Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

ad pop up in bottom right corner of desktop


  • Please log in to reply
23 replies to this topic

#1 coral67

coral67

  • Members
  • 54 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Switzerland
  • Local time:02:45 PM

Posted 07 October 2012 - 03:00 AM

Hi

A couple of weeks ago approximately I started getting an ad pop up in the bottom right corner of my desktop. It's not clickable, it doesn't direct anywhere, it just stays a few seconds then disappears. I couldn't pinpoint exactly when it started or what software or event it might have come with.

I ran Kaspersky Pure full scan but it found nothing, I also ran Malwarebytes Anti-Malware full scan and it detected nothing. Then I ran Kaspersky's TDSSKiller and it only detected "Akamai" as being suspicious.

I run windows7 ultimate 64bit.

If someone could advise me and possibly help me determine if my machine if infected or not I'd be very grateful.

Thanks

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:45 AM

Posted 07 October 2012 - 04:06 AM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here.If you get crashes in normal mode,run it in safemode with networking

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 coral67

coral67
  • Topic Starter

  • Members
  • 54 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Switzerland
  • Local time:02:45 PM

Posted 07 October 2012 - 08:41 AM

Thanks for replying so quickly.

I seem to have problems running aswMBR, in normal mode the system crashes then restarts, in safe mode it has now been running for 4 hours and has been scanning the same folder for close to 2 hours.
I don't know if it's normal or if it got stuck?

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:45 AM

Posted 07 October 2012 - 09:12 AM

Skip ASWMBR and post other logs

#5 coral67

coral67
  • Topic Starter

  • Members
  • 54 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Switzerland
  • Local time:02:45 PM

Posted 07 October 2012 - 12:35 PM

TDSSKiller
-----------------------


11:27:09.0277 3404 TDSS rootkit removing tool 2.8.10.0 Sep 17 2012 19:23:24
11:27:09.0492 3404 ============================================================
11:27:09.0492 3404 Current date / time: 2012/10/07 11:27:09.0492
11:27:09.0492 3404 SystemInfo:
11:27:09.0492 3404
11:27:09.0492 3404 OS Version: 6.1.7601 ServicePack: 1.0
11:27:09.0492 3404 Product type: Workstation
11:27:09.0492 3404 ComputerName: ISABELLA-PC
11:27:09.0493 3404 UserName: Isabella
11:27:09.0493 3404 Windows directory: C:\Windows
11:27:09.0493 3404 System windows directory: C:\Windows
11:27:09.0493 3404 Running under WOW64
11:27:09.0493 3404 Processor architecture: Intel x64
11:27:09.0493 3404 Number of processors: 8
11:27:09.0493 3404 Page size: 0x1000
11:27:09.0493 3404 Boot type: Normal boot
11:27:09.0493 3404 ============================================================
11:27:12.0536 3404 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
11:27:12.0553 3404 ============================================================
11:27:12.0553 3404 \Device\Harddisk0\DR0:
11:27:12.0553 3404 MBR partitions:
11:27:12.0553 3404 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x14000, BlocksNum 0x1D4C000
11:27:12.0553 3404 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1D60000, BlocksNum 0x38625830
11:27:12.0553 3404 ============================================================
11:27:12.0651 3404 C: <-> \Device\Harddisk0\DR0\Partition2
11:27:12.0651 3404 ============================================================
11:27:12.0651 3404 Initialize success
11:27:12.0651 3404 ============================================================
11:27:25.0947 9876 ============================================================
11:27:25.0947 9876 Scan started
11:27:25.0947 9876 Mode: Manual; TDLFS;
11:27:25.0947 9876 ============================================================
11:27:27.0852 9876 ================ Scan system memory ========================
11:27:27.0852 9876 System memory - ok
11:27:27.0853 9876 ================ Scan services =============================
11:27:28.0203 9876 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
11:27:28.0210 9876 1394ohci - ok
11:27:28.0241 9876 [ C49C56B35BFC6CDA8D1FDCAD2885568F ] Acceler C:\Windows\system32\DRIVERS\Acceler.sys
11:27:28.0265 9876 Acceler - ok
11:27:28.0346 9876 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
11:27:28.0353 9876 ACPI - ok
11:27:28.0398 9876 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
11:27:28.0400 9876 AcpiPmi - ok
11:27:28.0712 9876 [ 0B3601ECEA5D6D41CCAE143355892061 ] AcrSch2Svc C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
11:27:28.0734 9876 AcrSch2Svc - ok
11:27:28.0911 9876 [ E12CFCF1DDBFC50948A75E6E38793225 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
11:27:28.0914 9876 AdobeFlashPlayerUpdateSvc - ok
11:27:28.0971 9876 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
11:27:28.0996 9876 adp94xx - ok
11:27:29.0025 9876 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
11:27:29.0042 9876 adpahci - ok
11:27:29.0047 9876 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
11:27:29.0054 9876 adpu320 - ok
11:27:29.0082 9876 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
11:27:29.0089 9876 AeLookupSvc - ok
11:27:29.0158 9876 [ B794DD8ACC5CC76177156463DAB4BEBB ] afcdp C:\Windows\system32\DRIVERS\afcdp.sys
11:27:29.0167 9876 afcdp - ok
11:27:29.0284 9876 [ 5555E5CE43DE53FE4C2F19A1163C49A0 ] afcdpsrv C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
11:27:29.0302 9876 afcdpsrv - ok
11:27:29.0391 9876 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
11:27:29.0412 9876 AFD - ok
11:27:29.0485 9876 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
11:27:29.0494 9876 agp440 - ok
11:27:29.0771 9876 [ 0923671CF87CD511E46D4668B53F5E76 ] Akamai c:\program files (x86)\common files\akamai/netsession_win_5891ae0.dll
11:27:29.0772 9876 Suspicious file (Hidden): c:\program files (x86)\common files\akamai/netsession_win_5891ae0.dll. md5: 0923671CF87CD511E46D4668B53F5E76
11:27:29.0778 9876 Akamai ( HiddenFile.Multi.Generic ) - warning
11:27:29.0778 9876 Akamai - detected HiddenFile.Multi.Generic (1)
11:27:29.0846 9876 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
11:27:29.0902 9876 ALG - ok
11:27:29.0995 9876 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
11:27:29.0998 9876 aliide - ok
11:27:30.0314 9876 ALSysIO - ok
11:27:30.0372 9876 [ 17F20770F46711910271994E72A7540A ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
11:27:30.0375 9876 AMD External Events Utility - ok
11:27:30.0425 9876 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
11:27:30.0427 9876 amdide - ok
11:27:30.0469 9876 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
11:27:30.0475 9876 AmdK8 - ok
11:27:30.0643 9876 [ 1D79CC1E4ED5F4D80A13BEE7A26DFD6A ] amdkmdag C:\Windows\system32\DRIVERS\atipmdag.sys
11:27:30.0764 9876 amdkmdag - ok
11:27:30.0815 9876 [ 791B17BBDE5AE66DF3518F19890D9B83 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
11:27:30.0832 9876 amdkmdap - ok
11:27:30.0846 9876 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
11:27:30.0858 9876 AmdPPM - ok
11:27:30.0927 9876 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
11:27:30.0934 9876 amdsata - ok
11:27:30.0983 9876 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
11:27:31.0007 9876 amdsbs - ok
11:27:31.0024 9876 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
11:27:31.0027 9876 amdxata - ok
11:27:31.0086 9876 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
11:27:31.0096 9876 AppID - ok
11:27:31.0138 9876 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
11:27:31.0165 9876 AppIDSvc - ok
11:27:31.0226 9876 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
11:27:31.0235 9876 Appinfo - ok
11:27:31.0388 9876 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
11:27:31.0392 9876 Apple Mobile Device - ok
11:27:31.0573 9876 [ 52AD9ED5BD05E7801AF5EFD99652C74F ] Application Updater C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe
11:27:31.0581 9876 Application Updater - ok
11:27:31.0613 9876 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\Windows\System32\appmgmts.dll
11:27:31.0619 9876 AppMgmt - ok
11:27:31.0660 9876 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
11:27:31.0677 9876 arc - ok
11:27:31.0694 9876 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
11:27:31.0744 9876 arcsas - ok
11:27:31.0772 9876 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
11:27:31.0830 9876 AsyncMac - ok
11:27:31.0872 9876 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
11:27:31.0878 9876 atapi - ok
11:27:31.0911 9876 [ 637E0753BD6DEB8EA5314A5C357EC1A0 ] AtiHdmiService C:\Windows\system32\drivers\AtiHdmi.sys
11:27:31.0927 9876 AtiHdmiService - ok
11:27:32.0078 9876 [ 1D79CC1E4ED5F4D80A13BEE7A26DFD6A ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
11:27:32.0215 9876 atikmdag - ok
11:27:32.0298 9876 [ FC0E8778C000291CAF60EB88C011E931 ] atksgt C:\Windows\system32\DRIVERS\atksgt.sys
11:27:32.0321 9876 atksgt - ok
11:27:32.0414 9876 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
11:27:32.0449 9876 AudioEndpointBuilder - ok
11:27:32.0479 9876 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
11:27:32.0483 9876 AudioSrv - ok
11:27:32.0595 9876 [ A2B790F9A751F24F17967F9A5574186D ] AVP C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE\avp.exe
11:27:32.0612 9876 AVP - ok
11:27:32.0715 9876 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
11:27:32.0720 9876 AxInstSV - ok
11:27:32.0763 9876 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
11:27:32.0791 9876 b06bdrv - ok
11:27:32.0827 9876 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
11:27:32.0843 9876 b57nd60a - ok
11:27:32.0874 9876 [ E001DD475A7C27EBE5A0DB45C11BAD71 ] BCM42RLY C:\Windows\system32\drivers\BCM42RLY.sys
11:27:32.0883 9876 BCM42RLY - ok
11:27:32.0984 9876 [ F4CD5F52850BF2C978DE178F256BA372 ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl664.sys
11:27:33.0041 9876 BCM43XX - ok
11:27:33.0076 9876 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
11:27:33.0092 9876 BDESVC - ok
11:27:33.0112 9876 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
11:27:33.0118 9876 Beep - ok
11:27:33.0322 9876 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
11:27:33.0383 9876 BFE - ok
11:27:33.0462 9876 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
11:27:33.0485 9876 BITS - ok
11:27:33.0510 9876 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
11:27:33.0552 9876 blbdrive - ok
11:27:33.0686 9876 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
11:27:33.0690 9876 Bonjour Service - ok
11:27:33.0740 9876 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
11:27:33.0746 9876 bowser - ok
11:27:33.0778 9876 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
11:27:33.0784 9876 BrFiltLo - ok
11:27:33.0788 9876 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
11:27:33.0793 9876 BrFiltUp - ok
11:27:33.0851 9876 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
11:27:33.0858 9876 Browser - ok
11:27:33.0865 9876 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
11:27:33.0874 9876 Brserid - ok
11:27:33.0880 9876 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
11:27:33.0918 9876 BrSerWdm - ok
11:27:33.0922 9876 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
11:27:33.0936 9876 BrUsbMdm - ok
11:27:33.0940 9876 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
11:27:33.0960 9876 BrUsbSer - ok
11:27:34.0087 9876 [ 10FD4012F46014FA9A32AB3B7EB9B6F8 ] BstHdAndroidSvc C:\Program Files (x86)\BlueStacks\HD-Service.exe
11:27:34.0114 9876 BstHdAndroidSvc - ok
11:27:34.0175 9876 [ 10B5DCD39CD974DF1388378198F13E14 ] BstHdDrv C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys
11:27:34.0197 9876 BstHdDrv - ok
11:27:34.0242 9876 [ 51406DFA8A41E0740389CE710F7174A6 ] BstHdLogRotatorSvc C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe
11:27:34.0267 9876 BstHdLogRotatorSvc - ok
11:27:34.0286 9876 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
11:27:34.0294 9876 BTHMODEM - ok
11:27:34.0357 9876 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
11:27:34.0373 9876 bthserv - ok
11:27:34.0384 9876 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
11:27:34.0393 9876 cdfs - ok
11:27:34.0454 9876 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
11:27:34.0458 9876 cdrom - ok
11:27:34.0526 9876 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
11:27:34.0530 9876 CertPropSvc - ok
11:27:34.0553 9876 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
11:27:34.0560 9876 circlass - ok
11:27:34.0597 9876 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
11:27:34.0614 9876 CLFS - ok
11:27:34.0676 9876 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
11:27:34.0682 9876 clr_optimization_v2.0.50727_32 - ok
11:27:34.0720 9876 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
11:27:34.0727 9876 clr_optimization_v2.0.50727_64 - ok
11:27:34.0867 9876 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
11:27:34.0872 9876 clr_optimization_v4.0.30319_32 - ok
11:27:34.0921 9876 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
11:27:34.0926 9876 clr_optimization_v4.0.30319_64 - ok
11:27:34.0961 9876 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
11:27:34.0970 9876 CmBatt - ok
11:27:35.0011 9876 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
11:27:35.0013 9876 cmdide - ok
11:27:35.0048 9876 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
11:27:35.0055 9876 CNG - ok
11:27:35.0091 9876 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
11:27:35.0096 9876 Compbatt - ok
11:27:35.0157 9876 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
11:27:35.0161 9876 CompositeBus - ok
11:27:35.0168 9876 COMSysApp - ok
11:27:35.0264 9876 cpuz132 - ok
11:27:35.0277 9876 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
11:27:35.0283 9876 crcdisk - ok
11:27:35.0330 9876 [ 4F5414602E2544A4554D95517948B705 ] CryptSvc C:\Windows\system32\cryptsvc.dll
11:27:35.0336 9876 CryptSvc - ok
11:27:35.0384 9876 [ 54DA3DFD29ED9F1619B6F53F3CE55E49 ] CSC C:\Windows\system32\drivers\csc.sys
11:27:35.0393 9876 CSC - ok
11:27:35.0435 9876 [ AB1201F8DE199E764DA9A32ABF71049C ] CSCrySec C:\Windows\system32\DRIVERS\CSCrySec.sys
11:27:35.0493 9876 CSCrySec - ok
11:27:35.0571 9876 [ 3AB183AB4D2C79DCF459CD2C1266B043 ] CscService C:\Windows\System32\cscsvc.dll
11:27:35.0588 9876 CscService - ok
11:27:35.0693 9876 [ 6E5B42219F1FE4A3D087D9D501E343D5 ] CSObjectsSrv C:\Program Files (x86)\Common Files\InfoWatch\CryptoStorage\ProtectedObjectsSrv.exe
11:27:35.0720 9876 CSObjectsSrv - ok
11:27:35.0759 9876 [ A6EED705BB510FA6B0F9F097165A3395 ] CSVirtualDiskDrv C:\Windows\system32\DRIVERS\CSVirtualDiskDrv.sys
11:27:35.0776 9876 CSVirtualDiskDrv - ok
11:27:35.0833 9876 [ ED5CF92396A62F4C15110DCDB5E854D9 ] CtClsFlt C:\Windows\system32\DRIVERS\CtClsFlt.sys
11:27:35.0857 9876 CtClsFlt - ok
11:27:35.0945 9876 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
11:27:35.0967 9876 DcomLaunch - ok
11:27:36.0012 9876 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
11:27:36.0036 9876 defragsvc - ok
11:27:36.0079 9876 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
11:27:36.0086 9876 DfsC - ok
11:27:36.0109 9876 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
11:27:36.0119 9876 Dhcp - ok
11:27:36.0143 9876 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
11:27:36.0168 9876 discache - ok
11:27:36.0207 9876 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
11:27:36.0216 9876 Disk - ok
11:27:36.0256 9876 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
11:27:36.0281 9876 Dnscache - ok
11:27:36.0358 9876 [ 0840ABBBDF438691EE65A20040635CBE ] DockLoginService C:\Program Files\Dell\DellDock\DockLogin.exe
11:27:36.0374 9876 DockLoginService - ok
11:27:36.0416 9876 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
11:27:36.0425 9876 dot3svc - ok
11:27:36.0486 9876 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
11:27:36.0512 9876 DPS - ok
11:27:36.0546 9876 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
11:27:36.0558 9876 drmkaud - ok
11:27:36.0608 9876 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
11:27:36.0634 9876 DXGKrnl - ok
11:27:36.0653 9876 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
11:27:36.0669 9876 EapHost - ok
11:27:36.0763 9876 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
11:27:36.0854 9876 ebdrv - ok
11:27:36.0916 9876 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
11:27:36.0921 9876 EFS - ok
11:27:36.0968 9876 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
11:27:36.0990 9876 ehRecvr - ok
11:27:37.0014 9876 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
11:27:37.0021 9876 ehSched - ok
11:27:37.0053 9876 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
11:27:37.0078 9876 elxstor - ok
11:27:37.0124 9876 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
11:27:37.0128 9876 ErrDev - ok
11:27:37.0212 9876 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
11:27:37.0236 9876 EventSystem - ok
11:27:37.0259 9876 [ 251AF86E0A4DDF3A6B181ED5103B06B1 ] ewusbnet C:\Windows\system32\DRIVERS\ewusbnet.sys
11:27:37.0275 9876 ewusbnet - ok
11:27:37.0291 9876 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
11:27:37.0306 9876 exfat - ok
11:27:37.0326 9876 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
11:27:37.0335 9876 fastfat - ok
11:27:37.0412 9876 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
11:27:37.0433 9876 Fax - ok
11:27:37.0447 9876 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
11:27:37.0453 9876 fdc - ok
11:27:37.0470 9876 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
11:27:37.0477 9876 fdPHost - ok
11:27:37.0490 9876 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
11:27:37.0499 9876 FDResPub - ok
11:27:37.0511 9876 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
11:27:37.0517 9876 FileInfo - ok
11:27:37.0533 9876 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
11:27:37.0541 9876 Filetrace - ok
11:27:37.0569 9876 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
11:27:37.0581 9876 flpydisk - ok
11:27:37.0607 9876 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
11:27:37.0613 9876 FltMgr - ok
11:27:37.0693 9876 [ D4463A74E1BFBF3FB9B4FC6CF5390152 ] fltsrv C:\Windows\system32\DRIVERS\fltsrv.sys
11:27:37.0704 9876 fltsrv - ok
11:27:37.0780 9876 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
11:27:37.0812 9876 FontCache - ok
11:27:37.0892 9876 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
11:27:37.0898 9876 FontCache3.0.0.0 - ok
11:27:37.0910 9876 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
11:27:37.0917 9876 FsDepends - ok
11:27:37.0960 9876 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
11:27:37.0962 9876 Fs_Rec - ok
11:27:38.0038 9876 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
11:27:38.0046 9876 fvevol - ok
11:27:38.0064 9876 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
11:27:38.0071 9876 gagp30kx - ok
11:27:38.0122 9876 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
11:27:38.0154 9876 GEARAspiWDM - ok
11:27:38.0214 9876 [ CE8F5B65D6CFE435FB9BF875EDA99D55 ] getPlusHelper C:\Program Files (x86)\NOS\bin\getPlus_Helper.dll
11:27:38.0249 9876 getPlusHelper - ok
11:27:38.0302 9876 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
11:27:38.0340 9876 gpsvc - ok
11:27:38.0419 9876 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
11:27:38.0428 9876 gupdate - ok
11:27:38.0462 9876 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
11:27:38.0463 9876 gupdatem - ok
11:27:38.0497 9876 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
11:27:38.0514 9876 hcw85cir - ok
11:27:38.0550 9876 [ 6410F6F415B2A5A9037224C41DA8BF12 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
11:27:38.0579 9876 HdAudAddService - ok
11:27:38.0647 9876 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
11:27:38.0652 9876 HDAudBus - ok
11:27:38.0656 9876 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
11:27:38.0662 9876 HidBatt - ok
11:27:38.0695 9876 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
11:27:38.0702 9876 HidBth - ok
11:27:38.0737 9876 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
11:27:38.0753 9876 HidIr - ok
11:27:38.0806 9876 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
11:27:38.0821 9876 hidserv - ok
11:27:38.0864 9876 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\drivers\hidusb.sys
11:27:38.0906 9876 HidUsb - ok
11:27:39.0001 9876 [ 0926C3B5CBF64C88F432FF449B211807 ] HitmanProScheduler C:\Program Files\HitmanPro\hmpsched.exe
11:27:39.0006 9876 HitmanProScheduler - ok
11:27:39.0078 9876 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
11:27:39.0085 9876 hkmsvc - ok
11:27:39.0136 9876 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
11:27:39.0140 9876 HomeGroupListener - ok
11:27:39.0206 9876 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
11:27:39.0234 9876 HomeGroupProvider - ok
11:27:39.0309 9876 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
11:27:39.0314 9876 HpSAMD - ok
11:27:39.0380 9876 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
11:27:39.0400 9876 HTTP - ok
11:27:39.0453 9876 [ 4B5C07DB91A0099272FAAE732E1152BD ] hwdatacard C:\Windows\system32\DRIVERS\ewusbmdm.sys
11:27:39.0459 9876 hwdatacard - ok
11:27:39.0476 9876 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
11:27:39.0480 9876 hwpolicy - ok
11:27:39.0567 9876 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
11:27:39.0570 9876 i8042prt - ok
11:27:39.0642 9876 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
11:27:39.0656 9876 iaStorV - ok
11:27:39.0707 9876 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
11:27:39.0740 9876 idsvc - ok
11:27:39.0768 9876 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
11:27:39.0772 9876 iirsp - ok
11:27:39.0826 9876 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
11:27:39.0882 9876 IKEEXT - ok
11:27:39.0941 9876 [ FD5EF1D0210CB9C0773BBA7CA360D762 ] InstallFilterService C:\Program Files (x86)\STMicroelectronics\Accelerometer\InstallFilterService.exe
11:27:39.0946 9876 InstallFilterService - ok
11:27:39.0956 9876 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
11:27:39.0958 9876 intelide - ok
11:27:40.0014 9876 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
11:27:40.0018 9876 intelppm - ok
11:27:40.0046 9876 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
11:27:40.0066 9876 IPBusEnum - ok
11:27:40.0129 9876 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
11:27:40.0136 9876 IpFilterDriver - ok
11:27:40.0230 9876 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
11:27:40.0270 9876 iphlpsvc - ok
11:27:40.0316 9876 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
11:27:40.0324 9876 IPMIDRV - ok
11:27:40.0341 9876 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
11:27:40.0382 9876 IPNAT - ok
11:27:40.0444 9876 [ 6E50CFA46527B39015B750AAD161C5CC ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
11:27:40.0450 9876 iPod Service - ok
11:27:40.0467 9876 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
11:27:40.0476 9876 IRENUM - ok
11:27:40.0507 9876 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
11:27:40.0510 9876 isapnp - ok
11:27:40.0552 9876 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
11:27:40.0570 9876 iScsiPrt - ok
11:27:40.0595 9876 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
11:27:40.0599 9876 kbdclass - ok
11:27:40.0617 9876 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
11:27:40.0625 9876 kbdhid - ok
11:27:40.0645 9876 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
11:27:40.0646 9876 KeyIso - ok
11:27:40.0683 9876 [ DB449F50E5141458EB58E64FFAC4863F ] kl1 C:\Windows\system32\DRIVERS\kl1.sys
11:27:40.0689 9876 kl1 - ok
11:27:40.0714 9876 [ 87200A8AFE40532BAA4D2B24A7BA0EEA ] KLBG C:\Windows\system32\DRIVERS\klbg.sys
11:27:40.0718 9876 KLBG - ok
11:27:40.0811 9876 [ 34D49307217B20E5A845B7DB50CDD4FA ] KLIF C:\Windows\system32\DRIVERS\klif.sys
11:27:40.0825 9876 KLIF - ok
11:27:40.0863 9876 [ 630F22545379437737CF4172F09FE449 ] KLIM6 C:\Windows\system32\DRIVERS\klim6.sys
11:27:40.0870 9876 KLIM6 - ok
11:27:40.0893 9876 [ 786791291939ABB11F6D0F040DA23912 ] klmouflt C:\Windows\system32\DRIVERS\klmouflt.sys
11:27:40.0900 9876 klmouflt - ok
11:27:40.0940 9876 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
11:27:40.0948 9876 KSecDD - ok
11:27:40.0984 9876 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
11:27:41.0039 9876 KSecPkg - ok
11:27:41.0080 9876 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
11:27:41.0083 9876 ksthunk - ok
11:27:41.0119 9876 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
11:27:41.0142 9876 KtmRm - ok
11:27:41.0198 9876 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
11:27:41.0205 9876 LanmanServer - ok
11:27:41.0276 9876 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
11:27:41.0285 9876 LanmanWorkstation - ok
11:27:41.0357 9876 [ 83BA097ACAAD0B00505634A62D90F93A ] lirsgt C:\Windows\system32\DRIVERS\lirsgt.sys
11:27:41.0365 9876 lirsgt - ok
11:27:41.0409 9876 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
11:27:41.0414 9876 lltdio - ok
11:27:41.0436 9876 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
11:27:41.0453 9876 lltdsvc - ok
11:27:41.0501 9876 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
11:27:41.0508 9876 lmhosts - ok
11:27:41.0576 9876 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
11:27:41.0587 9876 LSI_FC - ok
11:27:41.0596 9876 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
11:27:41.0608 9876 LSI_SAS - ok
11:27:41.0615 9876 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
11:27:41.0623 9876 LSI_SAS2 - ok
11:27:41.0631 9876 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
11:27:41.0637 9876 LSI_SCSI - ok
11:27:41.0666 9876 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
11:27:41.0674 9876 luafv - ok
11:27:41.0728 9876 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
11:27:41.0745 9876 Mcx2Svc - ok
11:27:41.0764 9876 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
11:27:41.0830 9876 megasas - ok
11:27:41.0862 9876 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
11:27:41.0886 9876 MegaSR - ok
11:27:41.0903 9876 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
11:27:41.0910 9876 MMCSS - ok
11:27:41.0923 9876 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
11:27:41.0934 9876 Modem - ok
11:27:41.0962 9876 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
11:27:41.0979 9876 monitor - ok
11:27:42.0039 9876 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\drivers\mouclass.sys
11:27:42.0045 9876 mouclass - ok
11:27:42.0067 9876 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
11:27:42.0072 9876 mouhid - ok
11:27:42.0121 9876 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
11:27:42.0126 9876 mountmgr - ok
11:27:42.0221 9876 [ CB8AF049AC9BE419A77ADAE288673359 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
11:27:42.0231 9876 MozillaMaintenance - ok
11:27:42.0409 9876 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
11:27:42.0418 9876 mpio - ok
11:27:42.0441 9876 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
11:27:42.0447 9876 mpsdrv - ok
11:27:42.0528 9876 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
11:27:42.0561 9876 MpsSvc - ok
11:27:42.0628 9876 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
11:27:42.0633 9876 MRxDAV - ok
11:27:42.0674 9876 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
11:27:42.0690 9876 mrxsmb - ok
11:27:42.0736 9876 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
11:27:42.0741 9876 mrxsmb10 - ok
11:27:42.0751 9876 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
11:27:42.0760 9876 mrxsmb20 - ok
11:27:42.0820 9876 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
11:27:42.0822 9876 msahci - ok
11:27:42.0867 9876 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
11:27:42.0872 9876 msdsm - ok
11:27:42.0884 9876 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
11:27:42.0892 9876 MSDTC - ok
11:27:42.0908 9876 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
11:27:42.0913 9876 Msfs - ok
11:27:42.0939 9876 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
11:27:42.0947 9876 mshidkmdf - ok
11:27:42.0960 9876 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
11:27:42.0961 9876 msisadrv - ok
11:27:42.0987 9876 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
11:27:42.0994 9876 MSiSCSI - ok
11:27:42.0998 9876 msiserver - ok
11:27:43.0021 9876 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
11:27:43.0028 9876 MSKSSRV - ok
11:27:43.0037 9876 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
11:27:43.0053 9876 MSPCLOCK - ok
11:27:43.0074 9876 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
11:27:43.0084 9876 MSPQM - ok
11:27:43.0154 9876 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
11:27:43.0160 9876 MsRPC - ok
11:27:43.0172 9876 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
11:27:43.0174 9876 mssmbios - ok
11:27:43.0197 9876 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
11:27:43.0203 9876 MSTEE - ok
11:27:43.0223 9876 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
11:27:43.0227 9876 MTConfig - ok
11:27:43.0251 9876 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
11:27:43.0262 9876 Mup - ok
11:27:43.0285 9876 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
11:27:43.0306 9876 napagent - ok
11:27:43.0335 9876 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
11:27:43.0395 9876 NativeWifiP - ok
11:27:43.0640 9876 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
11:27:43.0704 9876 NDIS - ok
11:27:43.0728 9876 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
11:27:43.0737 9876 NdisCap - ok
11:27:43.0757 9876 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
11:27:43.0765 9876 NdisTapi - ok
11:27:43.0848 9876 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
11:27:43.0851 9876 Ndisuio - ok
11:27:43.0907 9876 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
11:27:43.0917 9876 NdisWan - ok
11:27:43.0985 9876 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
11:27:43.0988 9876 NDProxy - ok
11:27:44.0003 9876 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
11:27:44.0015 9876 NetBIOS - ok
11:27:44.0058 9876 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
11:27:44.0063 9876 NetBT - ok
11:27:44.0093 9876 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
11:27:44.0095 9876 Netlogon - ok
11:27:44.0193 9876 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
11:27:44.0216 9876 Netman - ok
11:27:44.0267 9876 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
11:27:44.0304 9876 netprofm - ok
11:27:44.0361 9876 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
11:27:44.0374 9876 NetTcpPortSharing - ok
11:27:44.0407 9876 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
11:27:44.0433 9876 nfrd960 - ok
11:27:44.0714 9876 [ 3FF685CB7185D613D8317A7F17C97BA8 ] NitroReaderDriverReadSpool2 C:\Program Files\Common Files\Nitro PDF\Reader\2.0\NitroPDFReaderDriverService2x64.exe
11:27:44.0739 9876 NitroReaderDriverReadSpool2 - ok
11:27:44.0834 9876 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
11:27:44.0858 9876 NlaSvc - ok
11:27:44.0998 9876 [ F44ADDBF29905CB19F52FC9FE6A0EFA1 ] nosGetPlusHelper C:\Program Files (x86)\NOS\bin\getPlus_Helper_3004.dll
11:27:45.0006 9876 nosGetPlusHelper - ok
11:27:45.0046 9876 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
11:27:45.0066 9876 Npfs - ok
11:27:45.0127 9876 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
11:27:45.0147 9876 nsi - ok
11:27:45.0169 9876 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
11:27:45.0189 9876 nsiproxy - ok
11:27:45.0307 9876 [ A2F74975097F52A00745F9637451FDD8 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
11:27:45.0382 9876 Ntfs - ok
11:27:45.0397 9876 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
11:27:45.0407 9876 Null - ok
11:27:45.0441 9876 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
11:27:45.0444 9876 nvraid - ok
11:27:45.0497 9876 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
11:27:45.0503 9876 nvstor - ok
11:27:45.0562 9876 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
11:27:45.0567 9876 nv_agp - ok
11:27:45.0673 9876 [ D955D5DE998DB2476BF0892BE3A96C26 ] O2FLASH C:\Windows\system32\DRIVERS\o2flash.exe
11:27:45.0686 9876 O2FLASH - ok
11:27:45.0709 9876 [ 1B2E099223F16AAB166E9602F7A5ECD4 ] O2MDGRDR C:\Windows\system32\DRIVERS\o2mdgx64.sys
11:27:45.0724 9876 O2MDGRDR - ok
11:27:45.0774 9876 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
11:27:45.0788 9876 ohci1394 - ok
11:27:45.0837 9876 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
11:27:45.0862 9876 p2pimsvc - ok
11:27:45.0880 9876 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
11:27:45.0903 9876 p2psvc - ok
11:27:45.0942 9876 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
11:27:45.0951 9876 Parport - ok
11:27:46.0027 9876 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
11:27:46.0039 9876 partmgr - ok
11:27:46.0062 9876 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
11:27:46.0073 9876 PcaSvc - ok
11:27:46.0526 9876 PcdrNdisuio - ok
11:27:46.0676 9876 [ 4B5F5774FF1C577B9515FDD2B5C535C5 ] PCDSRVC{1E208CE0-FB7451FF-06020200}_0 c:\program files\dell support center\pcdsrvc_x64.pkms
11:27:46.0682 9876 PCDSRVC{1E208CE0-FB7451FF-06020200}_0 - ok
11:27:46.0756 9876 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
11:27:46.0789 9876 pci - ok
11:27:46.0805 9876 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
11:27:46.0810 9876 pciide - ok
11:27:46.0844 9876 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
11:27:46.0858 9876 pcmcia - ok
11:27:46.0878 9876 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
11:27:46.0888 9876 pcw - ok
11:27:46.0919 9876 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
11:27:46.0967 9876 PEAUTH - ok
11:27:47.0036 9876 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
11:27:47.0069 9876 PeerDistSvc - ok
11:27:47.0094 9876 [ FED1146E7A44ABB393A94FDE9B06D38C ] pelmouse C:\Windows\system32\DRIVERS\pelmouse.sys
11:27:47.0101 9876 pelmouse - ok
11:27:47.0121 9876 [ 29080696C2D55B56E66924BE135B6BD5 ] pelusblf C:\Windows\system32\DRIVERS\pelusblf.sys
11:27:47.0128 9876 pelusblf - ok
11:27:47.0159 9876 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
11:27:47.0168 9876 PerfHost - ok
11:27:47.0236 9876 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
11:27:47.0275 9876 pla - ok
11:27:47.0325 9876 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
11:27:47.0337 9876 PlugPlay - ok
11:27:47.0368 9876 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
11:27:47.0374 9876 PNRPAutoReg - ok
11:27:47.0423 9876 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
11:27:47.0430 9876 PNRPsvc - ok
11:27:47.0454 9876 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
11:27:47.0493 9876 PolicyAgent - ok
11:27:47.0510 9876 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
11:27:47.0543 9876 Power - ok
11:27:47.0571 9876 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
11:27:47.0578 9876 PptpMiniport - ok
11:27:47.0609 9876 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
11:27:47.0626 9876 Processor - ok
11:27:47.0674 9876 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
11:27:47.0681 9876 ProfSvc - ok
11:27:47.0690 9876 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
11:27:47.0692 9876 ProtectedStorage - ok
11:27:47.0740 9876 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
11:27:47.0744 9876 Psched - ok
11:27:47.0861 9876 [ 543A4EF0923BF70D126625B034EF25AF ] PSI_SVC_2 C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
11:27:47.0865 9876 PSI_SVC_2 - ok
11:27:47.0998 9876 [ 4712CC14E720ECCCC0AA16949D18AAF1 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
11:27:48.0006 9876 PxHlpa64 - ok
11:27:48.0149 9876 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
11:27:48.0215 9876 ql2300 - ok
11:27:48.0273 9876 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
11:27:48.0297 9876 ql40xx - ok
11:27:48.0357 9876 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
11:27:48.0381 9876 QWAVE - ok
11:27:48.0397 9876 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
11:27:48.0404 9876 QWAVEdrv - ok
11:27:48.0434 9876 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
11:27:48.0475 9876 RasAcd - ok
11:27:48.0516 9876 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
11:27:48.0541 9876 RasAgileVpn - ok
11:27:48.0553 9876 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
11:27:48.0561 9876 RasAuto - ok
11:27:48.0606 9876 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
11:27:48.0610 9876 Rasl2tp - ok
11:27:48.0665 9876 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
11:27:48.0683 9876 RasMan - ok
11:27:48.0707 9876 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
11:27:48.0781 9876 RasPppoe - ok
11:27:48.0805 9876 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
11:27:48.0827 9876 RasSstp - ok
11:27:48.0856 9876 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
11:27:48.0864 9876 rdbss - ok
11:27:48.0870 9876 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
11:27:48.0885 9876 rdpbus - ok
11:27:48.0906 9876 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
11:27:48.0926 9876 RDPCDD - ok
11:27:48.0974 9876 [ 1B6163C503398B23FF8B939C67747683 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
11:27:48.0979 9876 RDPDR - ok
11:27:48.0983 9876 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
11:27:48.0993 9876 RDPENCDD - ok
11:27:49.0015 9876 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
11:27:49.0025 9876 RDPREFMP - ok
11:27:49.0117 9876 [ 70CBA1A0C98600A2AA1863479B35CB90 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
11:27:49.0119 9876 RdpVideoMiniport - ok
11:27:49.0155 9876 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
11:27:49.0160 9876 RDPWD - ok
11:27:49.0198 9876 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
11:27:49.0204 9876 rdyboost - ok
11:27:49.0227 9876 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
11:27:49.0234 9876 RemoteAccess - ok
11:27:49.0264 9876 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
11:27:49.0280 9876 RemoteRegistry - ok
11:27:49.0336 9876 [ 9C3AC71A9934B884FAC567A8807E9C4D ] Revoflt C:\Windows\system32\DRIVERS\revoflt.sys
11:27:49.0347 9876 Revoflt - ok
11:27:49.0360 9876 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
11:27:49.0410 9876 RpcEptMapper - ok
11:27:49.0472 9876 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
11:27:49.0483 9876 RpcLocator - ok
11:27:49.0575 9876 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
11:27:49.0585 9876 RpcSs - ok
11:27:49.0630 9876 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
11:27:49.0655 9876 rspndr - ok
11:27:49.0682 9876 [ B49DC435AE3695BAC5623DD94B05732D ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
11:27:49.0689 9876 RTL8167 - ok
11:27:49.0732 9876 [ E60C0A09F997826C7627B244195AB581 ] s3cap C:\Windows\system32\drivers\vms3cap.sys
11:27:49.0734 9876 s3cap - ok
11:27:49.0761 9876 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
11:27:49.0763 9876 SamSs - ok
11:27:49.0814 9876 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
11:27:49.0819 9876 sbp2port - ok
11:27:49.0870 9876 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
11:27:49.0879 9876 SCardSvr - ok
11:27:49.0919 9876 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
11:27:49.0929 9876 scfilter - ok
11:27:50.0027 9876 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
11:27:50.0071 9876 Schedule - ok
11:27:50.0129 9876 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
11:27:50.0130 9876 SCPolicySvc - ok
11:27:50.0187 9876 [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus C:\Windows\system32\drivers\sdbus.sys
11:27:50.0191 9876 sdbus - ok
11:27:50.0231 9876 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
11:27:50.0256 9876 SDRSVC - ok
11:27:50.0350 9876 [ 16A252022535B680046F6E34E136D378 ] SeaPort C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
11:27:50.0414 9876 SeaPort - ok
11:27:50.0446 9876 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
11:27:50.0456 9876 secdrv - ok
11:27:50.0500 9876 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
11:27:50.0525 9876 seclogon - ok
11:27:50.0573 9876 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
11:27:50.0598 9876 SENS - ok
11:27:50.0611 9876 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
11:27:50.0627 9876 SensrSvc - ok
11:27:50.0640 9876 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
11:27:50.0657 9876 Serenum - ok
11:27:50.0669 9876 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
11:27:50.0680 9876 Serial - ok
11:27:50.0725 9876 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
11:27:50.0729 9876 sermouse - ok
11:27:50.0777 9876 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
11:27:50.0782 9876 SessionEnv - ok
11:27:50.0830 9876 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
11:27:50.0836 9876 sffdisk - ok
11:27:50.0878 9876 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
11:27:50.0882 9876 sffp_mmc - ok
11:27:50.0894 9876 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
11:27:50.0898 9876 sffp_sd - ok
11:27:50.0908 9876 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
11:27:50.0925 9876 sfloppy - ok
11:27:50.0999 9876 [ 74EC60E20516AAA573BE74F31175270F ] SftService C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
11:27:51.0023 9876 SftService - ok
11:27:51.0051 9876 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
11:27:51.0068 9876 SharedAccess - ok
11:27:51.0121 9876 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
11:27:51.0138 9876 ShellHWDetection - ok
11:27:51.0162 9876 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
11:27:51.0179 9876 SiSRaid2 - ok
11:27:51.0190 9876 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
11:27:51.0200 9876 SiSRaid4 - ok
11:27:51.0271 9876 [ DD0443BC6CC78A19FD399817F8C51401 ] SmartDefragDriver C:\Windows\system32\Drivers\SmartDefragDriver.sys
11:27:51.0276 9876 SmartDefragDriver - ok
11:27:51.0287 9876 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
11:27:51.0297 9876 Smb - ok
11:27:51.0398 9876 [ F26AAD9ADFC9B62AC59A004A913C92DA ] snapman C:\Windows\system32\DRIVERS\snapman.sys
11:27:51.0435 9876 snapman - ok
11:27:51.0459 9876 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
11:27:51.0526 9876 SNMPTRAP - ok
11:27:51.0539 9876 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
11:27:51.0558 9876 spldr - ok
11:27:51.0613 9876 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
11:27:51.0619 9876 Spooler - ok
11:27:51.0984 9876 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
11:27:52.0013 9876 sppsvc - ok
11:27:52.0029 9876 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
11:27:52.0037 9876 sppuinotify - ok
11:27:52.0082 9876 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
11:27:52.0105 9876 srv - ok
11:27:52.0121 9876 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
11:27:52.0146 9876 srv2 - ok
11:27:52.0161 9876 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
11:27:52.0219 9876 srvnet - ok
11:27:52.0247 9876 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
11:27:52.0262 9876 SSDPSRV - ok
11:27:52.0276 9876 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
11:27:52.0285 9876 SstpSvc - ok
11:27:52.0448 9876 [ C24310D67140E18526396FB3BBAA91C6 ] STacSV C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_fd9b60625db011f9\STacSV64.exe
11:27:52.0462 9876 STacSV - ok
11:27:52.0487 9876 [ 60E123FCCC15D1FB68BE7E35B1F0A7CB ] stdflt C:\Windows\system32\DRIVERS\stdflt.sys
11:27:52.0492 9876 stdflt - ok
11:27:52.0513 9876 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
11:27:52.0522 9876 stexstor - ok
11:27:52.0564 9876 [ C79F5CBC47B19A068D8936DF8332E3E6 ] STHDA C:\Windows\system32\DRIVERS\stwrt64.sys
11:27:52.0592 9876 STHDA - ok
11:27:52.0645 9876 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
11:27:52.0700 9876 stisvc - ok
11:27:52.0744 9876 [ 7785DC213270D2FC066538DAF94087E7 ] storflt C:\Windows\system32\drivers\vmstorfl.sys
11:27:52.0745 9876 storflt - ok
11:27:52.0788 9876 [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc C:\Windows\system32\drivers\storvsc.sys
11:27:52.0790 9876 storvsc - ok
11:27:52.0804 9876 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
11:27:52.0805 9876 swenum - ok
11:27:52.0835 9876 [ 179DE6936FBB0702F89535B27E311B1F ] swmsflt C:\Windows\System32\drivers\swmsflt.sys
11:27:52.0840 9876 swmsflt - ok
11:27:52.0898 9876 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
11:27:52.0930 9876 swprv - ok
11:27:53.0211 9876 [ CAAEB44422474ED5C13D988AE7CA4A1C ] syncagentsrv C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
11:27:53.0244 9876 syncagentsrv - ok
11:27:53.0270 9876 Synth3dVsc - ok
11:27:53.0314 9876 [ 1657B7442D5CE30533F5C4317716B468 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
11:27:53.0339 9876 SynTP - ok
11:27:53.0409 9876 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
11:27:53.0458 9876 SysMain - ok
11:27:53.0500 9876 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
11:27:53.0522 9876 TabletInputService - ok
11:27:53.0552 9876 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
11:27:53.0578 9876 TapiSrv - ok
11:27:53.0606 9876 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
11:27:53.0613 9876 TBS - ok
11:27:53.0717 9876 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] Tcpip C:\Windows\system32\drivers\tcpip.sys
11:27:53.0765 9876 Tcpip - ok
11:27:53.0831 9876 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
11:27:53.0841 9876 TCPIP6 - ok
11:27:53.0892 9876 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
11:27:53.0913 9876 tcpipreg - ok
11:27:53.0941 9876 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
11:27:53.0949 9876 TDPIPE - ok
11:27:54.0081 9876 [ 7BC43335C778370FD0040D5224D8EDEB ] tdrpman C:\Windows\system32\DRIVERS\tdrpman.sys
11:27:54.0131 9876 tdrpman - ok
11:27:54.0166 9876 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
11:27:54.0215 9876 TDTCP - ok
11:27:54.0259 9876 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
11:27:54.0264 9876 tdx - ok
11:27:54.0312 9876 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
11:27:54.0318 9876 TermDD - ok
11:27:54.0442 9876 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
11:27:54.0478 9876 TermService - ok
11:27:54.0508 9876 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
11:27:54.0549 9876 Themes - ok
11:27:54.0585 9876 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
11:27:54.0588 9876 THREADORDER - ok
11:27:54.0658 9876 [ 7D68EAB50DF8B71408B645BA8581800E ] timounter C:\Windows\system32\DRIVERS\timntr.sys
11:27:54.0702 9876 timounter - ok
11:27:54.0715 9876 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
11:27:54.0732 9876 TrkWks - ok
11:27:54.0795 9876 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
11:27:54.0800 9876 TrustedInstaller - ok
11:27:54.0839 9876 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
11:27:54.0848 9876 tssecsrv - ok
11:27:54.0899 9876 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
11:27:54.0908 9876 TsUsbFlt - ok
11:27:54.0920 9876 tsusbhub - ok
11:27:54.0996 9876 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
11:27:55.0000 9876 tunnel - ok
11:27:55.0058 9876 [ 825E7A1F48FB8BCFBA27C178AAB4E275 ] TurboB C:\Windows\system32\DRIVERS\TurboB.sys
11:27:55.0067 9876 TurboB - ok
11:27:55.0172 9876 [ B206BE1174D5964D49A56BB6C4E0524A ] TurboBoost C:\Program Files\Intel\TurboBoost\TurboBoost.exe
11:27:55.0178 9876 TurboBoost - ok
11:27:55.0202 9876 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
11:27:55.0213 9876 uagp35 - ok
11:27:55.0260 9876 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
11:27:55.0280 9876 udfs - ok
11:27:55.0311 9876 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
11:27:55.0317 9876 UI0Detect - ok
11:27:55.0389 9876 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
11:27:55.0397 9876 uliagpkx - ok
11:27:55.0482 9876 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
11:27:55.0522 9876 umbus - ok
11:27:55.0548 9876 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
11:27:55.0558 9876 UmPass - ok
11:27:55.0598 9876 [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService C:\Windows\System32\umrdp.dll
11:27:55.0606 9876 UmRdpService - ok
11:27:55.0619 9876 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
11:27:55.0642 9876 upnphost - ok
11:27:55.0703 9876 [ F724B03C3DFAACF08D17D38BF3333583 ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
11:27:55.0707 9876 USBAAPL64 - ok
11:27:55.0724 9876 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
11:27:55.0728 9876 usbccgp - ok
11:27:55.0765 9876 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
11:27:55.0769 9876 usbcir - ok
11:27:55.0785 9876 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys
11:27:55.0791 9876 usbehci - ok
11:27:55.0843 9876 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
11:27:55.0854 9876 usbhub - ok
11:27:55.0874 9876 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
11:27:55.0878 9876 usbohci - ok
11:27:55.0909 9876 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
11:27:55.0925 9876 usbprint - ok
11:27:55.0941 9876 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
11:27:55.0949 9876 USBSTOR - ok
11:27:55.0964 9876 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
11:27:55.0969 9876 usbuhci - ok
11:27:55.0997 9876 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
11:27:56.0002 9876 usbvideo - ok
11:27:56.0031 9876 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
11:27:56.0047 9876 UxSms - ok
11:27:56.0082 9876 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
11:27:56.0083 9876 VaultSvc - ok
11:27:56.0143 9876 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
11:27:56.0146 9876 vdrvroot - ok
11:27:56.0195 9876 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
11:27:56.0201 9876 vds - ok
11:27:56.0221 9876 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
11:27:56.0231 9876 vga - ok
11:27:56.0247 9876 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
11:27:56.0254 9876 VgaSave - ok
11:27:56.0279 9876 VGPU - ok
11:27:56.0348 9876 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
11:27:56.0354 9876 vhdmp - ok
11:27:56.0372 9876 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
11:27:56.0377 9876 viaide - ok
11:27:56.0439 9876 [ ACBCBD8421920D20F1F40B6F76A4C213 ] vididr C:\Windows\system32\DRIVERS\vididr.sys
11:27:56.0471 9876 vididr - ok
11:27:56.0538 9876 [ 905DD422D28A32FACE8AE695B3823843 ] vidsflt67 C:\Windows\system32\DRIVERS\vsflt67.sys
11:27:56.0566 9876 vidsflt67 - ok
11:27:56.0600 9876 [ 86EA3E79AE350FEA5331A1303054005F ] vmbus C:\Windows\system32\drivers\vmbus.sys
11:27:56.0607 9876 vmbus - ok
11:27:56.0630 9876 [ 7DE90B48F210D29649380545DB45A187 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
11:27:56.0635 9876 VMBusHID - ok
11:27:56.0649 9876 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
11:27:56.0652 9876 volmgr - ok
11:27:56.0693 9876 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
11:27:56.0700 9876 volmgrx - ok
11:27:56.0720 9876 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
11:27:56.0725 9876 volsnap - ok
11:27:56.0803 9876 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
11:27:56.0852 9876 vsmraid - ok
11:27:56.0931 9876 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
11:27:56.0943 9876 VSS - ok
11:27:56.0958 9876 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
11:27:56.0968 9876 vwifibus - ok
11:27:56.0979 9876 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
11:27:57.0004 9876 vwififlt - ok
11:27:57.0036 9876 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
11:27:57.0059 9876 W32Time - ok
11:27:57.0065 9876 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
11:27:57.0076 9876 WacomPen - ok
11:27:57.0112 9876 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
11:27:57.0116 9876 WANARP - ok
11:27:57.0131 9876 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
11:27:57.0132 9876 Wanarpv6 - ok
11:27:57.0208 9876 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
11:27:57.0241 9876 WatAdminSvc - ok
11:27:57.0330 9876 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
11:27:57.0384 9876 wbengine - ok
11:27:57.0397 9876 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
11:27:57.0407 9876 WbioSrvc - ok
11:27:57.0452 9876 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
11:27:57.0476 9876 wcncsvc - ok
11:27:57.0491 9876 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
11:27:57.0499 9876 WcsPlugInService - ok
11:27:57.0525 9876 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
11:27:57.0535 9876 Wd - ok
11:27:57.0563 9876 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
11:27:57.0596 9876 Wdf01000 - ok
11:27:57.0628 9876 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
11:27:57.0669 9876 WdiServiceHost - ok
11:27:57.0677 9876 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
11:27:57.0679 9876 WdiSystemHost - ok
11:27:57.0716 9876 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
11:27:57.0727 9876 WebClient - ok
11:27:57.0746 9876 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
11:27:57.0762 9876 Wecsvc - ok
11:27:57.0773 9876 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
11:27:57.0783 9876 wercplsupport - ok
11:27:57.0814 9876 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
11:27:57.0831 9876 WerSvc - ok
11:27:57.0849 9876 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
11:27:57.0874 9876 WfpLwf - ok
11:27:57.0904 9876 [ B14EF15BD757FA488F9C970EEE9C0D35 ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys
11:27:57.0911 9876 WimFltr - ok
11:27:57.0926 9876 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
11:27:57.0951 9876 WIMMount - ok
11:27:57.0967 9876 WinDefend - ok
11:27:57.0972 9876 WinHttpAutoProxySvc - ok
11:27:58.0015 9876 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
11:27:58.0040 9876 Winmgmt - ok
11:27:58.0208 9876 [ 0C0195C48B6B8582FA6F6373032118DA ] WinRing0_1_2_0 C:\Program Files (x86)\IObit\Game Booster 3\Driver\WinRing0x64.sys
11:27:58.0211 9876 WinRing0_1_2_0 - ok
11:27:58.0290 9876 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
11:27:58.0349 9876 WinRM - ok
11:27:58.0415 9876 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
11:27:58.0419 9876 WinUsb - ok
11:27:58.0532 9876 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
11:27:58.0560 9876 Wlansvc - ok
11:27:58.0777 9876 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
11:27:58.0796 9876 wlidsvc - ok
11:27:58.0832 9876 [ 13B0A570E1AE451C92DA550085D72CF3 ] wltrysvc C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRYSVC.EXE
11:27:58.0835 9876 wltrysvc - ok
11:27:58.0897 9876 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
11:27:58.0903 9876 WmiAcpi - ok
11:27:58.0933 9876 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
11:27:58.0955 9876 wmiApSrv - ok
11:27:58.0986 9876 WMPNetworkSvc - ok
11:27:59.0018 9876 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
11:27:59.0031 9876 WPCSvc - ok
11:27:59.0084 9876 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
11:27:59.0094 9876 WPDBusEnum - ok
11:27:59.0121 9876 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
11:27:59.0139 9876 ws2ifsl - ok
11:27:59.0160 9876 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
11:27:59.0178 9876 wscsvc - ok
11:27:59.0183 9876 WSearch - ok
11:27:59.0224 9876 [ F7ADA10CF0F02435B1C9E5C6FD0EC3A4 ] wtsmpadap C:\Windows\system32\DRIVERS\wtsmpadap.sys
11:27:59.0227 9876 wtsmpadap - ok
11:27:59.0280 9876 [ 4B604168F293A6AD8CE56B528E4DAD14 ] WtSmpFlt C:\Windows\system32\DRIVERS\wtsmpflt.sys
11:27:59.0321 9876 WtSmpFlt - ok
11:27:59.0425 9876 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
11:27:59.0511 9876 wuauserv - ok
11:27:59.0561 9876 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
11:27:59.0569 9876 WudfPf - ok
11:27:59.0602 9876 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
11:27:59.0619 9876 WUDFRd - ok
11:27:59.0665 9876 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
11:27:59.0670 9876 wudfsvc - ok
11:27:59.0694 9876 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
11:27:59.0711 9876 WwanSvc - ok
11:27:59.0754 9876 ================ Scan global ===============================
11:27:59.0777 9876 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
11:27:59.0823 9876 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
11:27:59.0834 9876 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\Windows\system32\winsrv.dll
11:27:59.0857 9876 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
11:27:59.0891 9876 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
11:27:59.0901 9876 [Global] - ok
11:27:59.0902 9876 ================ Scan MBR ==================================
11:27:59.0911 9876 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
11:28:00.0517 9876 \Device\Harddisk0\DR0 - ok
11:28:00.0518 9876 ================ Scan VBR ==================================
11:28:00.0521 9876 [ B70B397F27C29D9E52F4D3827FA60935 ] \Device\Harddisk0\DR0\Partition1
11:28:00.0523 9876 \Device\Harddisk0\DR0\Partition1 - ok
11:28:00.0557 9876 [ 263DAEDC92E54CE37E1F7DE9C41C774C ] \Device\Harddisk0\DR0\Partition2
11:28:00.0559 9876 \Device\Harddisk0\DR0\Partition2 - ok
11:28:00.0560 9876 ============================================================
11:28:00.0560 9876 Scan finished
11:28:00.0560 9876 ============================================================
11:28:00.0571 4016 Detected object count: 1
11:28:00.0571 4016 Actual detected object count: 1
11:28:07.0809 4016 Akamai ( HiddenFile.Multi.Generic ) - skipped by user
11:28:07.0809 4016 Akamai ( HiddenFile.Multi.Generic ) - User select action: Skip
11:28:11.0375 7424 Deinitialize success




ESET is taking ages to scan so I will post the report asap.

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:45 AM

Posted 07 October 2012 - 12:37 PM

Post these logs along with ESET log

Download

Malwarebytes

Install,update and run a full scan

Click on Show results.Right click on the list ,select all and remove them.

Post the generated log here

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size
List restore points

Click Go and post the result.

Download

Farbar service scanner

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.

Download

adware cleaner

Launch it click on Delete

A log should be generated after scan ,post it here

Download

Junkware removal tool

For vista and windows 7 right click on the tool and select run as administrator

After scan gets completed,post the generated log here.

#7 coral67

coral67
  • Topic Starter

  • Members
  • 54 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Switzerland
  • Local time:02:45 PM

Posted 07 October 2012 - 01:16 PM

I had already done a full scan with Malwarebytes yesterday so here's the log, ESET is still scanning, so I will do the other scans when it's finished.


Malwarebytes Anti-Malware 1.65.0.1400
www.malwarebytes.org

Database version: v2012.10.06.03

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Isabella :: ISABELLA-PC [administrator]

06.10.2012 17:00:18
mbam-log-2012-10-06 (17-00-18).txt

Scan type: Full scan (C:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 1069633
Time elapsed: 5 hour(s), 47 minute(s), 45 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

#8 coral67

coral67
  • Topic Starter

  • Members
  • 54 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Switzerland
  • Local time:02:45 PM

Posted 07 October 2012 - 01:41 PM

Sorry, stupid question coming:

For ESET, am I supposed to delete the found threats or not? what if they are false positives?

#9 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:45 AM

Posted 07 October 2012 - 01:44 PM

Export the log and post it here.

#10 coral67

coral67
  • Topic Starter

  • Members
  • 54 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Switzerland
  • Local time:02:45 PM

Posted 07 October 2012 - 04:02 PM

Here's the ESET log....it simply deleted all this without asking...LOL!


C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe a variant of Win32/Toolbar.Widgi application cleaned by deleting - quarantined
C:\Program Files (x86)\Common Files\Spigot\wtxpcom\components\WidgiToolbarFF.dll a variant of Win32/Toolbar.Widgi application cleaned by deleting - quarantined
C:\Program Files (x86)\Common Files\Spigot\wtxpcom\components\WidgiToolbarFF.dll.10 a variant of Win32/Toolbar.Widgi application cleaned by deleting - quarantined
C:\Program Files (x86)\Common Files\Spigot\wtxpcom\components\WidgiToolbarFF.dll.11 a variant of Win32/Toolbar.Widgi application cleaned by deleting - quarantined
C:\Program Files (x86)\Common Files\Spigot\wtxpcom\components\WidgiToolbarFF.dll.12 a variant of Win32/Toolbar.Widgi application cleaned by deleting - quarantined
C:\Program Files (x86)\Common Files\Spigot\wtxpcom\components\WidgiToolbarFF.dll.13 a variant of Win32/Toolbar.Widgi application cleaned by deleting - quarantined
C:\Program Files (x86)\Common Files\Spigot\wtxpcom\components\WidgiToolbarFF.dll.14 a variant of Win32/Toolbar.Widgi application cleaned by deleting - quarantined
C:\Program Files (x86)\Common Files\Spigot\wtxpcom\components\WidgiToolbarFF.dll.15 a variant of Win32/Toolbar.Widgi application cleaned by deleting - quarantined
C:\Program Files (x86)\Common Files\Spigot\wtxpcom\components\WidgiToolbarFF.dll.16 a variant of Win32/Toolbar.Widgi application cleaned by deleting - quarantined
C:\Program Files (x86)\Common Files\Spigot\wtxpcom\components\WidgiToolbarFF.dll.17 a variant of Win32/Toolbar.Widgi application cleaned by deleting - quarantined
C:\Program Files (x86)\Common Files\Spigot\wtxpcom\components\WidgiToolbarFF.dll.5 a variant of Win32/Toolbar.Widgi application cleaned by deleting - quarantined
C:\Program Files (x86)\Common Files\Spigot\wtxpcom\components\WidgiToolbarFF.dll.6 a variant of Win32/Toolbar.Widgi application cleaned by deleting - quarantined
C:\Program Files (x86)\Common Files\Spigot\wtxpcom\components\WidgiToolbarFF.dll.7 a variant of Win32/Toolbar.Widgi application cleaned by deleting - quarantined
C:\Program Files (x86)\Common Files\Spigot\wtxpcom\components\WidgiToolbarFF.dll.8 a variant of Win32/Toolbar.Widgi application cleaned by deleting - quarantined
C:\Program Files (x86)\Common Files\Spigot\wtxpcom\components\WidgiToolbarFF.dll.9 a variant of Win32/Toolbar.Widgi application cleaned by deleting - quarantined
C:\Program Files (x86)\YTD Toolbar\IE\6.3\ytdToolbarIE.dll a variant of Win32/Toolbar.Widgi application cleaned by deleting - quarantined
C:\Users\Isabella\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\2Y1IIV47\wbkCC17.tmp HTML/Phishing.LinkedIn.A trojan cleaned by deleting - quarantined
C:\Users\Isabella\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\6K3WRGA0\wbk2105.tmp HTML/Phishing.LinkedIn.A trojan cleaned by deleting - quarantined
C:\Users\Isabella\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\6K3WRGA0\wbk511C.tmp HTML/Phishing.LinkedIn.A trojan cleaned by deleting - quarantined
C:\Users\Isabella\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\6K3WRGA0\wbk6E46.tmp HTML/Phishing.LinkedIn.A trojan cleaned by deleting - quarantined
C:\Users\Isabella\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\6K3WRGA0\wbk75B7.tmp HTML/Phishing.LinkedIn.A trojan cleaned by deleting - quarantined
C:\Users\Isabella\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\6K3WRGA0\wbk781A.tmp HTML/Phishing.LinkedIn.A trojan cleaned by deleting - quarantined
C:\Users\Isabella\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\L86JS43M\wbk131F.tmp HTML/Phishing.LinkedIn.A trojan cleaned by deleting - quarantined
C:\Users\Isabella\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\L86JS43M\wbk1378.tmp HTML/Phishing.LinkedIn.A trojan cleaned by deleting - quarantined
C:\Users\Isabella\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\L86JS43M\wbk1DCD.tmp HTML/Phishing.LinkedIn.A trojan cleaned by deleting - quarantined
C:\Users\Isabella\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\U260W4X3\wbk8154.tmp HTML/Phishing.LinkedIn.A trojan cleaned by deleting - quarantined
C:\Users\Isabella\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\U260W4X3\wbkB68B.tmp HTML/Phishing.LinkedIn.A trojan cleaned by deleting - quarantined
C:\Users\Isabella\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\U260W4X3\wbkBB4E.tmp HTML/Phishing.LinkedIn.A trojan cleaned by deleting - quarantined
C:\Users\Isabella\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\U260W4X3\wbkC39C.tmp HTML/Phishing.LinkedIn.A trojan cleaned by deleting - quarantined
C:\Users\Isabella\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\U260W4X3\wbkF7A6.tmp HTML/Phishing.LinkedIn.A trojan cleaned by deleting - quarantined
C:\Users\Isabella\Documents\PROGRAMS INSTALL FILES\FORMAT FACTORY\FFSetup220.exe Win32/Adware.ADON application cleaned by deleting - quarantined
C:\Users\Isabella\Documents\PROGRAMS INSTALL FILES\YOUTUBEDOWNLOADER\YouTubeDownloaderSetup271.exe a variant of Win32/Toolbar.Widgi application cleaned by deleting - quarantined
C:\Users\Isabella\Documents\PROGRAMS INSTALL FILES\YOUTUBEDOWNLOADER\YouTubeDownloaderSetup272.exe a variant of Win32/Toolbar.Widgi application cleaned by deleting - quarantined
C:\Users\Isabella\Documents\PROGRAMS INSTALL FILES\YOUTUBEDOWNLOADER\YouTubeDownloaderSetup33.exe a variant of Win32/Toolbar.Widgi application cleaned by deleting - quarantined
C:\Users\Isabella\Documents\PROGRAMS INSTALL FILES 2\GAME BOOSTER 3\3_2\gb3-setup.exe a variant of Win32/ELEX application cleaned by deleting - quarantined
C:\Users\Isabella\Documents\PROGRAMS INSTALL FILES 2\SMART DEFRAG 2_3\sd-setup.exe a variant of Win32/ELEX application cleaned by deleting - quarantined
C:\Users\Isabella\Documents\PROGRAMS INSTALL FILES 2\SMART DEFRAG 2_3\2_4\defragsetup.exe a variant of Win32/ELEX application cleaned by deleting - quarantined
C:\Users\Isabella\Downloads\driverhivetrialsetup_t2_a1070_c5.exe probably unknown NewHeur_PE virus cleaned by deleting - quarantined
C:\Users\Isabella\Downloads\sd-setup.exe a variant of Win32/ELEX application cleaned by deleting - quarantined
C:\Users\Isabella\Downloads\WinZip165 (1).exe a variant of Win32/OpenInstall application cleaned by deleting - quarantined
C:\Users\Isabella\Downloads\WinZip165(1).exe a variant of Win32/OpenInstall application cleaned by deleting - quarantined

#11 coral67

coral67
  • Topic Starter

  • Members
  • 54 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Switzerland
  • Local time:02:45 PM

Posted 08 October 2012 - 02:48 AM

MiniToolBox

-------------------


MiniToolBox by Farbar Version: 23-07-2012
Ran by Isabella (administrator) on 08-10-2012 at 09:40:11
Microsoft Windows 7 Ultimate Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================

"network.proxy.no_proxies_on", ""
"network.proxy.socks_version", 4
"network.proxy.type", 0

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================



========================= IP Configuration: ================================

Realtek PCIe GBE Family Controller = Local Area Connection (Connected)
Dell Wireless 1397 WLAN Mini-Card = Wireless Network Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled
set interface interface="Local Area Connection-WFP LightWeight Filter-0000" forwarding=disabled advertise=disabled mtu=1300 metric=0 siteprefixlength=0 nud=disabled routerdiscovery=disabled managedaddress=disabled otherstateful=disabled weakhostsend=disabled weakhostreceive=disabled ignoredefaultroutes=disabled advertisedrouterlifetime=0 advertisedefaultroute=disabled currenthoplimit=0 forcearpndwolpattern=disabled enabledirectedmacwolpattern=disabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Isabella-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
Physical Address. . . . . . . . . : 00-24-E8-F6-34-0F
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::9c9f:28ea:f6d0:3471%11(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.43(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : lundi 8 octobre 2012 08:03:56
Lease Expires . . . . . . . . . . : mardi 9 octobre 2012 08:03:56
Default Gateway . . . . . . . . . : 192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 285222120
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-12-A8-48-07-00-24-E8-F6-34-0F
DNS Servers . . . . . . . . . . . : 192.168.1.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Wireless LAN adapter Wireless Network Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Dell Wireless 1397 WLAN Mini-Card
Physical Address. . . . . . . . . : 70-1A-04-89-00-97
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{CE18FBAE-45E9-4AA6-9106-6C23C9662DD2}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{D36FFD3D-68A7-4FB3-82B3-02F397B3F1BE}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 15:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:5ef5:79fb:b7:3f90:aafe:37b6(Preferred)
Link-local IPv6 Address . . . . . : fe80::b7:3f90:aafe:37b6%22(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled
DNS request timed out.
timeout was 2 seconds.
Server: UnKnown
Address: 192.168.1.1

Name: google.com
Addresses: 2a00:1450:4002:802::1004
74.125.232.96
74.125.232.110
74.125.232.105
74.125.232.101
74.125.232.98
74.125.232.104
74.125.232.99
74.125.232.100
74.125.232.103
74.125.232.102
74.125.232.97


Pinging google.com [173.194.35.1] with 32 bytes of data:
Reply from 173.194.35.1: bytes=32 time=33ms TTL=53
Reply from 173.194.35.1: bytes=32 time=34ms TTL=53

Ping statistics for 173.194.35.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 33ms, Maximum = 34ms, Average = 33ms
DNS request timed out.
timeout was 2 seconds.
Server: UnKnown
Address: 192.168.1.1

Name: yahoo.com
Addresses: 98.139.183.24
98.138.253.109
72.30.38.140


Pinging yahoo.com [98.139.183.24] with 32 bytes of data:
Reply from 98.139.183.24: bytes=32 time=210ms TTL=48
Reply from 98.139.183.24: bytes=32 time=158ms TTL=48

Ping statistics for 98.139.183.24:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 158ms, Maximum = 210ms, Average = 184ms
DNS request timed out.
timeout was 2 seconds.
Server: UnKnown
Address: 192.168.1.1

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
11...00 24 e8 f6 34 0f ......Realtek PCIe GBE Family Controller
10...70 1a 04 89 00 97 ......Dell Wireless 1397 WLAN Mini-Card
1...........................Software Loopback Interface 1
24...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
23...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
22...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.43 20
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.43 276
192.168.1.43 255.255.255.255 On-link 192.168.1.43 276
192.168.1.255 255.255.255.255 On-link 192.168.1.43 276
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.43 276
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.43 276
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
22 58 ::/0 On-link
1 306 ::1/128 On-link
22 58 2001::/32 On-link
22 306 2001:0:5ef5:79fb:b7:3f90:aafe:37b6/128
On-link
11 276 fe80::/64 On-link
22 306 fe80::/64 On-link
22 306 fe80::b7:3f90:aafe:37b6/128
On-link
11 276 fe80::9c9f:28ea:f6d0:3471/128
On-link
1 306 ff00::/8 On-link
22 306 ff00::/8 On-link
11 276 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 09 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 09 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (10/08/2012 08:55:12 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (10/08/2012 08:52:57 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (10/08/2012 08:04:17 AM) (Source: BstHdAndroidSvc) (User: )
Description: Service cannot be started. System.ApplicationException: Cannot start service. Service did not stop gracefully the last time it was run.
at BlueStacks.hyperDroid.Service.Service.OnStart(String[] args)
at System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)

Error: (10/07/2012 11:46:17 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (10/07/2012 11:42:59 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (10/07/2012 11:42:22 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (10/07/2012 11:40:20 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (10/07/2012 11:40:16 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (10/07/2012 11:06:06 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (10/07/2012 10:55:20 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.


System errors:
=============
Error: (10/08/2012 08:10:18 AM) (Source: Service Control Manager) (User: )
Description: The Windows Update service hung on starting.

Error: (10/08/2012 08:07:21 AM) (Source: DCOM) (User: )
Description: C:\PROGRA~2\KASPER~1\KASPER~1\KASPER~2\MODULE~1\stpass.exe -Embedding5{08E8A17C-19E7-4119-9025-8A317F81FBD3}

Error: (10/08/2012 08:07:01 AM) (Source: DCOM) (User: )
Description: "C:\Program Files (x86)\Common Files\InstallShield\UpdateService\agent.exe" -Embedding740{FFF2D28F-E4EE-44D9-8104-8E71556757F6}

Error: (10/08/2012 08:04:17 AM) (Source: Service Control Manager) (User: )
Description: The BlueStacks Android Service service terminated with the following error:
%%1064

Error: (10/07/2012 04:36:44 PM) (Source: Service Control Manager) (User: )
Description: The Windows Update service hung on starting.

Error: (10/07/2012 04:32:51 PM) (Source: DCOM) (User: )
Description: C:\PROGRA~2\KASPER~1\KASPER~1\KASPER~2\MODULE~1\stpass.exe -Embedding5{08E8A17C-19E7-4119-9025-8A317F81FBD3}

Error: (10/07/2012 04:32:25 PM) (Source: DCOM) (User: )
Description: "C:\Program Files (x86)\Common Files\InstallShield\UpdateService\agent.exe" -Embedding740{FFF2D28F-E4EE-44D9-8104-8E71556757F6}

Error: (10/07/2012 04:30:25 PM) (Source: Service Control Manager) (User: )
Description: The BlueStacks Android Service service terminated with the following error:
%%1064

Error: (10/07/2012 02:47:02 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (10/07/2012 02:47:02 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068


Microsoft Office Sessions:
=========================
Error: (10/08/2012 08:55:12 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestc:\Users\Isabella\downloads\esetsmartinstaller_enu.exe

Error: (10/08/2012 08:52:57 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestc:\program files (x86)\ESET\eset online scanner\ESETSmartInstaller.exe

Error: (10/08/2012 08:04:17 AM) (Source: BstHdAndroidSvc)(User: )
Description: Service cannot be started. System.ApplicationException: Cannot start service. Service did not stop gracefully the last time it was run.
at BlueStacks.hyperDroid.Service.Service.OnStart(String[] args)
at System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)

Error: (10/07/2012 11:46:17 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Program Files (x86)\ESET\ESET Online Scanner\ESETSmartInstaller.exe

Error: (10/07/2012 11:42:59 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Program Files (x86)\ESET\ESET Online Scanner\ESETSmartInstaller.exe

Error: (10/07/2012 11:42:22 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Program Files (x86)\ESET\ESET Online Scanner\ESETSmartInstaller.exe

Error: (10/07/2012 11:40:20 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Isabella\Downloads\esetsmartinstaller_enu.exe

Error: (10/07/2012 11:40:16 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Isabella\Downloads\esetsmartinstaller_enu.exe

Error: (10/07/2012 11:06:06 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Program Files (x86)\ESET\ESET Online Scanner\ESETSmartInstaller.exe

Error: (10/07/2012 10:55:20 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Isabella\Downloads\esetsmartinstaller_enu(1).exe


=========================== Installed Programs ============================

7-Zip 9.20 (x64 edition) (Version: 9.20.00.0)
Abandoned: Chestnut Lodge Asylum
Accelerometer (Version: 1.06.08.19)
Acronis True Image Home 2012 (Version: 15.0.7119)
Adelantado Trilogy: Book One
Adobe Flash Player 11 ActiveX (Version: 11.4.402.278)
Adobe Flash Player 11 Plugin (Version: 11.4.402.265)
Adobe Media Player (Version: 1.8)
Adobe Reader 9.5.2 (Version: 9.5.2)
Adobe Shockwave Player 11.5 (Version: 11.5.6.606)
Akamai NetSession Interface
Akamai NetSession Interface Service
Alien Skin Eye Candy 5 Impact
Alien Skin Eye Candy 5 Nature
Alien Skin Xenofex 2.0
AMP Font Viewer
Angry Birds (Version: 2.2.0)
Angry Birds Space (Version: 1.3.0)
Any Video Converter 3.0.7
Apple Application Support (Version: 2.2.2)
Apple Mobile Device Support (Version: 6.0.0.59)
Apple Software Update (Version: 2.1.3.127)
ATI AVIVO64 Codecs (Version: 10.12.0.00412)
ATI Catalyst Install Manager (Version: 3.0.765.0)
Atlantis 3D Screensaver 1.0
Awakening: The Goblin Kingdom
Azada: In Libro Collector's Edition
Beyond Compare Version 3.3.4
Big Fish Games: Game Manager (Version: 3.0.1.60)
BlueStacks (Version: 0.7.3.2605)
Bonjour (Version: 3.0.0.10)
calibre (Version: 0.8.60)
Canon Easy-PhotoPrint EX
Canon Easy-WebPrint EX
Canon iP4800 series Printer Driver
Canon My Printer
Canon Solution Menu EX
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center Core Implementation (Version: 2010.0412.1409.23514)
Catalyst Control Center Graphics Full Existing (Version: 2010.0412.1409.23514)
Catalyst Control Center Graphics Full New (Version: 2010.0412.1409.23514)
Catalyst Control Center Graphics Light (Version: 2010.0412.1409.23514)
Catalyst Control Center Graphics Previews Common (Version: 2010.0412.1409.23514)
Catalyst Control Center Graphics Previews Vista (Version: 2010.0412.1409.23514)
Catalyst Control Center InstallProxy
Catalyst Control Center Localization All (Version: 2010.0412.1409.23514)
ccc-core-static (Version: 2010.0412.1409.23514)
ccc-utility64 (Version: 2009.0625.1812.30825)
ccc-utility64 (Version: 2010.0412.1409.23514)
CCC Help Chinese Standard (Version: 2010.0412.1408.23514)
CCC Help Chinese Traditional (Version: 2010.0412.1408.23514)
CCC Help Danish (Version: 2010.0412.1408.23514)
CCC Help Dutch (Version: 2010.0412.1408.23514)
CCC Help English (Version: 2010.0412.1408.23514)
CCC Help Finnish (Version: 2010.0412.1408.23514)
CCC Help French (Version: 2010.0412.1408.23514)
CCC Help German (Version: 2010.0412.1408.23514)
CCC Help Italian (Version: 2010.0412.1408.23514)
CCC Help Japanese (Version: 2010.0412.1408.23514)
CCC Help Korean (Version: 2010.0412.1408.23514)
CCC Help Norwegian (Version: 2010.0412.1408.23514)
CCC Help Portuguese (Version: 2010.0412.1408.23514)
CCC Help Russian (Version: 2010.0412.1408.23514)
CCC Help Spanish (Version: 2010.0412.1408.23514)
CCC Help Swedish (Version: 2010.0412.1408.23514)
CCleaner (Version: 3.22)
CD-LabelPrint
Charlaine Harris: Dying for Daylight
Cisco EAP-FAST Module (Version: 2.2.14)
Cisco LEAP Module (Version: 1.0.19)
Cisco PEAP Module (Version: 1.1.6)
Compatibility Pack for the 2007 Office system (Version: 12.0.6612.1000)
Corel Paint Shop Pro Photo X2 (Version: 12.50.0001)
Corel PaintShop Pro X5 (Version: 15.0.0.183)
Corel PaintShop Pro X5 (Version: 15.1.0.10)
Curse of the Pharaoh 3
Cursed Memories: The Secret of Agony Creek Collector's Edition
D3DX10 (Version: 15.4.2368.0902)
Dark Alleys: Penumbra Motel Collector's Edition
Dark Dimensions: City of Fog Collector's Edition
Dark Dimensions: Wax Beauty
Dark Parables: The Red Riding Hood Sisters Collector's Edition
Dark Tales: Edgar Allan Poe's The Premature Burial Collector's Edition
Death Under Tuscan Skies: A Dana Knightstone Novel Collector's Edition
DebugBar v5.4.1 for Internet Explorer (remove only) (Version: 5.4.1)
Defraggler (Version: 2.10)
Dell DataSafe Local Backup - Support Software (Version: 9.4.60)
Dell DataSafe Local Backup (Version: 9.4.60)
Dell DataSafe Online (Version: 1.2.0009)
Dell Dock (Version: 2.0.0)
Dell Driver Download Manager (Version: 2.1.0.0)
Dell Edoc Viewer (Version: 1.0.0)
Dell Getting Started Guide (Version: 1.00.0000)
Dell Support Center (Version: 3.2.6032.55)
Dell Wireless WLAN Card Utility (Version: 5.30.21.0)
Dream Chronicles: The Book of Water Collector's Edition
Echoes of the Past: Royal House of Stone
Echoes of the Past: The Citadels of Time Collector's Edition
Emma and the Inventor
Enregistrement utilisateur de Canon iP4800 series
Eraser 6.0.10.2620 (Version: 6.0.2620)
ESET Online Scanner v3
Eye Candy 4000
FaceFilter Studio 2 (Version: 2.0)
Fierce Tales: The Dog's Heart Collector's Edition
FileZilla Client 3.5.3 (Version: 3.5.3)
Filters Unlimited 2.0
FormatFactory 2.50 (Version: 2.50)
Game Booster 3 (Version: 3.4)
GamesBar 2.0.1.78 (Version: 2.0.1.78)
getPlus® Download Manager for Corel (Version: 1.5.0.56)
Google Chrome (Version: 22.0.1229.79)
Google Update Helper (Version: 1.3.21.123)
Gravely Silent: House of Deadlock Collector's Edition
Grim Tales: The Bride Collector's Edition
Hallowed Legends: Samhain Collector's Edition
Haunted Halls - Green Hills Sanitarium
Haunted Halls: Fears from Childhood
Haunted Legends: The Bronze Horseman Collector's Edition
Hidden Mysteries: Salem Secrets
HitmanPro 3.6 (Version: 3.6.1.164)
House of 1000 Doors: Family Secrets
ICA (Version: 15.0.0.183)
IETester v0.4.10 (remove only) (Version: 0.4.10)
Infected: The Twin Vaccine Collector’s Edition
IPM_PSP_COM (Version: 15.0.0.183)
iTunes (Version: 10.7.0.21)
Jasc Animation Shop 3 (Version: 3.11)
Jasc Paint Shop Pro 9 (Version: 9.00.0000)
Java 7 Update 7 (Version: 7.0.70)
Java Auto Updater (Version: 2.1.9.0)
Java™ 6 Update 14 (64-bit) (Version: 6.0.140)
Java™ 6 Update 18 (Version: 6.0.180)
Java™ 6 Update 22 (Version: 6.0.220)
Junk Mail filter update (Version: 15.4.3502.0922)
Kaspersky PURE (Version: 9.1.0.124)
Live! Cam Avatar Creator (Version: 4.6.3009.1)
Lost Souls: Enchanted Paintings
Maestro: Notes of Life Collector's Edition
Malwarebytes Anti-Malware version 1.65.0.1400 (Version: 1.65.0.1400)
Mayan Prophecies: Ship of Spirits Collector's Edition
MCF Ravenhearst
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Expression Web 3 (Version: 3.0.3813.0)
Microsoft Expression Web 3 SP1
Microsoft Search Enhancement Pack (Version: 3.0.133.0)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable - KB2467175 (Version: 8.0.51011)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.58299)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (Version: 8.0.51011)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022.218 (Version: 9.0.21022.218)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft_VC80_ATL_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_ATL_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86_x64 (Version: 80.50727.4053)
Microsoft_VC90_ATL_x86 (Version: 1.00.0000)
Microsoft_VC90_ATL_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86_x64 (Version: 1.00.0000)
Moniteur de la technologie Intel® Turbo Boost (Version: 1.0.186.6)
Mouse Suite (Version: 3.9)
Mozilla Firefox 15.0 (x86 en-US) (Version: 15.0)
Mozilla Firefox 15.0.1 (x86 en-US) (Version: 15.0.1)
Mozilla Maintenance Service (Version: 15.0.1)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
Mystery Chronicles: Betrayals of Love
Mystery of Mortlake Mansion
Mystery Trackers: Black Isle Collector's Edition
Nightfall Mysteries 2 - Asylum Conspiracy
Nightmare Realm Collector's Edition
Nik Color Efex Pro 3.0 (Version: 1.0.0.53)
Nik Color Efex Pro 3.0 (Version: 1.00.0000)
Nitro Reader 2 (Version: 2.5.0.45)
Nora Roberts - Vision In White
Notepad++ (Version: 6.1.8)
NVIDIA PhysX (Version: 9.12.0613)
OpenAL
OpenOffice.org 3.4 (Version: 3.4.9590)
Paranormal Crime Investigations: Brotherhood of the Crescent Snake Collector's Edition
Penny Dreadfuls: Sweeney Todd Collector`s Edition
PowerDVD DX (Version: 8.3.6107)
Princess Isabella: A Witch's Curse
PSPPContent (Version: 15.1.0.9)
PSPPHelp (Version: 15.0.0.183)
PSPPro64 (Version: 15.0.0.183)
PuppetShow: Mystery of Joyville ™
Quickset64 (Version: 9.6.6)
QuickTime (Version: 7.72.80.56)
RealPlayer
Recuva (Version: 1.43)
Redemption Cemetery: Children's Plight Collector's Edition
Redemption Cemetery: Curse of the Raven
Redemption Cemetery: Grave Testimony Collector’s Edition
Revo Uninstaller Pro 2.5.9 (Version: 2.5.9)
Roxio Burn (Version: 1.0)
Roxio Burn (Version: 1.0.0)
Roxio Update Manager (Version: 6.0.0)
Royal Detective: The Lord of Statues Collector's Edition
Setup (Version: 15.0.0.183)
Shades of Death: Royal Blood
Shadow Wolf Mysteries: Bane of the Family Collector's Edition
Shadow Wolf Mysteries: Curse of the Full Moon Collector's Edition
Sherlock Holmes vs Arsene Lupin Nemesis (Version: 1.0)
Shiver: Vanishing Hitchhiker Collector's Edition
Silent Scream: The Dancer
Smart Defrag 2 (Version: 2.5)
Speccy (Version: 1.17)
Spirits of Mystery: Amber Maiden Collector's Edition
Spotify (Version: 0.8.3.222.g317ab79d)
Strange Cases: The Secrets of Grey Mist Lake Collector's Edition
Stray Souls: Dollhouse Story Collector's Edition
Surface: Mystery of Another World
Syberia
Syberia - Part 3
Syberia II
Synaptics Pointing Device Driver (Version: 13.2.2.2)
The Agency of Anomalies: Mystic Hospital Collector's Edition
The Agency of Anomalies: The Last Performance Collector's Edition
The Clockwork Man - The Hidden World
The Fool
The Stroke of Midnight
The Testament of Sherlock Holmes (Version: 1.00.0777)
Timeless: The Forgotten Town Collector's Edition
Treasure Seekers: The Time Has Come Collector's Edition
Twisted Lands: Insomniac
Ultimate Creative Collection (X5) (Version: 1.0.0.50)
Ultimate Creative Collection (X5) (Version: 1.00.0000)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Vampire Saga - Welcome To Hell Lock
VLC media player 2.0.1 (Version: 2.0.1)
Voodoo Whisperer: Curse of a Legend Collector's Edition
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3555.0308)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3555.0308)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live Sync (Version: 14.0.8089.726)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
Windows Media Encoder 9 Series
Windows Media Encoder 9 Series (Version: 9.00.2980)
WinRAR archiver
WinZip 16.5 (Version: 16.5.10095)
YTD Toolbar v6.3 (Version: 6.3)
YTD Video Downloader 3.9.2
Zattoo4 4.0.5 (Version: 4.0.5)

========================= Memory info: ===================================

Percentage of memory in use: 48%
Total physical RAM: 6132.51 MB
Available physical RAM: 3180.58 MB
Total Pagefile: 12263.21 MB
Available Pagefile: 9000.49 MB
Total Virtual: 4095.88 MB
Available Virtual: 3966.2 MB

========================= Partitions: =====================================

1 Drive c: (OS) (Fixed) (Total:451.07 GB) (Free:237.49 GB) NTFS

========================= Users: ========================================

User accounts for \\ISABELLA-PC

Administrator Guest Isabella

========================= Restore Points ==================================

18-09-2012 15:09:37 Windows Update
19-09-2012 21:25:26 Revo Uninstaller Pro's restore point - Notepad++
19-09-2012 21:37:39 Revo Uninstaller Pro's restore point - TuneUp Utilities 2012
19-09-2012 21:38:37 Removed TuneUp Utilities 2012
19-09-2012 21:39:25 TuneUp Utilities Language Pack (de-DE) wird entfernt
19-09-2012 21:40:44 Revo Uninstaller Pro's restore point - PSPad editor
21-09-2012 16:11:12 Windows Update
21-09-2012 21:02:38 Installed DirectX
21-09-2012 21:51:55 Revo Uninstaller Pro's restore point - Roads of Rome
21-09-2012 21:55:30 Revo Uninstaller Pro's restore point - Roads of Rome II
21-09-2012 21:57:04 Revo Uninstaller Pro's restore point - Roads of Rome III
22-09-2012 22:27:42 Windows Update
26-09-2012 20:38:48 Windows Update
02-10-2012 17:15:37 Windows Update
03-10-2012 10:57:31 Installed FaceFilter Studio
03-10-2012 11:18:36 Revo Uninstaller Pro's restore point - Sable Maze: Sullivan River Collector's Edition

**** End of log ****

#12 coral67

coral67
  • Topic Starter

  • Members
  • 54 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Switzerland
  • Local time:02:45 PM

Posted 08 October 2012 - 02:51 AM

Farbar

----------------------

Farbar Service Scanner Version: 07-10-2012
Ran by Isabella (administrator) on 08-10-2012 at 09:50:00
Running from "C:\Users\Isabella\Downloads"
Microsoft Windows 7 Ultimate Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall"=DWORD:0


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============

Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****

#13 coral67

coral67
  • Topic Starter

  • Members
  • 54 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Switzerland
  • Local time:02:45 PM

Posted 08 October 2012 - 03:01 AM

AdwCleaner

----------------

# AdwCleaner v2.004 - Logfile created 10/08/2012 at 09:52:25
# Updated 06/10/2012 by Xplode
# Operating system : Windows 7 Ultimate Service Pack 1 (64 bits)
# User : Isabella - ISABELLA-PC
# Boot Mode : Normal
# Running from : C:\Users\Isabella\Downloads\adwcleaner.exe
# Option [Delete]


***** [Services] *****

Stopped & Deleted : Application Updater

***** [Files / Folders] *****

File Deleted : C:\Program Files (x86)\Mozilla Firefox\searchplugins\babylon.xml
Folder Deleted : C:\Program Files (x86)\Application Updater
Folder Deleted : C:\Program Files (x86)\Common Files\spigot
Folder Deleted : C:\Program Files (x86)\GamesBar
Folder Deleted : C:\ProgramData\Babylon
Folder Deleted : C:\ProgramData\GamesBar
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GamesBar
Folder Deleted : C:\Users\Isabella\AppData\Local\OpenCandy
Folder Deleted : C:\Users\Isabella\AppData\LocalLow\Search Settings
Folder Deleted : C:\Users\Isabella\AppData\Roaming\Babylon
Folder Deleted : C:\Users\Isabella\AppData\Roaming\OpenCandy

***** [Registry] *****

Key Deleted : HKCU\Software\AppDataLow\Software\Search Settings
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{6F282B65-56BF-4BD1-A8B2-A4449A05863D}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{F3FEE66E-E034-436A-86E4-9690573BEE8A}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{6F282B65-56BF-4BD1-A8B2-A4449A05863D}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F3FEE66E-E034-436A-86E4-9690573BEE8A}
Key Deleted : HKCU\Software\Search Settings
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Key Deleted : HKLM\Software\Application Updater
Key Deleted : HKLM\Software\Babylon
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{1A93C934-025B-4C3A-B38E-9654A7003239}
Key Deleted : HKLM\Software\Search Settings
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{6F282B65-56BF-4BD1-A8B2-A4449A05863D}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{F3FEE66E-E034-436A-86E4-9690573BEE8A}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{F3FEE66E-E034-436A-86E4-9690573BEE8A}]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{6F282B65-56BF-4BD1-A8B2-A4449A05863D}]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{F3FEE66E-E034-436A-86E4-9690573BEE8A}]

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16421

[OK] Registry is clean.

-\\ Mozilla Firefox v15.0 (en-US)

Profile name : default [Profil par défaut]
File : C:\Users\Isabella\AppData\Roaming\Mozilla\Firefox\Profiles\y3jdjrqt.default\prefs.js

C:\Users\Isabella\AppData\Roaming\Mozilla\Firefox\Profiles\y3jdjrqt.default\user.js ... Deleted !

Deleted : user_pref("browser.search.order.1", "Search the web (Babylon)");
Deleted : user_pref("extensions.gamesbar.msnus.config.newtabhtml", "<html>\r\n<head>\r\n<title>MSN Games - Web[...]

Profile name : Mozilla_Firefox_2.0
File : C:\Users\Isabella\AppData\Roaming\Mozilla\Firefox\Profiles\dmimodzj.Mozilla_Firefox_2.0\prefs.js

C:\Users\Isabella\AppData\Roaming\Mozilla\Firefox\Profiles\dmimodzj.Mozilla_Firefox_2.0\user.js ... Deleted !

[OK] File is clean.

Profile name : Mozilla_Firefox_3.0
File : C:\Users\Isabella\AppData\Roaming\Mozilla\Firefox\Profiles\gw3nzg2s.Mozilla_Firefox_3.0\prefs.js

C:\Users\Isabella\AppData\Roaming\Mozilla\Firefox\Profiles\gw3nzg2s.Mozilla_Firefox_3.0\user.js ... Deleted !

[OK] File is clean.

Profile name : Mozilla_Firefox_3.5
File : C:\Users\Isabella\AppData\Roaming\Mozilla\Firefox\Profiles\pmsywat7.Mozilla_Firefox_3.5\prefs.js

C:\Users\Isabella\AppData\Roaming\Mozilla\Firefox\Profiles\pmsywat7.Mozilla_Firefox_3.5\user.js ... Deleted !

[OK] File is clean.

Profile name : Mozilla_Firefox_3.6
File : C:\Users\Isabella\AppData\Roaming\Mozilla\Firefox\Profiles\mj0g7ukt.Mozilla_Firefox_3.6\prefs.js

C:\Users\Isabella\AppData\Roaming\Mozilla\Firefox\Profiles\mj0g7ukt.Mozilla_Firefox_3.6\user.js ... Deleted !

[OK] File is clean.

Profile name : Mozilla_Firefox_4.0
File : C:\Users\Isabella\AppData\Roaming\Mozilla\Firefox\Profiles\i38c3lqk.Mozilla_Firefox_4.0\prefs.js

C:\Users\Isabella\AppData\Roaming\Mozilla\Firefox\Profiles\i38c3lqk.Mozilla_Firefox_4.0\user.js ... Deleted !

[OK] File is clean.

Profile name : Mozilla_Firefox_5.0
File : C:\Users\Isabella\AppData\Roaming\Mozilla\Firefox\Profiles\eo1f66ak.Mozilla_Firefox_5.0\prefs.js

C:\Users\Isabella\AppData\Roaming\Mozilla\Firefox\Profiles\eo1f66ak.Mozilla_Firefox_5.0\user.js ... Deleted !

[OK] File is clean.

-\\ Google Chrome v22.0.1229.79

File : C:\Users\Isabella\AppData\Local\Google\Chrome\User Data\Default\Preferences

Deleted [l.50] : icon_url = "hxxp://www.babylon.com/favicon.ico",
Deleted [l.53] : keyword = "babylon.com",
Deleted [l.56] : search_url = "hxxp://search.babylon.com/?q={searchTerms}&affID=111304&tt=120912_nocpc_3812_4&babsrc=SP_ss&mntrId=c899f8b90000000000000024e8f6340f",

*************************

AdwCleaner[S1].txt - [5465 octets] - [08/10/2012 09:52:25]

########## EOF - C:\AdwCleaner[S1].txt - [5525 octets] ##########

#14 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:07:45 AM

Posted 08 October 2012 - 03:10 AM

JUNKWARE tool log?

Download

http://www.bleepingcomputer.com/download/rkill/

Run it and after scan finishes,post the contents of RKILL log located on the desktop here


Download

Autoruns

Extract and launch autoruns.exe

Allow the scan to get finished

Now click on FILE-SAVE

Filename:Autoruns.txt
Save as :Text

Paste the contents of text here

Any current issues?

#15 coral67

coral67
  • Topic Starter

  • Members
  • 54 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Switzerland
  • Local time:02:45 PM

Posted 08 October 2012 - 03:14 AM

Junkware tool is still running, will post log asap.

Ever since deleting all that stuff, my screen lags when scrolling. Not good at all.

Edited by coral67, 08 October 2012 - 03:16 AM.





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users