Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

I think I have a virus


  • Please log in to reply
24 replies to this topic

#1 purplepandas28

purplepandas28

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:11:43 AM

Posted 25 April 2013 - 05:21 PM

Ok so I was trying to watch a show online and they asked me to download the newest edition of Adobe and it didn't redirect me to the Adobe website. I know rookie mistake.  Now we are having internet problems like popups and false ads for antivirus. HELP!



BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,072 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:11:43 AM

Posted 25 April 2013 - 08:01 PM

Hello and welcome.

What Adobe app were you downloading?

 

Let's run these...

 

Please download MiniToolBox, save it to your desktop and run it.

Checkmark the following checkboxes:

  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.

Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.

Note: When using "Reset FF Proxy Settings" option Firefox should be closed.

 

 

>>>>

TDSS Alt
Please Download TDSSkiller
Launch it.
Click on change parameters-Select TDLFS file system
Click on "Scan".
Please post the LOG report(log file should be in your C drive)
 
Do not change the default options on scan results.

 

 

>>>>

 

Please download AdwCleaner by Xplode onto your desktop.
•Close all open programs and internet browsers.
•Double click on adwcleaner.exe to run the tool.
•Click on Delete.
•Confirm each time with Ok.
•You will be prompted to restart your computer. A text file will open after the restart.
•Please post the contents of that logfile with your next reply.
•You can find the logfile at C:\AdwCleaner[S1].txt as well.

 

>>>>

Now I'd like us to scan your machine with ESET OnlineScan

  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png  button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.

NOTE:Sometimes if ESET finds no infections it will not create a log.


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 purplepandas28

purplepandas28
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:11:43 AM

Posted 28 April 2013 - 05:15 PM

MiniToolBox by Farbar  Version:21-04-2013
Ran by maegan (administrator) on 28-04-2013 at 18:10:01
Running from "C:\Users\maegan\Downloads"
Windows 7 Home Premium  (X64)
Boot Mode: Normal
***************************************************************************
 
========================= Flush DNS: ===================================
 
Windows IP Configuration
 
Successfully flushed the DNS Resolver Cache.
 
========================= IE Proxy Settings: ============================== 
 
Proxy is not enabled.
No Proxy Server is set.
 
"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================
 
127.0.0.1 localhost
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
 
There are 15280 more lines starting with "127.0.0.1"
 
========================= IP Configuration: ================================
 
Dell Wireless 1397 WLAN Mini-Card = Wireless Network Connection (Connected)
Realtek PCIe FE Family Controller = Local Area Connection (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)
 
 
# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4
 
reset
set global icmpredirects=enabled
 
 
popd
# End of IPv4 configuration
 
 
 
Windows IP Configuration
 
   Host Name . . . . . . . . . . . . : maegan-PC
   Primary Dns Suffix  . . . . . . . : 
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
 
Wireless LAN adapter Wireless Network Connection 2:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
   Physical Address. . . . . . . . . : C4-17-FE-57-79-6D
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Wireless LAN adapter Wireless Network Connection:
 
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Dell Wireless 1397 WLAN Mini-Card
   Physical Address. . . . . . . . . : C4-17-FE-57-79-6D
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::98ba:88ff:21f8:8db9%12(Preferred) 
   IPv4 Address. . . . . . . . . . . : 192.168.1.170(Preferred) 
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Saturday, April 27, 2013 6:55:18 PM
   Lease Expires . . . . . . . . . . : Monday, April 29, 2013 5:38:36 PM
   Default Gateway . . . . . . . . . : 192.168.1.1
   DHCP Server . . . . . . . . . . . : 192.168.1.1
   DHCPv6 IAID . . . . . . . . . . . : 230955006
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-12-F0-CB-42-A4-BA-DB-A1-C1-57
   DNS Servers . . . . . . . . . . . : 192.168.1.1
   NetBIOS over Tcpip. . . . . . . . : Enabled
 
Ethernet adapter Local Area Connection:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Realtek PCIe FE Family Controller
   Physical Address. . . . . . . . . : A4-BA-DB-A1-C1-57
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter isatap.{E2D4732E-173A-4F7A-BCEA-0597B86425CD}:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter Local Area Connection* 11:
 
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:9d38:953c:2c57:b7c:3f57:fe55(Preferred) 
   Link-local IPv6 Address . . . . . : fe80::2c57:b7c:3f57:fe55%17(Preferred) 
   Default Gateway . . . . . . . . . : ::
   NetBIOS over Tcpip. . . . . . . . : Disabled
 
Tunnel adapter isatap.{D4FCD96D-39C9-4E43-9AF0-F263C1A1C6FD}:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter isatap.{683BAEC2-A145-47FD-ABBE-A369AA675988}:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #4
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
Server:  www.asusnetwork.net
Address:  192.168.1.1
 
Name:    google.com
Addresses:  2607:f8b0:4002:c04::8a
 74.125.137.102
 74.125.137.113
 74.125.137.138
 74.125.137.139
 74.125.137.100
 74.125.137.101
 
 
Pinging google.com [74.125.137.101] with 32 bytes of data:
Reply from 74.125.137.101: bytes=32 time=29ms TTL=48
Reply from 74.125.137.101: bytes=32 time=31ms TTL=48
 
Ping statistics for 74.125.137.101:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 29ms, Maximum = 31ms, Average = 30ms
Server:  www.asusnetwork.net
Address:  192.168.1.1
 
Name:    yahoo.com
Addresses:  206.190.36.45
 98.138.253.109
 98.139.183.24
 
 
Pinging yahoo.com [98.139.183.24] with 32 bytes of data:
Reply from 98.139.183.24: bytes=32 time=332ms TTL=49
Reply from 98.139.183.24: bytes=32 time=661ms TTL=49
 
Ping statistics for 98.139.183.24:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 332ms, Maximum = 661ms, Average = 496ms
 
Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
 
Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 14...c4 17 fe 57 79 6d ......Microsoft Virtual WiFi Miniport Adapter
 12...c4 17 fe 57 79 6d ......Dell Wireless 1397 WLAN Mini-Card
 11...a4 ba db a1 c1 57 ......Realtek PCIe FE Family Controller
  1...........................Software Loopback Interface 1
 19...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
 17...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
 20...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
 18...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #4
===========================================================================
 
IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.1.1    192.168.1.170     25
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.1.0    255.255.255.0         On-link     192.168.1.170    281
    192.168.1.170  255.255.255.255         On-link     192.168.1.170    281
    192.168.1.255  255.255.255.255         On-link     192.168.1.170    281
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link     192.168.1.170    281
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link     192.168.1.170    281
===========================================================================
Persistent Routes:
  None
 
IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
 17     58 ::/0                     On-link
  1    306 ::1/128                  On-link
 17     58 2001::/32                On-link
 17    306 2001:0:9d38:953c:2c57:b7c:3f57:fe55/128
                                    On-link
 12    281 fe80::/64                On-link
 17    306 fe80::/64                On-link
 17    306 fe80::2c57:b7c:3f57:fe55/128
                                    On-link
 12    281 fe80::98ba:88ff:21f8:8db9/128
                                    On-link
  1    306 ff00::/8                 On-link
 17    306 ff00::/8                 On-link
 12    281 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================
 
Catalog5 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"
 
Catalog5 04 C:\Windows\SysWOW64\nwprovau.dll [File Not found] ()
Catalog5 05 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 09 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 12 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 13 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 14 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 15 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 16 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 17 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 18 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 19 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 20 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 21 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 22 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 23 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 24 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 25 C:\Windows\SysWOW64\rsvpsp.dll [File not found] ()
Catalog9 26 C:\Windows\SysWOW64\rsvpsp.dll [File not found] ()
Catalog9 27 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 28 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 29 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"
 
x64-Catalog5 02 mswsock.dll [File Not found] ()
ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"
 
x64-Catalog5 03 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 09 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 04 mswsock.dll [File Not found] ()
x64-Catalog9 05 mswsock.dll [File Not found] ()
x64-Catalog9 06 mswsock.dll [File Not found] ()
x64-Catalog9 07 mswsock.dll [File Not found] ()
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (04/28/2013 05:39:14 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 81799389
 
Error: (04/28/2013 05:39:14 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 81799389
 
Error: (04/28/2013 05:39:14 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
 
Error: (04/28/2013 05:39:13 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 81798032
 
Error: (04/28/2013 05:39:13 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 81798032
 
Error: (04/28/2013 05:39:13 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
 
Error: (04/28/2013 05:39:12 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 81797018
 
Error: (04/28/2013 05:39:12 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 81797018
 
Error: (04/28/2013 05:39:12 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
 
Error: (04/28/2013 05:39:09 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 81794288
 
 
System errors:
=============
Error: (04/24/2013 04:44:22 AM) (Source: atapi) (User: )
Description: The driver detected a controller error on \Device\Ide\IdePort0.
 
Error: (04/24/2013 04:44:22 AM) (Source: atapi) (User: )
Description: The driver detected a controller error on \Device\Ide\IdePort0.
 
Error: (04/24/2013 04:39:17 AM) (Source: volsnap) (User: )
Description: The shadow copies of volume C: were aborted because of an IO failure on volume C:.
 
Error: (04/24/2013 04:38:55 AM) (Source: atapi) (User: )
Description: The driver detected a controller error on \Device\Ide\IdePort0.
 
Error: (04/18/2013 09:35:14 PM) (Source: atapi) (User: )
Description: The driver detected a controller error on \Device\Ide\IdePort0.
 
Error: (04/18/2013 09:35:14 PM) (Source: atapi) (User: )
Description: The driver detected a controller error on \Device\Ide\IdePort0.
 
Error: (04/18/2013 09:35:14 PM) (Source: atapi) (User: )
Description: The driver detected a controller error on \Device\Ide\IdePort0.
 
Error: (04/18/2013 09:35:14 PM) (Source: atapi) (User: )
Description: The driver detected a controller error on \Device\Ide\IdePort0.
 
Error: (04/14/2013 02:01:24 PM) (Source: WMPNetworkSvc) (User: )
Description: 0x80004004-1
 
Error: (04/11/2013 04:26:29 AM) (Source: atapi) (User: )
Description: The driver detected a controller error on \Device\Ide\IdePort0.
 
 
Microsoft Office Sessions:
=========================
 
CodeIntegrity Errors:
===================================
  Date: 2011-12-08 15:49:44.289
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2011-12-08 15:49:44.211
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2011-12-08 15:49:44.133
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2011-12-08 15:49:44.055
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2011-12-08 15:41:19.309
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2011-12-08 15:41:19.216
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2011-12-08 15:41:19.122
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2011-12-08 15:41:19.044
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2011-12-07 18:21:59.223
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2011-12-07 18:21:59.145
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
 
=========================== Installed Programs ============================
 
 Update for Microsoft Office 2007 (KB2508958)
Adobe AIR (Version: 2.0.2.12610)
Adobe Digital Editions
Adobe Flash Player 11 ActiveX (Version: 11.3.300.268)
Adobe Reader X (10.1.4) (Version: 10.1.4)
Advanced Audio FX Engine (Version: 1.12.05)
Age of Empires Online (Version: 1.0.0000.1)
Apple Application Support (Version: 2.3.3)
Apple Mobile Device Support (Version: 6.1.0.13)
Apple Software Update (Version: 2.1.3.127)
Ask Toolbar (Version: 1.15.15.0)
Ask Toolbar Updater (Version: 1.2.4.36191)
Bonjour (Version: 3.0.0.10)
Brand Thunder Theme Manager for Internet Explorer (Version: 0.9.38.0)
Cisco EAP-FAST Module (Version: 2.2.14)
Cisco LEAP Module (Version: 1.0.19)
Cisco PEAP Module (Version: 1.1.6)
Compatibility Pack for the 2007 Office system (Version: 12.0.6612.1000)
D3DX10 (Version: 15.4.2368.0902)
Dell DataSafe Local Backup - Support Software (Version: 2.31)
Dell DataSafe Local Backup (Version: 9.4.51)
Dell DataSafe Online (Version: 1.2.0011)
Dell Dock (Version: 2.0.0)
Dell Edoc Viewer (Version: 1.0.0)
Dell Getting Started Guide (Version: 1.00.0000)
Dell Support Center (Version: 3.2.6032.125)
Dell Touchpad (Version: 7.102.101.221)
Dell Webcam Central (Version: 1.40.05)
Dell Wireless WLAN Card Utility (Version: 5.30.21.0)
Flash Player Pro V5.4
GameXN GO
Google Chrome (Version: 26.0.1410.64)
Google Earth (Version: 7.0.3.8542)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.4.3607.2246)
Google Update Helper (Version: 1.3.21.135)
GoToAssist 8.0.0.514
iCloud (Version: 2.1.1.3)
IDT Audio (Version: 1.0.6217.0)
Intel® Graphics Media Accelerator Driver
Internet TV for Windows Media Center (Version: 4.2.2.0)
InternetHelper3 Chrome Toolbar (Version: 1.0.0.0)
iTunes (Version: 11.0.2.26)
Java 7 Update 17 (Version: 7.0.170)
Java Auto Updater (Version: 2.1.9.0)
Java™ 6 Update 14 (64-bit) (Version: 6.0.140)
Java™ 6 Update 29 (Version: 6.0.290)
Junk Mail filter update (Version: 15.4.3502.0922)
Live! Cam Avatar Creator (Version: 4.6.3009.1)
Malwarebytes Anti-Malware version 1.75.0.1300 (Version: 1.75.0.1300)
McAfee Security Scan Plus (Version: 2.1.121.2)
Mesh Runtime (Version: 15.4.5722.2)
Messenger Companion (Version: 15.4.3502.0922)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Games for Windows - LIVE Redistributable (Version: 3.5.88.0)
Microsoft Games for Windows Marketplace (Version: 3.5.50.0)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Home and Student 2007 (Version: 12.0.6612.1000)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint Viewer 2007 (English) (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Suite Activation Assistant (Version: 1.2.1)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Search Enhancement Pack (Version: 3.0.133.0)
Microsoft Security Client (Version: 4.2.0223.1)
Microsoft Security Essentials (Version: 4.2.223.1)
Microsoft Silverlight (Version: 5.1.20125.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable - KB2467175 (Version: 8.0.51011)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.58299)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (Version: 8.0.51011)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft Works (Version: 9.7.0621)
MobileMe Control Panel (Version: 3.1.8.0)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
NOOK for PC (Version: 2.5.2.458)
OverDrive Media Console (Version: 3.2.5)
Philadelphia Flyers Browser Theme (Version: 0.9.4.2)
PowerDVD DX (Version: 8.3.5424)
Quickset64 (Version: 9.6.6)
QuickTime (Version: 7.73.80.64)
Roxio Burn (Version: 1.01)
Safari (Version: 5.34.51.22)
Search Protect by conduit (Version: 1.4.1.12)
SelectionLinks (Version: 1.0)
Skype Toolbars (Version: 1.0.4051)
Skype™ 5.10 (Version: 5.10.116)
Spotify (Version: master-0.1.0.26.g765bd1e0)
Spybot - Search & Destroy (Version: 2.0.12)
SwiftKit
Times Reader (Version: 2.054)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596660) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596848) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
Veetle TV 0.9.18 (Version: 0.9.18)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Family Safety (Version: 15.4.3502.0922)
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3502.0922)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3502.0922)
Windows Live Messenger Companion Core (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3502.0922)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live Sync (Version: 14.0.8089.726)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3502.0922)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
World of Warcraft (Version: 4.3.0.15050)
Yahoo! Install Manager
Yahoo! Internet Mail
Yahoo! Mail Advisor
Yahoo! Software Update
Yahoo! Toolbar
 
========================= Memory info: ===================================
 
Percentage of memory in use: 56%
Total physical RAM: 4058.36 MB
Available physical RAM: 1781.86 MB
Total Pagefile: 8114.86 MB
Available Pagefile: 5310.16 MB
Total Virtual: 4095.88 MB
Available Virtual: 3978.54 MB
 
========================= Partitions: =====================================
 
1 Drive c: (OS) (Fixed) (Total:283.4 GB) (Free:102.26 GB) NTFS
2 Drive d: (Valentine's '13) (CDROM) (Total:0.7 GB) (Free:0 GB) UDF
 
========================= Users: ========================================
 
User accounts for \\MAEGAN-PC
 
Administrator            Guest                    Kelsey                   
maegan                   
 
 
**** End of log ****


#4 purplepandas28

purplepandas28
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:11:43 AM

Posted 28 April 2013 - 05:20 PM

18:16:05.0690 2480  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
18:16:07.0198 2480  ============================================================
18:16:07.0198 2480  Current date / time: 2013/04/28 18:16:07.0198
18:16:07.0198 2480  SystemInfo:
18:16:07.0198 2480  
18:16:07.0199 2480  OS Version: 6.1.7600 ServicePack: 0.0
18:16:07.0199 2480  Product type: Workstation
18:16:07.0199 2480  ComputerName: MAEGAN-PC
18:16:07.0199 2480  UserName: maegan
18:16:07.0199 2480  Windows directory: C:\Windows
18:16:07.0199 2480  System windows directory: C:\Windows
18:16:07.0199 2480  Running under WOW64
18:16:07.0199 2480  Processor architecture: Intel x64
18:16:07.0199 2480  Number of processors: 2
18:16:07.0199 2480  Page size: 0x1000
18:16:07.0199 2480  Boot type: Normal boot
18:16:07.0199 2480  ============================================================
18:16:09.0251 2480  Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:16:09.0266 2480  ============================================================
18:16:09.0266 2480  \Device\Harddisk0\DR0:
18:16:09.0267 2480  MBR partitions:
18:16:09.0267 2480  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x14000, BlocksNum 0x1D4C000
18:16:09.0267 2480  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1D60000, BlocksNum 0x236CE2B0
18:16:09.0267 2480  ============================================================
18:16:09.0289 2480  C: <-> \Device\Harddisk0\DR0\Partition2
18:16:09.0290 2480  ============================================================
18:16:09.0290 2480  Initialize success
18:16:09.0290 2480  ============================================================
18:16:18.0653 4040  ============================================================
18:16:18.0654 4040  Scan started
18:16:18.0654 4040  Mode: Manual; 
18:16:18.0654 4040  ============================================================
18:16:20.0307 4040  ================ Scan system memory ========================
18:16:20.0307 4040  System memory - ok
18:16:20.0308 4040  ================ Scan services =============================
18:16:20.0646 4040  [ 1B00662092F9F9568B995902F0CC40D5 ] 1394ohci        C:\Windows\system32\DRIVERS\1394ohci.sys
18:16:20.0651 4040  1394ohci - ok
18:16:20.0693 4040  [ 6F11E88748CDEFD2F76AA215F97DDFE5 ] ACPI            C:\Windows\system32\DRIVERS\ACPI.sys
18:16:20.0701 4040  ACPI - ok
18:16:20.0724 4040  [ 63B05A0420CE4BF0E4AF6DCC7CADA254 ] AcpiPmi         C:\Windows\system32\DRIVERS\acpipmi.sys
18:16:20.0726 4040  AcpiPmi - ok
18:16:20.0854 4040  [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
18:16:20.0859 4040  AdobeARMservice - ok
18:16:20.0927 4040  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
18:16:20.0937 4040  adp94xx - ok
18:16:20.0996 4040  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
18:16:21.0003 4040  adpahci - ok
18:16:21.0058 4040  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
18:16:21.0062 4040  adpu320 - ok
18:16:21.0097 4040  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
18:16:21.0099 4040  AeLookupSvc - ok
18:16:21.0248 4040  [ A6FB9DB8F1A86861D955FD6975977AE0 ] AESTFilters     C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_afc3018f8cfedd20\AESTSr64.exe
18:16:21.0250 4040  AESTFilters - ok
18:16:21.0346 4040  [ DB9D6C6B2CD95A9CA414D045B627422E ] AFD             C:\Windows\system32\drivers\afd.sys
18:16:21.0380 4040  AFD - ok
18:16:21.0450 4040  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\DRIVERS\agp440.sys
18:16:21.0454 4040  agp440 - ok
18:16:21.0530 4040  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
18:16:21.0532 4040  ALG - ok
18:16:21.0558 4040  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\DRIVERS\aliide.sys
18:16:21.0559 4040  aliide - ok
18:16:21.0580 4040  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\DRIVERS\amdide.sys
18:16:21.0581 4040  amdide - ok
18:16:21.0614 4040  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
18:16:21.0616 4040  AmdK8 - ok
18:16:21.0641 4040  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
18:16:21.0644 4040  AmdPPM - ok
18:16:21.0714 4040  [ EC7EBAB00A4D8448BAB68D1E49B4BEB9 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
18:16:21.0717 4040  amdsata - ok
18:16:21.0762 4040  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
18:16:21.0766 4040  amdsbs - ok
18:16:21.0783 4040  [ DB27766102C7BF7E95140A2AA81D042E ] amdxata         C:\Windows\system32\drivers\amdxata.sys
18:16:21.0785 4040  amdxata - ok
18:16:21.0832 4040  [ 3CC4531F11648A6081A7BA3AA4924D04 ] ApfiltrService  C:\Windows\system32\DRIVERS\Apfiltr.sys
18:16:21.0836 4040  ApfiltrService - ok
18:16:21.0868 4040  [ 42FD751B27FA0E9C69BB39F39E409594 ] AppID           C:\Windows\system32\drivers\appid.sys
18:16:21.0870 4040  AppID - ok
18:16:21.0903 4040  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
18:16:21.0907 4040  AppIDSvc - ok
18:16:21.0949 4040  [ D065BE66822847B7F127D1F90158376E ] Appinfo         C:\Windows\System32\appinfo.dll
18:16:21.0951 4040  Appinfo - ok
18:16:22.0063 4040  [ 4FE5C6D40664AE07BE5105874357D2ED ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
18:16:22.0071 4040  Apple Mobile Device - ok
18:16:22.0149 4040  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\DRIVERS\arc.sys
18:16:22.0151 4040  arc - ok
18:16:22.0224 4040  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
18:16:22.0227 4040  arcsas - ok
18:16:22.0269 4040  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
18:16:22.0271 4040  AsyncMac - ok
18:16:22.0296 4040  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\DRIVERS\atapi.sys
18:16:22.0297 4040  atapi - ok
18:16:22.0402 4040  [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
18:16:22.0424 4040  AudioEndpointBuilder - ok
18:16:22.0502 4040  [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioSrv        C:\Windows\System32\Audiosrv.dll
18:16:22.0509 4040  AudioSrv - ok
18:16:22.0550 4040  [ B20B5FA5CA050E9926E4D1DB81501B32 ] AxInstSV        C:\Windows\System32\AxInstSV.dll
18:16:22.0552 4040  AxInstSV - ok
18:16:22.0680 4040  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
18:16:22.0702 4040  b06bdrv - ok
18:16:22.0735 4040  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
18:16:22.0741 4040  b57nd60a - ok
18:16:22.0804 4040  [ E001DD475A7C27EBE5A0DB45C11BAD71 ] BCM42RLY        C:\Windows\system32\drivers\BCM42RLY.sys
18:16:22.0806 4040  BCM42RLY - ok
18:16:22.0956 4040  [ 37394D3553E220FB732C21E217E1BD8B ] BCM43XX         C:\Windows\system32\DRIVERS\bcmwl664.sys
18:16:23.0032 4040  BCM43XX - ok
18:16:23.0122 4040  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
18:16:23.0128 4040  BDESVC - ok
18:16:23.0161 4040  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
18:16:23.0165 4040  Beep - ok
18:16:23.0251 4040  [ 4992C609A6315671463E30F6512BC022 ] BFE             C:\Windows\System32\bfe.dll
18:16:23.0299 4040  BFE - ok
18:16:23.0444 4040  [ 7F0C323FE3DA28AA4AA1BDA3F575707F ] BITS            C:\Windows\system32\qmgr.dll
18:16:23.0489 4040  BITS - ok
18:16:23.0520 4040  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
18:16:23.0522 4040  blbdrive - ok
18:16:23.0686 4040  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
18:16:23.0693 4040  Bonjour Service - ok
18:16:23.0749 4040  [ 19D20159708E152267E53B66677A4995 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
18:16:23.0756 4040  bowser - ok
18:16:23.0817 4040  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
18:16:23.0819 4040  BrFiltLo - ok
18:16:23.0829 4040  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
18:16:23.0831 4040  BrFiltUp - ok
18:16:23.0858 4040  [ 6B054C67AAA87843504E8E3C09102009 ] Browser         C:\Windows\System32\browser.dll
18:16:23.0861 4040  Browser - ok
18:16:24.0060 4040  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
18:16:24.0067 4040  Brserid - ok
18:16:24.0092 4040  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
18:16:24.0094 4040  BrSerWdm - ok
18:16:24.0112 4040  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
18:16:24.0114 4040  BrUsbMdm - ok
18:16:24.0135 4040  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
18:16:24.0140 4040  BrUsbSer - ok
18:16:24.0157 4040  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
18:16:24.0159 4040  BTHMODEM - ok
18:16:24.0224 4040  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
18:16:24.0226 4040  bthserv - ok
18:16:24.0347 4040  [ 9887CA12F407D7FBC7F48F3678F5F0B6 ] BVRPMPR5a64     C:\Windows\system32\drivers\BVRPMPR5a64.SYS
18:16:24.0349 4040  BVRPMPR5a64 - ok
18:16:24.0376 4040  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
18:16:24.0379 4040  cdfs - ok
18:16:24.0423 4040  [ 83D2D75E1EFB81B3450C18131443F7DB ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
18:16:24.0427 4040  cdrom - ok
18:16:24.0493 4040  [ 312E2F82AF11E79906898AC3E3D58A1F ] CertPropSvc     C:\Windows\System32\certprop.dll
18:16:24.0502 4040  CertPropSvc - ok
18:16:24.0542 4040  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
18:16:24.0544 4040  circlass - ok
18:16:24.0569 4040  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
18:16:24.0575 4040  CLFS - ok
18:16:24.0695 4040  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:16:24.0700 4040  clr_optimization_v2.0.50727_32 - ok
18:16:24.0792 4040  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
18:16:24.0801 4040  clr_optimization_v2.0.50727_64 - ok
18:16:24.0928 4040  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:16:24.0931 4040  clr_optimization_v4.0.30319_32 - ok
18:16:24.0982 4040  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
18:16:24.0987 4040  clr_optimization_v4.0.30319_64 - ok
18:16:25.0062 4040  [ 09D38AEC081F064FD67B8B9C49790020 ] CltMngSvc       C:\Program Files (x86)\SearchProtect\bin\CltMngSvc.exe
18:16:25.0071 4040  CltMngSvc - ok
18:16:25.0128 4040  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
18:16:25.0130 4040  CmBatt - ok
18:16:25.0177 4040  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\DRIVERS\cmdide.sys
18:16:25.0178 4040  cmdide - ok
18:16:25.0218 4040  [ CA7720B73446FDDEC5C69519C1174C98 ] CNG             C:\Windows\system32\Drivers\cng.sys
18:16:25.0226 4040  CNG - ok
18:16:25.0252 4040  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
18:16:25.0254 4040  Compbatt - ok
18:16:25.0280 4040  [ F26B3A86F6FA87CA360B879581AB4123 ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
18:16:25.0282 4040  CompositeBus - ok
18:16:25.0294 4040  COMSysApp - ok
18:16:25.0319 4040  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
18:16:25.0327 4040  crcdisk - ok
18:16:25.0427 4040  [ BAF19B633933A9FB4883D27D66C39E9A ] CryptSvc        C:\Windows\system32\cryptsvc.dll
18:16:25.0430 4040  CryptSvc - ok
18:16:25.0504 4040  [ ED5CF92396A62F4C15110DCDB5E854D9 ] CtClsFlt        C:\Windows\system32\DRIVERS\CtClsFlt.sys
18:16:25.0507 4040  CtClsFlt - ok
18:16:25.0846 4040  [ 7266972E86890E2B30C0C322E906B027 ] DcomLaunch      C:\Windows\system32\rpcss.dll
18:16:25.0967 4040  DcomLaunch - ok
18:16:26.0069 4040  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
18:16:26.0073 4040  defragsvc - ok
18:16:26.0167 4040  [ 9C253CE7311CA60FC11C774692A13208 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
18:16:26.0169 4040  DfsC - ok
18:16:26.0239 4040  [ CE3B9562D997F69B330D181A8875960F ] Dhcp            C:\Windows\system32\dhcpcore.dll
18:16:26.0251 4040  Dhcp - ok
18:16:26.0271 4040  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
18:16:26.0272 4040  discache - ok
18:16:26.0333 4040  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\DRIVERS\disk.sys
18:16:26.0335 4040  Disk - ok
18:16:26.0388 4040  [ 85CF424C74A1D5EC33533E1DBFF9920A ] Dnscache        C:\Windows\System32\dnsrslvr.dll
18:16:26.0395 4040  Dnscache - ok
18:16:26.0484 4040  [ 0840ABBBDF438691EE65A20040635CBE ] DockLoginService C:\Program Files\Dell\DellDock\DockLogin.exe
18:16:26.0486 4040  DockLoginService - ok
18:16:26.0545 4040  [ 14452ACDB09B70964C8C21BF80A13ACB ] dot3svc         C:\Windows\System32\dot3svc.dll
18:16:26.0550 4040  dot3svc - ok
18:16:26.0572 4040  [ 8C2BA6BEA949EE6E68385F5692BAFB94 ] DPS             C:\Windows\system32\dps.dll
18:16:26.0576 4040  DPS - ok
18:16:26.0632 4040  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
18:16:26.0634 4040  drmkaud - ok
18:16:26.0718 4040  [ 1633B9ABF52784A1331476397A48CBEF ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
18:16:26.0741 4040  DXGKrnl - ok
18:16:26.0807 4040  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
18:16:26.0816 4040  EapHost - ok
18:16:27.0025 4040  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
18:16:27.0157 4040  ebdrv - ok
18:16:27.0279 4040  [ 156F6159457D0AA7E59B62681B56EB90 ] EFS             C:\Windows\System32\lsass.exe
18:16:27.0281 4040  EFS - ok
18:16:27.0419 4040  [ 47C071994C3F649F23D9CD075AC9304A ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
18:16:27.0442 4040  ehRecvr - ok
18:16:27.0468 4040  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
18:16:27.0479 4040  ehSched - ok
18:16:27.0586 4040  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
18:16:27.0595 4040  elxstor - ok
18:16:27.0670 4040  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\DRIVERS\errdev.sys
18:16:27.0678 4040  ErrDev - ok
18:16:27.0815 4040  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
18:16:27.0823 4040  EventSystem - ok
18:16:27.0844 4040  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
18:16:27.0849 4040  exfat - ok
18:16:27.0892 4040  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
18:16:27.0896 4040  fastfat - ok
18:16:27.0950 4040  [ D607B2F1BEE3992AA6C2C92C0A2F0855 ] Fax             C:\Windows\system32\fxssvc.exe
18:16:27.0973 4040  Fax - ok
18:16:27.0997 4040  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
18:16:28.0004 4040  fdc - ok
18:16:28.0045 4040  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
18:16:28.0047 4040  fdPHost - ok
18:16:28.0062 4040  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
18:16:28.0064 4040  FDResPub - ok
18:16:28.0139 4040  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
18:16:28.0142 4040  FileInfo - ok
18:16:28.0173 4040  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
18:16:28.0175 4040  Filetrace - ok
18:16:28.0198 4040  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
18:16:28.0200 4040  flpydisk - ok
18:16:28.0231 4040  [ F7866AF72ABBAF84B1FA5AA195378C59 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
18:16:28.0235 4040  FltMgr - ok
18:16:28.0338 4040  [ CB5E4B9C319E3C6BB363EB7E58A4A051 ] FontCache       C:\Windows\system32\FntCache.dll
18:16:28.0372 4040  FontCache - ok
18:16:28.0467 4040  [ 8D89E3131C27FDD6932189CB785E1B7A ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
18:16:28.0469 4040  FontCache3.0.0.0 - ok
18:16:28.0519 4040  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
18:16:28.0527 4040  FsDepends - ok
18:16:28.0571 4040  [ 6C06701BF1DB05405804D7EB610991CE ] fssfltr         C:\Windows\system32\DRIVERS\fssfltr.sys
18:16:28.0581 4040  fssfltr - ok
18:16:28.0847 4040  [ 4CE9DAC1518FF7E77BD213E6394B9D77 ] fsssvc          C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
18:16:28.0891 4040  fsssvc - ok
18:16:28.0921 4040  [ D3E3F93D67821A2DB2B3D9FAC2DC2064 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
18:16:28.0923 4040  Fs_Rec - ok
18:16:29.0073 4040  [ 1F44F8559E61A8306ECC67BB1E168B7C ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
18:16:29.0094 4040  fvevol - ok
18:16:29.0120 4040  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
18:16:29.0122 4040  gagp30kx - ok
18:16:29.0223 4040  [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
18:16:29.0244 4040  GEARAspiWDM - ok
18:16:29.0309 4040  [ D3316F6E3C011435F36E3D6E49B3196C ] GoToAssist      C:\Program Files (x86)\Citrix\GoToAssist\514\g2aservice.exe
18:16:29.0310 4040  GoToAssist - ok
18:16:29.0414 4040  [ FE5AB4525BC2EC68B9119A6E5D40128B ] gpsvc           C:\Windows\System32\gpsvc.dll
18:16:29.0438 4040  gpsvc - ok
18:16:29.0556 4040  [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:16:29.0559 4040  gupdate - ok
18:16:29.0606 4040  [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:16:29.0607 4040  gupdatem - ok
18:16:29.0788 4040  [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc           C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
18:16:29.0793 4040  gusvc - ok
18:16:29.0847 4040  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
18:16:29.0852 4040  hcw85cir - ok
18:16:29.0929 4040  [ 6410F6F415B2A5A9037224C41DA8BF12 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
18:16:30.0027 4040  HdAudAddService - ok
18:16:30.0193 4040  [ 0A49913402747A0B67DE940FB42CBDBB ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
18:16:30.0202 4040  HDAudBus - ok
18:16:30.0227 4040  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
18:16:30.0230 4040  HidBatt - ok
18:16:30.0254 4040  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
18:16:30.0257 4040  HidBth - ok
18:16:30.0275 4040  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
18:16:30.0277 4040  HidIr - ok
18:16:30.0354 4040  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\System32\hidserv.dll
18:16:30.0356 4040  hidserv - ok
18:16:30.0400 4040  [ B3BF6B5B50006DEF50B66306D99FCF6F ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
18:16:30.0402 4040  HidUsb - ok
18:16:30.0457 4040  [ EFA58EDE58DD74388FFD04CB32681518 ] hkmsvc          C:\Windows\system32\kmsvc.dll
18:16:30.0464 4040  hkmsvc - ok
18:16:30.0490 4040  [ 046B2673767CA626E2CFB7FDF735E9E8 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
18:16:30.0496 4040  HomeGroupListener - ok
18:16:30.0552 4040  [ 06A7422224D9865A5613710A089987DF ] HomeGroupProvider C:\Windows\system32\provsvc.dll
18:16:30.0558 4040  HomeGroupProvider - ok
18:16:30.0630 4040  [ 0886D440058F203EBA0E1825E4355914 ] HpSAMD          C:\Windows\system32\DRIVERS\HpSAMD.sys
18:16:30.0635 4040  HpSAMD - ok
18:16:30.0677 4040  [ CEE049CAC4EFA7F4E1E4AD014414A5D4 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
18:16:30.0700 4040  HTTP - ok
18:16:30.0717 4040  [ F17766A19145F111856378DF337A5D79 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
18:16:30.0717 4040  hwpolicy - ok
18:16:30.0762 4040  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
18:16:30.0765 4040  i8042prt - ok
18:16:30.0845 4040  [ B75E45C564E944A2657167D197AB29DA ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
18:16:30.0855 4040  iaStorV - ok
18:16:30.0994 4040  [ 2F2BE70D3E02B6FA877921AB9516D43C ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
18:16:31.0016 4040  idsvc - ok
18:16:32.0786 4040  [ 677AA5991026A65ADA128C4B59CF2BAD ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
18:16:33.0213 4040  igfx - ok
18:16:33.0253 4040  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
18:16:33.0256 4040  iirsp - ok
18:16:33.0322 4040  [ C5B4683680DF085B57BC53E5EF34861F ] IKEEXT          C:\Windows\System32\ikeext.dll
18:16:33.0347 4040  IKEEXT - ok
18:16:33.0419 4040  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\DRIVERS\intelide.sys
18:16:33.0421 4040  intelide - ok
18:16:33.0459 4040  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
18:16:33.0461 4040  intelppm - ok
18:16:33.0545 4040  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
18:16:33.0549 4040  IPBusEnum - ok
18:16:33.0593 4040  [ 722DD294DF62483CECAAE6E094B4D695 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
18:16:33.0596 4040  IpFilterDriver - ok
18:16:33.0668 4040  [ F8E058D17363EC580E4B7232778B6CB5 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
18:16:33.0715 4040  iphlpsvc - ok
18:16:33.0735 4040  [ E2B4A4494DB7CB9B89B55CA268C337C5 ] IPMIDRV         C:\Windows\system32\DRIVERS\IPMIDrv.sys
18:16:33.0739 4040  IPMIDRV - ok
18:16:33.0766 4040  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
18:16:33.0768 4040  IPNAT - ok
18:16:33.0870 4040  [ 4EFFC8FF6D349E971E94B1C670C0C66A ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
18:16:33.0879 4040  iPod Service - ok
18:16:33.0934 4040  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
18:16:33.0936 4040  IRENUM - ok
18:16:33.0952 4040  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\DRIVERS\isapnp.sys
18:16:33.0954 4040  isapnp - ok
18:16:33.0974 4040  [ FA4D2557DE56D45B0A346F93564BE6E1 ] iScsiPrt        C:\Windows\system32\DRIVERS\msiscsi.sys
18:16:33.0978 4040  iScsiPrt - ok
18:16:34.0026 4040  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
18:16:34.0028 4040  kbdclass - ok
18:16:34.0062 4040  [ 6DEF98F8541E1B5DCEB2C822A11F7323 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
18:16:34.0073 4040  kbdhid - ok
18:16:34.0102 4040  [ 156F6159457D0AA7E59B62681B56EB90 ] KeyIso          C:\Windows\system32\lsass.exe
18:16:34.0104 4040  KeyIso - ok
18:16:34.0136 4040  [ 4F4B5FDE429416877DE7143044582EB5 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
18:16:34.0140 4040  KSecDD - ok
18:16:34.0153 4040  [ 6F40465A44ECDC1731BEFAFEC5BDD03C ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
18:16:34.0157 4040  KSecPkg - ok
18:16:34.0177 4040  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
18:16:34.0179 4040  ksthunk - ok
18:16:34.0253 4040  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
18:16:34.0260 4040  KtmRm - ok
18:16:34.0306 4040  [ 81F1D04D4D0E433099365127375FD501 ] LanmanServer    C:\Windows\System32\srvsvc.dll
18:16:34.0312 4040  LanmanServer - ok
18:16:34.0368 4040  [ 27026EAC8818E8A6C00A1CAD2F11D29A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
18:16:34.0373 4040  LanmanWorkstation - ok
18:16:34.0469 4040  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
18:16:34.0472 4040  lltdio - ok
18:16:34.0501 4040  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
18:16:34.0507 4040  lltdsvc - ok
18:16:34.0542 4040  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
18:16:34.0545 4040  lmhosts - ok
18:16:34.0577 4040  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
18:16:34.0580 4040  LSI_FC - ok
18:16:34.0607 4040  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
18:16:34.0610 4040  LSI_SAS - ok
18:16:34.0649 4040  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
18:16:34.0654 4040  LSI_SAS2 - ok
18:16:34.0718 4040  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
18:16:34.0725 4040  LSI_SCSI - ok
18:16:34.0820 4040  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
18:16:34.0828 4040  luafv - ok
18:16:34.0937 4040  [ 0BB97D43299910CBFBA59C461B99B910 ] MBAMProtector   C:\Windows\system32\drivers\mbam.sys
18:16:34.0944 4040  MBAMProtector - ok
18:16:35.0166 4040  [ 65085456FD9A74D7F1A999520C299ECB ] MBAMScheduler   C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
18:16:35.0172 4040  MBAMScheduler - ok
18:16:35.0245 4040  [ E0D7732F2D2E24B2DB3F67B6750295B8 ] MBAMService     C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
18:16:35.0268 4040  MBAMService - ok
18:16:35.0362 4040  [ FD3AD5E1ECDAA94A89D6697F5C5465D6 ] McComponentHostService C:\Program Files (x86)\McAfee Security Scan\2.1.121\McCHSvc.exe
18:16:35.0368 4040  McComponentHostService - ok
18:16:35.0433 4040  [ F84C8F1000BC11E3B7B23CBD3BAFF111 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
18:16:35.0437 4040  Mcx2Svc - ok
18:16:35.0451 4040  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
18:16:35.0453 4040  megasas - ok
18:16:35.0529 4040  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
18:16:35.0534 4040  MegaSR - ok
18:16:35.0559 4040  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
18:16:35.0562 4040  MMCSS - ok
18:16:35.0585 4040  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
18:16:35.0591 4040  Modem - ok
18:16:35.0638 4040  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
18:16:35.0639 4040  monitor - ok
18:16:35.0679 4040  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
18:16:35.0681 4040  mouclass - ok
18:16:35.0700 4040  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
18:16:35.0703 4040  mouhid - ok
18:16:35.0718 4040  [ 791AF66C4D0E7C90A3646066386FB571 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
18:16:35.0721 4040  mountmgr - ok
18:16:35.0809 4040  [ F8A10560B35C66F9DE212F03DAD5BFA7 ] MpFilter        C:\Windows\system32\DRIVERS\MpFilter.sys
18:16:35.0814 4040  MpFilter - ok
18:16:35.0843 4040  [ 609D1D87649ECC19796F4D76D4C15CEA ] mpio            C:\Windows\system32\DRIVERS\mpio.sys
18:16:35.0849 4040  mpio - ok
18:16:35.0869 4040  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
18:16:35.0872 4040  mpsdrv - ok
18:16:36.0001 4040  [ AECAB449567D1846DAD63ECE49E893E3 ] MpsSvc          C:\Windows\system32\mpssvc.dll
18:16:36.0032 4040  MpsSvc - ok
18:16:36.0102 4040  [ 30524261BB51D96D6FCBAC20C810183C ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
18:16:36.0107 4040  MRxDAV - ok
18:16:36.0159 4040  [ 040D62A9D8AD28922632137ACDD984F2 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
18:16:36.0162 4040  mrxsmb - ok
18:16:36.0224 4040  [ F0067552F8F9B33D7C59403AB808A3CB ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
18:16:36.0231 4040  mrxsmb10 - ok
18:16:36.0289 4040  [ 3C142D31DE9F2F193218A53FE2632051 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
18:16:36.0292 4040  mrxsmb20 - ok
18:16:36.0327 4040  [ 5C37497276E3B3A5488B23A326A754B7 ] msahci          C:\Windows\system32\DRIVERS\msahci.sys
18:16:36.0329 4040  msahci - ok
18:16:36.0352 4040  [ 8D27B597229AED79430FB9DB3BCBFBD0 ] msdsm           C:\Windows\system32\DRIVERS\msdsm.sys
18:16:36.0356 4040  msdsm - ok
18:16:36.0425 4040  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
18:16:36.0432 4040  MSDTC - ok
18:16:36.0474 4040  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
18:16:36.0476 4040  Msfs - ok
18:16:36.0487 4040  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
18:16:36.0497 4040  mshidkmdf - ok
18:16:36.0529 4040  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\DRIVERS\msisadrv.sys
18:16:36.0531 4040  msisadrv - ok
18:16:36.0567 4040  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
18:16:36.0571 4040  MSiSCSI - ok
18:16:36.0578 4040  msiserver - ok
18:16:36.0652 4040  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
18:16:36.0653 4040  MSKSSRV - ok
18:16:36.0810 4040  [ E07DEC52FF801841BA9B6878A60304FB ] MsMpSvc         c:\Program Files\Microsoft Security Client\MsMpEng.exe
18:16:36.0811 4040  MsMpSvc - ok
18:16:36.0835 4040  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
18:16:36.0839 4040  MSPCLOCK - ok
18:16:36.0854 4040  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
18:16:36.0856 4040  MSPQM - ok
18:16:36.0877 4040  [ 89CB141AA8616D8C6A4610FA26C60964 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
18:16:36.0884 4040  MsRPC - ok
18:16:36.0917 4040  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
18:16:36.0918 4040  mssmbios - ok
18:16:36.0979 4040  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
18:16:36.0981 4040  MSTEE - ok
18:16:36.0998 4040  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
18:16:37.0002 4040  MTConfig - ok
18:16:37.0074 4040  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
18:16:37.0086 4040  Mup - ok
18:16:37.0286 4040  [ 4987E079A4530FA737A128BE54B63B12 ] napagent        C:\Windows\system32\qagentRT.dll
18:16:37.0295 4040  napagent - ok
18:16:37.0382 4040  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
18:16:37.0388 4040  NativeWifiP - ok
18:16:37.0434 4040  [ CAD515DBD07D082BB317D9928CE8962C ] NDIS            C:\Windows\system32\drivers\ndis.sys
18:16:37.0468 4040  NDIS - ok
18:16:37.0550 4040  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
18:16:37.0552 4040  NdisCap - ok
18:16:37.0585 4040  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
18:16:37.0587 4040  NdisTapi - ok
18:16:37.0615 4040  [ F105BA1E22BF1F2EE8F005D4305E4BEC ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
18:16:37.0618 4040  Ndisuio - ok
18:16:37.0642 4040  [ 557DFAB9CA1FCB036AC77564C010DAD3 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
18:16:37.0646 4040  NdisWan - ok
18:16:37.0664 4040  [ 659B74FB74B86228D6338D643CD3E3CF ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
18:16:37.0674 4040  NDProxy - ok
18:16:37.0956 4040  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
18:16:37.0985 4040  NetBIOS - ok
18:16:38.0031 4040  [ 9162B273A44AB9DCE5B44362731D062A ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
18:16:38.0034 4040  NetBT - ok
18:16:38.0064 4040  [ 156F6159457D0AA7E59B62681B56EB90 ] Netlogon        C:\Windows\system32\lsass.exe
18:16:38.0066 4040  Netlogon - ok
18:16:38.0314 4040  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
18:16:38.0379 4040  Netman - ok
18:16:38.0432 4040  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
18:16:38.0454 4040  netprofm - ok
18:16:38.0508 4040  [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
18:16:38.0515 4040  NetTcpPortSharing - ok
18:16:38.0552 4040  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
18:16:38.0554 4040  nfrd960 - ok
18:16:38.0637 4040  [ 162100E0BC8377710F9D170631921C03 ] NisDrv          C:\Windows\system32\DRIVERS\NisDrvWFP.sys
18:16:38.0640 4040  NisDrv - ok
18:16:38.0688 4040  [ C6E15F2F95F9C0A6098D43510B604E52 ] NisSrv          c:\Program Files\Microsoft Security Client\NisSrv.exe
18:16:38.0695 4040  NisSrv - ok
18:16:38.0805 4040  [ D9A0CE66046D6EFA0C61BAA885CBA0A8 ] NlaSvc          C:\Windows\System32\nlasvc.dll
18:16:38.0814 4040  NlaSvc - ok
18:16:38.0840 4040  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
18:16:38.0842 4040  Npfs - ok
18:16:38.0865 4040  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
18:16:38.0869 4040  nsi - ok
18:16:38.0882 4040  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
18:16:38.0885 4040  nsiproxy - ok
18:16:39.0030 4040  [ 9A6089B056EA1B83B36424FC9D0A300E ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
18:16:39.0101 4040  Ntfs - ok
18:16:39.0123 4040  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
18:16:39.0125 4040  Null - ok
18:16:39.0178 4040  [ A4D9C9A608A97F59307C2F2600EDC6A4 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
18:16:39.0183 4040  nvraid - ok
18:16:39.0203 4040  [ 6C1D5F70E7A6A3FD1C90D840EDC048B9 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
18:16:39.0207 4040  nvstor - ok
18:16:39.0232 4040  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\DRIVERS\nv_agp.sys
18:16:39.0235 4040  nv_agp - ok
18:16:39.0372 4040  [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv          C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
18:16:39.0390 4040  odserv - ok
18:16:39.0463 4040  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\DRIVERS\ohci1394.sys
18:16:39.0467 4040  ohci1394 - ok
18:16:39.0502 4040  [ 5A432A042DAE460ABE7199B758E8606C ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
18:16:39.0506 4040  ose - ok
18:16:39.0590 4040  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
18:16:39.0598 4040  p2pimsvc - ok
18:16:39.0626 4040  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
18:16:39.0635 4040  p2psvc - ok
18:16:39.0670 4040  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
18:16:39.0673 4040  Parport - ok
18:16:39.0701 4040  [ 90061B1ACFE8CCAA5345750FFE08D8B8 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
18:16:39.0703 4040  partmgr - ok
18:16:39.0725 4040  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
18:16:39.0728 4040  PcaSvc - ok
18:16:39.0837 4040  [ 4B5F5774FF1C577B9515FDD2B5C535C5 ] PCDSRVC{1E208CE0-FB7451FF-06020200}_0 c:\program files\dell support center\pcdsrvc_x64.pkms
18:16:39.0839 4040  PCDSRVC{1E208CE0-FB7451FF-06020200}_0 - ok
18:16:39.0868 4040  [ F36F6504009F2FB0DFD1B17A116AD74B ] pci             C:\Windows\system32\DRIVERS\pci.sys
18:16:39.0871 4040  pci - ok
18:16:39.0920 4040  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\DRIVERS\pciide.sys
18:16:39.0922 4040  pciide - ok
18:16:39.0939 4040  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
18:16:39.0950 4040  pcmcia - ok
18:16:39.0974 4040  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
18:16:39.0977 4040  pcw - ok
18:16:40.0007 4040  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
18:16:40.0017 4040  PEAUTH - ok
18:16:40.0194 4040  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
18:16:40.0209 4040  PerfHost - ok
18:16:40.0422 4040  [ 557E9A86F65F0DE18C9B6751DFE9D3F1 ] pla             C:\Windows\system32\pla.dll
18:16:40.0456 4040  pla - ok
18:16:40.0545 4040  [ 98B1721B8718164293B9701B98C52D77 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
18:16:40.0555 4040  PlugPlay - ok
18:16:40.0578 4040  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
18:16:40.0582 4040  PNRPAutoReg - ok
18:16:40.0609 4040  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
18:16:40.0613 4040  PNRPsvc - ok
18:16:40.0683 4040  [ 166EB40D1F5B47E615DE3D0FFFE5F243 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
18:16:40.0694 4040  PolicyAgent - ok
18:16:40.0804 4040  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
18:16:40.0810 4040  Power - ok
18:16:40.0914 4040  [ 27CC19E81BA5E3403C48302127BDA717 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
18:16:40.0919 4040  PptpMiniport - ok
18:16:40.0941 4040  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\DRIVERS\processr.sys
18:16:40.0943 4040  Processor - ok
18:16:40.0978 4040  [ 97293447431311C06703368AD0F6C4BE ] ProfSvc         C:\Windows\system32\profsvc.dll
18:16:40.0985 4040  ProfSvc - ok
18:16:41.0024 4040  [ 156F6159457D0AA7E59B62681B56EB90 ] ProtectedStorage C:\Windows\system32\lsass.exe
18:16:41.0025 4040  ProtectedStorage - ok
18:16:41.0064 4040  [ EE992183BD8EAEFD9973F352E587A299 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
18:16:41.0066 4040  Psched - ok
18:16:41.0119 4040  [ 4712CC14E720ECCCC0AA16949D18AAF1 ] PxHlpa64        C:\Windows\system32\Drivers\PxHlpa64.sys
18:16:41.0121 4040  PxHlpa64 - ok
18:16:41.0211 4040  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
18:16:41.0247 4040  ql2300 - ok
18:16:41.0287 4040  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
18:16:41.0294 4040  ql40xx - ok
18:16:41.0386 4040  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
18:16:41.0391 4040  QWAVE - ok
18:16:41.0415 4040  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
18:16:41.0418 4040  QWAVEdrv - ok
18:16:41.0439 4040  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
18:16:41.0441 4040  RasAcd - ok
18:16:41.0468 4040  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
18:16:41.0474 4040  RasAgileVpn - ok
18:16:41.0505 4040  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
18:16:41.0510 4040  RasAuto - ok
18:16:41.0537 4040  [ 87A6E852A22991580D6D39ADC4790463 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
18:16:41.0539 4040  Rasl2tp - ok
18:16:41.0565 4040  [ 47394ED3D16D053F5906EFE5AB51CC83 ] RasMan          C:\Windows\System32\rasmans.dll
18:16:41.0573 4040  RasMan - ok
18:16:41.0588 4040  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
18:16:41.0599 4040  RasPppoe - ok
18:16:41.0635 4040  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
18:16:41.0646 4040  RasSstp - ok
18:16:41.0738 4040  [ 3BAC8142102C15D59A87757C1D41DCE5 ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
18:16:41.0743 4040  rdbss - ok
18:16:41.0757 4040  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
18:16:41.0760 4040  rdpbus - ok
18:16:41.0775 4040  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
18:16:41.0776 4040  RDPCDD - ok
18:16:41.0794 4040  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
18:16:41.0794 4040  RDPENCDD - ok
18:16:41.0808 4040  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
18:16:41.0809 4040  RDPREFMP - ok
18:16:41.0886 4040  [ 447DE7E3DEA39D422C1504F245B668B1 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
18:16:41.0898 4040  RDPWD - ok
18:16:41.0970 4040  [ 634B9A2181D98F15941236886164EC8B ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
18:16:41.0976 4040  rdyboost - ok
18:16:42.0001 4040  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
18:16:42.0005 4040  RemoteAccess - ok
18:16:42.0067 4040  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
18:16:42.0074 4040  RemoteRegistry - ok
18:16:42.0156 4040  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
18:16:42.0163 4040  RpcEptMapper - ok
18:16:42.0219 4040  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
18:16:42.0222 4040  RpcLocator - ok
18:16:42.0246 4040  [ 7266972E86890E2B30C0C322E906B027 ] RpcSs           C:\Windows\system32\rpcss.dll
18:16:42.0252 4040  RpcSs - ok
18:16:42.0360 4040  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
18:16:42.0369 4040  rspndr - ok
18:16:42.0406 4040  [ 4A25DC970C58104602ED274DACAFD784 ] RSUSBSTOR       C:\Windows\System32\Drivers\RtsUStor.sys
18:16:42.0415 4040  RSUSBSTOR - ok
18:16:42.0471 4040  [ B49DC435AE3695BAC5623DD94B05732D ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
18:16:42.0476 4040  RTL8167 - ok
18:16:42.0500 4040  [ 156F6159457D0AA7E59B62681B56EB90 ] SamSs           C:\Windows\system32\lsass.exe
18:16:42.0503 4040  SamSs - ok
18:16:42.0544 4040  [ E3BBB89983DAF5622C1D50CF49F28227 ] sbp2port        C:\Windows\system32\DRIVERS\sbp2port.sys
18:16:42.0547 4040  sbp2port - ok
18:16:42.0627 4040  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
18:16:42.0633 4040  SCardSvr - ok
18:16:42.0645 4040  [ C94DA20C7E3BA1DCA269BC8460D98387 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
18:16:42.0646 4040  scfilter - ok
18:16:42.0716 4040  [ 624D0F5FF99428BB90A5B8A4123E918E ] Schedule        C:\Windows\system32\schedsvc.dll
18:16:42.0751 4040  Schedule - ok
18:16:42.0806 4040  [ 312E2F82AF11E79906898AC3E3D58A1F ] SCPolicySvc     C:\Windows\System32\certprop.dll
18:16:42.0807 4040  SCPolicySvc - ok
18:16:42.0868 4040  [ 765A27C3279CE11D14CB9E4F5869FCA5 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
18:16:42.0874 4040  SDRSVC - ok
18:16:43.0126 4040  [ 206387AB881E93A1A6EB89966C8651F1 ] SDScannerService C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
18:16:43.0157 4040  SDScannerService - ok
18:16:43.0224 4040  [ A529CFE32565C0B145578FFB2B32C9A5 ] SDUpdateService C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
18:16:43.0257 4040  SDUpdateService - ok
18:16:43.0274 4040  [ CB63BDB77BB86549FC3303C2F11EDC18 ] SDWSCService    C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
18:16:43.0277 4040  SDWSCService - ok
18:16:43.0545 4040  [ 16A252022535B680046F6E34E136D378 ] SeaPort         C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
18:16:43.0556 4040  SeaPort - ok
18:16:43.0650 4040  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
18:16:43.0653 4040  secdrv - ok
18:16:43.0761 4040  [ 463B386EBC70F98DA5DFF85F7E654346 ] seclogon        C:\Windows\system32\seclogon.dll
18:16:43.0885 4040  seclogon - ok
18:16:43.0916 4040  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\system32\sens.dll
18:16:43.0920 4040  SENS - ok
18:16:43.0936 4040  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
18:16:43.0942 4040  SensrSvc - ok
18:16:43.0963 4040  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
18:16:43.0967 4040  Serenum - ok
18:16:44.0013 4040  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\DRIVERS\serial.sys
18:16:44.0016 4040  Serial - ok
18:16:44.0056 4040  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
18:16:44.0058 4040  sermouse - ok
18:16:44.0089 4040  [ C3BC61CE47FF6F4E88AB8A3B429A36AF ] SessionEnv      C:\Windows\system32\sessenv.dll
18:16:44.0094 4040  SessionEnv - ok
18:16:44.0143 4040  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\DRIVERS\sffdisk.sys
18:16:44.0152 4040  sffdisk - ok
18:16:44.0181 4040  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\DRIVERS\sffp_mmc.sys
18:16:44.0183 4040  sffp_mmc - ok
18:16:44.0196 4040  [ 5588B8C6193EB1522490C122EB94DFFA ] sffp_sd         C:\Windows\system32\DRIVERS\sffp_sd.sys
18:16:44.0197 4040  sffp_sd - ok
18:16:44.0211 4040  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
18:16:44.0213 4040  sfloppy - ok
18:16:44.0309 4040  [ 38F88F0DF46C4D42125EF721ABD7F6B9 ] SftService      C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
18:16:44.0319 4040  SftService - ok
18:16:44.0406 4040  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll
18:16:44.0426 4040  SharedAccess - ok
18:16:44.0514 4040  [ 0298AC45D0EFFFB2DB4BAA7DD186E7BF ] ShellHWDetection C:\Windows\System32\shsvcs.dll
18:16:44.0524 4040  ShellHWDetection - ok
18:16:44.0583 4040  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
18:16:44.0591 4040  SiSRaid2 - ok
18:16:44.0621 4040  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
18:16:44.0627 4040  SiSRaid4 - ok
18:16:44.0741 4040  [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
18:16:44.0745 4040  SkypeUpdate - ok
18:16:44.0769 4040  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
18:16:44.0771 4040  Smb - ok
18:16:44.0826 4040  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
18:16:44.0828 4040  SNMPTRAP - ok
18:16:44.0882 4040  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
18:16:44.0884 4040  spldr - ok
18:16:44.0970 4040  [ 567977DC43CC13C4C35ED7084C0B84D5 ] Spooler         C:\Windows\System32\spoolsv.exe
18:16:44.0989 4040  Spooler - ok
18:16:45.0121 4040  [ 913D843498553A1BC8F8DBAD6358E49F ] sppsvc          C:\Windows\system32\sppsvc.exe
18:16:45.0232 4040  sppsvc - ok
18:16:45.0260 4040  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
18:16:45.0265 4040  sppuinotify - ok
18:16:45.0359 4040  [ 2408C0366D96BCDF63E8F1C78E4A29C5 ] srv             C:\Windows\system32\DRIVERS\srv.sys
18:16:45.0369 4040  srv - ok
18:16:45.0392 4040  [ 76548F7B818881B47D8D1AE1BE9C11F8 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
18:16:45.0399 4040  srv2 - ok
18:16:45.0473 4040  [ 0AF6E19D39C70844C5CAA8FB0183C36E ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
18:16:45.0478 4040  srvnet - ok
18:16:45.0546 4040  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
18:16:45.0551 4040  SSDPSRV - ok
18:16:45.0580 4040  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
18:16:45.0584 4040  SstpSvc - ok
18:16:45.0741 4040  [ 444109453A2B87E6C16BCDA5953E81A9 ] STacSV          C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_afc3018f8cfedd20\STacSV64.exe
18:16:45.0746 4040  STacSV - ok
18:16:45.0772 4040  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
18:16:45.0774 4040  stexstor - ok
18:16:45.0832 4040  [ 02E784FA49032F84964DB90A3ED81890 ] STHDA           C:\Windows\system32\DRIVERS\stwrt64.sys
18:16:45.0841 4040  STHDA - ok
18:16:45.0912 4040  [ 52D0E33B681BD0F33FDC08812FEE4F7D ] stisvc          C:\Windows\System32\wiaservc.dll
18:16:45.0921 4040  stisvc - ok
18:16:46.0074 4040  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
18:16:46.0084 4040  swenum - ok
18:16:46.0161 4040  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
18:16:46.0170 4040  swprv - ok
18:16:46.0309 4040  [ 3C1284516A62078FB68F768DE4F1A7BE ] SysMain         C:\Windows\system32\sysmain.dll
18:16:46.0357 4040  SysMain - ok
18:16:46.0393 4040  [ 238935C3CF2854886DC7CBB2A0E2CC66 ] TabletInputService C:\Windows\System32\TabSvc.dll
18:16:46.0397 4040  TabletInputService - ok
18:16:46.0419 4040  [ 884264AC597B690C5707C89723BB8E7B ] TapiSrv         C:\Windows\System32\tapisrv.dll
18:16:46.0427 4040  TapiSrv - ok
18:16:46.0445 4040  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
18:16:46.0450 4040  TBS - ok
18:16:46.0560 4040  [ 5CFB7AB8F9524D1A1E14369DE63B83CC ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
18:16:46.0604 4040  Tcpip - ok
18:16:46.0691 4040  [ 5CFB7AB8F9524D1A1E14369DE63B83CC ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
18:16:46.0703 4040  TCPIP6 - ok
18:16:46.0777 4040  [ 76D078AF6F587B162D50210F761EB9ED ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
18:16:46.0780 4040  tcpipreg - ok
18:16:46.0804 4040  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
18:16:46.0806 4040  TDPIPE - ok
18:16:46.0835 4040  [ 7518F7BCFD4B308ABC9192BACAF6C970 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
18:16:46.0837 4040  TDTCP - ok
18:16:46.0867 4040  [ 079125C4B17B01FCAEEBCE0BCB290C0F ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
18:16:46.0870 4040  tdx - ok
18:16:46.0898 4040  [ C448651339196C0E869A355171875522 ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
18:16:46.0902 4040  TermDD - ok
18:16:47.0013 4040  [ 0F05EC2887BFE197AD82A13287D2F404 ] TermService     C:\Windows\System32\termsrv.dll
18:16:47.0031 4040  TermService - ok
18:16:47.0060 4040  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
18:16:47.0064 4040  Themes - ok
18:16:47.0114 4040  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
18:16:47.0116 4040  THREADORDER - ok
18:16:47.0174 4040  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
18:16:47.0178 4040  TrkWks - ok
18:16:47.0262 4040  [ 840F7FB849F5887A49BA18C13B2DA920 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
18:16:47.0266 4040  TrustedInstaller - ok
18:16:47.0293 4040  [ 61B96C26131E37B24E93327A0BD1FB95 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
18:16:47.0296 4040  tssecsrv - ok
18:16:47.0341 4040  [ 3836171A2CDF3AF8EF10856DB9835A70 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
18:16:47.0344 4040  tunnel - ok
18:16:47.0416 4040  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
18:16:47.0419 4040  uagp35 - ok
18:16:47.0451 4040  [ D47BAEAD86C65D4F4069D7CE0A4EDCEB ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
18:16:47.0457 4040  udfs - ok
18:16:47.0534 4040  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
18:16:47.0545 4040  UI0Detect - ok
18:16:47.0578 4040  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\DRIVERS\uliagpkx.sys
18:16:47.0580 4040  uliagpkx - ok
18:16:47.0621 4040  [ EAB6C35E62B1B0DB0D1B48B671D3A117 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
18:16:47.0630 4040  umbus - ok
18:16:47.0697 4040  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
18:16:47.0699 4040  UmPass - ok
18:16:47.0755 4040  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
18:16:47.0767 4040  upnphost - ok
18:16:47.0861 4040  [ C9E9D59C0099A9FF51697E9306A44240 ] USBAAPL64       C:\Windows\system32\Drivers\usbaapl64.sys
18:16:47.0863 4040  USBAAPL64 - ok
18:16:47.0903 4040  [ 77B01BC848298223A95D4EC23E1785A1 ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
18:16:47.0907 4040  usbaudio - ok
18:16:47.0998 4040  [ C73CB90E6A2FF90FD02451A8DFC6AF8A ] usbbus          C:\Windows\system32\DRIVERS\lgx64bus.sys
18:16:48.0001 4040  usbbus - ok
18:16:48.0062 4040  [ 7B6A127C93EE590E4D79A5F2A76FE46F ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
18:16:48.0066 4040  usbccgp - ok
18:16:48.0124 4040  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\DRIVERS\usbcir.sys
18:16:48.0133 4040  usbcir - ok
18:16:48.0190 4040  [ 92969BA5AC44E229C55A332864F79677 ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
18:16:48.0192 4040  usbehci - ok
18:16:48.0262 4040  [ E7DF1CFD28CA86B35EF5ADD0735CEEF3 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
18:16:48.0284 4040  usbhub - ok
18:16:48.0304 4040  [ F1BB1E55F1E7A65C5839CCC7B36D773E ] usbohci         C:\Windows\system32\drivers\usbohci.sys
18:16:48.0307 4040  usbohci - ok
18:16:48.0348 4040  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
18:16:48.0351 4040  usbprint - ok
18:16:48.0407 4040  [ F39983647BC1F3E6100778DDFE9DCE29 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
18:16:48.0417 4040  USBSTOR - ok
18:16:48.0435 4040  [ BC3070350A491D84B518D7CCA9ABD36F ] usbuhci         C:\Windows\system32\DRIVERS\usbuhci.sys
18:16:48.0437 4040  usbuhci - ok
18:16:48.0489 4040  [ 7CB8C573C6E4A2714402CC0A36EAB4FE ] usbvideo        C:\Windows\System32\Drivers\usbvideo.sys
18:16:48.0492 4040  usbvideo - ok
18:16:48.0548 4040  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
18:16:48.0552 4040  UxSms - ok
18:16:48.0563 4040  [ 156F6159457D0AA7E59B62681B56EB90 ] VaultSvc        C:\Windows\system32\lsass.exe
18:16:48.0565 4040  VaultSvc - ok
18:16:48.0596 4040  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\DRIVERS\vdrvroot.sys
18:16:48.0604 4040  vdrvroot - ok
18:16:48.0687 4040  [ 44D73E0BBC1D3C8981304BA15135C2F2 ] vds             C:\Windows\System32\vds.exe
18:16:48.0697 4040  vds - ok
18:16:48.0780 4040  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
18:16:48.0783 4040  vga - ok
18:16:48.0801 4040  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
18:16:48.0803 4040  VgaSave - ok
18:16:48.0827 4040  [ C82E748660F62A242B2DFAC1442F22A4 ] vhdmp           C:\Windows\system32\DRIVERS\vhdmp.sys
18:16:48.0831 4040  vhdmp - ok
18:16:48.0871 4040  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\DRIVERS\viaide.sys
18:16:48.0873 4040  viaide - ok
18:16:48.0910 4040  [ 2B1A3DAE2B4E70DBBA822B7A03FBD4A3 ] volmgr          C:\Windows\system32\DRIVERS\volmgr.sys
18:16:48.0912 4040  volmgr - ok
18:16:48.0944 4040  [ 99B0CBB569CA79ACAED8C91461D765FB ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
18:16:48.0949 4040  volmgrx - ok
18:16:48.0993 4040  [ 9E425AC5C9A5A973273D169F43B4F5E1 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
18:16:48.0998 4040  volsnap - ok
18:16:49.0035 4040  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
18:16:49.0038 4040  vsmraid - ok
18:16:49.0220 4040  [ 787898BF9FB6D7BD87A36E2D95C899BA ] VSS             C:\Windows\system32\vssvc.exe
18:16:49.0260 4040  VSS - ok
18:16:49.0315 4040  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
18:16:49.0317 4040  vwifibus - ok
18:16:49.0401 4040  [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
18:16:49.0404 4040  vwififlt - ok
18:16:49.0432 4040  [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp         C:\Windows\system32\DRIVERS\vwifimp.sys
18:16:49.0433 4040  vwifimp - ok
18:16:49.0478 4040  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
18:16:49.0484 4040  W32Time - ok
18:16:49.0509 4040  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
18:16:49.0512 4040  WacomPen - ok
18:16:49.0546 4040  [ 47CA49400643EFFD3F1C9A27E1D69324 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
18:16:49.0549 4040  WANARP - ok
18:16:49.0554 4040  [ 47CA49400643EFFD3F1C9A27E1D69324 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
18:16:49.0555 4040  Wanarpv6 - ok
18:16:49.0734 4040  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
18:16:49.0804 4040  WatAdminSvc - ok
18:16:50.0201 4040  [ 5AB1BB85BD8B5089CC5D64200DEDAE68 ] wbengine        C:\Windows\system32\wbengine.exe
18:16:50.0256 4040  wbengine - ok
18:16:50.0302 4040  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
18:16:50.0313 4040  WbioSrvc - ok
18:16:50.0375 4040  [ DD1BAE8EBFC653824D29CCF8C9054D68 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
18:16:50.0384 4040  wcncsvc - ok
18:16:50.0415 4040  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
18:16:50.0420 4040  WcsPlugInService - ok
18:16:50.0471 4040  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\DRIVERS\wd.sys
18:16:50.0475 4040  Wd - ok
18:16:50.0535 4040  [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
18:16:50.0557 4040  Wdf01000 - ok
18:16:50.0615 4040  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
18:16:50.0621 4040  WdiServiceHost - ok
18:16:50.0628 4040  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
18:16:50.0631 4040  WdiSystemHost - ok
18:16:50.0655 4040  [ 733006127F235BE7C35354EBEE7B9A7B ] WebClient       C:\Windows\System32\webclnt.dll
18:16:50.0662 4040  WebClient - ok
18:16:50.0732 4040  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
18:16:50.0741 4040  Wecsvc - ok
18:16:50.0772 4040  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
18:16:50.0776 4040  wercplsupport - ok
18:16:50.0825 4040  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
18:16:50.0828 4040  WerSvc - ok
18:16:50.0879 4040  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
18:16:50.0881 4040  WfpLwf - ok
18:16:50.0937 4040  [ B14EF15BD757FA488F9C970EEE9C0D35 ] WimFltr         C:\Windows\system32\DRIVERS\wimfltr.sys
18:16:50.0940 4040  WimFltr - ok
18:16:50.0954 4040  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
18:16:50.0956 4040  WIMMount - ok
18:16:51.0012 4040  WinDefend - ok
18:16:51.0022 4040  WinHttpAutoProxySvc - ok
18:16:51.0077 4040  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
18:16:51.0081 4040  Winmgmt - ok
18:16:51.0182 4040  [ 41FBB751936B387F9179E7F03A74FE29 ] WinRM           C:\Windows\system32\WsmSvc.dll
18:16:51.0245 4040  WinRM - ok
18:16:51.0337 4040  [ 817EAFF5D38674EDD7713B9DFB8E9791 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
18:16:51.0340 4040  WinUsb - ok
18:16:51.0383 4040  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
18:16:51.0399 4040  Wlansvc - ok
18:16:51.0557 4040  [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc        C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
18:16:51.0559 4040  wlcrasvc - ok
18:16:51.0702 4040  [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
18:16:51.0776 4040  wlidsvc - ok
18:16:51.0816 4040  [ 13B0A570E1AE451C92DA550085D72CF3 ] wltrysvc        C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRYSVC.EXE
18:16:51.0818 4040  wltrysvc - ok
18:16:51.0890 4040  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\DRIVERS\wmiacpi.sys
18:16:51.0891 4040  WmiAcpi - ok
18:16:51.0929 4040  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
18:16:51.0933 4040  wmiApSrv - ok
18:16:51.0965 4040  WMPNetworkSvc - ok
18:16:52.0017 4040  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
18:16:52.0027 4040  WPCSvc - ok
18:16:52.0059 4040  [ 2E57DDF2880A7E52E76F41C7E96D327B ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
18:16:52.0063 4040  WPDBusEnum - ok
18:16:52.0080 4040  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
18:16:52.0082 4040  ws2ifsl - ok
18:16:52.0123 4040  [ 8F9F3969933C02DA96EB0F84576DB43E ] wscsvc          C:\Windows\system32\wscsvc.dll
18:16:52.0134 4040  wscsvc - ok
18:16:52.0141 4040  WSearch - ok
18:16:52.0277 4040  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
18:16:52.0359 4040  wuauserv - ok
18:16:52.0418 4040  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
18:16:52.0428 4040  WudfPf - ok
18:16:52.0485 4040  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
18:16:52.0490 4040  WUDFRd - ok
18:16:52.0506 4040  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
18:16:52.0510 4040  wudfsvc - ok
18:16:52.0568 4040  [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc         C:\Windows\System32\wwansvc.dll
18:16:52.0576 4040  WwanSvc - ok
18:16:52.0632 4040  [ DD0042F0C3B606A6A8B92D49AFB18AD6 ] YahooAUService  C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
18:16:52.0640 4040  YahooAUService - ok
18:16:52.0652 4040  ================ Scan global ===============================
18:16:52.0747 4040  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
18:16:52.0800 4040  [ 3FB74FF230B5D240A57AE1C4A3D0459D ] C:\Windows\system32\winsrv.dll
18:16:52.0811 4040  [ 3FB74FF230B5D240A57AE1C4A3D0459D ] C:\Windows\system32\winsrv.dll
18:16:52.0865 4040  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
18:16:52.0940 4040  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
18:16:52.0950 4040  [Global] - ok
18:16:52.0955 4040  ================ Scan MBR ==================================
18:16:52.0964 4040  [ CDB4DE4BBD714F152979DA2DCBEF57EB ] \Device\Harddisk0\DR0
18:16:55.0214 4040  \Device\Harddisk0\DR0 - ok
18:16:55.0214 4040  ================ Scan VBR ==================================
18:16:55.0241 4040  [ 844C807994E1622088C74B59ACA5FB41 ] \Device\Harddisk0\DR0\Partition1
18:16:55.0251 4040  \Device\Harddisk0\DR0\Partition1 - ok
18:16:55.0286 4040  [ 1346231EF6CE9544B0E0DD49F0AA655A ] \Device\Harddisk0\DR0\Partition2
18:16:55.0291 4040  \Device\Harddisk0\DR0\Partition2 - ok
18:16:55.0292 4040  ============================================================
18:16:55.0292 4040  Scan finished
18:16:55.0292 4040  ============================================================
18:16:55.0317 7044  Detected object count: 0
18:16:55.0317 7044  Actual detected object count: 0


#5 purplepandas28

purplepandas28
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:11:43 AM

Posted 28 April 2013 - 05:28 PM

# AdwCleaner v2.300 - Logfile created 04/28/2013 at 18:21:55
# Updated 28/04/2013 by Xplode
# Operating system : Windows 7 Home Premium  (64 bits)
# User : maegan - MAEGAN-PC
# Boot Mode : Normal
# Running from : C:\Users\maegan\Downloads\AdwCleaner.exe
# Option [Delete]
 
 
***** [Services] *****
 
Stopped & Deleted : CltMngSvc
 
***** [Files / Folders] *****
 
Deleted on reboot : C:\Users\maegan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjnnnhampgflieglcelomcofocioegp
File Deleted : C:\END
File Deleted : C:\Users\maegan\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_search.conduit.com_0.localstorage
File Deleted : C:\Users\maegan\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_search.conduit.com_0.localstorage-journal
Folder Deleted : C:\Program Files (x86)\Ask.com
Folder Deleted : C:\Program Files (x86)\SearchProtect
Folder Deleted : C:\ProgramData\Ask
Folder Deleted : C:\Users\Kelsey\AppData\LocalLow\AskToolbar
Folder Deleted : C:\Users\maegan\AppData\Local\APN
Folder Deleted : C:\Users\maegan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnjnnnhampgflieglcelomcofocioegp
Folder Deleted : C:\Users\maegan\AppData\LocalLow\AskToolbar
Folder Deleted : C:\Users\maegan\AppData\LocalLow\Conduit
Folder Deleted : C:\Users\maegan\AppData\Roaming\Conduit
Folder Deleted : C:\Users\maegan\AppData\Roaming\SearchProtect
Folder Deleted : C:\Windows\Installer\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
 
***** [Registry] *****
 
Key Deleted : HKCU\Software\APN
Key Deleted : HKCU\Software\AppDataLow\Software\AskToolbar
Key Deleted : HKCU\Software\AppDataLow\Software\Conduit
Key Deleted : HKCU\Software\AppDataLow\Software\SmartBar
Key Deleted : HKCU\Software\Ask.com
Key Deleted : HKCU\Software\Google\Chrome\Extensions\pnjnnnhampgflieglcelomcofocioegp
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{00000000-6E41-4FD3-8538-502F5495E5FC}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\grusskartencenter.com
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\grusskartencenter.com
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{79A765E1-C399-405B-85AF-466F52E918B0}
Key Deleted : HKCU\Software\SearchProtect
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40B7-AC73-056A5EBA4A7E}
Key Deleted : HKLM\Software\APN
Key Deleted : HKLM\Software\AskToolbar
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\GenericAskToolbar.DLL
Key Deleted : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd
Key Deleted : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd.1
Key Deleted : HKLM\Software\Classes\Installer\Features\A28B4D68DEBAA244EB686953B7074FEF
Key Deleted : HKLM\Software\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Key Deleted : HKLM\Software\SearchProtect
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{00000000-6E41-4FD3-8538-502F5495E5FC}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\pnjnnnhampgflieglcelomcofocioegp
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A28B4D68DEBAA244EB686953B7074FEF
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{00000000-6E41-4FD3-8538-502F5495E5FC}]
Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [searchprotect]
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [ApnUpdater]
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [SearchProtectAll]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{EF99BD32-C1FB-11D2-892F-0090271D4F88}]
 
***** [Internet Browsers] *****
 
-\\ Internet Explorer v9.0.8112.16476
 
[OK] Registry is clean.
 
-\\ Google Chrome v26.0.1410.64
 
File : C:\Users\maegan\AppData\Local\Google\Chrome\User Data\Default\Preferences
 
Deleted [l.34] : icon_url = "hxxp://search.conduit.com/fav.ico",
Deleted [l.37] : keyword = "search.conduit.com",
Deleted [l.41] : search_url = "hxxp://search.conduit.com/Results.aspx?q={searchTerms}&SearchSource=49&cui=UN12[...]
Deleted [l.42] : suggest_url = "hxxp://suggest.search.conduit.com/Suggest.ashx?q=[{searchTerms}]"
 
File : C:\Users\Kelsey\AppData\Local\Google\Chrome\User Data\Default\Preferences
 
[OK] File is clean.
 
*************************
 
AdwCleaner[S1].txt - [7394 octets] - [28/04/2013 18:21:55]
 
########## EOF - C:\AdwCleaner[S1].txt - [7454 octets] ##########


#6 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,072 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:11:43 AM

Posted 28 April 2013 - 07:59 PM

Tell me how it is after these.
 
First remove these thru Control Panel.
Java™ 6 Update 14 (64-bit) (Version: 6.0.140)
Java™ 6 Update 29 (Version: 6.0.290)
 
 
Update to Adobe Reader XI
 
OK run....
Please download TFC-Temp-File-Cleaner-

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#7 purplepandas28

purplepandas28
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:11:43 AM

Posted 28 April 2013 - 09:03 PM

C:\Program Files (x86)\Dell DataSafe Local Backup\hstart.exe a variant of Win32/HiddenStart.A application
C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\hstart.exe a variant of Win32/HiddenStart.A application
C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\UpdateWorkingDirectory\DSL\hstart.exe a variant of Win32/HiddenStart.A application
C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\UpdateWorkingDirectory\DSL\Components\DSUpdate\hstart.exe a variant of Win32/HiddenStart.A application
C:\Program Files (x86)\GridinSoft Trojan Killer\trojankiller.exe a variant of Win32/1AntiVirus application
 

It stopped on 99% for almost an hour so i hit stop and exported this text file of what it found.  Should I run it again (ESET)



#8 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,072 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:11:43 AM

Posted 28 April 2013 - 09:43 PM

Run it again


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#9 purplepandas28

purplepandas28
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:11:43 AM

Posted 30 April 2013 - 03:35 PM

C:\Program Files (x86)\Dell DataSafe Local Backup\hstart.exe a variant of Win32/HiddenStart.A application cleaned by deleting - quarantined
C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\hstart.exe a variant of Win32/HiddenStart.A application cleaned by deleting - quarantined
C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\UpdateWorkingDirectory\DSL\hstart.exe a variant of Win32/HiddenStart.A application cleaned by deleting - quarantined
C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\UpdateWorkingDirectory\DSL\Components\DSUpdate\hstart.exe a variant of Win32/HiddenStart.A application cleaned by deleting - quarantined
C:\Program Files (x86)\GridinSoft Trojan Killer\trojankiller.exe a variant of Win32/1AntiVirus application cleaned by deleting - quarantined
C:\Users\maegan\AppData\Local\{6f17c38f-690a-058e-09e0-3cc98c00d8ff}\U\00000004.@ Win64/Conedex.C trojan cleaned by deleting - quarantined
C:\Users\maegan\AppData\Local\{6f17c38f-690a-058e-09e0-3cc98c00d8ff}\U\00000008.@ Win64/Agent.BA trojan cleaned by deleting - quarantined
C:\Users\maegan\AppData\Local\{6f17c38f-690a-058e-09e0-3cc98c00d8ff}\U\000000cb.@ Win64/Conedex.B trojan cleaned by deleting - quarantined
C:\Users\maegan\AppData\Local\{6f17c38f-690a-058e-09e0-3cc98c00d8ff}\U\80000000.@ Win64/Sirefef.AW trojan cleaned by deleting - quarantined
C:\Users\maegan\AppData\Local\{6f17c38f-690a-058e-09e0-3cc98c00d8ff}\U\80000064.@ Win64/Sirefef.AN trojan cleaned by deleting - quarantined
C:\Users\maegan\Downloads\FlashPlayer_V.32764580c.exe multiple threats cleaned by deleting - quarantined
C:\Users\maegan\Downloads\FlashPlayer_V.32764687c.exe multiple threats cleaned by deleting - quarantined
C:\Users\maegan\Downloads\FlashPlayer_V.32764761c.exe multiple threats cleaned by deleting - quarantined
C:\Users\maegan\Downloads\mplayer.exe probably a variant of Win32/InstallIQ application cleaned by deleting - quarantined
C:\Users\maegan\Downloads\setup (1).exe a variant of Win32/AirAdInstaller.A application cleaned by deleting - quarantined
C:\Users\maegan\Downloads\setup (2).exe a variant of Win32/AirAdInstaller.A application cleaned by deleting - quarantined
C:\Users\maegan\Downloads\setup.exe a variant of Win32/AirAdInstaller.A application cleaned by deleting - quarantined
C:\Users\maegan\Downloads\Upgrade (1).exe a variant of Win32/AirAdInstaller.A application cleaned by deleting - quarantined
C:\Users\maegan\Downloads\Upgrade.exe a variant of Win32/AirAdInstaller.A application cleaned by deleting - quarantined
 

 

 

Took a very long time for this to run, over 24 hours.  I also started the TFC program but it never actually progressed anywhere.  I'm assuming it is supposed to have a green loading bar at the bottom of the screen while it is running and completing things?  It did say that is removed like 180,000 temp files from the computer and I restarted the computer but whenever I clicked on the box for the program it went into (not responding) and had me close out of the program. 



#10 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,072 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:11:43 AM

Posted 30 April 2013 - 03:45 PM

You had some ugly info stealing malwares. Try running TFC from Safe Mode.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#11 purplepandas28

purplepandas28
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:11:43 AM

Posted 30 April 2013 - 08:39 PM

How do I know if its running? Did I need to open it in safe mode with network?

#12 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,072 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:11:43 AM

Posted 30 April 2013 - 08:59 PM

You should see a progress bar.

Either safe mode or with networking

 

http://www.geekstogo.com/forum/files/file/187-tfc-temp-file-cleaner-by-oldtimer/  image here


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#13 purplepandas28

purplepandas28
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:11:43 AM

Posted 30 April 2013 - 09:32 PM

Ok, so it may just take a long time. Going on 2 hours at the moment and no progress bar has shown up but it sounds like the computer is working on something. Running it in safe mode right now. I will let it go over night and see what happens

#14 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,072 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:11:43 AM

Posted 30 April 2013 - 09:49 PM

The other option is to stop it  and run it  again.


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#15 purplepandas28

purplepandas28
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:11:43 AM

Posted 30 April 2013 - 11:05 PM

It has finally started showing some progress bars so I'm letting it run over night. Will i need to save a file or cy any results from this once it finishes?




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users