Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Anti-virus removed virus now anti-virus won't turn back on.


  • Please log in to reply
11 replies to this topic

#1 voltagevoltagemusic

voltagevoltagemusic

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:08:20 PM

Posted 13 August 2012 - 12:39 AM

My anti-virus said it removed a trojan. When I restarted my computer my anti-virus was turned off and it won't turn back on. I ran MalwareBytes and I didn't find anything, so I need some help.

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:20 PM

Posted 13 August 2012 - 12:45 AM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 voltagevoltagemusic

voltagevoltagemusic
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:08:20 PM

Posted 13 August 2012 - 01:43 AM

01:48:30.0719 2676 TDSS rootkit removing tool 2.7.48.0 Jul 24 2012 13:16:32
01:48:31.0076 2676 ============================================================
01:48:31.0076 2676 Current date / time: 2012/08/13 01:48:31.0076
01:48:31.0076 2676 SystemInfo:
01:48:31.0076 2676
01:48:31.0076 2676 OS Version: 6.1.7600 ServicePack: 0.0
01:48:31.0076 2676 Product type: Workstation
01:48:31.0076 2676 ComputerName: BRITTNI-PC
01:48:31.0076 2676 UserName: Brittni
01:48:31.0076 2676 Windows directory: C:\Windows
01:48:31.0076 2676 System windows directory: C:\Windows
01:48:31.0076 2676 Running under WOW64
01:48:31.0076 2676 Processor architecture: Intel x64
01:48:31.0076 2676 Number of processors: 8
01:48:31.0076 2676 Page size: 0x1000
01:48:31.0076 2676 Boot type: Safe boot with network
01:48:31.0076 2676 ============================================================
01:48:32.0201 2676 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
01:48:32.0205 2676 Drive \Device\Harddisk1\DR1 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
01:48:32.0209 2676 ============================================================
01:48:32.0209 2676 \Device\Harddisk0\DR0:
01:48:32.0209 2676 MBR partitions:
01:48:32.0209 2676 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x32FCD, BlocksNum 0x1D4C000
01:48:32.0209 2676 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1D7EFCD, BlocksNum 0x38606863
01:48:32.0209 2676 \Device\Harddisk1\DR1:
01:48:32.0210 2676 MBR partitions:
01:48:32.0210 2676 \Device\Harddisk1\DR1\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x3A385000
01:48:32.0210 2676 ============================================================
01:48:32.0235 2676 C: <-> \Device\Harddisk0\DR0\Partition1
01:48:32.0236 2676 D: <-> \Device\Harddisk1\DR1\Partition0
01:48:32.0236 2676 ============================================================
01:48:32.0236 2676 Initialize success
01:48:32.0236 2676 ============================================================
01:48:58.0435 3040 ============================================================
01:48:58.0435 3040 Scan started
01:48:58.0435 3040 Mode: Manual; TDLFS;
01:48:58.0435 3040 ============================================================
01:48:59.0962 3040 1394ohci (969c91060cbb5d17cb8440b5f78b4c51) C:\Windows\system32\DRIVERS\1394ohci.sys
01:48:59.0963 3040 1394ohci - ok
01:48:59.0992 3040 Acceler (e0065cbf1a25c015c218457d2cd522b9) C:\Windows\system32\DRIVERS\Accelern.sys
01:48:59.0993 3040 Acceler - ok
01:49:00.0090 3040 ACPI (6f11e88748cdefd2f76aa215f97ddfe5) C:\Windows\system32\DRIVERS\ACPI.sys
01:49:00.0093 3040 ACPI - ok
01:49:00.0140 3040 AcpiPmi (63b05a0420ce4bf0e4af6dcc7cada254) C:\Windows\system32\DRIVERS\acpipmi.sys
01:49:00.0140 3040 AcpiPmi - ok
01:49:00.0273 3040 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
01:49:00.0276 3040 adp94xx - ok
01:49:00.0304 3040 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
01:49:00.0306 3040 adpahci - ok
01:49:00.0436 3040 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
01:49:00.0437 3040 adpu320 - ok
01:49:00.0542 3040 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
01:49:00.0543 3040 AeLookupSvc - ok
01:49:00.0708 3040 AERTFilters (d1e343bc00136ce03c4d403194d06a80) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
01:49:00.0709 3040 AERTFilters - ok
01:49:00.0769 3040 AFD (db9d6c6b2cd95a9ca414d045b627422e) C:\Windows\system32\drivers\afd.sys
01:49:00.0772 3040 AFD - ok
01:49:00.0875 3040 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\DRIVERS\agp440.sys
01:49:00.0875 3040 agp440 - ok
01:49:00.0949 3040 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
01:49:00.0950 3040 ALG - ok
01:49:00.0987 3040 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\DRIVERS\aliide.sys
01:49:00.0987 3040 aliide - ok
01:49:01.0000 3040 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\DRIVERS\amdide.sys
01:49:01.0000 3040 amdide - ok
01:49:01.0115 3040 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
01:49:01.0116 3040 AmdK8 - ok
01:49:01.0182 3040 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
01:49:01.0182 3040 AmdPPM - ok
01:49:01.0270 3040 amdsata (ec7ebab00a4d8448bab68d1e49b4beb9) C:\Windows\system32\drivers\amdsata.sys
01:49:01.0271 3040 amdsata - ok
01:49:01.0395 3040 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
01:49:01.0397 3040 amdsbs - ok
01:49:01.0413 3040 amdxata (db27766102c7bf7e95140a2aa81d042e) C:\Windows\system32\drivers\amdxata.sys
01:49:01.0413 3040 amdxata - ok
01:49:01.0514 3040 AppID (42fd751b27fa0e9c69bb39f39e409594) C:\Windows\system32\drivers\appid.sys
01:49:01.0515 3040 AppID - ok
01:49:01.0589 3040 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
01:49:01.0589 3040 AppIDSvc - ok
01:49:01.0704 3040 Appinfo (d065be66822847b7f127d1f90158376e) C:\Windows\System32\appinfo.dll
01:49:01.0704 3040 Appinfo - ok
01:49:01.0830 3040 Apple Mobile Device (3debbecf665dcdde3a95d9b902010817) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
01:49:01.0831 3040 Apple Mobile Device - ok
01:49:01.0849 3040 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
01:49:01.0850 3040 arc - ok
01:49:01.0870 3040 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
01:49:01.0871 3040 arcsas - ok
01:49:01.0912 3040 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
01:49:01.0912 3040 AsyncMac - ok
01:49:01.0948 3040 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\DRIVERS\atapi.sys
01:49:01.0948 3040 atapi - ok
01:49:02.0047 3040 AudioEndpointBuilder (e1ffd1f7b043aef0acc9e7593043fd4c) C:\Windows\System32\Audiosrv.dll
01:49:02.0052 3040 AudioEndpointBuilder - ok
01:49:02.0058 3040 AudioSrv (e1ffd1f7b043aef0acc9e7593043fd4c) C:\Windows\System32\Audiosrv.dll
01:49:02.0062 3040 AudioSrv - ok
01:49:02.0327 3040 AxInstSV (b20b5fa5ca050e9926e4d1db81501b32) C:\Windows\System32\AxInstSV.dll
01:49:02.0328 3040 AxInstSV - ok
01:49:02.0395 3040 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
01:49:02.0398 3040 b06bdrv - ok
01:49:02.0727 3040 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
01:49:02.0729 3040 b57nd60a - ok
01:49:02.0756 3040 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
01:49:02.0757 3040 BDESVC - ok
01:49:02.0802 3040 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
01:49:02.0802 3040 Beep - ok
01:49:02.0887 3040 BFE (4992c609a6315671463e30f6512bc022) C:\Windows\System32\bfe.dll
01:49:02.0892 3040 BFE - ok
01:49:03.0277 3040 BITS (7f0c323fe3da28aa4aa1bda3f575707f) C:\Windows\System32\qmgr.dll
01:49:03.0284 3040 BITS - ok
01:49:03.0322 3040 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
01:49:03.0323 3040 blbdrive - ok
01:49:03.0417 3040 Bonjour Service (ebbcd5dfbb1de70e8f4af8fa59e401fd) C:\Program Files\Bonjour\mDNSResponder.exe
01:49:03.0420 3040 Bonjour Service - ok
01:49:03.0492 3040 bowser (19d20159708e152267e53b66677a4995) C:\Windows\system32\DRIVERS\bowser.sys
01:49:03.0493 3040 bowser - ok
01:49:03.0511 3040 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
01:49:03.0511 3040 BrFiltLo - ok
01:49:03.0528 3040 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
01:49:03.0529 3040 BrFiltUp - ok
01:49:03.0681 3040 Browser (94fbc06f294d58d02361918418f996e3) C:\Windows\System32\browser.dll
01:49:03.0683 3040 Browser - ok
01:49:03.0768 3040 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
01:49:03.0770 3040 Brserid - ok
01:49:03.0787 3040 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
01:49:03.0787 3040 BrSerWdm - ok
01:49:03.0807 3040 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
01:49:03.0807 3040 BrUsbMdm - ok
01:49:03.0846 3040 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
01:49:03.0846 3040 BrUsbSer - ok
01:49:03.0959 3040 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
01:49:03.0960 3040 BTHMODEM - ok
01:49:03.0981 3040 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
01:49:03.0982 3040 bthserv - ok
01:49:03.0996 3040 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
01:49:03.0997 3040 cdfs - ok
01:49:04.0205 3040 cdrom (83d2d75e1efb81b3450c18131443f7db) C:\Windows\system32\DRIVERS\cdrom.sys
01:49:04.0206 3040 cdrom - ok
01:49:04.0240 3040 CertPropSvc (312e2f82af11e79906898ac3e3d58a1f) C:\Windows\System32\certprop.dll
01:49:04.0241 3040 CertPropSvc - ok
01:49:04.0340 3040 cfwids (274ce03459896006f7a5069266e0469e) C:\Windows\system32\drivers\cfwids.sys
01:49:04.0340 3040 cfwids - ok
01:49:04.0397 3040 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
01:49:04.0397 3040 circlass - ok
01:49:04.0531 3040 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
01:49:04.0533 3040 CLFS - ok
01:49:04.0743 3040 CLKMSVC10_9EC60124 (730bf325e4cc1e3935b81943ac6da216) c:\Program Files (x86)\CyberLink\PowerDVD9\NavFilter\kmsvc.exe
01:49:04.0745 3040 CLKMSVC10_9EC60124 - ok
01:49:04.0923 3040 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
01:49:04.0924 3040 clr_optimization_v2.0.50727_32 - ok
01:49:05.0062 3040 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
01:49:05.0063 3040 clr_optimization_v2.0.50727_64 - ok
01:49:05.0238 3040 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
01:49:05.0239 3040 clr_optimization_v4.0.30319_32 - ok
01:49:05.0262 3040 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
01:49:05.0263 3040 clr_optimization_v4.0.30319_64 - ok
01:49:05.0600 3040 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
01:49:05.0601 3040 CmBatt - ok
01:49:05.0615 3040 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\DRIVERS\cmdide.sys
01:49:05.0615 3040 cmdide - ok
01:49:05.0825 3040 CNG (ca7720b73446fddec5c69519c1174c98) C:\Windows\system32\Drivers\cng.sys
01:49:05.0828 3040 CNG - ok
01:49:05.0872 3040 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
01:49:05.0872 3040 Compbatt - ok
01:49:05.0933 3040 CompositeBus (f26b3a86f6fa87ca360b879581ab4123) C:\Windows\system32\DRIVERS\CompositeBus.sys
01:49:05.0934 3040 CompositeBus - ok
01:49:05.0950 3040 COMSysApp - ok
01:49:05.0976 3040 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
01:49:05.0976 3040 crcdisk - ok
01:49:06.0233 3040 CryptSvc (f02786b66375292e58c8777082d4396d) C:\Windows\system32\cryptsvc.dll
01:49:06.0235 3040 CryptSvc - ok
01:49:06.0277 3040 CtClsFlt (fbe228abeab2be13b9c3a3a112d4d8dc) C:\Windows\system32\DRIVERS\CtClsFlt.sys
01:49:06.0278 3040 CtClsFlt - ok
01:49:06.0427 3040 DcomLaunch (7266972e86890e2b30c0c322e906b027) C:\Windows\system32\rpcss.dll
01:49:06.0431 3040 DcomLaunch - ok
01:49:06.0516 3040 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
01:49:06.0518 3040 defragsvc - ok
01:49:06.0542 3040 DfsC (9c253ce7311ca60fc11c774692a13208) C:\Windows\system32\Drivers\dfsc.sys
01:49:06.0543 3040 DfsC - ok
01:49:06.0581 3040 Dhcp (ce3b9562d997f69b330d181a8875960f) C:\Windows\system32\dhcpcore.dll
01:49:06.0583 3040 Dhcp - ok
01:49:06.0630 3040 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
01:49:06.0630 3040 discache - ok
01:49:06.0750 3040 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
01:49:06.0751 3040 Disk - ok
01:49:06.0899 3040 Dnscache (85cf424c74a1d5ec33533e1dbff9920a) C:\Windows\System32\dnsrslvr.dll
01:49:06.0901 3040 Dnscache - ok
01:49:07.0044 3040 dot3svc (14452acdb09b70964c8c21bf80a13acb) C:\Windows\System32\dot3svc.dll
01:49:07.0046 3040 dot3svc - ok
01:49:07.0213 3040 DPS (8c2ba6bea949ee6e68385f5692bafb94) C:\Windows\system32\dps.dll
01:49:07.0215 3040 DPS - ok
01:49:07.0264 3040 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
01:49:07.0264 3040 drmkaud - ok
01:49:07.0572 3040 DXGKrnl (1633b9abf52784a1331476397a48cbef) C:\Windows\System32\drivers\dxgkrnl.sys
01:49:07.0578 3040 DXGKrnl - ok
01:49:07.0762 3040 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
01:49:07.0763 3040 EapHost - ok
01:49:08.0104 3040 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
01:49:08.0124 3040 ebdrv - ok
01:49:08.0454 3040 EFS (156f6159457d0aa7e59b62681b56eb90) C:\Windows\System32\lsass.exe
01:49:08.0455 3040 EFS - ok
01:49:08.0686 3040 ehRecvr (47c071994c3f649f23d9cd075ac9304a) C:\Windows\ehome\ehRecvr.exe
01:49:08.0690 3040 ehRecvr - ok
01:49:08.0744 3040 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
01:49:08.0745 3040 ehSched - ok
01:49:09.0026 3040 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
01:49:09.0030 3040 elxstor - ok
01:49:09.0056 3040 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\DRIVERS\errdev.sys
01:49:09.0056 3040 ErrDev - ok
01:49:09.0332 3040 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
01:49:09.0335 3040 EventSystem - ok
01:49:09.0552 3040 EvtEng (8b6c9924b0d333dbf76086b8258a0891) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
01:49:09.0562 3040 EvtEng - ok
01:49:10.0049 3040 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
01:49:10.0050 3040 exfat - ok
01:49:10.0071 3040 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
01:49:10.0072 3040 fastfat - ok
01:49:10.0331 3040 Fax (d607b2f1bee3992aa6c2c92c0a2f0855) C:\Windows\system32\fxssvc.exe
01:49:10.0336 3040 Fax - ok
01:49:10.0346 3040 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
01:49:10.0346 3040 fdc - ok
01:49:10.0375 3040 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
01:49:10.0376 3040 fdPHost - ok
01:49:10.0397 3040 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
01:49:10.0398 3040 FDResPub - ok
01:49:10.0408 3040 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
01:49:10.0408 3040 FileInfo - ok
01:49:10.0444 3040 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
01:49:10.0445 3040 Filetrace - ok
01:49:10.0470 3040 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
01:49:10.0470 3040 flpydisk - ok
01:49:10.0501 3040 FltMgr (f7866af72abbaf84b1fa5aa195378c59) C:\Windows\system32\drivers\fltmgr.sys
01:49:10.0503 3040 FltMgr - ok
01:49:10.0704 3040 FontCache (cb5e4b9c319e3c6bb363eb7e58a4a051) C:\Windows\system32\FntCache.dll
01:49:10.0712 3040 FontCache - ok
01:49:10.0842 3040 FontCache3.0.0.0 (8d89e3131c27fdd6932189cb785e1b7a) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
01:49:10.0842 3040 FontCache3.0.0.0 - ok
01:49:10.0996 3040 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
01:49:10.0997 3040 FsDepends - ok
01:49:11.0031 3040 Fs_Rec (d3e3f93d67821a2db2b3d9fac2dc2064) C:\Windows\system32\drivers\Fs_Rec.sys
01:49:11.0031 3040 Fs_Rec - ok
01:49:11.0228 3040 fvevol (ae87ba80d0ec3b57126ed2cdc15b24ed) C:\Windows\system32\DRIVERS\fvevol.sys
01:49:11.0229 3040 fvevol - ok
01:49:11.0247 3040 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
01:49:11.0248 3040 gagp30kx - ok
01:49:11.0295 3040 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
01:49:11.0295 3040 GEARAspiWDM - ok
01:49:11.0472 3040 GoToAssist (8f6ae606eb0cc884ee12c41948424422) C:\Program Files (x86)\Citrix\GoToAssist\615\g2aservice.exe
01:49:11.0472 3040 GoToAssist - ok
01:49:11.0773 3040 gpsvc (fe5ab4525bc2ec68b9119a6e5d40128b) C:\Windows\System32\gpsvc.dll
01:49:11.0778 3040 gpsvc - ok
01:49:11.0842 3040 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
01:49:11.0842 3040 hcw85cir - ok
01:49:11.0995 3040 HDAudBus (0a49913402747a0b67de940fb42cbdbb) C:\Windows\system32\DRIVERS\HDAudBus.sys
01:49:11.0996 3040 HDAudBus - ok
01:49:12.0008 3040 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
01:49:12.0008 3040 HidBatt - ok
01:49:12.0146 3040 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
01:49:12.0147 3040 HidBth - ok
01:49:12.0169 3040 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
01:49:12.0169 3040 HidIr - ok
01:49:12.0196 3040 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\system32\hidserv.dll
01:49:12.0197 3040 hidserv - ok
01:49:12.0246 3040 HidUsb (b3bf6b5b50006def50b66306d99fcf6f) C:\Windows\system32\DRIVERS\hidusb.sys
01:49:12.0246 3040 HidUsb - ok
01:49:12.0349 3040 hkmsvc (efa58ede58dd74388ffd04cb32681518) C:\Windows\system32\kmsvc.dll
01:49:12.0351 3040 hkmsvc - ok
01:49:12.0370 3040 HomeGroupListener (046b2673767ca626e2cfb7fdf735e9e8) C:\Windows\system32\ListSvc.dll
01:49:12.0372 3040 HomeGroupListener - ok
01:49:12.0462 3040 HomeGroupProvider (06a7422224d9865a5613710a089987df) C:\Windows\system32\provsvc.dll
01:49:12.0464 3040 HomeGroupProvider - ok
01:49:12.0527 3040 HpSAMD (0886d440058f203eba0e1825e4355914) C:\Windows\system32\DRIVERS\HpSAMD.sys
01:49:12.0527 3040 HpSAMD - ok
01:49:12.0670 3040 HTTP (cee049cac4efa7f4e1e4ad014414a5d4) C:\Windows\system32\drivers\HTTP.sys
01:49:12.0675 3040 HTTP - ok
01:49:12.0703 3040 hwpolicy (f17766a19145f111856378df337a5d79) C:\Windows\system32\drivers\hwpolicy.sys
01:49:12.0704 3040 hwpolicy - ok
01:49:12.0811 3040 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys
01:49:12.0812 3040 i8042prt - ok
01:49:12.0994 3040 iaStorV (b75e45c564e944a2657167d197ab29da) C:\Windows\system32\drivers\iaStorV.sys
01:49:12.0997 3040 iaStorV - ok
01:49:13.0257 3040 idsvc (2f2be70d3e02b6fa877921ab9516d43c) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
01:49:13.0262 3040 idsvc - ok
01:49:15.0618 3040 igfx (66dc0ce2d1867b8178eaa0e11930dbd7) C:\Windows\system32\DRIVERS\igdkmd64.sys
01:49:15.0694 3040 igfx - ok
01:49:16.0054 3040 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
01:49:16.0055 3040 iirsp - ok
01:49:16.0333 3040 IKEEXT (c5b4683680df085b57bc53e5ef34861f) C:\Windows\System32\ikeext.dll
01:49:16.0339 3040 IKEEXT - ok
01:49:16.0437 3040 Impcd (dd587a55390ed2295bce6d36ad567da9) C:\Windows\system32\DRIVERS\Impcd.sys
01:49:16.0439 3040 Impcd - ok
01:49:16.0898 3040 IntcAzAudAddService (d492d3b5a8ddde1d6621a8c53855eabf) C:\Windows\system32\drivers\RTKVHD64.sys
01:49:16.0914 3040 IntcAzAudAddService - ok
01:49:17.0295 3040 IntcDAud (fc727061c0f47c8059e88e05d5c8e381) C:\Windows\system32\DRIVERS\IntcDAud.sys
01:49:17.0298 3040 IntcDAud - ok
01:49:17.0316 3040 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\DRIVERS\intelide.sys
01:49:17.0317 3040 intelide - ok
01:49:17.0345 3040 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
01:49:17.0346 3040 intelppm - ok
01:49:17.0416 3040 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
01:49:17.0417 3040 IPBusEnum - ok
01:49:17.0522 3040 IpFilterDriver (722dd294df62483cecaae6e094b4d695) C:\Windows\system32\DRIVERS\ipfltdrv.sys
01:49:17.0523 3040 IpFilterDriver - ok
01:49:17.0605 3040 iphlpsvc (f8e058d17363ec580e4b7232778b6cb5) C:\Windows\System32\iphlpsvc.dll
01:49:17.0609 3040 iphlpsvc - ok
01:49:17.0629 3040 IPMIDRV (e2b4a4494db7cb9b89b55ca268c337c5) C:\Windows\system32\DRIVERS\IPMIDrv.sys
01:49:17.0630 3040 IPMIDRV - ok
01:49:17.0766 3040 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
01:49:17.0767 3040 IPNAT - ok
01:49:17.0949 3040 iPod Service (ee4c2a137c7088911a8919effc9812e7) C:\Program Files\iPod\bin\iPodService.exe
01:49:17.0955 3040 iPod Service - ok
01:49:17.0991 3040 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
01:49:17.0991 3040 IRENUM - ok
01:49:18.0045 3040 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\DRIVERS\isapnp.sys
01:49:18.0046 3040 isapnp - ok
01:49:18.0085 3040 iScsiPrt (fa4d2557de56d45b0a346f93564be6e1) C:\Windows\system32\DRIVERS\msiscsi.sys
01:49:18.0086 3040 iScsiPrt - ok
01:49:18.0172 3040 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
01:49:18.0173 3040 kbdclass - ok
01:49:18.0244 3040 kbdhid (6def98f8541e1b5dceb2c822a11f7323) C:\Windows\system32\DRIVERS\kbdhid.sys
01:49:18.0244 3040 kbdhid - ok
01:49:18.0304 3040 KeyIso (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
01:49:18.0305 3040 KeyIso - ok
01:49:18.0325 3040 KSecDD (4f4b5fde429416877de7143044582eb5) C:\Windows\system32\Drivers\ksecdd.sys
01:49:18.0326 3040 KSecDD - ok
01:49:18.0347 3040 KSecPkg (6f40465a44ecdc1731befafec5bdd03c) C:\Windows\system32\Drivers\ksecpkg.sys
01:49:18.0349 3040 KSecPkg - ok
01:49:18.0391 3040 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
01:49:18.0391 3040 ksthunk - ok
01:49:18.0593 3040 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
01:49:18.0596 3040 KtmRm - ok
01:49:18.0794 3040 LanmanServer (81f1d04d4d0e433099365127375fd501) C:\Windows\system32\srvsvc.dll
01:49:18.0797 3040 LanmanServer - ok
01:49:18.0982 3040 LanmanWorkstation (27026eac8818e8a6c00a1cad2f11d29a) C:\Windows\System32\wkssvc.dll
01:49:18.0984 3040 LanmanWorkstation - ok
01:49:19.0093 3040 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
01:49:19.0094 3040 lltdio - ok
01:49:19.0194 3040 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
01:49:19.0197 3040 lltdsvc - ok
01:49:19.0207 3040 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
01:49:19.0208 3040 lmhosts - ok
01:49:19.0524 3040 LMS (7f32d4c47a50e7223491e8fb9359907d) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
01:49:19.0526 3040 LMS - ok
01:49:19.0556 3040 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
01:49:19.0557 3040 LSI_FC - ok
01:49:19.0580 3040 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
01:49:19.0581 3040 LSI_SAS - ok
01:49:19.0661 3040 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
01:49:19.0662 3040 LSI_SAS2 - ok
01:49:19.0814 3040 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
01:49:19.0815 3040 LSI_SCSI - ok
01:49:19.0941 3040 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
01:49:19.0942 3040 luafv - ok
01:49:20.0251 3040 McAfee SiteAdvisor Service (acb01bf1a905356ab7f978c7fe852209) C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
01:49:20.0253 3040 McAfee SiteAdvisor Service - ok
01:49:20.0257 3040 McMPFSvc (acb01bf1a905356ab7f978c7fe852209) C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
01:49:20.0259 3040 McMPFSvc - ok
01:49:20.0287 3040 mcmscsvc (acb01bf1a905356ab7f978c7fe852209) C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
01:49:20.0289 3040 mcmscsvc - ok
01:49:20.0293 3040 McNaiAnn (acb01bf1a905356ab7f978c7fe852209) C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
01:49:20.0295 3040 McNaiAnn - ok
01:49:20.0339 3040 McNASvc (acb01bf1a905356ab7f978c7fe852209) C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
01:49:20.0341 3040 McNASvc - ok
01:49:20.0477 3040 McODS (dd2321925274f2902929d76ce2b0eb45) C:\Program Files\McAfee\VirusScan\mcods.exe
01:49:20.0480 3040 McODS - ok
01:49:20.0484 3040 McProxy (acb01bf1a905356ab7f978c7fe852209) C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
01:49:20.0486 3040 McProxy - ok
01:49:20.0678 3040 McShield (e998e3b12101288d716558466cbf6ae1) C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe
01:49:20.0679 3040 McShield - ok
01:49:20.0705 3040 Mcx2Svc (f84c8f1000bc11e3b7b23cbd3baff111) C:\Windows\system32\Mcx2Svc.dll
01:49:20.0706 3040 Mcx2Svc - ok
01:49:20.0871 3040 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
01:49:20.0871 3040 megasas - ok
01:49:21.0006 3040 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
01:49:21.0008 3040 MegaSR - ok
01:49:21.0100 3040 MEIx64 (a6518dcc42f7a6e999bb3bea8fd87567) C:\Windows\system32\DRIVERS\HECIx64.sys
01:49:21.0100 3040 MEIx64 - ok
01:49:21.0300 3040 mfeapfk (01884cb7655c8908b43ff5e364fe6fd2) C:\Windows\system32\drivers\mfeapfk.sys
01:49:21.0301 3040 mfeapfk - ok
01:49:21.0438 3040 mfeavfk (dab9a9cdfb04e4d68924492aa043019d) C:\Windows\system32\drivers\mfeavfk.sys
01:49:21.0439 3040 mfeavfk - ok
01:49:21.0457 3040 mfefire (b26782c3d6045b4464017d7926877560) C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
01:49:21.0458 3040 mfefire - ok
01:49:21.0861 3040 mfefirek (ce9a3680675c0907ade16404ca967b49) C:\Windows\system32\drivers\mfefirek.sys
01:49:21.0864 3040 mfefirek - ok
01:49:21.0917 3040 mfehidk (60cf67458dd29cd17e77f2327b1a9a54) C:\Windows\system32\drivers\mfehidk.sys
01:49:21.0921 3040 mfehidk - ok
01:49:21.0957 3040 mfenlfk (a8129cfb919347f8533c934b365e9202) C:\Windows\system32\DRIVERS\mfenlfk.sys
01:49:21.0958 3040 mfenlfk - ok
01:49:22.0010 3040 mferkdet (5041fa2bd2b3a2693b015771bfbf6dca) C:\Windows\system32\drivers\mferkdet.sys
01:49:22.0011 3040 mferkdet - ok
01:49:22.0058 3040 mfevtp (723a5eb6cef7f408c3d0f15a82a6bff8) C:\Windows\system32\mfevtps.exe
01:49:22.0060 3040 mfevtp - ok
01:49:22.0126 3040 mfewfpk (919c56db14a0e1e2ab6da5d2821dc26e) C:\Windows\system32\drivers\mfewfpk.sys
01:49:22.0128 3040 mfewfpk - ok
01:49:22.0209 3040 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
01:49:22.0210 3040 MMCSS - ok
01:49:22.0310 3040 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
01:49:22.0311 3040 Modem - ok
01:49:22.0385 3040 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
01:49:22.0385 3040 monitor - ok
01:49:22.0457 3040 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
01:49:22.0457 3040 mouclass - ok
01:49:22.0530 3040 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
01:49:22.0530 3040 mouhid - ok
01:49:22.0613 3040 mountmgr (791af66c4d0e7c90a3646066386fb571) C:\Windows\system32\drivers\mountmgr.sys
01:49:22.0614 3040 mountmgr - ok
01:49:22.0869 3040 MozillaMaintenance (46297fa8e30a6007f14118fc2b942fbc) C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
01:49:22.0870 3040 MozillaMaintenance - ok
01:49:22.0952 3040 mpio (609d1d87649ecc19796f4d76d4c15cea) C:\Windows\system32\DRIVERS\mpio.sys
01:49:22.0953 3040 mpio - ok
01:49:22.0969 3040 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
01:49:22.0970 3040 mpsdrv - ok
01:49:23.0105 3040 MpsSvc (aecab449567d1846dad63ece49e893e3) C:\Windows\system32\mpssvc.dll
01:49:23.0110 3040 MpsSvc - ok
01:49:23.0257 3040 MRxDAV (30524261bb51d96d6fcbac20c810183c) C:\Windows\system32\drivers\mrxdav.sys
01:49:23.0259 3040 MRxDAV - ok
01:49:23.0303 3040 mrxsmb (040d62a9d8ad28922632137acdd984f2) C:\Windows\system32\DRIVERS\mrxsmb.sys
01:49:23.0305 3040 mrxsmb - ok
01:49:23.0432 3040 mrxsmb10 (f0067552f8f9b33d7c59403ab808a3cb) C:\Windows\system32\DRIVERS\mrxsmb10.sys
01:49:23.0434 3040 mrxsmb10 - ok
01:49:23.0449 3040 mrxsmb20 (3c142d31de9f2f193218a53fe2632051) C:\Windows\system32\DRIVERS\mrxsmb20.sys
01:49:23.0450 3040 mrxsmb20 - ok
01:49:23.0510 3040 msahci (bccf16d5fb1109162380e3e28dc9e4e5) C:\Windows\system32\DRIVERS\msahci.sys
01:49:23.0510 3040 msahci - ok
01:49:23.0563 3040 msdsm (8d27b597229aed79430fb9db3bcbfbd0) C:\Windows\system32\DRIVERS\msdsm.sys
01:49:23.0564 3040 msdsm - ok
01:49:23.0829 3040 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
01:49:23.0831 3040 MSDTC - ok
01:49:23.0879 3040 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
01:49:23.0880 3040 Msfs - ok
01:49:23.0897 3040 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
01:49:23.0897 3040 mshidkmdf - ok
01:49:23.0926 3040 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\DRIVERS\msisadrv.sys
01:49:23.0927 3040 msisadrv - ok
01:49:24.0091 3040 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
01:49:24.0093 3040 MSiSCSI - ok
01:49:24.0096 3040 msiserver - ok
01:49:24.0212 3040 MSK80Service (acb01bf1a905356ab7f978c7fe852209) C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
01:49:24.0214 3040 MSK80Service - ok
01:49:24.0259 3040 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
01:49:24.0260 3040 MSKSSRV - ok
01:49:24.0273 3040 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
01:49:24.0273 3040 MSPCLOCK - ok
01:49:24.0286 3040 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
01:49:24.0286 3040 MSPQM - ok
01:49:24.0312 3040 MsRPC (89cb141aa8616d8c6a4610fa26c60964) C:\Windows\system32\drivers\MsRPC.sys
01:49:24.0315 3040 MsRPC - ok
01:49:24.0344 3040 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\DRIVERS\mssmbios.sys
01:49:24.0344 3040 mssmbios - ok
01:49:24.0363 3040 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
01:49:24.0364 3040 MSTEE - ok
01:49:24.0381 3040 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
01:49:24.0381 3040 MTConfig - ok
01:49:24.0395 3040 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
01:49:24.0396 3040 Mup - ok
01:49:24.0578 3040 MyWiFiDHCPDNS (6ed8935257672f4cd04a88a0f3de093d) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
01:49:24.0580 3040 MyWiFiDHCPDNS - ok
01:49:24.0785 3040 napagent (4987e079a4530fa737a128be54b63b12) C:\Windows\system32\qagentRT.dll
01:49:24.0789 3040 napagent - ok
01:49:24.0889 3040 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
01:49:24.0891 3040 NativeWifiP - ok
01:49:25.0104 3040 NDIS (a3151b3463eea7e47f618f115d0d142e) C:\Windows\system32\drivers\ndis.sys
01:49:25.0110 3040 NDIS - ok
01:49:25.0142 3040 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
01:49:25.0142 3040 NdisCap - ok
01:49:25.0223 3040 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
01:49:25.0223 3040 NdisTapi - ok
01:49:25.0245 3040 Ndisuio (f105ba1e22bf1f2ee8f005d4305e4bec) C:\Windows\system32\DRIVERS\ndisuio.sys
01:49:25.0246 3040 Ndisuio - ok
01:49:25.0261 3040 NdisWan (557dfab9ca1fcb036ac77564c010dad3) C:\Windows\system32\DRIVERS\ndiswan.sys
01:49:25.0262 3040 NdisWan - ok
01:49:25.0270 3040 NDProxy (659b74fb74b86228d6338d643cd3e3cf) C:\Windows\system32\drivers\NDProxy.sys
01:49:25.0271 3040 NDProxy - ok
01:49:25.0279 3040 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
01:49:25.0279 3040 NetBIOS - ok
01:49:25.0361 3040 NetBT (9162b273a44ab9dce5b44362731d062a) C:\Windows\system32\DRIVERS\netbt.sys
01:49:25.0363 3040 NetBT - ok
01:49:25.0387 3040 Netlogon (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
01:49:25.0388 3040 Netlogon - ok
01:49:25.0518 3040 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
01:49:25.0521 3040 Netman - ok
01:49:25.0640 3040 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
01:49:25.0644 3040 netprofm - ok
01:49:25.0805 3040 NetTcpPortSharing (3e5a36127e201ddf663176b66828fafe) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
01:49:25.0806 3040 NetTcpPortSharing - ok
01:49:27.0980 3040 NETwNs64 (5d262402b0634c998f8cbcead7dd8676) C:\Windows\system32\DRIVERS\NETwNs64.sys
01:49:28.0033 3040 NETwNs64 - ok
01:49:28.0320 3040 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
01:49:28.0321 3040 nfrd960 - ok
01:49:28.0618 3040 NlaSvc (d9a0ce66046d6efa0c61baa885cba0a8) C:\Windows\System32\nlasvc.dll
01:49:28.0621 3040 NlaSvc - ok
01:49:29.0130 3040 NOBU (b9b72faaaa41d59b73b88fe3dd737ed1) C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe
01:49:29.0147 3040 NOBU - ok
01:49:29.0557 3040 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
01:49:29.0558 3040 Npfs - ok
01:49:29.0611 3040 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
01:49:29.0612 3040 nsi - ok
01:49:29.0642 3040 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
01:49:29.0643 3040 nsiproxy - ok
01:49:29.0949 3040 Ntfs (378e0e0dfea67d98ae6ea53adbbd76bc) C:\Windows\system32\drivers\Ntfs.sys
01:49:29.0959 3040 Ntfs - ok
01:49:30.0267 3040 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
01:49:30.0268 3040 Null - ok
01:49:30.0399 3040 nusb3hub (0ebc9d13cd96c15b1b18d8678a609e4b) C:\Windows\system32\DRIVERS\nusb3hub.sys
01:49:30.0400 3040 nusb3hub - ok
01:49:30.0525 3040 nusb3xhc (7bdec000d56d485021d9c1e63c2f81ca) C:\Windows\system32\DRIVERS\nusb3xhc.sys
01:49:30.0527 3040 nusb3xhc - ok
01:49:30.0644 3040 nvkflt (63bcfae1e3756a4a3ba28ca6cc92cfd9) C:\Windows\system32\DRIVERS\nvkflt.sys
01:49:30.0645 3040 nvkflt - ok
01:49:32.0432 3040 nvlddmkm (9c1996dd3c0469bc8933321f15709f5a) C:\Windows\system32\DRIVERS\nvlddmkm.sys
01:49:32.0512 3040 nvlddmkm - ok
01:49:32.0713 3040 nvpciflt (6856261c915dd080dbadae9d6b788d85) C:\Windows\system32\DRIVERS\nvpciflt.sys
01:49:32.0713 3040 nvpciflt - ok
01:49:32.0930 3040 nvraid (a4d9c9a608a97f59307c2f2600edc6a4) C:\Windows\system32\drivers\nvraid.sys
01:49:32.0931 3040 nvraid - ok
01:49:32.0966 3040 nvstor (6c1d5f70e7a6a3fd1c90d840edc048b9) C:\Windows\system32\drivers\nvstor.sys
01:49:32.0968 3040 nvstor - ok
01:49:32.0999 3040 NvStUSB (92d06926c5da2a2e62e8fb5104f44d92) C:\Windows\system32\DRIVERS\nvstusb.sys
01:49:33.0000 3040 NvStUSB - ok
01:49:33.0386 3040 NVSvc (34e5498528bb3d5a951f889f8756ad26) C:\Windows\system32\nvvsvc.exe
01:49:33.0392 3040 NVSvc - ok
01:49:34.0003 3040 nvUpdatusService (cd0bfaa6872cfe38c908d313ae17c350) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
01:49:34.0017 3040 nvUpdatusService - ok
01:49:34.0275 3040 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\DRIVERS\nv_agp.sys
01:49:34.0276 3040 nv_agp - ok
01:49:34.0562 3040 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
01:49:34.0566 3040 odserv - ok
01:49:34.0585 3040 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\DRIVERS\ohci1394.sys
01:49:34.0586 3040 ohci1394 - ok
01:49:34.0671 3040 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
01:49:34.0672 3040 ose - ok
01:49:34.0811 3040 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
01:49:34.0814 3040 p2pimsvc - ok
01:49:34.0907 3040 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
01:49:34.0911 3040 p2psvc - ok
01:49:34.0926 3040 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
01:49:34.0927 3040 Parport - ok
01:49:35.0004 3040 partmgr (90061b1acfe8ccaa5345750ffe08d8b8) C:\Windows\system32\drivers\partmgr.sys
01:49:35.0005 3040 partmgr - ok
01:49:35.0123 3040 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
01:49:35.0125 3040 PcaSvc - ok
01:49:35.0140 3040 pci (f36f6504009f2fb0dfd1b17a116ad74b) C:\Windows\system32\DRIVERS\pci.sys
01:49:35.0142 3040 pci - ok
01:49:35.0151 3040 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\DRIVERS\pciide.sys
01:49:35.0151 3040 pciide - ok
01:49:35.0175 3040 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
01:49:35.0176 3040 pcmcia - ok
01:49:35.0213 3040 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
01:49:35.0213 3040 pcw - ok
01:49:35.0344 3040 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
01:49:35.0348 3040 PEAUTH - ok
01:49:35.0411 3040 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
01:49:35.0412 3040 PerfHost - ok
01:49:35.0816 3040 pla (557e9a86f65f0de18c9b6751dfe9d3f1) C:\Windows\system32\pla.dll
01:49:35.0825 3040 pla - ok
01:49:36.0229 3040 PlugPlay (98b1721b8718164293b9701b98c52d77) C:\Windows\system32\umpnpmgr.dll
01:49:36.0233 3040 PlugPlay - ok
01:49:36.0255 3040 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
01:49:36.0256 3040 PNRPAutoReg - ok
01:49:36.0281 3040 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
01:49:36.0284 3040 PNRPsvc - ok
01:49:36.0474 3040 PolicyAgent (166eb40d1f5b47e615de3d0fffe5f243) C:\Windows\System32\ipsecsvc.dll
01:49:36.0477 3040 PolicyAgent - ok
01:49:36.0500 3040 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
01:49:36.0502 3040 Power - ok
01:49:36.0646 3040 PptpMiniport (27cc19e81ba5e3403c48302127bda717) C:\Windows\system32\DRIVERS\raspptp.sys
01:49:36.0647 3040 PptpMiniport - ok
01:49:36.0661 3040 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
01:49:36.0662 3040 Processor - ok
01:49:36.0800 3040 ProfSvc (97293447431311c06703368ad0f6c4be) C:\Windows\system32\profsvc.dll
01:49:36.0803 3040 ProfSvc - ok
01:49:36.0843 3040 ProtectedStorage (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
01:49:36.0844 3040 ProtectedStorage - ok
01:49:36.0862 3040 Psched (ee992183bd8eaefd9973f352e587a299) C:\Windows\system32\DRIVERS\pacer.sys
01:49:36.0864 3040 Psched - ok
01:49:36.0889 3040 PxHlpa64 (87b04878a6d59d6c79251dc960c674c1) C:\Windows\system32\Drivers\PxHlpa64.sys
01:49:36.0889 3040 PxHlpa64 - ok
01:49:36.0963 3040 qicflt (0928bd20273625622722fe1de5bbde57) C:\Windows\system32\DRIVERS\qicflt.sys
01:49:36.0963 3040 qicflt - ok
01:49:37.0160 3040 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
01:49:37.0169 3040 ql2300 - ok
01:49:37.0359 3040 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
01:49:37.0360 3040 ql40xx - ok
01:49:37.0569 3040 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
01:49:37.0571 3040 QWAVE - ok
01:49:37.0591 3040 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
01:49:37.0591 3040 QWAVEdrv - ok
01:49:37.0602 3040 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
01:49:37.0602 3040 RasAcd - ok
01:49:37.0696 3040 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
01:49:37.0696 3040 RasAgileVpn - ok
01:49:37.0770 3040 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
01:49:37.0772 3040 RasAuto - ok
01:49:37.0849 3040 Rasl2tp (87a6e852a22991580d6d39adc4790463) C:\Windows\system32\DRIVERS\rasl2tp.sys
01:49:37.0850 3040 Rasl2tp - ok
01:49:37.0964 3040 RasMan (47394ed3d16d053f5906efe5ab51cc83) C:\Windows\System32\rasmans.dll
01:49:37.0967 3040 RasMan - ok
01:49:38.0088 3040 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
01:49:38.0088 3040 RasPppoe - ok
01:49:38.0179 3040 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
01:49:38.0179 3040 RasSstp - ok
01:49:38.0535 3040 rdbss (3bac8142102c15d59a87757c1d41dce5) C:\Windows\system32\DRIVERS\rdbss.sys
01:49:38.0537 3040 rdbss - ok
01:49:38.0556 3040 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
01:49:38.0557 3040 rdpbus - ok
01:49:38.0574 3040 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
01:49:38.0575 3040 RDPCDD - ok
01:49:38.0635 3040 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
01:49:38.0635 3040 RDPENCDD - ok
01:49:38.0657 3040 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
01:49:38.0658 3040 RDPREFMP - ok
01:49:38.0903 3040 RDPWD (447de7e3dea39d422c1504f245b668b1) C:\Windows\system32\drivers\RDPWD.sys
01:49:38.0904 3040 RDPWD - ok
01:49:38.0945 3040 rdyboost (634b9a2181d98f15941236886164ec8b) C:\Windows\system32\drivers\rdyboost.sys
01:49:38.0947 3040 rdyboost - ok
01:49:39.0269 3040 RegSrvc (189c5a8d2098e0aa14fd157a954b34fc) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
01:49:39.0274 3040 RegSrvc - ok
01:49:39.0392 3040 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
01:49:39.0394 3040 RemoteAccess - ok
01:49:39.0434 3040 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
01:49:39.0436 3040 RemoteRegistry - ok
01:49:39.0682 3040 RoxMediaDB12OEM (3c957189b31c34d3ad21967b12b6aed7) C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe
01:49:39.0689 3040 RoxMediaDB12OEM - ok
01:49:39.0756 3040 RoxWatch12 (2b73088cc2ca757a172b425c9398e5bc) C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe
01:49:39.0758 3040 RoxWatch12 - ok
01:49:40.0200 3040 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
01:49:40.0202 3040 RpcEptMapper - ok
01:49:40.0224 3040 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
01:49:40.0225 3040 RpcLocator - ok
01:49:40.0252 3040 RpcSs (7266972e86890e2b30c0c322e906b027) C:\Windows\system32\rpcss.dll
01:49:40.0256 3040 RpcSs - ok
01:49:40.0542 3040 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
01:49:40.0543 3040 rspndr - ok
01:49:40.0643 3040 RTL8167 (a73ed14670220307874ad6bc2f279349) C:\Windows\system32\DRIVERS\Rt64win7.sys
01:49:40.0646 3040 RTL8167 - ok
01:49:40.0672 3040 SamSs (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
01:49:40.0673 3040 SamSs - ok
01:49:40.0692 3040 sbp2port (e3bbb89983daf5622c1d50cf49f28227) C:\Windows\system32\DRIVERS\sbp2port.sys
01:49:40.0693 3040 sbp2port - ok
01:49:40.0708 3040 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
01:49:40.0710 3040 SCardSvr - ok
01:49:40.0773 3040 scfilter (c94da20c7e3ba1dca269bc8460d98387) C:\Windows\system32\DRIVERS\scfilter.sys
01:49:40.0774 3040 scfilter - ok
01:49:40.0903 3040 Schedule (624d0f5ff99428bb90a5b8a4123e918e) C:\Windows\system32\schedsvc.dll
01:49:40.0911 3040 Schedule - ok
01:49:41.0022 3040 SCPolicySvc (312e2f82af11e79906898ac3e3d58a1f) C:\Windows\System32\certprop.dll
01:49:41.0023 3040 SCPolicySvc - ok
01:49:41.0124 3040 SDRSVC (765a27c3279ce11d14cb9e4f5869fca5) C:\Windows\System32\SDRSVC.dll
01:49:41.0126 3040 SDRSVC - ok
01:49:41.0296 3040 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
01:49:41.0297 3040 secdrv - ok
01:49:41.0311 3040 seclogon (463b386ebc70f98da5dff85f7e654346) C:\Windows\system32\seclogon.dll
01:49:41.0312 3040 seclogon - ok
01:49:41.0390 3040 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\System32\sens.dll
01:49:41.0392 3040 SENS - ok
01:49:41.0445 3040 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
01:49:41.0446 3040 SensrSvc - ok
01:49:41.0484 3040 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
01:49:41.0485 3040 Serenum - ok
01:49:41.0527 3040 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
01:49:41.0528 3040 Serial - ok
01:49:41.0568 3040 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
01:49:41.0568 3040 sermouse - ok
01:49:41.0645 3040 SessionEnv (c3bc61ce47ff6f4e88ab8a3b429a36af) C:\Windows\system32\sessenv.dll
01:49:41.0647 3040 SessionEnv - ok
01:49:41.0662 3040 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\DRIVERS\sffdisk.sys
01:49:41.0663 3040 sffdisk - ok
01:49:41.0688 3040 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\DRIVERS\sffp_mmc.sys
01:49:41.0688 3040 sffp_mmc - ok
01:49:41.0701 3040 sffp_sd (178298f767fe638c9fedcbdef58bb5e4) C:\Windows\system32\DRIVERS\sffp_sd.sys
01:49:41.0702 3040 sffp_sd - ok
01:49:41.0713 3040 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
01:49:41.0714 3040 sfloppy - ok
01:49:42.0010 3040 SftService (e1974a92ac0914a3859359a0a8c82c68) C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
01:49:42.0014 3040 SftService - ok
01:49:42.0294 3040 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
01:49:42.0297 3040 SharedAccess - ok
01:49:42.0334 3040 ShellHWDetection (0298ac45d0efffb2db4baa7dd186e7bf) C:\Windows\System32\shsvcs.dll
01:49:42.0337 3040 ShellHWDetection - ok
01:49:42.0431 3040 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
01:49:42.0431 3040 SiSRaid2 - ok
01:49:42.0519 3040 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
01:49:42.0520 3040 SiSRaid4 - ok
01:49:42.0581 3040 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
01:49:42.0582 3040 Smb - ok
01:49:42.0608 3040 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
01:49:42.0609 3040 SNMPTRAP - ok
01:49:42.0617 3040 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
01:49:42.0618 3040 spldr - ok
01:49:42.0647 3040 Spooler (f8e1fa03cb70d54a9892ac88b91d1e7b) C:\Windows\System32\spoolsv.exe
01:49:42.0652 3040 Spooler - ok
01:49:43.0397 3040 sppsvc (913d843498553a1bc8f8dbad6358e49f) C:\Windows\system32\sppsvc.exe
01:49:43.0419 3040 sppsvc - ok
01:49:43.0753 3040 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
01:49:43.0754 3040 sppuinotify - ok
01:49:43.0846 3040 srv (2408c0366d96bcdf63e8f1c78e4a29c5) C:\Windows\system32\DRIVERS\srv.sys
01:49:43.0849 3040 srv - ok
01:49:43.0936 3040 srv2 (76548f7b818881b47d8d1ae1be9c11f8) C:\Windows\system32\DRIVERS\srv2.sys
01:49:43.0939 3040 srv2 - ok
01:49:44.0088 3040 srvnet (0af6e19d39c70844c5caa8fb0183c36e) C:\Windows\system32\DRIVERS\srvnet.sys
01:49:44.0089 3040 srvnet - ok
01:49:44.0105 3040 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
01:49:44.0108 3040 SSDPSRV - ok
01:49:44.0119 3040 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
01:49:44.0121 3040 SstpSvc - ok
01:49:44.0206 3040 stdcfltn (92e7f6666633d2dd91d527503daa7be0) C:\Windows\system32\DRIVERS\stdcfltn.sys
01:49:44.0206 3040 stdcfltn - ok
01:49:44.0317 3040 Steam Client Service - ok
01:49:44.0420 3040 Stereo Service (8544a200c40447e465f06e58687428bb) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
01:49:44.0423 3040 Stereo Service - ok
01:49:44.0443 3040 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
01:49:44.0443 3040 stexstor - ok
01:49:44.0635 3040 stisvc (52d0e33b681bd0f33fdc08812fee4f7d) C:\Windows\System32\wiaservc.dll
01:49:44.0639 3040 stisvc - ok
01:49:44.0768 3040 stllssvr (7731f46ec0d687a931cba063e8f90ef0) C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
01:49:44.0769 3040 stllssvr - ok
01:49:44.0794 3040 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\DRIVERS\swenum.sys
01:49:44.0794 3040 swenum - ok
01:49:44.0930 3040 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
01:49:44.0934 3040 swprv - ok
01:49:45.0201 3040 SynTP (5e3b232a614339399acc71fa3aaaaa6b) C:\Windows\system32\DRIVERS\SynTP.sys
01:49:45.0210 3040 SynTP - ok
01:49:45.0670 3040 SysMain (3c1284516a62078fb68f768de4f1a7be) C:\Windows\system32\sysmain.dll
01:49:45.0681 3040 SysMain - ok
01:49:45.0988 3040 TabletInputService (238935c3cf2854886dc7cbb2a0e2cc66) C:\Windows\System32\TabSvc.dll
01:49:45.0990 3040 TabletInputService - ok
01:49:46.0169 3040 TapiSrv (884264ac597b690c5707c89723bb8e7b) C:\Windows\System32\tapisrv.dll
01:49:46.0173 3040 TapiSrv - ok
01:49:46.0196 3040 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
01:49:46.0198 3040 TBS - ok
01:49:46.0545 3040 Tcpip (624c5b3aa4c99b3184bb922d9ece3ff0) C:\Windows\system32\drivers\tcpip.sys
01:49:46.0556 3040 Tcpip - ok
01:49:47.0150 3040 TCPIP6 (624c5b3aa4c99b3184bb922d9ece3ff0) C:\Windows\system32\DRIVERS\tcpip.sys
01:49:47.0161 3040 TCPIP6 - ok
01:49:47.0377 3040 tcpipreg (76d078af6f587b162d50210f761eb9ed) C:\Windows\system32\drivers\tcpipreg.sys
01:49:47.0378 3040 tcpipreg - ok
01:49:47.0406 3040 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
01:49:47.0407 3040 TDPIPE - ok
01:49:47.0445 3040 TDTCP (7518f7bcfd4b308abc9192bacaf6c970) C:\Windows\system32\drivers\tdtcp.sys
01:49:47.0446 3040 TDTCP - ok
01:49:47.0486 3040 tdx (079125c4b17b01fcaeebce0bcb290c0f) C:\Windows\system32\DRIVERS\tdx.sys
01:49:47.0487 3040 tdx - ok
01:49:47.0543 3040 TermDD (c448651339196c0e869a355171875522) C:\Windows\system32\DRIVERS\termdd.sys
01:49:47.0543 3040 TermDD - ok
01:49:47.0787 3040 TermService (0f05ec2887bfe197ad82a13287d2f404) C:\Windows\System32\termsrv.dll
01:49:47.0792 3040 TermService - ok
01:49:47.0811 3040 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
01:49:47.0813 3040 Themes - ok
01:49:47.0877 3040 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
01:49:47.0878 3040 THREADORDER - ok
01:49:47.0951 3040 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
01:49:47.0953 3040 TrkWks - ok
01:49:48.0037 3040 TrustedInstaller (840f7fb849f5887a49ba18c13b2da920) C:\Windows\servicing\TrustedInstaller.exe
01:49:48.0039 3040 TrustedInstaller - ok
01:49:48.0137 3040 tssecsrv (61b96c26131e37b24e93327a0bd1fb95) C:\Windows\system32\DRIVERS\tssecsrv.sys
01:49:48.0137 3040 tssecsrv - ok
01:49:48.0245 3040 tunnel (3836171a2cdf3af8ef10856db9835a70) C:\Windows\system32\DRIVERS\tunnel.sys
01:49:48.0246 3040 tunnel - ok
01:49:48.0293 3040 TurboB (fd24f98d2898be093fe926604be7db99) C:\Windows\system32\DRIVERS\TurboB.sys
01:49:48.0294 3040 TurboB - ok
01:49:48.0438 3040 TurboBoost (600b406a04d90f577fea8a88d7379f08) C:\Program Files\Intel\TurboBoost\TurboBoost.exe
01:49:48.0439 3040 TurboBoost - ok
01:49:48.0535 3040 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
01:49:48.0536 3040 uagp35 - ok
01:49:48.0573 3040 udfs (31ba4a33afab6a69ea092b18017f737f) C:\Windows\system32\DRIVERS\udfs.sys
01:49:48.0575 3040 udfs - ok
01:49:48.0633 3040 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
01:49:48.0635 3040 UI0Detect - ok
01:49:48.0714 3040 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\DRIVERS\uliagpkx.sys
01:49:48.0715 3040 uliagpkx - ok
01:49:48.0788 3040 umbus (eab6c35e62b1b0db0d1b48b671d3a117) C:\Windows\system32\DRIVERS\umbus.sys
01:49:48.0788 3040 umbus - ok
01:49:48.0806 3040 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
01:49:48.0806 3040 UmPass - ok
01:49:49.0293 3040 UNS (2c16648a12999ae69a9ebf41974b0ba2) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
01:49:49.0309 3040 UNS - ok
01:49:49.0648 3040 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
01:49:49.0651 3040 upnphost - ok
01:49:49.0903 3040 USBAAPL64 (aa33fc47ed58c34e6e9261e4f850b7eb) C:\Windows\system32\Drivers\usbaapl64.sys
01:49:49.0904 3040 USBAAPL64 - ok
01:49:49.0940 3040 usbccgp (537a4e03d7103c12d42dfd8ffdb5bdc9) C:\Windows\system32\DRIVERS\usbccgp.sys
01:49:49.0941 3040 usbccgp - ok
01:49:49.0960 3040 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\DRIVERS\usbcir.sys
01:49:49.0961 3040 usbcir - ok
01:49:49.0979 3040 usbehci (fbb21ebe49f6d560db37ac25fbc68e66) C:\Windows\system32\drivers\usbehci.sys
01:49:49.0979 3040 usbehci - ok
01:49:50.0190 3040 usbhub (6b7a8a99c4a459e73c286a6763ea24cc) C:\Windows\system32\DRIVERS\usbhub.sys
01:49:50.0192 3040 usbhub - ok
01:49:50.0232 3040 usbohci (8c88aa7617b4cbc2e4bed61d26b33a27) C:\Windows\system32\drivers\usbohci.sys
01:49:50.0232 3040 usbohci - ok
01:49:50.0285 3040 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
01:49:50.0286 3040 usbprint - ok
01:49:50.0337 3040 USBSTOR (f39983647bc1f3e6100778ddfe9dce29) C:\Windows\system32\DRIVERS\USBSTOR.SYS
01:49:50.0338 3040 USBSTOR - ok
01:49:50.0417 3040 usbuhci (0b5b3b2df3fd1709618acfa50b8392b0) C:\Windows\system32\drivers\usbuhci.sys
01:49:50.0417 3040 usbuhci - ok
01:49:50.0493 3040 usbvideo (7cb8c573c6e4a2714402cc0a36eab4fe) C:\Windows\system32\Drivers\usbvideo.sys
01:49:50.0495 3040 usbvideo - ok
01:49:50.0520 3040 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
01:49:50.0522 3040 UxSms - ok
01:49:50.0574 3040 VaultSvc (156f6159457d0aa7e59b62681b56eb90) C:\Windows\system32\lsass.exe
01:49:50.0575 3040 VaultSvc - ok
01:49:50.0640 3040 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\DRIVERS\vdrvroot.sys
01:49:50.0641 3040 vdrvroot - ok
01:49:50.0707 3040 vds (44d73e0bbc1d3c8981304ba15135c2f2) C:\Windows\System32\vds.exe
01:49:50.0711 3040 vds - ok
01:49:50.0745 3040 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
01:49:50.0746 3040 vga - ok
01:49:50.0818 3040 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
01:49:50.0818 3040 VgaSave - ok
01:49:50.0941 3040 vhdmp (c82e748660f62a242b2dfac1442f22a4) C:\Windows\system32\DRIVERS\vhdmp.sys
01:49:50.0942 3040 vhdmp - ok
01:49:50.0956 3040 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\DRIVERS\viaide.sys
01:49:50.0957 3040 viaide - ok
01:49:50.0974 3040 volmgr (2b1a3dae2b4e70dbba822b7a03fbd4a3) C:\Windows\system32\DRIVERS\volmgr.sys
01:49:50.0974 3040 volmgr - ok
01:49:50.0997 3040 volmgrx (99b0cbb569ca79acaed8c91461d765fb) C:\Windows\system32\drivers\volmgrx.sys
01:49:51.0000 3040 volmgrx - ok
01:49:51.0162 3040 volsnap (58f82eed8ca24b461441f9c3e4f0bf5c) C:\Windows\system32\DRIVERS\volsnap.sys
01:49:51.0164 3040 volsnap - ok
01:49:51.0386 3040 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
01:49:51.0387 3040 vsmraid - ok
01:49:51.0761 3040 VSS (787898bf9fb6d7bd87a36e2d95c899ba) C:\Windows\system32\vssvc.exe
01:49:51.0772 3040 VSS - ok
01:49:52.0205 3040 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
01:49:52.0205 3040 vwifibus - ok
01:49:52.0229 3040 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
01:49:52.0230 3040 vwififlt - ok
01:49:52.0264 3040 vwifimp (6a638fc4bfddc4d9b186c28c91bd1a01) C:\Windows\system32\DRIVERS\vwifimp.sys
01:49:52.0265 3040 vwifimp - ok
01:49:52.0523 3040 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
01:49:52.0527 3040 W32Time - ok
01:49:52.0542 3040 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
01:49:52.0542 3040 WacomPen - ok
01:49:52.0573 3040 WANARP (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
01:49:52.0574 3040 WANARP - ok
01:49:52.0592 3040 Wanarpv6 (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
01:49:52.0593 3040 Wanarpv6 - ok
01:49:53.0018 3040 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
01:49:53.0026 3040 WatAdminSvc - ok
01:49:53.0422 3040 wbengine (5ab1bb85bd8b5089cc5d64200dedae68) C:\Windows\system32\wbengine.exe
01:49:53.0432 3040 wbengine - ok
01:49:53.0723 3040 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
01:49:53.0725 3040 WbioSrvc - ok
01:49:53.0823 3040 wcncsvc (dd1bae8ebfc653824d29ccf8c9054d68) C:\Windows\System32\wcncsvc.dll
01:49:53.0827 3040 wcncsvc - ok
01:49:53.0842 3040 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
01:49:53.0843 3040 WcsPlugInService - ok
01:49:53.0877 3040 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
01:49:53.0878 3040 Wd - ok
01:49:54.0057 3040 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
01:49:54.0061 3040 Wdf01000 - ok
01:49:54.0097 3040 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
01:49:54.0099 3040 WdiServiceHost - ok
01:49:54.0101 3040 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
01:49:54.0103 3040 WdiSystemHost - ok
01:49:54.0158 3040 wdkmd (94dc2bf6cbaaa95e369c3756d3115a76) C:\Windows\system32\DRIVERS\WDKMD.sys
01:49:54.0159 3040 wdkmd - ok
01:49:54.0301 3040 WebClient (733006127f235be7c35354ebee7b9a7b) C:\Windows\System32\webclnt.dll
01:49:54.0304 3040 WebClient - ok
01:49:54.0324 3040 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
01:49:54.0326 3040 Wecsvc - ok
01:49:54.0342 3040 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
01:49:54.0344 3040 wercplsupport - ok
01:49:54.0483 3040 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
01:49:54.0484 3040 WerSvc - ok
01:49:54.0543 3040 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
01:49:54.0544 3040 WfpLwf - ok
01:49:54.0601 3040 WimFltr (b14ef15bd757fa488f9c970eee9c0d35) C:\Windows\system32\DRIVERS\wimfltr.sys
01:49:54.0603 3040 WimFltr - ok
01:49:54.0638 3040 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
01:49:54.0639 3040 WIMMount - ok
01:49:54.0692 3040 WinDefend - ok
01:49:54.0697 3040 WinHttpAutoProxySvc - ok
01:49:55.0064 3040 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
01:49:55.0066 3040 Winmgmt - ok
01:49:55.0231 3040 WinRM (41fbb751936b387f9179e7f03a74fe29) C:\Windows\system32\WsmSvc.dll
01:49:55.0244 3040 WinRM - ok
01:49:55.0683 3040 WinUsb (4d52c872018af7e18d078978dcc3f6f2) C:\Windows\system32\DRIVERS\WinUsb.sys
01:49:55.0684 3040 WinUsb - ok
01:49:55.0724 3040 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
01:49:55.0730 3040 Wlansvc - ok
01:49:55.0828 3040 wlcrasvc (06c8fa1cf39de6a735b54d906ba791c6) C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
01:49:55.0828 3040 wlcrasvc - ok
01:49:56.0064 3040 wlidsvc (7e47c328fc4768cb8beafbcfafa70362) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
01:49:56.0077 3040 wlidsvc - ok
01:49:56.0339 3040 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\DRIVERS\wmiacpi.sys
01:49:56.0340 3040 WmiAcpi - ok
01:49:56.0538 3040 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
01:49:56.0540 3040 wmiApSrv - ok
01:49:56.0579 3040 WMPNetworkSvc - ok
01:49:56.0622 3040 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
01:49:56.0624 3040 WPCSvc - ok
01:49:56.0798 3040 WPDBusEnum (2e57ddf2880a7e52e76f41c7e96d327b) C:\Windows\system32\wpdbusenum.dll
01:49:56.0800 3040 WPDBusEnum - ok
01:49:56.0830 3040 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
01:49:56.0830 3040 ws2ifsl - ok
01:49:56.0944 3040 wscsvc (8f9f3969933c02da96eb0f84576db43e) C:\Windows\System32\wscsvc.dll
01:49:56.0946 3040 wscsvc - ok
01:49:56.0948 3040 WSearch - ok
01:49:57.0188 3040 wuauserv (d9ef901dca379cfe914e9fa13b73b4c4) C:\Windows\system32\wuaueng.dll
01:49:57.0203 3040 wuauserv - ok
01:49:57.0828 3040 WudfPf (c63907207b837a5c05cf6d1606aa0008) C:\Windows\system32\drivers\WudfPf.sys
01:49:57.0829 3040 WudfPf - ok
01:49:57.0879 3040 WUDFRd (d885a873d733020f8b9b9ff4b1666158) C:\Windows\system32\DRIVERS\WUDFRd.sys
01:49:57.0881 3040 WUDFRd - ok
01:49:57.0905 3040 wudfsvc (27b9bee5aac00139e3a3af5d6227a0dc) C:\Windows\System32\WUDFSvc.dll
01:49:57.0907 3040 wudfsvc - ok
01:49:57.0998 3040 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
01:49:58.0001 3040 WwanSvc - ok
01:49:58.0038 3040 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
01:49:58.0930 3040 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
01:49:58.0930 3040 \Device\Harddisk0\DR0 - detected TDSS File System (1)
01:49:58.0933 3040 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk1\DR1
01:49:59.0265 3040 \Device\Harddisk1\DR1 - ok
01:49:59.0283 3040 Boot (0x1200) (251e18e7bd8c106978596b6f6ca4b8c9) \Device\Harddisk0\DR0\Partition0
01:49:59.0286 3040 \Device\Harddisk0\DR0\Partition0 - ok
01:49:59.0298 3040 Boot (0x1200) (683c52ad82086aedc39384b3d0160f54) \Device\Harddisk0\DR0\Partition1
01:49:59.0306 3040 \Device\Harddisk0\DR0\Partition1 - ok
01:49:59.0308 3040 Boot (0x1200) (29d2d24fcec075a0fad6c2561ff6b108) \Device\Harddisk1\DR1\Partition0
01:49:59.0310 3040 \Device\Harddisk1\DR1\Partition0 - ok
01:49:59.0310 3040 ============================================================
01:49:59.0310 3040 Scan finished
01:49:59.0310 3040 ============================================================
01:49:59.0317 2000 Detected object count: 1
01:49:59.0317 2000 Actual detected object count: 1
01:50:14.0242 2000 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
01:50:14.0242 2000 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-08-13 01:44:53
-----------------------------
01:44:53.331 OS Version: Windows x64 6.1.7600
01:44:53.331 Number of processors: 8 586 0x2A07
01:44:53.332 ComputerName: BRITTNI-PC UserName: Brittni
01:44:54.541 Initialize success
01:46:17.713 AVAST engine defs: 12081201
01:46:41.465 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
01:46:41.467 Disk 0 Vendor: ST9500420AS D005SDM1 Size: 476940MB BusType: 11
01:46:41.480 Disk 1 \Device\Harddisk1\DR1 -> \Device\Ide\IdeDeviceP1T0L0-1
01:46:41.494 Disk 1 Vendor: ST9500420AS D005SDM1 Size: 476940MB BusType: 11
01:46:41.523 Disk 0 MBR read successfully
01:46:41.525 Disk 0 MBR scan
01:46:41.529 Disk 0 Windows 7 default MBR code
01:46:41.543 Disk 0 Partition 1 00 DE Dell Utility Dell 8.0 101 MB offset 63
01:46:41.563 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 15000 MB offset 208845
01:46:41.586 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 461837 MB offset 30928845
01:46:41.612 Disk 0 scanning C:\Windows\system32\drivers
01:46:51.261 Service scanning
01:47:09.267 Modules scanning
01:47:09.612 Disk 0 trace - called modules:
01:47:09.647 ntoskrnl.exe CLASSPNP.SYS disk.sys stdcfltn.sys ataport.SYS PCIIDEX.SYS hal.dll msahci.sys
01:47:09.659 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8007a42060]
01:47:09.664 3 CLASSPNP.SYS[fffff880018b043f] -> nt!IofCallDriver -> [0xfffffa800785e900]
01:47:09.668 5 stdcfltn.sys[fffff880019c6c52] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0xfffffa80076d7060]
01:47:11.405 AVAST engine scan C:\Windows
01:47:13.033 AVAST engine scan C:\Windows\system32
01:50:15.653 AVAST engine scan C:\Windows\system32\drivers
01:50:32.183 AVAST engine scan C:\Users\Brittni
02:05:03.816 AVAST engine scan C:\ProgramData
02:05:52.428 Scan finished successfully
02:16:25.065 Disk 0 MBR has been saved successfully to "C:\Users\Brittni\Desktop\MBR.dat"
02:16:25.070 The log file has been saved successfully to "C:\Users\Brittni\Desktop\aswMBR.txt"

C:\Users\Brittni\AppData\Local\Temp\jar_cache3262682314264164468.tmp a variant of Win32/Kryptik.AJFC trojan cleaned by deleting - quarantined
C:\Users\Brittni\AppData\Local\Temp\msd4795902.exe a variant of Win32/Kryptik.AJFC trojan cleaned by deleting - quarantined

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:20 PM

Posted 13 August 2012 - 01:56 AM

Download

http://www.techspot.com/downloads/4716-malwarebytes-anti-malware.html

Install,update and run a full scan

Click on SHOW results.Select all infections and remove it

Reboot the PC and scan MBAM once in regular mode until you get a clean log

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size

Click Go and post the result.

Download

FSS

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.


Download

adware cleaner

Launch it click on Delete

post the generated log

#5 voltagevoltagemusic

voltagevoltagemusic
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:08:20 PM

Posted 13 August 2012 - 02:14 AM

Ran MalwareBytes before I posted and it was clean.

MiniToolBox by Farbar Version: 23-07-2012
Ran by Brittni (administrator) on 13-08-2012 at 03:08:49
Microsoft Windows 7 Home Premium (X64)
Boot Mode: Network
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================



========================= IP Configuration: ================================

Intel® WiFi Link 1000 BGN = Wireless Network Connection (Connected)
Realtek PCIe GBE Family Controller = Local Area Connection (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled
add address name="Wireless Network Connection 3" address=192.168.16.2


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Brittni-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : maine.rr.com

Wireless LAN adapter Wireless Network Connection 2:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
Physical Address. . . . . . . . . : 8C-A9-82-56-14-B3
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . : maine.rr.com
Description . . . . . . . . . . . : Intel® WiFi Link 1000 BGN
Physical Address. . . . . . . . . : 8C-A9-82-56-14-B2
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::1d40:2218:93e9:76cf%13(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.0.199(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Monday, August 13, 2012 12:36:57 AM
Lease Expires . . . . . . . . . . : Tuesday, August 14, 2012 12:36:57 AM
Default Gateway . . . . . . . . . : 192.168.0.1
DHCP Server . . . . . . . . . . . : 192.168.0.1
DHCPv6 IAID . . . . . . . . . . . : 244099458
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-15-41-4D-4F-14-FE-B5-A6-C9-40
DNS Servers . . . . . . . . . . . : 192.168.0.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : CD-DL.TEST
Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
Physical Address. . . . . . . . . : 14-FE-B5-A6-C9-40
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 13:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{DCCB20F0-8ACB-4D8F-9EC4-9FD4220919B9}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.maine.rr.com:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
DNS request timed out.
timeout was 2 seconds.
Server: UnKnown
Address: 192.168.0.1

DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.
Name: google.com
Addresses: 2607:f8b0:4004:802::100e
74.125.228.67
74.125.228.68
74.125.228.69
74.125.228.70
74.125.228.71
74.125.228.72
74.125.228.73
74.125.228.78
74.125.228.64
74.125.228.65
74.125.228.66


Pinging google.com [74.125.228.33] with 32 bytes of data:
Reply from 74.125.228.33: bytes=32 time=474ms TTL=53
Reply from 74.125.228.33: bytes=32 time=42ms TTL=53

Ping statistics for 74.125.228.33:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 42ms, Maximum = 474ms, Average = 258ms
DNS request timed out.
timeout was 2 seconds.
Server: UnKnown
Address: 192.168.0.1

DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.

Pinging yahoo.com [209.191.122.70] with 32 bytes of data:
Reply from 209.191.122.70: bytes=32 time=169ms TTL=52
Reply from 209.191.122.70: bytes=32 time=76ms TTL=52

Ping statistics for 209.191.122.70:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 76ms, Maximum = 169ms, Average = 122ms
DNS request timed out.
timeout was 2 seconds.
Server: UnKnown
Address: 192.168.0.1

DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.

Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
14...8c a9 82 56 14 b3 ......Microsoft Virtual WiFi Miniport Adapter
13...8c a9 82 56 14 b2 ......Intel® WiFi Link 1000 BGN
11...14 fe b5 a6 c9 40 ......Realtek PCIe GBE Family Controller
1...........................Software Loopback Interface 1
12...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter
17...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
16...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
18...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.0.1 192.168.0.199 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.0.0 255.255.255.0 On-link 192.168.0.199 281
192.168.0.199 255.255.255.255 On-link 192.168.0.199 281
192.168.0.255 255.255.255.255 On-link 192.168.0.199 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.0.199 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.0.199 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
13 281 fe80::/64 On-link
13 281 fe80::1d40:2218:93e9:76cf/128
On-link
1 306 ff00::/8 On-link
13 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [51712] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 09 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70144] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 09 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (08/13/2012 00:34:59 AM) (Source: McLogEvent) (User: NT AUTHORITY)NT AUTHORITY
Description: MCSCAN32 Engine Initialisation failed.
Engine returned error : 3

Error: (08/13/2012 00:34:02 AM) (Source: McLogEvent) (User: NT AUTHORITY)NT AUTHORITY
Description: MCSCAN32 Engine Initialisation failed.
Engine returned error : 3

Error: (08/09/2012 08:59:05 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest.

Error: (08/08/2012 11:32:59 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest.

Error: (08/08/2012 08:50:17 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 6483370

Error: (08/08/2012 08:50:17 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 6483370

Error: (08/08/2012 08:50:17 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (08/08/2012 08:50:16 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 6482372

Error: (08/08/2012 08:50:16 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 6482372

Error: (08/08/2012 08:50:16 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second


System errors:
=============
Error: (08/13/2012 02:43:21 AM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (08/13/2012 02:43:21 AM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (08/13/2012 02:43:21 AM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (08/13/2012 02:43:19 AM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (08/13/2012 02:43:19 AM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (08/13/2012 02:43:19 AM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (08/13/2012 02:43:19 AM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (08/13/2012 02:43:19 AM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (08/13/2012 02:43:19 AM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (08/13/2012 02:43:19 AM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068


Microsoft Office Sessions:
=========================

=========================== Installed Programs ============================

Update for Microsoft Office 2007 (KB2508958)
7-Zip 9.20 (x64 edition) (Version: 9.20.00.0)
AccelerometerP11 (Version: 2.00.11.22)
Adobe Flash Player 10 ActiveX (Version: 10.2.152.26)
Adobe Flash Player 11 Plugin (Version: 11.3.300.268)
Adobe Reader 9.1.2 (Version: 9.1.2)
Advanced Audio FX Engine (Version: 1.12.05)
AIM for Windows
AOL Instant Messenger
Apple Application Support (Version: 2.1.6)
Apple Mobile Device Support (Version: 4.0.0.97)
Apple Software Update (Version: 2.1.3.127)
Bonjour (Version: 3.0.0.10)
Call of Duty: Modern Warfare 3
Call of Duty: Modern Warfare 3 - Dedicated Server
Call of Duty: Modern Warfare 3 - Multiplayer
Cozi (Version: 1.0.4323.24051)
CyberLink PowerDVD 9.6 (Version: 9.6.1.3522)
D3DX10 (Version: 15.4.2368.0902)
Dell DataSafe Local Backup - Support Software
Dell DataSafe Local Backup (Version: 9.4.47)
Dell DataSafe Online (Version: 2.1.19634)
Dell Edoc Viewer (Version: 1.0.0)
Dell Getting Started Guide (Version: 1.00.0000)
Dell Home Systems Service Agreement (Version: 2.0.0)
Dell MusicStage (Version: 1.4.162.0)
Dell PhotoStage (Version: 1.5.0.30)
Dell Stage (Version: 1.4.173.0)
Dell Support Center (Version: 3.0.5621.01)
Dell VideoStage (Version: 1.1.1.1408)
Dell Webcam Central (Version: 2.00.35)
DirectX 9 Runtime (Version: 1.00.0000)
eBay (Version: 1.4.0)
ESET Online Scanner v3
Exif Pilot 4.4 (Version: 4.4)
Google Chrome (Version: 21.0.1180.75)
Google Talk Plugin (Version: 3.3.3.8675)
GoToAssist Corporate (Version: 9.1.0.615)
GoToMeeting 5.1.0.880 (Version: 5.1.0.880)
Intel PROSet Wireless
Intel® Control Center (Version: 1.2.1.1007)
Intel® Management Engine Components (Version: 7.0.0.1144)
Intel® Processor Graphics (Version: 8.15.10.2321)
Intel® PROSet/Wireless WiFi Software (Version: 14.00.1000)
Intel® Turbo Boost Technology Monitor 2.0 (Version: 2.1.23.0)
Intel® Wireless Display
Intel® Wireless Display (Version: 2.0.27.0)
Internet Explorer (Version: 8)
iTunes (Version: 10.5.3.3)
Java Auto Updater (Version: 2.1.6.0)
Java™ 6 Update 24 (64-bit) (Version: 6.0.240)
Java™ 7 Update 5 (Version: 7.0.50)
JavaFX 2.1.1 (Version: 2.1.1)
Junk Mail filter update (Version: 15.4.3502.0922)
Malwarebytes Anti-Malware version 1.62.0.1300 (Version: 1.62.0.1300)
McAfee SecurityCenter (Version: 11.0.678)
Mesh Runtime (Version: 15.4.5722.2)
Messenger Companion (Version: 15.4.3502.0922)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office 2010 (Version: 14.0.4763.1000)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Home and Student 2007 (Version: 12.0.6612.1000)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
middle_man
Mozilla Firefox 14.0.1 (x86 en-US) (Version: 14.0.1)
Mozilla Maintenance Service (Version: 14.0.1)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
NVIDIA 3D Vision Driver 295.73 (Version: 295.73)
NVIDIA Control Panel 295.73 (Version: 295.73)
NVIDIA Graphics Driver 295.73 (Version: 295.73)
NVIDIA HD Audio Driver 1.3.12.0 (Version: 1.3.12.0)
NVIDIA Install Application (Version: 2.1002.62.312)
NVIDIA Optimus 1.7.11 (Version: 1.7.11)
NVIDIA PhysX (Version: 9.12.0209)
NVIDIA PhysX System Software 9.12.0209 (Version: 9.12.0209)
NVIDIA Stereoscopic 3D Driver (Version: 7.17.12.9573)
NVIDIA Update Components (Version: 1.7.11)
PhotoShowExpress (Version: 2.0.063)
Quickset64 (Version: 11.0.10)
RBVirtualFolder64Inst (Version: 1.00.0000)
Realtek High Definition Audio Driver (Version: 6.0.1.6263)
Roxio Activation Module (Version: 1.0)
Roxio BackOnTrack (Version: 1.3.3)
Roxio Burn (Version: 1.8)
Roxio Creator Starter (Version: 1.0.439)
Roxio Creator Starter (Version: 12.1.77.0)
Roxio Creator Starter (Version: 5.0.0)
Roxio Express Labeler 3 (Version: 3.2.2)
Roxio File Backup (Version: 1.3.2)
Skype Toolbars (Version: 1.0.4051)
Skype™ 4.2 (Version: 4.2.169)
Sonic CinePlayer Decoder Pack (Version: 4.3.0)
Steam (Version: 1.0.0.0)
Synaptics Pointing Device Driver (Version: 15.1.15.0)
System Requirements Lab
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
Viewpoint Media Player
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3508.1109)
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3508.1109)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3502.0922)
Windows Live Messenger Companion Core (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)

========================= Memory info: ===================================

Percentage of memory in use: 25%
Total physical RAM: 8086.17 MB
Available physical RAM: 5984.32 MB
Total Pagefile: 16170.45 MB
Available Pagefile: 14327.19 MB
Total Virtual: 4095.88 MB
Available Virtual: 3974.94 MB

========================= Partitions: =====================================

1 Drive c: (OS) (Fixed) (Total:451.01 GB) (Free:306.24 GB) NTFS
2 Drive d: () (Fixed) (Total:465.76 GB) (Free:452.08 GB) NTFS

========================= Users: ========================================

User accounts for \\BRITTNI-PC

Administrator Brittni Guest
UpdatusUser


**** End of log ****

Farbar Service Scanner Version: 06-08-2012
Ran by Brittni (administrator) on 13-08-2012 at 03:10:09
Running from "C:\Users\Brittni\Downloads"
Microsoft Windows 7 Home Premium (X64)
Boot Mode: Network
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============
MpsSvc Service is not running. Checking service configuration:
The start type of MpsSvc service is OK.
The ImagePath of MpsSvc service is OK.
The ServiceDll of MpsSvc service is OK.


Firewall Disabled Policy:
==================


System Restore:
============
SDRSVC Service is not running. Checking service configuration:
The start type of SDRSVC service is OK.
The ImagePath of SDRSVC service is OK.
The ServiceDll of SDRSVC service is OK.

VSS Service is not running. Checking service configuration:
The start type of VSS service is OK.
The ImagePath of VSS service is OK.


System Restore Disabled Policy:
========================


Action Center:
============
wscsvc Service is not running. Checking service configuration:
The start type of wscsvc service is OK.
The ImagePath of wscsvc service is OK.
The ServiceDll of wscsvc service is OK.


Windows Update:
============
wuauserv Service is not running. Checking service configuration:
The start type of wuauserv service is OK.
The ImagePath of wuauserv service is OK.
The ServiceDll of wuauserv service is OK.

BITS Service is not running. Checking service configuration:
The start type of BITS service is OK.
The ImagePath of BITS service is OK.
The ServiceDll of BITS service is OK.

EventSystem Service is not running. Checking service configuration:
The start type of EventSystem service is OK.
The ImagePath of EventSystem service is OK.
The ServiceDll of EventSystem service is OK.


Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys
[2012-02-25 01:04] - [2011-12-27 23:59] - 0499200 ____A (Microsoft Corporation) DB9D6C6B2CD95A9CA414D045B627422E

C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys
[2012-05-11 14:24] - [2012-03-30 07:09] - 1895280 ____A (Microsoft Corporation) 624C5B3AA4C99B3184BB922D9ECE3FF0

C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll
[2009-07-13 20:09] - [2009-07-13 21:41] - 0824832 ____A (Microsoft Corporation) AECAB449567D1846DAD63ECE49E893E3

C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll
[2009-07-13 19:36] - [2009-07-13 21:41] - 0170496 ____A (Microsoft Corporation) 765A27C3279CE11D14CB9E4F5869FCA5

C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll
[2012-06-14 00:52] - [2012-04-24 01:59] - 0182272 ____A (Microsoft Corporation) F02786B66375292E58C8777082D4396D

C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****

# AdwCleaner v1.800 - Logfile created 08/13/2012 at 03:10:36
# Updated 01/08/2012 by Xplode
# Operating system : Windows 7 Home Premium (64 bits)
# User : Brittni - BRITTNI-PC
# Running from : C:\Users\Brittni\Downloads\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

Folder Deleted : C:\ProgramData\Viewpoint
Folder Deleted : C:\Program Files (x86)\Viewpoint

***** [Registry] *****

Key Deleted : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtl
Key Deleted : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtl.1
Key Deleted : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtlSecondary
Key Deleted : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtlSecondary.1
Key Deleted : HKLM\SOFTWARE\MetaStream
Key Deleted : HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{03F998B2-0E00-11D3-A498-00104B6EB52E}
Key Deleted : HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ViewpointMediaPlayer
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@viewpoint.com/VMP
Key Deleted : HKLM\SOFTWARE\Viewpoint

***** [Registre - GUID] *****

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{03F998B2-0E00-11D3-A498-00104B6EB52E}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16421

[OK] Registry is clean.

-\\ Mozilla Firefox v14.0.1 (en-US)

Profile name : default
File : C:\Users\Brittni\AppData\Roaming\Mozilla\Firefox\Profiles\6ackxnah.default\prefs.js

[OK] File is clean.

-\\ Google Chrome v21.0.1180.75

File : C:\Users\Brittni\AppData\Local\Google\Chrome\User Data\Default\Preferences

Deleted : "description": "The fastest way to search the web.",

*************************

AdwCleaner[S1].txt - [1899 octets] - [13/08/2012 03:10:36]

########## EOF - C:\AdwCleaner[S1].txt - [2027 octets] ##########

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:20 PM

Posted 13 August 2012 - 02:23 AM

Download

Windows repair tool

Extract and launch the Repair_Windows.exe file

Click on Start repairs tab-click on Start

check mark following options alone

Reset registry permissions
reset file permissions
Repair WMI
Repair Windows Firewall.
Remove Policies Set By Infections



Checkmark Restart System When Finished option
click the Start button

System should restart after repair

Post the FSS log

#7 voltagevoltagemusic

voltagevoltagemusic
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:08:20 PM

Posted 13 August 2012 - 03:05 AM

The system repaired am I supposed to rerun FSS again?

#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:20 PM

Posted 13 August 2012 - 03:08 AM

Yes,restart the PC and run FSS again

#9 voltagevoltagemusic

voltagevoltagemusic
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:08:20 PM

Posted 13 August 2012 - 03:09 AM

Farbar Service Scanner Version: 06-08-2012
Ran by Brittni (administrator) on 13-08-2012 at 04:08:19
Running from "C:\Users\Brittni\Downloads"
Microsoft Windows 7 Home Premium (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys
[2012-02-25 01:04] - [2011-12-27 23:59] - 0499200 ____A (Microsoft Corporation) DB9D6C6B2CD95A9CA414D045B627422E

C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys
[2012-05-11 14:24] - [2012-03-30 07:09] - 1895280 ____A (Microsoft Corporation) 624C5B3AA4C99B3184BB922D9ECE3FF0

C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll
[2009-07-13 20:09] - [2009-07-13 21:41] - 0824832 ____A (Microsoft Corporation) AECAB449567D1846DAD63ECE49E893E3

C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll
[2009-07-13 19:36] - [2009-07-13 21:41] - 0170496 ____A (Microsoft Corporation) 765A27C3279CE11D14CB9E4F5869FCA5

C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll
[2012-06-14 00:52] - [2012-04-24 01:59] - 0182272 ____A (Microsoft Corporation) F02786B66375292E58C8777082D4396D

C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****

#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:20 PM

Posted 13 August 2012 - 03:10 AM

You should able to turn on mcafee now.Let me know if it works

#11 voltagevoltagemusic

voltagevoltagemusic
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:08:20 PM

Posted 13 August 2012 - 03:21 AM

It works, thanks!

#12 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:20 PM

Posted 13 August 2012 - 03:25 AM

Download

TFC

Launch it,it will close all running programs

click on START,it should ask for reboot.If TFC locks up the system,run it in safemode

Turn off your system restore,restart the PC,create a new restore point

http://windows.microsoft.com/en-US/windows7/Turn-System-Restore-on-or-off

Update your flash player

Update your JAVA from here

http://java.com/en/download/inc/windows_upgrade_xpi.jsp

Update your antivirus frequently,do not click on suspicious links

Safe surfing :)




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users