Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Redirect Virus? Seems like Ive tried mostly everything and its not working!!


  • Please log in to reply
12 replies to this topic

#1 oneslittleblessing

oneslittleblessing

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:02:04 PM

Posted 29 March 2013 - 06:52 PM

Hi!!! I need HELP!!!
 
I have a dell inspiron 1545 laptop and when I go on my user I seem to be getting a redirect. It doesnt matter what browser Im using. I have 3 different users on my computer and on mine the redirects seem to be happening the most. Its starting to get to a point where Im crossing my fingers just so a redirect doesnt pop up when I want to search for something. Please someone help!!!! Thank you so very much!!!

 

Mod Edit: Moved from Windows 7 to a more appropriate forum. ~bloopie


Edited by bloopie, 29 March 2013 - 08:20 PM.


BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,428 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:05:04 PM

Posted 29 March 2013 - 08:21 PM

Hello, I have moved this from Win7 to the Am I Infected forum.

 

Please run these and see how it is after.

 

Please Download TDSSkiller
Launch it.
Click on change parameters-Select TDLFS file system
Click on "Scan".
Please post the LOG report(log file should be in your C drive)
 
Do not change the default options on scan results.

 

 

 


MiniToolBox
Please download MiniToolBox, save it to your desktop and run it.

Checkmark the following checkboxes:

  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.

Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.

Note: When using "Reset FF Proxy Settings" option Firefox should be closed.

 

 

 

Please download AdwCleaner by Xplode onto your desktop.
•Close all open programs and internet browsers.
•Double click on adwcleaner.exe to run the tool.
•Click on Delete.
•Confirm each time with Ok.
•You will be prompted to restart your computer. A text file will open after the restart.
•Please post the contents of that logfile with your next reply.
•You can find the logfile at C:\AdwCleaner[S1].txt as well.

 


>>>>

Now I'd like us to scan your machine with ESET OnlineScan

  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png  button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.

NOTE:Sometimes if ESET finds no infections it will not create a log.


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 oneslittleblessing

oneslittleblessing
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:02:04 PM

Posted 30 March 2013 - 10:52 AM

Thanks BoopMe for the help. So I did the first step. Here is the following log for it:

 

08:49:54.0155 7936  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
08:49:54.0796 7936  ============================================================
08:49:54.0796 7936  Current date / time: 2013/03/30 08:49:54.0796
08:49:54.0796 7936  SystemInfo:
08:49:54.0796 7936  
08:49:54.0796 7936  OS Version: 6.1.7601 ServicePack: 1.0
08:49:54.0796 7936  Product type: Workstation
08:49:54.0797 7936  ComputerName: TV-RODRIGUEZ
08:49:54.0797 7936  UserName: Rodriguez
08:49:54.0797 7936  Windows directory: C:\Windows
08:49:54.0797 7936  System windows directory: C:\Windows
08:49:54.0797 7936  Running under WOW64
08:49:54.0797 7936  Processor architecture: Intel x64
08:49:54.0797 7936  Number of processors: 2
08:49:54.0797 7936  Page size: 0x1000
08:49:54.0797 7936  Boot type: Normal boot
08:49:54.0797 7936  ============================================================
08:49:55.0206 7936  Drive \Device\Harddisk0\DR0 - Size: 0xEE8156000 (59.63 Gb), SectorSize: 0x200, Cylinders: 0x1E67, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
08:49:55.0217 7936  ============================================================
08:49:55.0217 7936  \Device\Harddisk0\DR0:
08:49:55.0218 7936  MBR partitions:
08:49:55.0218 7936  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
08:49:55.0218 7936  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x770D800
08:49:55.0218 7936  ============================================================
08:49:55.0219 7936  C: <-> \Device\Harddisk0\DR0\Partition2
08:49:55.0219 7936  ============================================================
08:49:55.0219 7936  Initialize success
08:49:55.0219 7936  ============================================================
08:50:23.0295 5512  ============================================================
08:50:23.0295 5512  Scan started
08:50:23.0295 5512  Mode: Manual; TDLFS;
08:50:23.0295 5512  ============================================================
08:50:23.0423 5512  ================ Scan system memory ========================
08:50:23.0423 5512  System memory - ok
08:50:23.0423 5512  ================ Scan services =============================
08:50:23.0473 5512  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
08:50:23.0476 5512  1394ohci - ok
08:50:23.0487 5512  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
08:50:23.0491 5512  ACPI - ok
08:50:23.0497 5512  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
08:50:23.0498 5512  AcpiPmi - ok
08:50:23.0508 5512  [ 3927397AC60D943DAF8808AFFED582B7 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
08:50:23.0509 5512  AdobeARMservice - ok
08:50:23.0540 5512  [ EA856F4A46320389D1899B2CAA7BF40F ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
08:50:23.0543 5512  AdobeFlashPlayerUpdateSvc - ok
08:50:23.0557 5512  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
08:50:23.0562 5512  adp94xx - ok
08:50:23.0572 5512  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
08:50:23.0576 5512  adpahci - ok
08:50:23.0585 5512  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
08:50:23.0588 5512  adpu320 - ok
08:50:23.0597 5512  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
08:50:23.0600 5512  AeLookupSvc - ok
08:50:23.0612 5512  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD             C:\Windows\system32\drivers\afd.sys
08:50:23.0618 5512  AFD - ok
08:50:23.0625 5512  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\drivers\agp440.sys
08:50:23.0627 5512  agp440 - ok
08:50:23.0635 5512  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
08:50:23.0637 5512  ALG - ok
08:50:23.0643 5512  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\drivers\aliide.sys
08:50:23.0644 5512  aliide - ok
08:50:23.0650 5512  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\drivers\amdide.sys
08:50:23.0652 5512  amdide - ok
08:50:23.0661 5512  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
08:50:23.0662 5512  AmdK8 - ok
08:50:23.0669 5512  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
08:50:23.0671 5512  AmdPPM - ok
08:50:23.0678 5512  [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
08:50:23.0680 5512  amdsata - ok
08:50:23.0689 5512  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
08:50:23.0692 5512  amdsbs - ok
08:50:23.0698 5512  [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
08:50:23.0700 5512  amdxata - ok
08:50:23.0708 5512  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\Windows\system32\drivers\appid.sys
08:50:23.0710 5512  AppID - ok
08:50:23.0718 5512  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
08:50:23.0721 5512  AppIDSvc - ok
08:50:23.0728 5512  [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo         C:\Windows\System32\appinfo.dll
08:50:23.0732 5512  Appinfo - ok
08:50:23.0740 5512  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\DRIVERS\arc.sys
08:50:23.0742 5512  arc - ok
08:50:23.0748 5512  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
08:50:23.0751 5512  arcsas - ok
08:50:23.0757 5512  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
08:50:23.0759 5512  AsyncMac - ok
08:50:23.0765 5512  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\drivers\atapi.sys
08:50:23.0766 5512  atapi - ok
08:50:23.0780 5512  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
08:50:23.0791 5512  AudioEndpointBuilder - ok
08:50:23.0812 5512  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
08:50:23.0817 5512  AudioSrv - ok
08:50:23.0829 5512  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\Windows\System32\AxInstSV.dll
08:50:23.0834 5512  AxInstSV - ok
08:50:23.0849 5512  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
08:50:23.0854 5512  b06bdrv - ok
08:50:23.0865 5512  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
08:50:23.0869 5512  b57nd60a - ok
08:50:23.0896 5512  [ 9E84A931DBEE0292E38ED672F6293A99 ] BCM43XX         C:\Windows\system32\DRIVERS\bcmwl664.sys
08:50:23.0909 5512  BCM43XX - ok
08:50:23.0918 5512  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
08:50:23.0922 5512  BDESVC - ok
08:50:23.0928 5512  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
08:50:23.0931 5512  Beep - ok
08:50:23.0946 5512  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE             C:\Windows\System32\bfe.dll
08:50:23.0955 5512  BFE - ok
08:50:23.0979 5512  [ E92A3DA47BED7CC65D264235617ED46E ] BHDrvx64        C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.2.1.22\Definitions\BASHDefs\20130322.001\BHDrvx64.sys
08:50:23.0993 5512  BHDrvx64 - ok
08:50:24.0009 5512  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\Windows\System32\qmgr.dll
08:50:24.0021 5512  BITS - ok
08:50:24.0028 5512  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
08:50:24.0029 5512  blbdrive - ok
08:50:24.0037 5512  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
08:50:24.0039 5512  bowser - ok
08:50:24.0045 5512  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
08:50:24.0046 5512  BrFiltLo - ok
08:50:24.0053 5512  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
08:50:24.0054 5512  BrFiltUp - ok
08:50:24.0063 5512  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\Windows\System32\browser.dll
08:50:24.0067 5512  Browser - ok
08:50:24.0076 5512  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
08:50:24.0080 5512  Brserid - ok
08:50:24.0091 5512  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
08:50:24.0093 5512  BrSerWdm - ok
08:50:24.0100 5512  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
08:50:24.0101 5512  BrUsbMdm - ok
08:50:24.0109 5512  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
08:50:24.0111 5512  BrUsbSer - ok
08:50:24.0117 5512  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
08:50:24.0119 5512  BTHMODEM - ok
08:50:24.0131 5512  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
08:50:24.0136 5512  bthserv - ok
08:50:24.0147 5512  [ 248C952C82DF1E23775432774CBB20F1 ] ccSet_N360      C:\Windows\system32\drivers\N360x64\1403000.024\ccSetx64.sys
08:50:24.0149 5512  ccSet_N360 - ok
08:50:24.0157 5512  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
08:50:24.0159 5512  cdfs - ok
08:50:24.0169 5512  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
08:50:24.0172 5512  cdrom - ok
08:50:24.0182 5512  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\Windows\System32\certprop.dll
08:50:24.0186 5512  CertPropSvc - ok
08:50:24.0196 5512  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
08:50:24.0198 5512  circlass - ok
08:50:24.0209 5512  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
08:50:24.0214 5512  CLFS - ok
08:50:24.0226 5512  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
08:50:24.0228 5512  clr_optimization_v2.0.50727_32 - ok
08:50:24.0236 5512  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
08:50:24.0239 5512  clr_optimization_v2.0.50727_64 - ok
08:50:24.0250 5512  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
08:50:24.0252 5512  clr_optimization_v4.0.30319_32 - ok
08:50:24.0261 5512  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
08:50:24.0263 5512  clr_optimization_v4.0.30319_64 - ok
08:50:24.0270 5512  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
08:50:24.0271 5512  CmBatt - ok
08:50:24.0278 5512  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\drivers\cmdide.sys
08:50:24.0279 5512  cmdide - ok
08:50:24.0291 5512  [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG             C:\Windows\system32\Drivers\cng.sys
08:50:24.0297 5512  CNG - ok
08:50:24.0314 5512  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
08:50:24.0315 5512  Compbatt - ok
08:50:24.0322 5512  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
08:50:24.0323 5512  CompositeBus - ok
08:50:24.0330 5512  COMSysApp - ok
08:50:24.0339 5512  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
08:50:24.0340 5512  crcdisk - ok
08:50:24.0354 5512  [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc        C:\Windows\system32\cryptsvc.dll
08:50:24.0358 5512  CryptSvc - ok
08:50:24.0374 5512  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\Windows\system32\rpcss.dll
08:50:24.0381 5512  DcomLaunch - ok
08:50:24.0396 5512  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
08:50:24.0403 5512  defragsvc - ok
08:50:24.0413 5512  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
08:50:24.0415 5512  DfsC - ok
08:50:24.0427 5512  [ 113212D25D0C9BB8901A9833774DA97F ] dg_ssudbus      C:\Windows\system32\DRIVERS\ssudbus.sys
08:50:24.0429 5512  dg_ssudbus - ok
08:50:24.0442 5512  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\Windows\system32\dhcpcore.dll
08:50:24.0448 5512  Dhcp - ok
08:50:24.0456 5512  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
08:50:24.0458 5512  discache - ok
08:50:24.0465 5512  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\DRIVERS\disk.sys
08:50:24.0467 5512  Disk - ok
08:50:24.0476 5512  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
08:50:24.0481 5512  Dnscache - ok
08:50:24.0491 5512  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\Windows\System32\dot3svc.dll
08:50:24.0497 5512  dot3svc - ok
08:50:24.0506 5512  [ B42ED0320C6E41102FDE0005154849BB ] Dot4            C:\Windows\system32\DRIVERS\Dot4.sys
08:50:24.0508 5512  Dot4 - ok
08:50:24.0514 5512  [ E9F5969233C5D89F3C35E3A66A52A361 ] Dot4Print       C:\Windows\system32\DRIVERS\Dot4Prt.sys
08:50:24.0516 5512  Dot4Print - ok
08:50:24.0522 5512  [ 488669CD1CD3BDCFDD9A5FDA72209069 ] Dot4Scan        C:\Windows\system32\DRIVERS\Dot4Scan.sys
08:50:24.0525 5512  Dot4Scan - ok
08:50:24.0531 5512  [ FD05A02B0370BC3000F402E543CA5814 ] dot4usb         C:\Windows\system32\DRIVERS\dot4usb.sys
08:50:24.0533 5512  dot4usb - ok
08:50:24.0541 5512  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\Windows\system32\dps.dll
08:50:24.0544 5512  DPS - ok
08:50:24.0550 5512  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
08:50:24.0553 5512  drmkaud - ok
08:50:24.0571 5512  [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
08:50:24.0580 5512  DXGKrnl - ok
08:50:24.0591 5512  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
08:50:24.0593 5512  EapHost - ok
08:50:24.0635 5512  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
08:50:24.0668 5512  ebdrv - ok
08:50:24.0686 5512  [ 4353FF94D47A0A9D52B89ECCF0CDB013 ] eeCtrl          C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
08:50:24.0692 5512  eeCtrl - ok
08:50:24.0702 5512  [ C118A82CD78818C29AB228366EBF81C3 ] EFS             C:\Windows\System32\lsass.exe
08:50:24.0704 5512  EFS - ok
08:50:24.0720 5512  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
08:50:24.0728 5512  ehRecvr - ok
08:50:24.0734 5512  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
08:50:24.0736 5512  ehSched - ok
08:50:24.0749 5512  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
08:50:24.0755 5512  elxstor - ok
08:50:24.0761 5512  [ ABDD5AD016AFFD34AD40E944CE94BF59 ] EpsonBidirectionalService C:\Program Files (x86)\Common Files\EPSON\EBAPI\eEBSVC.exe
08:50:24.0763 5512  EpsonBidirectionalService - ok
08:50:24.0772 5512  [ 20ECD0A490A121CB34F553FAD1DBBD39 ] EpsonScanSvc    C:\Windows\system32\EscSvc64.exe
08:50:24.0775 5512  EpsonScanSvc - ok
08:50:24.0781 5512  [ C5BCCB378D0A896304A3E71BE7215983 ] EraserUtilRebootDrv C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
08:50:24.0784 5512  EraserUtilRebootDrv - ok
08:50:24.0791 5512  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\drivers\errdev.sys
08:50:24.0792 5512  ErrDev - ok
08:50:24.0813 5512  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
08:50:24.0818 5512  EventSystem - ok
08:50:24.0828 5512  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
08:50:24.0831 5512  exfat - ok
08:50:24.0840 5512  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
08:50:24.0843 5512  fastfat - ok
08:50:24.0857 5512  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\Windows\system32\fxssvc.exe
08:50:24.0865 5512  Fax - ok
08:50:24.0870 5512  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
08:50:24.0872 5512  fdc - ok
08:50:24.0879 5512  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
08:50:24.0881 5512  fdPHost - ok
08:50:24.0890 5512  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
08:50:24.0893 5512  FDResPub - ok
08:50:24.0900 5512  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
08:50:24.0902 5512  FileInfo - ok
08:50:24.0909 5512  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
08:50:24.0910 5512  Filetrace - ok
08:50:24.0918 5512  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
08:50:24.0920 5512  flpydisk - ok
08:50:24.0934 5512  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
08:50:24.0938 5512  FltMgr - ok
08:50:24.0960 5512  [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache       C:\Windows\system32\FntCache.dll
08:50:24.0974 5512  FontCache - ok
08:50:24.0980 5512  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
08:50:24.0982 5512  FontCache3.0.0.0 - ok
08:50:24.0989 5512  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
08:50:24.0991 5512  FsDepends - ok
08:50:24.0999 5512  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
08:50:25.0001 5512  Fs_Rec - ok
08:50:25.0014 5512  [ 1F7B25B858FA27015169FE95E54108ED ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
08:50:25.0017 5512  fvevol - ok
08:50:25.0024 5512  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
08:50:25.0026 5512  gagp30kx - ok
08:50:25.0040 5512  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\Windows\System32\gpsvc.dll
08:50:25.0049 5512  gpsvc - ok
08:50:25.0058 5512  [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
08:50:25.0060 5512  gupdate - ok
08:50:25.0066 5512  [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
08:50:25.0067 5512  gupdatem - ok
08:50:25.0075 5512  [ C1B577B2169900F4CF7190C39F085794 ] gusvc           C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
08:50:25.0078 5512  gusvc - ok
08:50:25.0084 5512  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
08:50:25.0086 5512  hcw85cir - ok
08:50:25.0098 5512  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
08:50:25.0102 5512  HdAudAddService - ok
08:50:25.0112 5512  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
08:50:25.0114 5512  HDAudBus - ok
08:50:25.0122 5512  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
08:50:25.0123 5512  HidBatt - ok
08:50:25.0131 5512  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
08:50:25.0133 5512  HidBth - ok
08:50:25.0139 5512  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
08:50:25.0141 5512  HidIr - ok
08:50:25.0148 5512  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\system32\hidserv.dll
08:50:25.0151 5512  hidserv - ok
08:50:25.0157 5512  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\Windows\system32\drivers\hidusb.sys
08:50:25.0159 5512  HidUsb - ok
08:50:25.0166 5512  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\Windows\system32\kmsvc.dll
08:50:25.0169 5512  hkmsvc - ok
08:50:25.0179 5512  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
08:50:25.0182 5512  HomeGroupListener - ok
08:50:25.0190 5512  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
08:50:25.0194 5512  HomeGroupProvider - ok
08:50:25.0201 5512  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
08:50:25.0203 5512  HpSAMD - ok
08:50:25.0218 5512  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
08:50:25.0226 5512  HTTP - ok
08:50:25.0232 5512  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
08:50:25.0233 5512  hwpolicy - ok
08:50:25.0244 5512  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
08:50:25.0246 5512  i8042prt - ok
08:50:25.0259 5512  [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
08:50:25.0264 5512  iaStorV - ok
08:50:25.0280 5512  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
08:50:25.0289 5512  idsvc - ok
08:50:25.0301 5512  [ A48928D4CCA6F8B731989DB08CF2C0AB ] IDSVia64        C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.2.1.22\Definitions\IPSDefs\20130329.001\IDSvia64.sys
08:50:25.0307 5512  IDSVia64 - ok
08:50:25.0382 5512  [ A87261EF1546325B559374F5689CF5BC ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
08:50:25.0440 5512  igfx - ok
08:50:25.0455 5512  [ 23E1BCADABE423C35C19BBDFF10CCE6D ] IHA_MessageCenter C:\Program Files (x86)\Verizon\IHA_MessageCenter\Bin\Verizon_IHAMessageCenter.exe
08:50:25.0459 5512  IHA_MessageCenter - ok
08:50:25.0466 5512  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
08:50:25.0467 5512  iirsp - ok
08:50:25.0482 5512  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\Windows\System32\ikeext.dll
08:50:25.0494 5512  IKEEXT - ok
08:50:25.0504 5512  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\drivers\intelide.sys
08:50:25.0505 5512  intelide - ok
08:50:25.0515 5512  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
08:50:25.0516 5512  intelppm - ok
08:50:25.0526 5512  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
08:50:25.0529 5512  IPBusEnum - ok
08:50:25.0538 5512  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
08:50:25.0539 5512  IpFilterDriver - ok
08:50:25.0553 5512  [ 08C2957BB30058E663720C5606885653 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
08:50:25.0560 5512  iphlpsvc - ok
08:50:25.0569 5512  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
08:50:25.0571 5512  IPMIDRV - ok
08:50:25.0583 5512  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
08:50:25.0585 5512  IPNAT - ok
08:50:25.0592 5512  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
08:50:25.0594 5512  IRENUM - ok
08:50:25.0600 5512  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
08:50:25.0602 5512  isapnp - ok
08:50:25.0614 5512  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
08:50:25.0617 5512  iScsiPrt - ok
08:50:25.0624 5512  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\drivers\kbdclass.sys
08:50:25.0626 5512  kbdclass - ok
08:50:25.0634 5512  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\Windows\system32\drivers\kbdhid.sys
08:50:25.0635 5512  kbdhid - ok
08:50:25.0642 5512  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\Windows\system32\lsass.exe
08:50:25.0643 5512  KeyIso - ok
08:50:25.0653 5512  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
08:50:25.0655 5512  KSecDD - ok
08:50:25.0664 5512  [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
08:50:25.0666 5512  KSecPkg - ok
08:50:25.0673 5512  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
08:50:25.0675 5512  ksthunk - ok
08:50:25.0686 5512  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
08:50:25.0693 5512  KtmRm - ok
08:50:25.0702 5512  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\Windows\system32\srvsvc.dll
08:50:25.0706 5512  LanmanServer - ok
08:50:25.0714 5512  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
08:50:25.0718 5512  LanmanWorkstation - ok
08:50:25.0728 5512  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
08:50:25.0730 5512  lltdio - ok
08:50:25.0742 5512  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
08:50:25.0747 5512  lltdsvc - ok
08:50:25.0754 5512  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
08:50:25.0758 5512  lmhosts - ok
08:50:25.0777 5512  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
08:50:25.0779 5512  LSI_FC - ok
08:50:25.0790 5512  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
08:50:25.0792 5512  LSI_SAS - ok
08:50:25.0803 5512  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
08:50:25.0804 5512  LSI_SAS2 - ok
08:50:25.0817 5512  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
08:50:25.0819 5512  LSI_SCSI - ok
08:50:25.0834 5512  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
08:50:25.0836 5512  luafv - ok
08:50:25.0847 5512  [ 92EB844D90615CB266F84C3202B8786E ] MBAMProtector   C:\Windows\system32\drivers\mbam.sys
08:50:25.0848 5512  MBAMProtector - ok
08:50:25.0862 5512  [ 1ACAA67676E9E7BDA5E0C41B6E0DECAF ] MBAMScheduler   C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
08:50:25.0866 5512  MBAMScheduler - ok
08:50:25.0883 5512  [ 916B8954AC3E06DC9E898AFFB41F3FB6 ] MBAMService     C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
08:50:25.0890 5512  MBAMService - ok
08:50:25.0899 5512  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
08:50:25.0902 5512  Mcx2Svc - ok
08:50:25.0909 5512  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
08:50:25.0911 5512  megasas - ok
08:50:25.0921 5512  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
08:50:25.0924 5512  MegaSR - ok
08:50:25.0936 5512  [ 9547F37D0E899FD71B52B2AFD4437C79 ] MemeoBackgroundService C:\Program Files (x86)\Memeo\AutoBackup\MemeoBackgroundService.exe
08:50:25.0937 5512  MemeoBackgroundService - ok
08:50:25.0951 5512  Microsoft SharePoint Workspace Audit Service - ok
08:50:25.0964 5512  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
08:50:25.0966 5512  MMCSS - ok
08:50:25.0975 5512  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
08:50:25.0977 5512  Modem - ok
08:50:25.0989 5512  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
08:50:25.0990 5512  monitor - ok
08:50:26.0002 5512  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\drivers\mouclass.sys
08:50:26.0003 5512  mouclass - ok
08:50:26.0015 5512  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
08:50:26.0016 5512  mouhid - ok
08:50:26.0028 5512  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
08:50:26.0029 5512  mountmgr - ok
08:50:26.0042 5512  [ 8A7C8F4C713E70D73946833D76B77035 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
08:50:26.0044 5512  MozillaMaintenance - ok
08:50:26.0057 5512  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\Windows\system32\drivers\mpio.sys
08:50:26.0060 5512  mpio - ok
08:50:26.0072 5512  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
08:50:26.0078 5512  mpsdrv - ok
08:50:26.0106 5512  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc          C:\Windows\system32\mpssvc.dll
08:50:26.0115 5512  MpsSvc - ok
08:50:26.0127 5512  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
08:50:26.0130 5512  MRxDAV - ok
08:50:26.0142 5512  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
08:50:26.0145 5512  mrxsmb - ok
08:50:26.0159 5512  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
08:50:26.0163 5512  mrxsmb10 - ok
08:50:26.0175 5512  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
08:50:26.0177 5512  mrxsmb20 - ok
08:50:26.0188 5512  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\Windows\system32\drivers\msahci.sys
08:50:26.0189 5512  msahci - ok
08:50:26.0201 5512  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
08:50:26.0204 5512  msdsm - ok
08:50:26.0216 5512  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
08:50:26.0218 5512  MSDTC - ok
08:50:26.0241 5512  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
08:50:26.0247 5512  Msfs - ok
08:50:26.0258 5512  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
08:50:26.0260 5512  mshidkmdf - ok
08:50:26.0271 5512  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
08:50:26.0272 5512  msisadrv - ok
08:50:26.0285 5512  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
08:50:26.0288 5512  MSiSCSI - ok
08:50:26.0299 5512  msiserver - ok
08:50:26.0310 5512  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
08:50:26.0311 5512  MSKSSRV - ok
08:50:26.0322 5512  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
08:50:26.0323 5512  MSPCLOCK - ok
08:50:26.0338 5512  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
08:50:26.0339 5512  MSPQM - ok
08:50:26.0355 5512  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
08:50:26.0359 5512  MsRPC - ok
08:50:26.0376 5512  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
08:50:26.0377 5512  mssmbios - ok
08:50:26.0389 5512  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
08:50:26.0390 5512  MSTEE - ok
08:50:26.0400 5512  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
08:50:26.0401 5512  MTConfig - ok
08:50:26.0455 5512  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
08:50:26.0457 5512  Mup - ok
08:50:26.0475 5512  [ 241BD3019FB31E812A51B31B06906335 ] N360            C:\Program Files (x86)\Norton 360\Engine\20.3.0.36\ccSvcHst.exe
08:50:26.0477 5512  N360 - ok
08:50:26.0493 5512  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\Windows\system32\qagentRT.dll
08:50:26.0500 5512  napagent - ok
08:50:26.0514 5512  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
08:50:26.0518 5512  NativeWifiP - ok
08:50:26.0533 5512  [ 88A2F45CE66B904285978D6BB13AFEB2 ] NAVENG          C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.2.1.22\Definitions\VirusDefs\20130329.025\ENG64.SYS
08:50:26.0535 5512  NAVENG - ok
08:50:26.0589 5512  [ D2A545DA3A90BBFA40E020C23F1B7A48 ] NAVEX15         C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.2.1.22\Definitions\VirusDefs\20130329.025\EX64.SYS
08:50:26.0613 5512  NAVEX15 - ok
08:50:26.0635 5512  [ 760E38053BF56E501D562B70AD796B88 ] NDIS            C:\Windows\system32\drivers\ndis.sys
08:50:26.0647 5512  NDIS - ok
08:50:26.0657 5512  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
08:50:26.0659 5512  NdisCap - ok
08:50:26.0670 5512  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
08:50:26.0671 5512  NdisTapi - ok
08:50:26.0683 5512  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
08:50:26.0684 5512  Ndisuio - ok
08:50:26.0696 5512  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
08:50:26.0698 5512  NdisWan - ok
08:50:26.0705 5512  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
08:50:26.0707 5512  NDProxy - ok
08:50:26.0714 5512  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
08:50:26.0716 5512  NetBIOS - ok
08:50:26.0726 5512  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
08:50:26.0730 5512  NetBT - ok
08:50:26.0735 5512  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\Windows\system32\lsass.exe
08:50:26.0737 5512  Netlogon - ok
08:50:26.0750 5512  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
08:50:26.0755 5512  Netman - ok
08:50:26.0767 5512  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
08:50:26.0773 5512  netprofm - ok
08:50:26.0783 5512  [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
08:50:26.0785 5512  NetTcpPortSharing - ok
08:50:26.0794 5512  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
08:50:26.0795 5512  nfrd960 - ok
08:50:26.0804 5512  [ 8AD77806D336673F270DB31645267293 ] NlaSvc          C:\Windows\System32\nlasvc.dll
08:50:26.0809 5512  NlaSvc - ok
08:50:26.0815 5512  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
08:50:26.0817 5512  Npfs - ok
08:50:26.0823 5512  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
08:50:26.0827 5512  nsi - ok
08:50:26.0833 5512  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
08:50:26.0835 5512  nsiproxy - ok
08:50:26.0870 5512  [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
08:50:26.0888 5512  Ntfs - ok
08:50:26.0894 5512  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
08:50:26.0897 5512  Null - ok
08:50:26.0912 5512  [ 0A92CB65770442ED0DC44834632F66AD ] nvraid          C:\Windows\system32\drivers\nvraid.sys
08:50:26.0914 5512  nvraid - ok
08:50:26.0925 5512  [ DAB0E87525C10052BF65F06152F37E4A ] nvstor          C:\Windows\system32\drivers\nvstor.sys
08:50:26.0928 5512  nvstor - ok
08:50:26.0939 5512  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
08:50:26.0941 5512  nv_agp - ok
08:50:26.0952 5512  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
08:50:26.0954 5512  ohci1394 - ok
08:50:26.0967 5512  [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
08:50:26.0969 5512  ose - ok
08:50:27.0031 5512  [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
08:50:27.0078 5512  osppsvc - ok
08:50:27.0098 5512  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
08:50:27.0102 5512  p2pimsvc - ok
08:50:27.0114 5512  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
08:50:27.0121 5512  p2psvc - ok
08:50:27.0128 5512  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
08:50:27.0131 5512  Parport - ok
08:50:27.0138 5512  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\Windows\system32\drivers\partmgr.sys
08:50:27.0140 5512  partmgr - ok
08:50:27.0149 5512  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
08:50:27.0153 5512  PcaSvc - ok
08:50:27.0161 5512  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\Windows\system32\drivers\pci.sys
08:50:27.0164 5512  pci - ok
08:50:27.0170 5512  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\drivers\pciide.sys
08:50:27.0171 5512  pciide - ok
08:50:27.0184 5512  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
08:50:27.0188 5512  pcmcia - ok
08:50:27.0196 5512  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
08:50:27.0198 5512  pcw - ok
08:50:27.0213 5512  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
08:50:27.0220 5512  PEAUTH - ok
08:50:27.0251 5512  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
08:50:27.0253 5512  PerfHost - ok
08:50:27.0285 5512  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\Windows\system32\pla.dll
08:50:27.0300 5512  pla - ok
08:50:27.0312 5512  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
08:50:27.0318 5512  PlugPlay - ok
08:50:27.0324 5512  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
08:50:27.0330 5512  PNRPAutoReg - ok
08:50:27.0340 5512  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
08:50:27.0343 5512  PNRPsvc - ok
08:50:27.0356 5512  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
08:50:27.0362 5512  PolicyAgent - ok
08:50:27.0373 5512  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
08:50:27.0377 5512  Power - ok
08:50:27.0384 5512  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
08:50:27.0386 5512  PptpMiniport - ok
08:50:27.0394 5512  [ CD2CA50669D468711F4401570510F582 ] Printer Control C:\Windows\system32\PrintCtrl.exe
08:50:27.0397 5512  Printer Control - ok
08:50:27.0403 5512  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\DRIVERS\processr.sys
08:50:27.0405 5512  Processor - ok
08:50:27.0415 5512  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc         C:\Windows\system32\profsvc.dll
08:50:27.0419 5512  ProfSvc - ok
08:50:27.0425 5512  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
08:50:27.0427 5512  ProtectedStorage - ok
08:50:27.0435 5512  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
08:50:27.0437 5512  Psched - ok
08:50:27.0464 5512  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
08:50:27.0499 5512  ql2300 - ok
08:50:27.0511 5512  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
08:50:27.0513 5512  ql40xx - ok
08:50:27.0526 5512  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
08:50:27.0531 5512  QWAVE - ok
08:50:27.0540 5512  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
08:50:27.0541 5512  QWAVEdrv - ok
08:50:27.0548 5512  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
08:50:27.0550 5512  RasAcd - ok
08:50:27.0556 5512  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
08:50:27.0558 5512  RasAgileVpn - ok
08:50:27.0566 5512  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
08:50:27.0569 5512  RasAuto - ok
08:50:27.0577 5512  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
08:50:27.0580 5512  Rasl2tp - ok
08:50:27.0594 5512  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\Windows\System32\rasmans.dll
08:50:27.0600 5512  RasMan - ok
08:50:27.0608 5512  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
08:50:27.0610 5512  RasPppoe - ok
08:50:27.0618 5512  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
08:50:27.0620 5512  RasSstp - ok
08:50:27.0631 5512  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
08:50:27.0634 5512  rdbss - ok
08:50:27.0641 5512  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
08:50:27.0642 5512  rdpbus - ok
08:50:27.0648 5512  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
08:50:27.0650 5512  RDPCDD - ok
08:50:27.0660 5512  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
08:50:27.0662 5512  RDPENCDD - ok
08:50:27.0671 5512  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
08:50:27.0673 5512  RDPREFMP - ok
08:50:27.0683 5512  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
08:50:27.0687 5512  RDPWD - ok
08:50:27.0697 5512  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
08:50:27.0700 5512  rdyboost - ok
08:50:27.0707 5512  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
08:50:27.0711 5512  RemoteAccess - ok
08:50:27.0719 5512  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
08:50:27.0723 5512  RemoteRegistry - ok
08:50:27.0731 5512  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
08:50:27.0734 5512  RpcEptMapper - ok
08:50:27.0740 5512  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
08:50:27.0742 5512  RpcLocator - ok
08:50:27.0758 5512  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\Windows\system32\rpcss.dll
08:50:27.0765 5512  RpcSs - ok
08:50:27.0778 5512  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
08:50:27.0780 5512  rspndr - ok
08:50:27.0792 5512  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs           C:\Windows\system32\lsass.exe
08:50:27.0793 5512  SamSs - ok
08:50:27.0805 5512  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
08:50:27.0807 5512  sbp2port - ok
08:50:27.0820 5512  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
08:50:27.0825 5512  SCardSvr - ok
08:50:27.0836 5512  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
08:50:27.0838 5512  scfilter - ok
08:50:27.0861 5512  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\Windows\system32\schedsvc.dll
08:50:27.0874 5512  Schedule - ok
08:50:27.0882 5512  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\Windows\System32\certprop.dll
08:50:27.0884 5512  SCPolicySvc - ok
08:50:27.0892 5512  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
08:50:27.0896 5512  SDRSVC - ok
08:50:27.0902 5512  [ 16B44D246835EAC156F8DAF0AA4F530C ] SeagateDashboardService C:\Program Files (x86)\Seagate\Seagate Dashboard\SeagateDashboardService.exe
08:50:27.0904 5512  SeagateDashboardService - ok
08:50:27.0910 5512  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
08:50:27.0914 5512  secdrv - ok
08:50:27.0920 5512  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\Windows\system32\seclogon.dll
08:50:27.0923 5512  seclogon - ok
08:50:27.0931 5512  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\System32\sens.dll
08:50:27.0934 5512  SENS - ok
08:50:27.0940 5512  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
08:50:27.0943 5512  SensrSvc - ok
08:50:27.0949 5512  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
08:50:27.0951 5512  Serenum - ok
08:50:27.0958 5512  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\DRIVERS\serial.sys
08:50:27.0960 5512  Serial - ok
08:50:27.0968 5512  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
08:50:27.0969 5512  sermouse - ok
08:50:27.0988 5512  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\Windows\system32\sessenv.dll
08:50:27.0992 5512  SessionEnv - ok
08:50:27.0998 5512  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
08:50:28.0000 5512  sffdisk - ok
08:50:28.0007 5512  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
08:50:28.0008 5512  sffp_mmc - ok
08:50:28.0015 5512  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
08:50:28.0016 5512  sffp_sd - ok
08:50:28.0024 5512  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
08:50:28.0025 5512  sfloppy - ok
08:50:28.0038 5512  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll
08:50:28.0044 5512  SharedAccess - ok
08:50:28.0060 5512  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
08:50:28.0066 5512  ShellHWDetection - ok
08:50:28.0076 5512  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
08:50:28.0078 5512  SiSRaid2 - ok
08:50:28.0092 5512  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
08:50:28.0094 5512  SiSRaid4 - ok
08:50:28.0106 5512  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
08:50:28.0107 5512  Smb - ok
08:50:28.0121 5512  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
08:50:28.0123 5512  SNMPTRAP - ok
08:50:28.0135 5512  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
08:50:28.0137 5512  spldr - ok
08:50:28.0150 5512  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler         C:\Windows\System32\spoolsv.exe
08:50:28.0158 5512  Spooler - ok
08:50:28.0203 5512  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\Windows\system32\sppsvc.exe
08:50:28.0239 5512  sppsvc - ok
08:50:28.0252 5512  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
08:50:28.0256 5512  sppuinotify - ok
08:50:28.0276 5512  [ 378A0748DE5ADF90BF9DB897DA8564E6 ] SRTSP           C:\Windows\System32\Drivers\N360x64\1403000.024\SRTSP64.SYS
08:50:28.0284 5512  SRTSP - ok
08:50:28.0291 5512  [ 0E76CEF892C45734F7AED09FDDF35D4D ] SRTSPX          C:\Windows\system32\drivers\N360x64\1403000.024\SRTSPX64.SYS
08:50:28.0293 5512  SRTSPX - ok
08:50:28.0305 5512  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\Windows\system32\DRIVERS\srv.sys
08:50:28.0310 5512  srv - ok
08:50:28.0323 5512  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
08:50:28.0328 5512  srv2 - ok
08:50:28.0343 5512  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
08:50:28.0346 5512  srvnet - ok
08:50:28.0359 5512  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
08:50:28.0364 5512  SSDPSRV - ok
08:50:28.0375 5512  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
08:50:28.0378 5512  SstpSvc - ok
08:50:28.0392 5512  [ 78CD64791F8634CF7B582FD085E57C4B ] ssudmdm         C:\Windows\system32\DRIVERS\ssudmdm.sys
08:50:28.0395 5512  ssudmdm - ok
08:50:28.0409 5512  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
08:50:28.0416 5512  stexstor - ok
08:50:28.0442 5512  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\Windows\System32\wiaservc.dll
08:50:28.0450 5512  stisvc - ok
08:50:28.0456 5512  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\drivers\swenum.sys
08:50:28.0458 5512  swenum - ok
08:50:28.0470 5512  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
08:50:28.0474 5512  swprv - ok
08:50:28.0491 5512  [ E174C8BC572E93AEEE1036DEDAC5F225 ] SymDS           C:\Windows\system32\drivers\N360x64\1403000.024\SYMDS64.SYS
08:50:28.0498 5512  SymDS - ok
08:50:28.0520 5512  [ 599872BAD7CFB45C7CE47CDED4B726D8 ] SymEFA          C:\Windows\system32\drivers\N360x64\1403000.024\SYMEFA64.SYS
08:50:28.0532 5512  SymEFA - ok
08:50:28.0541 5512  [ F5D6D3B7468C46EA2DDC1D19D2A6DA0F ] SymEvent        C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
08:50:28.0544 5512  SymEvent - ok
08:50:28.0555 5512  [ ADF37F1A715D6C56C8E065FD8569A9A4 ] SymIRON         C:\Windows\system32\drivers\N360x64\1403000.024\Ironx64.SYS
08:50:28.0558 5512  SymIRON - ok
08:50:28.0571 5512  [ 1605EBD8CB86AFC4430116065995279A ] SymNetS         C:\Windows\System32\Drivers\N360x64\1403000.024\SYMNETS.SYS
08:50:28.0576 5512  SymNetS - ok
08:50:28.0606 5512  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\Windows\system32\sysmain.dll
08:50:28.0625 5512  SysMain - ok
08:50:28.0636 5512  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
08:50:28.0639 5512  TabletInputService - ok
08:50:28.0653 5512  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\Windows\System32\tapisrv.dll
08:50:28.0658 5512  TapiSrv - ok
08:50:28.0667 5512  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
08:50:28.0670 5512  TBS - ok
08:50:28.0697 5512  [ B62A953F2BF3922C8764A29C34A22899 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
08:50:28.0716 5512  Tcpip - ok
08:50:28.0744 5512  [ B62A953F2BF3922C8764A29C34A22899 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
08:50:28.0756 5512  TCPIP6 - ok
08:50:28.0768 5512  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
08:50:28.0773 5512  tcpipreg - ok
08:50:28.0787 5512  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
08:50:28.0789 5512  TDPIPE - ok
08:50:28.0799 5512  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
08:50:28.0800 5512  TDTCP - ok
08:50:28.0808 5512  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
08:50:28.0810 5512  tdx - ok
08:50:28.0818 5512  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\Windows\system32\drivers\termdd.sys
08:50:28.0820 5512  TermDD - ok
08:50:28.0834 5512  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\Windows\System32\termsrv.dll
08:50:28.0843 5512  TermService - ok
08:50:28.0852 5512  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
08:50:28.0855 5512  Themes - ok
08:50:28.0866 5512  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
08:50:28.0868 5512  THREADORDER - ok
08:50:28.0881 5512  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
08:50:28.0885 5512  TrkWks - ok
08:50:28.0896 5512  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
08:50:28.0899 5512  TrustedInstaller - ok
08:50:28.0915 5512  [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
08:50:28.0917 5512  tssecsrv - ok
08:50:28.0928 5512  [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
08:50:28.0930 5512  TsUsbFlt - ok
08:50:28.0939 5512  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
08:50:28.0941 5512  tunnel - ok
08:50:28.0948 5512  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
08:50:28.0950 5512  uagp35 - ok
08:50:28.0960 5512  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
08:50:28.0965 5512  udfs - ok
08:50:28.0978 5512  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
08:50:28.0980 5512  UI0Detect - ok
08:50:28.0989 5512  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
08:50:28.0990 5512  uliagpkx - ok
08:50:29.0000 5512  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\Windows\system32\drivers\umbus.sys
08:50:29.0001 5512  umbus - ok
08:50:29.0007 5512  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
08:50:29.0009 5512  UmPass - ok
08:50:29.0022 5512  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
08:50:29.0027 5512  upnphost - ok
08:50:29.0035 5512  [ 43228F8EDD1B0BCDD3145AD246E63D39 ] USBAAPL64       C:\Windows\system32\Drivers\usbaapl64.sys
08:50:29.0037 5512  USBAAPL64 - ok
08:50:29.0045 5512  [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
08:50:29.0046 5512  usbccgp - ok
08:50:29.0055 5512  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
08:50:29.0057 5512  usbcir - ok
08:50:29.0063 5512  [ C025055FE7B87701EB042095DF1A2D7B ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
08:50:29.0066 5512  usbehci - ok
08:50:29.0076 5512  [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
08:50:29.0080 5512  usbhub - ok
08:50:29.0087 5512  [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
08:50:29.0089 5512  usbohci - ok
08:50:29.0095 5512  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
08:50:29.0097 5512  usbprint - ok
08:50:29.0105 5512  [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
08:50:29.0107 5512  usbscan - ok
08:50:29.0113 5512  [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
08:50:29.0115 5512  USBSTOR - ok
08:50:29.0122 5512  [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci         C:\Windows\system32\DRIVERS\usbuhci.sys
08:50:29.0124 5512  usbuhci - ok
08:50:29.0132 5512  [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo        C:\Windows\system32\Drivers\usbvideo.sys
08:50:29.0136 5512  usbvideo - ok
08:50:29.0144 5512  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
08:50:29.0147 5512  UxSms - ok
08:50:29.0155 5512  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\Windows\system32\lsass.exe
08:50:29.0156 5512  VaultSvc - ok
08:50:29.0166 5512  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
08:50:29.0168 5512  vdrvroot - ok
08:50:29.0183 5512  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\Windows\System32\vds.exe
08:50:29.0198 5512  vds - ok
08:50:29.0206 5512  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
08:50:29.0208 5512  vga - ok
08:50:29.0214 5512  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
08:50:29.0216 5512  VgaSave - ok
08:50:29.0225 5512  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
08:50:29.0229 5512  vhdmp - ok
08:50:29.0236 5512  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\drivers\viaide.sys
08:50:29.0238 5512  viaide - ok
08:50:29.0246 5512  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
08:50:29.0248 5512  volmgr - ok
08:50:29.0259 5512  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
08:50:29.0266 5512  volmgrx - ok
08:50:29.0277 5512  [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
08:50:29.0280 5512  volsnap - ok
08:50:29.0289 5512  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
08:50:29.0292 5512  vsmraid - ok
08:50:29.0318 5512  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\Windows\system32\vssvc.exe
08:50:29.0331 5512  VSS - ok
08:50:29.0340 5512  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
08:50:29.0341 5512  vwifibus - ok
08:50:29.0348 5512  [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
08:50:29.0350 5512  vwififlt - ok
08:50:29.0357 5512  [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp         C:\Windows\system32\DRIVERS\vwifimp.sys
08:50:29.0359 5512  vwifimp - ok
08:50:29.0371 5512  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
08:50:29.0377 5512  W32Time - ok
08:50:29.0386 5512  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
08:50:29.0388 5512  WacomPen - ok
08:50:29.0396 5512  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
08:50:29.0398 5512  WANARP - ok
08:50:29.0403 5512  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
08:50:29.0405 5512  Wanarpv6 - ok
08:50:29.0426 5512  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
08:50:29.0440 5512  WatAdminSvc - ok
08:50:29.0464 5512  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\Windows\system32\wbengine.exe
08:50:29.0481 5512  wbengine - ok
08:50:29.0493 5512  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
08:50:29.0498 5512  WbioSrvc - ok
08:50:29.0514 5512  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\Windows\System32\wcncsvc.dll
08:50:29.0520 5512  wcncsvc - ok
08:50:29.0526 5512  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
08:50:29.0529 5512  WcsPlugInService - ok
08:50:29.0538 5512  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\DRIVERS\wd.sys
08:50:29.0539 5512  Wd - ok
08:50:29.0554 5512  [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
08:50:29.0562 5512  Wdf01000 - ok
08:50:29.0575 5512  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
08:50:29.0585 5512  WdiServiceHost - ok
08:50:29.0591 5512  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
08:50:29.0594 5512  WdiSystemHost - ok
08:50:29.0609 5512  [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient       C:\Windows\System32\webclnt.dll
08:50:29.0613 5512  WebClient - ok
08:50:29.0622 5512  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
08:50:29.0627 5512  Wecsvc - ok
08:50:29.0636 5512  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
08:50:29.0638 5512  wercplsupport - ok
08:50:29.0645 5512  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
08:50:29.0648 5512  WerSvc - ok
08:50:29.0655 5512  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
08:50:29.0657 5512  WfpLwf - ok
08:50:29.0662 5512  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
08:50:29.0664 5512  WIMMount - ok
08:50:29.0669 5512  WinDefend - ok
08:50:29.0679 5512  WinHttpAutoProxySvc - ok
08:50:29.0693 5512  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
08:50:29.0697 5512  Winmgmt - ok
08:50:29.0729 5512  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\Windows\system32\WsmSvc.dll
08:50:29.0753 5512  WinRM - ok
08:50:29.0773 5512  [ FE88B288356E7B47B74B13372ADD906D ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
08:50:29.0774 5512  WinUsb - ok
08:50:29.0792 5512  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
08:50:29.0803 5512  Wlansvc - ok
08:50:29.0809 5512  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
08:50:29.0811 5512  WmiAcpi - ok
08:50:29.0823 5512  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
08:50:29.0826 5512  wmiApSrv - ok
08:50:29.0831 5512  WMPNetworkSvc - ok
08:50:29.0841 5512  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
08:50:29.0844 5512  WPCSvc - ok
08:50:29.0851 5512  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
08:50:29.0855 5512  WPDBusEnum - ok
08:50:29.0861 5512  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
08:50:29.0863 5512  ws2ifsl - ok
08:50:29.0872 5512  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\Windows\System32\wscsvc.dll
08:50:29.0876 5512  wscsvc - ok
08:50:29.0881 5512  WSearch - ok
08:50:29.0920 5512  [ 9DF12EDBC698B0BC353B3EF84861E430 ] wuauserv        C:\Windows\system32\wuaueng.dll
08:50:29.0945 5512  wuauserv - ok
08:50:29.0953 5512  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
08:50:29.0955 5512  WudfPf - ok
08:50:29.0964 5512  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
08:50:29.0967 5512  WUDFRd - ok
08:50:29.0977 5512  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
08:50:29.0981 5512  wudfsvc - ok
08:50:29.0995 5512  [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc         C:\Windows\System32\wwansvc.dll
08:50:30.0003 5512  WwanSvc - ok
08:50:30.0023 5512  [ B3EEACF62445E24FBB2CD4B0FB4DB026 ] yukonw7         C:\Windows\system32\DRIVERS\yk62x64.sys
08:50:30.0028 5512  yukonw7 - ok
08:50:30.0046 5512  ================ Scan global ===============================
08:50:30.0053 5512  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
08:50:30.0060 5512  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
08:50:30.0071 5512  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
08:50:30.0078 5512  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
08:50:30.0087 5512  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
08:50:30.0092 5512  [Global] - ok
08:50:30.0093 5512  ================ Scan MBR ==================================
08:50:30.0096 5512  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
08:50:30.0220 5512  \Device\Harddisk0\DR0 - ok
08:50:30.0220 5512  ================ Scan VBR ==================================
08:50:30.0223 5512  [ 41E66D1B3B12C591B3C7FDD09E5293B4 ] \Device\Harddisk0\DR0\Partition1
08:50:30.0225 5512  \Device\Harddisk0\DR0\Partition1 - ok
08:50:30.0230 5512  [ 081ABA35F51D66284922CA61483A9DB9 ] \Device\Harddisk0\DR0\Partition2
08:50:30.0232 5512  \Device\Harddisk0\DR0\Partition2 - ok
08:50:30.0233 5512  ============================================================
08:50:30.0233 5512  Scan finished
08:50:30.0233 5512  ============================================================
08:50:30.0251 6476  Detected object count: 0
08:50:30.0251 6476  Actual detected object count: 0
 



#4 oneslittleblessing

oneslittleblessing
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:02:04 PM

Posted 30 March 2013 - 10:56 AM

Here is the MiniToolBox Log:

 

MiniToolBox by Farbar  Version:05-03-2013
Ran by Rodriguez (administrator) on 30-03-2013 at 08:54:24
Running from "C:\Users\Rodriguez\Downloads"
Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================



========================= IP Configuration: ================================

Dell Wireless 1397 WLAN Mini-Card = Wireless Network Connection (Connected)
Marvell Yukon 88E8040 PCI-E Fast Ethernet Controller = Local Area Connection (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset


popd
# End of IPv4 configuration



Windows IP Configuration

   Host Name . . . . . . . . . . . . : TV-Rodriguez
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : home

Wireless LAN adapter Wireless Network Connection 2:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
   Physical Address. . . . . . . . . : 70-1A-04-BF-ED-ED
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

   Connection-specific DNS Suffix  . : home
   Description . . . . . . . . . . . : Dell Wireless 1397 WLAN Mini-Card
   Physical Address. . . . . . . . . : 70-1A-04-BF-ED-ED
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::ac5c:9b00:db59:cf0f%11(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.1.6(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Friday, March 29, 2013 11:56:23 PM
   Lease Expires . . . . . . . . . . : Sunday, March 31, 2013 8:45:55 AM
   Default Gateway . . . . . . . . . : 192.168.1.1
   DHCP Server . . . . . . . . . . . : 192.168.1.1
   DHCPv6 IAID . . . . . . . . . . . : 225450500
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-16-E7-65-1B-A4-BA-DB-99-5E-21
   DNS Servers . . . . . . . . . . . : 192.168.1.1
   NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : home
   Description . . . . . . . . . . . : Marvell Yukon 88E8040 PCI-E Fast Ethernet Controller
   Physical Address. . . . . . . . . : A4-BA-DB-99-5E-21
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.home:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : home
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:8e9:251c:52cc:9c57(Preferred)
   Link-local IPv6 Address . . . . . : fe80::8e9:251c:52cc:9c57%12(Preferred)
   Default Gateway . . . . . . . . . : ::
   NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter isatap.{4C51BE42-E697-4066-840F-6DD9160D19B5}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
Server:  Wireless_Broadband_Router.home
Address:  192.168.1.1

Name:    google.com
Addresses:  2001:4860:4007:800::1004
      74.125.224.201
      74.125.224.199
      74.125.224.192
      74.125.224.195
      74.125.224.200
      74.125.224.198
      74.125.224.196
      74.125.224.194
      74.125.224.193
      74.125.224.197
      74.125.224.206


Pinging google.com [74.125.224.201] with 32 bytes of data:
Reply from 74.125.224.201: bytes=32 time=11ms TTL=252
Reply from 74.125.224.201: bytes=32 time=11ms TTL=252

Ping statistics for 74.125.224.201:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 11ms, Maximum = 11ms, Average = 11ms
Server:  Wireless_Broadband_Router.home
Address:  192.168.1.1

Name:    yahoo.com
Addresses:  98.138.253.109
      98.139.183.24
      206.190.36.45


Pinging yahoo.com [98.139.183.24] with 32 bytes of data:
Reply from 98.139.183.24: bytes=32 time=475ms TTL=50
Reply from 98.139.183.24: bytes=32 time=741ms TTL=50

Ping statistics for 98.139.183.24:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 475ms, Maximum = 741ms, Average = 608ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 14...70 1a 04 bf ed ed ......Microsoft Virtual WiFi Miniport Adapter
 11...70 1a 04 bf ed ed ......Dell Wireless 1397 WLAN Mini-Card
 10...a4 ba db 99 5e 21 ......Marvell Yukon 88E8040 PCI-E Fast Ethernet Controller
  1...........................Software Loopback Interface 1
 15...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
 12...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
 16...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.1.1      192.168.1.6     25
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.1.0    255.255.255.0         On-link       192.168.1.6    281
      192.168.1.6  255.255.255.255         On-link       192.168.1.6    281
    192.168.1.255  255.255.255.255         On-link       192.168.1.6    281
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link       192.168.1.6    281
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link       192.168.1.6    281
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
 12     58 ::/0                     On-link
  1    306 ::1/128                  On-link
 12     58 2001::/32                On-link
 12    306 2001:0:4137:9e76:8e9:251c:52cc:9c57/128
                                    On-link
 11    281 fe80::/64                On-link
 12    306 fe80::/64                On-link
 12    306 fe80::8e9:251c:52cc:9c57/128
                                    On-link
 11    281 fe80::ac5c:9b00:db59:cf0f/128
                                    On-link
  1    306 ff00::/8                 On-link
 12    306 ff00::/8                 On-link
 11    281 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (03/30/2013 00:00:37 AM) (Source: Microsoft-Windows-LoadPerf) (User: NT AUTHORITY)
Description: Unloading the performance counter strings for service WmiApRpl (WmiApRpl) failed. The first DWORD in the Data section contains the error code.

Error: (03/30/2013 00:00:37 AM) (Source: Microsoft-Windows-LoadPerf) (User: NT AUTHORITY)
Description: The performance strings in the Performance registry value is corrupted when process Performance extension counter provider. The BaseIndex value from the Performance registry is the first DWORD in the Data section, LastCounter value is the second DWORD in the Data section, and LastHelp value is the third DWORD in the Data section.

Error: (03/29/2013 11:13:32 PM) (Source: Microsoft-Windows-LoadPerf) (User: NT AUTHORITY)
Description: Unloading the performance counter strings for service WmiApRpl (WmiApRpl) failed. The first DWORD in the Data section contains the error code.

Error: (03/29/2013 11:13:32 PM) (Source: Microsoft-Windows-LoadPerf) (User: NT AUTHORITY)
Description: The performance strings in the Performance registry value is corrupted when process Performance extension counter provider. The BaseIndex value from the Performance registry is the first DWORD in the Data section, LastCounter value is the second DWORD in the Data section, and LastHelp value is the third DWORD in the Data section.

Error: (03/29/2013 03:29:07 PM) (Source: Microsoft-Windows-LoadPerf) (User: NT AUTHORITY)
Description: Unloading the performance counter strings for service WmiApRpl (WmiApRpl) failed. The first DWORD in the Data section contains the error code.

Error: (03/29/2013 03:29:07 PM) (Source: Microsoft-Windows-LoadPerf) (User: NT AUTHORITY)
Description: The performance strings in the Performance registry value is corrupted when process Performance extension counter provider. The BaseIndex value from the Performance registry is the first DWORD in the Data section, LastCounter value is the second DWORD in the Data section, and LastHelp value is the third DWORD in the Data section.

Error: (03/29/2013 02:59:26 PM) (Source: Microsoft-Windows-LoadPerf) (User: NT AUTHORITY)
Description: Unloading the performance counter strings for service WmiApRpl (WmiApRpl) failed. The first DWORD in the Data section contains the error code.

Error: (03/29/2013 02:59:26 PM) (Source: Microsoft-Windows-LoadPerf) (User: NT AUTHORITY)
Description: The performance strings in the Performance registry value is corrupted when process Performance extension counter provider. The BaseIndex value from the Performance registry is the first DWORD in the Data section, LastCounter value is the second DWORD in the Data section, and LastHelp value is the third DWORD in the Data section.

Error: (03/29/2013 00:47:28 PM) (Source: Microsoft-Windows-LoadPerf) (User: NT AUTHORITY)
Description: Unloading the performance counter strings for service WmiApRpl (WmiApRpl) failed. The first DWORD in the Data section contains the error code.

Error: (03/29/2013 00:47:28 PM) (Source: Microsoft-Windows-LoadPerf) (User: NT AUTHORITY)
Description: The performance strings in the Performance registry value is corrupted when process Performance extension counter provider. The BaseIndex value from the Performance registry is the first DWORD in the Data section, LastCounter value is the second DWORD in the Data section, and LastHelp value is the third DWORD in the Data section.


System errors:
=============
Error: (03/30/2013 08:45:43 AM) (Source: Service Control Manager) (User: )
Description: A timeout (120000 milliseconds) was reached while waiting for a transaction response from the Wlansvc service.

Error: (03/29/2013 11:56:22 PM) (Source: Service Control Manager) (User: )
Description: The Printer Control service failed to start due to the following error:
%%2

Error: (03/29/2013 11:56:17 PM) (Source: EventLog) (User: )
Description: The previous system shutdown at 11:55:46 PM on ?3/?29/?2013 was unexpected.

Error: (03/29/2013 11:08:53 PM) (Source: Service Control Manager) (User: )
Description: The Printer Control service failed to start due to the following error:
%%2

Error: (03/29/2013 11:08:50 PM) (Source: EventLog) (User: )
Description: The previous system shutdown at 6:05:49 PM on ?3/?29/?2013 was unexpected.

Error: (03/29/2013 03:24:56 PM) (Source: Service Control Manager) (User: )
Description: The Printer Control service failed to start due to the following error:
%%2

Error: (03/29/2013 02:55:15 PM) (Source: Service Control Manager) (User: )
Description: The Printer Control service failed to start due to the following error:
%%2

Error: (03/29/2013 02:55:11 PM) (Source: EventLog) (User: )
Description: The previous system shutdown at 2:40:43 PM on ?3/?29/?2013 was unexpected.

Error: (03/29/2013 00:43:20 PM) (Source: Service Control Manager) (User: )
Description: The Printer Control service failed to start due to the following error:
%%2

Error: (03/29/2013 00:43:16 PM) (Source: EventLog) (User: )
Description: The previous system shutdown at 12:42:16 PM on ?3/?29/?2013 was unexpected.


Microsoft Office Sessions:
=========================
Error: (03/30/2013 00:00:37 AM) (Source: Microsoft-Windows-LoadPerf)(User: NT AUTHORITY)
Description: WmiApRplWmiApRpl8F20300004D070000

Error: (03/30/2013 00:00:37 AM) (Source: Microsoft-Windows-LoadPerf)(User: NT AUTHORITY)
Description: Performance1637070000000000000000000009030000

Error: (03/29/2013 11:13:32 PM) (Source: Microsoft-Windows-LoadPerf)(User: NT AUTHORITY)
Description: WmiApRplWmiApRpl8F20300004D070000

Error: (03/29/2013 11:13:32 PM) (Source: Microsoft-Windows-LoadPerf)(User: NT AUTHORITY)
Description: Performance1637070000000000000000000009030000

Error: (03/29/2013 03:29:07 PM) (Source: Microsoft-Windows-LoadPerf)(User: NT AUTHORITY)
Description: WmiApRplWmiApRpl8F20300004D070000

Error: (03/29/2013 03:29:07 PM) (Source: Microsoft-Windows-LoadPerf)(User: NT AUTHORITY)
Description: Performance1637070000000000000000000009030000

Error: (03/29/2013 02:59:26 PM) (Source: Microsoft-Windows-LoadPerf)(User: NT AUTHORITY)
Description: WmiApRplWmiApRpl8F20300004D070000

Error: (03/29/2013 02:59:26 PM) (Source: Microsoft-Windows-LoadPerf)(User: NT AUTHORITY)
Description: Performance1637070000000000000000000009030000

Error: (03/29/2013 00:47:28 PM) (Source: Microsoft-Windows-LoadPerf)(User: NT AUTHORITY)
Description: WmiApRplWmiApRpl8F20300004D070000

Error: (03/29/2013 00:47:28 PM) (Source: Microsoft-Windows-LoadPerf)(User: NT AUTHORITY)
Description: Performance1637070000000000000000000009030000


=========================== Installed Programs ============================

Adobe Flash Player 11 ActiveX (Version: 11.6.602.180)
Adobe Flash Player 11 Plugin (Version: 11.6.602.180)
Adobe Reader X (10.1.6) (Version: 10.1.6)
CallAtlanta (Version: 8.6.0)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
Dell Resource CD (Version: 1.00.0000)
Download Navigator (Version: 3.4.0)
Epson Event Manager (Version: 2.40.0001)
Epson FAX Utility (Version: 1.10.00)
Epson PC-FAX Driver
EPSON Scan
EPSON WorkForce 630 Series Printer Uninstall
EPSON XP-200 Series Printer Uninstall
EpsonNet Print (Version: 2.4j)
EpsonNet Setup 3.3 (Version: 3.3b)
Google Drive (Version: 1.8.4357.4863)
Google Update Helper (Version: 1.3.21.135)
GoToMeeting 5.1.0.880 (Version: 5.1.0.880)
IHA_MessageCenter (Version: 1.8.70)
Java 7 Update 17 (Version: 7.0.170)
Java Auto Updater (Version: 2.1.9.0)
Malwarebytes Anti-Malware version 1.70.0.1100 (Version: 1.70.0.1100)
Memeo Instant Backup (Version: 4.60.0.7252)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Groove MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office InfoPath MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.6029.1000)
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Professional Plus 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Word MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Mozilla Firefox 19.0.2 (x86 en-US) (Version: 19.0.2)
Mozilla Maintenance Service (Version: 19.0.2)
Norton 360 (Version: 20.3.0.36)
Picasa 3 (Version: 3.8)
PowerDVD DX (Version: 8.3.5424)
Screencast-O-Matic
Seagate Dashboard (Version: 1.1.0.1421)
SparkTrust PC Cleaner Plus (Version: 3.1.5.0)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft Office 2010 (KB2494150)
Update for Microsoft Office 2010 (KB2553065)
Update for Microsoft Office 2010 (KB2553092)
Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553378) 32-Bit Edition
Update for Microsoft Office 2010 (KB2566458)
Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition
Update for Microsoft Office 2010 (KB2598242) 32-Bit Edition
Update for Microsoft Office 2010 (KB2687509) 32-Bit Edition
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2687277) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2597090) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2687623) 32-Bit Edition
Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition
Update for Microsoft PowerPoint 2010 (KB2598240) 32-Bit Edition
Update for Microsoft SharePoint Workspace 2010 (KB2589371) 32-Bit Edition
Vz In Home Agent (Version: 8.03.41)
Windows Media Player Firefox Plugin (Version: 1.0.0.8)

========================= Devices: ================================


========================= Memory info: ===================================

Percentage of memory in use: 76%
Total physical RAM: 3032.36 MB
Available physical RAM: 711.77 MB
Total Pagefile: 3723.58 MB
Available Pagefile: 792.24 MB
Total Virtual: 4095.88 MB
Available Virtual: 3972.59 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:59.53 GB) (Free:1.01 GB) NTFS

========================= Users: ========================================

User accounts for \\TV-RODRIGUEZ

ADDY                     Administrator            Five4Fighting            
Guest                    Rodriguez                Tobie                    


**** End of log ****
 



#5 oneslittleblessing

oneslittleblessing
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:02:04 PM

Posted 30 March 2013 - 11:03 AM

Here is the log for AdwCleaner:

 

# AdwCleaner v2.115 - Logfile created 03/30/2013 at 08:59:07
# Updated 17/03/2013 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : Rodriguez - TV-RODRIGUEZ
# Boot Mode : Normal
# Running from : C:\Users\Rodriguez\Downloads\AdwCleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

File Deleted : C:\Program Files (x86)\Mozilla FireFox\searchplugins\Search_Results.xml
File Deleted : C:\Users\Five4Fighting\AppData\Local\Google\Chrome\User Data\Default\bprotectorpreferences
File Deleted : C:\Users\Five4Fighting\AppData\Roaming\Mozilla\Firefox\Profiles\h4a9hke8.default\bprotector_extensions.sqlite
File Deleted : C:\Users\Five4Fighting\AppData\Roaming\Mozilla\Firefox\Profiles\h4a9hke8.default\bprotector_prefs.js
File Deleted : C:\Users\Tobie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\iLivid.lnk
File Deleted : C:\Users\Tobie\AppData\Roaming\Mozilla\Firefox\Profiles\mnd2ievg.default\searchplugins\Search_Results.xml
Folder Deleted : C:\Program Files (x86)\Conduit
Folder Deleted : C:\ProgramData\APN
Folder Deleted : C:\ProgramData\boost_interprocess
Folder Deleted : C:\ProgramData\WeCareReminder
Folder Deleted : C:\Users\Rodriguez\AppData\Local\Conduit
Folder Deleted : C:\Users\Rodriguez\AppData\LocalLow\Conduit
Folder Deleted : C:\Users\Rodriguez\AppData\LocalLow\PriceGong

***** [Registry] *****

Key Deleted : HKCU\Software\AppDataLow\Software\Conduit
Key Deleted : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
Key Deleted : HKCU\Software\AppDataLow\Software\PriceGong
Key Deleted : HKCU\Software\AppDataLow\Software\SmartBar
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\DataMngr
Key Deleted : HKCU\Software\DataMngr_Toolbar
Key Deleted : HKCU\Software\ilivid
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFBCB7E0-F91A-4951-9F31-58FEE57A25C4}
Key Deleted : HKLM\Software\bProtector
Key Deleted : HKLM\SOFTWARE\Classes\Applications\ilividsetup.exe
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT3282134
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\Freeze.com
Key Deleted : HKLM\Software\iLividSRTB
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\datamngrUI_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\datamngrUI_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\iLivid_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\iLivid_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\iLividMediaBar_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\iLividMediaBar_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\iLividSetup_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\iLividSetup_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Savings Sidekick_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Savings Sidekick_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SetupDataMngr_Searchqu_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SetupDataMngr_Searchqu_RASMANCS
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{D824F0DE-3D60-4F57-9EB1-66033ECD8ABB}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Search Results Toolbar
Key Deleted : HKLM\SOFTWARE\DataMngr
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Key Deleted : HKU\S-1-5-21-2763570550-1456264970-3941957457-1001\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Key Deleted : HKU\S-1-5-21-2763570550-1456264970-3941957457-1001\Software\Microsoft\Internet Explorer\SearchScopes\{AFBCB7E0-F91A-4951-9F31-58FEE57A25C4}
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [10]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [10]

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16464

[OK] Registry is clean.

-\\ Mozilla Firefox v19.0.2 (en-US)

File : C:\Users\Rodriguez\AppData\Roaming\Mozilla\Firefox\Profiles\a95cy2la.default-1361483391792\prefs.js

C:\Users\Rodriguez\AppData\Roaming\Mozilla\Firefox\Profiles\a95cy2la.default-1361483391792\user.js ... Deleted !

[OK] File is clean.

File : C:\Users\Tobie\AppData\Roaming\Mozilla\Firefox\Profiles\mnd2ievg.default\prefs.js

Deleted : user_pref("browser.startup.homepage", "hxxp://www.searchnu.com/406");
Deleted : user_pref("keyword.URL", "hxxp://dts.search-results.com/sr?src=ffb&gct=ds&appid=390&systemid=406&apn[...]

File : C:\Users\Five4Fighting\AppData\Roaming\Mozilla\Firefox\Profiles\h4a9hke8.default\prefs.js

[OK] File is clean.

-\\ Google Chrome v [Unable to get version]

File : C:\Users\Rodriguez\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

File : C:\Users\Tobie\AppData\Local\Google\Chrome\User Data\Default\Preferences

Deleted [l.4326] : urls_to_restore_on_startup = [ "hxxp://www.searchnu.com/406" ]

File : C:\Users\Five4Fighting\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[S1].txt - [5462 octets] - [30/03/2013 08:59:07]

########## EOF - C:\AdwCleaner[S1].txt - [5522 octets] ##########
 



#6 oneslittleblessing

oneslittleblessing
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:02:04 PM

Posted 30 March 2013 - 11:23 AM

Is it possible because I have Norton 360 installed on my computer it may not be working properly?


Edited by oneslittleblessing, 30 March 2013 - 11:26 AM.


#7 oneslittleblessing

oneslittleblessing
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:02:04 PM

Posted 30 March 2013 - 12:32 PM

Log for ESET:

 

C:\Users\Five4Fighting\Downloads\SoftonicDownloader_for_powerpaint.exe    a variant of Win32/SoftonicDownloader.D application    cleaned by deleting - quarantined
C:\Users\Rodriguez\Downloads\ac3filter.exe    a variant of Win32/InstallIQ application    cleaned by deleting - quarantined
C:\Users\Rodriguez\Downloads\FixBeeV1.exe    Win32/Toolbar.SearchSuite application    cleaned by deleting - quarantined
C:\Users\Rodriguez\Downloads\WinZipRegistryOptimizer.exe    a variant of Win32/OpenInstall application    cleaned by deleting - quarantined
C:\Users\Tobie\Downloads\iLividSetup.exe    Win32/Toolbar.SearchSuite application    cleaned by deleting - quarantined
 



#8 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,428 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:05:04 PM

Posted 30 March 2013 - 12:40 PM

Lets reset the Hosts file and see if the redirects are gone..
 
 
Reset the HOSTS file
As this infection also changes your Windows HOSTS file, we want to replace this file with the default version for your operating system.
Some types of malware will alter the HOSTS file as part of its infection. Please follow the instructions provided in HEREHERE click the MSFixit.png button.  Then just follow the prompts in the Fix it wizard.

OR
Click Run in the File Download dialog box or save MicrosoftFixit50267.msi to your Desktop and double-click on it to run. Then just follow the prompts in the Fix it wizard.


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#9 oneslittleblessing

oneslittleblessing
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:02:04 PM

Posted 31 March 2013 - 12:33 AM

I did the microsoft fix it wizard and I tried using the internet hoping that I wouldnt get any redirects but unfortunately I still am. is there anything else I can do?



#10 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,428 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:05:04 PM

Posted 31 March 2013 - 01:19 PM

Ok, looks like some thing is protected and to get it we need stronger tools and we should get a deeper look. Please follow this Preparation Guide and post in a new topic.


Let me know if all went well.


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#11 oneslittleblessing

oneslittleblessing
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:02:04 PM

Posted 02 April 2013 - 11:43 PM

Im a little confused. Am I supposed to find what to remove on the self help guide?



#12 oneslittleblessing

oneslittleblessing
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:02:04 PM

Posted 03 April 2013 - 01:21 PM

What am I looking for in the self help guide? Is there something specific because I cannot find anything about the redirect virus. Please let me know  :huh:  Thanks!!  :)



#13 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,428 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:05:04 PM

Posted 03 April 2013 - 07:04 PM

It is not a self help guide. Its a Guide to make a new topicand post a DDS log as we need a deeper look to find and remove your malware.

Please follow this Preparation Guide. Do steps 6,7,8 and post in a new topic. Same title is OK.

Let me know if all went well.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users