.0525 3744 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
23:09:22.0525 3744 LSI_FC - ok
23:09:22.0540 3744 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
23:09:22.0556 3744 LSI_SAS - ok
23:09:22.0556 3744 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
23:09:22.0556 3744 LSI_SAS2 - ok
23:09:22.0571 3744 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
23:09:22.0571 3744 LSI_SCSI - ok
23:09:22.0603 3744 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
23:09:22.0603 3744 luafv - ok
23:09:22.0649 3744 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
23:09:22.0649 3744 Mcx2Svc - ok
23:09:22.0649 3744 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
23:09:22.0649 3744 megasas - ok
23:09:22.0665 3744 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
23:09:22.0681 3744 MegaSR - ok
23:09:22.0696 3744 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
23:09:22.0696 3744 MMCSS - ok
23:09:22.0712 3744 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
23:09:22.0712 3744 Modem - ok
23:09:22.0743 3744 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
23:09:22.0743 3744 monitor - ok
23:09:22.0790 3744 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
23:09:22.0790 3744 mouclass - ok
23:09:22.0805 3744 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
23:09:22.0821 3744 mouhid - ok
23:09:22.0837 3744 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
23:09:22.0837 3744 mountmgr - ok
23:09:22.0899 3744 MpFilter (94c66ededcdb6a126880472f9a704d8e) C:\Windows\system32\DRIVERS\MpFilter.sys
23:09:22.0899 3744 MpFilter - ok
23:09:22.0946 3744 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
23:09:22.0946 3744 mpio - ok
23:09:22.0961 3744 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
23:09:22.0961 3744 mpsdrv - ok
23:09:23.0055 3744 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
23:09:23.0071 3744 MpsSvc - ok
23:09:23.0102 3744 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
23:09:23.0102 3744 MRxDAV - ok
23:09:23.0149 3744 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
23:09:23.0149 3744 mrxsmb - ok
23:09:23.0195 3744 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
23:09:23.0211 3744 mrxsmb10 - ok
23:09:23.0227 3744 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
23:09:23.0227 3744 mrxsmb20 - ok
23:09:23.0242 3744 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
23:09:23.0242 3744 msahci - ok
23:09:23.0289 3744 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
23:09:23.0289 3744 msdsm - ok
23:09:23.0336 3744 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
23:09:23.0336 3744 MSDTC - ok
23:09:23.0383 3744 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
23:09:23.0383 3744 Msfs - ok
23:09:23.0398 3744 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
23:09:23.0398 3744 mshidkmdf - ok
23:09:23.0398 3744 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
23:09:23.0398 3744 msisadrv - ok
23:09:23.0445 3744 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
23:09:23.0445 3744 MSiSCSI - ok
23:09:23.0445 3744 msiserver - ok
23:09:23.0476 3744 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
23:09:23.0476 3744 MSKSSRV - ok
23:09:23.0554 3744 MsMpSvc (59faaf2c83c8169ea20f9e335e418907) c:\Program Files\Microsoft Security Client\MsMpEng.exe
23:09:23.0554 3744 MsMpSvc - ok
23:09:23.0570 3744 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
23:09:23.0570 3744 MSPCLOCK - ok
23:09:23.0585 3744 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
23:09:23.0585 3744 MSPQM - ok
23:09:23.0632 3744 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
23:09:23.0648 3744 MsRPC - ok
23:09:23.0663 3744 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
23:09:23.0663 3744 mssmbios - ok
23:09:23.0679 3744 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
23:09:23.0679 3744 MSTEE - ok
23:09:23.0679 3744 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
23:09:23.0679 3744 MTConfig - ok
23:09:23.0695 3744 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
23:09:23.0695 3744 Mup - ok
23:09:23.0757 3744 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
23:09:23.0757 3744 napagent - ok
23:09:23.0804 3744 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
23:09:23.0804 3744 NativeWifiP - ok
23:09:23.0851 3744 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
23:09:23.0866 3744 NDIS - ok
23:09:23.0882 3744 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
23:09:23.0882 3744 NdisCap - ok
23:09:23.0897 3744 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
23:09:23.0897 3744 NdisTapi - ok
23:09:23.0929 3744 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
23:09:23.0929 3744 Ndisuio - ok
23:09:23.0960 3744 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
23:09:23.0975 3744 NdisWan - ok
23:09:24.0007 3744 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
23:09:24.0007 3744 NDProxy - ok
23:09:24.0038 3744 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
23:09:24.0038 3744 NetBIOS - ok
23:09:24.0085 3744 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
23:09:24.0085 3744 NetBT - ok
23:09:24.0131 3744 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
23:09:24.0131 3744 Netlogon - ok
23:09:24.0178 3744 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
23:09:24.0194 3744 Netman - ok
23:09:24.0225 3744 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
23:09:24.0241 3744 netprofm - ok
23:09:24.0334 3744 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
23:09:24.0334 3744 NetTcpPortSharing - ok
23:09:24.0381 3744 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
23:09:24.0381 3744 nfrd960 - ok
23:09:24.0428 3744 NisDrv (91b4e0273d2f6c24ef845f2b41311289) C:\Windows\system32\DRIVERS\NisDrvWFP.sys
23:09:24.0428 3744 NisDrv - ok
23:09:24.0537 3744 NisSrv (10a43829a9e606af3eef25a1c1665923) c:\Program Files\Microsoft Security Client\NisSrv.exe
23:09:24.0537 3744 NisSrv - ok
23:09:24.0599 3744 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
23:09:24.0615 3744 NlaSvc - ok
23:09:24.0818 3744 NOBU (b9b72faaaa41d59b73b88fe3dd737ed1) C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe
23:09:24.0849 3744 NOBU - ok
23:09:24.0958 3744 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
23:09:24.0958 3744 Npfs - ok
23:09:24.0989 3744 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
23:09:25.0005 3744 nsi - ok
23:09:25.0021 3744 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
23:09:25.0021 3744 nsiproxy - ok
23:09:25.0114 3744 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
23:09:25.0130 3744 Ntfs - ok
23:09:25.0223 3744 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
23:09:25.0223 3744 Null - ok
23:09:25.0270 3744 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
23:09:25.0270 3744 nvraid - ok
23:09:25.0286 3744 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
23:09:25.0286 3744 nvstor - ok
23:09:25.0301 3744 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
23:09:25.0317 3744 nv_agp - ok
23:09:25.0317 3744 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
23:09:25.0333 3744 ohci1394 - ok
23:09:25.0411 3744 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
23:09:25.0411 3744 ose - ok
23:09:25.0660 3744 osppsvc (61bffb5f57ad12f83ab64b7181829b34) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
23:09:25.0707 3744 osppsvc - ok
23:09:25.0816 3744 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
23:09:25.0832 3744 p2pimsvc - ok
23:09:25.0879 3744 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
23:09:25.0894 3744 p2psvc - ok
23:09:25.0941 3744 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
23:09:25.0941 3744 Parport - ok
23:09:25.0972 3744 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\Windows\system32\drivers\partmgr.sys
23:09:25.0972 3744 partmgr - ok
23:09:25.0988 3744 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
23:09:25.0988 3744 PcaSvc - ok
23:09:26.0081 3744 PCDSRVC{1E208CE0-FB7451FF-06020101}_0 (7317a0b550f7ac0223b7070897670476) c:\program files\dell support center\pcdsrvc_x64.pkms
23:09:26.0113 3744 PCDSRVC{1E208CE0-FB7451FF-06020101}_0 - ok
23:09:26.0159 3744 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
23:09:26.0159 3744 pci - ok
23:09:26.0175 3744 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
23:09:26.0175 3744 pciide - ok
23:09:26.0206 3744 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
23:09:26.0222 3744 pcmcia - ok
23:09:26.0237 3744 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
23:09:26.0237 3744 pcw - ok
23:09:26.0284 3744 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
23:09:26.0300 3744 PEAUTH - ok
23:09:26.0362 3744 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
23:09:26.0362 3744 PerfHost - ok
23:09:26.0487 3744 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
23:09:26.0487 3744 pla - ok
23:09:26.0549 3744 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
23:09:26.0565 3744 PlugPlay - ok
23:09:26.0581 3744 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
23:09:26.0596 3744 PNRPAutoReg - ok
23:09:26.0612 3744 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
23:09:26.0627 3744 PNRPsvc - ok
23:09:26.0674 3744 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
23:09:26.0690 3744 PolicyAgent - ok
23:09:26.0721 3744 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
23:09:26.0721 3744 Power - ok
23:09:26.0799 3744 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
23:09:26.0799 3744 PptpMiniport - ok
23:09:26.0830 3744 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
23:09:26.0830 3744 Processor - ok
23:09:26.0877 3744 ProfSvc (53e83f1f6cf9d62f32801cf66d8352a8) C:\Windows\system32\profsvc.dll
23:09:26.0893 3744 ProfSvc - ok
23:09:26.0924 3744 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
23:09:26.0924 3744 ProtectedStorage - ok
23:09:26.0986 3744 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
23:09:26.0986 3744 Psched - ok
23:09:27.0033 3744 PxHlpa64 (87b04878a6d59d6c79251dc960c674c1) C:\Windows\system32\Drivers\PxHlpa64.sys
23:09:27.0033 3744 PxHlpa64 - ok
23:09:27.0127 3744 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
23:09:27.0142 3744 ql2300 - ok
23:09:27.0267 3744 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
23:09:27.0267 3744 ql40xx - ok
23:09:27.0329 3744 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
23:09:27.0329 3744 QWAVE - ok
23:09:27.0345 3744 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
23:09:27.0345 3744 QWAVEdrv - ok
23:09:27.0361 3744 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
23:09:27.0361 3744 RasAcd - ok
23:09:27.0407 3744 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
23:09:27.0407 3744 RasAgileVpn - ok
23:09:27.0423 3744 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
23:09:27.0423 3744 RasAuto - ok
23:09:27.0470 3744 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
23:09:27.0470 3744 Rasl2tp - ok
23:09:27.0517 3744 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
23:09:27.0517 3744 RasMan - ok
23:09:27.0532 3744 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
23:09:27.0532 3744 RasPppoe - ok
23:09:27.0548 3744 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
23:09:27.0548 3744 RasSstp - ok
23:09:27.0595 3744 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
23:09:27.0610 3744 rdbss - ok
23:09:27.0626 3744 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
23:09:27.0626 3744 rdpbus - ok
23:09:27.0626 3744 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
23:09:27.0626 3744 RDPCDD - ok
23:09:27.0657 3744 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
23:09:27.0657 3744 RDPENCDD - ok
23:09:27.0673 3744 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
23:09:27.0673 3744 RDPREFMP - ok
23:09:27.0704 3744 RDPWD (e61608aa35e98999af9aaeeea6114b0a) C:\Windows\system32\drivers\RDPWD.sys
23:09:27.0704 3744 RDPWD - ok
23:09:27.0766 3744 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
23:09:27.0766 3744 rdyboost - ok
23:09:27.0797 3744 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
23:09:27.0797 3744 RemoteAccess - ok
23:09:27.0813 3744 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
23:09:27.0829 3744 RemoteRegistry - ok
23:09:28.0000 3744 RoxMediaDB12OEM (bddc447ab46625a54619808575d5cb46) C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe
23:09:28.0016 3744 RoxMediaDB12OEM - ok
23:09:28.0047 3744 RoxWatch12 (ce203243adf512540249df9c264f12dd) C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe
23:09:28.0063 3744 RoxWatch12 - ok
23:09:28.0156 3744 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
23:09:28.0156 3744 RpcEptMapper - ok
23:09:28.0187 3744 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
23:09:28.0187 3744 RpcLocator - ok
23:09:28.0250 3744 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
23:09:28.0265 3744 RpcSs - ok
23:09:28.0312 3744 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
23:09:28.0312 3744 rspndr - ok
23:09:28.0343 3744 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
23:09:28.0343 3744 SamSs - ok
23:09:28.0375 3744 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
23:09:28.0375 3744 sbp2port - ok
23:09:28.0421 3744 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
23:09:28.0421 3744 SCardSvr - ok
23:09:28.0453 3744 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
23:09:28.0453 3744 scfilter - ok
23:09:28.0546 3744 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
23:09:28.0546 3744 Schedule - ok
23:09:28.0577 3744 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
23:09:28.0577 3744 SCPolicySvc - ok
23:09:28.0624 3744 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
23:09:28.0640 3744 SDRSVC - ok
23:09:28.0702 3744 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
23:09:28.0702 3744 secdrv - ok
23:09:28.0733 3744 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
23:09:28.0749 3744 seclogon - ok
23:09:28.0780 3744 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\system32\sens.dll
23:09:28.0780 3744 SENS - ok
23:09:28.0796 3744 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
23:09:28.0796 3744 SensrSvc - ok
23:09:28.0811 3744 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
23:09:28.0811 3744 Serenum - ok
23:09:28.0827 3744 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
23:09:28.0827 3744 Serial - ok
23:09:28.0858 3744 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
23:09:28.0858 3744 sermouse - ok
23:09:28.0905 3744 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
23:09:28.0905 3744 SessionEnv - ok
23:09:28.0921 3744 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
23:09:28.0921 3744 sffdisk - ok
23:09:28.0936 3744 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
23:09:28.0952 3744 sffp_mmc - ok
23:09:28.0952 3744 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
23:09:28.0952 3744 sffp_sd - ok
23:09:28.0952 3744 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
23:09:28.0967 3744 sfloppy - ok
23:09:29.0045 3744 Sftfs (c6cc9297bd53e5229653303e556aa539) C:\Windows\system32\DRIVERS\Sftfslh.sys
23:09:29.0045 3744 Sftfs - ok
23:09:29.0170 3744 sftlist (13693b6354dd6e72dc5131da7d764b90) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
23:09:29.0170 3744 sftlist - ok
23:09:29.0201 3744 Sftplay (390aa7bc52cee43f6790cdea1e776703) C:\Windows\system32\DRIVERS\Sftplaylh.sys
23:09:29.0201 3744 Sftplay - ok
23:09:29.0217 3744 Sftredir (617e29a0b0a2807466560d4c4e338d3e) C:\Windows\system32\DRIVERS\Sftredirlh.sys
23:09:29.0217 3744 Sftredir - ok
23:09:29.0311 3744 SftService (38f88f0df46c4d42125ef721abd7f6b9) C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
23:09:29.0311 3744 SftService - ok
23:09:29.0342 3744 Sftvol (8f571f016fa1976f445147e9e6c8ae9b) C:\Windows\system32\DRIVERS\Sftvollh.sys
23:09:29.0342 3744 Sftvol - ok
23:09:29.0404 3744 sftvsa (c3cddd18f43d44ab713cf8c4916f7696) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
23:09:29.0404 3744 sftvsa - ok
23:09:29.0467 3744 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
23:09:29.0482 3744 SharedAccess - ok
23:09:29.0529 3744 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
23:09:29.0529 3744 ShellHWDetection - ok
23:09:29.0560 3744 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
23:09:29.0560 3744 SiSRaid2 - ok
23:09:29.0560 3744 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
23:09:29.0560 3744 SiSRaid4 - ok
23:09:29.0591 3744 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
23:09:29.0591 3744 Smb - ok
23:09:29.0638 3744 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
23:09:29.0638 3744 SNMPTRAP - ok
23:09:29.0654 3744 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
23:09:29.0654 3744 spldr - ok
23:09:29.0716 3744 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
23:09:29.0732 3744 Spooler - ok
23:09:29.0888 3744 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
23:09:29.0919 3744 sppsvc - ok
23:09:30.0013 3744 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
23:09:30.0028 3744 sppuinotify - ok
23:09:30.0106 3744 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
23:09:30.0122 3744 srv - ok
23:09:30.0153 3744 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
23:09:30.0153 3744 srv2 - ok
23:09:30.0169 3744 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
23:09:30.0184 3744 srvnet - ok
23:09:30.0200 3744 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
23:09:30.0200 3744 SSDPSRV - ok
23:09:30.0215 3744 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
23:09:30.0215 3744 SstpSvc - ok
23:09:30.0293 3744 Steam Client Service - ok
23:09:30.0325 3744 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
23:09:30.0325 3744 stexstor - ok
23:09:30.0387 3744 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
23:09:30.0403 3744 stisvc - ok
23:09:30.0449 3744 stllssvr (9e182dd94496550a22a392cc1a8e0f52) C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
23:09:30.0559 3744 stllssvr - ok
23:09:30.0605 3744 SWDUMon (e350135736d696bf279705e139376e1e) C:\Windows\system32\DRIVERS\SWDUMon.sys
23:09:30.0668 3744 SWDUMon - ok
23:09:30.0699 3744 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
23:09:30.0699 3744 swenum - ok
23:09:30.0761 3744 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
23:09:30.0761 3744 swprv - ok
23:09:30.0871 3744 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
23:09:30.0886 3744 SysMain - ok
23:09:30.0995 3744 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
23:09:31.0011 3744 TabletInputService - ok
23:09:31.0042 3744 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
23:09:31.0042 3744 TapiSrv - ok
23:09:31.0058 3744 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
23:09:31.0058 3744 TBS - ok
23:09:31.0198 3744 Tcpip (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\drivers\tcpip.sys
23:09:31.0214 3744 Tcpip - ok
23:09:31.0401 3744 TCPIP6 (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\DRIVERS\tcpip.sys
23:09:31.0401 3744 TCPIP6 - ok
23:09:31.0463 3744 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
23:09:31.0463 3744 tcpipreg - ok
23:09:31.0510 3744 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
23:09:31.0510 3744 TDPIPE - ok
23:09:31.0526 3744 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
23:09:31.0541 3744 TDTCP - ok
23:09:31.0557 3744 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
23:09:31.0573 3744 tdx - ok
23:09:31.0604 3744 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
23:09:31.0604 3744 TermDD - ok
23:09:31.0651 3744 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
23:09:31.0651 3744 TermService - ok
23:09:31.0666 3744 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
23:09:31.0682 3744 Themes - ok
23:09:31.0697 3744 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
23:09:31.0713 3744 THREADORDER - ok
23:09:31.0744 3744 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
23:09:31.0744 3744 TrkWks - ok
23:09:31.0807 3744 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
23:09:31.0807 3744 TrustedInstaller - ok
23:09:31.0853 3744 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
23:09:31.0853 3744 tssecsrv - ok
23:09:31.0900 3744 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
23:09:31.0900 3744 TsUsbFlt - ok
23:09:31.0947 3744 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
23:09:31.0947 3744 tunnel - ok
23:09:31.0978 3744 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
23:09:31.0978 3744 uagp35 - ok
23:09:32.0009 3744 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
23:09:32.0025 3744 udfs - ok
23:09:32.0041 3744 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
23:09:32.0056 3744 UI0Detect - ok
23:09:32.0072 3744 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
23:09:32.0072 3744 uliagpkx - ok
23:09:32.0103 3744 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys
23:09:32.0119 3744 umbus - ok
23:09:32.0119 3744 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
23:09:32.0119 3744 UmPass - ok
23:09:32.0165 3744 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
23:09:32.0165 3744 upnphost - ok
23:09:32.0181 3744 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\drivers\usbccgp.sys
23:09:32.0181 3744 usbccgp - ok
23:09:32.0212 3744 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
23:09:32.0228 3744 usbcir - ok
23:09:32.0243 3744 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\DRIVERS\usbehci.sys
23:09:32.0243 3744 usbehci - ok
23:09:32.0275 3744 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
23:09:32.0290 3744 usbhub - ok
23:09:32.0290 3744 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\DRIVERS\usbohci.sys
23:09:32.0290 3744 usbohci - ok
23:09:32.0306 3744 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
23:09:32.0306 3744 usbprint - ok
23:09:32.0353 3744 usbser (4acee387fa8fd39f83564fcd2fc234f2) C:\Windows\system32\drivers\usbser.sys
23:09:32.0353 3744 usbser - ok
23:09:32.0384 3744 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\drivers\USBSTOR.SYS
23:09:32.0384 3744 USBSTOR - ok
23:09:32.0399 3744 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
23:09:32.0399 3744 usbuhci - ok
23:09:32.0415 3744 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
23:09:32.0415 3744 UxSms - ok
23:09:32.0446 3744 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
23:09:32.0446 3744 VaultSvc - ok
23:09:32.0477 3744 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
23:09:32.0477 3744 vdrvroot - ok
23:09:32.0555 3744 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
23:09:32.0555 3744 vds - ok
23:09:32.0587 3744 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
23:09:32.0587 3744 vga - ok
23:09:32.0602 3744 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
23:09:32.0602 3744 VgaSave - ok
23:09:32.0649 3744 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
23:09:32.0649 3744 vhdmp - ok
23:09:32.0680 3744 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
23:09:32.0680 3744 viaide - ok
23:09:32.0696 3744 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
23:09:32.0696 3744 volmgr - ok
23:09:32.0743 3744 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
23:09:32.0758 3744 volmgrx - ok
23:09:32.0805 3744 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
23:09:32.0805 3744 volsnap - ok
23:09:32.0852 3744 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
23:09:32.0852 3744 vsmraid - ok
23:09:32.0945 3744 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
23:09:32.0961 3744 VSS - ok
23:09:33.0070 3744 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\System32\drivers\vwifibus.sys
23:09:33.0086 3744 vwifibus - ok
23:09:33.0133 3744 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
23:09:33.0133 3744 W32Time - ok
23:09:33.0148 3744 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
23:09:33.0148 3744 WacomPen - ok
23:09:33.0195 3744 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
23:09:33.0195 3744 WANARP - ok
23:09:33.0211 3744 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
23:09:33.0211 3744 Wanarpv6 - ok
23:09:33.0320 3744 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
23:09:33.0335 3744 WatAdminSvc - ok
23:09:33.0429 3744 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
23:09:33.0445 3744 wbengine - ok
23:09:33.0538 3744 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
23:09:33.0554 3744 WbioSrvc - ok
23:09:33.0616 3744 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
23:09:33.0616 3744 wcncsvc - ok
23:09:33.0632 3744 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
23:09:33.0632 3744 WcsPlugInService - ok
23:09:33.0679 3744 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
23:09:33.0679 3744 Wd - ok
23:09:33.0741 3744 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
23:09:33.0757 3744 Wdf01000 - ok
23:09:33.0772 3744 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
23:09:33.0772 3744 WdiServiceHost - ok
23:09:33.0772 3744 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
23:09:33.0772 3744 WdiSystemHost - ok
23:09:33.0819 3744 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
23:09:33.0819 3744 WebClient - ok
23:09:33.0850 3744 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
23:09:33.0850 3744 Wecsvc - ok
23:09:33.0866 3744 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
23:09:33.0866 3744 wercplsupport - ok
23:09:33.0897 3744 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
23:09:33.0897 3744 WerSvc - ok
23:09:33.0944 3744 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
23:09:33.0944 3744 WfpLwf - ok
23:09:33.0991 3744 WimFltr (b14ef15bd757fa488f9c970eee9c0d35) C:\Windows\system32\DRIVERS\wimfltr.sys
23:09:33.0991 3744 WimFltr - ok
23:09:34.0006 3744 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
23:09:34.0006 3744 WIMMount - ok
23:09:34.0069 3744 WinDefend - ok
23:09:34.0084 3744 WinHttpAutoProxySvc - ok
23:09:34.0162 3744 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
23:09:34.0162 3744 Winmgmt - ok
23:09:34.0303 3744 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
23:09:34.0318 3744 WinRM - ok
23:09:34.0474 3744 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
23:09:34.0490 3744 Wlansvc - ok
23:09:34.0552 3744 wlcrasvc (06c8fa1cf39de6a735b54d906ba791c6) C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
23:09:34.0552 3744 wlcrasvc - ok
23:09:34.0708 3744 wlidsvc (7e47c328fc4768cb8beafbcfafa70362) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
23:09:34.0724 3744 wlidsvc - ok
23:09:34.0849 3744 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
23:09:34.0864 3744 WmiAcpi - ok
23:09:34.0911 3744 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
23:09:34.0927 3744 wmiApSrv - ok
23:09:34.0973 3744 WMPNetworkSvc - ok
23:09:35.0005 3744 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
23:09:35.0020 3744 WPCSvc - ok
23:09:35.0051 3744 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
23:09:35.0051 3744 WPDBusEnum - ok
23:09:35.0083 3744 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
23:09:35.0083 3744 ws2ifsl - ok
23:09:35.0129 3744 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\system32\wscsvc.dll
23:09:35.0129 3744 wscsvc - ok
23:09:35.0145 3744 WSearch - ok
23:09:35.0270 3744 wuauserv (9df12edbc698b0bc353b3ef84861e430) C:\Windows\system32\wuaueng.dll
23:09:35.0301 3744 wuauserv - ok
23:09:35.0426 3744 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
23:09:35.0426 3744 WudfPf - ok
23:09:35.0457 3744 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
23:09:35.0457 3744 WUDFRd - ok
23:09:35.0488 3744 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
23:09:35.0504 3744 wudfsvc - ok
23:09:35.0535 3744 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
23:09:35.0535 3744 WwanSvc - ok
23:09:35.0566 3744 MBR (0x1B8) (cdb4de4bbd714f152979da2dcbef57eb) \Device\Harddisk0\DR0
23:09:35.0847 3744 \Device\Harddisk0\DR0 - ok
23:09:35.0863 3744 Boot (0x1200) (7c1a679c32e4d818c783e1c9c0c9175e) \Device\Harddisk0\DR0\Partition0
23:09:35.0863 3744 \Device\Harddisk0\DR0\Partition0 - ok
23:09:35.0894 3744 Boot (0x1200) (79d0df73cc10de94b2f3c70e0b1616ce) \Device\Harddisk0\DR0\Partition1
23:09:35.0894 3744 \Device\Harddisk0\DR0\Partition1 - ok
23:09:35.0894 3744 ============================================================
23:09:35.0894 3744 Scan finished
23:09:35.0894 3744 ============================================================
23:09:35.0909 3460 Detected object count: 0
23:09:35.0909 3460 Actual detected object count: 0

6) Ran aswMBR w/ Avast sigs; log below...

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-06-20 23:11:29
-----------------------------
23:11:29.343 OS Version: Windows x64 6.1.7601 Service Pack 1
23:11:29.343 Number of processors: 2 586 0x603
23:11:29.358 ComputerName: LOIS-PC UserName: lois
23:11:30.154 Initialize success
23:12:34.110 AVAST engine defs: 12062001
23:17:17.188 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
23:17:17.188 Disk 0 Vendor: SAMSUNG_HD502HJ 1AJ10001 Size: 476940MB BusType: 11
23:17:17.219 Disk 0 MBR read successfully
23:17:17.219 Disk 0 MBR scan
23:17:17.251 Disk 0 Windows VISTA default MBR code
23:17:17.251 Disk 0 Partition 1 00 DE Dell Utility Dell 8.0 39 MB offset 63
23:17:17.297 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 14142 MB offset 81920
23:17:17.344 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 462757 MB offset 29044736
23:17:17.422 Disk 0 scanning C:\Windows\system32\drivers
23:17:28.436 Service scanning
23:17:55.767 Modules scanning
23:17:55.783 Disk 0 trace - called modules:
23:17:55.798 ntoskrnl.exe CLASSPNP.SYS disk.sys ataport.SYS PCIIDEX.SYS hal.dll msahci.sys
23:17:55.798 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa80024f4060]
23:17:55.814 3 CLASSPNP.SYS[fffff8800199b43f] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0xfffffa80024a9060]
23:17:56.781 AVAST engine scan C:\Windows
23:18:01.165 AVAST engine scan C:\Windows\system32
23:22:30.977 AVAST engine scan C:\Windows\system32\drivers
23:22:45.812 AVAST engine scan C:\Users\lois
23:27:25.521 AVAST engine scan C:\ProgramData
23:30:58.196 Scan finished successfully
23:36:48.432 Disk 0 MBR has been saved successfully to "C:\Users\lois\Documents\MBR.dat"
23:36:48.541 The log file has been saved successfully to "C:\Users\lois\Documents\aswMBR.txt"


7) Running ESET Online Scanner, temporarily turned off MSE Real-Time Protection since ESET mentioned it could impact the scan speed. It's going slow, so I'll let it run overnight and post the log in the morning.

8) Huge thanks to narenxp - looks like you've nipped this infection!

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:43 AM

Posted 20 June 2012 - 11:46 PM

:thumbup2:

#5 ejhonda

ejhonda
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:07:43 AM

Posted 21 June 2012 - 06:59 AM

ESET was clean - no threats found. Thanks again. :clapping:

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:43 AM

Posted 21 June 2012 - 10:11 AM

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log

Download

MiniToolBox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

#7 ejhonda

ejhonda
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:07:43 AM

Posted 21 June 2012 - 06:21 PM

MalwareBytes log:

Malwarebytes Anti-Malware 1.61.0.1400
www.malwarebytes.org

Database version: v2012.06.21.11

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
lois :: LOIS-PC [administrator]

6/21/2012 5:37:22 PM
mbam-log-2012-06-21 (17-37-22).txt

Scan type: Full scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 341032
Time elapsed: 40 minute(s), 21 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)


Mini Toolbox log:

MiniToolBox by Farbar Version: 09-06-2012
Ran by lois (administrator) on 21-06-2012 at 17:54:17
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================

127.0.0.1 localhost

========================= IP Configuration: ================================

Broadcom NetLink ™ Gigabit Ethernet = Local Area Connection (Connected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : lois-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : earthlink.net

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . : earthlink.net
Description . . . . . . . . . . . : Broadcom NetLink ™ Gigabit Ethernet
Physical Address. . . . . . . . . : 84-2B-2B-8E-81-2B
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::e183:3049:de3e:dc7%10(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.105(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Wednesday, June 20, 2012 11:07:36 PM
Lease Expires . . . . . . . . . . : Friday, June 22, 2012 5:27:39 PM
Default Gateway . . . . . . . . . : 192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 243542827
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-14-CF-74-4E-84-2B-2B-8E-81-2B
DNS Servers . . . . . . . . . . . : 208.67.222.222
208.67.220.220
207.69.188.186
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.earthlink.net:

Connection-specific DNS Suffix . : earthlink.net
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::5efe:192.168.1.105%11(Preferred)
Default Gateway . . . . . . . . . :
DNS Servers . . . . . . . . . . . : 208.67.222.222
208.67.220.220
207.69.188.186
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter 6TO4 Adapter:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:62:3f82:e76a:c38a(Preferred)
Link-local IPv6 Address . . . . . : fe80::62:3f82:e76a:c38a%13(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled
Server: resolver1.opendns.com
Address: 208.67.222.222

Name: google.com.earthlink.net
Address: 67.215.65.132


Pinging google.com [74.125.228.78] with 32 bytes of data:
Reply from 74.125.228.78: bytes=32 time=26ms TTL=52
Reply from 74.125.228.78: bytes=32 time=28ms TTL=52

Ping statistics for 74.125.228.78:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 26ms, Maximum = 28ms, Average = 27ms
Server: resolver1.opendns.com
Address: 208.67.222.222

Name: yahoo.com.earthlink.net
Address: 67.215.65.132


Pinging yahoo.com [72.30.38.140] with 32 bytes of data:
Reply from 72.30.38.140: bytes=32 time=123ms TTL=51
Reply from 72.30.38.140: bytes=32 time=90ms TTL=51

Ping statistics for 72.30.38.140:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 90ms, Maximum = 123ms, Average = 106ms
Server: resolver1.opendns.com
Address: 208.67.222.222

Name: bleepingcomputer.com.earthlink.net
Address: 67.215.65.132


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
10...84 2b 2b 8e 81 2b ......Broadcom NetLink ™ Gigabit Ethernet
1...........................Software Loopback Interface 1
11...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
12...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter
13...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.105 20
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.105 276
192.168.1.105 255.255.255.255 On-link 192.168.1.105 276
192.168.1.255 255.255.255.255 On-link 192.168.1.105 276
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.105 276
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.105 276
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
13 58 ::/0 On-link
1 306 ::1/128 On-link
13 58 2001::/32 On-link
13 306 2001:0:4137:9e76:62:3f82:e76a:c38a/128
On-link
10 276 fe80::/64 On-link
13 306 fe80::/64 On-link
11 281 fe80::5efe:192.168.1.105/128
On-link
13 306 fe80::62:3f82:e76a:c38a/128
On-link
10 276 fe80::e183:3049:de3e:dc7/128
On-link
1 306 ff00::/8 On-link
13 306 ff00::/8 On-link
10 276 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 06 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 08 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 06 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 08 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (06/21/2012 00:53:33 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (06/21/2012 00:53:31 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (06/21/2012 00:52:32 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (06/20/2012 11:37:13 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (06/20/2012 11:37:07 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (06/20/2012 00:27:03 AM) (Source: RasClient) (User: )
Description: CoId={82CE979A-1A79-451C-9722-DCDAF35DADFB}: The user lois-PC\lois dialed a connection named Broadband Connection which has failed. The error code returned on failure is 651.

Error: (06/20/2012 00:06:39 AM) (Source: Application Error) (User: )
Description: Faulting application name: iexplore.exe, version: 9.0.8112.16446, time stamp: 0x4fb57c8f
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000409
Fault offset: 0x002a90cd
Faulting process id: 0xcf4
Faulting application start time: 0xiexplore.exe0
Faulting application path: iexplore.exe1
Faulting module path: iexplore.exe2
Report Id: iexplore.exe3

Error: (06/19/2012 10:49:46 PM) (Source: Application Hang) (User: )
Description: The program Explorer.EXE version 6.1.7601.17567 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 158

Start Time: 01cd4e7bb871ab09

Termination Time: 0

Application Path: C:\Windows\Explorer.EXE

Report Id:

Error: (06/17/2012 03:53:13 PM) (Source: CVHSVC) (User: )
Description: Information only.
(Patch task for {90140011-0066-0409-0000-0000000FF1CE}): DownloadLatest Failed: There are currently no active network connections. Background Intelligent Transfer Service (BITS) will try again when an adapter is connected.

Error: (06/09/2012 08:55:45 AM) (Source: Application Error) (User: )
Description: Faulting application name: Explorer.EXE, version: 6.1.7601.17567, time stamp: 0x4d672ee4
Faulting module name: ntdll.dll, version: 6.1.7601.17725, time stamp: 0x4ec4aa8e
Exception code: 0xc0000005
Fault offset: 0x000000000004e4b4
Faulting process id: 0x784
Faulting application start time: 0xExplorer.EXE0
Faulting application path: Explorer.EXE1
Faulting module path: Explorer.EXE2
Report Id: Explorer.EXE3


System errors:
=============
Error: (06/20/2012 11:06:54 PM) (Source: DCOM) (User: )
Description: {E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}

Error: (06/20/2012 11:06:47 PM) (Source: Microsoft Antimalware) (User: )
Description: %Trojan:DOS/Alureon.E60 has encountered a critical error when taking action on malware or other potentially unwanted software.

For more information please see the following:
%Trojan:DOS/Alureon.E603

Name: Trojan:DOS/Alureon.E

ID: 2147650952

Severity: %Trojan:DOS/Alureon.E600

Category: %Trojan:DOS/Alureon.E602

Path: 4.0.1526.02

Detection Origin: 4.0.1526.04

Detection Type: 4.0.1526.08

Detection Source: %Trojan:DOS/Alureon.E608

User: {90EB3BD5-8C2D-49E2-A18D-0928DCC59CF6}9

Process Name: %Trojan:DOS/Alureon.E609

Action: {90EB3BD5-8C2D-49E2-A18D-0928DCC59CF6}1

Action Status: {90EB3BD5-8C2D-49E2-A18D-0928DCC59CF6}8

Error Code: {90EB3BD5-8C2D-49E2-A18D-0928DCC59CF6}3

Error description: {90EB3BD5-8C2D-49E2-A18D-0928DCC59CF6}4

Signature Version: 2012-06-21T03:06:10.991Z1

Engine Version: 2012-06-21T03:06:10.991Z2

Error: (06/20/2012 11:06:37 PM) (Source: Ntfs) (User: )
Description: The file system structure on the disk is corrupt and unusable.
Please run the chkdsk utility on the volume .

Error: (06/20/2012 11:06:10 PM) (Source: Ntfs) (User: )
Description: The file system structure on the disk is corrupt and unusable.
Please run the chkdsk utility on the volume .

Error: (06/20/2012 11:06:10 PM) (Source: Ntfs) (User: )
Description: The file system structure on the disk is corrupt and unusable.
Please run the chkdsk utility on the volume .

Error: (06/20/2012 11:06:10 PM) (Source: Microsoft Antimalware) (User: )
Description: %Trojan:DOS/Alureon.E60 has encountered a critical error when taking action on malware or other potentially unwanted software.

For more information please see the following:
%Trojan:DOS/Alureon.E603

Name: Trojan:DOS/Alureon.E

ID: 2147650952

Severity: %Trojan:DOS/Alureon.E600

Category: %Trojan:DOS/Alureon.E602

Path: 4.0.1526.02

Detection Origin: 4.0.1526.04

Detection Type: 4.0.1526.08

Detection Source: %Trojan:DOS/Alureon.E608

User: {1B835DCF-72C0-44C1-B2F4-1761DD4DFCC2}9

Process Name: %Trojan:DOS/Alureon.E609

Action: {1B835DCF-72C0-44C1-B2F4-1761DD4DFCC2}1

Action Status: {1B835DCF-72C0-44C1-B2F4-1761DD4DFCC2}8

Error Code: {1B835DCF-72C0-44C1-B2F4-1761DD4DFCC2}3

Error description: {1B835DCF-72C0-44C1-B2F4-1761DD4DFCC2}4

Signature Version: 2012-06-21T03:05:27.520Z1

Engine Version: 2012-06-21T03:05:27.520Z2

Error: (06/20/2012 11:06:02 PM) (Source: Ntfs) (User: )
Description: The file system structure on the disk is corrupt and unusable.
Please run the chkdsk utility on the volume .

Error: (06/20/2012 11:06:02 PM) (Source: Ntfs) (User: )
Description: The file system structure on the disk is corrupt and unusable.
Please run the chkdsk utility on the volume .

Error: (06/20/2012 11:05:32 PM) (Source: Ntfs) (User: )
Description: The file system structure on the disk is corrupt and unusable.
Please run the chkdsk utility on the volume .

Error: (06/20/2012 11:05:27 PM) (Source: Ntfs) (User: )
Description: The file system structure on the disk is corrupt and unusable.
Please run the chkdsk utility on the volume .


Microsoft Office Sessions:
=========================
Error: (06/21/2012 00:53:33 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestc:\Users\lois\AppData\Local\microsoft\Windows\temporary internet files\Content.IE5\2YOXD6B3\esetsmartinstaller_enu.exe

Error: (06/21/2012 00:53:31 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestc:\Users\lois\AppData\Local\microsoft\Windows\temporary internet files\Content.IE5\2YOXD6B3\esetsmartinstaller_enu.exe

Error: (06/21/2012 00:52:32 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestc:\program files (x86)\ESET\eset online scanner\ESETSmartInstaller.exe

Error: (06/20/2012 11:37:13 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\lois\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\2YOXD6B3\esetsmartinstaller_enu.exe

Error: (06/20/2012 11:37:07 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\lois\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\2YOXD6B3\esetsmartinstaller_enu.exe

Error: (06/20/2012 00:27:03 AM) (Source: RasClient)(User: )
Description: {82CE979A-1A79-451C-9722-DCDAF35DADFB}lois-PC\loisBroadband Connection651

Error: (06/20/2012 00:06:39 AM) (Source: Application Error)(User: )
Description: iexplore.exe9.0.8112.164464fb57c8funknown0.0.0.000000000c0000409002a90cdcf401cd4e9848cfd757C:\Program Files (x86)\Internet Explorer\iexplore.exeunknown55a31524-ba8d-11e1-9df3-842b2b8e812b

Error: (06/19/2012 10:49:46 PM) (Source: Application Hang)(User: )
Description: Explorer.EXE6.1.7601.1756715801cd4e7bb871ab090C:\Windows\Explorer.EXE

Error: (06/17/2012 03:53:13 PM) (Source: CVHSVC)(User: )
Description: (Patch task for {90140011-0066-0409-0000-0000000FF1CE}): DownloadLatest Failed: There are currently no active network connections. Background Intelligent Transfer Service (BITS) will try again when an adapter is connected.

Error: (06/09/2012 08:55:45 AM) (Source: Application Error)(User: )
Description: Explorer.EXE6.1.7601.175674d672ee4ntdll.dll6.1.7601.177254ec4aa8ec0000005000000000004e4b478401cd463ddc5f14c2C:\Windows\Explorer.EXEC:\Windows\SYSTEM32\ntdll.dll6cc8f992-b232-11e1-82ad-842b2b8e812b


=========================== Installed Programs ============================

Adobe Flash Player 11 ActiveX (Version: 11.3.300.257)
Adobe Reader 9.5.1 (Version: 9.5.1)
ATI Catalyst Control Center (Version: 2.009.0714.2131)
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center Core Implementation (Version: 2009.0714.2132.36830)
Catalyst Control Center Graphics Full Existing (Version: 2009.0714.2132.36830)
Catalyst Control Center Graphics Full New (Version: 2009.0714.2132.36830)
Catalyst Control Center Graphics Light (Version: 2009.0714.2132.36830)
Catalyst Control Center Graphics Previews Common (Version: 2009.0714.2132.36830)
Catalyst Control Center Graphics Previews Vista (Version: 2009.0714.2132.36830)
Catalyst Control Center InstallProxy (Version: 2009.0714.2132.36830)
Catalyst Control Center Localization All (Version: 2009.0714.2132.36830)
ccc-core-static (Version: 2009.0714.2132.36830)
ccc-utility64 (Version: 2009.0714.2132.36830)
CCC Help Chinese Standard (Version: 2009.0714.2131.36830)
CCC Help Chinese Traditional (Version: 2009.0714.2131.36830)
CCC Help Czech (Version: 2009.0714.2131.36830)
CCC Help Danish (Version: 2009.0714.2131.36830)
CCC Help Dutch (Version: 2009.0714.2131.36830)
CCC Help English (Version: 2009.0714.2131.36830)
CCC Help Finnish (Version: 2009.0714.2131.36830)
CCC Help French (Version: 2009.0714.2131.36830)
CCC Help German (Version: 2009.0714.2131.36830)
CCC Help Greek (Version: 2009.0714.2131.36830)
CCC Help Hungarian (Version: 2009.0714.2131.36830)
CCC Help Italian (Version: 2009.0714.2131.36830)
CCC Help Japanese (Version: 2009.0714.2131.36830)
CCC Help Korean (Version: 2009.0714.2131.36830)
CCC Help Norwegian (Version: 2009.0714.2131.36830)
CCC Help Polish (Version: 2009.0714.2131.36830)
CCC Help Portuguese (Version: 2009.0714.2131.36830)
CCC Help Russian (Version: 2009.0714.2131.36830)
CCC Help Spanish (Version: 2009.0714.2131.36830)
CCC Help Swedish (Version: 2009.0714.2131.36830)
CCC Help Thai (Version: 2009.0714.2131.36830)
CCC Help Turkish (Version: 2009.0714.2131.36830)
CCleaner (Version: 3.19)
Consumer In-Home Service Agreement (Version: 2.0.0)
D3DX10 (Version: 15.4.2368.0902)
Dell DataSafe Local Backup - Support Software
Dell DataSafe Local Backup (Version: 9.4.51)
Dell DataSafe Online (Version: 2.1.19634)
Dell Dock (Version: 2.0)
Dell Edoc Viewer (Version: 1.0.0)
Dell Getting Started Guide (Version: 1.00.0000)
Dell Support Center (Version: 3.1.5907.16)
DirectX 9 Runtime (Version: 1.00.0000)
DriverUpdate (Version: 2.2.20803)
eBay (Version: 1.4.0)
ESET Online Scanner v3
Eudora (Version: 7.0)
Google Chrome (Version: 19.0.1084.56)
GoToAssist 8.0.0.514
Hoyle Casino 2004 (Version: 1.00.0000)
Internet Explorer (Version: 8)
IOL Signup
JavaFX 2.1.1 (Version: 2.1.1)
Junk Mail filter update (Version: 15.4.3502.0922)
Malwarebytes Anti-Malware version 1.61.0.1400 (Version: 1.61.0.1400)
Masque Slots
Mesh Runtime (Version: 15.4.5722.2)
Messenger Companion (Version: 15.4.3502.0922)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office 2010 (Version: 14.0.4763.1000)
Microsoft Office Click-to-Run 2010 (Version: 14.0.4763.1000)
Microsoft Office Starter 2010 - English (Version: 14.0.4763.1000)
Microsoft Security Client (Version: 4.0.1526.0)
Microsoft Security Essentials (Version: 4.0.1526.0)
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable - KB2467175 (Version: 8.0.51011)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.58299)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (Version: 10.0.30319)
Mozilla Thunderbird (3.1.7) (Version: 3.1.7 (en-US))
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
PhotoShowExpress (Version: 2.0.028)
RBVirtualFolder64Inst (Version: 1.00.0000)
Realtek High Definition Audio Driver (Version: 6.0.1.5977)
Roxio Activation Module (Version: 1.0)
Roxio BackOnTrack (Version: 1.3.3)
Roxio Burn (Version: 1.6)
Roxio Creator Starter (Version: 1.0.311)
Roxio Creator Starter (Version: 12.1.40.0)
Roxio Creator Starter (Version: 5.0.0)
Roxio Express Labeler 3 (Version: 3.2.2)
Roxio File Backup (Version: 1.3.2)
Skins (Version: 2009.0714.2132.36830)
Skype Toolbars (Version: 1.0.4051)
Skype™ 4.2 (Version: 4.2.169)
Snark Busters 2: All Revved Up (Version: 2.2.0.98)
Sonic CinePlayer Decoder Pack (Version: 4.3.0)
U.S. Robotics V.92 USB Modem
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2473228) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update Installer for WildTangent Games App
Visual Studio 2008 x64 Redistributables (Version: 10.0.0.2)
WildTangent Games (Version: 1.0.2.5)
WildTangent Games App (Dell Games) (Version: 4.0.5.14)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3502.0922)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3502.0922)
Windows Live Messenger Companion Core (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3502.0922)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3502.0922)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)

========================= Memory info: ===================================

Percentage of memory in use: 66%
Total physical RAM: 1790.98 MB
Available physical RAM: 602.7 MB
Total Pagefile: 3581.95 MB
Available Pagefile: 1964.64 MB
Total Virtual: 4095.88 MB
Available Virtual: 3960.34 MB

========================= Partitions: =====================================

1 Drive c: (OS) (Fixed) (Total:451.91 GB) (Free:407.37 GB) NTFS

========================= Users: ========================================

User accounts for \\LOIS-PC

Administrator Guest lois


**** End of log ****

#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:06:43 AM

Posted 21 June 2012 - 07:34 PM

Click on startmenu and type

cmd

Right click on it and select run as administrator and run this command

chkdsk /f

Press ENTER and click Y to schedule on next reboot

Restart the PC ,allow chkdsk to run

Download

TFC


Launch it,it will close all running programs

click on START,it should ask for reboot

Turn off your system restore,restart the PC,create a new restore point

http://windows.microsoft.com/en-US/windows7/Turn-System-Restore-on-or-off

Update your antivirus frequently,do not click on suspicious links

Safe surfing :)




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users