Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Redirected searches. MSE opens then closes immediately.


  • Please log in to reply
7 replies to this topic

#1 pharming

pharming

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:07:51 PM

Posted 16 April 2013 - 06:56 PM

Hi,

 

I noticed lately that sometimes when I do a google search in Firefox and click on a link I'll be brought to some other ad/search site. It could be going on for awhile; I don't normally use Firefox and only noticed this problem when I opened it a few days ago. I don't have this problem in Chrome. Anyway, when I put two and two together I went to open Microsoft Security Essentials to run a scan only to find that as soon as I open it, it closes. Usually within a second. I ran a complete scan with Malware Bytes that did not find anything malicious but quarantined a few files which I deleted. 

 

I am running Windows 7 64-bit.

 

Any help would be greatly appreciated,

 

-Rick Moranis



BC AdBot (Login to Remove)

 


m

#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 69,803 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:07:51 PM

Posted 16 April 2013 - 07:54 PM

Hello Rick

Reboot into Safe Mode with Networking
How to start Windows 7 in Safe Mode


Please download Rkill by Grinler from one of the 4 links below (if one of them does not work try another...) and save it to your desktop:

Link 1
Link 2
Link 3
Link 4

•In order for Rkill to run properly you must disable your anti-malware software. Please refer to this page if you are not sure how.
•Double-click on Rkill. (If you are using Windows Vista, please right-click on it and select Run As Administrator)?Note: You may have to run Rkill a few times before it is successful. You may also have to download Rkill from a different link which will save it as a different file name.

•A black screen will appear and then disappear. Please do not worry, that is normal. This means that the tool has been successfully executed.
•An Rkill.log will appear. Please copy and paste the contents in your reply (file also located at c:\rkill.log)
•Do not reboot your computer after running Rkill as the malware programs will start again. If your computer reboots, run Rkill again before continuing on to the next step.
•If nothing happens or if the tool does not run, please let me know in your next reply.



Please Download TDSSkiller
Launch it.
Click on change parameters-Select TDLFS file system
Click on "Scan".
Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results.



Please download AdwCleaner by Xplode onto your desktop.
•Close all open programs and internet browsers.
•Double click on adwcleaner.exe to run the tool.
•Click on Delete.
•Confirm each time with Ok.
•You will be prompted to restart your computer. A text file will open after the restart.
•Please post the contents of that logfile with your next reply.
•You can find the logfile at C:\AdwCleaner[S1].txt as well.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 pharming

pharming
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:07:51 PM

Posted 17 April 2013 - 02:01 PM

RKILL LOG
 
Rkill 2.4.7 by Lawrence Abrams (Grinler)
Copyright 2008-2013 BleepingComputer.com
More Information about Rkill can be found at this link:
 
Program started at: 04/17/2013 02:45:05 PM in x64 mode.
Windows Version: Windows 7 Home Premium 
 
Checking for Windows services to stop:
 
 * No malware services found to stop.
 
Checking for processes to terminate:
 
 * No malware processes found to kill.
 
Checking Registry for malware related settings:
 
 * No issues found in the Registry.
 
Resetting .EXE, .COM, & .BAT associations in the Windows Registry.
 
Performing miscellaneous checks:
 
 * No issues found.
 
Checking Windows Service Integrity: 
 
 * COM+ Event System (EventSystem) is not Running.
   Startup Type set to: Automatic
 
 * Security Center (wscsvc) is not Running.
   Startup Type set to: Disabled
 
 * Windows Update (wuauserv) is not Running.
   Startup Type set to: Automatic (Delayed Start)
 
Searching for Missing Digital Signatures: 
 
 * No issues found.
 
Checking HOSTS File: 
 
 * HOSTS file entries found: 
 
  127.0.0.1       localhost
 
Program finished at: 04/17/2013 02:45:20 PM
Execution time: 0 hours(s), 0 minute(s), and 14 seconds(s)
 
 
 
 
TDSSKILLER LOG
 
14:47:29.0848 0632  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
14:47:31.0093 0632  ============================================================
14:47:31.0093 0632  Current date / time: 2013/04/17 14:47:31.0093
14:47:31.0093 0632  SystemInfo:
14:47:31.0093 0632  
14:47:31.0093 0632  OS Version: 6.1.7600 ServicePack: 0.0
14:47:31.0093 0632  Product type: Workstation
14:47:31.0093 0632  ComputerName: MATT-PC
14:47:31.0093 0632  UserName: Matt
14:47:31.0093 0632  Windows directory: C:\Windows
14:47:31.0093 0632  System windows directory: C:\Windows
14:47:31.0093 0632  Running under WOW64
14:47:31.0093 0632  Processor architecture: Intel x64
14:47:31.0093 0632  Number of processors: 4
14:47:31.0093 0632  Page size: 0x1000
14:47:31.0093 0632  Boot type: Safe boot with network
14:47:31.0093 0632  ============================================================
14:47:32.0736 0632  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
14:47:32.0780 0632  ============================================================
14:47:32.0780 0632  \Device\Harddisk0\DR0:
14:47:32.0823 0632  MBR partitions:
14:47:32.0823 0632  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x14000, BlocksNum 0x1D4C000
14:47:32.0823 0632  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1D60000, BlocksNum 0x38625830
14:47:32.0823 0632  ============================================================
14:47:33.0082 0632  C: <-> \Device\Harddisk0\DR0\Partition2
14:47:33.0082 0632  ============================================================
14:47:33.0082 0632  Initialize success
14:47:33.0082 0632  ============================================================
14:47:55.0224 2000  ============================================================
14:47:55.0224 2000  Scan started
14:47:55.0224 2000  Mode: Manual; 
14:47:55.0224 2000  ============================================================
14:47:55.0657 2000  ================ Scan system memory ========================
14:47:55.0658 2000  System memory - ok
14:47:55.0658 2000  ================ Scan services =============================
14:47:55.0928 2000  [ 69AA89A20DEE08BFA650AAB6CE37BD10 ] 1394ohci        C:\Windows\system32\DRIVERS\1394ohci.sys
14:47:55.0931 2000  1394ohci - ok
14:47:55.0982 2000  [ C49C56B35BFC6CDA8D1FDCAD2885568F ] Acceler         C:\Windows\system32\DRIVERS\Acceler.sys
14:47:55.0983 2000  Acceler - ok
14:47:56.0083 2000  [ 6F11E88748CDEFD2F76AA215F97DDFE5 ] ACPI            C:\Windows\system32\DRIVERS\ACPI.sys
14:47:56.0087 2000  ACPI - ok
14:47:56.0116 2000  [ 63B05A0420CE4BF0E4AF6DCC7CADA254 ] AcpiPmi         C:\Windows\system32\DRIVERS\acpipmi.sys
14:47:56.0117 2000  AcpiPmi - ok
14:47:56.0168 2000  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
14:47:56.0174 2000  adp94xx - ok
14:47:56.0210 2000  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
14:47:56.0216 2000  adpahci - ok
14:47:56.0279 2000  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
14:47:56.0283 2000  adpu320 - ok
14:47:56.0365 2000  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
14:47:56.0367 2000  AeLookupSvc - ok
14:47:56.0565 2000  [ A6FB9DB8F1A86861D955FD6975977AE0 ] AESTFilters     C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_0057cbec48a2d7cf\AESTSr64.exe
14:47:56.0567 2000  AESTFilters - ok
14:47:56.0637 2000  [ DB9D6C6B2CD95A9CA414D045B627422E ] AFD             C:\Windows\system32\drivers\afd.sys
14:47:56.0642 2000  AFD - ok
14:47:56.0690 2000  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\DRIVERS\agp440.sys
14:47:56.0691 2000  agp440 - ok
14:47:56.0726 2000  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
14:47:56.0728 2000  ALG - ok
14:47:56.0772 2000  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\DRIVERS\aliide.sys
14:47:56.0773 2000  aliide - ok
14:47:56.0983 2000  ALSysIO - ok
14:47:57.0011 2000  [ 568C61DBDA2D9F1AFDAC58771E313AFE ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
14:47:57.0014 2000  AMD External Events Utility - ok
14:47:57.0047 2000  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\DRIVERS\amdide.sys
14:47:57.0048 2000  amdide - ok
14:47:57.0099 2000  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
14:47:57.0101 2000  AmdK8 - ok
14:47:57.0119 2000  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
14:47:57.0121 2000  AmdPPM - ok
14:47:57.0179 2000  [ EC7EBAB00A4D8448BAB68D1E49B4BEB9 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
14:47:57.0181 2000  amdsata - ok
14:47:57.0211 2000  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
14:47:57.0215 2000  amdsbs - ok
14:47:57.0267 2000  [ DB27766102C7BF7E95140A2AA81D042E ] amdxata         C:\Windows\system32\drivers\amdxata.sys
14:47:57.0269 2000  amdxata - ok
14:47:57.0334 2000  [ 42FD751B27FA0E9C69BB39F39E409594 ] AppID           C:\Windows\system32\drivers\appid.sys
14:47:57.0337 2000  AppID - ok
14:47:57.0393 2000  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
14:47:57.0394 2000  AppIDSvc - ok
14:47:57.0417 2000  [ D065BE66822847B7F127D1F90158376E ] Appinfo         C:\Windows\System32\appinfo.dll
14:47:57.0419 2000  Appinfo - ok
14:47:57.0507 2000  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\DRIVERS\arc.sys
14:47:57.0509 2000  arc - ok
14:47:57.0540 2000  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
14:47:57.0543 2000  arcsas - ok
14:47:57.0685 2000  [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
14:47:57.0718 2000  aspnet_state - ok
14:47:57.0767 2000  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
14:47:57.0768 2000  AsyncMac - ok
14:47:57.0791 2000  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\DRIVERS\atapi.sys
14:47:57.0791 2000  atapi - ok
14:47:57.0834 2000  [ 4BF5BCA6E2608CD8A00BC4A6673A9F47 ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
14:47:57.0838 2000  AtiHDAudioService - ok
14:47:57.0864 2000  [ D481083348138B4933ACFE95812DB71C ] AtiHdmiService  C:\Windows\system32\drivers\AtiHdmi.sys
14:47:57.0868 2000  AtiHdmiService - ok
14:47:58.0308 2000  [ B579364CE413C6B8FCB8A594CC4C48EE ] atikmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
14:47:58.0425 2000  atikmdag - ok
14:47:58.0548 2000  [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
14:47:58.0560 2000  AudioEndpointBuilder - ok
14:47:58.0573 2000  [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioSrv        C:\Windows\System32\Audiosrv.dll
14:47:58.0579 2000  AudioSrv - ok
14:47:58.0646 2000  [ B20B5FA5CA050E9926E4D1DB81501B32 ] AxInstSV        C:\Windows\System32\AxInstSV.dll
14:47:58.0649 2000  AxInstSV - ok
14:47:58.0717 2000  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
14:47:58.0724 2000  b06bdrv - ok
14:47:58.0815 2000  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
14:47:58.0820 2000  b57nd60a - ok
14:47:58.0983 2000  [ 59727F8026A6E6F5656DB6B7C04822E6 ] BazisVirtualCDBus C:\Windows\system32\DRIVERS\BazisVirtualCDBus.sys
14:47:58.0987 2000  BazisVirtualCDBus - ok
14:47:59.0017 2000  [ 5C0F919666954885D7760DFFE4B29A25 ] BCM42RLY        C:\Windows\system32\drivers\BCM42RLY.sys
14:47:59.0019 2000  BCM42RLY - ok
14:47:59.0284 2000  [ BAB887A2B2786310A966881F074F4A99 ] BCM43XX         C:\Windows\system32\DRIVERS\bcmwl664.sys
14:47:59.0311 2000  BCM43XX - ok
14:47:59.0355 2000  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
14:47:59.0357 2000  BDESVC - ok
14:47:59.0406 2000  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
14:47:59.0406 2000  Beep - ok
14:47:59.0470 2000  [ 4992C609A6315671463E30F6512BC022 ] BFE             C:\Windows\System32\bfe.dll
14:47:59.0479 2000  BFE - ok
14:47:59.0555 2000  [ 7F0C323FE3DA28AA4AA1BDA3F575707F ] BITS            C:\Windows\system32\qmgr.dll
14:47:59.0613 2000  BITS - ok
14:47:59.0657 2000  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
14:47:59.0658 2000  blbdrive - ok
14:47:59.0701 2000  [ 19D20159708E152267E53B66677A4995 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
14:47:59.0703 2000  bowser - ok
14:47:59.0718 2000  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
14:47:59.0719 2000  BrFiltLo - ok
14:47:59.0750 2000  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
14:47:59.0751 2000  BrFiltUp - ok
14:47:59.0796 2000  [ 5C2F352A4E961D72518261257AAE204B ] Bridge          C:\Windows\system32\DRIVERS\bridge.sys
14:47:59.0798 2000  Bridge - ok
14:47:59.0826 2000  [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP        C:\Windows\system32\DRIVERS\bridge.sys
14:47:59.0828 2000  BridgeMP - ok
14:47:59.0876 2000  [ 6B054C67AAA87843504E8E3C09102009 ] Browser         C:\Windows\System32\browser.dll
14:47:59.0878 2000  Browser - ok
14:47:59.0902 2000  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
14:47:59.0907 2000  Brserid - ok
14:47:59.0935 2000  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
14:47:59.0937 2000  BrSerWdm - ok
14:47:59.0942 2000  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
14:47:59.0943 2000  BrUsbMdm - ok
14:47:59.0948 2000  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
14:47:59.0950 2000  BrUsbSer - ok
14:47:59.0964 2000  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
14:47:59.0965 2000  BTHMODEM - ok
14:48:00.0011 2000  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
14:48:00.0014 2000  bthserv - ok
14:48:00.0054 2000  [ 00729A4D11A86DFDB3B300D70DF0F0B1 ] C771BUS         C:\Windows\system32\DRIVERS\C771BUS.sys
14:48:00.0056 2000  C771BUS - ok
14:48:00.0109 2000  [ 5A8C764AA501F1DF15121B0B0B2D3FCB ] C771VSP         C:\Windows\system32\DRIVERS\C771VSP.sys
14:48:00.0113 2000  C771VSP - ok
14:48:00.0158 2000  catchme - ok
14:48:00.0261 2000  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
14:48:00.0262 2000  cdfs - ok
14:48:00.0294 2000  [ 83D2D75E1EFB81B3450C18131443F7DB ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
14:48:00.0296 2000  cdrom - ok
14:48:00.0352 2000  [ 312E2F82AF11E79906898AC3E3D58A1F ] CertPropSvc     C:\Windows\System32\certprop.dll
14:48:00.0355 2000  CertPropSvc - ok
14:48:00.0369 2000  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
14:48:00.0371 2000  circlass - ok
14:48:00.0402 2000  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
14:48:00.0408 2000  CLFS - ok
14:48:00.0513 2000  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
14:48:00.0516 2000  clr_optimization_v2.0.50727_32 - ok
14:48:00.0602 2000  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
14:48:00.0605 2000  clr_optimization_v2.0.50727_64 - ok
14:48:00.0780 2000  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
14:48:00.0876 2000  clr_optimization_v4.0.30319_32 - ok
14:48:00.0936 2000  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
14:48:01.0006 2000  clr_optimization_v4.0.30319_64 - ok
14:48:01.0050 2000  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
14:48:01.0050 2000  CmBatt - ok
14:48:01.0090 2000  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\DRIVERS\cmdide.sys
14:48:01.0091 2000  cmdide - ok
14:48:01.0205 2000  [ CA7720B73446FDDEC5C69519C1174C98 ] CNG             C:\Windows\system32\Drivers\cng.sys
14:48:01.0212 2000  CNG - ok
14:48:01.0227 2000  Scan interrupted by user!
14:48:01.0227 2000  ================ Scan global ===============================
14:48:01.0227 2000  Scan interrupted by user!
14:48:01.0227 2000  ================ Scan MBR ==================================
14:48:01.0227 2000  Scan interrupted by user!
14:48:01.0227 2000  ================ Scan VBR ==================================
14:48:01.0227 2000  Scan interrupted by user!
14:48:01.0227 2000  ============================================================
14:48:01.0227 2000  Scan finished
14:48:01.0227 2000  ============================================================
14:48:01.0257 1416  Detected object count: 0
14:48:01.0257 1416  Actual detected object count: 0
14:48:35.0192 0988  ============================================================
14:48:35.0192 0988  Scan started
14:48:35.0192 0988  Mode: Manual; TDLFS; 
14:48:35.0192 0988  ============================================================
14:48:35.0433 0988  ================ Scan system memory ========================
14:48:35.0433 0988  System memory - ok
14:48:35.0433 0988  ================ Scan services =============================
14:48:35.0627 0988  [ 69AA89A20DEE08BFA650AAB6CE37BD10 ] 1394ohci        C:\Windows\system32\DRIVERS\1394ohci.sys
14:48:35.0629 0988  1394ohci - ok
14:48:35.0689 0988  [ C49C56B35BFC6CDA8D1FDCAD2885568F ] Acceler         C:\Windows\system32\DRIVERS\Acceler.sys
14:48:35.0690 0988  Acceler - ok
14:48:35.0733 0988  [ 6F11E88748CDEFD2F76AA215F97DDFE5 ] ACPI            C:\Windows\system32\DRIVERS\ACPI.sys
14:48:35.0736 0988  ACPI - ok
14:48:35.0756 0988  [ 63B05A0420CE4BF0E4AF6DCC7CADA254 ] AcpiPmi         C:\Windows\system32\DRIVERS\acpipmi.sys
14:48:35.0757 0988  AcpiPmi - ok
14:48:35.0816 0988  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
14:48:35.0821 0988  adp94xx - ok
14:48:35.0891 0988  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
14:48:35.0894 0988  adpahci - ok
14:48:35.0912 0988  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
14:48:35.0914 0988  adpu320 - ok
14:48:35.0998 0988  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
14:48:35.0999 0988  AeLookupSvc - ok
14:48:36.0138 0988  [ A6FB9DB8F1A86861D955FD6975977AE0 ] AESTFilters     C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_0057cbec48a2d7cf\AESTSr64.exe
14:48:36.0140 0988  AESTFilters - ok
14:48:36.0186 0988  [ DB9D6C6B2CD95A9CA414D045B627422E ] AFD             C:\Windows\system32\drivers\afd.sys
14:48:36.0191 0988  AFD - ok
14:48:36.0230 0988  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\DRIVERS\agp440.sys
14:48:36.0231 0988  agp440 - ok
14:48:36.0258 0988  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
14:48:36.0259 0988  ALG - ok
14:48:36.0321 0988  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\DRIVERS\aliide.sys
14:48:36.0322 0988  aliide - ok
14:48:36.0456 0988  ALSysIO - ok
14:48:36.0476 0988  [ 568C61DBDA2D9F1AFDAC58771E313AFE ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
14:48:36.0478 0988  AMD External Events Utility - ok
14:48:36.0504 0988  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\DRIVERS\amdide.sys
14:48:36.0505 0988  amdide - ok
14:48:36.0557 0988  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
14:48:36.0558 0988  AmdK8 - ok
14:48:36.0593 0988  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
14:48:36.0594 0988  AmdPPM - ok
14:48:36.0686 0988  [ EC7EBAB00A4D8448BAB68D1E49B4BEB9 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
14:48:36.0688 0988  amdsata - ok
14:48:36.0710 0988  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
14:48:36.0712 0988  amdsbs - ok
14:48:36.0749 0988  [ DB27766102C7BF7E95140A2AA81D042E ] amdxata         C:\Windows\system32\drivers\amdxata.sys
14:48:36.0750 0988  amdxata - ok
14:48:36.0775 0988  [ 42FD751B27FA0E9C69BB39F39E409594 ] AppID           C:\Windows\system32\drivers\appid.sys
14:48:36.0775 0988  AppID - ok
14:48:36.0816 0988  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
14:48:36.0817 0988  AppIDSvc - ok
14:48:36.0840 0988  [ D065BE66822847B7F127D1F90158376E ] Appinfo         C:\Windows\System32\appinfo.dll
14:48:36.0842 0988  Appinfo - ok
14:48:36.0864 0988  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\DRIVERS\arc.sys
14:48:36.0865 0988  arc - ok
14:48:36.0881 0988  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
14:48:36.0882 0988  arcsas - ok
14:48:37.0017 0988  [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
14:48:37.0018 0988  aspnet_state - ok
14:48:37.0075 0988  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
14:48:37.0075 0988  AsyncMac - ok
14:48:37.0131 0988  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\DRIVERS\atapi.sys
14:48:37.0132 0988  atapi - ok
14:48:37.0183 0988  [ 4BF5BCA6E2608CD8A00BC4A6673A9F47 ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
14:48:37.0185 0988  AtiHDAudioService - ok
14:48:37.0230 0988  [ D481083348138B4933ACFE95812DB71C ] AtiHdmiService  C:\Windows\system32\drivers\AtiHdmi.sys
14:48:37.0231 0988  AtiHdmiService - ok
14:48:37.0672 0988  [ B579364CE413C6B8FCB8A594CC4C48EE ] atikmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
14:48:37.0727 0988  atikmdag - ok
14:48:37.0789 0988  [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
14:48:37.0795 0988  AudioEndpointBuilder - ok
14:48:37.0810 0988  [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioSrv        C:\Windows\System32\Audiosrv.dll
14:48:37.0816 0988  AudioSrv - ok
14:48:37.0844 0988  [ B20B5FA5CA050E9926E4D1DB81501B32 ] AxInstSV        C:\Windows\System32\AxInstSV.dll
14:48:37.0845 0988  AxInstSV - ok
14:48:37.0906 0988  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
14:48:37.0911 0988  b06bdrv - ok
14:48:37.0938 0988  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
14:48:37.0941 0988  b57nd60a - ok
14:48:37.0997 0988  [ 59727F8026A6E6F5656DB6B7C04822E6 ] BazisVirtualCDBus C:\Windows\system32\DRIVERS\BazisVirtualCDBus.sys
14:48:37.0999 0988  BazisVirtualCDBus - ok
14:48:38.0015 0988  [ 5C0F919666954885D7760DFFE4B29A25 ] BCM42RLY        C:\Windows\system32\drivers\BCM42RLY.sys
14:48:38.0015 0988  BCM42RLY - ok
14:48:38.0190 0988  [ BAB887A2B2786310A966881F074F4A99 ] BCM43XX         C:\Windows\system32\DRIVERS\bcmwl664.sys
14:48:38.0217 0988  BCM43XX - ok
14:48:38.0270 0988  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
14:48:38.0271 0988  BDESVC - ok
14:48:38.0303 0988  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
14:48:38.0304 0988  Beep - ok
14:48:38.0351 0988  [ 4992C609A6315671463E30F6512BC022 ] BFE             C:\Windows\System32\bfe.dll
14:48:38.0357 0988  BFE - ok
14:48:38.0486 0988  [ 7F0C323FE3DA28AA4AA1BDA3F575707F ] BITS            C:\Windows\system32\qmgr.dll
14:48:38.0495 0988  BITS - ok
14:48:38.0530 0988  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
14:48:38.0531 0988  blbdrive - ok
14:48:38.0573 0988  [ 19D20159708E152267E53B66677A4995 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
14:48:38.0575 0988  bowser - ok
14:48:38.0616 0988  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
14:48:38.0616 0988  BrFiltLo - ok
14:48:38.0631 0988  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
14:48:38.0631 0988  BrFiltUp - ok
14:48:38.0686 0988  [ 5C2F352A4E961D72518261257AAE204B ] Bridge          C:\Windows\system32\DRIVERS\bridge.sys
14:48:38.0687 0988  Bridge - ok
14:48:38.0692 0988  [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP        C:\Windows\system32\DRIVERS\bridge.sys
14:48:38.0693 0988  BridgeMP - ok
14:48:38.0782 0988  [ 6B054C67AAA87843504E8E3C09102009 ] Browser         C:\Windows\System32\browser.dll
14:48:38.0784 0988  Browser - ok
14:48:38.0824 0988  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
14:48:38.0827 0988  Brserid - ok
14:48:38.0875 0988  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
14:48:38.0876 0988  BrSerWdm - ok
14:48:38.0881 0988  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
14:48:38.0882 0988  BrUsbMdm - ok
14:48:38.0934 0988  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
14:48:38.0934 0988  BrUsbSer - ok
14:48:38.0995 0988  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
14:48:38.0996 0988  BTHMODEM - ok
14:48:39.0034 0988  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
14:48:39.0035 0988  bthserv - ok
14:48:39.0077 0988  [ 00729A4D11A86DFDB3B300D70DF0F0B1 ] C771BUS         C:\Windows\system32\DRIVERS\C771BUS.sys
14:48:39.0078 0988  C771BUS - ok
14:48:39.0185 0988  [ 5A8C764AA501F1DF15121B0B0B2D3FCB ] C771VSP         C:\Windows\system32\DRIVERS\C771VSP.sys
14:48:39.0187 0988  C771VSP - ok
14:48:39.0231 0988  catchme - ok
14:48:39.0317 0988  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
14:48:39.0319 0988  cdfs - ok
14:48:39.0358 0988  [ 83D2D75E1EFB81B3450C18131443F7DB ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
14:48:39.0360 0988  cdrom - ok
14:48:39.0375 0988  [ 312E2F82AF11E79906898AC3E3D58A1F ] CertPropSvc     C:\Windows\System32\certprop.dll
14:48:39.0376 0988  CertPropSvc - ok
14:48:39.0409 0988  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
14:48:39.0410 0988  circlass - ok
14:48:39.0450 0988  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
14:48:39.0454 0988  CLFS - ok
14:48:39.0519 0988  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
14:48:39.0520 0988  clr_optimization_v2.0.50727_32 - ok
14:48:39.0574 0988  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
14:48:39.0576 0988  clr_optimization_v2.0.50727_64 - ok
14:48:39.0669 0988  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
14:48:39.0671 0988  clr_optimization_v4.0.30319_32 - ok
14:48:39.0709 0988  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
14:48:39.0711 0988  clr_optimization_v4.0.30319_64 - ok
14:48:39.0731 0988  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
14:48:39.0731 0988  CmBatt - ok
14:48:39.0763 0988  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\DRIVERS\cmdide.sys
14:48:39.0763 0988  cmdide - ok
14:48:39.0827 0988  [ CA7720B73446FDDEC5C69519C1174C98 ] CNG             C:\Windows\system32\Drivers\cng.sys
14:48:39.0832 0988  CNG - ok
14:48:39.0885 0988  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
14:48:39.0886 0988  Compbatt - ok
14:48:39.0946 0988  [ F26B3A86F6FA87CA360B879581AB4123 ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
14:48:39.0947 0988  CompositeBus - ok
14:48:39.0971 0988  COMSysApp - ok
14:48:39.0989 0988  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
14:48:39.0990 0988  crcdisk - ok
14:48:40.0135 0988  [ 63A7739AC9C1E38589B3EDB1DAEB9DF5 ] CronService     C:\Prey\platform\windows\cronsvc.exe
14:48:40.0138 0988  CronService - ok
14:48:40.0264 0988  [ BAF19B633933A9FB4883D27D66C39E9A ] CryptSvc        C:\Windows\system32\cryptsvc.dll
14:48:40.0266 0988  CryptSvc - ok
14:48:40.0307 0988  [ ED5CF92396A62F4C15110DCDB5E854D9 ] CtClsFlt        C:\Windows\system32\DRIVERS\CtClsFlt.sys
14:48:40.0310 0988  CtClsFlt - ok
14:48:40.0387 0988  [ 7266972E86890E2B30C0C322E906B027 ] DcomLaunch      C:\Windows\system32\rpcss.dll
14:48:40.0393 0988  DcomLaunch - ok
14:48:40.0460 0988  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
14:48:40.0465 0988  defragsvc - ok
14:48:40.0521 0988  [ 9C253CE7311CA60FC11C774692A13208 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
14:48:40.0524 0988  DfsC - ok
14:48:40.0555 0988  [ CE3B9562D997F69B330D181A8875960F ] Dhcp            C:\Windows\system32\dhcpcore.dll
14:48:40.0560 0988  Dhcp - ok
14:48:40.0604 0988  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
14:48:40.0606 0988  discache - ok
14:48:40.0665 0988  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\DRIVERS\disk.sys
14:48:40.0666 0988  Disk - ok
14:48:40.0722 0988  dlcx_device - ok
14:48:40.0749 0988  [ 85CF424C74A1D5EC33533E1DBFF9920A ] Dnscache        C:\Windows\System32\dnsrslvr.dll
14:48:40.0753 0988  Dnscache - ok
14:48:40.0938 0988  [ 0840ABBBDF438691EE65A20040635CBE ] DockLoginService C:\Program Files\Dell\DellDock\DockLogin.exe
14:48:40.0941 0988  DockLoginService - ok
14:48:40.0966 0988  [ 14452ACDB09B70964C8C21BF80A13ACB ] dot3svc         C:\Windows\System32\dot3svc.dll
14:48:40.0970 0988  dot3svc - ok
14:48:40.0998 0988  [ 8C2BA6BEA949EE6E68385F5692BAFB94 ] DPS             C:\Windows\system32\dps.dll
14:48:41.0001 0988  DPS - ok
14:48:41.0114 0988  [ EFB3C21BD2CB810B1DD7AF1C01DF0233 ] DRIVER_B        C:\Windows\system32\Drivers\DRIVER_BIN64
14:48:41.0115 0988  Suspicious file (Forged): C:\Windows\system32\Drivers\DRIVER_BIN64. Real md5: EFB3C21BD2CB810B1DD7AF1C01DF0233, Fake md5: DE3CDAD1E847546111D2F3FA9944C831
14:48:41.0115 0988  DRIVER_B ( ForgedFile.Multi.Generic ) - warning
14:48:41.0115 0988  DRIVER_B - detected ForgedFile.Multi.Generic (1)
14:48:41.0170 0988  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
14:48:41.0171 0988  drmkaud - ok
14:48:41.0286 0988  [ 1633B9ABF52784A1331476397A48CBEF ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
14:48:41.0301 0988  DXGKrnl - ok
14:48:41.0330 0988  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
14:48:41.0333 0988  EapHost - ok
14:48:41.0646 0988  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
14:48:41.0711 0988  ebdrv - ok
14:48:41.0749 0988  [ 156F6159457D0AA7E59B62681B56EB90 ] EFS             C:\Windows\System32\lsass.exe
14:48:41.0751 0988  EFS - ok
14:48:41.0888 0988  [ 47C071994C3F649F23D9CD075AC9304A ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
14:48:41.0898 0988  ehRecvr - ok
14:48:41.0923 0988  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
14:48:41.0925 0988  ehSched - ok
14:48:42.0026 0988  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
14:48:42.0034 0988  elxstor - ok
14:48:42.0125 0988  [ B5581646636759D0DAFA8B008881C079 ] EPSON_EB_RPCV4_01 C:\ProgramData\EPSON\EPW!3 SSRP\E_S40STB.EXE
14:48:42.0151 0988  EPSON_EB_RPCV4_01 - ok
14:48:42.0176 0988  [ 1E345F2A2D95DA3190596E691CDE9342 ] EPSON_PM_RPCV4_01 C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RPB.EXE
14:48:42.0179 0988  EPSON_PM_RPCV4_01 - ok
14:48:42.0213 0988  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\DRIVERS\errdev.sys
14:48:42.0214 0988  ErrDev - ok
14:48:42.0335 0988  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
14:48:42.0340 0988  EventSystem - ok
14:48:42.0355 0988  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
14:48:42.0360 0988  exfat - ok
14:48:42.0412 0988  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
14:48:42.0415 0988  fastfat - ok
14:48:42.0472 0988  [ D607B2F1BEE3992AA6C2C92C0A2F0855 ] Fax             C:\Windows\system32\fxssvc.exe
14:48:42.0483 0988  Fax - ok
14:48:42.0502 0988  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
14:48:42.0503 0988  fdc - ok
14:48:42.0539 0988  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
14:48:42.0541 0988  fdPHost - ok
14:48:42.0568 0988  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
14:48:42.0570 0988  FDResPub - ok
14:48:42.0592 0988  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
14:48:42.0594 0988  FileInfo - ok
14:48:42.0614 0988  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
14:48:42.0616 0988  Filetrace - ok
14:48:42.0744 0988  [ BB0667B0171B632B97EA759515476F07 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
14:48:42.0755 0988  FLEXnet Licensing Service - ok
14:48:42.0760 0988  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
14:48:42.0761 0988  flpydisk - ok
14:48:42.0856 0988  [ F7866AF72ABBAF84B1FA5AA195378C59 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
14:48:42.0859 0988  FltMgr - ok
14:48:42.0978 0988  [ CB5E4B9C319E3C6BB363EB7E58A4A051 ] FontCache       C:\Windows\system32\FntCache.dll
14:48:42.0995 0988  FontCache - ok
14:48:43.0071 0988  [ 8D89E3131C27FDD6932189CB785E1B7A ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
14:48:43.0072 0988  FontCache3.0.0.0 - ok
14:48:43.0087 0988  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
14:48:43.0089 0988  FsDepends - ok
14:48:43.0152 0988  [ D3E3F93D67821A2DB2B3D9FAC2DC2064 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
14:48:43.0153 0988  Fs_Rec - ok
14:48:43.0238 0988  [ 1F44F8559E61A8306ECC67BB1E168B7C ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
14:48:43.0243 0988  fvevol - ok
14:48:43.0289 0988  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
14:48:43.0291 0988  gagp30kx - ok
14:48:43.0342 0988  [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
14:48:43.0343 0988  GEARAspiWDM - ok
14:48:43.0415 0988  [ FE5AB4525BC2EC68B9119A6E5D40128B ] gpsvc           C:\Windows\System32\gpsvc.dll
14:48:43.0427 0988  gpsvc - ok
14:48:43.0539 0988  [ F02A533F517EB38333CB12A9E8963773 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
14:48:43.0542 0988  gupdate - ok
14:48:43.0565 0988  [ F02A533F517EB38333CB12A9E8963773 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
14:48:43.0566 0988  gupdatem - ok
14:48:43.0606 0988  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
14:48:43.0607 0988  hcw85cir - ok
14:48:43.0637 0988  [ 0A49913402747A0B67DE940FB42CBDBB ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
14:48:43.0639 0988  HDAudBus - ok
14:48:43.0681 0988  [ B6AC71AAA2B10848F57FC49D55A651AF ] HECIx64         C:\Windows\system32\DRIVERS\HECIx64.sys
14:48:43.0682 0988  HECIx64 - ok
14:48:43.0716 0988  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
14:48:43.0718 0988  HidBatt - ok
14:48:43.0746 0988  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
14:48:43.0749 0988  HidBth - ok
14:48:43.0770 0988  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
14:48:43.0772 0988  HidIr - ok
14:48:43.0810 0988  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\System32\hidserv.dll
14:48:43.0812 0988  hidserv - ok
14:48:43.0856 0988  [ B3BF6B5B50006DEF50B66306D99FCF6F ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
14:48:43.0857 0988  HidUsb - ok
14:48:43.0876 0988  [ EFA58EDE58DD74388FFD04CB32681518 ] hkmsvc          C:\Windows\system32\kmsvc.dll
14:48:43.0879 0988  hkmsvc - ok
14:48:43.0898 0988  [ 046B2673767CA626E2CFB7FDF735E9E8 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
14:48:43.0903 0988  HomeGroupListener - ok
14:48:43.0953 0988  [ 06A7422224D9865A5613710A089987DF ] HomeGroupProvider C:\Windows\system32\provsvc.dll
14:48:43.0957 0988  HomeGroupProvider - ok
14:48:44.0030 0988  [ 0886D440058F203EBA0E1825E4355914 ] HpSAMD          C:\Windows\system32\DRIVERS\HpSAMD.sys
14:48:44.0033 0988  HpSAMD - ok
14:48:44.0095 0988  [ CEE049CAC4EFA7F4E1E4AD014414A5D4 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
14:48:44.0102 0988  HTTP - ok
14:48:44.0139 0988  [ F17766A19145F111856378DF337A5D79 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
14:48:44.0186 0988  hwpolicy - ok
14:48:44.0250 0988  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
14:48:44.0251 0988  i8042prt - ok
14:48:44.0317 0988  [ B75E45C564E944A2657167D197AB29DA ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
14:48:44.0323 0988  iaStorV - ok
14:48:44.0443 0988  [ 2F2BE70D3E02B6FA877921AB9516D43C ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
14:48:44.0456 0988  idsvc - ok
14:48:44.0493 0988  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
14:48:44.0495 0988  iirsp - ok
14:48:44.0569 0988  [ C5B4683680DF085B57BC53E5EF34861F ] IKEEXT          C:\Windows\System32\ikeext.dll
14:48:44.0582 0988  IKEEXT - ok
14:48:44.0607 0988  [ DD587A55390ED2295BCE6D36AD567DA9 ] Impcd           C:\Windows\system32\DRIVERS\Impcd.sys
14:48:44.0610 0988  Impcd - ok
14:48:44.0624 0988  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\DRIVERS\intelide.sys
14:48:44.0624 0988  intelide - ok
14:48:44.0672 0988  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
14:48:44.0673 0988  intelppm - ok
14:48:44.0707 0988  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
14:48:44.0709 0988  IPBusEnum - ok
14:48:44.0728 0988  [ 722DD294DF62483CECAAE6E094B4D695 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
14:48:44.0729 0988  IpFilterDriver - ok
14:48:44.0783 0988  [ F8E058D17363EC580E4B7232778B6CB5 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
14:48:44.0792 0988  iphlpsvc - ok
14:48:44.0860 0988  [ E2B4A4494DB7CB9B89B55CA268C337C5 ] IPMIDRV         C:\Windows\system32\DRIVERS\IPMIDrv.sys
14:48:44.0862 0988  IPMIDRV - ok
14:48:44.0878 0988  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
14:48:44.0879 0988  IPNAT - ok
14:48:44.0992 0988  [ 844B87302D856F8EB32A38C35969734A ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
14:48:45.0006 0988  iPod Service - ok
14:48:45.0031 0988  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
14:48:45.0031 0988  IRENUM - ok
14:48:45.0141 0988  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\DRIVERS\isapnp.sys
14:48:45.0142 0988  isapnp - ok
14:48:45.0157 0988  [ FA4D2557DE56D45B0A346F93564BE6E1 ] iScsiPrt        C:\Windows\system32\DRIVERS\msiscsi.sys
14:48:45.0161 0988  iScsiPrt - ok
14:48:45.0206 0988  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
14:48:45.0207 0988  kbdclass - ok
14:48:45.0252 0988  [ 6DEF98F8541E1B5DCEB2C822A11F7323 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
14:48:45.0254 0988  kbdhid - ok
14:48:45.0300 0988  [ 156F6159457D0AA7E59B62681B56EB90 ] KeyIso          C:\Windows\system32\lsass.exe
14:48:45.0301 0988  KeyIso - ok
14:48:45.0351 0988  [ 4F4B5FDE429416877DE7143044582EB5 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
14:48:45.0352 0988  KSecDD - ok
14:48:45.0370 0988  [ 6F40465A44ECDC1731BEFAFEC5BDD03C ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
14:48:45.0373 0988  KSecPkg - ok
14:48:45.0389 0988  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
14:48:45.0391 0988  ksthunk - ok
14:48:45.0436 0988  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
14:48:45.0443 0988  KtmRm - ok
14:48:45.0505 0988  [ 81F1D04D4D0E433099365127375FD501 ] LanmanServer    C:\Windows\System32\srvsvc.dll
14:48:45.0512 0988  LanmanServer - ok
14:48:45.0540 0988  [ 27026EAC8818E8A6C00A1CAD2F11D29A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
14:48:45.0544 0988  LanmanWorkstation - ok
14:48:45.0607 0988  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
14:48:45.0609 0988  lltdio - ok
14:48:45.0651 0988  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
14:48:45.0657 0988  lltdsvc - ok
14:48:45.0687 0988  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
14:48:45.0689 0988  lmhosts - ok
14:48:45.0795 0988  [ 7485FBCEF9136F530953575E2977859D ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
14:48:45.0800 0988  LMS - ok
14:48:45.0867 0988  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
14:48:45.0869 0988  LSI_FC - ok
14:48:45.0890 0988  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
14:48:45.0892 0988  LSI_SAS - ok
14:48:45.0907 0988  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
14:48:45.0909 0988  LSI_SAS2 - ok
14:48:45.0925 0988  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
14:48:45.0927 0988  LSI_SCSI - ok
14:48:46.0002 0988  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
14:48:46.0004 0988  luafv - ok
14:48:46.0069 0988  [ 0BB97D43299910CBFBA59C461B99B910 ] MBAMProtector   C:\Windows\system32\drivers\mbam.sys
14:48:46.0071 0988  MBAMProtector - ok
14:48:46.0183 0988  [ 65085456FD9A74D7F1A999520C299ECB ] MBAMScheduler   C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
14:48:46.0189 0988  MBAMScheduler - ok
14:48:46.0277 0988  [ E0D7732F2D2E24B2DB3F67B6750295B8 ] MBAMService     C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
14:48:46.0287 0988  MBAMService - ok
14:48:46.0320 0988  [ F84C8F1000BC11E3B7B23CBD3BAFF111 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
14:48:46.0324 0988  Mcx2Svc - ok
14:48:46.0341 0988  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
14:48:46.0342 0988  megasas - ok
14:48:46.0390 0988  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
14:48:46.0394 0988  MegaSR - ok
14:48:46.0534 0988  Microsoft SharePoint Workspace Audit Service - ok
14:48:46.0581 0988  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
14:48:46.0583 0988  MMCSS - ok
14:48:46.0606 0988  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
14:48:46.0607 0988  Modem - ok
14:48:46.0648 0988  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
14:48:46.0649 0988  monitor - ok
14:48:46.0699 0988  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
14:48:46.0700 0988  mouclass - ok
14:48:46.0756 0988  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
14:48:46.0757 0988  mouhid - ok
14:48:46.0778 0988  [ 791AF66C4D0E7C90A3646066386FB571 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
14:48:46.0780 0988  mountmgr - ok
14:48:46.0868 0988  [ F8A10560B35C66F9DE212F03DAD5BFA7 ] MpFilter        C:\Windows\system32\DRIVERS\MpFilter.sys
14:48:46.0871 0988  MpFilter - ok
14:48:46.0932 0988  [ 609D1D87649ECC19796F4D76D4C15CEA ] mpio            C:\Windows\system32\DRIVERS\mpio.sys
14:48:46.0935 0988  mpio - ok
14:48:46.0948 0988  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
14:48:46.0949 0988  mpsdrv - ok
14:48:47.0046 0988  [ AECAB449567D1846DAD63ECE49E893E3 ] MpsSvc          C:\Windows\system32\mpssvc.dll
14:48:47.0059 0988  MpsSvc - ok
14:48:47.0114 0988  [ 30524261BB51D96D6FCBAC20C810183C ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
14:48:47.0115 0988  MRxDAV - ok
14:48:47.0152 0988  [ 040D62A9D8AD28922632137ACDD984F2 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
14:48:47.0154 0988  mrxsmb - ok
14:48:47.0208 0988  [ F0067552F8F9B33D7C59403AB808A3CB ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
14:48:47.0213 0988  mrxsmb10 - ok
14:48:47.0234 0988  [ 3C142D31DE9F2F193218A53FE2632051 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
14:48:47.0236 0988  mrxsmb20 - ok
14:48:47.0269 0988  [ BCCF16D5FB1109162380E3E28DC9E4E5 ] msahci          C:\Windows\system32\DRIVERS\msahci.sys
14:48:47.0269 0988  msahci - ok
14:48:47.0290 0988  [ 8D27B597229AED79430FB9DB3BCBFBD0 ] msdsm           C:\Windows\system32\DRIVERS\msdsm.sys
14:48:47.0293 0988  msdsm - ok
14:48:47.0327 0988  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
14:48:47.0331 0988  MSDTC - ok
14:48:47.0407 0988  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
14:48:47.0408 0988  Msfs - ok
14:48:47.0437 0988  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
14:48:47.0438 0988  mshidkmdf - ok
14:48:47.0459 0988  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\DRIVERS\msisadrv.sys
14:48:47.0461 0988  msisadrv - ok
14:48:47.0568 0988  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
14:48:47.0572 0988  MSiSCSI - ok
14:48:47.0577 0988  msiserver - ok
14:48:47.0673 0988  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
14:48:47.0674 0988  MSKSSRV - ok
14:48:47.0767 0988  [ E07DEC52FF801841BA9B6878A60304FB ] MsMpSvc         c:\Program Files\Microsoft Security Client\MsMpEng.exe
14:48:47.0768 0988  MsMpSvc - ok
14:48:47.0777 0988  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
14:48:47.0777 0988  MSPCLOCK - ok
14:48:47.0804 0988  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
14:48:47.0805 0988  MSPQM - ok
14:48:47.0833 0988  [ 89CB141AA8616D8C6A4610FA26C60964 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
14:48:47.0839 0988  MsRPC - ok
14:48:47.0863 0988  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
14:48:47.0864 0988  mssmbios - ok
14:48:47.0940 0988  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
14:48:47.0941 0988  MSTEE - ok
14:48:47.0946 0988  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
14:48:47.0947 0988  MTConfig - ok
14:48:47.0996 0988  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
14:48:47.0997 0988  Mup - ok
14:48:49.0310 0988  [ 95A15B17FC39C72C92654056240EF1A2 ] NACAgentService C:\Program Files (x86)\Enterasys Networks\NAC Agent\NacAgtSv.exe
14:48:49.0669 0988  NACAgentService - ok
14:48:49.0794 0988  [ 4987E079A4530FA737A128BE54B63B12 ] napagent        C:\Windows\system32\qagentRT.dll
14:48:49.0802 0988  napagent - ok
14:48:49.0894 0988  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
14:48:49.0899 0988  NativeWifiP - ok
14:48:49.0978 0988  [ CAD515DBD07D082BB317D9928CE8962C ] NDIS            C:\Windows\system32\drivers\ndis.sys
14:48:49.0987 0988  NDIS - ok
14:48:50.0019 0988  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
14:48:50.0020 0988  NdisCap - ok
14:48:50.0039 0988  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
14:48:50.0040 0988  NdisTapi - ok
14:48:50.0086 0988  [ F105BA1E22BF1F2EE8F005D4305E4BEC ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
14:48:50.0087 0988  Ndisuio - ok
14:48:50.0131 0988  [ 557DFAB9CA1FCB036AC77564C010DAD3 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
14:48:50.0133 0988  NdisWan - ok
14:48:50.0156 0988  [ 659B74FB74B86228D6338D643CD3E3CF ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
14:48:50.0157 0988  NDProxy - ok
14:48:50.0231 0988  [ DC6530A291D4BDF6DF399F1F128E7F8F ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
14:48:50.0235 0988  Net Driver HPZ12 - ok
14:48:50.0248 0988  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
14:48:50.0249 0988  NetBIOS - ok
14:48:50.0287 0988  [ 9162B273A44AB9DCE5B44362731D062A ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
14:48:50.0290 0988  NetBT - ok
14:48:50.0325 0988  [ 156F6159457D0AA7E59B62681B56EB90 ] Netlogon        C:\Windows\system32\lsass.exe
14:48:50.0327 0988  Netlogon - ok
14:48:50.0417 0988  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
14:48:50.0422 0988  Netman - ok
14:48:50.0501 0988  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:48:50.0568 0988  NetMsmqActivator - ok
14:48:50.0573 0988  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:48:50.0575 0988  NetPipeActivator - ok
14:48:50.0594 0988  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
14:48:50.0602 0988  netprofm - ok
14:48:50.0608 0988  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:48:50.0610 0988  NetTcpActivator - ok
14:48:50.0616 0988  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:48:50.0618 0988  NetTcpPortSharing - ok
14:48:50.0656 0988  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
14:48:50.0658 0988  nfrd960 - ok
14:48:50.0743 0988  [ 162100E0BC8377710F9D170631921C03 ] NisDrv          C:\Windows\system32\DRIVERS\NisDrvWFP.sys
14:48:50.0745 0988  NisDrv - ok
14:48:50.0853 0988  [ C6E15F2F95F9C0A6098D43510B604E52 ] NisSrv          c:\Program Files\Microsoft Security Client\NisSrv.exe
14:48:50.0859 0988  NisSrv - ok
14:48:50.0906 0988  [ D9A0CE66046D6EFA0C61BAA885CBA0A8 ] NlaSvc          C:\Windows\System32\nlasvc.dll
14:48:50.0911 0988  NlaSvc - ok
14:48:50.0947 0988  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
14:48:50.0948 0988  Npfs - ok
14:48:50.0978 0988  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
14:48:50.0980 0988  nsi - ok
14:48:50.0998 0988  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
14:48:51.0000 0988  nsiproxy - ok
14:48:51.0112 0988  [ A7368ED1B924FA49283F1A83776F8A02 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
14:48:51.0127 0988  Ntfs - ok
14:48:51.0150 0988  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
14:48:51.0150 0988  Null - ok
14:48:51.0237 0988  [ A4D9C9A608A97F59307C2F2600EDC6A4 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
14:48:51.0240 0988  nvraid - ok
14:48:51.0262 0988  [ 6C1D5F70E7A6A3FD1C90D840EDC048B9 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
14:48:51.0266 0988  nvstor - ok
14:48:51.0284 0988  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\DRIVERS\nv_agp.sys
14:48:51.0287 0988  nv_agp - ok
14:48:51.0358 0988  [ D955D5DE998DB2476BF0892BE3A96C26 ] O2FLASH         C:\Windows\system32\DRIVERS\o2flash.exe
14:48:51.0360 0988  O2FLASH - ok
14:48:51.0383 0988  [ 8C2953537CA19DFAA67D612407E0F33E ] O2MDGRDR        C:\Windows\system32\DRIVERS\o2mdgx64.sys
14:48:51.0384 0988  O2MDGRDR - ok
14:48:51.0457 0988  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\DRIVERS\ohci1394.sys
14:48:51.0460 0988  ohci1394 - ok
14:48:51.0552 0988  [ 4965B005492CBA7719E82B71E3245495 ] ose64           C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
14:48:51.0555 0988  ose64 - ok
14:48:51.0877 0988  [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
14:48:51.0961 0988  osppsvc - ok
14:48:51.0996 0988  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
14:48:52.0002 0988  p2pimsvc - ok
14:48:52.0034 0988  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
14:48:52.0042 0988  p2psvc - ok
14:48:52.0077 0988  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
14:48:52.0079 0988  Parport - ok
14:48:52.0152 0988  [ 90061B1ACFE8CCAA5345750FFE08D8B8 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
14:48:52.0153 0988  partmgr - ok
14:48:52.0178 0988  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
14:48:52.0183 0988  PcaSvc - ok
14:48:52.0223 0988  [ F36F6504009F2FB0DFD1B17A116AD74B ] pci             C:\Windows\system32\DRIVERS\pci.sys
14:48:52.0225 0988  pci - ok
14:48:52.0249 0988  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\DRIVERS\pciide.sys
14:48:52.0250 0988  pciide - ok
14:48:52.0289 0988  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
14:48:52.0292 0988  pcmcia - ok
14:48:52.0321 0988  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
14:48:52.0323 0988  pcw - ok
14:48:52.0386 0988  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
14:48:52.0395 0988  PEAUTH - ok
14:48:52.0519 0988  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
14:48:52.0677 0988  PerfHost - ok
14:48:52.0809 0988  [ 557E9A86F65F0DE18C9B6751DFE9D3F1 ] pla             C:\Windows\system32\pla.dll
14:48:52.0830 0988  pla - ok
14:48:52.0893 0988  [ 98B1721B8718164293B9701B98C52D77 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
14:48:52.0901 0988  PlugPlay - ok
14:48:52.0960 0988  [ 71F62C51DFDFBC04C83C5C64B2B8058E ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
14:48:52.0964 0988  Pml Driver HPZ12 - ok
14:48:53.0037 0988  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
14:48:53.0040 0988  PNRPAutoReg - ok
14:48:53.0071 0988  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
14:48:53.0077 0988  PNRPsvc - ok
14:48:53.0119 0988  [ 166EB40D1F5B47E615DE3D0FFFE5F243 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
14:48:53.0125 0988  PolicyAgent - ok
14:48:53.0178 0988  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
14:48:53.0182 0988  Power - ok
14:48:53.0218 0988  [ 27CC19E81BA5E3403C48302127BDA717 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
14:48:53.0220 0988  PptpMiniport - ok
14:48:53.0246 0988  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\DRIVERS\processr.sys
14:48:53.0248 0988  Processor - ok
14:48:53.0321 0988  [ 97293447431311C06703368AD0F6C4BE ] ProfSvc         C:\Windows\system32\profsvc.dll
14:48:53.0326 0988  ProfSvc - ok
14:48:53.0343 0988  [ 156F6159457D0AA7E59B62681B56EB90 ] ProtectedStorage C:\Windows\system32\lsass.exe
14:48:53.0345 0988  ProtectedStorage - ok
14:48:53.0393 0988  [ EE992183BD8EAEFD9973F352E587A299 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
14:48:53.0396 0988  Psched - ok
14:48:53.0443 0988  [ 87B04878A6D59D6C79251DC960C674C1 ] PxHlpa64        C:\Windows\system32\Drivers\PxHlpa64.sys
14:48:53.0445 0988  PxHlpa64 - ok
14:48:53.0573 0988  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
14:48:53.0595 0988  ql2300 - ok
14:48:53.0622 0988  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
14:48:53.0624 0988  ql40xx - ok
14:48:53.0670 0988  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
14:48:53.0719 0988  QWAVE - ok
14:48:53.0742 0988  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
14:48:53.0744 0988  QWAVEdrv - ok
14:48:53.0847 0988  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
14:48:53.0847 0988  RasAcd - ok
14:48:53.0904 0988  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
14:48:53.0905 0988  RasAgileVpn - ok
14:48:53.0939 0988  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
14:48:53.0943 0988  RasAuto - ok
14:48:53.0962 0988  [ 87A6E852A22991580D6D39ADC4790463 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
14:48:53.0964 0988  Rasl2tp - ok
14:48:54.0024 0988  [ 47394ED3D16D053F5906EFE5AB51CC83 ] RasMan          C:\Windows\System32\rasmans.dll
14:48:54.0031 0988  RasMan - ok
14:48:54.0054 0988  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
14:48:54.0055 0988  RasPppoe - ok
14:48:54.0105 0988  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
14:48:54.0107 0988  RasSstp - ok
14:48:54.0135 0988  [ 3BAC8142102C15D59A87757C1D41DCE5 ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
14:48:54.0138 0988  rdbss - ok
14:48:54.0167 0988  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
14:48:54.0169 0988  rdpbus - ok
14:48:54.0200 0988  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
14:48:54.0200 0988  RDPCDD - ok
14:48:54.0237 0988  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
14:48:54.0238 0988  RDPENCDD - ok
14:48:54.0274 0988  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
14:48:54.0276 0988  RDPREFMP - ok
14:48:54.0303 0988  [ 447DE7E3DEA39D422C1504F245B668B1 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
14:48:54.0306 0988  RDPWD - ok
14:48:54.0360 0988  [ 634B9A2181D98F15941236886164EC8B ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
14:48:54.0364 0988  rdyboost - ok
14:48:54.0409 0988  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
14:48:54.0412 0988  RemoteAccess - ok
14:48:54.0432 0988  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
14:48:54.0436 0988  RemoteRegistry - ok
14:48:54.0505 0988  [ 7B04C9843921AB1F695FB395422C5360 ] RimUsb          C:\Windows\system32\Drivers\RimUsb_AMD64.sys
14:48:54.0507 0988  RimUsb - ok
14:48:54.0555 0988  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
14:48:54.0558 0988  RpcEptMapper - ok
14:48:54.0597 0988  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
14:48:54.0599 0988  RpcLocator - ok
14:48:54.0673 0988  [ 7266972E86890E2B30C0C322E906B027 ] RpcSs           C:\Windows\system32\rpcss.dll
14:48:54.0679 0988  RpcSs - ok
14:48:54.0712 0988  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
14:48:54.0714 0988  rspndr - ok
14:48:54.0824 0988  [ 3B01789EE4EAEE97F5EB46B711387D5E ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
14:48:54.0829 0988  RTL8167 - ok
14:48:54.0860 0988  [ 156F6159457D0AA7E59B62681B56EB90 ] SamSs           C:\Windows\system32\lsass.exe
14:48:54.0862 0988  SamSs - ok
14:48:54.0895 0988  [ E3BBB89983DAF5622C1D50CF49F28227 ] sbp2port        C:\Windows\system32\DRIVERS\sbp2port.sys
14:48:54.0897 0988  sbp2port - ok
14:48:54.0922 0988  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
14:48:54.0927 0988  SCardSvr - ok
14:48:54.0970 0988  [ C94DA20C7E3BA1DCA269BC8460D98387 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
14:48:54.0971 0988  scfilter - ok
14:48:55.0050 0988  [ 624D0F5FF99428BB90A5B8A4123E918E ] Schedule        C:\Windows\system32\schedsvc.dll
14:48:55.0061 0988  Schedule - ok
14:48:55.0094 0988  [ 312E2F82AF11E79906898AC3E3D58A1F ] SCPolicySvc     C:\Windows\System32\certprop.dll
14:48:55.0096 0988  SCPolicySvc - ok
14:48:55.0151 0988  [ 84E00908975FAF79E91282ED8FB88C2F ] sdbus           C:\Windows\system32\DRIVERS\sdbus.sys
14:48:55.0153 0988  sdbus - ok
14:48:55.0176 0988  [ 765A27C3279CE11D14CB9E4F5869FCA5 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
14:48:55.0182 0988  SDRSVC - ok
14:48:55.0248 0988  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
14:48:55.0250 0988  secdrv - ok
14:48:55.0272 0988  [ 463B386EBC70F98DA5DFF85F7E654346 ] seclogon        C:\Windows\system32\seclogon.dll
14:48:55.0276 0988  seclogon - ok
14:48:55.0295 0988  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\system32\sens.dll
14:48:55.0298 0988  SENS - ok
14:48:55.0371 0988  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
14:48:55.0375 0988  SensrSvc - ok
14:48:55.0391 0988  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
14:48:55.0391 0988  Serenum - ok
14:48:55.0415 0988  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\DRIVERS\serial.sys
14:48:55.0416 0988  Serial - ok
14:48:55.0429 0988  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
14:48:55.0431 0988  sermouse - ok
14:48:55.0492 0988  [ C3BC61CE47FF6F4E88AB8A3B429A36AF ] SessionEnv      C:\Windows\system32\sessenv.dll
14:48:55.0495 0988  SessionEnv - ok
14:48:55.0524 0988  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\DRIVERS\sffdisk.sys
14:48:55.0525 0988  sffdisk - ok
14:48:55.0552 0988  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\DRIVERS\sffp_mmc.sys
14:48:55.0553 0988  sffp_mmc - ok
14:48:55.0613 0988  [ 178298F767FE638C9FEDCBDEF58BB5E4 ] sffp_sd         C:\Windows\system32\DRIVERS\sffp_sd.sys
14:48:55.0614 0988  sffp_sd - ok
14:48:55.0628 0988  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
14:48:55.0629 0988  sfloppy - ok
14:48:55.0790 0988  [ 74EC60E20516AAA573BE74F31175270F ] SftService      C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
14:48:55.0814 0988  SftService - ok
14:48:55.0875 0988  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll
14:48:55.0881 0988  SharedAccess - ok
14:48:55.0943 0988  [ 0298AC45D0EFFFB2DB4BAA7DD186E7BF ] ShellHWDetection C:\Windows\System32\shsvcs.dll
14:48:55.0948 0988  ShellHWDetection - ok
14:48:56.0011 0988  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
14:48:56.0013 0988  SiSRaid2 - ok
14:48:56.0038 0988  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
14:48:56.0040 0988  SiSRaid4 - ok
14:48:56.0139 0988  [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
14:48:56.0142 0988  SkypeUpdate - ok
14:48:56.0155 0988  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
14:48:56.0159 0988  Smb - ok
14:48:56.0210 0988  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
14:48:56.0214 0988  SNMPTRAP - ok
14:48:56.0241 0988  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
14:48:56.0242 0988  spldr - ok
14:48:56.0315 0988  [ 567977DC43CC13C4C35ED7084C0B84D5 ] Spooler         C:\Windows\System32\spoolsv.exe
14:48:56.0321 0988  Spooler - ok
14:48:56.0522 0988  [ 913D843498553A1BC8F8DBAD6358E49F ] sppsvc          C:\Windows\system32\sppsvc.exe
14:48:56.0572 0988  sppsvc - ok
14:48:56.0587 0988  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
14:48:56.0590 0988  sppuinotify - ok
14:48:56.0719 0988  [ D630B6F2E8379B6F10DC16E82A426552 ] sprtsvc_DellSupportCenter C:\Program Files (x86)\Dell Support Center\bin\sprtsvc.exe
14:48:56.0723 0988  sprtsvc_DellSupportCenter - ok
14:48:56.0824 0988  [ 602884696850C86434530790B110E8EB ] sptd            C:\Windows\system32\Drivers\sptd.sys
14:48:56.0836 0988  sptd - ok
14:48:56.0905 0988  [ 2408C0366D96BCDF63E8F1C78E4A29C5 ] srv             C:\Windows\system32\DRIVERS\srv.sys
14:48:56.0910 0988  srv - ok
14:48:56.0950 0988  [ 76548F7B818881B47D8D1AE1BE9C11F8 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
14:48:56.0956 0988  srv2 - ok
14:48:57.0010 0988  [ 0AF6E19D39C70844C5CAA8FB0183C36E ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
14:48:57.0015 0988  srvnet - ok
14:48:57.0064 0988  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
14:48:57.0067 0988  SSDPSRV - ok
14:48:57.0091 0988  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
14:48:57.0094 0988  SstpSvc - ok
14:48:57.0225 0988  [ DA7702025DFD169B909C4DA3126762CC ] STacSV          C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_0057cbec48a2d7cf\STacSV64.exe
14:48:57.0229 0988  STacSV - ok
14:48:57.0282 0988  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
14:48:57.0284 0988  stexstor - ok
14:48:57.0357 0988  [ CAF5A9708671B14B9670260735B22C4E ] STHDA           C:\Windows\system32\DRIVERS\stwrt64.sys
14:48:57.0365 0988  STHDA - ok
14:48:57.0407 0988  [ 52D0E33B681BD0F33FDC08812FEE4F7D ] stisvc          C:\Windows\System32\wiaservc.dll
14:48:57.0414 0988  stisvc - ok
14:48:57.0430 0988  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
14:48:57.0431 0988  swenum - ok
14:48:57.0476 0988  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
14:48:57.0486 0988  swprv - ok
14:48:57.0555 0988  [ 39D4B4343BA70E4B32C4531BD075B9F6 ] SynTP           C:\Windows\system32\DRIVERS\SynTP.sys
14:48:57.0559 0988  SynTP - ok
14:48:57.0669 0988  [ 3C1284516A62078FB68F768DE4F1A7BE ] SysMain         C:\Windows\system32\sysmain.dll
14:48:57.0696 0988  SysMain - ok
14:48:57.0725 0988  [ 238935C3CF2854886DC7CBB2A0E2CC66 ] TabletInputService C:\Windows\System32\TabSvc.dll
14:48:57.0729 0988  TabletInputService - ok
14:48:57.0798 0988  [ 884264AC597B690C5707C89723BB8E7B ] TapiSrv         C:\Windows\System32\tapisrv.dll
14:48:57.0803 0988  TapiSrv - ok
14:48:57.0825 0988  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
14:48:57.0828 0988  TBS - ok
14:48:58.0035 0988  [ 5CFB7AB8F9524D1A1E14369DE63B83CC ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
14:48:58.0052 0988  Tcpip - ok
14:48:58.0096 0988  [ 5CFB7AB8F9524D1A1E14369DE63B83CC ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
14:48:58.0113 0988  TCPIP6 - ok
14:48:58.0154 0988  [ 76D078AF6F587B162D50210F761EB9ED ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
14:48:58.0157 0988  tcpipreg - ok
14:48:58.0195 0988  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
14:48:58.0196 0988  TDPIPE - ok
14:48:58.0279 0988  [ 7518F7BCFD4B308ABC9192BACAF6C970 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
14:48:58.0280 0988  TDTCP - ok
14:48:58.0323 0988  [ 079125C4B17B01FCAEEBCE0BCB290C0F ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
14:48:58.0325 0988  tdx - ok
14:48:58.0347 0988  [ C448651339196C0E869A355171875522 ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
14:48:58.0348 0988  TermDD - ok
14:48:58.0458 0988  [ 0F05EC2887BFE197AD82A13287D2F404 ] TermService     C:\Windows\System32\termsrv.dll
14:48:58.0466 0988  TermService - ok
14:48:58.0502 0988  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
14:48:58.0505 0988  Themes - ok
14:48:58.0533 0988  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
14:48:58.0535 0988  THREADORDER - ok
14:48:58.0583 0988  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
14:48:58.0587 0988  TrkWks - ok
14:48:58.0650 0988  [ 840F7FB849F5887A49BA18C13B2DA920 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
14:48:58.0653 0988  TrustedInstaller - ok
14:48:58.0677 0988  [ 61B96C26131E37B24E93327A0BD1FB95 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
14:48:58.0678 0988  tssecsrv - ok
14:48:58.0754 0988  [ 3836171A2CDF3AF8EF10856DB9835A70 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
14:48:58.0756 0988  tunnel - ok
14:48:58.0799 0988  [ 825E7A1F48FB8BCFBA27C178AAB4E275 ] TurboB          C:\Windows\system32\DRIVERS\TurboB.sys
14:48:58.0800 0988  TurboB - ok
14:48:58.0901 0988  [ B206BE1174D5964D49A56BB6C4E0524A ] TurboBoost      C:\Program Files\Intel\TurboBoost\TurboBoost.exe
14:48:58.0904 0988  TurboBoost - ok
14:48:58.0919 0988  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
14:48:58.0921 0988  uagp35 - ok
14:48:58.0965 0988  [ 31BA4A33AFAB6A69EA092B18017F737F ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
14:48:58.0969 0988  udfs - ok
14:48:59.0020 0988  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
14:48:59.0023 0988  UI0Detect - ok
14:48:59.0085 0988  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\DRIVERS\uliagpkx.sys
14:48:59.0087 0988  uliagpkx - ok
14:48:59.0130 0988  [ EAB6C35E62B1B0DB0D1B48B671D3A117 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
14:48:59.0132 0988  umbus - ok
14:48:59.0157 0988  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
14:48:59.0159 0988  UmPass - ok
14:48:59.0367 0988  [ 765F2DD351BA064F657751D8D75E58C0 ] UNS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
14:48:59.0399 0988  UNS - ok
14:48:59.0427 0988  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
14:48:59.0432 0988  upnphost - ok
14:48:59.0489 0988  [ F724B03C3DFAACF08D17D38BF3333583 ] USBAAPL64       C:\Windows\system32\Drivers\usbaapl64.sys
14:48:59.0491 0988  USBAAPL64 - ok
14:48:59.0536 0988  [ 77B01BC848298223A95D4EC23E1785A1 ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
14:48:59.0539 0988  usbaudio - ok
14:48:59.0662 0988  [ 537A4E03D7103C12D42DFD8FFDB5BDC9 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
14:48:59.0663 0988  usbccgp - ok
14:48:59.0715 0988  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\DRIVERS\usbcir.sys
14:48:59.0718 0988  usbcir - ok
14:48:59.0785 0988  [ FBB21EBE49F6D560DB37AC25FBC68E66 ] usbehci         C:\Windows\system32\drivers\usbehci.sys
14:48:59.0786 0988  usbehci - ok
14:48:59.0947 0988  [ 6B7A8A99C4A459E73C286A6763EA24CC ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
14:48:59.0950 0988  usbhub - ok
14:49:00.0045 0988  [ 8C88AA7617B4CBC2E4BED61D26B33A27 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
14:49:00.0091 0988  usbohci - ok
14:49:00.0131 0988  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
14:49:00.0147 0988  usbprint - ok
14:49:00.0183 0988  [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
14:49:00.0185 0988  usbscan - ok
14:49:00.0252 0988  [ F39983647BC1F3E6100778DDFE9DCE29 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
14:49:00.0253 0988  USBSTOR - ok
14:49:00.0286 0988  [ 0B5B3B2DF3FD1709618ACFA50B8392B0 ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
14:49:00.0287 0988  usbuhci - ok
14:49:00.0338 0988  [ 7CB8C573C6E4A2714402CC0A36EAB4FE ] usbvideo        C:\Windows\system32\Drivers\usbvideo.sys
14:49:00.0342 0988  usbvideo - ok
14:49:00.0381 0988  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
14:49:00.0384 0988  UxSms - ok
14:49:00.0410 0988  [ 156F6159457D0AA7E59B62681B56EB90 ] VaultSvc        C:\Windows\system32\lsass.exe
14:49:00.0412 0988  VaultSvc - ok
14:49:00.0452 0988  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\DRIVERS\vdrvroot.sys
14:49:00.0454 0988  vdrvroot - ok
14:49:00.0544 0988  [ 44D73E0BBC1D3C8981304BA15135C2F2 ] vds             C:\Windows\System32\vds.exe
14:49:00.0553 0988  vds - ok
14:49:00.0574 0988  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
14:49:00.0576 0988  vga - ok
14:49:00.0601 0988  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
14:49:00.0602 0988  VgaSave - ok
14:49:00.0645 0988  [ C82E748660F62A242B2DFAC1442F22A4 ] vhdmp           C:\Windows\system32\DRIVERS\vhdmp.sys
14:49:00.0648 0988  vhdmp - ok
14:49:00.0683 0988  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\DRIVERS\viaide.sys
14:49:00.0685 0988  viaide - ok
14:49:00.0716 0988  [ 2B1A3DAE2B4E70DBBA822B7A03FBD4A3 ] volmgr          C:\Windows\system32\DRIVERS\volmgr.sys
14:49:00.0719 0988  volmgr - ok
14:49:00.0761 0988  [ 99B0CBB569CA79ACAED8C91461D765FB ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
14:49:00.0767 0988  volmgrx - ok
14:49:00.0797 0988  [ 9E425AC5C9A5A973273D169F43B4F5E1 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
14:49:00.0801 0988  volsnap - ok
14:49:00.0839 0988  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
14:49:00.0843 0988  vsmraid - ok
14:49:00.0997 0988  [ 787898BF9FB6D7BD87A36E2D95C899BA ] VSS             C:\Windows\system32\vssvc.exe
14:49:01.0022 0988  VSS - ok
14:49:01.0040 0988  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
14:49:01.0042 0988  vwifibus - ok
14:49:01.0184 0988  [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
14:49:01.0186 0988  vwififlt - ok
14:49:01.0274 0988  [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp         C:\Windows\system32\DRIVERS\vwifimp.sys
14:49:01.0275 0988  vwifimp - ok
14:49:01.0317 0988  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
14:49:01.0322 0988  W32Time - ok
14:49:01.0349 0988  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
14:49:01.0351 0988  WacomPen - ok
14:49:01.0416 0988  [ 47CA49400643EFFD3F1C9A27E1D69324 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
14:49:01.0417 0988  WANARP - ok
14:49:01.0430 0988  [ 47CA49400643EFFD3F1C9A27E1D69324 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
14:49:01.0431 0988  Wanarpv6 - ok
14:49:01.0592 0988  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
14:49:01.0609 0988  WatAdminSvc - ok
14:49:01.0753 0988  [ 5AB1BB85BD8B5089CC5D64200DEDAE68 ] wbengine        C:\Windows\system32\wbengine.exe
14:49:01.0776 0988  wbengine - ok
14:49:01.0804 0988  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
14:49:01.0810 0988  WbioSrvc - ok
14:49:01.0899 0988  [ DD1BAE8EBFC653824D29CCF8C9054D68 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
14:49:01.0907 0988  wcncsvc - ok
14:49:01.0960 0988  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
14:49:01.0963 0988  WcsPlugInService - ok
14:49:02.0001 0988  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\DRIVERS\wd.sys
14:49:02.0003 0988  Wd - ok
14:49:02.0079 0988  [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
14:49:02.0092 0988  Wdf01000 - ok
14:49:02.0109 0988  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
14:49:02.0112 0988  WdiServiceHost - ok
14:49:02.0117 0988  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
14:49:02.0120 0988  WdiSystemHost - ok
14:49:02.0159 0988  [ 733006127F235BE7C35354EBEE7B9A7B ] WebClient       C:\Windows\System32\webclnt.dll
14:49:02.0165 0988  WebClient - ok
14:49:02.0197 0988  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
14:49:02.0203 0988  Wecsvc - ok
14:49:02.0241 0988  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
14:49:02.0244 0988  wercplsupport - ok
14:49:02.0265 0988  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
14:49:02.0269 0988  WerSvc - ok
14:49:02.0322 0988  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
14:49:02.0323 0988  WfpLwf - ok
14:49:02.0387 0988  [ B14EF15BD757FA488F9C970EEE9C0D35 ] WimFltr         C:\Windows\system32\DRIVERS\wimfltr.sys
14:49:02.0390 0988  WimFltr - ok
14:49:02.0407 0988  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
14:49:02.0409 0988  WIMMount - ok
14:49:02.0445 0988  WinDefend - ok
14:49:02.0454 0988  WinHttpAutoProxySvc - ok
14:49:02.0551 0988  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
14:49:02.0555 0988  Winmgmt - ok
14:49:02.0671 0988  [ 41FBB751936B387F9179E7F03A74FE29 ] WinRM           C:\Windows\system32\WsmSvc.dll
14:49:02.0702 0988  WinRM - ok
14:49:02.0785 0988  [ 4D52C872018AF7E18D078978DCC3F6F2 ] WinUSB          C:\Windows\system32\DRIVERS\WinUSB.sys
14:49:02.0786 0988  WinUSB - ok
14:49:02.0882 0988  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
14:49:02.0896 0988  Wlansvc - ok
14:49:03.0131 0988  [ 98F138897EF4246381D197CB81846D62 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
14:49:03.0163 0988  wlidsvc - ok
14:49:03.0224 0988  [ A96D6C0613DCF84F2D07FAEB75663072 ] wltrysvc        C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE
14:49:03.0226 0988  wltrysvc - ok
14:49:03.0286 0988  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\DRIVERS\wmiacpi.sys
14:49:03.0287 0988  WmiAcpi - ok
14:49:03.0333 0988  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
14:49:03.0337 0988  wmiApSrv - ok
14:49:03.0360 0988  WMPNetworkSvc - ok
14:49:03.0406 0988  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
14:49:03.0409 0988  WPCSvc - ok
14:49:03.0441 0988  [ 2E57DDF2880A7E52E76F41C7E96D327B ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
14:49:03.0445 0988  WPDBusEnum - ok
14:49:03.0455 0988  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
14:49:03.0456 0988  ws2ifsl - ok
14:49:03.0534 0988  [ 8F9F3969933C02DA96EB0F84576DB43E ] wscsvc          C:\Windows\system32\wscsvc.dll
14:49:03.0539 0988  wscsvc - ok
14:49:03.0552 0988  WSearch - ok
14:49:03.0742 0988  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
14:49:03.0777 0988  wuauserv - ok
14:49:03.0828 0988  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
14:49:03.0830 0988  WudfPf - ok
14:49:03.0884 0988  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
14:49:03.0888 0988  WUDFRd - ok
14:49:03.0919 0988  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
14:49:03.0923 0988  wudfsvc - ok
14:49:03.0955 0988  [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc         C:\Windows\System32\wwansvc.dll
14:49:03.0987 0988  WwanSvc - ok
14:49:04.0035 0988  [ 2EE48CFCE7CA8E0DB4C44C7476C0943B ] xusb21          C:\Windows\system32\DRIVERS\xusb21.sys
14:49:04.0037 0988  xusb21 - ok
14:49:04.0146 0988  ================ Scan global ===============================
14:49:04.0205 0988  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
14:49:04.0263 0988  [ 3FB74FF230B5D240A57AE1C4A3D0459D ] C:\Windows\system32\winsrv.dll
14:49:04.0274 0988  [ 3FB74FF230B5D240A57AE1C4A3D0459D ] C:\Windows\system32\winsrv.dll
14:49:04.0311 0988  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
14:49:04.0380 0988  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
14:49:04.0385 0988  [Global] - ok
14:49:04.0385 0988  ================ Scan MBR ==================================
14:49:04.0410 0988  [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
14:49:05.0263 0988  \Device\Harddisk0\DR0 - ok
14:49:05.0263 0988  ================ Scan VBR ==================================
14:49:05.0293 0988  [ 9FC9A07FB708EA2BFBFE7C36E69D5A28 ] \Device\Harddisk0\DR0\Partition1
14:49:05.0296 0988  \Device\Harddisk0\DR0\Partition1 - ok
14:49:05.0322 0988  [ DDAE3AD7FF636E13CB7C26FA33CCE8BA ] \Device\Harddisk0\DR0\Partition2
14:49:05.0325 0988  \Device\Harddisk0\DR0\Partition2 - ok
14:49:05.0325 0988  ============================================================
14:49:05.0325 0988  Scan finished
14:49:05.0325 0988  ============================================================
14:49:05.0394 0288  Detected object count: 1
14:49:05.0394 0288  Actual detected object count: 1
14:49:49.0005 0288  DRIVER_B ( ForgedFile.Multi.Generic ) - skipped by user
14:49:49.0005 0288  DRIVER_B ( ForgedFile.Multi.Generic ) - User select action: Skip 
14:49:58.0271 0952  Deinitialize success
 
 
 
 
ADWCLEANER LOG
 
# AdwCleaner v2.200 - Logfile created 04/17/2013 at 14:53:10
# Updated 02/04/2013 by Xplode
# Operating system : Windows 7 Home Premium  (64 bits)
# User : Matt - MATT-PC
# Boot Mode : Safe mode with networking
# Running from : C:\Users\Matt\Downloads\AdwCleaner.exe
# Option [Delete]
 
 
***** [Services] *****
 
 
***** [Files / Folders] *****
 
File Deleted : C:\Program Files (x86)\Mozilla Firefox\.autoreg
File Deleted : C:\Users\Matt\AppData\Roaming\Mozilla\Firefox\Profiles\d1vyolop.default\searchplugins\daemon-search.xml
Folder Deleted : C:\Program Files (x86)\DAEMON Tools Toolbar
Folder Deleted : C:\ProgramData\APN
Folder Deleted : C:\ProgramData\InstallMate
Folder Deleted : C:\ProgramData\Premium
Folder Deleted : C:\Users\Matt\AppData\LocalLow\boost_interprocess
Folder Deleted : C:\Users\Matt\AppData\Roaming\Mozilla\Firefox\Profiles\d1vyolop.default\extensions\vshare@toolbar
Folder Deleted : C:\Users\Matt\AppData\Roaming\Mozilla\Firefox\Profiles\d1vyolop.default\FCTB
 
***** [Registry] *****
 
Key Deleted : HKCU\Software\AppDataLow\Software\bflixtoolbar
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{32099AAC-C132-4136-9E9A-4E364A424E17}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{32099AAC-C132-4136-9E9A-4E364A424E17}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AD22EBAF-0D18-4FC7-90CC-5EA0ABBE9EB8}
Key Deleted : HKLM\Software\bflixtoolbar
Key Deleted : HKLM\SOFTWARE\Classes\DTToolbar.ToolBandObj
Key Deleted : HKLM\SOFTWARE\Classes\DTToolbar.ToolBandObj.1
Key Deleted : HKLM\Software\Freeze.com
Key Deleted : HKLM\SOFTWARE\Wow6432Node\14919ea49a8f3b4aa3cf1058d9a64cec
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{32099AAC-C132-4136-9E9A-4E364A424E17}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{A6BF16AB-42A1-4BC5-965D-5E407E449AAA}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\jpnbdefcbnoefmmcpelplabbkfmfhlho
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{CD95D125-2992-4858-B3EF-5F6FB52FBAD6}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{32099AAC-C132-4136-9E9A-4E364A424E17}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{32099AAC-C132-4136-9E9A-4E364A424E17}]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{32099AAC-C132-4136-9E9A-4E364A424E17}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{32099AAC-C132-4136-9E9A-4E364A424E17}]
 
***** [Internet Browsers] *****
 
-\\ Internet Explorer v8.0.7600.17267
 
[OK] Registry is clean.
 
-\\ Mozilla Firefox v3.6.17 (en-US)
 
File : C:\Users\Matt\AppData\Roaming\Mozilla\Firefox\Profiles\d1vyolop.default\prefs.js
 
Deleted : user_pref("extensions.crossriderapp435.435.active", true);
Deleted : user_pref("extensions.crossriderapp435.435.affid", "0");
Deleted : user_pref("extensions.crossriderapp435.435.backgroundjs", "\n//------------------  PLUGIN resources_[...]
Deleted : user_pref("extensions.crossriderapp435.435.backgroundver", 8);
Deleted : user_pref("extensions.crossriderapp435.435.certdomaininstaller", "");
Deleted : user_pref("extensions.crossriderapp435.435.cookie._GPL_aoi.expiration", "Fri Feb 01 2030 00:00:00 GM[...]
Deleted : user_pref("extensions.crossriderapp435.435.cookie._GPL_aoi.value", "%221364868759%22");
Deleted : user_pref("extensions.crossriderapp435.435.cookie._GPL_parent_zoneid.expiration", "Fri Feb 01 2030 0[...]
Deleted : user_pref("extensions.crossriderapp435.435.cookie._GPL_parent_zoneid.value", "%2214974%22");
Deleted : user_pref("extensions.crossriderapp435.435.cookie._GPL_zoneid.expiration", "Fri Feb 01 2030 00:00:00[...]
Deleted : user_pref("extensions.crossriderapp435.435.cookie._GPL_zoneid.value", "%22166028%22");
Deleted : user_pref("extensions.crossriderapp435.435.cookie.previous_page.expiration", "Fri Feb 01 2030 00:00:[...]
Deleted : user_pref("extensions.crossriderapp435.435.cookie.previous_page.value", "%22hxxp%3A//www.carolinafar[...]
Deleted : user_pref("extensions.crossriderapp435.435.description", "Premiumplay Codec check");
Deleted : user_pref("extensions.crossriderapp435.435.domain", "");
Deleted : user_pref("extensions.crossriderapp435.435.emailsig", "");
Deleted : user_pref("extensions.crossriderapp435.435.exposesites", "");
Deleted : user_pref("extensions.crossriderapp435.435.fbremoteurl", "");
Deleted : user_pref("extensions.crossriderapp435.435.group", 0);
Deleted : user_pref("extensions.crossriderapp435.435.homepage", "");
Deleted : user_pref("extensions.crossriderapp435.435.iframe", false);
Deleted : user_pref("extensions.crossriderapp435.435.js", "\n//------------------  PLUGIN base_monetization ST[...]
Deleted : user_pref("extensions.crossriderapp435.435.name", "Codec-V");
Deleted : user_pref("extensions.crossriderapp435.435.premium", true);
Deleted : user_pref("extensions.crossriderapp435.435.publisher", "Premiumplay");
Deleted : user_pref("extensions.crossriderapp435.435.settingsurl", "");
Deleted : user_pref("extensions.crossriderapp435.435.thankyou", "");
Deleted : user_pref("extensions.crossriderapp435.435.ver", 72);
Deleted : user_pref("extensions.crossriderapp435.apps", "435");
Deleted : user_pref("extensions.crossriderapp435.bic", "13259377b9d3cdba60d6f81cd36b23e0");
Deleted : user_pref("extensions.crossriderapp435.cid", 435);
Deleted : user_pref("extensions.crossriderapp435.firstrun", false);
Deleted : user_pref("extensions.crossriderapp435.hadappinstalled", true);
Deleted : user_pref("extensions.crossriderapp435.installationdate", 1315756801);
Deleted : user_pref("extensions.crossriderapp435.jsver", 3);
Deleted : user_pref("extensions.crossriderapp435.lastcheck", 22769227);
Deleted : user_pref("extensions.crossriderapp435.lastcheckitem", 22769268);
Deleted : user_pref("extensions.crossriderapp435.misc.lastBgWorkerTimer", "1366155460616");
Deleted : user_pref("extensions.crossriderapp435.misc.lastDomWorkerTimer", "1366155460615");
Deleted : user_pref("freecause4ac80c6c0a1b4b3aad7e8a6d8f5e6928.DNSCatch", false);
Deleted : user_pref("freecause4ac80c6c0a1b4b3aad7e8a6d8f5e6928.FirstLaunchShown", true);
Deleted : user_pref("freecause4ac80c6c0a1b4b3aad7e8a6d8f5e6928.LastDate", 16);
Deleted : user_pref("freecause4ac80c6c0a1b4b3aad7e8a6d8f5e6928.customNewTab", false);
Deleted : user_pref("freecause4ac80c6c0a1b4b3aad7e8a6d8f5e6928.processAddrBar", false);
Deleted : user_pref("freecause4ac80c6c0a1b4b3aad7e8a6d8f5e6928.tb_lang", "en");
Deleted : user_pref("freecause4ac80c6c0a1b4b3aad7e8a6d8f5e6928.user_id", "46787415");
Deleted : user_pref("freecause4ac80c6c0a1b4b3aad7e8a6d8f5e6928.vars.disablecuidinject", "1");
Deleted : user_pref("freecause4ac80c6c0a1b4b3aad7e8a6d8f5e6928.vars.lastcheck", "Sat%20Apr%2021%202012%2021%3A[...]
Deleted : user_pref("freecause4ac80c6c0a1b4b3aad7e8a6d8f5e6928.yahooSearch", false);
Deleted : user_pref("vshare.install.date", "1286668800000");
Deleted : user_pref("vshare.install.finished", "1.0.0");
Deleted : user_pref("vshare.install.guid", "{5521953d-c53b-43ac-b764-25a8819670a2}");
Deleted : user_pref("vshare.install.isHidden", true);
Deleted : user_pref("vshare.install.laststatreq", "1366070400000");
Deleted : user_pref("vshare.install.newtab", false);
 
-\\ Google Chrome v26.0.1410.64
 
File : C:\Users\Matt\AppData\Local\Google\Chrome\User Data\Default\Preferences
 
[OK] File is clean.
 
*************************
 
AdwCleaner[S1].txt - [7603 octets] - [17/04/2013 14:53:10]
 
########## EOF - C:\AdwCleaner[S1].txt - [7663 octets] ##########


#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 69,803 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:07:51 PM

Posted 17 April 2013 - 07:34 PM

Hello, that was  a good clean.

If you have Hitman Pro installed , this is not a problem.

DRIVER_B ( ForgedFile.Multi.Generic ) - skipped by user

 

 

Now I'd like us to scan your machine with ESET OnlineScan

  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png  button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.

NOTE:Sometimes if ESET finds no infections it will not create a log.


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#5 pharming

pharming
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:07:51 PM

Posted 18 April 2013 - 09:56 PM

Here is what ESET found. MSE is still closing upon startup I'm afraid.

 

 

C:\Program Files (x86)\Dell DataSafe Local Backup\hstart.exe a variant of Win32/HiddenStart.A application cleaned by deleting - quarantined
C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\hstart.exe a variant of Win32/HiddenStart.A application cleaned by deleting - quarantined
C:\Program Files (x86)\Free Download Manager\Extras\setup.exe Win32/Toolbar.Zugo application cleaned by deleting - quarantined
C:\Users\Matt\Downloads\AstroburnLite170-0175.exe Win32/OpenCandy application cleaned by deleting - quarantined


#6 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 69,803 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:07:51 PM

Posted 19 April 2013 - 10:17 AM

Did you try un and re installing MSE yet?
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#7 pharming

pharming
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:07:51 PM

Posted 19 April 2013 - 11:21 AM

Just tried; no luck. Firefox is still redirecting searches as well. What do you think this is?



#8 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 69,803 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:07:51 PM

Posted 19 April 2013 - 11:44 AM

Must be protected or something. I think we should get a deeper look. Please follow this Preparation Guide and post in a new topic.

Let me know if all went well.


Include this link back to here...

http://www.bleepingcomputer.com/forums/t/491910/redirected-searches-mse-opens-then-closes-immediately/#entry3030087
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users