Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Cannot Uninstall Live Security Platinum from Control Panel


  • This topic is locked This topic is locked
8 replies to this topic

#1 Aramis Dagaz

Aramis Dagaz

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:02:38 AM

Posted 22 July 2012 - 03:51 PM

I recently got hit by the Live Security Platinum fake antivirus. I'm following the removal instructions listed here on the site. Thus far I downloaded and ran fixexec, and now I'm instructed to uninstall Live Security Platinum from Control Panel as if I were just uninstalling any other program.

However, when I right-click on Live Security Platinum and select "Uninstall/Change", I get a quick waiting circle animation and then nothing. I've tried uninstalling a few other programs this way, and those were successful, but not the offending malware.

I've ran fixexec again and RKill as well, but to no avail. I'm tempted to just run Malwarebytes and remove it that way, but I don't want to screw up my computer because I got impatient. Any assistance will be greatly appreciated!

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:38 AM

Posted 22 July 2012 - 04:19 PM

Boot into safemode with networking


Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:10:38 PM

Posted 22 July 2012 - 04:28 PM

Hello -

EDIT -
Please follow the steps above from narenxp FIRST - This is only a backup idea (as we over posted each other) -

By your opening lines, it seems that you have Malwarebytes Anti-Malware already installed -
Try this method by using Malwarebytes Anti-Malware Chameleon
Use Malwarebytes Chameleon to run Malwarebytes Anti-Malware when Malwarebytes Anti-Malware won't run due to infection:

Some infections prevent Malwarebytes Anti-Malware from being able to run normally. To get around this, Malwarebytes Chameleon was created.

In order for this to work, you must already have Malwarebytes Anti-Malware version 1.60 or later already installed on your infected PC.
This is usually any version installed or updated this year -

1.Click on START>All Programs>Malwarebytes' Anti-Malware>Tools>Malwarebytes Anti-Malware Chameleon

2.Once the Help file opens, click on each Test Now button until you see a black DOS/command prompt window that remains open and says MBAM-chameleon ver. 0.1 at the top Note: If running Windows Vista or Windows 7 you may see a User Account Control prompt. If so, click Yes.

3.Press any key to continue as it says in the window

4.Malwarebytes Chameleon will proceed to update Malwarebytes Anti-Malware, so ensure that you are connected to the internet if possible

5.Once the update completes and it says your database is updated, click on OK

6.Malwarebytes Chameleon will then terminate any threats running in memory, which may take a while, so please be patient

7.Upon completion, Malwarebytes Anti-Malware will open automatically and perform a Quick scan (estimated at 5 to 15 minutes)

8.Once the scan is complete, click on Show Results and remove any threats that are found by clicking Remove Selected

9.If prompted to restart your computer to complete the removal process, click Yes

10.After your computer restarts, open Malwarebytes Anti-Malware and perform one last Quick scan to verify that there are no remaining threats

Thank you -

Edited by noknojon, 22 July 2012 - 04:31 PM.


#4 Aramis Dagaz

Aramis Dagaz
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:02:38 AM

Posted 22 July 2012 - 04:33 PM

Thanks for the prompt reply! I'll post each of these logs in a separate reply.

Here's the log for TDSSKiller:

11:29:20.0644 0744 TDSS rootkit removing tool 2.7.46.0 Jul 16 2012 22:10:11
11:29:22.0172 0744 ============================================================
11:29:22.0172 0744 Current date / time: 2012/07/22 11:29:22.0172
11:29:22.0172 0744 SystemInfo:
11:29:22.0172 0744
11:29:22.0172 0744 OS Version: 6.1.7601 ServicePack: 1.0
11:29:22.0172 0744 Product type: Workstation
11:29:22.0172 0744 ComputerName: MITSAKO
11:29:22.0172 0744 UserName: Daniel Hoffman
11:29:22.0172 0744 Windows directory: C:\Windows
11:29:22.0172 0744 System windows directory: C:\Windows
11:29:22.0172 0744 Running under WOW64
11:29:22.0172 0744 Processor architecture: Intel x64
11:29:22.0172 0744 Number of processors: 4
11:29:22.0172 0744 Page size: 0x1000
11:29:22.0172 0744 Boot type: Safe boot with network
11:29:22.0172 0744 ============================================================
11:29:26.0790 0744 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
11:29:26.0806 0744 ============================================================
11:29:26.0806 0744 \Device\Harddisk0\DR0:
11:29:26.0821 0744 MBR partitions:
11:29:26.0821 0744 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x1D4C000
11:29:26.0821 0744 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1D7E800, BlocksNum 0x38607030
11:29:26.0821 0744 ============================================================
11:29:26.0993 0744 C: <-> \Device\Harddisk0\DR0\Partition1
11:29:26.0993 0744 ============================================================
11:29:26.0993 0744 Initialize success
11:29:26.0993 0744 ============================================================
11:29:29.0348 0332 ============================================================
11:29:29.0348 0332 Scan started
11:29:29.0348 0332 Mode: Manual;
11:29:29.0348 0332 ============================================================
11:29:34.0918 0332 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
11:29:34.0949 0332 1394ohci - ok
11:29:35.0885 0332 ac.sharedstore (5e8efeb338deb1f485420b090fe6c85e) C:\Program Files\Common Files\ActivIdentity\ac.sharedstore.exe
11:29:35.0978 0332 ac.sharedstore - ok
11:29:36.0696 0332 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
11:29:36.0727 0332 ACPI - ok
11:29:36.0852 0332 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
11:29:36.0852 0332 AcpiPmi - ok
11:29:37.0351 0332 AdobeActiveFileMonitor8.0 (765fe0463e711e5a68ac7b69538ed922) C:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe
11:29:37.0554 0332 AdobeActiveFileMonitor8.0 - ok
11:29:38.0131 0332 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
11:29:38.0318 0332 AdobeARMservice - ok
11:29:39.0254 0332 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
11:29:39.0348 0332 adp94xx - ok
11:29:40.0066 0332 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
11:29:40.0159 0332 adpahci - ok
11:29:40.0658 0332 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
11:29:40.0674 0332 adpu320 - ok
11:29:40.0846 0332 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
11:29:40.0877 0332 AeLookupSvc - ok
11:29:41.0251 0332 AERTFilters (d1e343bc00136ce03c4d403194d06a80) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
11:29:41.0329 0332 AERTFilters - ok
11:29:42.0016 0332 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
11:29:42.0047 0332 AFD - ok
11:29:42.0218 0332 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
11:29:42.0234 0332 agp440 - ok
11:29:42.0515 0332 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
11:29:42.0515 0332 ALG - ok
11:29:42.0702 0332 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
11:29:42.0718 0332 aliide - ok
11:29:43.0810 0332 Amazon Download Agent (ff6f0f6a2d72065ae4300426fa414693) C:\Program Files (x86)\Amazon\Amazon Games & Software Downloader\AmazonGSDownloaderService.exe
11:29:43.0997 0332 Amazon Download Agent - ok
11:29:44.0184 0332 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
11:29:44.0231 0332 amdide - ok
11:29:44.0605 0332 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
11:29:44.0683 0332 AmdK8 - ok
11:29:45.0026 0332 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
11:29:45.0042 0332 AmdPPM - ok
11:29:45.0276 0332 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
11:29:45.0307 0332 amdsata - ok
11:29:45.0775 0332 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
11:29:45.0838 0332 amdsbs - ok
11:29:45.0994 0332 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
11:29:46.0009 0332 amdxata - ok
11:29:46.0134 0332 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
11:29:46.0150 0332 AppID - ok
11:29:46.0196 0332 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
11:29:46.0228 0332 AppIDSvc - ok
11:29:46.0399 0332 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
11:29:46.0399 0332 Appinfo - ok
11:29:46.0789 0332 Apple Mobile Device (f401929ee0cc92bfe7f15161ca535383) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
11:29:46.0992 0332 Apple Mobile Device - ok
11:29:47.0819 0332 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
11:29:47.0944 0332 arc - ok
11:29:49.0036 0332 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
11:29:49.0082 0332 arcsas - ok
11:29:49.0301 0332 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
11:29:49.0379 0332 AsyncMac - ok
11:29:49.0550 0332 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
11:29:49.0582 0332 atapi - ok
11:29:50.0908 0332 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
11:29:50.0954 0332 AudioEndpointBuilder - ok
11:29:50.0970 0332 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
11:29:50.0970 0332 AudioSrv - ok
11:29:51.0266 0332 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
11:29:51.0282 0332 AxInstSV - ok
11:29:52.0920 0332 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
11:29:52.0982 0332 b06bdrv - ok
11:29:54.0402 0332 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
11:29:54.0464 0332 b57nd60a - ok
11:29:54.0745 0332 BBSvc (01a24b415926bb5f772dbe12459d97de) C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE
11:29:54.0745 0332 BBSvc - ok
11:29:54.0808 0332 BBUpdate (785de7abda13309d6065305542829e76) C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
11:29:54.0808 0332 BBUpdate - ok
11:29:55.0026 0332 BCM43XX (8b5d16d20774fc3727f44e161be2c0ac) C:\Windows\system32\DRIVERS\bcmwl664.sys
11:29:55.0042 0332 BCM43XX - ok
11:29:55.0244 0332 BcmVWL (d224b2e6bb543f1d8f1177d57fec2950) C:\Windows\system32\DRIVERS\bcmvwl64.sys
11:29:55.0244 0332 BcmVWL - ok
11:29:55.0260 0332 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
11:29:55.0260 0332 BDESVC - ok
11:29:55.0291 0332 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
11:29:55.0291 0332 Beep - ok
11:29:55.0322 0332 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
11:29:55.0322 0332 blbdrive - ok
11:29:55.0463 0332 Bonjour Service (ebbcd5dfbb1de70e8f4af8fa59e401fd) C:\Program Files\Bonjour\mDNSResponder.exe
11:29:55.0463 0332 Bonjour Service - ok
11:29:55.0556 0332 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
11:29:55.0556 0332 bowser - ok
11:29:55.0588 0332 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
11:29:55.0588 0332 BrFiltLo - ok
11:29:55.0603 0332 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
11:29:55.0603 0332 BrFiltUp - ok
11:29:55.0650 0332 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
11:29:55.0650 0332 Browser - ok
11:29:55.0681 0332 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
11:29:55.0697 0332 Brserid - ok
11:29:55.0697 0332 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
11:29:55.0697 0332 BrSerWdm - ok
11:29:55.0697 0332 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
11:29:55.0697 0332 BrUsbMdm - ok
11:29:55.0697 0332 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
11:29:55.0697 0332 BrUsbSer - ok
11:29:55.0728 0332 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
11:29:55.0728 0332 BTHMODEM - ok
11:29:55.0759 0332 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
11:29:55.0759 0332 bthserv - ok
11:29:55.0775 0332 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
11:29:55.0790 0332 cdfs - ok
11:29:55.0853 0332 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\drivers\cdrom.sys
11:29:55.0853 0332 cdrom - ok
11:29:56.0212 0332 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
11:29:56.0227 0332 CertPropSvc - ok
11:29:56.0243 0332 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
11:29:56.0243 0332 circlass - ok
11:29:56.0290 0332 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
11:29:56.0290 0332 CLFS - ok
11:29:56.0430 0332 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
11:29:56.0461 0332 clr_optimization_v2.0.50727_32 - ok
11:29:56.0648 0332 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
11:29:56.0695 0332 clr_optimization_v2.0.50727_64 - ok
11:29:57.0054 0332 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
11:29:57.0319 0332 clr_optimization_v4.0.30319_32 - ok
11:29:57.0382 0332 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
11:29:57.0397 0332 clr_optimization_v4.0.30319_64 - ok
11:29:57.0428 0332 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
11:29:57.0428 0332 CmBatt - ok
11:29:57.0475 0332 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
11:29:57.0491 0332 cmdide - ok
11:29:57.0569 0332 CNG (9ac4f97c2d3e93367e2148ea940cd2cd) C:\Windows\system32\Drivers\cng.sys
11:29:57.0569 0332 CNG - ok
11:29:57.0600 0332 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
11:29:57.0600 0332 Compbatt - ok
11:29:57.0662 0332 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
11:29:57.0662 0332 CompositeBus - ok
11:29:57.0694 0332 COMSysApp - ok
11:29:57.0725 0332 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
11:29:57.0725 0332 crcdisk - ok
11:29:57.0803 0332 CryptSvc (4f5414602e2544a4554d95517948b705) C:\Windows\system32\cryptsvc.dll
11:29:57.0803 0332 CryptSvc - ok
11:29:57.0912 0332 CtClsFlt (ed5cf92396a62f4c15110dcdb5e854d9) C:\Windows\system32\DRIVERS\CtClsFlt.sys
11:29:57.0912 0332 CtClsFlt - ok
11:29:57.0990 0332 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
11:29:58.0193 0332 DcomLaunch - ok
11:29:58.0240 0332 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
11:29:58.0240 0332 defragsvc - ok
11:29:58.0302 0332 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
11:29:58.0302 0332 DfsC - ok
11:29:58.0442 0332 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
11:29:58.0442 0332 Dhcp - ok
11:29:58.0505 0332 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
11:29:58.0505 0332 discache - ok
11:29:58.0536 0332 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
11:29:58.0536 0332 Disk - ok
11:29:58.0598 0332 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
11:29:58.0598 0332 Dnscache - ok
11:29:58.0708 0332 DockLoginService (0840abbbdf438691ee65a20040635cbe) C:\Program Files\Dell\DellDock\DockLogin.exe
11:29:58.0708 0332 DockLoginService - ok
11:29:58.0786 0332 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
11:29:58.0786 0332 dot3svc - ok
11:29:58.0817 0332 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
11:29:58.0817 0332 DPS - ok
11:29:58.0864 0332 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
11:29:58.0864 0332 drmkaud - ok
11:29:58.0942 0332 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
11:29:58.0957 0332 DXGKrnl - ok
11:29:58.0988 0332 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
11:29:59.0004 0332 EapHost - ok
11:29:59.0144 0332 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
11:29:59.0176 0332 ebdrv - ok
11:29:59.0300 0332 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
11:29:59.0300 0332 EFS - ok
11:29:59.0644 0332 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
11:29:59.0675 0332 ehRecvr - ok
11:29:59.0706 0332 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
11:29:59.0706 0332 ehSched - ok
11:29:59.0846 0332 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
11:29:59.0862 0332 elxstor - ok
11:29:59.0893 0332 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
11:29:59.0893 0332 ErrDev - ok
11:29:59.0956 0332 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
11:29:59.0956 0332 EventSystem - ok
11:29:59.0987 0332 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
11:29:59.0987 0332 exfat - ok
11:30:00.0018 0332 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
11:30:00.0018 0332 fastfat - ok
11:30:00.0112 0332 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
11:30:00.0112 0332 Fax - ok
11:30:00.0143 0332 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
11:30:00.0143 0332 fdc - ok
11:30:00.0174 0332 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
11:30:00.0174 0332 fdPHost - ok
11:30:00.0174 0332 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
11:30:00.0174 0332 FDResPub - ok
11:30:00.0190 0332 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
11:30:00.0190 0332 FileInfo - ok
11:30:00.0221 0332 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
11:30:00.0221 0332 Filetrace - ok
11:30:00.0299 0332 FLEXnet Licensing Service (abedfd48ac042c6aaad32452e77217a1) C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
11:30:00.0314 0332 FLEXnet Licensing Service - ok
11:30:00.0346 0332 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
11:30:00.0346 0332 flpydisk - ok
11:30:00.0408 0332 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
11:30:00.0408 0332 FltMgr - ok
11:30:00.0502 0332 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
11:30:00.0517 0332 FontCache - ok
11:30:00.0611 0332 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
11:30:00.0611 0332 FontCache3.0.0.0 - ok
11:30:00.0658 0332 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
11:30:00.0658 0332 FsDepends - ok
11:30:00.0720 0332 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
11:30:00.0720 0332 Fs_Rec - ok
11:30:00.0782 0332 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
11:30:00.0782 0332 fvevol - ok
11:30:00.0814 0332 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
11:30:00.0814 0332 gagp30kx - ok
11:30:00.0923 0332 GameConsoleService (551d463e4cceb5240234da6718c93a44) C:\Program Files (x86)\WildTangent\Dell Games\Dell Game Console\GameConsoleService.exe
11:30:00.0923 0332 GameConsoleService - ok
11:30:00.0938 0332 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
11:30:00.0938 0332 GEARAspiWDM - ok
11:30:00.0985 0332 GoToAssist (d3316f6e3c011435f36e3d6e49b3196c) C:\Program Files (x86)\Citrix\GoToAssist\514\g2aservice.exe
11:30:00.0985 0332 GoToAssist - ok
11:30:01.0079 0332 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
11:30:01.0094 0332 gpsvc - ok
11:30:01.0141 0332 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
11:30:01.0141 0332 hcw85cir - ok
11:30:01.0204 0332 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
11:30:01.0204 0332 HDAudBus - ok
11:30:01.0235 0332 HECIx64 (b6ac71aaa2b10848f57fc49d55a651af) C:\Windows\system32\DRIVERS\HECIx64.sys
11:30:01.0235 0332 HECIx64 - ok
11:30:01.0266 0332 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
11:30:01.0266 0332 HidBatt - ok
11:30:01.0266 0332 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
11:30:01.0266 0332 HidBth - ok
11:30:01.0282 0332 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
11:30:01.0297 0332 HidIr - ok
11:30:01.0313 0332 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
11:30:01.0313 0332 hidserv - ok
11:30:01.0360 0332 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
11:30:01.0360 0332 HidUsb - ok
11:30:01.0391 0332 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
11:30:01.0406 0332 hkmsvc - ok
11:30:01.0469 0332 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
11:30:01.0469 0332 HomeGroupListener - ok
11:30:01.0531 0332 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
11:30:01.0531 0332 HomeGroupProvider - ok
11:30:01.0594 0332 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
11:30:01.0594 0332 HpSAMD - ok
11:30:01.0812 0332 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
11:30:01.0843 0332 HTTP - ok
11:30:01.0937 0332 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
11:30:01.0937 0332 hwpolicy - ok
11:30:02.0077 0332 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
11:30:02.0077 0332 i8042prt - ok
11:30:02.0249 0332 iaStor (42e00996dfc13c46366689c0ea8abc5e) C:\Windows\system32\DRIVERS\iaStor.sys
11:30:02.0249 0332 iaStor - ok
11:30:02.0358 0332 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
11:30:02.0358 0332 iaStorV - ok
11:30:02.0467 0332 IDriverT (1cf03c69b49acb70c722df92755c0c8c) C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
11:30:02.0467 0332 IDriverT - ok
11:30:02.0576 0332 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
11:30:02.0576 0332 idsvc - ok
11:30:03.0138 0332 igfx (677aa5991026a65ada128c4b59cf2bad) C:\Windows\system32\DRIVERS\igdkmd64.sys
11:30:03.0356 0332 igfx - ok
11:30:03.0481 0332 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
11:30:03.0481 0332 iirsp - ok
11:30:03.0590 0332 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
11:30:03.0606 0332 IKEEXT - ok
11:30:03.0637 0332 Impcd (4b6363cd4610bb848531bb260b15dfcc) C:\Windows\system32\DRIVERS\Impcd.sys
11:30:03.0637 0332 Impcd - ok
11:30:03.0762 0332 IntcAzAudAddService (697c927e0de2abaf1a5f455033f687cd) C:\Windows\system32\drivers\RTKVHD64.sys
11:30:03.0778 0332 IntcAzAudAddService - ok
11:30:03.0902 0332 IntcDAud (da24c1f66ee1b5a92e045376d7a44b58) C:\Windows\system32\DRIVERS\IntcDAud.sys
11:30:03.0918 0332 IntcDAud - ok
11:30:03.0965 0332 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
11:30:03.0980 0332 intelide - ok
11:30:04.0012 0332 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
11:30:04.0012 0332 intelppm - ok
11:30:04.0043 0332 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
11:30:04.0043 0332 IPBusEnum - ok
11:30:04.0105 0332 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
11:30:04.0105 0332 IpFilterDriver - ok
11:30:04.0152 0332 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
11:30:04.0152 0332 IPMIDRV - ok
11:30:04.0199 0332 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
11:30:04.0214 0332 IPNAT - ok
11:30:04.0667 0332 iPod Service (a9ab99ee7d39725eafec82732d2b3271) C:\Program Files\iPod\bin\iPodService.exe
11:30:04.0745 0332 iPod Service - ok
11:30:04.0776 0332 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
11:30:04.0776 0332 IRENUM - ok
11:30:04.0838 0332 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
11:30:04.0838 0332 isapnp - ok
11:30:04.0885 0332 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
11:30:04.0885 0332 iScsiPrt - ok
11:30:04.0916 0332 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\drivers\kbdclass.sys
11:30:04.0916 0332 kbdclass - ok
11:30:04.0948 0332 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\drivers\kbdhid.sys
11:30:04.0948 0332 kbdhid - ok
11:30:04.0979 0332 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
11:30:04.0979 0332 KeyIso - ok
11:30:05.0010 0332 KSecDD (97a7070aea4c058b6418519e869a63b4) C:\Windows\system32\Drivers\ksecdd.sys
11:30:05.0026 0332 KSecDD - ok
11:30:05.0088 0332 KSecPkg (26c43a7c2862447ec59deda188d1da07) C:\Windows\system32\Drivers\ksecpkg.sys
11:30:05.0088 0332 KSecPkg - ok
11:30:05.0119 0332 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
11:30:05.0119 0332 ksthunk - ok
11:30:05.0166 0332 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
11:30:05.0166 0332 KtmRm - ok
11:30:05.0213 0332 L1C (39918db0efcf045a1ce6fabbf339f975) C:\Windows\system32\DRIVERS\L1C62x64.sys
11:30:05.0213 0332 L1C - ok
11:30:05.0275 0332 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\system32\srvsvc.dll
11:30:05.0291 0332 LanmanServer - ok
11:30:05.0338 0332 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
11:30:05.0353 0332 LanmanWorkstation - ok
11:30:05.0384 0332 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
11:30:05.0384 0332 lltdio - ok
11:30:05.0431 0332 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
11:30:05.0447 0332 lltdsvc - ok
11:30:05.0462 0332 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
11:30:05.0462 0332 lmhosts - ok
11:30:05.0540 0332 LMS (7485fbcef9136f530953575e2977859d) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
11:30:05.0540 0332 LMS - ok
11:30:05.0618 0332 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
11:30:05.0618 0332 LSI_FC - ok
11:30:05.0618 0332 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
11:30:05.0618 0332 LSI_SAS - ok
11:30:05.0618 0332 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
11:30:05.0634 0332 LSI_SAS2 - ok
11:30:05.0650 0332 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
11:30:05.0650 0332 LSI_SCSI - ok
11:30:05.0696 0332 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
11:30:05.0696 0332 luafv - ok
11:30:05.0774 0332 MBAMProtector (dc8490812a3b72811ae534f423b4c206) C:\Windows\system32\drivers\mbam.sys
11:30:05.0774 0332 MBAMProtector - ok
11:30:05.0915 0332 MBAMService (43683e970f008c93c9429ef428147a54) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
11:30:05.0915 0332 MBAMService - ok
11:30:06.0055 0332 McAfee SiteAdvisor Service (b891e3920f24ff1a3bead6cd2b42ed99) c:\PROGRA~2\mcafee\SITEAD~1\McSACore.exe
11:30:06.0055 0332 McAfee SiteAdvisor Service - ok
11:30:06.0118 0332 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
11:30:06.0118 0332 Mcx2Svc - ok
11:30:06.0149 0332 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
11:30:06.0149 0332 megasas - ok
11:30:06.0196 0332 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
11:30:06.0196 0332 MegaSR - ok
11:30:06.0227 0332 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
11:30:06.0242 0332 MMCSS - ok
11:30:06.0242 0332 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
11:30:06.0242 0332 Modem - ok
11:30:06.0258 0332 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
11:30:06.0258 0332 monitor - ok
11:30:06.0320 0332 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
11:30:06.0320 0332 mouclass - ok
11:30:06.0336 0332 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
11:30:06.0336 0332 mouhid - ok
11:30:06.0383 0332 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
11:30:06.0398 0332 mountmgr - ok
11:30:06.0508 0332 MozillaMaintenance (46297fa8e30a6007f14118fc2b942fbc) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
11:30:06.0508 0332 MozillaMaintenance - ok
11:30:06.0570 0332 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
11:30:06.0570 0332 mpio - ok
11:30:06.0617 0332 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
11:30:06.0617 0332 mpsdrv - ok
11:30:06.0788 0332 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
11:30:06.0804 0332 MRxDAV - ok
11:30:06.0991 0332 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
11:30:07.0007 0332 mrxsmb - ok
11:30:07.0069 0332 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
11:30:07.0085 0332 mrxsmb10 - ok
11:30:07.0147 0332 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
11:30:07.0147 0332 mrxsmb20 - ok
11:30:07.0210 0332 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
11:30:07.0210 0332 msahci - ok
11:30:07.0225 0332 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
11:30:07.0225 0332 msdsm - ok
11:30:07.0288 0332 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
11:30:07.0288 0332 MSDTC - ok
11:30:07.0334 0332 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
11:30:07.0334 0332 Msfs - ok
11:30:07.0350 0332 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
11:30:07.0350 0332 mshidkmdf - ok
11:30:07.0350 0332 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
11:30:07.0381 0332 msisadrv - ok
11:30:07.0444 0332 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
11:30:07.0444 0332 MSiSCSI - ok
11:30:07.0459 0332 msiserver - ok
11:30:07.0490 0332 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
11:30:07.0506 0332 MSKSSRV - ok
11:30:07.0537 0332 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
11:30:07.0537 0332 MSPCLOCK - ok
11:30:07.0537 0332 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
11:30:07.0537 0332 MSPQM - ok
11:30:07.0600 0332 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
11:30:07.0615 0332 MsRPC - ok
11:30:07.0662 0332 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
11:30:07.0662 0332 mssmbios - ok
11:30:07.0678 0332 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
11:30:07.0678 0332 MSTEE - ok
11:30:07.0693 0332 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
11:30:07.0693 0332 MTConfig - ok
11:30:07.0709 0332 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
11:30:07.0709 0332 Mup - ok
11:30:07.0802 0332 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
11:30:07.0802 0332 napagent - ok
11:30:07.0849 0332 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
11:30:07.0849 0332 NativeWifiP - ok
11:30:07.0974 0332 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
11:30:07.0974 0332 NDIS - ok
11:30:08.0021 0332 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
11:30:08.0021 0332 NdisCap - ok
11:30:08.0052 0332 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
11:30:08.0052 0332 NdisTapi - ok
11:30:08.0130 0332 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
11:30:08.0130 0332 Ndisuio - ok
11:30:08.0177 0332 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
11:30:08.0177 0332 NdisWan - ok
11:30:08.0239 0332 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
11:30:08.0239 0332 NDProxy - ok
11:30:08.0286 0332 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
11:30:08.0286 0332 NetBIOS - ok
11:30:08.0364 0332 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
11:30:08.0364 0332 NetBT - ok
11:30:08.0426 0332 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
11:30:08.0426 0332 Netlogon - ok
11:30:08.0473 0332 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
11:30:08.0473 0332 Netman - ok
11:30:08.0504 0332 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
11:30:08.0520 0332 netprofm - ok
11:30:08.0582 0332 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
11:30:08.0582 0332 NetTcpPortSharing - ok
11:30:08.0614 0332 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
11:30:08.0629 0332 nfrd960 - ok
11:30:08.0707 0332 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
11:30:08.0707 0332 NlaSvc - ok
11:30:08.0723 0332 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
11:30:08.0723 0332 Npfs - ok
11:30:08.0754 0332 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
11:30:08.0754 0332 nsi - ok
11:30:08.0770 0332 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
11:30:08.0770 0332 nsiproxy - ok
11:30:08.0879 0332 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
11:30:08.0894 0332 Ntfs - ok
11:30:08.0988 0332 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
11:30:08.0988 0332 Null - ok
11:30:09.0066 0332 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
11:30:09.0066 0332 nvraid - ok
11:30:09.0082 0332 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
11:30:09.0082 0332 nvstor - ok
11:30:09.0097 0332 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
11:30:09.0097 0332 nv_agp - ok
11:30:09.0565 0332 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
11:30:09.0596 0332 odserv - ok
11:30:09.0643 0332 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
11:30:09.0643 0332 ohci1394 - ok
11:30:09.0752 0332 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
11:30:09.0752 0332 ose - ok
11:30:09.0815 0332 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
11:30:09.0815 0332 p2pimsvc - ok
11:30:09.0862 0332 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
11:30:09.0862 0332 p2psvc - ok
11:30:09.0908 0332 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
11:30:09.0908 0332 Parport - ok
11:30:09.0971 0332 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\Windows\system32\drivers\partmgr.sys
11:30:09.0971 0332 partmgr - ok
11:30:09.0986 0332 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
11:30:09.0986 0332 PcaSvc - ok
11:30:10.0049 0332 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
11:30:10.0049 0332 pci - ok
11:30:10.0080 0332 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
11:30:10.0080 0332 pciide - ok
11:30:10.0127 0332 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
11:30:10.0127 0332 pcmcia - ok
11:30:10.0142 0332 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
11:30:10.0142 0332 pcw - ok
11:30:10.0174 0332 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
11:30:10.0189 0332 PEAUTH - ok
11:30:10.0252 0332 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
11:30:10.0252 0332 PerfHost - ok
11:30:10.0361 0332 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
11:30:10.0376 0332 pla - ok
11:30:10.0454 0332 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
11:30:10.0454 0332 PlugPlay - ok
11:30:10.0486 0332 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
11:30:10.0486 0332 PNRPAutoReg - ok
11:30:10.0517 0332 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
11:30:10.0517 0332 PNRPsvc - ok
11:30:10.0579 0332 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
11:30:10.0579 0332 PolicyAgent - ok
11:30:10.0642 0332 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
11:30:10.0642 0332 Power - ok
11:30:10.0720 0332 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
11:30:10.0720 0332 PptpMiniport - ok
11:30:10.0735 0332 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
11:30:10.0751 0332 Processor - ok
11:30:10.0813 0332 ProfSvc (53e83f1f6cf9d62f32801cf66d8352a8) C:\Windows\system32\profsvc.dll
11:30:10.0813 0332 ProfSvc - ok
11:30:10.0860 0332 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
11:30:10.0860 0332 ProtectedStorage - ok
11:30:10.0922 0332 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
11:30:10.0922 0332 Psched - ok
11:30:10.0954 0332 PxHlpa64 (4712cc14e720ecccc0aa16949d18aaf1) C:\Windows\system32\Drivers\PxHlpa64.sys
11:30:10.0954 0332 PxHlpa64 - ok
11:30:11.0063 0332 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
11:30:11.0078 0332 ql2300 - ok
11:30:11.0172 0332 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
11:30:11.0172 0332 ql40xx - ok
11:30:11.0219 0332 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
11:30:11.0219 0332 QWAVE - ok
11:30:11.0234 0332 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
11:30:11.0234 0332 QWAVEdrv - ok
11:30:11.0250 0332 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
11:30:11.0250 0332 RasAcd - ok
11:30:11.0297 0332 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
11:30:11.0297 0332 RasAgileVpn - ok
11:30:11.0297 0332 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
11:30:11.0312 0332 RasAuto - ok
11:30:11.0359 0332 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
11:30:11.0359 0332 Rasl2tp - ok
11:30:11.0422 0332 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
11:30:11.0422 0332 RasMan - ok
11:30:11.0437 0332 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
11:30:11.0437 0332 RasPppoe - ok
11:30:11.0453 0332 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
11:30:11.0453 0332 RasSstp - ok
11:30:11.0578 0332 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
11:30:11.0578 0332 rdbss - ok
11:30:11.0624 0332 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
11:30:11.0624 0332 rdpbus - ok
11:30:11.0656 0332 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
11:30:11.0671 0332 RDPCDD - ok
11:30:11.0702 0332 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
11:30:11.0702 0332 RDPENCDD - ok
11:30:11.0734 0332 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
11:30:11.0749 0332 RDPREFMP - ok
11:30:11.0874 0332 RDPWD (e61608aa35e98999af9aaeeea6114b0a) C:\Windows\system32\drivers\RDPWD.sys
11:30:11.0890 0332 RDPWD - ok
11:30:11.0983 0332 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
11:30:11.0983 0332 rdyboost - ok
11:30:12.0030 0332 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
11:30:12.0030 0332 RemoteAccess - ok
11:30:12.0061 0332 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
11:30:12.0061 0332 RemoteRegistry - ok
11:30:12.0108 0332 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
11:30:12.0108 0332 RpcEptMapper - ok
11:30:12.0124 0332 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
11:30:12.0124 0332 RpcLocator - ok
11:30:12.0186 0332 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
11:30:12.0186 0332 RpcSs - ok
11:30:12.0233 0332 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
11:30:12.0233 0332 rspndr - ok
11:30:12.0264 0332 RSUSBSTOR (907c4464381b5ebdfdc60f6c7d0dedfc) C:\Windows\system32\Drivers\RtsUStor.sys
11:30:12.0264 0332 RSUSBSTOR - ok
11:30:12.0311 0332 S3XXx64 (8d9d16f3a38d54addd350605a0a2aba6) C:\Windows\system32\DRIVERS\S3XXx64.sys
11:30:12.0311 0332 S3XXx64 - ok
11:30:12.0373 0332 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
11:30:12.0373 0332 SamSs - ok
11:30:12.0420 0332 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
11:30:12.0436 0332 sbp2port - ok
11:30:12.0467 0332 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
11:30:12.0467 0332 SCardSvr - ok
11:30:12.0529 0332 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
11:30:12.0529 0332 scfilter - ok
11:30:12.0623 0332 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
11:30:12.0638 0332 Schedule - ok
11:30:12.0701 0332 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
11:30:12.0701 0332 SCPolicySvc - ok
11:30:12.0748 0332 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
11:30:12.0748 0332 SDRSVC - ok
11:30:12.0810 0332 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
11:30:12.0810 0332 secdrv - ok
11:30:12.0872 0332 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
11:30:12.0888 0332 seclogon - ok
11:30:12.0904 0332 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
11:30:12.0904 0332 SENS - ok
11:30:12.0935 0332 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
11:30:12.0935 0332 SensrSvc - ok
11:30:12.0950 0332 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
11:30:12.0950 0332 Serenum - ok
11:30:12.0950 0332 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
11:30:12.0966 0332 Serial - ok
11:30:13.0028 0332 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
11:30:13.0028 0332 sermouse - ok
11:30:13.0075 0332 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
11:30:13.0075 0332 SessionEnv - ok
11:30:13.0122 0332 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
11:30:13.0122 0332 sffdisk - ok
11:30:13.0138 0332 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
11:30:13.0138 0332 sffp_mmc - ok
11:30:13.0153 0332 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
11:30:13.0153 0332 sffp_sd - ok
11:30:13.0169 0332 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
11:30:13.0169 0332 sfloppy - ok
11:30:13.0262 0332 SftService (21d48d7c9bdef13af16fdcbc5719fc3b) C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
11:30:13.0262 0332 SftService - ok
11:30:13.0325 0332 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
11:30:13.0325 0332 ShellHWDetection - ok
11:30:13.0356 0332 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
11:30:13.0356 0332 SiSRaid2 - ok
11:30:13.0387 0332 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
11:30:13.0387 0332 SiSRaid4 - ok
11:30:13.0496 0332 SkypeUpdate (ddaa5f4a6b958fc313ebd02dd925752f) C:\Program Files (x86)\Skype\Updater\Updater.exe
11:30:13.0496 0332 SkypeUpdate - ok
11:30:13.0528 0332 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
11:30:13.0528 0332 Smb - ok
11:30:13.0574 0332 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
11:30:13.0574 0332 SNMPTRAP - ok
11:30:13.0606 0332 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
11:30:13.0606 0332 spldr - ok
11:30:13.0668 0332 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
11:30:13.0684 0332 Spooler - ok
11:30:13.0871 0332 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
11:30:13.0902 0332 sppsvc - ok
11:30:14.0120 0332 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
11:30:14.0120 0332 sppuinotify - ok
11:30:14.0292 0332 sprtsvc_DellComms (d630b6f2e8379b6f10dc16e82a426552) C:\Program Files (x86)\Dell\DellComms\bin\sprtsvc.exe
11:30:14.0292 0332 sprtsvc_DellComms - ok
11:30:14.0355 0332 sprtsvc_DellSupportCenter (d630b6f2e8379b6f10dc16e82a426552) c:\Program Files (x86)\Dell Support Center\bin\sprtsvc.exe
11:30:14.0355 0332 sprtsvc_DellSupportCenter - ok
11:30:14.0448 0332 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
11:30:14.0464 0332 srv - ok
11:30:14.0495 0332 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
11:30:14.0495 0332 srv2 - ok
11:30:14.0511 0332 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
11:30:14.0511 0332 srvnet - ok
11:30:14.0542 0332 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
11:30:14.0542 0332 SSDPSRV - ok
11:30:14.0557 0332 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
11:30:14.0557 0332 SstpSvc - ok
11:30:14.0635 0332 Steam Client Service - ok
11:30:14.0682 0332 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
11:30:14.0682 0332 stexstor - ok
11:30:14.0776 0332 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
11:30:14.0791 0332 stisvc - ok
11:30:14.0838 0332 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
11:30:14.0838 0332 swenum - ok
11:30:14.0885 0332 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
11:30:14.0885 0332 swprv - ok
11:30:14.0947 0332 SynTP (56f16a398affe40afab04ba0081cdc27) C:\Windows\system32\DRIVERS\SynTP.sys
11:30:14.0947 0332 SynTP - ok
11:30:15.0057 0332 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
11:30:15.0088 0332 SysMain - ok
11:30:15.0197 0332 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
11:30:15.0197 0332 TabletInputService - ok
11:30:15.0213 0332 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
11:30:15.0213 0332 TapiSrv - ok
11:30:15.0244 0332 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
11:30:15.0259 0332 TBS - ok
11:30:15.0400 0332 Tcpip (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\drivers\tcpip.sys
11:30:15.0415 0332 Tcpip - ok
11:30:15.0634 0332 TCPIP6 (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\DRIVERS\tcpip.sys
11:30:15.0649 0332 TCPIP6 - ok
11:30:15.0790 0332 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
11:30:15.0790 0332 tcpipreg - ok
11:30:15.0821 0332 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
11:30:15.0821 0332 TDPIPE - ok
11:30:15.0868 0332 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
11:30:15.0868 0332 TDTCP - ok
11:30:15.0930 0332 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
11:30:15.0930 0332 tdx - ok
11:30:15.0993 0332 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
11:30:15.0993 0332 TermDD - ok
11:30:16.0024 0332 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
11:30:16.0039 0332 TermService - ok
11:30:16.0071 0332 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
11:30:16.0071 0332 Themes - ok
11:30:16.0086 0332 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
11:30:16.0086 0332 THREADORDER - ok
11:30:16.0102 0332 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
11:30:16.0102 0332 TrkWks - ok
11:30:16.0164 0332 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
11:30:16.0164 0332 TrustedInstaller - ok
11:30:16.0242 0332 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
11:30:16.0242 0332 tssecsrv - ok
11:30:16.0367 0332 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
11:30:16.0383 0332 TsUsbFlt - ok
11:30:16.0523 0332 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
11:30:16.0523 0332 tunnel - ok
11:30:16.0570 0332 TurboB (825e7a1f48fb8bcfba27c178aab4e275) C:\Windows\system32\DRIVERS\TurboB.sys
11:30:16.0585 0332 TurboB - ok
11:30:16.0741 0332 TurboBoost (b206be1174d5964d49a56bb6c4e0524a) C:\Program Files\Intel\TurboBoost\TurboBoost.exe
11:30:16.0741 0332 TurboBoost - ok
11:30:16.0788 0332 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
11:30:16.0788 0332 uagp35 - ok
11:30:16.0866 0332 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
11:30:16.0866 0332 udfs - ok
11:30:16.0897 0332 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
11:30:16.0897 0332 UI0Detect - ok
11:30:16.0944 0332 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
11:30:16.0944 0332 uliagpkx - ok
11:30:16.0975 0332 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys
11:30:16.0975 0332 umbus - ok
11:30:17.0007 0332 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
11:30:17.0007 0332 UmPass - ok
11:30:17.0178 0332 UNS (765f2dd351ba064f657751d8d75e58c0) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
11:30:17.0209 0332 UNS - ok
11:30:17.0287 0332 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
11:30:17.0287 0332 upnphost - ok
11:30:17.0381 0332 USBAAPL64 (fb251567f41bc61988b26731dec19e4b) C:\Windows\system32\Drivers\usbaapl64.sys
11:30:17.0381 0332 USBAAPL64 - ok
11:30:17.0443 0332 usbaudio (82e8f44688e6fac57b5b7c6fc7adbc2a) C:\Windows\system32\drivers\usbaudio.sys
11:30:17.0443 0332 usbaudio - ok
11:30:17.0490 0332 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
11:30:17.0490 0332 usbccgp - ok
11:30:17.0568 0332 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
11:30:17.0568 0332 usbcir - ok
11:30:17.0599 0332 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\drivers\usbehci.sys
11:30:17.0599 0332 usbehci - ok
11:30:17.0646 0332 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
11:30:17.0646 0332 usbhub - ok
11:30:17.0677 0332 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
11:30:17.0677 0332 usbohci - ok
11:30:17.0740 0332 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
11:30:17.0740 0332 usbprint - ok
11:30:17.0755 0332 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\drivers\USBSTOR.SYS
11:30:17.0755 0332 USBSTOR - ok
11:30:17.0755 0332 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\drivers\usbuhci.sys
11:30:17.0755 0332 usbuhci - ok
11:30:17.0849 0332 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\Windows\System32\Drivers\usbvideo.sys
11:30:17.0849 0332 usbvideo - ok
11:30:17.0880 0332 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
11:30:17.0880 0332 UxSms - ok
11:30:17.0927 0332 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
11:30:17.0927 0332 VaultSvc - ok
11:30:17.0989 0332 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
11:30:17.0989 0332 vdrvroot - ok
11:30:18.0083 0332 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
11:30:18.0083 0332 vds - ok
11:30:18.0130 0332 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
11:30:18.0130 0332 vga - ok
11:30:18.0145 0332 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
11:30:18.0145 0332 VgaSave - ok
11:30:18.0208 0332 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
11:30:18.0208 0332 vhdmp - ok
11:30:18.0255 0332 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
11:30:18.0270 0332 viaide - ok
11:30:18.0286 0332 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
11:30:18.0286 0332 volmgr - ok
11:30:18.0364 0332 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
11:30:18.0364 0332 volmgrx - ok
11:30:18.0395 0332 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
11:30:18.0395 0332 volsnap - ok
11:30:18.0457 0332 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
11:30:18.0457 0332 vsmraid - ok
11:30:18.0582 0332 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
11:30:18.0598 0332 VSS - ok
11:30:18.0707 0332 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
11:30:18.0707 0332 vwifibus - ok
11:30:18.0707 0332 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
11:30:18.0707 0332 vwififlt - ok
11:30:18.0754 0332 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys
11:30:18.0754 0332 vwifimp - ok
11:30:18.0801 0332 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
11:30:18.0801 0332 W32Time - ok
11:30:18.0847 0332 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
11:30:18.0863 0332 WacomPen - ok
11:30:19.0035 0332 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
11:30:19.0035 0332 WANARP - ok
11:30:19.0066 0332 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
11:30:19.0066 0332 Wanarpv6 - ok
11:30:19.0487 0332 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
11:30:19.0565 0332 WatAdminSvc - ok
11:30:19.0659 0332 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
11:30:19.0674 0332 wbengine - ok
11:30:19.0752 0332 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
11:30:19.0768 0332 WbioSrvc - ok
11:30:19.0830 0332 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
11:30:19.0830 0332 wcncsvc - ok
11:30:19.0846 0332 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
11:30:19.0846 0332 WcsPlugInService - ok
11:30:19.0893 0332 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
11:30:19.0893 0332 Wd - ok
11:30:19.0939 0332 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
11:30:19.0955 0332 Wdf01000 - ok
11:30:19.0986 0332 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
11:30:19.0986 0332 WdiServiceHost - ok
11:30:19.0986 0332 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
11:30:19.0986 0332 WdiSystemHost - ok
11:30:20.0049 0332 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
11:30:20.0049 0332 WebClient - ok
11:30:20.0064 0332 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
11:30:20.0080 0332 Wecsvc - ok
11:30:20.0080 0332 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
11:30:20.0080 0332 wercplsupport - ok
11:30:20.0111 0332 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
11:30:20.0111 0332 WerSvc - ok
11:30:20.0173 0332 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
11:30:20.0173 0332 WfpLwf - ok
11:30:20.0205 0332 WimFltr (b14ef15bd757fa488f9c970eee9c0d35) C:\Windows\system32\DRIVERS\wimfltr.sys
11:30:20.0205 0332 WimFltr - ok
11:30:20.0220 0332 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
11:30:20.0220 0332 WIMMount - ok
11:30:20.0220 0332 WinHttpAutoProxySvc - ok
11:30:20.0283 0332 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
11:30:20.0283 0332 Winmgmt - ok
11:30:20.0407 0332 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
11:30:20.0423 0332 WinRM - ok
11:30:20.0610 0332 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
11:30:20.0610 0332 WinUsb - ok
11:30:20.0673 0332 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
11:30:20.0688 0332 Wlansvc - ok
11:30:20.0938 0332 wlidsvc (98f138897ef4246381d197cb81846d62) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
11:30:20.0953 0332 wlidsvc - ok
11:30:21.0078 0332 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
11:30:21.0078 0332 WmiAcpi - ok
11:30:21.0156 0332 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
11:30:21.0156 0332 wmiApSrv - ok
11:30:21.0187 0332 WMPNetworkSvc - ok
11:30:21.0234 0332 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
11:30:21.0234 0332 WPCSvc - ok
11:30:21.0281 0332 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
11:30:21.0281 0332 WPDBusEnum - ok
11:30:21.0312 0332 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
11:30:21.0312 0332 ws2ifsl - ok
11:30:21.0312 0332 WSearch - ok
11:30:21.0375 0332 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
11:30:21.0375 0332 WudfPf - ok
11:30:21.0421 0332 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
11:30:21.0421 0332 WUDFRd - ok
11:30:21.0499 0332 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
11:30:21.0702 0332 wudfsvc - ok
11:30:21.0765 0332 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
11:30:21.0780 0332 WwanSvc - ok
11:30:21.0858 0332 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
11:30:22.0092 0332 \Device\Harddisk0\DR0 - ok
11:30:22.0092 0332 Boot (0x1200) (ed75ab26fbaf686353f813af6b1f0b6f) \Device\Harddisk0\DR0\Partition0
11:30:22.0092 0332 \Device\Harddisk0\DR0\Partition0 - ok
11:30:22.0108 0332 Boot (0x1200) (bb14ee8745498d2317f6879f7f6031a2) \Device\Harddisk0\DR0\Partition1
11:30:22.0108 0332 \Device\Harddisk0\DR0\Partition1 - ok
11:30:22.0108 0332 ============================================================
11:30:22.0108 0332 Scan finished
11:30:22.0108 0332 ============================================================
11:30:22.0123 1676 Detected object count: 0
11:30:22.0123 1676 Actual detected object count: 0
11:30:34.0089 0740 Deinitialize success

#5 Aramis Dagaz

Aramis Dagaz
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:02:38 AM

Posted 22 July 2012 - 05:31 PM

Log file from aswMBR:

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-07-22 10:28:36
-----------------------------
10:28:36.532 OS Version: Windows x64 6.1.7601 Service Pack 1
10:28:36.532 Number of processors: 4 586 0x2505
10:28:36.532 ComputerName: MITSAKO UserName:
10:28:40.106 Initialize success
10:30:44.200 AVAST engine defs: 12072201
10:31:08.816 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
10:31:08.816 Disk 0 Vendor: Hitachi_ PB4O Size: 476940MB BusType: 3
10:31:08.836 Disk 0 MBR read successfully
10:31:08.836 Disk 0 MBR scan
10:31:08.836 Disk 0 Windows 7 default MBR code
10:31:08.856 Disk 0 Partition 1 00 DE Dell Utility Dell 8.0 100 MB offset 2048
10:31:08.876 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 15000 MB offset 206848
10:31:08.886 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 461838 MB offset 30926848
10:31:08.926 Disk 0 scanning C:\Windows\system32\drivers
10:31:20.426 Service scanning
10:31:54.334 Modules scanning
10:31:54.334 Disk 0 trace - called modules:
10:31:54.349 ntoskrnl.exe CLASSPNP.SYS disk.sys iaStor.sys hal.dll
10:31:54.349 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8004b51060]
10:31:54.349 3 CLASSPNP.SYS[fffff88001b7943f] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa80048dc050]
10:31:57.688 AVAST engine scan C:\Windows
10:32:00.221 AVAST engine scan C:\Windows\system32
10:34:00.278 File: C:\Windows\assembly\GAC_32\Desktop.ini **INFECTED** Win32:Sirefef-PL [Rtk]
10:34:03.207 File: C:\Windows\assembly\GAC_64\Desktop.ini **INFECTED** Win32:Sirefef-PL [Rtk]
10:35:11.869 AVAST engine scan C:\Windows\system32\drivers
10:35:25.387 AVAST engine scan C:\Users\Daniel Hoffman
10:38:21.779 Disk 0 MBR has been saved successfully to "C:\Users\Daniel Hoffman\Desktop\MBR.dat"
10:38:21.795 The log file has been saved successfully to "C:\Users\Daniel Hoffman\Desktop\aswMBR.txt"


aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-07-22 11:32:02
-----------------------------
11:32:02.275 OS Version: Windows x64 6.1.7601 Service Pack 1
11:32:02.275 Number of processors: 4 586 0x2505
11:32:02.275 ComputerName: MITSAKO UserName:
11:32:03.336 Initialize success
11:32:12.462 AVAST engine defs: 12072201
11:32:14.030 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
11:32:14.032 Disk 0 Vendor: Hitachi_ PB4O Size: 476940MB BusType: 3
11:32:14.046 Disk 0 MBR read successfully
11:32:14.048 Disk 0 MBR scan
11:32:14.051 Disk 0 Windows 7 default MBR code
11:32:14.078 Disk 0 Partition 1 00 DE Dell Utility Dell 8.0 100 MB offset 2048
11:32:14.086 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 15000 MB offset 206848
11:32:14.098 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 461838 MB offset 30926848
11:32:14.130 Disk 0 scanning C:\Windows\system32\drivers
11:32:25.305 Service scanning
11:33:28.979 Modules scanning
11:33:28.979 Disk 0 trace - called modules:
11:33:29.005 ntoskrnl.exe CLASSPNP.SYS disk.sys iaStor.sys hal.dll
11:33:29.005 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8004b51060]
11:33:29.005 3 CLASSPNP.SYS[fffff88001bd143f] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa80048da050]
11:33:39.033 AVAST engine scan C:\Windows
11:33:42.110 AVAST engine scan C:\Windows\system32
11:36:52.982 File: C:\Windows\assembly\GAC_32\Desktop.ini **INFECTED** Win32:Sirefef-PL [Rtk]
11:37:08.873 File: C:\Windows\assembly\GAC_64\Desktop.ini **INFECTED** Win32:Sirefef-PL [Rtk]
11:38:42.827 AVAST engine scan C:\Windows\system32\drivers
11:38:57.339 AVAST engine scan C:\Users\Daniel Hoffman
11:44:33.190 File: C:\Users\Daniel Hoffman\AppData\Local\{c614d3bf-243a-3fd7-a4fd-36cd3756874b}\n **INFECTED** Win32:Sirefef-PL [Rtk]
12:00:58.668 AVAST engine scan C:\ProgramData
12:12:20.596 Scan finished successfully
12:31:14.098 Disk 0 MBR has been saved successfully to "C:\Users\Daniel Hoffman\Desktop\MBR.dat"
12:31:14.113 The log file has been saved successfully to "C:\Users\Daniel Hoffman\Desktop\aswMBR.txt"

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:38 AM

Posted 22 July 2012 - 05:32 PM

We need advanced tools to remove this one

Read the guide here

http://www.bleepingcomputer.com/forums/topic34773.html

and create a topic here

http://www.bleepingcomputer.com/forums/forum22.html

Good luck

#7 Aramis Dagaz

Aramis Dagaz
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:02:38 AM

Posted 22 July 2012 - 06:13 PM

Darn, this bugger looks like it's going to be more difficult to remove than I'd like. Thanks for your help!

#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:38 AM

Posted 22 July 2012 - 06:18 PM

You're welcome :)

#9 Orange Blossom

Orange Blossom

    OBleepin Investigator


  • Moderator
  • 36,993 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Location:Bloomington, IN
  • Local time:08:38 AM

Posted 22 July 2012 - 09:25 PM

Hello,

Now that you have posted a log here: http://www.bleepingcomputer.com/forums/topic461988.html you should NOT make further changes to your computer (install/uninstall programs, use special fix tools, delete files, edit the registry, etc) unless advised by a MRT Team member, nor should you ask for help elsewhere. Doing so can result in system changes which may not show in the log you already posted. Further, any modifications you make on your own may cause confusion for the helper assisting you and could complicate the malware removal process which would extend the time it takes to clean your computer.

From this point on the MRT Team should be the only members that you take advice from, until they have verified your log as clean.

Please be patient. It may take a while to get a response because the MRT Team members are EXTREMELY busy working logs posted before yours. They are volunteers who will help you out as soon as possible. Once you have made your post and are waiting, please DO NOT make another reply until it has been responded to by a member of the MRT Team. Generally the staff checks the forum for postings that have 0 replies as this makes it easier for them to identify those who have not been helped. If you post another response there will be 1 reply. A team member, looking for a new log to work may assume another MRT Team member is already assisting you and not open the thread to respond.

Please be patient. It may take several days to get a response but your log will be reviewed and answered as soon as possible. I advise checking your topic once a day for responses as the e-mail notification system is unreliable.

If HelpBot replies to your topic, PLEASE follow Step One so it will report your topic to the team members.

To avoid confusion, I am closing this topic. Good luck with your log.

Orange Blossom :cherry:
Help us help you. If HelpBot replies, you MUST follow step 1 in its reply so we know you need help.

Orange Blossom

An ounce of prevention is worth a pound of cure

SpywareBlaster, WinPatrol Plus, ESET Smart Security, Malwarebytes' Anti-Malware, NoScript Firefox ext., Norton noscript




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users