Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Having emails sent out from my Yahoo account


  • Please log in to reply
7 replies to this topic

#1 Melisae21

Melisae21

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Local time:09:13 PM

Posted 18 June 2013 - 04:13 PM

Hello!

 

I'm sorry to be any trouble, but I'm worried about the source of this happening. Basically, the situation is as follows:

 

I have a desktop and a laptop, both of them Dells. The desktop is pretty recent (under a year old), but I've had the laptop for three years. Last year, I had a virus problem on the laptop about a year ago - I am struggling to remember the name, but it was one which redirected my Google search results to harmful websites. The people here were hugely helpful and I was able to resolve the virus problem.

 

Yesterday around 1 PM while I was using my laptop, I got a call from my father who informed me that I had emailed him - and I discovered around 15 Mailer-Daemon rejections in my Yahoo inbox that were all sent around 12:30 PM, along with an email from "myself" with my own name as the Subject Heading. Nothing was in my Sent box aside from the email to myself. As a precaution, I immediately went to my desktop and changed the passwords for all of my accounts, including the Yahoo account.

 

Today, around 12:00, my mother informed me that she had gotten another email from "me" in the same manner. This time I have no mailer-daemon rejections and nothing appears in my sent box. I changed my alternate emails as well as my password and security questions again. I also changed the time to keep me logged in from one week to one day, if that is relevant.

 

The fact that it happened again makes me scared I may have a virus - on either the laptop or the desktop - but I am not sure if this is just a delayed consequence of the laptop virus last year or not.

 

Any help would be hugely appreciated.

 

Edit:

 

To add to my post, I have done searches on both computers with McAffe Anti-Virus, an updated Spybot, and an updated Malwarebytes, and all three have turned up nothing.


Edited by Melisae21, 18 June 2013 - 04:25 PM.


BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,440 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:13 AM

Posted 23 June 2013 - 10:15 PM

Ugghh

 

It did not post.. Simply put you got hit with a free ride. Someone lucky enough to have grabbed your email for a ride.  It will end in a few days as they move on. Spammers tend to abandon address books quickly, moving on to other lists and new targets.

You were a victim of email spoofing

 

 

Change your email password.

 

We can scan if you want to be sure you're not infected.

 

The other possibility is if you use a wireless router and that's not secure?


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 Melisae21

Melisae21
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Local time:09:13 PM

Posted 23 June 2013 - 11:07 PM

Thanks for the reply. :) I worry this might be a waste of your time, but I'd definitely appreciate any advice as to scanning besides the above-mentioned three (McAffe, Spybot, and Malwarebytes) unless you think those were sufficient.

 

It is admittedly very much a peace-of-mind issue - I use the laptop for both work and school, so I'd like to be sure I'm not giving anyone my other, more important passwords if an infection or keylog thing is how they got my Yahoo one - especially since they were able to send emails under my name on the second day even after I changed my passwords the first day, which freaked me out. 

 

I haven't gotten any bounce-backs or notices from friends/family since day #2 though.

 

As to the router, I do use a wireless one, but I'm not entirely certain of its security. Are there any steps I should take?


Edited by Melisae21, 23 June 2013 - 11:11 PM.


#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,440 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:13 AM

Posted 23 June 2013 - 11:34 PM

You're welcome. I'll check these tomorrow.

Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
Note: When using "Reset FF Proxy Settings" option Firefox should be closed.



Please Download TDSSkiller
Launch it.
Click on change parameters-Select TDLFS file system
Click on "Scan".
Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results.



Please download AdwCleaner by Xplode onto your desktop.
Close all open programs and internet browsers.
Double click on adwcleaner.exe to run the tool.
Click on Delete.
Confirm each time with Ok.
You will be prompted to restart your computer. A text file will open after the restart.
Please post the contents of that logfile with your next reply.
You can find the logfile at C:\AdwCleaner[S1].txt as well.



Last run ESET.
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
  • Scan potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE:Sometimes if ESET finds no infections it will not create a log.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#5 Melisae21

Melisae21
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Local time:09:13 PM

Posted 24 June 2013 - 10:45 AM

Hrm, alright... Here are the results. ESET caught 5 things, all of them "a variant of Win32/HiddenStart.A application," which was an unhappy surprise. Below are all of the requested logs. :)

 

MiniToolBox:

MiniToolBox by Farbar  Version: 16-06-2013
Ran by Tenken (administrator) on 23-06-2013 at 21:47:11
Running from "C:\Users\Tenken\Desktop"
Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************
 
========================= Flush DNS: ===================================
 
Windows IP Configuration
 
Successfully flushed the DNS Resolver Cache.
 
========================= IE Proxy Settings: ============================== 
 
Proxy is not enabled.
No Proxy Server is set.
 
"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================
 
127.0.0.1       localhost
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
 
There are 15439 more lines starting with "127.0.0.1"
 
========================= IP Configuration: ================================
 
Dell Wireless 1397 WLAN Mini-Card = Wireless Network Connection (Connected)
Hamachi Network Interface = Hamachi (Connected)
Marvell Yukon 88E8040 PCI-E Fast Ethernet Controller = Local Area Connection (Media disconnected)
 
 
# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4
 
reset
set global icmpredirects=enabled
add route prefix=0.0.0.0/0 interface="ethernet_13" nexthop=25.0.0.1 publish=Yes
add route prefix=0.0.0.0/0 interface="Hamachi" nexthop=25.0.0.1 publish=Yes
set interface interface="ethernet_13" forwarding=disabled advertise=disabled metric=9000 siteprefixlength=0 nud=disabled routerdiscovery=disabled managedaddress=disabled otherstateful=disabled weakhostsend=disabled weakhostreceive=disabled ignoredefaultroutes=disabled advertisedrouterlifetime=0 advertisedefaultroute=disabled currenthoplimit=0 forcearpndwolpattern=disabled enabledirectedmacwolpattern=disabled
set interface interface="Hamachi" forwarding=disabled advertise=disabled metric=9000 siteprefixlength=0 nud=disabled routerdiscovery=disabled managedaddress=disabled otherstateful=disabled weakhostsend=disabled weakhostreceive=disabled ignoredefaultroutes=disabled advertisedrouterlifetime=0 advertisedefaultroute=disabled currenthoplimit=0 forcearpndwolpattern=disabled enabledirectedmacwolpattern=disabled
 
 
popd
# End of IPv4 configuration
 
 
 
Windows IP Configuration
 
   Host Name . . . . . . . . . . . . : Tenken-PC
   Primary Dns Suffix  . . . . . . . : 
   Node Type . . . . . . . . . . . . : Peer-Peer
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
 
Wireless LAN adapter Wireless Network Connection:
 
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Dell Wireless 1397 WLAN Mini-Card
   Physical Address. . . . . . . . . : 70-F1-A1-D5-AD-54
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::b4b6:2971:18b7:989f%11(Preferred) 
   IPv4 Address. . . . . . . . . . . : 192.168.1.6(Preferred) 
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Sunday, June 23, 2013 8:31:48 AM
   Lease Expires . . . . . . . . . . : Monday, June 24, 2013 8:31:48 PM
   Default Gateway . . . . . . . . . : 192.168.1.1
   DHCP Server . . . . . . . . . . . : 192.168.1.1
   DHCPv6 IAID . . . . . . . . . . . : 191951265
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-13-D7-3B-A4-A4-BA-DB-D7-B2-58
   DNS Servers . . . . . . . . . . . : 192.168.1.1
   NetBIOS over Tcpip. . . . . . . . : Enabled
 
Ethernet adapter Local Area Connection:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Marvell Yukon 88E8040 PCI-E Fast Ethernet Controller
   Physical Address. . . . . . . . . : A4-BA-DB-D7-B2-58
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Ethernet adapter Hamachi:
 
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Hamachi Network Interface
   Physical Address. . . . . . . . . : 7A-79-19-28-5B-40
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2620:9b::1928:5b40(Preferred) 
   Link-local IPv6 Address . . . . . : fe80::7478:4c04:bae7:d4e1%48(Preferred) 
   IPv4 Address. . . . . . . . . . . : 25.40.91.64(Preferred) 
   Subnet Mask . . . . . . . . . . . : 255.0.0.0
   Lease Obtained. . . . . . . . . . : Thursday, June 20, 2013 7:54:10 AM
   Lease Expires . . . . . . . . . . : Monday, June 23, 2014 8:31:41 AM
   Default Gateway . . . . . . . . . : 2620:9b::1900:1
                                       25.0.0.1
   DHCP Server . . . . . . . . . . . : 25.0.0.1
   DHCPv6 IAID . . . . . . . . . . . : 964327860
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-13-D7-3B-A4-A4-BA-DB-D7-B2-58
   DNS Servers . . . . . . . . . . . : fec0:0:0:ffff::1%1
                                       fec0:0:0:ffff::2%1
                                       fec0:0:0:ffff::3%1
   NetBIOS over Tcpip. . . . . . . . : Enabled
 
Tunnel adapter isatap.{52B171E3-2175-4644-9001-7F1FD13172C3}:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter isatap.{92A3D188-D805-44A3-BE11-C1C3EBB04140}:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #5
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter Local Area Connection* 35:
 
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:9d38:6ab8:cf6:746:b359:3ff3(Preferred) 
   Link-local IPv6 Address . . . . . : fe80::cf6:746:b359:3ff3%45(Preferred) 
   Default Gateway . . . . . . . . . : 
   NetBIOS over Tcpip. . . . . . . . : Disabled
 
Tunnel adapter isatap.{C86B9A39-22B0-47C8-9243-7A0728966C82}:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #6
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
Server:  UnKnown
Address:  192.168.1.1
 
Name:    google.com
Addresses:  2607:f8b0:4010:801::100e
 74.125.239.104
 74.125.239.105
 74.125.239.110
 74.125.239.96
 74.125.239.97
 74.125.239.98
 74.125.239.99
 74.125.239.100
 74.125.239.101
 74.125.239.102
 74.125.239.103
 
 
Pinging google.com [74.125.239.110] with 32 bytes of data:
Reply from 74.125.239.110: bytes=32 time=323ms TTL=53
Reply from 74.125.239.110: bytes=32 time=19ms TTL=53
 
Ping statistics for 74.125.239.110:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 19ms, Maximum = 323ms, Average = 171ms
Server:  UnKnown
Address:  192.168.1.1
 
Name:    yahoo.com
Addresses:  98.138.253.109
 98.139.183.24
 206.190.36.45
 
 
Pinging yahoo.com [206.190.36.45] with 32 bytes of data:
Reply from 206.190.36.45: bytes=32 time=127ms TTL=48
Reply from 206.190.36.45: bytes=32 time=67ms TTL=48
 
Ping statistics for 206.190.36.45:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 67ms, Maximum = 127ms, Average = 97ms
 
Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
 
Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 11...70 f1 a1 d5 ad 54 ......Dell Wireless 1397 WLAN Mini-Card
 10...a4 ba db d7 b2 58 ......Marvell Yukon 88E8040 PCI-E Fast Ethernet Controller
 48...7a 79 19 28 5b 40 ......Hamachi Network Interface
  1...........................Software Loopback Interface 1
 49...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
 46...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #5
 45...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
 47...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #6
===========================================================================
 
IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0         25.0.0.1      25.40.91.64   9256
          0.0.0.0          0.0.0.0      192.168.1.1      192.168.1.6     25
         25.0.0.0        255.0.0.0         On-link       25.40.91.64   9256
      25.40.91.64  255.255.255.255         On-link       25.40.91.64   9256
   25.255.255.255  255.255.255.255         On-link       25.40.91.64   9256
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.1.0    255.255.255.0         On-link       192.168.1.6    281
      192.168.1.6  255.255.255.255         On-link       192.168.1.6    281
    192.168.1.255  255.255.255.255         On-link       192.168.1.6    281
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link       25.40.91.64   9256
        224.0.0.0        240.0.0.0         On-link       192.168.1.6    281
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link       25.40.91.64   9256
  255.255.255.255  255.255.255.255         On-link       192.168.1.6    281
===========================================================================
Persistent Routes:
  Network Address          Netmask  Gateway Address  Metric
          0.0.0.0          0.0.0.0         25.0.0.1  Default 
          0.0.0.0          0.0.0.0         25.0.0.1  Default 
===========================================================================
 
IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
 48   9020 ::/0                     2620:9b::1900:1
  1    306 ::1/128                  On-link
 45     58 2001::/32                On-link
 45    306 2001:0:9d38:6ab8:cf6:746:b359:3ff3/128
                                    On-link
 48    276 2620:9b::/96             On-link
 48    276 2620:9b::1928:5b40/128   On-link
 48    276 fe80::/64                On-link
 11    281 fe80::/64                On-link
 45    306 fe80::/64                On-link
 45    306 fe80::cf6:746:b359:3ff3/128
                                    On-link
 48    276 fe80::7478:4c04:bae7:d4e1/128
                                    On-link
 11    281 fe80::b4b6:2971:18b7:989f/128
                                    On-link
  1    306 ff00::/8                 On-link
 45    306 ff00::/8                 On-link
 48    276 ff00::/8                 On-link
 11    281 ff00::/8                 On-link
===========================================================================
Persistent Routes:
 If Metric Network Destination      Gateway
  0 4294967295 2620:9b::/96             On-link
  0   9000 ::/0                     2620:9b::500:1
  0 4294967295 2620:9b::/96             On-link
  0   9000 ::/0                     2620:9b::1900:1
===========================================================================
========================= Winsock entries =====================================
 
Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (06/23/2013 10:42:43 AM) (Source: Customer Experience Improvement Program) (User: )
Description: 80004005
 
Error: (06/22/2013 04:51:08 PM) (Source: Customer Experience Improvement Program) (User: )
Description: 80004005
 
Error: (06/22/2013 04:15:06 PM) (Source: McLogEvent) (User: NT AUTHORITY)
Description: A thread in process C:\Program Files\Common Files\McAfee\SystemCore\mcshield.exe took longer than 90000 ms to complete a request.
 
The process will be terminated.
Thread id : 4024 (0xfb8)
 
Thread address : 0x000000007758138A
 
Thread message : 
 
 Build VSCORE.15.1.0.520 / 5500.1093
 Object being scanned = \Device\HarddiskVolume3\Windows\System32\netshell.dll
 by C:\Windows\system32\svchost.exe
 4(0)(0)
 4(0)(0)
 7200(0)(0)
 7595(0)(0)
 7005(0)(0)
 7004(0)(0)
 5006(0)(0)
 5004(0)(0)
 
Error: (06/21/2013 07:28:47 AM) (Source: Customer Experience Improvement Program) (User: )
Description: 80004005
 
Error: (06/20/2013 07:16:40 PM) (Source: PC-Doctor) (User: )
Description: (9048) Asapi: (19:16:40:2960)(9048) enumerator - Error -- 118 pcdrsysinfodirect: Module timed out after 14117137 milliseconds and was terminated
 
Error: (06/20/2013 07:16:40 PM) (Source: PC-Doctor) (User: )
Description: (9048) Asapi: (19:16:40:1400)(9048) Matrix.ModuleImp - Error -- 52 Unable to get information from module due to failed exec.
 
Error: (06/20/2013 07:16:40 PM) (Source: PC-Doctor) (User: )
Description: (9048) Asapi: (19:16:40:1250)(9048) libCommon.System.Windows - Error -- 720 execAndGetPipeData(./pcdrsysinfodirect.p5x) readFromPipeTimed failed, killing: 6236
 
Error: (06/20/2013 07:16:36 PM) (Source: PC-Doctor) (User: )
Description: (9048) Asapi: (19:16:35:6160)(9048) libCommon.System.Windows - Error -- 590 readFromPipeTimed(2844) child process 6236 exited with return code: 259
 
Error: (06/20/2013 09:48:41 AM) (Source: Customer Experience Improvement Program) (User: )
Description: 80004005
 
Error: (06/18/2013 08:43:02 AM) (Source: Customer Experience Improvement Program) (User: )
Description: 80004005
 
 
System errors:
=============
Error: (06/23/2013 11:43:50 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x80070643: Definition Update for Windows Defender - KB915597 (Definition 1.153.318.0).
 
Error: (06/23/2013 11:43:36 AM) (Source: Service Control Manager) (User: )
Description: The Windows Defender service terminated with the following error: 
%%126
 
Error: (06/23/2013 08:31:29 AM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Dnscache service.
 
Error: (06/23/2013 05:27:32 AM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the SftService service.
 
Error: (06/23/2013 05:27:32 AM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the PlugPlay service.
 
Error: (06/22/2013 04:27:01 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x80070643: Definition Update for Windows Defender - KB915597 (Definition 1.153.318.0).
 
Error: (06/22/2013 04:26:35 PM) (Source: Service Control Manager) (User: )
Description: The Windows Defender service terminated with the following error: 
%%126
 
Error: (06/22/2013 04:15:20 PM) (Source: Service Control Manager) (User: )
Description: The McAfee McShield service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 5000 milliseconds: Restart the service.
 
Error: (06/22/2013 04:15:01 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the ShellHWDetection service.
 
Error: (06/21/2013 07:16:03 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x80070643: Definition Update for Windows Defender - KB915597 (Definition 1.153.318.0).
 
 
Microsoft Office Sessions:
=========================
Error: (06/23/2013 10:42:43 AM) (Source: Customer Experience Improvement Program)(User: )
Description: 80004005
 
Error: (06/22/2013 04:51:08 PM) (Source: Customer Experience Improvement Program)(User: )
Description: 80004005
 
Error: (06/22/2013 04:15:06 PM) (Source: McLogEvent)(User: NT AUTHORITY)
Description: C:\Program Files\Common Files\McAfee\SystemCore\mcshield.exe900004024 (0xfb8)0x000000007758138A
 Build VSCORE.15.1.0.520 / 5500.1093
 Object being scanned = \Device\HarddiskVolume3\Windows\System32\netshell.dll
 by C:\Windows\system32\svchost.exe
 4(0)(0)
 4(0)(0)
 7200(0)(0)
 7595(0)(0)
 7005(0)(0)
 7004(0)(0)
 5006(0)(0)
 5004(0)(0)
 
Error: (06/21/2013 07:28:47 AM) (Source: Customer Experience Improvement Program)(User: )
Description: 80004005
 
Error: (06/20/2013 07:16:40 PM) (Source: PC-Doctor)(User: )
Description: (9048) Asapi: (19:16:40:2960)(9048) enumerator - Error -- 118 pcdrsysinfodirect: Module timed out after 14117137 milliseconds and was terminated
 
Error: (06/20/2013 07:16:40 PM) (Source: PC-Doctor)(User: )
Description: (9048) Asapi: (19:16:40:1400)(9048) Matrix.ModuleImp - Error -- 52 Unable to get information from module due to failed exec.
 
Error: (06/20/2013 07:16:40 PM) (Source: PC-Doctor)(User: )
Description: (9048) Asapi: (19:16:40:1250)(9048) libCommon.System.Windows - Error -- 720 execAndGetPipeData(./pcdrsysinfodirect.p5x) readFromPipeTimed failed, killing: 6236
 
Error: (06/20/2013 07:16:36 PM) (Source: PC-Doctor)(User: )
Description: (9048) Asapi: (19:16:35:6160)(9048) libCommon.System.Windows - Error -- 590 readFromPipeTimed(2844) child process 6236 exited with return code: 259
 
Error: (06/20/2013 09:48:41 AM) (Source: Customer Experience Improvement Program)(User: )
Description: 80004005
 
Error: (06/18/2013 08:43:02 AM) (Source: Customer Experience Improvement Program)(User: )
Description: 80004005
 
 
CodeIntegrity Errors:
===================================
  Date: 2013-06-17 13:34:33.390
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Common Files\mcafee\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-06-17 13:34:33.390
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Common Files\mcafee\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-06-17 13:34:33.390
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Common Files\mcafee\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-06-11 10:49:44.066
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Common Files\mcafee\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-06-11 10:49:44.062
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Common Files\mcafee\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-06-11 10:49:44.057
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Common Files\mcafee\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.
 
 
=========================== Installed Programs ============================
 
“Œ•û_—ì•_ ‘ÌŒ±”Å ver 0.01a
“Œ•ûSãY˜O
Adobe AIR (Version: 2.5.1.17730)
Adobe Flash Player 11 ActiveX (Version: 11.7.700.224)
Adobe Flash Player 11 Plugin (Version: 11.7.700.224)
Adobe Reader X (10.1.7) (Version: 10.1.7)
Advanced Audio FX Engine (Version: 1.12.05)
AIM 7
Banctec Service Agreement (Version: 2.0.0)
Bandisoft MPEG-1 Decoder
Bastion
Best Authority (Version: 2.7.200)
Best Authority Setup (Version: 2.7.200)
BitRaider Web Client (Version: 1.1.3.1)
Brother MFL-Pro Suite MFC-J615W (Version: 1.0.4.0)
Build Your Own Net Dream (remove only)
BYOND (Version: 498.1150)
Castle Crashers
Cave Story+
CCleaner (Version: 3.26)
Cisco EAP-FAST Module (Version: 2.2.14)
Cisco LEAP Module (Version: 1.0.19)
Cisco PEAP Module (Version: 1.1.6)
D3DX10 (Version: 15.4.2368.0902)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
Dell DataSafe Local Backup - Support Software (Version: 9.4.60)
Dell DataSafe Local Backup (Version: 9.4.60)
Dell DataSafe Online (Version: 1.2.0011)
Dell Dock (Version: 2.0)
Dell Edoc Viewer (Version: 1.0.0)
Dell Getting Started Guide (Version: 1.00.0000)
Dell Support Center (Version: 3.0.5744.02)
Dell Touchpad (Version: 13.2.3.0)
Dell Webcam Central (Version: 1.40.05)
Dell Wireless WLAN Card Utility (Version: 5.30.21.0)
DFOLauncher
Download Updater (AOL LLC)
Dropbox (Version: 1.6.18)
Dungeon Defenders
Dungeon Fighter Online
Eden Eternal
Elsword version 1.35 (Version: 1.35)
ESET Online Scanner v3
ƒOƒŠ[ƒtƒVƒ“ƒhƒ[ƒ€
GIMP 2.6.10 (Version: 2.6.10)
Google Chrome (Version: 27.0.1453.116)
GoToAssist 8.0.0.514
HiJackThis (Version: 1.0.0)
HL-2270DW (Version: 1.0.5.0)
Intel® Graphics Media Accelerator Driver (Version: 8.15.10.1994)
Intel® Matrix Storage Manager
Java 7 Update 21 (Version: 7.0.210)
Java Auto Updater (Version: 2.1.9.5)
Java™ 6 Update 20 (64-bit) (Version: 6.0.200)
Java™ 6 Update 31 (Version: 6.0.310)
Junk Mail filter update (Version: 15.4.3502.0922)
KeyHoleTV
LibUSB-Win32-0.1.10.1 (Version: 0.1.10.1)
Live! Cam Avatar Creator (Version: 4.6.3009.1)
LogMeIn Hamachi (Version: 2.1.0.362)
LoJack Factory Installer (Version: 1.0.0)
Malwarebytes Anti-Malware version 1.75.0.1300 (Version: 1.75.0.1300)
McAfee SecurityCenter (Version: 11.6.511)
Media Player Classic - Home Cinema v. 1.3.1249.0
Messenger Plus! 5 (Version: 5.11.0.760)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft IntelliPoint 8.2 (Version: 8.20.468.0)
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Home and Student 2010 (Version: 14.0.6029.1000)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.6029.1000)
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Single Image 2010 (Version: 14.0.6029.1000)
Microsoft Office Word MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Search Enhancement Pack (Version: 3.0.133.0)
Microsoft Silverlight (Version: 5.1.20125.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable - KB2467175 (Version: 8.0.51011)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.58299)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (Version: 8.0.51011)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft XNA Framework Redistributable 3.1 (Version: 3.1.10527.0)
Microsoft XNA Framework Redistributable 4.0 (Version: 4.0.20823.0)
mIRC (Version: 7.29)
MotioninJoy DS3 driver version 0.6.0005 (Version: 0.6.0005)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Nexon Game Manager
NVIDIA PhysX (Version: 9.12.1031)
OKI Color Swatch Utility (Version: 2.15.0000)
OKI Network Extension (Version: 1.00.000)
Pando Media Booster (Version: 2.6.0.1)
PaperPort Image Printer 64-bit (Version: 1.00.0000)
Penny Arcade's On the Rain-Slick Precipice of Darkness 3
Pidgin (Version: 2.10.7)
Plants vs. Zombies: Game of the Year
Portal
Portal 2
PowerDVD DX (Version: 8.3.6029)
Quickset64 (Version: 9.6.6)
Recettear: An Item Shop's Tale
Revo Uninstaller 1.93 (Version: 1.93)
Roxio Burn (Version: 1.01)
RPG MAKER VX Ace RTP (Version: 1.00)
ScanSoft PaperPort 11 (Version: 11.2.0000)
Shared C Run-time for x64 (Version: 10.0.0)
Skype Toolbars (Version: 1.0.4051)
Skype™ 5.10 (Version: 5.10.116)
SofTest (Version: 10.0.1115)
SofTest 11.0 (Version: 1.0.0)
Spybot - Search & Destroy (Version: 1.6.2)
Steam (Version: 1.0.0.0)
System Requirements Lab
System Requirements Lab CYRI (Version: 4.5.1.0)
System Requirements Lab for Intel (Version: 4.5.13.0)
Terraria
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2836939) (Version: 1)
Update for Microsoft Office 2010 (KB2494150)
Update for Microsoft Office 2010 (KB2553065)
Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553378) 32-Bit Edition
Update for Microsoft Office 2010 (KB2566458)
Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition
Update for Microsoft Office 2010 (KB2598242) 32-Bit Edition
Update for Microsoft Office 2010 (KB2687503) 32-Bit Edition
Update for Microsoft Office 2010 (KB2687509) 32-Bit Edition
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition
Update for Microsoft Office 2010 (KB2767886) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2597090) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2687623) 32-Bit Edition
Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition
Update for Microsoft PowerPoint 2010 (KB2598240) 32-Bit Edition
Update for Microsoft SharePoint Workspace 2010 (KB2589371) 32-Bit Edition
Vindictus
VZAccess Manager (Version: 7.3.5.1)
WildTangent Games (Version: 1.0.0.71)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3555.0308)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3555.0308)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live Sync (Version: 14.0.8089.726)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
WinPatrol (Version: 28.1.2013.0)
WinRAR archiver
ZTE USB Drivers (Version: 1.0.008)
 
========================= Memory info: ===================================
 
Percentage of memory in use: 53%
Total physical RAM: 4056.36 MB
Available physical RAM: 1869.78 MB
Total Pagefile: 8110.91 MB
Available Pagefile: 5568.21 MB
Total Virtual: 4095.88 MB
Available Virtual: 3958.77 MB
 
========================= Partitions: =====================================
 
1 Drive c: (OS) (Fixed) (Total:451.07 GB) (Free:336.66 GB) NTFS
 
========================= Users: ========================================
 
User accounts for \\Tenken-PC
 
Administrator            Guest                    Tenken            
 
 
**** End of log ****
 

TDSSKiller:

21:53:41.0088 174224  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
21:53:42.0595 174224  ============================================================
21:53:42.0596 174224  Current date / time: 2013/06/23 21:53:42.0595
21:53:42.0596 174224  SystemInfo:
21:53:42.0596 174224  
21:53:42.0596 174224  OS Version: 6.1.7601 ServicePack: 1.0
21:53:42.0596 174224  Product type: Workstation
21:53:42.0596 174224  ComputerName: Tenken-PC
21:53:42.0596 174224  UserName: Tenken
21:53:42.0596 174224  Windows directory: C:\Windows
21:53:42.0596 174224  System windows directory: C:\Windows
21:53:42.0596 174224  Running under WOW64
21:53:42.0596 174224  Processor architecture: Intel x64
21:53:42.0596 174224  Number of processors: 2
21:53:42.0596 174224  Page size: 0x1000
21:53:42.0596 174224  Boot type: Normal boot
21:53:42.0597 174224  ============================================================
21:53:43.0426 174224  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
21:53:43.0432 174224  ============================================================
21:53:43.0432 174224  \Device\Harddisk0\DR0:
21:53:43.0432 174224  MBR partitions:
21:53:43.0432 174224  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x14000, BlocksNum 0x1D4C000
21:53:43.0432 174224  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1D60000, BlocksNum 0x38625830
21:53:43.0432 174224  ============================================================
21:53:43.0454 174224  C: <-> \Device\Harddisk0\DR0\Partition2
21:53:43.0533 174224  ============================================================
21:53:43.0534 174224  Initialize success
21:53:43.0534 174224  ============================================================
21:54:23.0769 184992  ============================================================
21:54:23.0769 184992  Scan started
21:54:23.0769 184992  Mode: Manual; TDLFS; 
21:54:23.0769 184992  ============================================================
21:54:25.0454 184992  ================ Scan system memory ========================
21:54:25.0454 184992  System memory - ok
21:54:25.0454 184992  ================ Scan services =============================
21:54:25.0703 184992  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
21:54:25.0812 184992  1394ohci - ok
21:54:25.0890 184992  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
21:54:25.0890 184992  ACPI - ok
21:54:25.0937 184992  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
21:54:26.0062 184992  AcpiPmi - ok
21:54:26.0343 184992  [ ADDA5E1951B90D3D23C56D3CF0622ADC ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
21:54:26.0358 184992  AdobeARMservice - ok
21:54:26.0561 184992  [ 9915504F602D277EE47FD843A677FD15 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
21:54:26.0561 184992  AdobeFlashPlayerUpdateSvc - ok
21:54:26.0670 184992  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
21:54:26.0686 184992  adp94xx - ok
21:54:26.0826 184992  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
21:54:26.0842 184992  adpahci - ok
21:54:26.0873 184992  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
21:54:26.0873 184992  adpu320 - ok
21:54:26.0920 184992  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
21:54:26.0920 184992  AeLookupSvc - ok
21:54:27.0123 184992  [ A6FB9DB8F1A86861D955FD6975977AE0 ] AESTFilters     C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_7f58c91b65c73836\AESTSr64.exe
21:54:27.0123 184992  AESTFilters - ok
21:54:27.0185 184992  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD             C:\Windows\system32\drivers\afd.sys
21:54:27.0201 184992  AFD - ok
21:54:27.0279 184992  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\drivers\agp440.sys
21:54:27.0279 184992  agp440 - ok
21:54:27.0357 184992  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
21:54:27.0357 184992  ALG - ok
21:54:27.0466 184992  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\drivers\aliide.sys
21:54:27.0466 184992  aliide - ok
21:54:27.0497 184992  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\drivers\amdide.sys
21:54:27.0497 184992  amdide - ok
21:54:27.0575 184992  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
21:54:27.0591 184992  AmdK8 - ok
21:54:27.0606 184992  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
21:54:27.0622 184992  AmdPPM - ok
21:54:27.0731 184992  [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
21:54:27.0825 184992  amdsata - ok
21:54:27.0856 184992  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
21:54:27.0872 184992  amdsbs - ok
21:54:27.0903 184992  [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
21:54:28.0012 184992  amdxata - ok
21:54:28.0137 184992  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\Windows\system32\drivers\appid.sys
21:54:28.0215 184992  AppID - ok
21:54:28.0277 184992  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
21:54:28.0277 184992  AppIDSvc - ok
21:54:28.0324 184992  [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo         C:\Windows\System32\appinfo.dll
21:54:28.0324 184992  Appinfo - ok
21:54:28.0449 184992  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\DRIVERS\arc.sys
21:54:28.0449 184992  arc - ok
21:54:28.0480 184992  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
21:54:28.0496 184992  arcsas - ok
21:54:28.0698 184992  [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
21:54:28.0761 184992  aspnet_state - ok
21:54:28.0808 184992  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
21:54:28.0808 184992  AsyncMac - ok
21:54:28.0870 184992  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\drivers\atapi.sys
21:54:28.0870 184992  atapi - ok
21:54:28.0979 184992  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
21:54:28.0995 184992  AudioEndpointBuilder - ok
21:54:29.0010 184992  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
21:54:29.0010 184992  AudioSrv - ok
21:54:29.0073 184992  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\Windows\System32\AxInstSV.dll
21:54:29.0073 184992  AxInstSV - ok
21:54:29.0120 184992  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
21:54:29.0135 184992  b06bdrv - ok
21:54:29.0229 184992  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
21:54:29.0229 184992  b57nd60a - ok
21:54:29.0291 184992  [ E001DD475A7C27EBE5A0DB45C11BAD71 ] BCM42RLY        C:\Windows\system32\drivers\BCM42RLY.sys
21:54:29.0416 184992  BCM42RLY - ok
21:54:29.0603 184992  [ 37394D3553E220FB732C21E217E1BD8B ] BCM43XX         C:\Windows\system32\DRIVERS\bcmwl664.sys
21:54:29.0681 184992  BCM43XX - ok
21:54:29.0744 184992  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
21:54:29.0759 184992  BDESVC - ok
21:54:29.0853 184992  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
21:54:29.0853 184992  Beep - ok
21:54:29.0915 184992  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE             C:\Windows\System32\bfe.dll
21:54:29.0931 184992  BFE - ok
21:54:30.0024 184992  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\Windows\system32\qmgr.dll
21:54:30.0040 184992  BITS - ok
21:54:30.0087 184992  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
21:54:30.0087 184992  blbdrive - ok
21:54:30.0180 184992  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
21:54:30.0321 184992  bowser - ok
21:54:30.0414 184992  BRDriver64 - ok
21:54:30.0477 184992  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
21:54:30.0492 184992  BrFiltLo - ok
21:54:30.0524 184992  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
21:54:30.0539 184992  BrFiltUp - ok
21:54:30.0633 184992  [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP        C:\Windows\system32\DRIVERS\bridge.sys
21:54:30.0633 184992  BridgeMP - ok
21:54:30.0695 184992  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\Windows\System32\browser.dll
21:54:30.0695 184992  Browser - ok
21:54:30.0726 184992  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
21:54:30.0742 184992  Brserid - ok
21:54:30.0804 184992  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
21:54:30.0820 184992  BrSerWdm - ok
21:54:30.0914 184992  [ 167E891A9CE39374E5F1785B0ADC314E ] BRSptSvc        C:\programdata\bitraider\BRSptSvc.exe
21:54:30.0929 184992  BRSptSvc - ok
21:54:31.0007 184992  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
21:54:31.0007 184992  BrUsbMdm - ok
21:54:31.0054 184992  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
21:54:31.0070 184992  BrUsbSer - ok
21:54:31.0210 184992  [ EA7E57F87D6FEE5FD6C5F813C04E8CD2 ] BrYNSvc         C:\Program Files (x86)\Browny02\BrYNSvc.exe
21:54:31.0210 184992  BrYNSvc - ok
21:54:31.0241 184992  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
21:54:31.0257 184992  BTHMODEM - ok
21:54:31.0335 184992  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
21:54:31.0335 184992  bthserv - ok
21:54:31.0366 184992  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
21:54:31.0366 184992  cdfs - ok
21:54:31.0475 184992  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\Windows\system32\drivers\cdrom.sys
21:54:31.0522 184992  cdrom - ok
21:54:31.0569 184992  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\Windows\System32\certprop.dll
21:54:31.0569 184992  CertPropSvc - ok
21:54:31.0616 184992  [ D2B3252AD4EB499C935A56467997AA3C ] cfwids          C:\Windows\system32\drivers\cfwids.sys
21:54:31.0725 184992  cfwids - ok
21:54:31.0772 184992  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
21:54:31.0787 184992  circlass - ok
21:54:31.0881 184992  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
21:54:31.0896 184992  CLFS - ok
21:54:31.0959 184992  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:54:31.0974 184992  clr_optimization_v2.0.50727_32 - ok
21:54:32.0146 184992  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
21:54:32.0146 184992  clr_optimization_v2.0.50727_64 - ok
21:54:32.0240 184992  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
21:54:32.0427 184992  clr_optimization_v4.0.30319_32 - ok
21:54:32.0474 184992  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
21:54:32.0536 184992  clr_optimization_v4.0.30319_64 - ok
21:54:32.0583 184992  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
21:54:32.0598 184992  CmBatt - ok
21:54:32.0645 184992  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\drivers\cmdide.sys
21:54:32.0661 184992  cmdide - ok
21:54:32.0723 184992  [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG             C:\Windows\system32\Drivers\cng.sys
21:54:32.0817 184992  CNG - ok
21:54:32.0848 184992  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
21:54:32.0848 184992  Compbatt - ok
21:54:32.0942 184992  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
21:54:33.0004 184992  CompositeBus - ok
21:54:33.0020 184992  COMSysApp - ok
21:54:33.0160 184992  [ 3CA734CE373E5675FBC15CA2C45228E5 ] cpudrv64        C:\Program Files (x86)\SystemRequirementsLab\cpudrv64.sys
21:54:33.0207 184992  cpudrv64 - ok
21:54:33.0238 184992  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
21:54:33.0238 184992  crcdisk - ok
21:54:33.0285 184992  [ D8129C49798CBBFB2E4351D4B7B8EF9C ] CryptSvc        C:\Windows\system32\cryptsvc.dll
21:54:33.0300 184992  CryptSvc - ok
21:54:33.0378 184992  [ ED5CF92396A62F4C15110DCDB5E854D9 ] CtClsFlt        C:\Windows\system32\DRIVERS\CtClsFlt.sys
21:54:33.0488 184992  CtClsFlt - ok
21:54:33.0550 184992  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\Windows\system32\rpcss.dll
21:54:33.0550 184992  DcomLaunch - ok
21:54:33.0644 184992  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
21:54:33.0644 184992  defragsvc - ok
21:54:33.0690 184992  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
21:54:33.0800 184992  DfsC - ok
21:54:33.0893 184992  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\Windows\system32\dhcpcore.dll
21:54:33.0893 184992  Dhcp - ok
21:54:33.0924 184992  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
21:54:33.0924 184992  discache - ok
21:54:33.0940 184992  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\DRIVERS\disk.sys
21:54:33.0956 184992  Disk - ok
21:54:33.0987 184992  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
21:54:33.0987 184992  Dnscache - ok
21:54:34.0127 184992  [ 0840ABBBDF438691EE65A20040635CBE ] DockLoginService C:\Program Files\Dell\DellDock\DockLogin.exe
21:54:34.0143 184992  DockLoginService - ok
21:54:34.0190 184992  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\Windows\System32\dot3svc.dll
21:54:34.0190 184992  dot3svc - ok
21:54:34.0283 184992  [ B42ED0320C6E41102FDE0005154849BB ] Dot4            C:\Windows\system32\DRIVERS\Dot4.sys
21:54:34.0283 184992  Dot4 - ok
21:54:34.0361 184992  [ E9F5969233C5D89F3C35E3A66A52A361 ] Dot4Print       C:\Windows\system32\DRIVERS\Dot4Prt.sys
21:54:34.0455 184992  Dot4Print - ok
21:54:34.0486 184992  [ FD05A02B0370BC3000F402E543CA5814 ] dot4usb         C:\Windows\system32\DRIVERS\dot4usb.sys
21:54:34.0486 184992  dot4usb - ok
21:54:34.0533 184992  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\Windows\system32\dps.dll
21:54:34.0533 184992  DPS - ok
21:54:34.0595 184992  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
21:54:34.0595 184992  drmkaud - ok
21:54:34.0736 184992  [ AF2E16242AA723F68F461B6EAE2EAD3D ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
21:54:34.0751 184992  DXGKrnl - ok
21:54:34.0782 184992  EagleX64 - ok
21:54:34.0814 184992  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
21:54:34.0814 184992  EapHost - ok
21:54:34.0923 184992  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
21:54:34.0970 184992  ebdrv - ok
21:54:35.0032 184992  [ C118A82CD78818C29AB228366EBF81C3 ] EFS             C:\Windows\System32\lsass.exe
21:54:35.0032 184992  EFS - ok
21:54:35.0126 184992  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
21:54:35.0141 184992  ehRecvr - ok
21:54:35.0157 184992  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
21:54:35.0157 184992  ehSched - ok
21:54:35.0219 184992  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
21:54:35.0235 184992  elxstor - ok
21:54:35.0266 184992  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\drivers\errdev.sys
21:54:35.0266 184992  ErrDev - ok
21:54:35.0328 184992  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
21:54:35.0328 184992  EventSystem - ok
21:54:35.0360 184992  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
21:54:35.0360 184992  exfat - ok
21:54:35.0391 184992  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
21:54:35.0406 184992  fastfat - ok
21:54:35.0500 184992  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\Windows\system32\fxssvc.exe
21:54:35.0516 184992  Fax - ok
21:54:35.0531 184992  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
21:54:35.0531 184992  fdc - ok
21:54:35.0625 184992  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
21:54:35.0625 184992  fdPHost - ok
21:54:35.0640 184992  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
21:54:35.0640 184992  FDResPub - ok
21:54:35.0656 184992  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
21:54:35.0656 184992  FileInfo - ok
21:54:35.0672 184992  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
21:54:35.0672 184992  Filetrace - ok
21:54:35.0703 184992  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
21:54:35.0703 184992  flpydisk - ok
21:54:35.0750 184992  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
21:54:35.0796 184992  FltMgr - ok
21:54:35.0906 184992  [ C4C183E6551084039EC862DA1C945E3D ] FontCache       C:\Windows\system32\FntCache.dll
21:54:35.0921 184992  FontCache - ok
21:54:36.0030 184992  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
21:54:36.0030 184992  FontCache3.0.0.0 - ok
21:54:36.0062 184992  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
21:54:36.0077 184992  FsDepends - ok
21:54:36.0108 184992  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
21:54:36.0186 184992  Fs_Rec - ok
21:54:36.0249 184992  [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
21:54:36.0249 184992  fvevol - ok
21:54:36.0264 184992  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
21:54:36.0280 184992  gagp30kx - ok
21:54:36.0389 184992  [ D154305DE6090E6E84E525F84BB08A06 ] GameConsoleService C:\Program Files (x86)\WildTangent\Dell Games\Dell Game Console\GameConsoleService.exe
21:54:36.0389 184992  GameConsoleService - ok
21:54:36.0498 184992  [ D3316F6E3C011435F36E3D6E49B3196C ] GoToAssist      C:\Program Files (x86)\Citrix\GoToAssist\514\g2aservice.exe
21:54:36.0498 184992  GoToAssist - ok
21:54:36.0576 184992  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\Windows\System32\gpsvc.dll
21:54:36.0592 184992  gpsvc - ok
21:54:36.0639 184992  [ 1E6438D4EA6E1174A3B3B1EDC4DE660B ] hamachi         C:\Windows\system32\DRIVERS\hamachi.sys
21:54:36.0717 184992  hamachi - ok
21:54:36.0888 184992  [ DBCF8F2EA9111510B5B86E1EE9CD8816 ] Hamachi2Svc     C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
21:54:36.0920 184992  Hamachi2Svc - ok
21:54:36.0951 184992  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
21:54:36.0966 184992  hcw85cir - ok
21:54:37.0029 184992  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
21:54:37.0029 184992  HDAudBus - ok
21:54:37.0091 184992  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
21:54:37.0091 184992  HidBatt - ok
21:54:37.0122 184992  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
21:54:37.0122 184992  HidBth - ok
21:54:37.0154 184992  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
21:54:37.0154 184992  HidIr - ok
21:54:37.0232 184992  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\System32\hidserv.dll
21:54:37.0232 184992  hidserv - ok
21:54:37.0294 184992  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
21:54:37.0388 184992  HidUsb - ok
21:54:37.0466 184992  [ A894FB2CAE6A29F5D9C8EDA47B074623 ] HipShieldK      C:\Windows\system32\drivers\HipShieldK.sys
21:54:37.0512 184992  HipShieldK - ok
21:54:37.0559 184992  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\Windows\system32\kmsvc.dll
21:54:37.0559 184992  hkmsvc - ok
21:54:37.0606 184992  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
21:54:37.0606 184992  HomeGroupListener - ok
21:54:37.0653 184992  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
21:54:37.0653 184992  HomeGroupProvider - ok
21:54:37.0700 184992  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
21:54:37.0778 184992  HpSAMD - ok
21:54:37.0840 184992  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
21:54:37.0856 184992  HTTP - ok
21:54:37.0887 184992  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
21:54:37.0887 184992  hwpolicy - ok
21:54:37.0965 184992  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
21:54:37.0965 184992  i8042prt - ok
21:54:38.0074 184992  [ 7548066DF68A8A1A56B043359F915F37 ] IAANTMON        C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
21:54:38.0074 184992  IAANTMON - ok
21:54:38.0168 184992  [ 1D004CB1DA6323B1F55CAEF7F94B61D9 ] iaStor          C:\Windows\system32\DRIVERS\iaStor.sys
21:54:38.0168 184992  iaStor - ok
21:54:38.0230 184992  [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
21:54:38.0324 184992  iaStorV - ok
21:54:38.0433 184992  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
21:54:38.0448 184992  idsvc - ok
21:54:38.0620 184992  [ 44A4CFDF95DEC95CFE8A5C111A2CBF71 ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
21:54:38.0823 184992  igfx - ok
21:54:38.0870 184992  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
21:54:38.0870 184992  iirsp - ok
21:54:38.0932 184992  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\Windows\System32\ikeext.dll
21:54:38.0948 184992  IKEEXT - ok
21:54:38.0979 184992  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\drivers\intelide.sys
21:54:38.0979 184992  intelide - ok
21:54:39.0041 184992  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
21:54:39.0057 184992  intelppm - ok
21:54:39.0088 184992  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
21:54:39.0088 184992  IPBusEnum - ok
21:54:39.0166 184992  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:54:39.0260 184992  IpFilterDriver - ok
21:54:39.0322 184992  [ 08C2957BB30058E663720C5606885653 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
21:54:39.0322 184992  iphlpsvc - ok
21:54:39.0369 184992  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
21:54:39.0540 184992  IPMIDRV - ok
21:54:39.0618 184992  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
21:54:39.0634 184992  IPNAT - ok
21:54:39.0665 184992  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
21:54:39.0665 184992  IRENUM - ok
21:54:39.0712 184992  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
21:54:39.0712 184992  isapnp - ok
21:54:39.0790 184992  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
21:54:39.0837 184992  iScsiPrt - ok
21:54:39.0915 184992  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
21:54:39.0930 184992  kbdclass - ok
21:54:39.0993 184992  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
21:54:40.0008 184992  kbdhid - ok
21:54:40.0055 184992  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\Windows\system32\lsass.exe
21:54:40.0055 184992  KeyIso - ok
21:54:40.0180 184992  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
21:54:40.0242 184992  KSecDD - ok
21:54:40.0305 184992  [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
21:54:40.0383 184992  KSecPkg - ok
21:54:40.0430 184992  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
21:54:40.0430 184992  ksthunk - ok
21:54:40.0476 184992  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
21:54:40.0492 184992  KtmRm - ok
21:54:40.0539 184992  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\Windows\System32\srvsvc.dll
21:54:40.0539 184992  LanmanServer - ok
21:54:40.0601 184992  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
21:54:40.0601 184992  LanmanWorkstation - ok
21:54:40.0695 184992  libusb0 - ok
21:54:40.0710 184992  libusbd - ok
21:54:40.0742 184992  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
21:54:40.0742 184992  lltdio - ok
21:54:40.0788 184992  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
21:54:40.0788 184992  lltdsvc - ok
21:54:40.0804 184992  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
21:54:40.0820 184992  lmhosts - ok
21:54:40.0835 184992  lmimirr - ok
21:54:40.0913 184992  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
21:54:40.0929 184992  LSI_FC - ok
21:54:41.0007 184992  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
21:54:41.0022 184992  LSI_SAS - ok
21:54:41.0038 184992  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
21:54:41.0038 184992  LSI_SAS2 - ok
21:54:41.0054 184992  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
21:54:41.0054 184992  LSI_SCSI - ok
21:54:41.0100 184992  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
21:54:41.0100 184992  luafv - ok
21:54:41.0194 184992  [ 36EFC8C32829A27BAF0E63BFDBD5EE90 ] massfilter      C:\Windows\system32\drivers\massfilter.sys
21:54:41.0256 184992  massfilter - ok
21:54:41.0444 184992  [ F928E5E72BBA15DD0CE9A26E0413D236 ] McMPFSvc        C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
21:54:41.0459 184992  McMPFSvc - ok
21:54:41.0459 184992  [ F928E5E72BBA15DD0CE9A26E0413D236 ] mcmscsvc        C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
21:54:41.0459 184992  mcmscsvc - ok
21:54:41.0475 184992  [ F928E5E72BBA15DD0CE9A26E0413D236 ] McNaiAnn        C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
21:54:41.0490 184992  McNaiAnn - ok
21:54:41.0506 184992  [ F928E5E72BBA15DD0CE9A26E0413D236 ] McNASvc         C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
21:54:41.0506 184992  McNASvc - ok
21:54:41.0584 184992  [ 1814532DB0404C5FB65AA3EB051B2BE5 ] McODS           C:\Program Files\mcafee\VirusScan\mcods.exe
21:54:41.0584 184992  McODS - ok
21:54:41.0600 184992  [ F928E5E72BBA15DD0CE9A26E0413D236 ] McOobeSv        C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
21:54:41.0600 184992  McOobeSv - ok
21:54:41.0615 184992  [ F928E5E72BBA15DD0CE9A26E0413D236 ] McProxy         C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
21:54:41.0615 184992  McProxy - ok
21:54:41.0662 184992  [ 21F81090A00932C5E96700EDF2977582 ] McShield        C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe
21:54:41.0678 184992  McShield - ok
21:54:41.0756 184992  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
21:54:41.0756 184992  Mcx2Svc - ok
21:54:41.0787 184992  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
21:54:41.0802 184992  megasas - ok
21:54:41.0834 184992  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
21:54:41.0849 184992  MegaSR - ok
21:54:41.0896 184992  [ B1720E97FABBDF7D30B36DAF19C3DEE8 ] mfeapfk         C:\Windows\system32\drivers\mfeapfk.sys
21:54:42.0005 184992  mfeapfk - ok
21:54:42.0099 184992  [ 113F1534B80D65DFDCA660F19967A3B7 ] mfeavfk         C:\Windows\system32\drivers\mfeavfk.sys
21:54:42.0208 184992  mfeavfk - ok
21:54:42.0239 184992  mfeavfk01 - ok
21:54:42.0380 184992  [ C4F521310E40327BBC8E8E71DA344F48 ] mfefire         C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
21:54:42.0395 184992  mfefire - ok
21:54:42.0551 184992  [ CECC9841D036EE008091825272D91331 ] mfefirek        C:\Windows\system32\drivers\mfefirek.sys
21:54:42.0629 184992  mfefirek - ok
21:54:42.0660 184992  [ EF0F85EDBDF6C0AB467E88E0CEE2B346 ] mfehidk         C:\Windows\system32\drivers\mfehidk.sys
21:54:42.0754 184992  mfehidk - ok
21:54:42.0785 184992  [ 6E3A46BF6CBB80450CC24F80FE03ED5A ] mferkdet        C:\Windows\system32\drivers\mferkdet.sys
21:54:42.0785 184992  mferkdet - ok
21:54:42.0832 184992  [ 341BFCAA3A55C08E8C9ECB1654ACA905 ] mfevtp          C:\Program Files\Common Files\McAfee\SystemCore\mfevtps.exe
21:54:42.0848 184992  mfevtp - ok
21:54:42.0863 184992  [ 2802D09F1B6ED502237539563F3C4992 ] mfewfpk         C:\Windows\system32\drivers\mfewfpk.sys
21:54:42.0957 184992  mfewfpk - ok
21:54:43.0004 184992  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
21:54:43.0004 184992  MMCSS - ok
21:54:43.0082 184992  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
21:54:43.0082 184992  Modem - ok
21:54:43.0113 184992  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
21:54:43.0113 184992  monitor - ok
21:54:43.0206 184992  [ 5FEC1FF5BB9A1FA5C9CF4544D19D6D5D ] MotioninJoyXFilter C:\Windows\system32\DRIVERS\MijXfilt.sys
21:54:43.0284 184992  MotioninJoyXFilter - ok
21:54:43.0331 184992  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
21:54:43.0331 184992  mouclass - ok
21:54:43.0347 184992  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
21:54:43.0362 184992  mouhid - ok
21:54:43.0394 184992  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
21:54:43.0394 184992  mountmgr - ok
21:54:43.0425 184992  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\Windows\system32\drivers\mpio.sys
21:54:43.0503 184992  mpio - ok
21:54:43.0518 184992  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
21:54:43.0518 184992  mpsdrv - ok
21:54:43.0596 184992  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc          C:\Windows\system32\mpssvc.dll
21:54:43.0612 184992  MpsSvc - ok
21:54:43.0643 184992  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
21:54:43.0706 184992  MRxDAV - ok
21:54:43.0737 184992  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
21:54:43.0784 184992  mrxsmb - ok
21:54:43.0830 184992  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:54:43.0893 184992  mrxsmb10 - ok
21:54:43.0940 184992  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:54:44.0049 184992  mrxsmb20 - ok
21:54:44.0080 184992  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\Windows\system32\drivers\msahci.sys
21:54:44.0158 184992  msahci - ok
21:54:44.0189 184992  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
21:54:44.0283 184992  msdsm - ok
21:54:44.0314 184992  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
21:54:44.0314 184992  MSDTC - ok
21:54:44.0376 184992  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
21:54:44.0376 184992  Msfs - ok
21:54:44.0392 184992  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
21:54:44.0408 184992  mshidkmdf - ok
21:54:44.0470 184992  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
21:54:44.0486 184992  msisadrv - ok
21:54:44.0532 184992  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
21:54:44.0532 184992  MSiSCSI - ok
21:54:44.0532 184992  msiserver - ok
21:54:44.0626 184992  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
21:54:44.0626 184992  MSKSSRV - ok
21:54:44.0642 184992  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
21:54:44.0642 184992  MSPCLOCK - ok
21:54:44.0657 184992  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
21:54:44.0657 184992  MSPQM - ok
21:54:44.0704 184992  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
21:54:44.0813 184992  MsRPC - ok
21:54:44.0844 184992  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
21:54:44.0844 184992  mssmbios - ok
21:54:44.0860 184992  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
21:54:44.0860 184992  MSTEE - ok
21:54:44.0876 184992  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
21:54:44.0891 184992  MTConfig - ok
21:54:44.0922 184992  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
21:54:44.0938 184992  Mup - ok
21:54:45.0016 184992  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\Windows\system32\qagentRT.dll
21:54:45.0016 184992  napagent - ok
21:54:45.0094 184992  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
21:54:45.0094 184992  NativeWifiP - ok
21:54:45.0219 184992  [ 760E38053BF56E501D562B70AD796B88 ] NDIS            C:\Windows\system32\drivers\ndis.sys
21:54:45.0234 184992  NDIS - ok
21:54:45.0312 184992  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
21:54:45.0328 184992  NdisCap - ok
21:54:45.0344 184992  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
21:54:45.0359 184992  NdisTapi - ok
21:54:45.0437 184992  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
21:54:45.0531 184992  Ndisuio - ok
21:54:45.0562 184992  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
21:54:45.0624 184992  NdisWan - ok
21:54:45.0656 184992  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
21:54:45.0749 184992  NDProxy - ok
21:54:45.0812 184992  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
21:54:45.0812 184992  NetBIOS - ok
21:54:45.0890 184992  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
21:54:45.0890 184992  NetBT - ok
21:54:45.0905 184992  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\Windows\system32\lsass.exe
21:54:45.0921 184992  Netlogon - ok
21:54:45.0968 184992  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
21:54:45.0983 184992  Netman - ok
21:54:46.0155 184992  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:54:46.0155 184992  NetMsmqActivator - ok
21:54:46.0186 184992  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:54:46.0186 184992  NetPipeActivator - ok
21:54:46.0217 184992  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
21:54:46.0233 184992  netprofm - ok
21:54:46.0233 184992  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:54:46.0233 184992  NetTcpActivator - ok
21:54:46.0248 184992  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:54:46.0248 184992  NetTcpPortSharing - ok
21:54:46.0373 184992  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
21:54:46.0389 184992  nfrd960 - ok
21:54:46.0467 184992  [ 8AD77806D336673F270DB31645267293 ] NlaSvc          C:\Windows\System32\nlasvc.dll
21:54:46.0560 184992  NlaSvc - ok
21:54:46.0576 184992  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
21:54:46.0576 184992  Npfs - ok
21:54:46.0638 184992  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
21:54:46.0654 184992  nsi - ok
21:54:46.0670 184992  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
21:54:46.0670 184992  nsiproxy - ok
21:54:46.0748 184992  [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
21:54:46.0763 184992  Ntfs - ok
21:54:46.0810 184992  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
21:54:46.0810 184992  Null - ok
21:54:46.0888 184992  [ 0A92CB65770442ED0DC44834632F66AD ] nvraid          C:\Windows\system32\drivers\nvraid.sys
21:54:46.0950 184992  nvraid - ok
21:54:46.0966 184992  [ DAB0E87525C10052BF65F06152F37E4A ] nvstor          C:\Windows\system32\drivers\nvstor.sys
21:54:47.0013 184992  nvstor - ok
21:54:47.0028 184992  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
21:54:47.0044 184992  nv_agp - ok
21:54:47.0060 184992  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
21:54:47.0075 184992  ohci1394 - ok
21:54:47.0169 184992  [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:54:47.0169 184992  ose - ok
21:54:47.0356 184992  [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
21:54:47.0481 184992  osppsvc - ok
21:54:47.0528 184992  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
21:54:47.0543 184992  p2pimsvc - ok
21:54:47.0559 184992  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
21:54:47.0574 184992  p2psvc - ok
21:54:47.0606 184992  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
21:54:47.0621 184992  Parport - ok
21:54:47.0684 184992  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\Windows\system32\drivers\partmgr.sys
21:54:47.0762 184992  partmgr - ok
21:54:47.0762 184992  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
21:54:47.0777 184992  PcaSvc - ok
21:54:47.0902 184992  [ 7317A0B550F7AC0223B7070897670476 ] PCDSRVC{1E208CE0-FB7451FF-06020101}_0 c:\program files\dell support center\pcdsrvc_x64.pkms
21:54:48.0074 184992  PCDSRVC{1E208CE0-FB7451FF-06020101}_0 - ok
21:54:48.0120 184992  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\Windows\system32\drivers\pci.sys
21:54:48.0120 184992  pci - ok
21:54:48.0152 184992  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\drivers\pciide.sys
21:54:48.0167 184992  pciide - ok
21:54:48.0230 184992  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
21:54:48.0230 184992  pcmcia - ok
21:54:48.0276 184992  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
21:54:48.0276 184992  pcw - ok
21:54:48.0308 184992  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
21:54:48.0323 184992  PEAUTH - ok
21:54:48.0432 184992  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
21:54:48.0432 184992  PerfHost - ok
21:54:48.0510 184992  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\Windows\system32\pla.dll
21:54:48.0526 184992  pla - ok
21:54:48.0635 184992  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
21:54:48.0635 184992  PlugPlay - ok
21:54:48.0713 184992  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
21:54:48.0713 184992  PNRPAutoReg - ok
21:54:48.0744 184992  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
21:54:48.0744 184992  PNRPsvc - ok
21:54:48.0791 184992  [ 4F0878FD62D5F7444C5F1C4C66D9D293 ] Point64         C:\Windows\system32\DRIVERS\point64.sys
21:54:48.0900 184992  Point64 - ok
21:54:48.0994 184992  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
21:54:48.0994 184992  PolicyAgent - ok
21:54:49.0041 184992  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
21:54:49.0056 184992  Power - ok
21:54:49.0119 184992  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
21:54:49.0181 184992  PptpMiniport - ok
21:54:49.0197 184992  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\DRIVERS\processr.sys
21:54:49.0212 184992  Processor - ok
21:54:49.0259 184992  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc         C:\Windows\system32\profsvc.dll
21:54:49.0259 184992  ProfSvc - ok
21:54:49.0275 184992  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
21:54:49.0275 184992  ProtectedStorage - ok
21:54:49.0353 184992  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
21:54:49.0400 184992  Psched - ok
21:54:49.0446 184992  [ 4712CC14E720ECCCC0AA16949D18AAF1 ] PxHlpa64        C:\Windows\system32\Drivers\PxHlpa64.sys
21:54:49.0509 184992  PxHlpa64 - ok
21:54:49.0587 184992  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
21:54:49.0618 184992  ql2300 - ok
21:54:49.0649 184992  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
21:54:49.0649 184992  ql40xx - ok
21:54:49.0680 184992  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
21:54:49.0696 184992  QWAVE - ok
21:54:49.0712 184992  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
21:54:49.0712 184992  QWAVEdrv - ok
21:54:49.0743 184992  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
21:54:49.0743 184992  RasAcd - ok
21:54:49.0774 184992  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
21:54:49.0790 184992  RasAgileVpn - ok
21:54:49.0805 184992  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
21:54:49.0805 184992  RasAuto - ok
21:54:49.0852 184992  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
21:54:49.0914 184992  Rasl2tp - ok
21:54:49.0992 184992  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\Windows\System32\rasmans.dll
21:54:50.0008 184992  RasMan - ok
21:54:50.0039 184992  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
21:54:50.0055 184992  RasPppoe - ok
21:54:50.0070 184992  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
21:54:50.0070 184992  RasSstp - ok
21:54:50.0117 184992  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
21:54:50.0211 184992  rdbss - ok
21:54:50.0258 184992  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
21:54:50.0258 184992  rdpbus - ok
21:54:50.0273 184992  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
21:54:50.0273 184992  RDPCDD - ok
21:54:50.0304 184992  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
21:54:50.0304 184992  RDPENCDD - ok
21:54:50.0320 184992  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
21:54:50.0336 184992  RDPREFMP - ok
21:54:50.0382 184992  [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
21:54:50.0538 184992  RdpVideoMiniport - ok
21:54:50.0570 184992  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
21:54:50.0663 184992  RDPWD - ok
21:54:50.0757 184992  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
21:54:50.0850 184992  rdyboost - ok
21:54:50.0882 184992  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
21:54:50.0897 184992  RemoteAccess - ok
21:54:50.0928 184992  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
21:54:50.0944 184992  RemoteRegistry - ok
21:54:50.0960 184992  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
21:54:50.0960 184992  RpcEptMapper - ok
21:54:50.0991 184992  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
21:54:51.0006 184992  RpcLocator - ok
21:54:51.0053 184992  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\Windows\system32\rpcss.dll
21:54:51.0053 184992  RpcSs - ok
21:54:51.0131 184992  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
21:54:51.0131 184992  rspndr - ok
21:54:51.0162 184992  [ 4A25DC970C58104602ED274DACAFD784 ] RSUSBSTOR       C:\Windows\system32\Drivers\RtsUStor.sys
21:54:51.0178 184992  RSUSBSTOR - ok
21:54:51.0194 184992  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs           C:\Windows\system32\lsass.exe
21:54:51.0194 184992  SamSs - ok
21:54:51.0256 184992  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
21:54:51.0365 184992  sbp2port - ok
21:54:51.0521 184992  [ 794D4B48DFB6E999537C7C3947863463 ] SBSDWSCService  C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
21:54:51.0537 184992  SBSDWSCService - ok
21:54:51.0584 184992  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
21:54:51.0584 184992  SCardSvr - ok
21:54:51.0646 184992  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
21:54:51.0724 184992  scfilter - ok
21:54:51.0771 184992  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\Windows\system32\schedsvc.dll
21:54:51.0786 184992  Schedule - ok
21:54:51.0833 184992  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\Windows\System32\certprop.dll
21:54:51.0833 184992  SCPolicySvc - ok
21:54:51.0880 184992  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
21:54:51.0896 184992  SDRSVC - ok
21:54:52.0020 184992  [ 16A252022535B680046F6E34E136D378 ] SeaPort         C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
21:54:52.0020 184992  SeaPort - ok
21:54:52.0052 184992  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
21:54:52.0052 184992  secdrv - ok
21:54:52.0083 184992  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\Windows\system32\seclogon.dll
21:54:52.0098 184992  seclogon - ok
21:54:52.0130 184992  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\system32\sens.dll
21:54:52.0130 184992  SENS - ok
21:54:52.0145 184992  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
21:54:52.0161 184992  SensrSvc - ok
21:54:52.0176 184992  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
21:54:52.0176 184992  Serenum - ok
21:54:52.0192 184992  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\DRIVERS\serial.sys
21:54:52.0208 184992  Serial - ok
21:54:52.0270 184992  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
21:54:52.0270 184992  sermouse - ok
21:54:52.0332 184992  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\Windows\system32\sessenv.dll
21:54:52.0332 184992  SessionEnv - ok
21:54:52.0379 184992  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
21:54:52.0379 184992  sffdisk - ok
21:54:52.0410 184992  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
21:54:52.0410 184992  sffp_mmc - ok
21:54:52.0426 184992  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
21:54:52.0504 184992  sffp_sd - ok
21:54:52.0535 184992  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
21:54:52.0551 184992  sfloppy - ok
21:54:52.0676 184992  [ 74EC60E20516AAA573BE74F31175270F ] SftService      C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
21:54:52.0707 184992  SftService - ok
21:54:52.0754 184992  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll
21:54:52.0769 184992  SharedAccess - ok
21:54:52.0816 184992  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
21:54:52.0832 184992  ShellHWDetection - ok
21:54:52.0878 184992  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
21:54:52.0878 184992  SiSRaid2 - ok
21:54:52.0925 184992  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
21:54:53.0487 184992  SiSRaid4 - ok
21:54:53.0986 184992  [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
21:54:54.0002 184992  SkypeUpdate - ok
21:54:54.0033 184992  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
21:54:54.0048 184992  Smb - ok
21:54:54.0095 184992  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
21:54:54.0111 184992  SNMPTRAP - ok
21:54:54.0236 184992  [ DF2A4BAD7E7962B0DA88B5FA2A8CC340 ] SoftShieldService C:\Program Files (x86)\ExamSoft\SofTest 11.0\Examsoft.ShieldRunner.exe
21:54:54.0236 184992  SoftShieldService - ok
21:54:54.0236 184992  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
21:54:54.0251 184992  spldr - ok
21:54:54.0329 184992  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler         C:\Windows\System32\spoolsv.exe
21:54:54.0329 184992  Spooler - ok
21:54:54.0438 184992  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\Windows\system32\sppsvc.exe
21:54:54.0532 184992  sppsvc - ok
21:54:54.0594 184992  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
21:54:54.0594 184992  sppuinotify - ok
21:54:54.0641 184992  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\Windows\system32\DRIVERS\srv.sys
21:54:54.0750 184992  srv - ok
21:54:54.0797 184992  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
21:54:54.0860 184992  srv2 - ok
21:54:54.0875 184992  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
21:54:54.0922 184992  srvnet - ok
21:54:54.0953 184992  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
21:54:54.0953 184992  SSDPSRV - ok
21:54:55.0000 184992  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
21:54:55.0000 184992  SstpSvc - ok
21:54:55.0172 184992  [ 5697FB5DCF36ADA09C153378E88AE6AD ] STacSV          C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_7f58c91b65c73836\STacSV64.exe
21:54:55.0172 184992  STacSV - ok
21:54:55.0203 184992  Steam Client Service - ok
21:54:55.0265 184992  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
21:54:55.0265 184992  stexstor - ok
21:54:55.0328 184992  [ F3F6C17F70EBA268CDBE4F9704E3EAC5 ] STHDA           C:\Windows\system32\DRIVERS\stwrt64.sys
21:54:55.0406 184992  STHDA - ok
21:54:55.0484 184992  [ DECACB6921DED1A38642642685D77DAC ] StillCam        C:\Windows\system32\DRIVERS\serscan.sys
21:54:55.0484 184992  StillCam - ok
21:54:55.0546 184992  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\Windows\System32\wiaservc.dll
21:54:55.0562 184992  stisvc - ok
21:54:55.0593 184992  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\drivers\swenum.sys
21:54:55.0593 184992  swenum - ok
21:54:55.0640 184992  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
21:54:55.0655 184992  swprv - ok
21:54:55.0733 184992  [ 3178B56219E0E4FB5F95299E49B83B44 ] SynTP           C:\Windows\system32\DRIVERS\SynTP.sys
21:54:55.0796 184992  SynTP - ok
21:54:55.0874 184992  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\Windows\system32\sysmain.dll
21:54:55.0889 184992  SysMain - ok
21:54:55.0936 184992  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
21:54:55.0936 184992  TabletInputService - ok
21:54:55.0983 184992  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\Windows\System32\tapisrv.dll
21:54:55.0983 184992  TapiSrv - ok
21:54:56.0061 184992  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
21:54:56.0061 184992  TBS - ok
21:54:56.0154 184992  [ 9849EA3843A2ADBDD1497E97A85D8CAE ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
21:54:56.0217 184992  Tcpip - ok
21:54:56.0264 184992  [ 9849EA3843A2ADBDD1497E97A85D8CAE ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
21:54:56.0264 184992  TCPIP6 - ok
21:54:56.0310 184992  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
21:54:56.0404 184992  tcpipreg - ok
21:54:56.0451 184992  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
21:54:56.0466 184992  TDPIPE - ok
21:54:56.0513 184992  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
21:54:56.0560 184992  TDTCP - ok
21:54:56.0591 184992  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
21:54:56.0638 184992  tdx - ok
21:54:56.0685 184992  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\Windows\system32\drivers\termdd.sys
21:54:56.0716 184992  TermDD - ok
21:54:56.0763 184992  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\Windows\System32\termsrv.dll
21:54:56.0778 184992  TermService - ok
21:54:56.0841 184992  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
21:54:56.0841 184992  Themes - ok
21:54:56.0888 184992  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
21:54:56.0888 184992  THREADORDER - ok
21:54:56.0903 184992  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
21:54:56.0903 184992  TrkWks - ok
21:54:56.0997 184992  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
21:54:56.0997 184992  TrustedInstaller - ok
21:54:57.0044 184992  [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
21:54:57.0153 184992  tssecsrv - ok
21:54:57.0215 184992  [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
21:54:57.0278 184992  TsUsbFlt - ok
21:54:57.0340 184992  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
21:54:57.0402 184992  tunnel - ok
21:54:57.0449 184992  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
21:54:57.0449 184992  uagp35 - ok
21:54:57.0512 184992  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
21:54:57.0605 184992  udfs - ok
21:54:57.0652 184992  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
21:54:57.0652 184992  UI0Detect - ok
21:54:57.0699 184992  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
21:54:57.0699 184992  uliagpkx - ok
21:54:57.0730 184992  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\Windows\system32\drivers\umbus.sys
21:54:57.0808 184992  umbus - ok
21:54:57.0824 184992  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
21:54:57.0839 184992  UmPass - ok
21:54:57.0870 184992  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
21:54:57.0886 184992  upnphost - ok
21:54:57.0886 184992  [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
21:54:58.0026 184992  usbccgp - ok
21:54:58.0058 184992  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
21:54:58.0073 184992  usbcir - ok
21:54:58.0167 184992  [ C025055FE7B87701EB042095DF1A2D7B ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
21:54:58.0276 184992  usbehci - ok
21:54:58.0385 184992  [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
21:54:58.0385 184992  usbhub - ok
21:54:58.0416 184992  [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
21:54:58.0510 184992  usbohci - ok
21:54:58.0588 184992  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
21:54:58.0604 184992  usbprint - ok
21:54:58.0635 184992  [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
21:54:58.0650 184992  usbscan - ok
21:54:58.0666 184992  [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
21:54:58.0728 184992  USBSTOR - ok
21:54:58.0760 184992  [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci         C:\Windows\system32\DRIVERS\usbuhci.sys
21:54:58.0884 184992  usbuhci - ok
21:54:58.0978 184992  [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo        C:\Windows\System32\Drivers\usbvideo.sys
21:54:59.0072 184992  usbvideo - ok
21:54:59.0196 184992  [ 659BA43F61FC37609288A5340A8D37D4 ] usj             C:\AeriaGames\EdenEternal\avital\ussjcs64.sys
21:54:59.0306 184992  usj - ok
21:54:59.0337 184992  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
21:54:59.0352 184992  UxSms - ok
21:54:59.0368 184992  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\Windows\system32\lsass.exe
21:54:59.0368 184992  VaultSvc - ok
21:54:59.0399 184992  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
21:54:59.0415 184992  vdrvroot - ok
21:54:59.0462 184992  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\Windows\System32\vds.exe
21:54:59.0477 184992  vds - ok
21:54:59.0508 184992  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
21:54:59.0508 184992  vga - ok
21:54:59.0524 184992  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
21:54:59.0540 184992  VgaSave - ok
21:54:59.0649 184992  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
21:54:59.0711 184992  vhdmp - ok
21:54:59.0758 184992  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\drivers\viaide.sys
21:54:59.0758 184992  viaide - ok
21:54:59.0774 184992  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
21:54:59.0836 184992  volmgr - ok
21:54:59.0883 184992  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
21:54:59.0976 184992  volmgrx - ok
21:55:00.0008 184992  [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
21:55:00.0008 184992  volsnap - ok
21:55:00.0101 184992  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
21:55:00.0101 184992  vsmraid - ok
21:55:00.0164 184992  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\Windows\system32\vssvc.exe
21:55:00.0195 184992  VSS - ok
21:55:00.0210 184992  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
21:55:00.0226 184992  vwifibus - ok
21:55:00.0257 184992  [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
21:55:00.0257 184992  vwififlt - ok
21:55:00.0335 184992  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
21:55:00.0351 184992  W32Time - ok
21:55:00.0398 184992  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
21:55:00.0398 184992  WacomPen - ok
21:55:00.0476 184992  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
21:55:00.0538 184992  WANARP - ok
21:55:00.0554 184992  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
21:55:00.0554 184992  Wanarpv6 - ok
21:55:00.0616 184992  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
21:55:00.0632 184992  WatAdminSvc - ok
21:55:00.0694 184992  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\Windows\system32\wbengine.exe
21:55:00.0725 184992  wbengine - ok
21:55:00.0772 184992  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
21:55:00.0772 184992  WbioSrvc - ok
21:55:00.0819 184992  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\Windows\System32\wcncsvc.dll
21:55:00.0834 184992  wcncsvc - ok
21:55:00.0866 184992  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
21:55:00.0866 184992  WcsPlugInService - ok
21:55:00.0912 184992  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\DRIVERS\wd.sys
21:55:00.0912 184992  Wd - ok
21:55:00.0975 184992  [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
21:55:01.0053 184992  Wdf01000 - ok
21:55:01.0084 184992  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
21:55:01.0084 184992  WdiServiceHost - ok
21:55:01.0084 184992  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
21:55:01.0100 184992  WdiSystemHost - ok
21:55:01.0162 184992  [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient       C:\Windows\System32\webclnt.dll
21:55:01.0178 184992  WebClient - ok
21:55:01.0224 184992  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
21:55:01.0224 184992  Wecsvc - ok
21:55:01.0256 184992  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
21:55:01.0256 184992  wercplsupport - ok
21:55:01.0318 184992  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
21:55:01.0318 184992  WerSvc - ok
21:55:01.0365 184992  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
21:55:01.0365 184992  WfpLwf - ok
21:55:01.0443 184992  [ B14EF15BD757FA488F9C970EEE9C0D35 ] WimFltr         C:\Windows\system32\DRIVERS\wimfltr.sys
21:55:01.0552 184992  WimFltr - ok
21:55:01.0583 184992  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
21:55:01.0583 184992  WIMMount - ok
21:55:01.0599 184992  WinDefend - ok
21:55:01.0630 184992  WinHttpAutoProxySvc - ok
21:55:01.0724 184992  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
21:55:01.0739 184992  Winmgmt - ok
21:55:01.0817 184992  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\Windows\system32\WsmSvc.dll
21:55:01.0848 184992  WinRM - ok
21:55:01.0942 184992  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
21:55:01.0958 184992  Wlansvc - ok
21:55:02.0160 184992  [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
21:55:02.0192 184992  wlidsvc - ok
21:55:02.0285 184992  [ 13B0A570E1AE451C92DA550085D72CF3 ] wltrysvc        C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRYSVC.EXE
21:55:02.0285 184992  wltrysvc - ok
21:55:02.0316 184992  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
21:55:02.0316 184992  WmiAcpi - ok
21:55:02.0379 184992  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
21:55:02.0394 184992  wmiApSrv - ok
21:55:02.0457 184992  WMPNetworkSvc - ok
21:55:02.0488 184992  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
21:55:02.0504 184992  WPCSvc - ok
21:55:02.0566 184992  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
21:55:02.0566 184992  WPDBusEnum - ok
21:55:02.0613 184992  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
21:55:02.0613 184992  ws2ifsl - ok
21:55:02.0660 184992  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\Windows\system32\wscsvc.dll
21:55:02.0660 184992  wscsvc - ok
21:55:02.0675 184992  WSearch - ok
21:55:02.0784 184992  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
21:55:02.0816 184992  wuauserv - ok
21:55:02.0847 184992  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
21:55:02.0894 184992  WudfPf - ok
21:55:02.0925 184992  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
21:55:02.0987 184992  WUDFRd - ok
21:55:03.0050 184992  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
21:55:03.0050 184992  wudfsvc - ok
21:55:03.0096 184992  [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc         C:\Windows\System32\wwansvc.dll
21:55:03.0096 184992  WwanSvc - ok
21:55:03.0252 184992  X6va008 - ok
21:55:03.0268 184992  X6va009 - ok
21:55:03.0330 184992  X6va012 - ok
21:55:03.0408 184992  [ 9176C0822FAA649E45121875BE32F5D2 ] xusb21          C:\Windows\system32\DRIVERS\xusb21.sys
21:55:03.0502 184992  xusb21 - ok
21:55:03.0580 184992  [ 64F88AF327AA74E03658AE32B48CCB8B ] yukonw7         C:\Windows\system32\DRIVERS\yk62x64.sys
21:55:03.0580 184992  yukonw7 - ok
21:55:03.0642 184992  [ D6959A4FC3B56AFD9E31B0E71377C05F ] ZTEusbgps       C:\Windows\system32\DRIVERS\ZTEusbgps.sys
21:55:03.0705 184992  ZTEusbgps - ok
21:55:03.0752 184992  [ D6959A4FC3B56AFD9E31B0E71377C05F ] ZTEusbmdm6k     C:\Windows\system32\DRIVERS\ZTEusbmdm6k.sys
21:55:03.0798 184992  ZTEusbmdm6k - ok
21:55:03.0845 184992  [ D6959A4FC3B56AFD9E31B0E71377C05F ] ZTEusbnmea      C:\Windows\system32\DRIVERS\ZTEusbnmea.sys
21:55:03.0892 184992  ZTEusbnmea - ok
21:55:03.0923 184992  [ D6959A4FC3B56AFD9E31B0E71377C05F ] ZTEusbnmeaext   C:\Windows\system32\DRIVERS\ZTEusbnmeaext.sys
21:55:03.0986 184992  ZTEusbnmeaext - ok
21:55:04.0032 184992  [ D6959A4FC3B56AFD9E31B0E71377C05F ] ZTEusbser6k     C:\Windows\system32\DRIVERS\ZTEusbser6k.sys
21:55:04.0095 184992  ZTEusbser6k - ok
21:55:04.0110 184992  ================ Scan global ===============================
21:55:04.0157 184992  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
21:55:04.0235 184992  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
21:55:04.0235 184992  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
21:55:04.0282 184992  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
21:55:04.0344 184992  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
21:55:04.0344 184992  [Global] - ok
21:55:04.0344 184992  ================ Scan MBR ==================================
21:55:04.0391 184992  [ CDB4DE4BBD714F152979DA2DCBEF57EB ] \Device\Harddisk0\DR0
21:55:04.0766 184992  \Device\Harddisk0\DR0 - ok
21:55:04.0766 184992  ================ Scan VBR ==================================
21:55:04.0781 184992  [ 0437F2279A05DDD37B790BC9884941C7 ] \Device\Harddisk0\DR0\Partition1
21:55:04.0781 184992  \Device\Harddisk0\DR0\Partition1 - ok
21:55:04.0812 184992  [ 2D3B84FC80E1D106AAC66B30A43EE9CF ] \Device\Harddisk0\DR0\Partition2
21:55:04.0812 184992  \Device\Harddisk0\DR0\Partition2 - ok
21:55:04.0812 184992  ============================================================
21:55:04.0812 184992  Scan finished
21:55:04.0812 184992  ============================================================
21:55:04.0828 184644  Detected object count: 0
21:55:04.0828 184644  Actual detected object count: 0
21:55:14.0204 184628  Deinitialize success
 

AdwCleaner:

# AdwCleaner v2.303 - Logfile created 06/23/2013 at 21:58:43

# Updated 08/06/2013 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : Tenken - Tenken-PC
# Boot Mode : Normal
# Running from : C:\Users\Tenken\Desktop\AdwCleaner (1).exe
# Option [Delete]
 
 
***** [Services] *****
 
 
***** [Files / Folders] *****
 
Folder Deleted : C:\Program Files (x86)\Common Files\Software Update Utility
Folder Deleted : C:\ProgramData\Ask
Folder Deleted : C:\ProgramData\InstallMate
Folder Deleted : C:\Users\Tenken\AppData\Local\PackageAware
 
***** [Registry] *****
 
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\grusskartencenter.com
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\grusskartencenter.com
Key Deleted : HKCU\Software\YahooPartnerToolbar
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{6C259840-5BA8-46E6-8ED1-EF3BA47D8BA1}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\dnu.EXE
Key Deleted : HKLM\SOFTWARE\Classes\AppID\GenericAskToolbar.DLL
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdate
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUIBrowser
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUIBrowser.1
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUpdController
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUpdController.1
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{92380354-381A-471F-BE2E-DD9ACD9777EA}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7B089B94-D1DC-4C6B-87E1-8156E22C1D96}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{7B089B94-D1DC-4C6B-87E1-8156E22C1D96}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{E15A9BFD-D16D-496D-8222-44CADF316E70}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{660E6F4F-840D-436D-B668-433D9591BAC5}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{E7435878-65B9-44D1-A443-81754E5DFC90}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\SoftwareUpdUtility
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{660E6F4F-840D-436D-B668-433D9591BAC5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E7435878-65B9-44D1-A443-81754E5DFC90}
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{D4027C7F-154A-4066-A1AD-4243D8127440}]
 
***** [Internet Browsers] *****
 
-\\ Internet Explorer v10.0.9200.16611
 
[OK] Registry is clean.
 
-\\ Google Chrome v27.0.1453.116
 
File : C:\Users\Tenken\AppData\Local\Google\Chrome\User Data\Default\Preferences
 
[OK] File is clean.
 
*************************
 
AdwCleaner[S1].txt - [3349 octets] - [23/06/2013 21:58:43]
 
########## EOF - C:\AdwCleaner[S1].txt - [3409 octets] ##########
 

 

ESET:

C:\Program Files (x86)\Dell DataSafe Local Backup\hstart.exe a variant of Win32/HiddenStart.A application cleaned by deleting - quarantined

C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\hstart.exe a variant of Win32/HiddenStart.A application cleaned by deleting - quarantined
C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\Backup\DSLUpdate\hstart.exe.bak a variant of Win32/HiddenStart.A application cleaned by deleting - quarantined
C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\UpdateWorkingDirectory\DSL\hstart.exe a variant of Win32/HiddenStart.A application cleaned by deleting - quarantined
C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\UpdateWorkingDirectory\DSL\Components\DSUpdate\hstart.exe a variant of Win32/HiddenStart.A application cleaned by deleting - quarantined


#6 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,440 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:13 AM

Posted 24 June 2013 - 09:27 PM

Looks a lot better, let's done more quick one.

thisisujrt.gif Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.

In Control Panel, Uninstall these ..older versions are exploitable.
Adobe Reader X (10.1.7) (Version: 10.1.7)
Java 7 Update 21 (Version: 7.0.210)

Java™ 6 Update 20 (64-bit) (Version: 6.0.200)
Java™ 6 Update 31 (Version: 6.0.310)
HiJackThis (Version: 1.0.0)

Reboot


Install
Adobe Reader XI
Note when installing new Apps... Uncheck things like this before installing.
Google_banner_225x66.png


Yes, install Chrome as my default browser and Google Toolbar for Internet Explorer – optional. (32.11 MB) Install Options



Java Version 7 Update 25

Edited by boopme, 24 June 2013 - 09:29 PM.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#7 Melisae21

Melisae21
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Local time:09:13 PM

Posted 25 June 2013 - 04:25 PM

Junkware:

It had an error message when it tried to make a backup at the start, but the scan otherwise proceeded smoothly. The log is below:

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 4.9.4 (05.06.2013:1)
OS: Windows 7 Home Premium x64
Ran by Tenken on Tue 06/25/2013 at 14:10:25.01
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
 
 
~~~ Services
 
 
 
~~~ Registry Values
 
 
 
~~~ Registry Keys
 
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{501D78FB-E3F9-4F4E-8D27-906DFE1D09E8}
 
 
 
~~~ Files
 
 
 
~~~ Folders
 
Successfully deleted: [Empty Folder] C:\Users\Tenken\appdata\local\{012ADFDA-A83C-410E-BEE3-DABB351FA0FF}
Successfully deleted: [Empty Folder] C:\Users\Tenken\appdata\local\{0CF66945-0B4E-4A2C-B593-537897A49EE7}
Successfully deleted: [Empty Folder] C:\Users\Tenken\appdata\local\{0E8C53B7-2A2F-4FC4-84BF-3227830D42FA}
Successfully deleted: [Empty Folder] C:\Users\Tenken\appdata\local\{135C9C52-513C-4489-82B5-EB9E511EC28C}
Successfully deleted: [Empty Folder] C:\Users\Tenken\appdata\local\{146F607F-DF31-48F3-A047-562FE40C2158}
Successfully deleted: [Empty Folder] C:\Users\Tenken\appdata\local\{1572ABAF-A64E-4D9E-93B4-A1157653CE24}
Successfully deleted: [Empty Folder] C:\Users\Tenken\appdata\local\{17DCA877-9923-4B56-BA91-E9032ADDF64E}
Successfully deleted: [Empty Folder] C:\Users\Tenken\appdata\local\{188A0998-81F0-477E-9F79-45086ECD5750}
Successfully deleted: [Empty Folder] C:\Users\Tenken\appdata\local\{1B4385E6-13E6-4DC9-9A4B-EEA02341A9F2}
Successfully deleted: [Empty Folder] C:\Users\Tenken\appdata\local\{1DDA28DF-4C4A-4AEB-82C7-DBC60C837B07}
Successfully deleted: [Empty Folder] C:\Users\Tenken\appdata\local\{2398CB85-DEDA-4A42-B27E-05BB93FA177D}
Successfully deleted: [Empty Folder] C:\Users\Tenken\appdata\local\{24521D63-5338-47EF-ADB4-957C6585715E}
Successfully deleted: [Empty Folder] C:\Users\Tenken\appdata\local\{282B5F20-285B-432E-9FAA-803DA0E30F7D}
Successfully deleted: [Empty Folder] C:\Users\Tenken\appdata\local\{2B0A2E91-8516-4DF5-85DD-2367CAF294EE}
Successfully deleted: [Empty Folder] C:\Users\Tenken\appdata\local\{2BDEAEBA-3FB0-4AC3-8734-8D0696B75FFC}
Successfully deleted: [Empty Folder] C:\Users\Tenken\appdata\local\{2DE586B2-D6A6-4BA1-9E3A-0C7C1A41060A}
Successfully deleted: [Empty Folder] C:\Users\Tenken\appdata\local\{2F066279-705E-48BC-A086-B8DBDB5AC884}
Successfully deleted: [Empty Folder] C:\Users\Tenken\appdata\local\{2F114FE5-DE07-4D39-9DC8-8EF4EE8D3C20}
Successfully deleted: [Empty Folder] C:\Users\Tenken\appdata\local\{329210E8-B10D-427C-98A1-B80BF49D9416}
Successfully deleted: [Empty Folder] C:\Users\Tenken\appdata\local\{341106B9-E570-44B2-8EE0-82759B0631A6}
Successfully deleted: [Empty Folder] C:\Users\Tenken\appdata\local\{34D3CE54-3E76-4B86-8018-932519B055FA}
Successfully deleted: [Empty Folder] C:\Users\Tenken\appdata\local\{35D64DA7-9F26-497F-B9DE-99E199E55A27}
Successfully deleted: [Empty Folder] C:\Users\Tenken\appdata\local\{373CBBD7-36E3-4E19-B55C-009E10A79EF5}
Successfully deleted: [Empty Folder] C:\Users\Tenken\appdata\local\{39FBABF9-D39C-4D8E-9B97-B802174C5FA2}
Successfully deleted: [Empty Folder] C:\Users\Tenken\appdata\local\{49159BD3-3D66-4736-810F-B05854B01CCA}
Successfully deleted: [Empty Folder] C:\Users\Tenken\appdata\local\{4A74919B-FAB9-42A2-8B9F-FCAE21AEA706}
Successfully deleted: [Empty Folder] C:\Users\Tenken\appdata\local\{4B4DEA01-EEA9-465C-866B-71BBAA895ACE}
Successfully deleted: [Empty Folder] C:\Users\Tenken\appdata\local\{5DB12A57-74E4-4FF5-8EF0-374951BAD319}
Successfully deleted: [Empty Folder] C:\Users\Tenken\appdata\local\{5EB1F41B-90A6-4FD0-AF63-E10FF497433E}
Successfully deleted: [Empty Folder] C:\Users\Tenken\appdata\local\{5F3A7C11-113A-4D0C-B6EE-894D7A604635}
Successfully deleted: [Empty Folder] C:\Users\Tenken\appdata\local\{63A70CBE-0AF4-4366-88C8-A3E124961E64}
Successfully deleted: [Empty Folder] C:\Users\Tenken\appdata\local\{64F26494-13F1-46FD-B547-88E98A87F4BD}
Successfully deleted: [Empty Folder] C:\Users\Tenken\appdata\local\{682EED87-42D0-4919-8F3A-151A0110E962}
Successfully deleted: [Empty Folder] C:\Users\Tenken\appdata\local\{6915D68E-098B-458F-86CE-03D4B7530872}
Successfully deleted: [Empty Folder] C:\Users\Tenken\appdata\local\{6AFAEE87-8F61-4B16-A5C3-D8E2AD61611D}
Successfully deleted: [Empty Folder] C:\Users\Tenken\appdata\local\{6B94A56C-2ED4-434E-8704-684492D83D35}
Successfully deleted: [Empty Folder] C:\Users\Tenken\appdata\local\{6D9BC171-3ADB-4DE3-A797-B67CE1231951}
Successfully deleted: [Empty Folder] C:\Users\Tenken\appdata\local\{6DA51791-0274-4855-8715-7A4A9B7D328F}
Successfully deleted: [Empty Folder] C:\Users\Tenken\appdata\local\{74413693-6F98-411D-9F97-EB6D53EC11C6}
Successfully deleted: [Empty Folder] C:\Users\Tenken\appdata\local\{758E0942-2769-4D16-B18D-6646FDD45756}
Successfully deleted: [Empty Folder] C:\Users\Tenken\appdata\local\{77145E6A-158A-4362-AFB7-381D546CACA5}
Successfully deleted: [Empty Folder] C:\Users\Tenken\appdata\local\{773DEB15-7753-4C85-91D5-29B7E4F99C23}
Successfully deleted: [Empty Folder] C:\Users\Tenken\appdata\local\{7C206BAA-15B6-47A3-A2FC-B99614FCE9B0}
Successfully deleted: [Empty Folder] C:\Users\Tenken\appdata\local\{7D5CC3A7-689B-4D19-8FD4-AB4009258043}
Successfully deleted: [Empty Folder] C:\Users\Tenken\appdata\local\{8011A532-4C02-4823-B916-24C19149C355}
Successfully deleted: [Empty Folder] C:\Users\Tenken\appdata\local\{811C9DFB-46F5-465D-8478-EB8ADC0E5C45}
Successfully deleted: [Empty Folder] C:\Users\Tenken\appdata\local\{8DC1A374-D4CE-4EBC-A016-2F23B979B66D}
Successfully deleted: [Empty Folder] C:\Users\Tenken\appdata\local\{8EF359F7-E36B-4119-A18A-E01E8D859C30}
Successfully deleted: [Empty Folder] C:\Users\Tenken\appdata\local\{90936F7F-2AF7-473F-96AF-E8E022915C4F}
Successfully deleted: [Empty Folder] C:\Users\Tenken\appdata\local\{90DA9C5A-7F16-4F91-8198-68A9117BD4E2}
Successfully deleted: [Empty Folder] C:\Users\Tenken\appdata\local\{951F2939-C3C5-4C6F-8098-6C2855CFD2B2}
Successfully deleted: [Empty Folder] C:\Users\Tenken\appdata\local\{9F8146AF-4819-44F2-825A-0D99C0B21296}
Successfully deleted: [Empty Folder] C:\Users\Tenken\appdata\local\{A17E007E-3151-4D45-AA52-EB75F7ED4EB7}
Successfully deleted: [Empty Folder] C:\Users\Tenken\appdata\local\{A1BD5BE8-0B87-4544-B397-E7BC7C696D9F}
Successfully deleted: [Empty Folder] C:\Users\Tenken\appdata\local\{A529C2BC-3121-43FB-B173-B956AC8B7539}
Successfully deleted: [Empty Folder] C:\Users\Tenken\appdata\local\{AA3F7652-3CEF-454C-A62D-870EAEFF89CF}
Successfully deleted: [Empty Folder] C:\Users\Tenken\appdata\local\{B0173982-2124-4FE0-AA8A-681F0A88DF00}
Successfully deleted: [Empty Folder] C:\Users\Tenken\appdata\local\{B0FFB676-C1B1-4456-8251-46DC5EFE6808}
Successfully deleted: [Empty Folder] C:\Users\Tenken\appdata\local\{B4E66B25-38F1-4C09-9399-4B357A6CA033}
Successfully deleted: [Empty Folder] C:\Users\Tenken\appdata\local\{B56E72B2-FA62-40B0-988C-F45919DAD2DF}
Successfully deleted: [Empty Folder] C:\Users\Tenken\appdata\local\{B6088099-B87A-4ABB-9D9B-B9B7BB8A881E}
Successfully deleted: [Empty Folder] C:\Users\Tenken\appdata\local\{B6A8492A-99C6-4543-9038-AE0E3B8C6544}
Successfully deleted: [Empty Folder] C:\Users\Tenken\appdata\local\{B7583A5A-1EED-46C1-839C-247FC7FC60C9}
Successfully deleted: [Empty Folder] C:\Users\Tenken\appdata\local\{BC1A229A-BBFB-4BBF-8267-470D766A2787}
Successfully deleted: [Empty Folder] C:\Users\Tenken\appdata\local\{C1A8802D-26AB-4203-8160-F6016706735A}
Successfully deleted: [Empty Folder] C:\Users\Tenken\appdata\local\{C94DFB96-BB3A-41C8-BB61-FB3CA61F10F4}
Successfully deleted: [Empty Folder] C:\Users\Tenken\appdata\local\{CA1A7735-8C40-4B62-A63C-26A744D64B1E}
Successfully deleted: [Empty Folder] C:\Users\Tenken\appdata\local\{CE90AB45-1CF6-4C3A-B275-6AA5194061CF}
Successfully deleted: [Empty Folder] C:\Users\Tenken\appdata\local\{CE94DE42-6C4A-459D-964E-39C0B9B730ED}
Successfully deleted: [Empty Folder] C:\Users\Tenken\appdata\local\{DA7D52E0-A55C-4961-A6E9-F07F96758B4A}
Successfully deleted: [Empty Folder] C:\Users\Tenken\appdata\local\{DAE02796-FBB6-4315-AC29-A6B780F9F85A}
Successfully deleted: [Empty Folder] C:\Users\Tenken\appdata\local\{DB2DEFCE-9B87-498C-8C82-31AAF3CCA8CF}
Successfully deleted: [Empty Folder] C:\Users\Tenken\appdata\local\{ED99367C-C764-443D-AE0D-A69689C1F72E}
Successfully deleted: [Empty Folder] C:\Users\Tenken\appdata\local\{F03EB3B8-AF80-4ECB-955F-E10772E1A8B3}
Successfully deleted: [Empty Folder] C:\Users\Tenken\appdata\local\{F53139A0-CDBC-43FC-BAD8-2AFC693C3AC1}
 
 
 
~~~ Event Viewer Logs were cleared
 
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Tue 06/25/2013 at 14:16:28.85
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 

---

 

I uninstalled and installed the programs as suggested. :) There was a pop-up saying "browser launch error 3" when I installed Java last, but otherwise no other issues. May I ask if anything removed in yesterday's logs were things I should be worried about my passwords having been vulnerable to?


Edited by Melisae21, 25 June 2013 - 04:30 PM.


#8 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,440 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:13 AM

Posted 25 June 2013 - 07:09 PM

Looks good melisae

Nothing very dangerous... Spy and ad ware only. Things that track you for sending you advertisements.

 

Good to go and see it wasn't a waste of time.:)


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users