Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Computer appears to be hijacked


  • Please log in to reply
16 replies to this topic

#1 DarkKnight1970

DarkKnight1970

  • Members
  • 19 posts
  • OFFLINE
  •  
  • Local time:09:17 PM

Posted 21 June 2012 - 10:14 PM

A friend asked me to look at his computer due to the following. He received a message (not sure how - command window or otherwise) in which a supposed user had control of his computer. My friend tried typeing stuff in to download MalwareByte's Anti-Malware, but the fiend kept deleting keystrokes.

I don't know exactly where to start as I am not sure if this is a rootkit hack, or some other type of malware playing having on his Windows 7 Alienware computer. Please advise me to the correct forum or provide me with the necessary steps to help my friend out.

thank you.

Mod Edit: Moved to Am I Infected~~ boopme

Edited by boopme, 21 June 2012 - 10:48 PM.


BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,934 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:10:17 PM

Posted 21 June 2012 - 10:58 PM

Hello, they may need to try another time of day when perhaps the other person is not going to be on.
Are they on a wireless router?


Reboot into Safe Mode with networking

Update and run MBAM again.



I'd like us to scan your machine with ESET OnlineScan
  • Hold down Control and click on the following link to open ESET OnlineScan in a new window.
    ESET OnlineScan
  • Click the Posted Image button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on Posted Image to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the Posted Image icon on your desktop.
  • Check Posted Image
  • Click the Posted Image button.
  • Accept any security warnings from your browser.
  • Under scan settings, check Posted Image and check Remove found threats
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, push Posted Image
  • Push Posted Image, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Push the Posted Image button.
  • Push Posted Image


NOTE: In some instances if no malware is found there will be no log produced.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 DarkKnight1970

DarkKnight1970
  • Topic Starter

  • Members
  • 19 posts
  • OFFLINE
  •  
  • Local time:09:17 PM

Posted 22 June 2012 - 05:11 AM

Here are the results from the online scan.

C:\Program Files (x86)\AlienRespawn\hstart.exe a variant of Win32/HiddenStart.A application cleaned by deleting - quarantined
C:\Program Files (x86)\AlienRespawn\Components\DSUpdate\hstart.exe a variant of Win32/HiddenStart.A application cleaned by deleting - quarantined
C:\Users\Ian\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\P29DE7LL\3[1].htm HTML/Iframe.B.Gen virus deleted - quarantined
C:\Users\Ian\AppData\Local\Temp\Java.Exe a variant of MSIL/Injector.ABG trojan cleaned by deleting - quarantined
C:\Users\Ian\AppData\Local\Temp\msimg32.dll a variant of Win32/Sirefef.DB trojan cleaned by deleting - quarantined
C:\Users\Ian\AppData\Local\Temp\wmpnet32.exe a variant of MSIL/Injector.ABG trojan cleaned by deleting - quarantined
C:\Users\Ian\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\24\7824ce58-1e0fee66 a variant of MSIL/Injector.ABG trojan cleaned by deleting - quarantined
C:\Users\Ian\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\36\6ebf3924-131ba36e Java/Exploit.CVE-2011-3544.S trojan deleted - quarantined
C:\Users\Ian\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\43\188880eb-64e6c9a6 Java/TrojanDownloader.OpenStream.NDB trojan deleted - quarantined
C:\Users\Ian\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\5\2af7adc5-1ef74429 Java/Exploit.CVE-2010-0840.NAC trojan deleted - quarantined
C:\Users\Ian\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\52\4e68aef4-7717e7dc a variant of Java/Exploit.CVE-2012-0507.AH trojan deleted - quarantined
C:\Users\Ian\AppData - Copy\Local\Temp\msimg32.dll a variant of Win32/Sirefef.DB trojan cleaned by deleting - quarantined
C:\Windows\Installer\d0c2.msi a variant of Win32/PSWTool.IEPasswordsRevealer.A application deleted - quarantined
Operating memory a variant of Win32/Fynloski.AA trojan

#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,934 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:10:17 PM

Posted 22 June 2012 - 10:40 AM

More to do..

Please download MiniToolBox, save it to your desktop and run it.

Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.

Note: When using "Reset FF Proxy Settings" option Firefox should be closed.



Run TFC by OT (Temp File Cleaner)
Please download TFC by Old Timer and save it to your desktop.
alternate download link

Save any unsaved work. TFC will close ALL open programs including your browser!
Double-click on TFC.exe to run it. If you are using Vista, right-click on the file and choose Run As Administrator.
Click the Start button to begin the cleaning process and let it run uninterrupted to completion.
Important! If TFC prompts you to reboot, please do so immediately. If not prompted, manually reboot the machine anyway to ensure a complete clean.

Please download TDSSKiller.zip and and extract it.
  • Run TDSSKiller.exe.
  • Click on Change Parameters
  • Put a check in the box of Detect TDLFS file system
  • Click Start scan.
  • When it is finished the utility outputs a list of detected objects with description.
    The utility automatically selects an action (Cure or Delete) for malicious objects.
    The utility prompts the user to select an action to apply to suspicious objects (Skip, by default). Let the options as it is and click Continue
  • Let reboot if needed and tell me if the tool needed a reboot.
  • Click on Report and post the contents of the text file that will open.

    Note: By default, the utility outputs the log into system disk (it is usually the disk with installed operating system, C:\) root folder. The Log have a name like: TDSSKiller.Version_Date_Time_log.txt.



Rerun ESET now.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#5 DarkKnight1970

DarkKnight1970
  • Topic Starter

  • Members
  • 19 posts
  • OFFLINE
  •  
  • Local time:09:17 PM

Posted 22 June 2012 - 08:36 PM

MiniToolBox log as requested:
MiniToolBox by Farbar Version: 09-06-2012
Ran by Ian (administrator) on 22-06-2012 at 15:14:17
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================



========================= IP Configuration: ================================

DW1520 Wireless-N WLAN Half-Mini Card = Wireless Network Connection (Connected)
Atheros AR8132 PCI-E Fast Ethernet Controller = Local Area Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Ian-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : gateway.2wire.net

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Atheros AR8132 PCI-E Fast Ethernet Controller
Physical Address. . . . . . . . . : 5C-26-0A-50-09-CD
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . : gateway.2wire.net
Description . . . . . . . . . . . : DW1520 Wireless-N WLAN Half-Mini Card
Physical Address. . . . . . . . . : EC-55-F9-9D-40-A5
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::71a7:4e93:6179:2c50%10(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.76(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Thursday, June 21, 2012 11:13:53 PM
Lease Expires . . . . . . . . . . : Saturday, June 23, 2012 11:13:53 AM
Default Gateway . . . . . . . . . : 192.168.1.254
DHCP Server . . . . . . . . . . . : 192.168.1.254
DHCPv6 IAID . . . . . . . . . . . : 200037881
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-15-3C-D9-CB-5C-26-0A-50-09-CD
DNS Servers . . . . . . . . . . . : 192.168.1.254
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.{1BCDA1B3-0389-49FE-9F71-EA203321EB3D}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.gateway.2wire.net:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : gateway.2wire.net
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 9:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:3484:1138:9333:cb08(Preferred)
Link-local IPv6 Address . . . . . : fe80::3484:1138:9333:cb08%14(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled
Server: homeportal
Address: 192.168.1.254

Name: google.com
Addresses: 2607:f8b0:4000:801::1005
74.125.227.98
74.125.227.99
74.125.227.100
74.125.227.101
74.125.227.102
74.125.227.103
74.125.227.104
74.125.227.105
74.125.227.110
74.125.227.96
74.125.227.97


Pinging google.com [74.125.227.134] with 32 bytes of data:
Reply from 74.125.227.134: bytes=32 time=373ms TTL=52
Reply from 74.125.227.134: bytes=32 time=35ms TTL=52

Ping statistics for 74.125.227.134:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 35ms, Maximum = 373ms, Average = 204ms
Server: homeportal
Address: 192.168.1.254

Name: yahoo.com
Addresses: 98.139.183.24
209.191.122.70
72.30.38.140


Pinging yahoo.com [209.191.122.70] with 32 bytes of data:
Reply from 209.191.122.70: bytes=32 time=100ms TTL=49
Reply from 209.191.122.70: bytes=32 time=35ms TTL=49

Ping statistics for 209.191.122.70:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 35ms, Maximum = 100ms, Average = 67ms
Server: homeportal
Address: 192.168.1.254

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
11...5c 26 0a 50 09 cd ......Atheros AR8132 PCI-E Fast Ethernet Controller
10...ec 55 f9 9d 40 a5 ......DW1520 Wireless-N WLAN Half-Mini Card
1...........................Software Loopback Interface 1
30...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
32...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
14...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.254 192.168.1.76 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.76 281
192.168.1.76 255.255.255.255 On-link 192.168.1.76 281
192.168.1.255 255.255.255.255 On-link 192.168.1.76 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.76 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.76 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
14 58 ::/0 On-link
1 306 ::1/128 On-link
14 58 2001::/32 On-link
14 306 2001:0:4137:9e76:3484:1138:9333:cb08/128
On-link
10 281 fe80::/64 On-link
14 306 fe80::/64 On-link
14 306 fe80::3484:1138:9333:cb08/128
On-link
10 281 fe80::71a7:4e93:6179:2c50/128
On-link
1 306 ff00::/8 On-link
14 306 ff00::/8 On-link
10 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (06/22/2012 01:21:48 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (06/21/2012 10:42:53 PM) (Source: Application Hang) (User: )
Description: The program Explorer.EXE version 6.1.7601.17567 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: d4c

Start Time: 01cd50222fa39ec5

Termination Time: 15

Application Path: C:\Windows\Explorer.EXE

Report Id: 52db78ea-bc1c-11e1-b329-ec55f99d40a5

Error: (06/21/2012 10:07:10 PM) (Source: Google Update) (User: Ian)Ian
Description: Network Request Error.
Error: 0x80072ee7. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=FireFox, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=FireFox, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80

Error: (06/21/2012 10:05:07 PM) (Source: Google Update) (User: Ian)Ian
Description: Network Request Error.
Error: 0x80072ee7. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=FireFox, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=FireFox, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80

Error: (06/21/2012 09:53:38 PM) (Source: Google Update) (User: Ian)Ian
Description: Network Request Error.
Error: 0x80072ee7. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=FireFox, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=FireFox, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80

Error: (06/14/2012 07:05:05 AM) (Source: Google Update) (User: Ian)Ian
Description: Network Request Error.
Error: 0x80072ee7. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=FireFox, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=FireFox, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80

Error: (06/14/2012 06:13:49 AM) (Source: Google Update) (User: Ian)Ian
Description: Network Request Error.
Error: 0x80072ee7. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=FireFox, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=FireFox, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80

Error: (06/14/2012 05:59:03 AM) (Source: Google Update) (User: Ian)Ian
Description: Network Request Error.
Error: 0x80072ee7. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=FireFox, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=FireFox, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80

Error: (04/19/2012 10:21:48 PM) (Source: Application Hang) (User: )
Description: The program WoW.exe version 5.0.1.15589 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 1df8

Start Time: 01cd1ea1f9d98870

Termination Time: 793

Application Path: C:\Program Files (x86)\World of Warcraft Beta\WoW.exe

Report Id:

Error: (04/15/2012 02:43:28 PM) (Source: Application Error) (User: )
Description: Faulting application name: rads_user_kernel.exe, version: 0.0.0.0, time stamp: 0x4e65c1ac
Faulting module name: rads_user_kernel.exe, version: 0.0.0.0, time stamp: 0x4e65c1ac
Exception code: 0xc0000005
Fault offset: 0x000b8554
Faulting process id: 0x1758
Faulting application start time: 0xrads_user_kernel.exe0
Faulting application path: rads_user_kernel.exe1
Faulting module path: rads_user_kernel.exe2
Report Id: rads_user_kernel.exe3


System errors:
=============
Error: (06/21/2012 09:54:21 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the SftService service.

Error: (06/21/2012 09:53:51 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the SftService service.

Error: (06/21/2012 09:53:10 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
cdrom

Error: (06/21/2012 09:52:44 PM) (Source: EventLog) (User: )
Description: The previous system shutdown at 4:35:18 AM on ?6/?20/?2012 was unexpected.

Error: (06/20/2012 04:25:23 AM) (Source: DCOM) (User: Guest)
Description: application-specificLocalActivation{8BC3F05E-D86B-11D0-A075-00C04FB68820}{8BC3F05E-D86B-11D0-A075-00C04FB68820}Ian-PCGuestS-1-5-21-2133125855-3770313064-2240642203-501LocalHost (Using LRPC)

Error: (06/20/2012 04:25:23 AM) (Source: DCOM) (User: Guest)
Description: application-specificLocalActivation{8BC3F05E-D86B-11D0-A075-00C04FB68820}{8BC3F05E-D86B-11D0-A075-00C04FB68820}Ian-PCGuestS-1-5-21-2133125855-3770313064-2240642203-501LocalHost (Using LRPC)

Error: (06/20/2012 04:25:23 AM) (Source: DCOM) (User: Guest)
Description: application-specificLocalActivation{8BC3F05E-D86B-11D0-A075-00C04FB68820}{8BC3F05E-D86B-11D0-A075-00C04FB68820}Ian-PCGuestS-1-5-21-2133125855-3770313064-2240642203-501LocalHost (Using LRPC)

Error: (06/20/2012 04:25:23 AM) (Source: DCOM) (User: Guest)
Description: application-specificLocalActivation{8BC3F05E-D86B-11D0-A075-00C04FB68820}{8BC3F05E-D86B-11D0-A075-00C04FB68820}Ian-PCGuestS-1-5-21-2133125855-3770313064-2240642203-501LocalHost (Using LRPC)

Error: (06/20/2012 04:25:18 AM) (Source: DCOM) (User: Guest)
Description: application-specificLocalActivation{8BC3F05E-D86B-11D0-A075-00C04FB68820}{8BC3F05E-D86B-11D0-A075-00C04FB68820}Ian-PCGuestS-1-5-21-2133125855-3770313064-2240642203-501LocalHost (Using LRPC)

Error: (06/20/2012 04:25:18 AM) (Source: DCOM) (User: Guest)
Description: application-specificLocalActivation{8BC3F05E-D86B-11D0-A075-00C04FB68820}{8BC3F05E-D86B-11D0-A075-00C04FB68820}Ian-PCGuestS-1-5-21-2133125855-3770313064-2240642203-501LocalHost (Using LRPC)


Microsoft Office Sessions:
=========================
Error: (06/22/2012 01:21:48 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestc:\program files (x86)\ESET\eset online scanner\ESETSmartInstaller.exe

Error: (06/21/2012 10:42:53 PM) (Source: Application Hang)(User: )
Description: Explorer.EXE6.1.7601.17567d4c01cd50222fa39ec515C:\Windows\Explorer.EXE52db78ea-bc1c-11e1-b329-ec55f99d40a5

Error: (06/21/2012 10:07:10 PM) (Source: Google Update)(User: Ian)Ian
Description: Network Request Error.
Error: 0x80072ee7. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=FireFox, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=FireFox, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80

Error: (06/21/2012 10:05:07 PM) (Source: Google Update)(User: Ian)Ian
Description: Network Request Error.
Error: 0x80072ee7. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=FireFox, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=FireFox, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80

Error: (06/21/2012 09:53:38 PM) (Source: Google Update)(User: Ian)Ian
Description: Network Request Error.
Error: 0x80072ee7. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=FireFox, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=FireFox, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80

Error: (06/14/2012 07:05:05 AM) (Source: Google Update)(User: Ian)Ian
Description: Network Request Error.
Error: 0x80072ee7. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=FireFox, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=FireFox, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80

Error: (06/14/2012 06:13:49 AM) (Source: Google Update)(User: Ian)Ian
Description: Network Request Error.
Error: 0x80072ee7. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=FireFox, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=FireFox, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80

Error: (06/14/2012 05:59:03 AM) (Source: Google Update)(User: Ian)Ian
Description: Network Request Error.
Error: 0x80072ee7. Http status code: 0.
Url=https://www.facebook.com/omaha/update.php
Trying config: source=FireFox, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=FireFox, direct connection.
trying CUP:WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying WinHTTP.
Send request returned 0x80072ee7. Http status code 0.
trying CUP:iexplore.
Send request returned 0x80004005. Http status code 0.
Trying config: source=IE, wpad=1, script=.
trying CUP:WinHTTP.
Send request returned 0x80

Error: (04/19/2012 10:21:48 PM) (Source: Application Hang)(User: )
Description: WoW.exe5.0.1.155891df801cd1ea1f9d98870793C:\Program Files (x86)\World of Warcraft Beta\WoW.exe

Error: (04/15/2012 02:43:28 PM) (Source: Application Error)(User: )
Description: rads_user_kernel.exe0.0.0.04e65c1acrads_user_kernel.exe0.0.0.04e65c1acc0000005000b8554175801cd1b400474fec3C:\Riot Games\League of Legends\RADS\system\rads_user_kernel.exeC:\Riot Games\League of Legends\RADS\system\rads_user_kernel.exe452004bc-8733-11e1-9601-5c260a5009cd


=========================== Installed Programs ============================

Accelerometer (Version: 1.06.08.47)
Adobe Flash Player 10 ActiveX (Version: 10.2.152.26)
Adobe Flash Player 10 Plugin (Version: 10.3.181.14)
Adobe Reader 9.1.2 (Version: 9.1.2)
Advanced Audio FX Engine (Version: 1.12.05)
AlienRespawn - Support Software (Version: 9.4.60)
AlienRespawn (Version: 9.4.60)
Alienware On-Screen Display (Version: 0.0.0.18C)
Brother MFL-Pro Suite MFC-465CN (Version: 1.0.2.0)
Cisco EAP-FAST Module (Version: 2.2.14)
Cisco LEAP Module (Version: 1.0.19)
Cisco PEAP Module (Version: 1.1.6)
Command Center (Version: 2.5.54.0)
Dell InHome Service Agreement (Version: 2.0.0)
Diablo III (Version: 1.0.2.9749)
DW WLAN Card Utility (Version: 5.60.48.18)
EMSC (Version: 0.0.0.22C)
ESET Online Scanner v3
Facebook Video Calling 1.2.0.159 (Version: 1.2.159)
Integrated Webcam Live! Central (Version: 2.00.35)
Intel® Control Center (Version: 1.2.1.1007)
Intel® Rapid Storage Technology (Version: 9.6.0.1014)
Java Auto Updater (Version: 2.0.3.1)
Java™ 6 Update 24 (64-bit) (Version: 6.0.240)
Java™ 6 Update 24 (Version: 6.0.240)
Katawa Shoujo
League of Legends (Version: 1.3)
McAfee SecurityCenter (Version: 11.0.669)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Visual C++ 2005 Redistributable - KB2467175 (Version: 8.0.51011)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.58299)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft WSE 3.0 Runtime (Version: 3.0.5305.0)
Mozilla Firefox 12.0 (x86 en-US) (Version: 12.0)
Mozilla Maintenance Service (Version: 12.0)
NVIDIA Control Panel 263.08 (Version: 263.08)
NVIDIA Graphics Driver 263.08 (Version: 263.08)
NVIDIA HD Audio Driver 1.1.13.1 (Version: 1.1.13.1)
NVIDIA Install Application (Version: 2.265.39.0)
Origin (Version: 8.1.0.1556)
Pando Media Booster (Version: 2.6.0.7)
Picasa 3 (Version: 3.8)
Realtek High Definition Audio Driver (Version: 6.0.1.6083)
Skype Click to Call (Version: 5.9.9216)
Skype™ 5.8 (Version: 5.8.158)
Steam (Version: 1.0.0.0)
Synaptics Pointing Device Driver (Version: 15.0.4.0)
Synthesia (remove only)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Ventrilo Client (Version: 3.0.8)
Warcraft III
WinRAR 4.01 (32-bit) (Version: 4.01.0)
World of Warcraft (Version: 5.0.1.15640)
World of Warcraft Public Test (Version: 0.0.0.0)

========================= Memory info: ===================================

Percentage of memory in use: 71%
Total physical RAM: 3996.82 MB
Available physical RAM: 1123.71 MB
Total Pagefile: 7991.84 MB
Available Pagefile: 4858.48 MB
Total Virtual: 4095.88 MB
Available Virtual: 3972.81 MB

========================= Partitions: =====================================

1 Drive c: (OS) (Fixed) (Total:213.31 GB) (Free:94.89 GB) NTFS

========================= Users: ========================================

User accounts for \\IAN-PC

Administrator Guest Ian


**** End of log ****






TDSSKiller as requested: No reboot required.

15:24:36.0907 3660 TDSS rootkit removing tool 2.7.41.0 Jun 20 2012 20:53:32
15:24:38.0919 3660 ============================================================
15:24:38.0919 3660 Current date / time: 2012/06/22 15:24:38.0919
15:24:38.0919 3660 SystemInfo:
15:24:38.0919 3660
15:24:38.0919 3660 OS Version: 6.1.7601 ServicePack: 1.0
15:24:38.0919 3660 Product type: Workstation
15:24:38.0919 3660 ComputerName: IAN-PC
15:24:38.0919 3660 UserName: Ian
15:24:38.0919 3660 Windows directory: C:\Windows
15:24:38.0919 3660 System windows directory: C:\Windows
15:24:38.0919 3660 Running under WOW64
15:24:38.0919 3660 Processor architecture: Intel x64
15:24:38.0919 3660 Number of processors: 2
15:24:38.0919 3660 Page size: 0x1000
15:24:38.0919 3660 Boot type: Normal boot
15:24:38.0919 3660 ============================================================
15:24:42.0304 3660 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
15:24:42.0304 3660 ============================================================
15:24:42.0304 3660 \Device\Harddisk0\DR0:
15:24:42.0304 3660 MBR partitions:
15:24:42.0304 3660 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x14000, BlocksNum 0x2710000
15:24:42.0304 3660 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2724000, BlocksNum 0x1AAA1170
15:24:42.0304 3660 ============================================================
15:24:42.0351 3660 C: <-> \Device\Harddisk0\DR0\Partition1
15:24:42.0351 3660 ============================================================
15:24:42.0351 3660 Initialize success
15:24:42.0351 3660 ============================================================
15:25:01.0321 6560 ============================================================
15:25:01.0321 6560 Scan started
15:25:01.0321 6560 Mode: Manual; TDLFS;
15:25:01.0321 6560 ============================================================
15:25:02.0381 6560 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
15:25:02.0475 6560 1394ohci - ok
15:25:02.0506 6560 Acceler (d82ba16d731f1bead682e58e45454f29) C:\Windows\system32\DRIVERS\Acceler.sys
15:25:02.0584 6560 Acceler - ok
15:25:02.0631 6560 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
15:25:02.0647 6560 ACPI - ok
15:25:02.0678 6560 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
15:25:02.0756 6560 AcpiPmi - ok
15:25:02.0818 6560 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
15:25:02.0849 6560 adp94xx - ok
15:25:02.0912 6560 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
15:25:02.0927 6560 adpahci - ok
15:25:02.0974 6560 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
15:25:02.0990 6560 adpu320 - ok
15:25:03.0005 6560 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
15:25:03.0021 6560 AeLookupSvc - ok
15:25:03.0068 6560 AERTFilters (d1e343bc00136ce03c4d403194d06a80) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
15:25:03.0146 6560 AERTFilters - ok
15:25:03.0224 6560 AFD (d5b031c308a409a0a576bff4cf083d30) C:\Windows\system32\drivers\afd.sys
15:25:03.0224 6560 AFD - ok
15:25:03.0255 6560 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
15:25:03.0271 6560 agp440 - ok
15:25:03.0286 6560 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
15:25:03.0302 6560 ALG - ok
15:25:03.0317 6560 AlienFusionService (a99e57669390f265d25288c8ba042d78) C:\Program Files\Alienware\Command Center\AlienFusionService.exe
15:25:03.0411 6560 AlienFusionService - ok
15:25:03.0442 6560 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
15:25:03.0442 6560 aliide - ok
15:25:03.0458 6560 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
15:25:03.0458 6560 amdide - ok
15:25:03.0489 6560 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
15:25:03.0489 6560 AmdK8 - ok
15:25:03.0505 6560 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
15:25:03.0505 6560 AmdPPM - ok
15:25:03.0551 6560 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
15:25:03.0629 6560 amdsata - ok
15:25:03.0645 6560 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
15:25:03.0661 6560 amdsbs - ok
15:25:03.0676 6560 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
15:25:03.0676 6560 amdxata - ok
15:25:03.0723 6560 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
15:25:03.0801 6560 AppID - ok
15:25:03.0817 6560 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
15:25:03.0817 6560 AppIDSvc - ok
15:25:03.0848 6560 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
15:25:03.0848 6560 Appinfo - ok
15:25:03.0863 6560 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
15:25:03.0863 6560 arc - ok
15:25:03.0879 6560 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
15:25:03.0879 6560 arcsas - ok
15:25:03.0926 6560 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
15:25:03.0926 6560 AsyncMac - ok
15:25:03.0988 6560 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
15:25:03.0988 6560 atapi - ok
15:25:04.0035 6560 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
15:25:04.0113 6560 AudioEndpointBuilder - ok
15:25:04.0129 6560 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
15:25:04.0129 6560 AudioSrv - ok
15:25:04.0175 6560 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
15:25:04.0238 6560 AxInstSV - ok
15:25:04.0300 6560 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
15:25:04.0316 6560 b06bdrv - ok
15:25:04.0363 6560 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
15:25:04.0378 6560 b57nd60a - ok
15:25:04.0409 6560 BCM42RLY (5c0f919666954885d7760dffe4b29a25) C:\Windows\system32\drivers\BCM42RLY.sys
15:25:04.0487 6560 BCM42RLY - ok
15:25:04.0643 6560 BCM43XX (bab887a2b2786310a966881f074f4a99) C:\Windows\system32\DRIVERS\bcmwl664.sys
15:25:04.0675 6560 BCM43XX - ok
15:25:04.0799 6560 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
15:25:04.0831 6560 BDESVC - ok
15:25:04.0862 6560 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
15:25:04.0862 6560 Beep - ok
15:25:04.0924 6560 BFE (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
15:25:05.0002 6560 BFE - ok
15:25:05.0049 6560 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\System32\qmgr.dll
15:25:05.0065 6560 BITS - ok
15:25:05.0096 6560 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
15:25:05.0096 6560 blbdrive - ok
15:25:05.0143 6560 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
15:25:05.0143 6560 bowser - ok
15:25:05.0158 6560 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
15:25:05.0174 6560 BrFiltLo - ok
15:25:05.0174 6560 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
15:25:05.0189 6560 BrFiltUp - ok
15:25:05.0205 6560 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
15:25:05.0267 6560 Browser - ok
15:25:05.0299 6560 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
15:25:05.0314 6560 Brserid - ok
15:25:05.0377 6560 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
15:25:05.0377 6560 BrSerWdm - ok
15:25:05.0392 6560 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
15:25:05.0392 6560 BrUsbMdm - ok
15:25:05.0423 6560 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
15:25:05.0423 6560 BrUsbSer - ok
15:25:05.0439 6560 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
15:25:05.0439 6560 BTHMODEM - ok
15:25:05.0486 6560 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
15:25:05.0486 6560 bthserv - ok
15:25:05.0501 6560 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
15:25:05.0517 6560 cdfs - ok
15:25:05.0564 6560 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\drivers\cdrom.sys
15:25:05.0642 6560 cdrom - ok
15:25:05.0720 6560 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
15:25:05.0782 6560 CertPropSvc - ok
15:25:05.0813 6560 cfwids (274ce03459896006f7a5069266e0469e) C:\Windows\system32\drivers\cfwids.sys
15:25:05.0829 6560 cfwids - ok
15:25:05.0876 6560 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
15:25:05.0876 6560 circlass - ok
15:25:05.0969 6560 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
15:25:05.0985 6560 CLFS - ok
15:25:06.0141 6560 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
15:25:06.0157 6560 clr_optimization_v2.0.50727_32 - ok
15:25:06.0219 6560 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
15:25:06.0219 6560 clr_optimization_v2.0.50727_64 - ok
15:25:06.0328 6560 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
15:25:06.0453 6560 clr_optimization_v4.0.30319_32 - ok
15:25:06.0593 6560 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
15:25:06.0593 6560 clr_optimization_v4.0.30319_64 - ok
15:25:06.0625 6560 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
15:25:06.0625 6560 CmBatt - ok
15:25:06.0656 6560 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
15:25:06.0656 6560 cmdide - ok
15:25:06.0703 6560 CNG (d5fea92400f12412b3922087c09da6a5) C:\Windows\system32\Drivers\cng.sys
15:25:06.0718 6560 CNG - ok
15:25:06.0749 6560 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
15:25:06.0749 6560 Compbatt - ok
15:25:06.0781 6560 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
15:25:06.0859 6560 CompositeBus - ok
15:25:06.0874 6560 COMSysApp - ok
15:25:06.0905 6560 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
15:25:06.0905 6560 crcdisk - ok
15:25:06.0937 6560 CryptSvc (15597883fbe9b056f276ada3ad87d9af) C:\Windows\system32\cryptsvc.dll
15:25:06.0999 6560 CryptSvc - ok
15:25:07.0030 6560 CtClsFlt (fbe228abeab2be13b9c3a3a112d4d8dc) C:\Windows\system32\DRIVERS\CtClsFlt.sys
15:25:07.0108 6560 CtClsFlt - ok
15:25:07.0139 6560 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
15:25:07.0155 6560 DcomLaunch - ok
15:25:07.0186 6560 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
15:25:07.0202 6560 defragsvc - ok
15:25:07.0233 6560 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
15:25:07.0233 6560 DfsC - ok
15:25:07.0264 6560 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
15:25:07.0342 6560 Dhcp - ok
15:25:07.0358 6560 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
15:25:07.0358 6560 discache - ok
15:25:07.0389 6560 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
15:25:07.0405 6560 Disk - ok
15:25:07.0436 6560 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
15:25:07.0498 6560 Dnscache - ok
15:25:07.0529 6560 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
15:25:07.0592 6560 dot3svc - ok
15:25:07.0639 6560 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
15:25:07.0639 6560 DPS - ok
15:25:07.0670 6560 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
15:25:07.0685 6560 drmkaud - ok
15:25:07.0732 6560 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
15:25:07.0826 6560 DXGKrnl - ok
15:25:07.0857 6560 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
15:25:07.0857 6560 EapHost - ok
15:25:08.0029 6560 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
15:25:08.0138 6560 ebdrv - ok
15:25:08.0231 6560 EFS (0793f40b9b8a1bdd266296409dbd91ea) C:\Windows\System32\lsass.exe
15:25:08.0231 6560 EFS - ok
15:25:08.0309 6560 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
15:25:08.0419 6560 ehRecvr - ok
15:25:08.0434 6560 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
15:25:08.0450 6560 ehSched - ok
15:25:08.0543 6560 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
15:25:08.0575 6560 elxstor - ok
15:25:08.0606 6560 EMSC (e47d9d7e6e53892fc97282482f4ae307) C:\Windows\system32\DRIVERS\EMSC.SYS
15:25:08.0606 6560 EMSC - ok
15:25:08.0637 6560 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
15:25:08.0637 6560 ErrDev - ok
15:25:08.0699 6560 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
15:25:08.0715 6560 EventSystem - ok
15:25:08.0746 6560 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
15:25:08.0762 6560 exfat - ok
15:25:08.0793 6560 FACAP (2c1d443e14f376e8331f52f135dca9ef) C:\Windows\system32\DRIVERS\facap.sys
15:25:08.0887 6560 FACAP - ok
15:25:09.0027 6560 FAService (53e30a6e86aa93c0ffc0bc0439e3e636) C:\Program Files\Alienware\Command Center\AlienSense\FAService.exe
15:25:09.0058 6560 FAService - ok
15:25:09.0152 6560 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
15:25:09.0167 6560 fastfat - ok
15:25:09.0230 6560 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
15:25:09.0230 6560 Fax - ok
15:25:09.0261 6560 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
15:25:09.0261 6560 fdc - ok
15:25:09.0292 6560 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
15:25:09.0292 6560 fdPHost - ok
15:25:09.0308 6560 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
15:25:09.0308 6560 FDResPub - ok
15:25:09.0323 6560 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
15:25:09.0323 6560 FileInfo - ok
15:25:09.0339 6560 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
15:25:09.0339 6560 Filetrace - ok
15:25:09.0355 6560 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
15:25:09.0355 6560 flpydisk - ok
15:25:09.0386 6560 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
15:25:09.0401 6560 FltMgr - ok
15:25:09.0479 6560 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
15:25:09.0495 6560 FontCache - ok
15:25:09.0542 6560 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
15:25:09.0635 6560 FontCache3.0.0.0 - ok
15:25:09.0667 6560 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
15:25:09.0667 6560 FsDepends - ok
15:25:09.0682 6560 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\Windows\system32\drivers\Fs_Rec.sys
15:25:09.0698 6560 Fs_Rec - ok
15:25:09.0729 6560 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
15:25:09.0745 6560 fvevol - ok
15:25:09.0760 6560 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
15:25:09.0776 6560 gagp30kx - ok
15:25:09.0838 6560 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
15:25:09.0916 6560 gpsvc - ok
15:25:09.0979 6560 gusvc (c1b577b2169900f4cf7190c39f085794) C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
15:25:10.0088 6560 gusvc - ok
15:25:10.0103 6560 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
15:25:10.0119 6560 hcw85cir - ok
15:25:10.0150 6560 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
15:25:10.0150 6560 HDAudBus - ok
15:25:10.0150 6560 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
15:25:10.0166 6560 HidBatt - ok
15:25:10.0181 6560 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
15:25:10.0197 6560 HidBth - ok
15:25:10.0213 6560 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
15:25:10.0213 6560 HidIr - ok
15:25:10.0244 6560 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
15:25:10.0244 6560 hidserv - ok
15:25:10.0291 6560 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
15:25:10.0369 6560 HidUsb - ok
15:25:10.0384 6560 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
15:25:10.0447 6560 hkmsvc - ok
15:25:10.0478 6560 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
15:25:10.0478 6560 HomeGroupListener - ok
15:25:10.0509 6560 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
15:25:10.0587 6560 HomeGroupProvider - ok
15:25:10.0649 6560 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
15:25:10.0727 6560 HpSAMD - ok
15:25:10.0790 6560 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
15:25:10.0805 6560 HTTP - ok
15:25:10.0821 6560 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
15:25:10.0821 6560 hwpolicy - ok
15:25:10.0868 6560 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
15:25:10.0883 6560 i8042prt - ok
15:25:10.0930 6560 iaStor (abbf174cb394f5c437410a788b7e404a) C:\Windows\system32\DRIVERS\iaStor.sys
15:25:10.0946 6560 iaStor - ok
15:25:10.0993 6560 IAStorDataMgrSvc (31a0e93cdf29007d6c6fffb632f375ed) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
15:25:11.0008 6560 IAStorDataMgrSvc - ok
15:25:11.0055 6560 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
15:25:11.0149 6560 iaStorV - ok
15:25:11.0211 6560 IDriverT (6f95324909b502e2651442c1548ab12f) C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
15:25:11.0227 6560 IDriverT - ok
15:25:11.0320 6560 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
15:25:11.0429 6560 idsvc - ok
15:25:11.0507 6560 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
15:25:11.0523 6560 iirsp - ok
15:25:11.0585 6560 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
15:25:11.0663 6560 IKEEXT - ok
15:25:11.0726 6560 InstallFilterService (57ae484d280aebd405f65166363e98dc) C:\Program Files (x86)\STMicroelectronics\Accelerometer\InstallFilterService.exe
15:25:11.0835 6560 InstallFilterService - ok
15:25:11.0960 6560 IntcAzAudAddService (0adf714079ae174a39d69036143e4c50) C:\Windows\system32\drivers\RTKVHD64.sys
15:25:12.0053 6560 IntcAzAudAddService - ok
15:25:12.0194 6560 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
15:25:12.0194 6560 intelide - ok
15:25:12.0241 6560 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
15:25:12.0241 6560 intelppm - ok
15:25:12.0272 6560 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
15:25:12.0303 6560 IPBusEnum - ok
15:25:12.0381 6560 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
15:25:12.0459 6560 IpFilterDriver - ok
15:25:12.0568 6560 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
15:25:12.0646 6560 iphlpsvc - ok
15:25:12.0693 6560 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
15:25:12.0771 6560 IPMIDRV - ok
15:25:12.0818 6560 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
15:25:12.0833 6560 IPNAT - ok
15:25:12.0865 6560 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
15:25:12.0880 6560 IRENUM - ok
15:25:12.0927 6560 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
15:25:12.0943 6560 isapnp - ok
15:25:13.0099 6560 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
15:25:13.0192 6560 iScsiPrt - ok
15:25:13.0317 6560 JMCR (5bd76f820656aeaa2dce66eed8da84b9) C:\Windows\system32\DRIVERS\jmcr.sys
15:25:13.0395 6560 JMCR - ok
15:25:13.0426 6560 johci (e662cb468a1cff3a57e120a212fadd57) C:\Windows\system32\DRIVERS\johci.sys
15:25:13.0504 6560 johci - ok
15:25:13.0551 6560 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\drivers\kbdclass.sys
15:25:13.0551 6560 kbdclass - ok
15:25:13.0645 6560 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\drivers\kbdhid.sys
15:25:13.0738 6560 kbdhid - ok
15:25:13.0816 6560 KeyIso (0793f40b9b8a1bdd266296409dbd91ea) C:\Windows\system32\lsass.exe
15:25:13.0816 6560 KeyIso - ok
15:25:13.0910 6560 KSecDD (ccd53b5bd33ce0c889e830d839c8b66e) C:\Windows\system32\Drivers\ksecdd.sys
15:25:13.0925 6560 KSecDD - ok
15:25:14.0081 6560 KSecPkg (9ff918a261752c12639e8ad4208d2c2f) C:\Windows\system32\Drivers\ksecpkg.sys
15:25:14.0081 6560 KSecPkg - ok
15:25:14.0128 6560 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
15:25:14.0144 6560 ksthunk - ok
15:25:14.0284 6560 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
15:25:14.0315 6560 KtmRm - ok
15:25:14.0409 6560 L1C (9c46a5421de9d116c47155317cabb522) C:\Windows\system32\DRIVERS\L1C62x64.sys
15:25:14.0487 6560 L1C - ok
15:25:14.0612 6560 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\system32\srvsvc.dll
15:25:14.0690 6560 LanmanServer - ok
15:25:14.0752 6560 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
15:25:14.0815 6560 LanmanWorkstation - ok
15:25:14.0861 6560 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
15:25:14.0861 6560 lltdio - ok
15:25:15.0080 6560 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
15:25:15.0142 6560 lltdsvc - ok
15:25:15.0173 6560 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
15:25:15.0173 6560 lmhosts - ok
15:25:15.0329 6560 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
15:25:15.0345 6560 LSI_FC - ok
15:25:15.0361 6560 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
15:25:15.0361 6560 LSI_SAS - ok
15:25:15.0439 6560 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
15:25:15.0454 6560 LSI_SAS2 - ok
15:25:15.0485 6560 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
15:25:15.0485 6560 LSI_SCSI - ok
15:25:15.0579 6560 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
15:25:15.0595 6560 luafv - ok
15:25:15.0673 6560 ManyCam (d33e2b74cf8b3a652bf0a9fbd068e87a) C:\Windows\system32\DRIVERS\ManyCam_x64.sys
15:25:15.0766 6560 ManyCam - ok
15:25:16.0000 6560 McMPFSvc (acb01bf1a905356ab7f978c7fe852209) C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
15:25:16.0078 6560 McMPFSvc - ok
15:25:16.0094 6560 mcmscsvc (acb01bf1a905356ab7f978c7fe852209) C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
15:25:16.0094 6560 mcmscsvc - ok
15:25:16.0094 6560 McNaiAnn (acb01bf1a905356ab7f978c7fe852209) C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
15:25:16.0109 6560 McNaiAnn - ok
15:25:16.0125 6560 McNASvc (acb01bf1a905356ab7f978c7fe852209) C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
15:25:16.0125 6560 McNASvc - ok
15:25:16.0343 6560 McODS (dd01bf24dd6bf70a90549f9a7bb2d1eb) C:\Program Files\mcafee\VirusScan\mcods.exe
15:25:16.0421 6560 McODS - ok
15:25:16.0437 6560 McOobeSv (acb01bf1a905356ab7f978c7fe852209) C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
15:25:16.0437 6560 McOobeSv - ok
15:25:16.0453 6560 McProxy (acb01bf1a905356ab7f978c7fe852209) C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
15:25:16.0453 6560 McProxy - ok
15:25:16.0593 6560 McShield (e998e3b12101288d716558466cbf6ae1) C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe
15:25:16.0687 6560 McShield - ok
15:25:16.0718 6560 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
15:25:16.0780 6560 Mcx2Svc - ok
15:25:16.0796 6560 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
15:25:16.0811 6560 megasas - ok
15:25:16.0921 6560 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
15:25:16.0967 6560 MegaSR - ok
15:25:17.0014 6560 mfeapfk (01884cb7655c8908b43ff5e364fe6fd2) C:\Windows\system32\drivers\mfeapfk.sys
15:25:17.0014 6560 mfeapfk - ok
15:25:17.0045 6560 mfeavfk (dab9a9cdfb04e4d68924492aa043019d) C:\Windows\system32\drivers\mfeavfk.sys
15:25:17.0123 6560 mfeavfk - ok
15:25:17.0170 6560 mfeavfk01 - ok
15:25:17.0201 6560 mfefire (b26782c3d6045b4464017d7926877560) C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
15:25:17.0295 6560 mfefire - ok
15:25:17.0326 6560 mfefirek (ce9a3680675c0907ade16404ca967b49) C:\Windows\system32\drivers\mfefirek.sys
15:25:17.0420 6560 mfefirek - ok
15:25:17.0451 6560 mfehidk (60cf67458dd29cd17e77f2327b1a9a54) C:\Windows\system32\drivers\mfehidk.sys
15:25:17.0467 6560 mfehidk - ok
15:25:17.0513 6560 mfenlfk (a8129cfb919347f8533c934b365e9202) C:\Windows\system32\DRIVERS\mfenlfk.sys
15:25:17.0591 6560 mfenlfk - ok
15:25:17.0623 6560 mferkdet (5041fa2bd2b3a2693b015771bfbf6dca) C:\Windows\system32\drivers\mferkdet.sys
15:25:17.0623 6560 mferkdet - ok
15:25:17.0701 6560 mfevtp (723a5eb6cef7f408c3d0f15a82a6bff8) C:\Program Files\Common Files\McAfee\SystemCore\mfevtps.exe
15:25:17.0779 6560 mfevtp - ok
15:25:17.0794 6560 mfewfpk (919c56db14a0e1e2ab6da5d2821dc26e) C:\Windows\system32\drivers\mfewfpk.sys
15:25:17.0825 6560 mfewfpk - ok
15:25:17.0857 6560 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
15:25:17.0872 6560 MMCSS - ok
15:25:17.0888 6560 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
15:25:17.0888 6560 Modem - ok
15:25:17.0919 6560 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
15:25:17.0919 6560 monitor - ok
15:25:17.0981 6560 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
15:25:17.0981 6560 mouclass - ok
15:25:18.0013 6560 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
15:25:18.0028 6560 mouhid - ok
15:25:18.0044 6560 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
15:25:18.0059 6560 mountmgr - ok
15:25:18.0106 6560 MozillaMaintenance (96aa8ba23142cc8e2b30f3cae0c80254) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
15:25:18.0200 6560 MozillaMaintenance - ok
15:25:18.0231 6560 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
15:25:18.0309 6560 mpio - ok
15:25:18.0356 6560 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
15:25:18.0371 6560 mpsdrv - ok
15:25:18.0543 6560 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
15:25:18.0637 6560 MpsSvc - ok
15:25:18.0668 6560 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
15:25:18.0761 6560 MRxDAV - ok
15:25:18.0793 6560 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
15:25:18.0793 6560 mrxsmb - ok
15:25:18.0824 6560 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
15:25:18.0839 6560 mrxsmb10 - ok
15:25:18.0871 6560 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
15:25:18.0871 6560 mrxsmb20 - ok
15:25:18.0886 6560 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
15:25:18.0886 6560 msahci - ok
15:25:18.0917 6560 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
15:25:19.0011 6560 msdsm - ok
15:25:19.0058 6560 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
15:25:19.0058 6560 MSDTC - ok
15:25:19.0105 6560 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
15:25:19.0105 6560 Msfs - ok
15:25:19.0120 6560 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
15:25:19.0136 6560 mshidkmdf - ok
15:25:19.0151 6560 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
15:25:19.0151 6560 msisadrv - ok
15:25:19.0183 6560 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
15:25:19.0198 6560 MSiSCSI - ok
15:25:19.0214 6560 msiserver - ok
15:25:19.0245 6560 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
15:25:19.0245 6560 MSKSSRV - ok
15:25:19.0261 6560 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
15:25:19.0276 6560 MSPCLOCK - ok
15:25:19.0276 6560 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
15:25:19.0276 6560 MSPQM - ok
15:25:19.0323 6560 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
15:25:19.0339 6560 MsRPC - ok
15:25:19.0370 6560 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
15:25:19.0370 6560 mssmbios - ok
15:25:19.0385 6560 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
15:25:19.0401 6560 MSTEE - ok
15:25:19.0401 6560 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
15:25:19.0401 6560 MTConfig - ok
15:25:19.0432 6560 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
15:25:19.0448 6560 Mup - ok
15:25:19.0495 6560 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
15:25:19.0495 6560 napagent - ok
15:25:19.0541 6560 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
15:25:19.0557 6560 NativeWifiP - ok
15:25:19.0635 6560 NDIS (c38b8ae57f78915905064a9a24dc1586) C:\Windows\system32\drivers\ndis.sys
15:25:19.0682 6560 NDIS - ok
15:25:19.0697 6560 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
15:25:19.0713 6560 NdisCap - ok
15:25:19.0744 6560 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
15:25:19.0744 6560 NdisTapi - ok
15:25:19.0775 6560 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
15:25:19.0853 6560 Ndisuio - ok
15:25:19.0885 6560 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
15:25:19.0963 6560 NdisWan - ok
15:25:19.0994 6560 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
15:25:20.0087 6560 NDProxy - ok
15:25:20.0103 6560 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
15:25:20.0119 6560 NetBIOS - ok
15:25:20.0150 6560 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
15:25:20.0165 6560 NetBT - ok
15:25:20.0197 6560 Netlogon (0793f40b9b8a1bdd266296409dbd91ea) C:\Windows\system32\lsass.exe
15:25:20.0197 6560 Netlogon - ok
15:25:20.0243 6560 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
15:25:20.0243 6560 Netman - ok
15:25:20.0337 6560 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
15:25:20.0353 6560 netprofm - ok
15:25:20.0446 6560 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
15:25:20.0462 6560 NetTcpPortSharing - ok
15:25:20.0493 6560 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
15:25:20.0493 6560 nfrd960 - ok
15:25:20.0540 6560 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
15:25:20.0602 6560 NlaSvc - ok
15:25:20.0649 6560 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
15:25:20.0649 6560 Npfs - ok
15:25:20.0665 6560 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
15:25:20.0680 6560 nsi - ok
15:25:20.0696 6560 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
15:25:20.0696 6560 nsiproxy - ok
15:25:20.0789 6560 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
15:25:20.0821 6560 Ntfs - ok
15:25:20.0945 6560 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
15:25:20.0945 6560 Null - ok
15:25:20.0992 6560 NVHDA (857fb74754ebff94ee3ad40788740916) C:\Windows\system32\drivers\nvhda64v.sys
15:25:21.0070 6560 NVHDA - ok
15:25:21.0632 6560 nvlddmkm (edf30eed48e56777956e703a851e3a4e) C:\Windows\system32\DRIVERS\nvlddmkm.sys
15:25:21.0819 6560 nvlddmkm - ok
15:25:21.0944 6560 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
15:25:22.0022 6560 nvraid - ok
15:25:22.0053 6560 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
15:25:22.0131 6560 nvstor - ok
15:25:22.0240 6560 NVSvc (25fd2f728c486900dba77ed33345ed65) C:\Windows\system32\nvvsvc.exe
15:25:22.0240 6560 NVSvc - ok
15:25:22.0271 6560 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
15:25:22.0287 6560 nv_agp - ok
15:25:22.0303 6560 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
15:25:22.0303 6560 ohci1394 - ok
15:25:22.0334 6560 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
15:25:22.0349 6560 p2pimsvc - ok
15:25:22.0381 6560 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
15:25:22.0396 6560 p2psvc - ok
15:25:22.0443 6560 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
15:25:22.0443 6560 Parport - ok
15:25:22.0474 6560 partmgr (871eadac56b0a4c6512bbe32753ccf79) C:\Windows\system32\drivers\partmgr.sys
15:25:22.0490 6560 partmgr - ok
15:25:22.0505 6560 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
15:25:22.0521 6560 PcaSvc - ok
15:25:22.0552 6560 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
15:25:22.0552 6560 pci - ok
15:25:22.0583 6560 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
15:25:22.0583 6560 pciide - ok
15:25:22.0615 6560 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
15:25:22.0630 6560 pcmcia - ok
15:25:22.0646 6560 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
15:25:22.0646 6560 pcw - ok
15:25:22.0693 6560 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
15:25:22.0724 6560 PEAUTH - ok
15:25:22.0786 6560 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
15:25:22.0786 6560 PerfHost - ok
15:25:22.0880 6560 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
15:25:22.0989 6560 pla - ok
15:25:23.0036 6560 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
15:25:23.0051 6560 PlugPlay - ok
15:25:23.0083 6560 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
15:25:23.0098 6560 PNRPAutoReg - ok
15:25:23.0129 6560 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
15:25:23.0129 6560 PNRPsvc - ok
15:25:23.0176 6560 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
15:25:23.0176 6560 PolicyAgent - ok
15:25:23.0223 6560 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
15:25:23.0239 6560 Power - ok
15:25:23.0301 6560 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
15:25:23.0363 6560 PptpMiniport - ok
15:25:23.0395 6560 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
15:25:23.0395 6560 Processor - ok
15:25:23.0426 6560 ProfSvc (5c78838b4d166d1a27db3a8a820c799a) C:\Windows\system32\profsvc.dll
15:25:23.0535 6560 ProfSvc - ok
15:25:23.0551 6560 ProtectedStorage (0793f40b9b8a1bdd266296409dbd91ea) C:\Windows\system32\lsass.exe
15:25:23.0551 6560 ProtectedStorage - ok
15:25:23.0613 6560 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
15:25:23.0613 6560 Psched - ok
15:25:23.0800 6560 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
15:25:23.0847 6560 ql2300 - ok
15:25:23.0941 6560 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
15:25:23.0941 6560 ql40xx - ok
15:25:23.0972 6560 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
15:25:24.0003 6560 QWAVE - ok
15:25:24.0019 6560 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
15:25:24.0019 6560 QWAVEdrv - ok
15:25:24.0034 6560 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
15:25:24.0034 6560 RasAcd - ok
15:25:24.0065 6560 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
15:25:24.0081 6560 RasAgileVpn - ok
15:25:24.0097 6560 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
15:25:24.0112 6560 RasAuto - ok
15:25:24.0143 6560 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
15:25:24.0237 6560 Rasl2tp - ok
15:25:24.0284 6560 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
15:25:24.0346 6560 RasMan - ok
15:25:24.0362 6560 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
15:25:24.0377 6560 RasPppoe - ok
15:25:24.0393 6560 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
15:25:24.0409 6560 RasSstp - ok
15:25:24.0440 6560 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
15:25:24.0455 6560 rdbss - ok
15:25:24.0471 6560 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
15:25:24.0487 6560 rdpbus - ok
15:25:24.0502 6560 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
15:25:24.0502 6560 RDPCDD - ok
15:25:24.0518 6560 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
15:25:24.0518 6560 RDPENCDD - ok
15:25:24.0549 6560 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
15:25:24.0549 6560 RDPREFMP - ok
15:25:24.0580 6560 RDPWD (15b66c206b5cb095bab980553f38ed23) C:\Windows\system32\drivers\RDPWD.sys
15:25:24.0643 6560 RDPWD - ok
15:25:24.0689 6560 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
15:25:24.0689 6560 rdyboost - ok
15:25:24.0721 6560 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
15:25:24.0736 6560 RemoteAccess - ok
15:25:24.0752 6560 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
15:25:24.0767 6560 RemoteRegistry - ok
15:25:24.0799 6560 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
15:25:24.0814 6560 RpcEptMapper - ok
15:25:24.0830 6560 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
15:25:24.0845 6560 RpcLocator - ok
15:25:24.0892 6560 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
15:25:24.0892 6560 RpcSs - ok
15:25:24.0923 6560 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
15:25:24.0939 6560 rspndr - ok
15:25:24.0955 6560 SamSs (0793f40b9b8a1bdd266296409dbd91ea) C:\Windows\system32\lsass.exe
15:25:24.0955 6560 SamSs - ok
15:25:24.0986 6560 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
15:25:25.0064 6560 sbp2port - ok
15:25:25.0095 6560 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
15:25:25.0111 6560 SCardSvr - ok
15:25:25.0142 6560 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
15:25:25.0220 6560 scfilter - ok
15:25:25.0282 6560 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
15:25:25.0376 6560 Schedule - ok
15:25:25.0391 6560 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
15:25:25.0391 6560 SCPolicySvc - ok
15:25:25.0438 6560 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
15:25:25.0501 6560 SDRSVC - ok
15:25:25.0563 6560 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
15:25:25.0563 6560 secdrv - ok
15:25:25.0579 6560 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
15:25:25.0657 6560 seclogon - ok
15:25:25.0672 6560 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
15:25:25.0672 6560 SENS - ok
15:25:25.0703 6560 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
15:25:25.0719 6560 SensrSvc - ok
15:25:25.0735 6560 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
15:25:25.0735 6560 Serenum - ok
15:25:25.0766 6560 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
15:25:25.0781 6560 Serial - ok
15:25:25.0813 6560 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
15:25:25.0828 6560 sermouse - ok
15:25:25.0859 6560 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
15:25:25.0922 6560 SessionEnv - ok
15:25:25.0953 6560 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
15:25:25.0953 6560 sffdisk - ok
15:25:25.0969 6560 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
15:25:25.0984 6560 sffp_mmc - ok
15:25:26.0000 6560 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
15:25:26.0062 6560 sffp_sd - ok
15:25:26.0078 6560 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
15:25:26.0109 6560 sfloppy - ok
15:25:26.0234 6560 SftService (74ec60e20516aaa573be74f31175270f) C:\Program Files (x86)\AlienRespawn\sftservice.EXE
15:25:26.0437 6560 SftService - ok
15:25:26.0546 6560 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
15:25:26.0577 6560 SharedAccess - ok
15:25:26.0624 6560 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
15:25:26.0686 6560 ShellHWDetection - ok
15:25:26.0733 6560 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
15:25:26.0733 6560 SiSRaid2 - ok
15:25:26.0749 6560 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
15:25:26.0764 6560 SiSRaid4 - ok
15:25:26.0842 6560 SkypeUpdate (6128e98eaaed364ed1a32708d2fd22cb) C:\Program Files (x86)\Skype\Updater\Updater.exe
15:25:26.0842 6560 SkypeUpdate - ok
15:25:26.0873 6560 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
15:25:26.0889 6560 Smb - ok
15:25:26.0936 6560 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
15:25:26.0951 6560 SNMPTRAP - ok
15:25:26.0951 6560 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
15:25:26.0967 6560 spldr - ok
15:25:27.0029 6560 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
15:25:27.0154 6560 Spooler - ok
15:25:27.0310 6560 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
15:25:27.0388 6560 sppsvc - ok
15:25:27.0497 6560 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
15:25:27.0513 6560 sppuinotify - ok
15:25:27.0575 6560 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
15:25:27.0591 6560 srv - ok
15:25:27.0607 6560 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
15:25:27.0622 6560 srv2 - ok
15:25:27.0653 6560 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
15:25:27.0653 6560 srvnet - ok
15:25:27.0685 6560 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
15:25:27.0700 6560 SSDPSRV - ok
15:25:27.0716 6560 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
15:25:27.0716 6560 SstpSvc - ok
15:25:27.0747 6560 stdflt (3d69f5f3beb8aa28d7f46f5548b8d6d7) C:\Windows\system32\DRIVERS\stdflt.sys
15:25:27.0747 6560 stdflt - ok
15:25:27.0794 6560 Steam Client Service - ok
15:25:27.0825 6560 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
15:25:27.0825 6560 stexstor - ok
15:25:27.0856 6560 StillCam (decacb6921ded1a38642642685d77dac) C:\Windows\system32\DRIVERS\serscan.sys
15:25:27.0872 6560 StillCam - ok
15:25:27.0919 6560 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
15:25:28.0012 6560 stisvc - ok
15:25:28.0059 6560 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
15:25:28.0059 6560 swenum - ok
15:25:28.0106 6560 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
15:25:28.0137 6560 swprv - ok
15:25:28.0184 6560 SynTP (be2b928de9af2848289db7a54c7e2398) C:\Windows\system32\DRIVERS\SynTP.sys
15:25:28.0262 6560 SynTP - ok
15:25:28.0355 6560 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
15:25:28.0402 6560 SysMain - ok
15:25:28.0496 6560 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
15:25:28.0558 6560 TabletInputService - ok
15:25:28.0589 6560 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
15:25:28.0652 6560 TapiSrv - ok
15:25:28.0683 6560 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
15:25:28.0683 6560 TBS - ok
15:25:28.0870 6560 Tcpip (fc62769e7bff2896035aeed399108162) C:\Windows\system32\drivers\tcpip.sys
15:25:28.0917 6560 Tcpip - ok
15:25:29.0057 6560 TCPIP6 (fc62769e7bff2896035aeed399108162) C:\Windows\system32\DRIVERS\tcpip.sys
15:25:29.0073 6560 TCPIP6 - ok
15:25:29.0135 6560 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
15:25:29.0213 6560 tcpipreg - ok
15:25:29.0245 6560 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
15:25:29.0260 6560 TDPIPE - ok
15:25:29.0260 6560 TDTCP (e4245bda3190a582d55ed09e137401a9) C:\Windows\system32\drivers\tdtcp.sys
15:25:29.0260 6560 TDTCP - ok
15:25:29.0385 6560 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
15:25:29.0463 6560 tdx - ok
15:25:29.0494 6560 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
15:25:29.0557 6560 TermDD - ok
15:25:29.0603 6560 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
15:25:29.0697 6560 TermService - ok
15:25:29.0713 6560 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
15:25:29.0728 6560 Themes - ok
15:25:29.0759 6560 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
15:25:29.0759 6560 THREADORDER - ok
15:25:29.0775 6560 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
15:25:29.0791 6560 TrkWks - ok
15:25:29.0822 6560 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
15:25:29.0837 6560 TrustedInstaller - ok
15:25:29.0853 6560 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
15:25:29.0931 6560 tssecsrv - ok
15:25:29.0978 6560 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
15:25:30.0040 6560 TsUsbFlt - ok
15:25:30.0087 6560 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
15:25:30.0103 6560 tunnel - ok
15:25:30.0118 6560 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
15:25:30.0134 6560 uagp35 - ok
15:25:30.0165 6560 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
15:25:30.0243 6560 udfs - ok
15:25:30.0274 6560 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
15:25:30.0290 6560 UI0Detect - ok
15:25:30.0321 6560 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
15:25:30.0321 6560 uliagpkx - ok
15:25:30.0352 6560 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys
15:25:30.0415 6560 umbus - ok
15:25:30.0430 6560 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
15:25:30.0446 6560 UmPass - ok
15:25:30.0461 6560 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
15:25:30.0477 6560 upnphost - ok
15:25:30.0539 6560 usbaudio (82e8f44688e6fac57b5b7c6fc7adbc2a) C:\Windows\system32\drivers\usbaudio.sys
15:25:30.0617 6560 usbaudio - ok
15:25:30.0633 6560 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
15:25:30.0711 6560 usbccgp - ok
15:25:30.0742 6560 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
15:25:30.0758 6560 usbcir - ok
15:25:30.0773 6560 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\DRIVERS\usbehci.sys
15:25:30.0851 6560 usbehci - ok
15:25:30.0883 6560 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
15:25:30.0961 6560 usbhub - ok
15:25:30.0992 6560 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
15:25:31.0070 6560 usbohci - ok
15:25:31.0101 6560 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
15:25:31.0117 6560 usbprint - ok
15:25:31.0132 6560 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\drivers\USBSTOR.SYS
15:25:31.0210 6560 USBSTOR - ok
15:25:31.0226 6560 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\DRIVERS\usbuhci.sys
15:25:31.0304 6560 usbuhci - ok
15:25:31.0335 6560 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\Windows\system32\Drivers\usbvideo.sys
15:25:31.0413 6560 usbvideo - ok
15:25:31.0429 6560 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
15:25:31.0444 6560 UxSms - ok
15:25:31.0460 6560 VaultSvc (0793f40b9b8a1bdd266296409dbd91ea) C:\Windows\system32\lsass.exe
15:25:31.0475 6560 VaultSvc - ok
15:25:31.0491 6560 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
15:25:31.0491 6560 vdrvroot - ok
15:25:31.0553 6560 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
15:25:31.0569 6560 vds - ok
15:25:31.0585 6560 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
15:25:31.0600 6560 vga - ok
15:25:31.0616 6560 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
15:25:31.0631 6560 VgaSave - ok
15:25:31.0663 6560 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
15:25:31.0756 6560 vhdmp - ok
15:25:31.0772 6560 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
15:25:31.0787 6560 viaide - ok
15:25:31.0803 6560 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
15:25:31.0819 6560 volmgr - ok
15:25:31.0850 6560 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
15:25:31.0865 6560 volmgrx - ok
15:25:31.0912 6560 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
15:25:31.0928 6560 volsnap - ok
15:25:31.0959 6560 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
15:25:31.0975 6560 vsmraid - ok
15:25:32.0068 6560 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
15:25:32.0115 6560 VSS - ok
15:25:32.0224 6560 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
15:25:32.0224 6560 vwifibus - ok
15:25:32.0240 6560 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
15:25:32.0255 6560 vwififlt - ok
15:25:32.0302 6560 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
15:25:32.0318 6560 W32Time - ok
15:25:32.0333 6560 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
15:25:32.0349 6560 WacomPen - ok
15:25:32.0380 6560 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
15:25:32.0458 6560 WANARP - ok
15:25:32.0458 6560 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
15:25:32.0458 6560 Wanarpv6 - ok
15:25:32.0567 6560 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
15:25:32.0770 6560 WatAdminSvc - ok
15:25:32.0848 6560 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
15:25:32.0973 6560 wbengine - ok
15:25:33.0254 6560 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
15:25:33.0269 6560 WbioSrvc - ok
15:25:33.0316 6560 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
15:25:33.0332 6560 wcncsvc - ok
15:25:33.0347 6560 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
15:25:33.0347 6560 WcsPlugInService - ok
15:25:33.0394 6560 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
15:25:33.0394 6560 Wd - ok
15:25:33.0441 6560 WDC_SAM (a3d04ebf5227886029b4532f20d026f7) C:\Windows\system32\DRIVERS\wdcsam64.sys
15:25:33.0503 6560 WDC_SAM - ok
15:25:33.0566 6560 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
15:25:33.0613 6560 Wdf01000 - ok
15:25:33.0644 6560 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
15:25:33.0644 6560 WdiServiceHost - ok
15:25:33.0659 6560 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
15:25:33.0659 6560 WdiSystemHost - ok
15:25:33.0706 6560 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
15:25:33.0784 6560 WebClient - ok
15:25:33.0800 6560 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
15:25:33.0831 6560 Wecsvc - ok
15:25:33.0847 6560 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
15:25:33.0862 6560 wercplsupport - ok
15:25:33.0878 6560 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
15:25:33.0894 6560 WerSvc - ok
15:25:33.0956 6560 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
15:25:33.0956 6560 WfpLwf - ok
15:25:34.0003 6560 WimFltr (b14ef15bd757fa488f9c970eee9c0d35) C:\Windows\system32\DRIVERS\wimfltr.sys
15:25:34.0096 6560 WimFltr - ok
15:25:34.0143 6560 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
15:25:34.0174 6560 WIMMount - ok
15:25:34.0221 6560 WinDefend - ok
15:25:34.0268 6560 WinHttpAutoProxySvc - ok
15:25:34.0502 6560 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
15:25:34.0518 6560 Winmgmt - ok
15:25:34.0611 6560 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
15:25:34.0767 6560 WinRM - ok
15:25:34.0892 6560 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
15:25:34.0954 6560 WinUsb - ok
15:25:35.0017 6560 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
15:25:35.0048 6560 Wlansvc - ok
15:25:35.0095 6560 wltrysvc (a96d6c0613dcf84f2d07faeb75663072) C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE
15:25:35.0173 6560 wltrysvc - ok
15:25:35.0204 6560 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
15:25:35.0220 6560 WmiAcpi - ok
15:25:35.0282 6560 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
15:25:35.0298 6560 wmiApSrv - ok
15:25:35.0329 6560 WMPNetworkSvc - ok
15:25:35.0344 6560 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
15:25:35.0344 6560 WPCSvc - ok
15:25:35.0376 6560 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
15:25:35.0391 6560 WPDBusEnum - ok
15:25:35.0422 6560 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
15:25:35.0469 6560 ws2ifsl - ok
15:25:35.0516 6560 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\System32\wscsvc.dll
15:25:35.0516 6560 wscsvc - ok
15:25:35.0532 6560 WSearch - ok
15:25:35.0656 6560 wuauserv (9df12edbc698b0bc353b3ef84861e430) C:\Windows\system32\wuaueng.dll
15:25:35.0703 6560 wuauserv - ok
15:25:35.0859 6560 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
15:25:35.0922 6560 WudfPf - ok
15:25:36.0187 6560 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
15:25:36.0265 6560 WUDFRd - ok
15:25:36.0280 6560 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
15:25:36.0343 6560 wudfsvc - ok
15:25:36.0374 6560 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
15:25:36.0405 6560 WwanSvc - ok
15:25:36.0452 6560 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0
15:25:37.0060 6560 \Device\Harddisk0\DR0 - ok
15:25:37.0060 6560 Boot (0x1200) (71d4fe1d45ddae5c028c8dbcb3b1d33a) \Device\Harddisk0\DR0\Partition0
15:25:37.0060 6560 \Device\Harddisk0\DR0\Partition0 - ok
15:25:37.0107 6560 Boot (0x1200) (e43b5312d71f035c20ca4f100bdea5b7) \Device\Harddisk0\DR0\Partition1
15:25:37.0107 6560 \Device\Harddisk0\DR0\Partition1 - ok
15:25:37.0107 6560 ============================================================
15:25:37.0107 6560 Scan finished
15:25:37.0107 6560 ============================================================
15:25:37.0123 5220 Detected object count: 0
15:25:37.0123 5220 Actual detected object count: 0



ESET -- there was no malware found, so there is no log to post.

#6 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,934 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:10:17 PM

Posted 22 June 2012 - 09:00 PM

Hello are you on a wireless router?

We have several erros and things to update.

Update Java and Adobe.

Important Note: Your version of Java is out of date. Older versions have vulnerabilities that malicious sites can use to exploit and infect your system.Please follow these steps to remove older version Java components and update:
  • Download the latest version of Java Runtime Environment (JRE) Version 7 and save it to your desktop.
  • Look for "Java Platform, Standard Edition".
  • Click the "Download JRE" button to the right.
  • Read the License Agreement, and then check the box that says: "Accept License Agreement".
  • From the list, select your OS and Platform (32-bit or 64-bit).
    64-bit OS users, should read: Which Java download should I choose for my 64-bit Windows operating system?
  • If a download for an Offline Installation is available, it is recommended to choose that and save the file to your desktop.
  • Close any programs you may have running - especially your web browser.
Go to Posted Image > Control Panel, double-click on Add/Remove Programs or Programs and Features in Vista/Windows 7 and remove all older versions of Java.
  • Check (highlight) any item with Java Runtime Environment (JRE or J2SE) in the name.
  • Click the Remove or Change/Remove button and follow the onscreen instructions for the Java uninstaller.
  • Repeat as many times as necessary to remove each Java versions.
  • Reboot your computer once all Java components are removed.
  • Then from your desktop double-click on jre-7u5-windows-i586.exe (or jre-7u5-windows-x64.exe for 64-bit) to install the newest version.
  • If using Windows 7 or Vista and the installer refuses to launch due to insufficient user permissions, then Run As Administrator.
  • When the Java Setup - Welcome window opens, click the Install > button.
  • If offered any unwanted software or toolbars during installation, just uncheck the box before continuing unless you want it.
  • The McAfee Security Scan Plus tool is installed by default unless you uncheck the McAfee installation box when updating Java.
Note: The Java Quick Starter (JQS.exe) adds a service to improve the initial startup time of Java applets and applications but it's not necessary.
To disable the JQS service if you don't want to use it:
  • Go to Start > Control Panel > Java > Advanced > Miscellaneous and uncheck the box for Java Quick Starter.
  • Click Ok and reboot your computer.


Similarly Update to Adobe Reader X (10.1.0) and
Adobe Flash Player 11
Note UN check the box so you do not install the toolbar,unless you really want it..

Free! Google Toolbar search Google from any web page, block pop-ups

Yes, install Google Toolbar - optional




For the errors run System File Checker
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#7 DarkKnight1970

DarkKnight1970
  • Topic Starter

  • Members
  • 19 posts
  • OFFLINE
  •  
  • Local time:09:17 PM

Posted 23 June 2012 - 12:12 AM

Adobe Reader, Adobe Flash, and Java have all been updated as requested.

After running SFC, here is the log that was generated. It found corrupt files and indicated it fixed them all.

2012-06-22 23:55:00, Info CSI 00000009 [SR] Verifying 100 (0x0000000000000064) components
2012-06-22 23:55:00, Info CSI 0000000a [SR] Beginning Verify and Repair transaction
2012-06-22 23:55:01, Info CSI 0000000c [SR] Verify complete
2012-06-22 23:55:02, Info CSI 0000000d [SR] Verifying 100 (0x0000000000000064) components
2012-06-22 23:55:02, Info CSI 0000000e [SR] Beginning Verify and Repair transaction
2012-06-22 23:55:03, Info CSI 00000010 [SR] Verify complete
2012-06-22 23:55:04, Info CSI 00000011 [SR] Verifying 100 (0x0000000000000064) components
2012-06-22 23:55:04, Info CSI 00000012 [SR] Beginning Verify and Repair transaction
2012-06-22 23:55:07, Info CSI 00000014 [SR] Verify complete
2012-06-22 23:55:07, Info CSI 00000015 [SR] Verifying 100 (0x0000000000000064) components
2012-06-22 23:55:07, Info CSI 00000016 [SR] Beginning Verify and Repair transaction
2012-06-22 23:55:09, Info CSI 00000018 [SR] Verify complete
2012-06-22 23:55:10, Info CSI 00000019 [SR] Verifying 100 (0x0000000000000064) components
2012-06-22 23:55:10, Info CSI 0000001a [SR] Beginning Verify and Repair transaction
2012-06-22 23:55:12, Info CSI 0000001c [SR] Verify complete
2012-06-22 23:55:13, Info CSI 0000001d [SR] Verifying 100 (0x0000000000000064) components
2012-06-22 23:55:13, Info CSI 0000001e [SR] Beginning Verify and Repair transaction
2012-06-22 23:55:15, Info CSI 00000020 [SR] Verify complete
2012-06-22 23:55:15, Info CSI 00000021 [SR] Verifying 100 (0x0000000000000064) components
2012-06-22 23:55:15, Info CSI 00000022 [SR] Beginning Verify and Repair transaction
2012-06-22 23:55:16, Info CSI 00000024 [SR] Verify complete
2012-06-22 23:55:17, Info CSI 00000025 [SR] Verifying 100 (0x0000000000000064) components
2012-06-22 23:55:17, Info CSI 00000026 [SR] Beginning Verify and Repair transaction
2012-06-22 23:55:19, Info CSI 00000028 [SR] Verify complete
2012-06-22 23:55:20, Info CSI 00000029 [SR] Verifying 100 (0x0000000000000064) components
2012-06-22 23:55:20, Info CSI 0000002a [SR] Beginning Verify and Repair transaction
2012-06-22 23:55:25, Info CSI 0000002d [SR] Verify complete
2012-06-22 23:55:25, Info CSI 0000002e [SR] Verifying 100 (0x0000000000000064) components
2012-06-22 23:55:25, Info CSI 0000002f [SR] Beginning Verify and Repair transaction
2012-06-22 23:55:30, Info CSI 00000034 [SR] Verify complete
2012-06-22 23:55:30, Info CSI 00000035 [SR] Verifying 100 (0x0000000000000064) components
2012-06-22 23:55:30, Info CSI 00000036 [SR] Beginning Verify and Repair transaction
2012-06-22 23:55:34, Info CSI 00000039 [SR] Verify complete
2012-06-22 23:55:34, Info CSI 0000003a [SR] Verifying 100 (0x0000000000000064) components
2012-06-22 23:55:34, Info CSI 0000003b [SR] Beginning Verify and Repair transaction
2012-06-22 23:55:39, Info CSI 0000003d [SR] Verify complete
2012-06-22 23:55:39, Info CSI 0000003e [SR] Verifying 100 (0x0000000000000064) components
2012-06-22 23:55:39, Info CSI 0000003f [SR] Beginning Verify and Repair transaction
2012-06-22 23:55:47, Info CSI 00000061 [SR] Verify complete
2012-06-22 23:55:48, Info CSI 00000062 [SR] Verifying 100 (0x0000000000000064) components
2012-06-22 23:55:48, Info CSI 00000063 [SR] Beginning Verify and Repair transaction
2012-06-22 23:55:53, Info CSI 00000068 [SR] Verify complete
2012-06-22 23:55:53, Info CSI 00000069 [SR] Verifying 100 (0x0000000000000064) components
2012-06-22 23:55:53, Info CSI 0000006a [SR] Beginning Verify and Repair transaction
2012-06-22 23:55:58, Info CSI 0000006c [SR] Verify complete
2012-06-22 23:55:59, Info CSI 0000006d [SR] Verifying 100 (0x0000000000000064) components
2012-06-22 23:55:59, Info CSI 0000006e [SR] Beginning Verify and Repair transaction
2012-06-22 23:56:03, Info CSI 00000070 [SR] Verify complete
2012-06-22 23:56:04, Info CSI 00000071 [SR] Verifying 100 (0x0000000000000064) components
2012-06-22 23:56:04, Info CSI 00000072 [SR] Beginning Verify and Repair transaction
2012-06-22 23:56:08, Info CSI 00000074 [SR] Verify complete
2012-06-22 23:56:08, Info CSI 00000075 [SR] Verifying 100 (0x0000000000000064) components
2012-06-22 23:56:08, Info CSI 00000076 [SR] Beginning Verify and Repair transaction
2012-06-22 23:56:14, Info CSI 00000078 [SR] Verify complete
2012-06-22 23:56:15, Info CSI 00000079 [SR] Verifying 100 (0x0000000000000064) components
2012-06-22 23:56:15, Info CSI 0000007a [SR] Beginning Verify and Repair transaction
2012-06-22 23:56:24, Info CSI 0000009d [SR] Verify complete
2012-06-22 23:56:24, Info CSI 0000009e [SR] Verifying 100 (0x0000000000000064) components
2012-06-22 23:56:24, Info CSI 0000009f [SR] Beginning Verify and Repair transaction
2012-06-22 23:56:32, Info CSI 000000a1 [SR] Verify complete
2012-06-22 23:56:32, Info CSI 000000a2 [SR] Verifying 100 (0x0000000000000064) components
2012-06-22 23:56:32, Info CSI 000000a3 [SR] Beginning Verify and Repair transaction
2012-06-22 23:56:48, Info CSI 000000a5 [SR] Verify complete
2012-06-22 23:56:48, Info CSI 000000a6 [SR] Verifying 100 (0x0000000000000064) components
2012-06-22 23:56:48, Info CSI 000000a7 [SR] Beginning Verify and Repair transaction
2012-06-22 23:56:54, Info CSI 000000ab [SR] Verify complete
2012-06-22 23:56:55, Info CSI 000000ac [SR] Verifying 100 (0x0000000000000064) components
2012-06-22 23:56:55, Info CSI 000000ad [SR] Beginning Verify and Repair transaction
2012-06-22 23:56:58, Info CSI 000000af [SR] Verify complete
2012-06-22 23:56:58, Info CSI 000000b0 [SR] Verifying 100 (0x0000000000000064) components
2012-06-22 23:56:58, Info CSI 000000b1 [SR] Beginning Verify and Repair transaction
2012-06-22 23:56:59, Info CSI 000000b3 [SR] Verify complete
2012-06-22 23:57:00, Info CSI 000000b4 [SR] Verifying 100 (0x0000000000000064) components
2012-06-22 23:57:00, Info CSI 000000b5 [SR] Beginning Verify and Repair transaction
2012-06-22 23:57:06, Info CSI 000000b7 [SR] Verify complete
2012-06-22 23:57:06, Info CSI 000000b8 [SR] Verifying 100 (0x0000000000000064) components
2012-06-22 23:57:06, Info CSI 000000b9 [SR] Beginning Verify and Repair transaction
2012-06-22 23:57:15, Info CSI 000000cc [SR] Verify complete
2012-06-22 23:57:16, Info CSI 000000cd [SR] Verifying 100 (0x0000000000000064) components
2012-06-22 23:57:16, Info CSI 000000ce [SR] Beginning Verify and Repair transaction
2012-06-22 23:57:18, Info CSI 000000d0 [SR] Verify complete
2012-06-22 23:57:19, Info CSI 000000d1 [SR] Verifying 100 (0x0000000000000064) components
2012-06-22 23:57:19, Info CSI 000000d2 [SR] Beginning Verify and Repair transaction
2012-06-22 23:57:23, Info CSI 000000d4 [SR] Verify complete
2012-06-22 23:57:23, Info CSI 000000d5 [SR] Verifying 100 (0x0000000000000064) components
2012-06-22 23:57:23, Info CSI 000000d6 [SR] Beginning Verify and Repair transaction
2012-06-22 23:57:25, Info CSI 000000d8 [SR] Verify complete
2012-06-22 23:57:26, Info CSI 000000d9 [SR] Verifying 100 (0x0000000000000064) components
2012-06-22 23:57:26, Info CSI 000000da [SR] Beginning Verify and Repair transaction
2012-06-22 23:57:34, Info CSI 000000dd [SR] Verify complete
2012-06-22 23:57:34, Info CSI 000000de [SR] Verifying 100 (0x0000000000000064) components
2012-06-22 23:57:34, Info CSI 000000df [SR] Beginning Verify and Repair transaction
2012-06-22 23:57:42, Info CSI 000000e1 [SR] Verify complete
2012-06-22 23:57:42, Info CSI 000000e2 [SR] Verifying 100 (0x0000000000000064) components
2012-06-22 23:57:42, Info CSI 000000e3 [SR] Beginning Verify and Repair transaction
2012-06-22 23:57:45, Info CSI 000000e5 [SR] Verify complete
2012-06-22 23:57:45, Info CSI 000000e6 [SR] Verifying 100 (0x0000000000000064) components
2012-06-22 23:57:45, Info CSI 000000e7 [SR] Beginning Verify and Repair transaction
2012-06-22 23:57:48, Info CSI 000000e9 [SR] Verify complete
2012-06-22 23:57:48, Info CSI 000000ea [SR] Verifying 100 (0x0000000000000064) components
2012-06-22 23:57:48, Info CSI 000000eb [SR] Beginning Verify and Repair transaction
2012-06-22 23:57:55, Info CSI 000000ed [SR] Verify complete
2012-06-22 23:57:55, Info CSI 000000ee [SR] Verifying 100 (0x0000000000000064) components
2012-06-22 23:57:55, Info CSI 000000ef [SR] Beginning Verify and Repair transaction
2012-06-22 23:58:00, Info CSI 000000f1 [SR] Verify complete
2012-06-22 23:58:00, Info CSI 000000f2 [SR] Verifying 100 (0x0000000000000064) components
2012-06-22 23:58:00, Info CSI 000000f3 [SR] Beginning Verify and Repair transaction
2012-06-22 23:58:11, Info CSI 000000f5 [SR] Verify complete
2012-06-22 23:58:11, Info CSI 000000f6 [SR] Verifying 100 (0x0000000000000064) components
2012-06-22 23:58:11, Info CSI 000000f7 [SR] Beginning Verify and Repair transaction
2012-06-22 23:58:21, Info CSI 0000010f [SR] Verify complete
2012-06-22 23:58:22, Info CSI 00000110 [SR] Verifying 100 (0x0000000000000064) components
2012-06-22 23:58:22, Info CSI 00000111 [SR] Beginning Verify and Repair transaction
2012-06-22 23:58:27, Info CSI 00000113 [SR] Verify complete
2012-06-22 23:58:28, Info CSI 00000114 [SR] Verifying 100 (0x0000000000000064) components
2012-06-22 23:58:28, Info CSI 00000115 [SR] Beginning Verify and Repair transaction
2012-06-22 23:58:47, Info CSI 00000117 [SR] Verify complete
2012-06-22 23:58:48, Info CSI 00000118 [SR] Verifying 100 (0x0000000000000064) components
2012-06-22 23:58:48, Info CSI 00000119 [SR] Beginning Verify and Repair transaction
2012-06-22 23:58:58, Info CSI 0000011c [SR] Verify complete
2012-06-22 23:58:58, Info CSI 0000011d [SR] Verifying 100 (0x0000000000000064) components
2012-06-22 23:58:58, Info CSI 0000011e [SR] Beginning Verify and Repair transaction
2012-06-22 23:59:05, Info CSI 00000120 [SR] Verify complete
2012-06-22 23:59:05, Info CSI 00000121 [SR] Verifying 100 (0x0000000000000064) components
2012-06-22 23:59:05, Info CSI 00000122 [SR] Beginning Verify and Repair transaction
2012-06-22 23:59:11, Info CSI 00000124 [SR] Verify complete
2012-06-22 23:59:11, Info CSI 00000125 [SR] Verifying 100 (0x0000000000000064) components
2012-06-22 23:59:11, Info CSI 00000126 [SR] Beginning Verify and Repair transaction
2012-06-22 23:59:16, Info CSI 00000128 [SR] Verify complete
2012-06-22 23:59:16, Info CSI 00000129 [SR] Verifying 100 (0x0000000000000064) components
2012-06-22 23:59:16, Info CSI 0000012a [SR] Beginning Verify and Repair transaction
2012-06-22 23:59:22, Info CSI 0000012e [SR] Verify complete
2012-06-22 23:59:22, Info CSI 0000012f [SR] Verifying 100 (0x0000000000000064) components
2012-06-22 23:59:22, Info CSI 00000130 [SR] Beginning Verify and Repair transaction
2012-06-22 23:59:36, Info CSI 00000132 [SR] Verify complete
2012-06-22 23:59:37, Info CSI 00000133 [SR] Verifying 100 (0x0000000000000064) components
2012-06-22 23:59:37, Info CSI 00000134 [SR] Beginning Verify and Repair transaction
2012-06-22 23:59:46, Info CSI 00000137 [SR] Verify complete
2012-06-22 23:59:47, Info CSI 00000138 [SR] Verifying 100 (0x0000000000000064) components
2012-06-22 23:59:47, Info CSI 00000139 [SR] Beginning Verify and Repair transaction
2012-06-22 23:59:53, Info CSI 0000013b [SR] Verify complete
2012-06-22 23:59:54, Info CSI 0000013c [SR] Verifying 100 (0x0000000000000064) components
2012-06-22 23:59:54, Info CSI 0000013d [SR] Beginning Verify and Repair transaction
2012-06-22 23:59:59, Info CSI 00000140 [SR] Verify complete
2012-06-22 23:59:59, Info CSI 00000141 [SR] Verifying 100 (0x0000000000000064) components
2012-06-22 23:59:59, Info CSI 00000142 [SR] Beginning Verify and Repair transaction
2012-06-23 00:00:08, Info CSI 00000145 [SR] Verify complete
2012-06-23 00:00:08, Info CSI 00000146 [SR] Verifying 100 (0x0000000000000064) components
2012-06-23 00:00:08, Info CSI 00000147 [SR] Beginning Verify and Repair transaction
2012-06-23 00:00:17, Info CSI 00000149 [SR] Verify complete
2012-06-23 00:00:17, Info CSI 0000014a [SR] Verifying 100 (0x0000000000000064) components
2012-06-23 00:00:17, Info CSI 0000014b [SR] Beginning Verify and Repair transaction
2012-06-23 00:00:23, Info CSI 0000014d [SR] Verify complete
2012-06-23 00:00:23, Info CSI 0000014e [SR] Verifying 100 (0x0000000000000064) components
2012-06-23 00:00:23, Info CSI 0000014f [SR] Beginning Verify and Repair transaction
2012-06-23 00:00:27, Info CSI 00000150 [SR] Repairing corrupted file [ml:520{260},l:46{23}]"\??\C:\Windows\System32"\[l:30{15}]"rdpcorekmts.dll" from store
2012-06-23 00:00:27, Info CSI 00000151 [SR] Repairing corrupted file [ml:520{260},l:46{23}]"\??\C:\Windows\System32"\[l:20{10}]"rdpwsx.dll" from store
2012-06-23 00:00:29, Info CSI 00000153 [SR] Verify complete
2012-06-23 00:00:29, Info CSI 00000154 [SR] Verifying 100 (0x0000000000000064) components
2012-06-23 00:00:29, Info CSI 00000155 [SR] Beginning Verify and Repair transaction
2012-06-23 00:00:35, Info CSI 00000158 [SR] Verify complete
2012-06-23 00:00:35, Info CSI 00000159 [SR] Verifying 100 (0x0000000000000064) components
2012-06-23 00:00:35, Info CSI 0000015a [SR] Beginning Verify and Repair transaction
2012-06-23 00:00:42, Info CSI 0000015c [SR] Verify complete
2012-06-23 00:00:43, Info CSI 0000015d [SR] Verifying 100 (0x0000000000000064) components
2012-06-23 00:00:43, Info CSI 0000015e [SR] Beginning Verify and Repair transaction
2012-06-23 00:00:48, Info CSI 00000161 [SR] Verify complete
2012-06-23 00:00:49, Info CSI 00000162 [SR] Verifying 100 (0x0000000000000064) components
2012-06-23 00:00:49, Info CSI 00000163 [SR] Beginning Verify and Repair transaction
2012-06-23 00:00:58, Info CSI 00000165 [SR] Verify complete
2012-06-23 00:00:59, Info CSI 00000166 [SR] Verifying 100 (0x0000000000000064) components
2012-06-23 00:00:59, Info CSI 00000167 [SR] Beginning Verify and Repair transaction
2012-06-23 00:01:05, Info CSI 0000016b [SR] Verify complete
2012-06-23 00:01:05, Info CSI 0000016c [SR] Verifying 100 (0x0000000000000064) components
2012-06-23 00:01:05, Info CSI 0000016d [SR] Beginning Verify and Repair transaction
2012-06-23 00:01:12, Info CSI 0000016f [SR] Verify complete
2012-06-23 00:01:13, Info CSI 00000170 [SR] Verifying 100 (0x0000000000000064) components
2012-06-23 00:01:13, Info CSI 00000171 [SR] Beginning Verify and Repair transaction
2012-06-23 00:01:20, Info CSI 00000174 [SR] Verify complete
2012-06-23 00:01:21, Info CSI 00000175 [SR] Verifying 100 (0x0000000000000064) components
2012-06-23 00:01:21, Info CSI 00000176 [SR] Beginning Verify and Repair transaction
2012-06-23 00:01:24, Info CSI 00000178 [SR] Verify complete
2012-06-23 00:01:24, Info CSI 00000179 [SR] Verifying 100 (0x0000000000000064) components
2012-06-23 00:01:24, Info CSI 0000017a [SR] Beginning Verify and Repair transaction
2012-06-23 00:01:28, Info CSI 0000017c [SR] Verify complete
2012-06-23 00:01:28, Info CSI 0000017d [SR] Verifying 100 (0x0000000000000064) components
2012-06-23 00:01:28, Info CSI 0000017e [SR] Beginning Verify and Repair transaction
2012-06-23 00:01:33, Info CSI 00000180 [SR] Verify complete
2012-06-23 00:01:33, Info CSI 00000181 [SR] Verifying 100 (0x0000000000000064) components
2012-06-23 00:01:33, Info CSI 00000182 [SR] Beginning Verify and Repair transaction
2012-06-23 00:01:37, Info CSI 00000184 [SR] Verify complete
2012-06-23 00:01:37, Info CSI 00000185 [SR] Verifying 100 (0x0000000000000064) components
2012-06-23 00:01:37, Info CSI 00000186 [SR] Beginning Verify and Repair transaction
2012-06-23 00:01:50, Info CSI 00000188 [SR] Verify complete
2012-06-23 00:01:50, Info CSI 00000189 [SR] Verifying 100 (0x0000000000000064) components
2012-06-23 00:01:50, Info CSI 0000018a [SR] Beginning Verify and Repair transaction
2012-06-23 00:02:07, Info CSI 0000018c [SR] Verify complete
2012-06-23 00:02:07, Info CSI 0000018d [SR] Verifying 100 (0x0000000000000064) components
2012-06-23 00:02:07, Info CSI 0000018e [SR] Beginning Verify and Repair transaction
2012-06-23 00:02:11, Info CSI 00000190 [SR] Verify complete
2012-06-23 00:02:11, Info CSI 00000191 [SR] Verifying 100 (0x0000000000000064) components
2012-06-23 00:02:11, Info CSI 00000192 [SR] Beginning Verify and Repair transaction
2012-06-23 00:02:15, Info CSI 00000194 [SR] Verify complete
2012-06-23 00:02:16, Info CSI 00000195 [SR] Verifying 100 (0x0000000000000064) components
2012-06-23 00:02:16, Info CSI 00000196 [SR] Beginning Verify and Repair transaction
2012-06-23 00:02:17, Info CSI 00000198 [SR] Verify complete
2012-06-23 00:02:17, Info CSI 00000199 [SR] Verifying 100 (0x0000000000000064) components
2012-06-23 00:02:17, Info CSI 0000019a [SR] Beginning Verify and Repair transaction
2012-06-23 00:02:20, Info CSI 0000019c [SR] Verify complete
2012-06-23 00:02:21, Info CSI 0000019d [SR] Verifying 100 (0x0000000000000064) components
2012-06-23 00:02:21, Info CSI 0000019e [SR] Beginning Verify and Repair transaction
2012-06-23 00:02:27, Info CSI 000001a0 [SR] Verify complete
2012-06-23 00:02:28, Info CSI 000001a1 [SR] Verifying 100 (0x0000000000000064) components
2012-06-23 00:02:28, Info CSI 000001a2 [SR] Beginning Verify and Repair transaction
2012-06-23 00:02:32, Info CSI 000001aa [SR] Verify complete
2012-06-23 00:02:33, Info CSI 000001ab [SR] Verifying 100 (0x0000000000000064) components
2012-06-23 00:02:33, Info CSI 000001ac [SR] Beginning Verify and Repair transaction
2012-06-23 00:02:37, Info CSI 000001ae [SR] Verify complete
2012-06-23 00:02:37, Info CSI 000001af [SR] Verifying 100 (0x0000000000000064) components
2012-06-23 00:02:37, Info CSI 000001b0 [SR] Beginning Verify and Repair transaction
2012-06-23 00:02:41, Info CSI 000001b2 [SR] Verify complete
2012-06-23 00:02:41, Info CSI 000001b3 [SR] Verifying 100 (0x0000000000000064) components
2012-06-23 00:02:41, Info CSI 000001b4 [SR] Beginning Verify and Repair transaction
2012-06-23 00:02:49, Info CSI 000001b7 [SR] Verify complete
2012-06-23 00:02:49, Info CSI 000001b8 [SR] Verifying 100 (0x0000000000000064) components
2012-06-23 00:02:49, Info CSI 000001b9 [SR] Beginning Verify and Repair transaction
2012-06-23 00:02:55, Info CSI 000001bb [SR] Verify complete
2012-06-23 00:02:55, Info CSI 000001bc [SR] Verifying 100 (0x0000000000000064) components
2012-06-23 00:02:55, Info CSI 000001bd [SR] Beginning Verify and Repair transaction
2012-06-23 00:02:57, Info CSI 000001bf [SR] Verify complete
2012-06-23 00:02:57, Info CSI 000001c0 [SR] Verifying 100 (0x0000000000000064) components
2012-06-23 00:02:57, Info CSI 000001c1 [SR] Beginning Verify and Repair transaction
2012-06-23 00:03:05, Info CSI 000001c4 [SR] Verify complete
2012-06-23 00:03:05, Info CSI 000001c5 [SR] Verifying 100 (0x0000000000000064) components
2012-06-23 00:03:05, Info CSI 000001c6 [SR] Beginning Verify and Repair transaction
2012-06-23 00:03:18, Info CSI 000001ca [SR] Verify complete
2012-06-23 00:03:19, Info CSI 000001cb [SR] Verifying 100 (0x0000000000000064) components
2012-06-23 00:03:19, Info CSI 000001cc [SR] Beginning Verify and Repair transaction
2012-06-23 00:03:25, Info CSI 000001d1 [SR] Verify complete
2012-06-23 00:03:26, Info CSI 000001d2 [SR] Verifying 100 (0x0000000000000064) components
2012-06-23 00:03:26, Info CSI 000001d3 [SR] Beginning Verify and Repair transaction
2012-06-23 00:03:34, Info CSI 000001db [SR] Verify complete
2012-06-23 00:03:34, Info CSI 000001dc [SR] Verifying 100 (0x0000000000000064) components
2012-06-23 00:03:34, Info CSI 000001dd [SR] Beginning Verify and Repair transaction
2012-06-23 00:03:43, Info CSI 000001e4 [SR] Verify complete
2012-06-23 00:03:43, Info CSI 000001e5 [SR] Verifying 100 (0x0000000000000064) components
2012-06-23 00:03:43, Info CSI 000001e6 [SR] Beginning Verify and Repair transaction
2012-06-23 00:03:49, Info CSI 000001eb [SR] Verify complete
2012-06-23 00:03:49, Info CSI 000001ec [SR] Verifying 100 (0x0000000000000064) components
2012-06-23 00:03:49, Info CSI 000001ed [SR] Beginning Verify and Repair transaction
2012-06-23 00:03:54, Info CSI 000001f1 [SR] Verify complete
2012-06-23 00:03:54, Info CSI 000001f2 [SR] Verifying 100 (0x0000000000000064) components
2012-06-23 00:03:54, Info CSI 000001f3 [SR] Beginning Verify and Repair transaction
2012-06-23 00:03:59, Info CSI 000001f5 [SR] Verify complete
2012-06-23 00:03:59, Info CSI 000001f6 [SR] Verifying 100 (0x0000000000000064) components
2012-06-23 00:03:59, Info CSI 000001f7 [SR] Beginning Verify and Repair transaction
2012-06-23 00:04:07, Info CSI 0000021c [SR] Verify complete
2012-06-23 00:04:07, Info CSI 0000021d [SR] Verifying 100 (0x0000000000000064) components
2012-06-23 00:04:07, Info CSI 0000021e [SR] Beginning Verify and Repair transaction
2012-06-23 00:04:12, Info CSI 00000220 [SR] Verify complete
2012-06-23 00:04:12, Info CSI 00000221 [SR] Verifying 100 (0x0000000000000064) components
2012-06-23 00:04:12, Info CSI 00000222 [SR] Beginning Verify and Repair transaction
2012-06-23 00:04:16, Info CSI 00000224 [SR] Verify complete
2012-06-23 00:04:17, Info CSI 00000225 [SR] Verifying 100 (0x0000000000000064) components
2012-06-23 00:04:17, Info CSI 00000226 [SR] Beginning Verify and Repair transaction
2012-06-23 00:04:21, Info CSI 00000228 [SR] Verify complete
2012-06-23 00:04:21, Info CSI 00000229 [SR] Verifying 100 (0x0000000000000064) components
2012-06-23 00:04:21, Info CSI 0000022a [SR] Beginning Verify and Repair transaction
2012-06-23 00:04:25, Info CSI 00000238 [SR] Verify complete
2012-06-23 00:04:26, Info CSI 00000239 [SR] Verifying 100 (0x0000000000000064) components
2012-06-23 00:04:26, Info CSI 0000023a [SR] Beginning Verify and Repair transaction
2012-06-23 00:04:32, Info CSI 0000023c [SR] Verify complete
2012-06-23 00:04:32, Info CSI 0000023d [SR] Verifying 100 (0x0000000000000064) components
2012-06-23 00:04:32, Info CSI 0000023e [SR] Beginning Verify and Repair transaction
2012-06-23 00:04:40, Info CSI 0000024c [SR] Verify complete
2012-06-23 00:04:41, Info CSI 0000024d [SR] Verifying 100 (0x0000000000000064) components
2012-06-23 00:04:41, Info CSI 0000024e [SR] Beginning Verify and Repair transaction
2012-06-23 00:04:42, Info CSI 00000250 [SR] Verify complete
2012-06-23 00:04:43, Info CSI 00000251 [SR] Verifying 100 (0x0000000000000064) components
2012-06-23 00:04:43, Info CSI 00000252 [SR] Beginning Verify and Repair transaction
2012-06-23 00:04:49, Info CSI 00000254 [SR] Verify complete
2012-06-23 00:04:49, Info CSI 00000255 [SR] Verifying 100 (0x0000000000000064) components
2012-06-23 00:04:49, Info CSI 00000256 [SR] Beginning Verify and Repair transaction
2012-06-23 00:04:52, Info CSI 00000258 [SR] Verify complete
2012-06-23 00:04:52, Info CSI 00000259 [SR] Verifying 100 (0x0000000000000064) components
2012-06-23 00:04:52, Info CSI 0000025a [SR] Beginning Verify and Repair transaction
2012-06-23 00:04:54, Info CSI 0000025c [SR] Verify complete
2012-06-23 00:04:55, Info CSI 0000025d [SR] Verifying 100 (0x0000000000000064) components
2012-06-23 00:04:55, Info CSI 0000025e [SR] Beginning Verify and Repair transaction
2012-06-23 00:05:01, Info CSI 00000260 [SR] Verify complete
2012-06-23 00:05:01, Info CSI 00000261 [SR] Verifying 100 (0x0000000000000064) components
2012-06-23 00:05:01, Info CSI 00000262 [SR] Beginning Verify and Repair transaction
2012-06-23 00:05:05, Info CSI 00000264 [SR] Verify complete
2012-06-23 00:05:06, Info CSI 00000265 [SR] Verifying 100 (0x0000000000000064) components
2012-06-23 00:05:06, Info CSI 00000266 [SR] Beginning Verify and Repair transaction
2012-06-23 00:05:16, Info CSI 00000280 [SR] Verify complete
2012-06-23 00:05:16, Info CSI 00000281 [SR] Verifying 100 (0x0000000000000064) components
2012-06-23 00:05:16, Info CSI 00000282 [SR] Beginning Verify and Repair transaction
2012-06-23 00:05:21, Info CSI 00000284 [SR] Verify complete
2012-06-23 00:05:22, Info CSI 00000285 [SR] Verifying 100 (0x0000000000000064) components
2012-06-23 00:05:22, Info CSI 00000286 [SR] Beginning Verify and Repair transaction
2012-06-23 00:05:39, Info CSI 00000288 [SR] Verify complete
2012-06-23 00:05:40, Info CSI 00000289 [SR] Verifying 100 (0x0000000000000064) components
2012-06-23 00:05:40, Info CSI 0000028a [SR] Beginning Verify and Repair transaction
2012-06-23 00:05:44, Info CSI 0000028c [SR] Verify complete
2012-06-23 00:05:44, Info CSI 0000028d [SR] Verifying 100 (0x0000000000000064) components
2012-06-23 00:05:44, Info CSI 0000028e [SR] Beginning Verify and Repair transaction
2012-06-23 00:05:48, Info CSI 00000292 [SR] Verify complete
2012-06-23 00:05:48, Info CSI 00000293 [SR] Verifying 100 (0x0000000000000064) components
2012-06-23 00:05:48, Info CSI 00000294 [SR] Beginning Verify and Repair transaction
2012-06-23 00:05:52, Info CSI 00000296 [SR] Verify complete
2012-06-23 00:05:52, Info CSI 00000297 [SR] Verifying 100 (0x0000000000000064) components
2012-06-23 00:05:52, Info CSI 00000298 [SR] Beginning Verify and Repair transaction
2012-06-23 00:05:57, Info CSI 0000029a [SR] Verify complete
2012-06-23 00:05:57, Info CSI 0000029b [SR] Verifying 100 (0x0000000000000064) components
2012-06-23 00:05:57, Info CSI 0000029c [SR] Beginning Verify and Repair transaction
2012-06-23 00:06:01, Info CSI 0000029e [SR] Verify complete
2012-06-23 00:06:02, Info CSI 0000029f [SR] Verifying 100 (0x0000000000000064) components
2012-06-23 00:06:02, Info CSI 000002a0 [SR] Beginning Verify and Repair transaction
2012-06-23 00:06:06, Info CSI 000002a3 [SR] Verify complete
2012-06-23 00:06:07, Info CSI 000002a4 [SR] Verifying 100 (0x0000000000000064) components
2012-06-23 00:06:07, Info CSI 000002a5 [SR] Beginning Verify and Repair transaction
2012-06-23 00:06:10, Info CSI 000002a7 [SR] Verify complete
2012-06-23 00:06:10, Info CSI 000002a8 [SR] Verifying 100 (0x0000000000000064) components
2012-06-23 00:06:10, Info CSI 000002a9 [SR] Beginning Verify and Repair transaction
2012-06-23 00:06:15, Info CSI 000002ab [SR] Verify complete
2012-06-23 00:06:15, Info CSI 000002ac [SR] Verifying 100 (0x0000000000000064) components
2012-06-23 00:06:15, Info CSI 000002ad [SR] Beginning Verify and Repair transaction
2012-06-23 00:06:20, Info CSI 000002af [SR] Verify complete
2012-06-23 00:06:20, Info CSI 000002b0 [SR] Verifying 100 (0x0000000000000064) components
2012-06-23 00:06:20, Info CSI 000002b1 [SR] Beginning Verify and Repair transaction
2012-06-23 00:06:27, Info CSI 000002b4 [SR] Verify complete
2012-06-23 00:06:27, Info CSI 000002b5 [SR] Verifying 100 (0x0000000000000064) components
2012-06-23 00:06:27, Info CSI 000002b6 [SR] Beginning Verify and Repair transaction
2012-06-23 00:06:32, Info CSI 000002b8 [SR] Verify complete
2012-06-23 00:06:32, Info CSI 000002b9 [SR] Verifying 37 (0x0000000000000025) components
2012-06-23 00:06:32, Info CSI 000002ba [SR] Beginning Verify and Repair transaction
2012-06-23 00:06:33, Info CSI 000002bc [SR] Verify complete
2012-06-23 00:06:33, Info CSI 000002bd [SR] Repairing 1 components
2012-06-23 00:06:33, Info CSI 000002be [SR] Beginning Verify and Repair transaction
2012-06-23 00:06:33, Info CSI 000002bf [SR] Repairing corrupted file [ml:520{260},l:46{23}]"\??\C:\Windows\System32"\[l:30{15}]"rdpcorekmts.dll" from store
2012-06-23 00:06:33, Info CSI 000002c0 [SR] Repairing corrupted file [ml:520{260},l:46{23}]"\??\C:\Windows\System32"\[l:20{10}]"rdpwsx.dll" from store
2012-06-23 00:06:34, Info CSI 000002c2 [SR] Repair complete
2012-06-23 00:06:34, Info CSI 000002c3 [SR] Committing transaction
2012-06-23 00:06:34, Info CSI 000002c7 [SR] Verify and Repair Transaction completed. All files and registry keys listed in this transaction have been successfully repaired

#8 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,934 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:10:17 PM

Posted 23 June 2012 - 09:08 AM

How is the issue now with the keystrokes.
Are you on a wireless router?
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#9 DarkKnight1970

DarkKnight1970
  • Topic Starter

  • Members
  • 19 posts
  • OFFLINE
  •  
  • Local time:09:17 PM

Posted 23 June 2012 - 02:02 PM

I am not noticing anything abnormal with keystrokes or anybody interfering with my typeing.
Yes I am on a wireless router.

#10 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,934 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:10:17 PM

Posted 23 June 2012 - 08:31 PM

So it appears all is good. You may want to post in Networking with your router model and ask how to change your password on it. That will prevent anyone from even getting on your router ,hence your PC.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#11 DarkKnight1970

DarkKnight1970
  • Topic Starter

  • Members
  • 19 posts
  • OFFLINE
  •  
  • Local time:09:17 PM

Posted 23 June 2012 - 10:48 PM

Changing the password on their router is one of the first things I told my friend. I will tell them again.

Do you recommend a Anti-malware other than MalwareByte's Anti-malware, that may have prevented one of the numerous trojans from getting on here in the first place?

They are currently using McAfee for their Anti-virus and this version appears to only be for Spyware and Anti-virus protection, but nothing about malware.

Any advice or recommendations would be greatly appreciated.
Thanks.

#12 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,934 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:10:17 PM

Posted 24 June 2012 - 09:49 PM

I run a combo of My Antivirus with both MBAm and SUPERAntiSpyware . see Download SUPERAntiSpyware FREE Edition ,bottom right under Popular Links.. I update and scan weekly.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#13 DarkKnight1970

DarkKnight1970
  • Topic Starter

  • Members
  • 19 posts
  • OFFLINE
  •  
  • Local time:09:17 PM

Posted 24 June 2012 - 09:57 PM

Thank you for all of your help. My friend will be greatly pleased to have his laptop back in working order.
Case closed.

#14 DarkKnight1970

DarkKnight1970
  • Topic Starter

  • Members
  • 19 posts
  • OFFLINE
  •  
  • Local time:09:17 PM

Posted 24 June 2012 - 10:16 PM

Actually, I just downloaded and installed MBAm for him and ran it. It found several instances that were titled Stolen.Data. I removed them all with MBAm and am scanning again after the reboot.

Second scan revealed nothing. Is there anything else to be concerned with?

#15 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,934 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:10:17 PM

Posted 24 June 2012 - 10:21 PM

To be on the safe side ....


I'd like us to scan your machine with ESET OnlineScan
  • Hold down Control and click on the following link to open ESET OnlineScan in a new window.
    ESET OnlineScan
  • Click the Posted Image button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on Posted Image to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the Posted Image icon on your desktop.
  • Check Posted Image
  • Click the Posted Image button.
  • Accept any security warnings from your browser.
  • Under scan settings, check Posted Image and check Remove found threats
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, push Posted Image
  • Push Posted Image, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Push the Posted Image button.
  • Push Posted Image


NOTE: In some instances if no malware is found there will be no log produced.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users