Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

help java/exploit.agent.pej.trojan


  • Please log in to reply
23 replies to this topic

#1 likishi84

likishi84

  • Members
  • 44 posts
  • OFFLINE
  •  
  • Local time:11:40 AM

Posted 11 August 2013 - 12:57 PM

hi i am running a eset scan on my sisters computer in safe mode and it has come up with a few threats will try and copy and paste whats on her screen and pot up but here are the threats coming up 

 

a variant of java/exploit.agent.pej trojan x2 

 

a variant of win32/bunndle application 

 

4 x a variant of win32/hiddenstart.a.application 

 

a bit about the system it is a dell n5030 with windows 7 64 bit os 

 

any help gratefully received 

 

 

thanks in advance 

 

 

 



BC AdBot (Login to Remove)

 


#2 GodfatherKing

GodfatherKing

  • Members
  • 587 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:40 PM

Posted 11 August 2013 - 01:33 PM

:welcome:

 

 

:step1: Install and run MBAM

===================================================

 

:step2:  Running TDSSKiller to obtain log

 

Note: Don't cure or delete a threat, but choose skip for all instead.

  • Please download TDSSKiller from here and save it to your Desktop
  • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters

tds2.jpg

  • In the Additional options: Check Detect TDLFS file system
  • Click Start Scan and allow the scan process to run.
  • Choose for all threats to Skip for all of them.
  • Click Continue
  • Please post the TDSSKiller.[Version]_[Date]_[Time]_log.txt found in your root directory (typically c:\)

===================================================

 

:step3: ESET Online Scanner

 

Note: If your AV is blocking Eset online scanner, please temporarily disable your AV.

 

I'd like us to scan your machine with ESET OnlineScan This process may may take several hours, that is normal.

  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and » UNCHECK "Remove found threats" <== Important
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Copy and paste the information in your next reply. (If no malware was found you will not be presented with a log).
  • Click the Back button.
  • Click the Finish button.

===================================================


If you have received help from me and I don't have respond to you for almost >= 3 days, send me a Private Message.  :hello:


#3 likishi84

likishi84
  • Topic Starter

  • Members
  • 44 posts
  • OFFLINE
  •  
  • Local time:11:40 AM

Posted 11 August 2013 - 01:38 PM

hi thanks for your help am i ok to run this in safe mode or would you like me to restart the computer in to normal mode?



#4 likishi84

likishi84
  • Topic Starter

  • Members
  • 44 posts
  • OFFLINE
  •  
  • Local time:11:40 AM

Posted 11 August 2013 - 01:41 PM

hi this is the eset report i have just done 

 

C:\Program Files (x86)\Dell DataSafe Local Backup\hstart.exe a variant of Win32/HiddenStart.A application cleaned by deleting - quarantined
C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\hstart.exe a variant of Win32/HiddenStart.A application cleaned by deleting - quarantined
C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\UpdateWorkingDirectory\DSL\hstart.exe a variant of Win32/HiddenStart.A application cleaned by deleting - quarantined
C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\UpdateWorkingDirectory\DSL\Components\DSUpdate\hstart.exe a variant of Win32/HiddenStart.A application cleaned by deleting - quarantined
C:\Program Files (x86)\Vuze\.install4j\i4j_extf_31_5p83tu.dll a variant of Win32/Bunndle application cleaned by deleting - quarantined
C:\Users\lisa\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\49\39c202b1-44c23f90 a variant of Java/Exploit.Agent.PEJ trojan cleaned by deleting - quarantined
C:\Users\lisa\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\63\323eef3f-131caaf5 a variant of Java/Exploit.Agent.PEJ trojan cleaned by deleting - quarantined
 

 

am running the other two now 



#5 likishi84

likishi84
  • Topic Starter

  • Members
  • 44 posts
  • OFFLINE
  •  
  • Local time:11:40 AM

Posted 11 August 2013 - 01:44 PM

here is the tdds killer report 

 

19:40:19.0415 1592  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
19:40:19.0754 1592  ============================================================
19:40:19.0754 1592  Current date / time: 2013/08/11 19:40:19.0754
19:40:19.0754 1592  SystemInfo:
19:40:19.0754 1592  
19:40:19.0754 1592  OS Version: 6.1.7601 ServicePack: 1.0
19:40:19.0754 1592  Product type: Workstation
19:40:19.0754 1592  ComputerName: LISA-PC
19:40:19.0754 1592  UserName: lisa
19:40:19.0754 1592  Windows directory: C:\Windows
19:40:19.0754 1592  System windows directory: C:\Windows
19:40:19.0754 1592  Running under WOW64
19:40:19.0755 1592  Processor architecture: Intel x64
19:40:19.0755 1592  Number of processors: 1
19:40:19.0755 1592  Page size: 0x1000
19:40:19.0755 1592  Boot type: Safe boot with network
19:40:19.0755 1592  ============================================================
19:40:20.0867 1592  Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
19:40:20.0872 1592  ============================================================
19:40:20.0872 1592  \Device\Harddisk0\DR0:
19:40:20.0872 1592  MBR partitions:
19:40:20.0872 1592  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x1D4C000
19:40:20.0872 1592  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1D7E800, BlocksNum 0x236AFAB0
19:40:20.0872 1592  ============================================================
19:40:20.0894 1592  C: <-> \Device\Harddisk0\DR0\Partition2
19:40:20.0894 1592  ============================================================
19:40:20.0895 1592  Initialize success
19:40:20.0895 1592  ============================================================
19:40:23.0637 1296  ============================================================
19:40:23.0637 1296  Scan started
19:40:23.0637 1296  Mode: Manual; 
19:40:23.0637 1296  ============================================================
19:40:23.0925 1296  ================ Scan system memory ========================
19:40:23.0925 1296  System memory - ok
19:40:23.0928 1296  ================ Scan services =============================
19:40:24.0168 1296  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
19:40:24.0172 1296  1394ohci - ok
19:40:24.0280 1296  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
19:40:24.0286 1296  ACPI - ok
19:40:24.0356 1296  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
19:40:24.0357 1296  AcpiPmi - ok
19:40:24.0545 1296  [ ADDA5E1951B90D3D23C56D3CF0622ADC ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
19:40:24.0546 1296  AdobeARMservice - ok
19:40:24.0707 1296  [ 476BB014F3F68C0C15EDDD5B444DA8FF ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
19:40:24.0709 1296  AdobeFlashPlayerUpdateSvc - ok
19:40:24.0804 1296  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
19:40:24.0812 1296  adp94xx - ok
19:40:24.0886 1296  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
19:40:24.0891 1296  adpahci - ok
19:40:24.0969 1296  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
19:40:24.0973 1296  adpu320 - ok
19:40:25.0058 1296  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
19:40:25.0072 1296  AeLookupSvc - ok
19:40:25.0240 1296  [ D1E343BC00136CE03C4D403194D06A80 ] AERTFilters     C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
19:40:25.0241 1296  AERTFilters - ok
19:40:25.0397 1296  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD             C:\Windows\system32\drivers\afd.sys
19:40:25.0405 1296  AFD - ok
19:40:25.0530 1296  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\drivers\agp440.sys
19:40:25.0531 1296  agp440 - ok
19:40:25.0634 1296  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\drivers\aliide.sys
19:40:25.0635 1296  aliide - ok
19:40:25.0700 1296  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\drivers\amdide.sys
19:40:25.0701 1296  amdide - ok
19:40:25.0739 1296  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
19:40:25.0741 1296  AmdK8 - ok
19:40:25.0754 1296  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
19:40:25.0756 1296  AmdPPM - ok
19:40:25.0827 1296  [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
19:40:25.0829 1296  amdsata - ok
19:40:25.0860 1296  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
19:40:25.0864 1296  amdsbs - ok
19:40:25.0893 1296  [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
19:40:25.0894 1296  amdxata - ok
19:40:25.0951 1296  [ 8655A2983A86D6675135B1FF6892055D ] ApfiltrService  C:\Windows\system32\DRIVERS\Apfiltr.sys
19:40:25.0957 1296  ApfiltrService - ok
19:40:26.0046 1296  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\Windows\system32\drivers\appid.sys
19:40:26.0047 1296  AppID - ok
19:40:26.0071 1296  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
19:40:26.0073 1296  AppIDSvc - ok
19:40:26.0369 1296  [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo         C:\Windows\System32\appinfo.dll
19:40:26.0371 1296  Appinfo - ok
19:40:26.0497 1296  [ 4FE5C6D40664AE07BE5105874357D2ED ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
19:40:26.0498 1296  Apple Mobile Device - ok
19:40:26.0579 1296  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\DRIVERS\arc.sys
19:40:26.0581 1296  arc - ok
19:40:26.0599 1296  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
19:40:26.0601 1296  arcsas - ok
19:40:26.0627 1296  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
19:40:26.0628 1296  AsyncMac - ok
19:40:26.0682 1296  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\drivers\atapi.sys
19:40:26.0683 1296  atapi - ok
19:40:26.0757 1296  [ F8633CDD09647A64EE8DB550630427FF ] athr            C:\Windows\system32\DRIVERS\athrx.sys
19:40:26.0803 1296  athr - ok
19:40:26.0876 1296  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
19:40:26.0892 1296  AudioEndpointBuilder - ok
19:40:26.0907 1296  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
19:40:26.0912 1296  AudioSrv - ok
19:40:27.0138 1296  [ 4DB93F4DB7077801D2D82013506AC1D0 ] AVGIDSAgent     C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe
19:40:27.0169 1296  AVGIDSAgent - ok
19:40:27.0249 1296  [ 241C32E942869FD1351CC5864976C3AC ] AVGIDSDriver    C:\Windows\system32\DRIVERS\avgidsdrivera.sys
19:40:27.0253 1296  AVGIDSDriver - ok
19:40:27.0292 1296  [ C8D9EEACF266512C1FA52E2ECF5AD944 ] AVGIDSHA        C:\Windows\system32\DRIVERS\avgidsha.sys
19:40:27.0294 1296  AVGIDSHA - ok
19:40:27.0363 1296  [ FACD18A89FDEBC35C85CAF762B294BE2 ] Avgldx64        C:\Windows\system32\DRIVERS\avgldx64.sys
19:40:27.0366 1296  Avgldx64 - ok
19:40:27.0441 1296  [ 29FCDEAC6086FB7E55344B51E35D99CE ] Avgloga         C:\Windows\system32\DRIVERS\avgloga.sys
19:40:27.0447 1296  Avgloga - ok
19:40:27.0524 1296  [ 85053293DCDE19829E8691A9E9E8A6FF ] Avgmfx64        C:\Windows\system32\DRIVERS\avgmfx64.sys
19:40:27.0526 1296  Avgmfx64 - ok
19:40:27.0673 1296  [ 0638096A30B7081DAACB8DCC39BD16EF ] Avgrkx64        C:\Windows\system32\DRIVERS\avgrkx64.sys
19:40:27.0674 1296  Avgrkx64 - ok
19:40:27.0721 1296  [ 69BD90E337625F96C718CACE7A9C9E29 ] Avgtdia         C:\Windows\system32\DRIVERS\avgtdia.sys
19:40:27.0725 1296  Avgtdia - ok
19:40:27.0763 1296  [ 18AAAC7ED383C465E319B5DD07D0A0B6 ] avgtp           C:\Windows\system32\drivers\avgtpx64.sys
19:40:27.0764 1296  avgtp - ok
19:40:27.0832 1296  [ 48939D9F350AEF9370F03A1E49A49BE2 ] avgwd           C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
19:40:27.0834 1296  avgwd - ok
19:40:27.0916 1296  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\Windows\System32\AxInstSV.dll
19:40:27.0919 1296  AxInstSV - ok
19:40:27.0972 1296  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
19:40:27.0979 1296  b06bdrv - ok
19:40:28.0193 1296  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
19:40:28.0199 1296  b57nd60a - ok
19:40:28.0246 1296  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
19:40:28.0248 1296  BDESVC - ok
19:40:28.0263 1296  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
19:40:28.0264 1296  Beep - ok
19:40:28.0333 1296  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE             C:\Windows\System32\bfe.dll
19:40:28.0349 1296  BFE - ok
19:40:28.0791 1296  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\Windows\System32\qmgr.dll
19:40:28.0864 1296  BITS - ok
19:40:28.0894 1296  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
19:40:28.0895 1296  blbdrive - ok
19:40:28.0980 1296  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
19:40:28.0983 1296  Bonjour Service - ok
19:40:29.0065 1296  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
19:40:29.0067 1296  bowser - ok
19:40:29.0300 1296  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
19:40:29.0301 1296  BrFiltLo - ok
19:40:29.0308 1296  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
19:40:29.0309 1296  BrFiltUp - ok
19:40:29.0353 1296  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\Windows\System32\browser.dll
19:40:29.0356 1296  Browser - ok
19:40:29.0382 1296  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
19:40:29.0386 1296  Brserid - ok
19:40:29.0409 1296  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
19:40:29.0410 1296  BrSerWdm - ok
19:40:29.0426 1296  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
19:40:29.0427 1296  BrUsbMdm - ok
19:40:29.0435 1296  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
19:40:29.0436 1296  BrUsbSer - ok
19:40:29.0454 1296  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
19:40:29.0456 1296  BTHMODEM - ok
19:40:29.0514 1296  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
19:40:29.0516 1296  bthserv - ok
19:40:29.0533 1296  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
19:40:29.0558 1296  cdfs - ok
19:40:29.0614 1296  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
19:40:29.0617 1296  cdrom - ok
19:40:29.0666 1296  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\Windows\System32\certprop.dll
19:40:29.0668 1296  CertPropSvc - ok
19:40:29.0708 1296  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
19:40:29.0710 1296  circlass - ok
19:40:29.0737 1296  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
19:40:29.0743 1296  CLFS - ok
19:40:30.0386 1296  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:40:30.0388 1296  clr_optimization_v2.0.50727_32 - ok
19:40:30.0447 1296  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
19:40:30.0448 1296  clr_optimization_v2.0.50727_64 - ok
19:40:30.0563 1296  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:40:30.0565 1296  clr_optimization_v4.0.30319_32 - ok
19:40:30.0824 1296  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
19:40:30.0826 1296  clr_optimization_v4.0.30319_64 - ok
19:40:30.0869 1296  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
19:40:30.0870 1296  CmBatt - ok
19:40:30.0910 1296  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\drivers\cmdide.sys
19:40:30.0911 1296  cmdide - ok
19:40:31.0086 1296  [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG             C:\Windows\system32\Drivers\cng.sys
19:40:31.0128 1296  CNG - ok
19:40:31.0156 1296  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
19:40:31.0157 1296  Compbatt - ok
19:40:31.0211 1296  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
19:40:31.0213 1296  CompositeBus - ok
19:40:31.0236 1296  COMSysApp - ok
19:40:31.0255 1296  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
19:40:31.0256 1296  crcdisk - ok
19:40:31.0315 1296  [ D8129C49798CBBFB2E4351D4B7B8EF9C ] CryptSvc        C:\Windows\system32\cryptsvc.dll
19:40:31.0318 1296  CryptSvc - ok
19:40:31.0516 1296  [ FBE228ABEAB2BE13B9C3A3A112D4D8DC ] CtClsFlt        C:\Windows\system32\DRIVERS\CtClsFlt.sys
19:40:31.0520 1296  CtClsFlt - ok
19:40:31.0628 1296  [ 72794D112CBAFF3BC0C29BF7350D4741 ] cvhsvc          C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
19:40:31.0633 1296  cvhsvc - ok
19:40:31.0693 1296  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\Windows\system32\rpcss.dll
19:40:31.0711 1296  DcomLaunch - ok
19:40:31.0845 1296  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
19:40:31.0869 1296  defragsvc - ok
19:40:31.0965 1296  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
19:40:31.0967 1296  DfsC - ok
19:40:32.0494 1296  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\Windows\system32\dhcpcore.dll
19:40:32.0498 1296  Dhcp - ok
19:40:32.0532 1296  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
19:40:32.0533 1296  discache - ok
19:40:32.0573 1296  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\DRIVERS\disk.sys
19:40:32.0575 1296  Disk - ok
19:40:32.0603 1296  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
19:40:32.0606 1296  Dnscache - ok
19:40:32.0668 1296  [ 0840ABBBDF438691EE65A20040635CBE ] DockLoginService C:\Program Files\Dell\DellDock\DockLogin.exe
19:40:32.0669 1296  DockLoginService - ok
19:40:32.0818 1296  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\Windows\System32\dot3svc.dll
19:40:32.0822 1296  dot3svc - ok
19:40:32.0849 1296  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\Windows\system32\dps.dll
19:40:32.0852 1296  DPS - ok
19:40:32.0892 1296  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
19:40:32.0893 1296  drmkaud - ok
19:40:32.0955 1296  [ AF2E16242AA723F68F461B6EAE2EAD3D ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
19:40:32.0975 1296  DXGKrnl - ok
19:40:33.0014 1296  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
19:40:33.0017 1296  EapHost - ok
19:40:33.0125 1296  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
19:40:33.0208 1296  ebdrv - ok
19:40:33.0242 1296  [ C118A82CD78818C29AB228366EBF81C3 ] EFS             C:\Windows\System32\lsass.exe
19:40:33.0244 1296  EFS - ok
19:40:33.0387 1296  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
19:40:33.0391 1296  ehRecvr - ok
19:40:33.0460 1296  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
19:40:33.0463 1296  ehSched - ok
19:40:33.0758 1296  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
19:40:33.0767 1296  elxstor - ok
19:40:33.0789 1296  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\drivers\errdev.sys
19:40:33.0790 1296  ErrDev - ok
19:40:33.0840 1296  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
19:40:33.0847 1296  EventSystem - ok
19:40:33.0866 1296  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
19:40:33.0876 1296  exfat - ok
19:40:33.0905 1296  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
19:40:33.0909 1296  fastfat - ok
19:40:33.0981 1296  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\Windows\system32\fxssvc.exe
19:40:33.0999 1296  Fax - ok
19:40:34.0024 1296  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
19:40:34.0026 1296  fdc - ok
19:40:34.0060 1296  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
19:40:34.0061 1296  fdPHost - ok
19:40:34.0082 1296  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
19:40:34.0083 1296  FDResPub - ok
19:40:34.0098 1296  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
19:40:34.0100 1296  FileInfo - ok
19:40:34.0116 1296  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
19:40:34.0118 1296  Filetrace - ok
19:40:34.0141 1296  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
19:40:34.0142 1296  flpydisk - ok
19:40:34.0196 1296  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
19:40:34.0200 1296  FltMgr - ok
19:40:34.0692 1296  [ C4C183E6551084039EC862DA1C945E3D ] FontCache       C:\Windows\system32\FntCache.dll
19:40:34.0706 1296  FontCache - ok
19:40:34.0910 1296  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
19:40:34.0911 1296  FontCache3.0.0.0 - ok
19:40:34.0943 1296  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
19:40:34.0946 1296  FsDepends - ok
19:40:35.0258 1296  [ 07DA62C960DDCCC2D35836AEAB4FC578 ] fssfltr         C:\Windows\system32\DRIVERS\fssfltr.sys
19:40:35.0259 1296  fssfltr - ok
19:40:35.0355 1296  [ 28DDEEEC44E988657B732CF404D504CB ] fsssvc          C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
19:40:35.0364 1296  fsssvc - ok
19:40:35.0412 1296  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
19:40:35.0413 1296  Fs_Rec - ok
19:40:35.0462 1296  [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
19:40:35.0466 1296  fvevol - ok
19:40:35.0513 1296  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
19:40:35.0514 1296  gagp30kx - ok
19:40:35.0962 1296  [ C403C5DB49A0F9AAF4F2128EDC0106D8 ] GamesAppService C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
19:40:35.0964 1296  GamesAppService - ok
19:40:36.0073 1296  [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
19:40:36.0077 1296  GEARAspiWDM - ok
19:40:36.0145 1296  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\Windows\System32\gpsvc.dll
19:40:36.0175 1296  gpsvc - ok
19:40:36.0317 1296  [ F02A533F517EB38333CB12A9E8963773 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
19:40:36.0318 1296  gupdate - ok
19:40:36.0475 1296  [ F02A533F517EB38333CB12A9E8963773 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
19:40:36.0476 1296  gupdatem - ok
19:40:36.0642 1296  [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc           C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
19:40:36.0644 1296  gusvc - ok
19:40:36.0686 1296  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
19:40:36.0688 1296  hcw85cir - ok
19:40:37.0095 1296  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
19:40:37.0100 1296  HdAudAddService - ok
19:40:37.0146 1296  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
19:40:37.0148 1296  HDAudBus - ok
19:40:37.0206 1296  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
19:40:37.0208 1296  HidBatt - ok
19:40:37.0237 1296  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
19:40:37.0239 1296  HidBth - ok
19:40:37.0323 1296  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
19:40:37.0325 1296  HidIr - ok
19:40:37.0365 1296  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\system32\hidserv.dll
19:40:37.0366 1296  hidserv - ok
19:40:37.0452 1296  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
19:40:37.0460 1296  HidUsb - ok
19:40:37.0585 1296  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\Windows\system32\kmsvc.dll
19:40:37.0588 1296  hkmsvc - ok
19:40:37.0689 1296  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
19:40:37.0693 1296  HomeGroupListener - ok
19:40:37.0744 1296  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
19:40:37.0748 1296  HomeGroupProvider - ok
19:40:37.0875 1296  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
19:40:37.0876 1296  HpSAMD - ok
19:40:38.0285 1296  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
19:40:38.0295 1296  HTTP - ok
19:40:38.0331 1296  [ 4B5C07DB91A0099272FAAE732E1152BD ] hwdatacard      C:\Windows\system32\DRIVERS\ewusbmdm.sys
19:40:38.0333 1296  hwdatacard - ok
19:40:38.0371 1296  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
19:40:38.0372 1296  hwpolicy - ok
19:40:38.0419 1296  [ 1F24CF1F7DB6D4461AC65A86DB8E4BC2 ] hwusbfake       C:\Windows\system32\DRIVERS\ewusbfake.sys
19:40:38.0421 1296  hwusbfake - ok
19:40:38.0476 1296  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
19:40:38.0478 1296  i8042prt - ok
19:40:38.0859 1296  [ 2064090C9FAAD92C090D77E50E735B2E ] iaStor          C:\Windows\system32\DRIVERS\iaStor.sys
19:40:38.0863 1296  iaStor - ok
19:40:39.0202 1296  [ A9BE186ABF28B3D3D698CB855EDF457E ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
19:40:39.0202 1296  IAStorDataMgrSvc - ok
19:40:39.0417 1296  [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
19:40:39.0432 1296  iaStorV - ok
19:40:39.0533 1296  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
19:40:39.0539 1296  idsvc - ok
19:40:40.0192 1296  [ C6238C6ABD6AC99F5D152DA4E9439A3D ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
19:40:40.0571 1296  igfx - ok
19:40:40.0662 1296  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
19:40:40.0664 1296  iirsp - ok
19:40:40.0915 1296  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\Windows\System32\ikeext.dll
19:40:40.0926 1296  IKEEXT - ok
19:40:41.0435 1296  [ 2FAAEA2DC2719E67FD7C0D51F9E743F7 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
19:40:41.0499 1296  IntcAzAudAddService - ok
19:40:41.0738 1296  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\drivers\intelide.sys
19:40:41.0784 1296  intelide - ok
19:40:42.0057 1296  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
19:40:42.0058 1296  intelppm - ok
19:40:42.0260 1296  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
19:40:42.0270 1296  IPBusEnum - ok
19:40:42.0725 1296  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
19:40:42.0727 1296  IpFilterDriver - ok
19:40:42.0785 1296  [ 08C2957BB30058E663720C5606885653 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
19:40:42.0936 1296  iphlpsvc - ok
19:40:43.0389 1296  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
19:40:43.0391 1296  IPMIDRV - ok
19:40:43.0492 1296  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
19:40:43.0494 1296  IPNAT - ok
19:40:43.0764 1296  [ 0FF335D687C85097725A53458160E81E ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
19:40:43.0768 1296  iPod Service - ok
19:40:43.0799 1296  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
19:40:43.0801 1296  IRENUM - ok
19:40:44.0266 1296  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
19:40:44.0269 1296  isapnp - ok
19:40:45.0075 1296  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
19:40:45.0232 1296  iScsiPrt - ok
19:40:45.0274 1296  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\drivers\kbdclass.sys
19:40:45.0275 1296  kbdclass - ok
19:40:45.0520 1296  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\Windows\system32\drivers\kbdhid.sys
19:40:45.0645 1296  kbdhid - ok
19:40:45.0768 1296  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\Windows\system32\lsass.exe
19:40:45.0769 1296  KeyIso - ok
19:40:46.0034 1296  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
19:40:46.0036 1296  KSecDD - ok
19:40:46.0173 1296  [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
19:40:46.0176 1296  KSecPkg - ok
19:40:46.0278 1296  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
19:40:46.0281 1296  ksthunk - ok
19:40:46.0396 1296  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
19:40:46.0402 1296  KtmRm - ok
19:40:46.0497 1296  [ 32980B4E711D2EF7128C44DC2CF85706 ] L1C             C:\Windows\system32\DRIVERS\L1C62x64.sys
19:40:46.0499 1296  L1C - ok
19:40:46.0687 1296  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\Windows\system32\srvsvc.dll
19:40:46.0700 1296  LanmanServer - ok
19:40:46.0948 1296  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
19:40:46.0951 1296  LanmanWorkstation - ok
19:40:47.0015 1296  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
19:40:47.0017 1296  lltdio - ok
19:40:47.0062 1296  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
19:40:47.0079 1296  lltdsvc - ok
19:40:47.0111 1296  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
19:40:47.0112 1296  lmhosts - ok
19:40:47.0170 1296  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
19:40:47.0172 1296  LSI_FC - ok
19:40:47.0213 1296  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
19:40:47.0215 1296  LSI_SAS - ok
19:40:47.0254 1296  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
19:40:47.0263 1296  LSI_SAS2 - ok
19:40:47.0313 1296  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
19:40:47.0315 1296  LSI_SCSI - ok
19:40:47.0401 1296  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
19:40:47.0403 1296  luafv - ok
19:40:47.0774 1296  [ 3D1516114F5B1548864D043177F992A6 ] lxeaCATSCustConnectService C:\Windows\system32\spool\DRIVERS\x64\3\\lxeaserv.exe
19:40:47.0786 1296  lxeaCATSCustConnectService - ok
19:40:47.0916 1296  lxea_device - ok
19:40:48.0122 1296  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
19:40:48.0125 1296  Mcx2Svc - ok
19:40:48.0162 1296  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
19:40:48.0164 1296  megasas - ok
19:40:48.0189 1296  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
19:40:48.0198 1296  MegaSR - ok
19:40:48.0271 1296  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
19:40:48.0273 1296  MMCSS - ok
19:40:48.0299 1296  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
19:40:48.0301 1296  Modem - ok
19:40:48.0351 1296  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
19:40:48.0352 1296  monitor - ok
19:40:48.0521 1296  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
19:40:48.0522 1296  mouclass - ok
19:40:48.0802 1296  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
19:40:48.0936 1296  mouhid - ok
19:40:49.0034 1296  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
19:40:49.0036 1296  mountmgr - ok
19:40:49.0225 1296  [ FC1D590039EF06A381768710E6C07E75 ] MpFilter        C:\Windows\system32\DRIVERS\MpFilter.sys
19:40:49.0229 1296  MpFilter - ok
19:40:49.0319 1296  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\Windows\system32\drivers\mpio.sys
19:40:49.0322 1296  mpio - ok
19:40:49.0402 1296  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
19:40:49.0404 1296  mpsdrv - ok
19:40:49.0752 1296  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc          C:\Windows\system32\mpssvc.dll
19:40:49.0769 1296  MpsSvc - ok
19:40:49.0831 1296  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
19:40:49.0834 1296  MRxDAV - ok
19:40:49.0861 1296  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
19:40:49.0864 1296  mrxsmb - ok
19:40:49.0893 1296  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
19:40:49.0898 1296  mrxsmb10 - ok
19:40:49.0937 1296  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
19:40:49.0939 1296  mrxsmb20 - ok
19:40:49.0950 1296  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\Windows\system32\drivers\msahci.sys
19:40:49.0951 1296  msahci - ok
19:40:50.0097 1296  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
19:40:50.0099 1296  msdsm - ok
19:40:50.0113 1296  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
19:40:50.0117 1296  MSDTC - ok
19:40:50.0174 1296  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
19:40:50.0175 1296  Msfs - ok
19:40:50.0195 1296  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
19:40:50.0196 1296  mshidkmdf - ok
19:40:50.0445 1296  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
19:40:50.0446 1296  msisadrv - ok
19:40:50.0610 1296  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
19:40:50.0613 1296  MSiSCSI - ok
19:40:50.0618 1296  msiserver - ok
19:40:50.0808 1296  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
19:40:50.0809 1296  MSKSSRV - ok
19:40:50.0911 1296  [ FD909D744ACFCF61CAC3A77854F8B301 ] MsMpSvc         c:\Program Files\Microsoft Security Client\MsMpEng.exe
19:40:50.0912 1296  MsMpSvc - ok
19:40:50.0941 1296  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
19:40:50.0942 1296  MSPCLOCK - ok
19:40:50.0957 1296  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
19:40:50.0957 1296  MSPQM - ok
19:40:51.0165 1296  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
19:40:51.0171 1296  MsRPC - ok
19:40:51.0231 1296  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
19:40:51.0232 1296  mssmbios - ok
19:40:51.0304 1296  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
19:40:51.0305 1296  MSTEE - ok
19:40:51.0325 1296  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
19:40:51.0326 1296  MTConfig - ok
19:40:51.0440 1296  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
19:40:51.0442 1296  Mup - ok
19:40:51.0522 1296  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\Windows\system32\qagentRT.dll
19:40:51.0552 1296  napagent - ok
19:40:51.0626 1296  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
19:40:51.0754 1296  NativeWifiP - ok
19:40:51.0825 1296  [ 760E38053BF56E501D562B70AD796B88 ] NDIS            C:\Windows\system32\drivers\ndis.sys
19:40:51.0859 1296  NDIS - ok
19:40:51.0967 1296  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
19:40:51.0968 1296  NdisCap - ok
19:40:52.0045 1296  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
19:40:52.0046 1296  NdisTapi - ok
19:40:52.0225 1296  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
19:40:52.0226 1296  Ndisuio - ok
19:40:52.0287 1296  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
19:40:52.0290 1296  NdisWan - ok
19:40:52.0337 1296  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
19:40:52.0339 1296  NDProxy - ok
19:40:52.0366 1296  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
19:40:52.0367 1296  NetBIOS - ok
19:40:52.0425 1296  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
19:40:52.0429 1296  NetBT - ok
19:40:52.0439 1296  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\Windows\system32\lsass.exe
19:40:52.0440 1296  Netlogon - ok
19:40:52.0753 1296  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
19:40:52.0759 1296  Netman - ok
19:40:52.0839 1296  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
19:40:52.0847 1296  netprofm - ok
19:40:52.0973 1296  [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
19:40:52.0974 1296  NetTcpPortSharing - ok
19:40:53.0008 1296  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
19:40:53.0010 1296  nfrd960 - ok
19:40:53.0165 1296  [ 8FB3C853E886E1E4D57271672486111C ] NisDrv          C:\Windows\system32\DRIVERS\NisDrvWFP.sys
19:40:53.0168 1296  NisDrv - ok
19:40:53.0213 1296  [ EC445A9F0FB52E5F467C156FFF6F6D93 ] NisSrv          c:\Program Files\Microsoft Security Client\NisSrv.exe
19:40:53.0216 1296  NisSrv - ok
19:40:53.0392 1296  [ 8AD77806D336673F270DB31645267293 ] NlaSvc          C:\Windows\System32\nlasvc.dll
19:40:53.0398 1296  NlaSvc - ok
19:40:53.0425 1296  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
19:40:53.0427 1296  Npfs - ok
19:40:53.0466 1296  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
19:40:53.0468 1296  nsi - ok
19:40:53.0520 1296  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
19:40:53.0521 1296  nsiproxy - ok
19:40:53.0609 1296  [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
19:40:53.0655 1296  Ntfs - ok
19:40:53.0778 1296  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
19:40:54.0001 1296  Null - ok
19:40:54.0269 1296  [ 0A92CB65770442ED0DC44834632F66AD ] nvraid          C:\Windows\system32\drivers\nvraid.sys
19:40:54.0370 1296  nvraid - ok
19:40:54.0601 1296  [ DAB0E87525C10052BF65F06152F37E4A ] nvstor          C:\Windows\system32\drivers\nvstor.sys
19:40:54.0604 1296  nvstor - ok
19:40:54.0709 1296  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
19:40:54.0711 1296  nv_agp - ok
19:40:54.0800 1296  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
19:40:54.0805 1296  ohci1394 - ok
19:40:55.0059 1296  [ CCFAB713223E6F8A10FDF139120189D1 ] OrangeMobileBroadband_Service C:\Program Files (x86)\OrangeMobileBroadband\OrangeMobileBroadband_Service.exe
19:40:55.0077 1296  OrangeMobileBroadband_Service - ok
19:40:55.0188 1296  [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
19:40:55.0189 1296  ose - ok
19:40:55.0506 1296  [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
19:40:55.0567 1296  osppsvc - ok
19:40:55.0606 1296  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
19:40:55.0613 1296  p2pimsvc - ok
19:40:55.0651 1296  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
19:40:55.0659 1296  p2psvc - ok
19:40:55.0707 1296  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
19:40:55.0709 1296  Parport - ok
19:40:55.0764 1296  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\Windows\system32\drivers\partmgr.sys
19:40:55.0765 1296  partmgr - ok
19:40:55.0842 1296  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
19:40:55.0846 1296  PcaSvc - ok
19:40:55.0879 1296  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\Windows\system32\drivers\pci.sys
19:40:55.0882 1296  pci - ok
19:40:55.0994 1296  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\drivers\pciide.sys
19:40:55.0995 1296  pciide - ok
19:40:56.0060 1296  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
19:40:56.0064 1296  pcmcia - ok
19:40:56.0273 1296  [ 876FD95B7A3B7FE6179FBD16E7A6486C ] PCTCore         C:\Windows\system32\drivers\PCTCore64.sys
19:40:56.0283 1296  PCTCore - ok
19:40:56.0385 1296  [ BA1F42A42F405F62CEFF6B69A2797F7C ] pctDS           C:\Windows\system32\drivers\pctDS64.sys
19:40:56.0392 1296  pctDS - ok
19:40:56.0469 1296  [ 577F20EBF1E42BEBB238E2412B99C7EE ] PCTSD           C:\Windows\system32\Drivers\PCTSD64.sys
19:40:56.0474 1296  PCTSD - ok
19:40:56.0615 1296  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
19:40:56.0617 1296  pcw - ok
19:40:56.0659 1296  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
19:40:56.0677 1296  PEAUTH - ok
19:40:56.0803 1296  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
19:40:56.0818 1296  PerfHost - ok
19:40:57.0181 1296  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\Windows\system32\pla.dll
19:40:57.0233 1296  pla - ok
19:40:57.0361 1296  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
19:40:57.0369 1296  PlugPlay - ok
19:40:57.0403 1296  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
19:40:57.0405 1296  PNRPAutoReg - ok
19:40:57.0440 1296  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
19:40:57.0444 1296  PNRPsvc - ok
19:40:57.0571 1296  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
19:40:57.0588 1296  PolicyAgent - ok
19:40:57.0674 1296  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
19:40:57.0678 1296  Power - ok
19:40:57.0741 1296  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
19:40:57.0743 1296  PptpMiniport - ok
19:40:57.0845 1296  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\DRIVERS\processr.sys
19:40:57.0847 1296  Processor - ok
19:40:57.0932 1296  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc         C:\Windows\system32\profsvc.dll
19:40:57.0936 1296  ProfSvc - ok
19:40:57.0998 1296  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
19:40:57.0999 1296  ProtectedStorage - ok
19:40:58.0064 1296  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
19:40:58.0067 1296  Psched - ok
19:40:58.0087 1296  [ DD3FD48D69F5FBBB21D46D1514C1C2DB ] PSI             C:\Windows\system32\DRIVERS\psi_mf_amd64.sys
19:40:58.0089 1296  PSI - ok
19:40:58.0174 1296  [ 4712CC14E720ECCCC0AA16949D18AAF1 ] PxHlpa64        C:\Windows\system32\Drivers\PxHlpa64.sys
19:40:58.0178 1296  PxHlpa64 - ok
19:40:58.0243 1296  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
19:40:58.0290 1296  ql2300 - ok
19:40:58.0308 1296  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
19:40:58.0336 1296  ql40xx - ok
19:40:58.0392 1296  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
19:40:58.0397 1296  QWAVE - ok
19:40:58.0442 1296  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
19:40:58.0444 1296  QWAVEdrv - ok
19:40:58.0619 1296  [ A55E7D0D873B2C97585B3B5926AC6ADE ] RapiMgr         C:\Windows\WindowsMobile\rapimgr.dll
19:40:58.0621 1296  RapiMgr - ok
19:40:58.0700 1296  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
19:40:58.0702 1296  RasAcd - ok
19:40:58.0761 1296  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
19:40:58.0763 1296  RasAgileVpn - ok
19:40:58.0809 1296  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
19:40:58.0812 1296  RasAuto - ok
19:40:58.0868 1296  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
19:40:58.0871 1296  Rasl2tp - ok
19:40:58.0970 1296  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\Windows\System32\rasmans.dll
19:40:58.0976 1296  RasMan - ok
19:40:59.0014 1296  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
19:40:59.0016 1296  RasPppoe - ok
19:40:59.0061 1296  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
19:40:59.0063 1296  RasSstp - ok
19:40:59.0117 1296  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
19:40:59.0122 1296  rdbss - ok
19:40:59.0171 1296  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
19:40:59.0172 1296  rdpbus - ok
19:40:59.0220 1296  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
19:40:59.0222 1296  RDPCDD - ok
19:40:59.0254 1296  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
19:40:59.0255 1296  RDPENCDD - ok
19:40:59.0287 1296  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
19:40:59.0288 1296  RDPREFMP - ok
19:40:59.0398 1296  [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
19:40:59.0400 1296  RdpVideoMiniport - ok
19:40:59.0464 1296  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
19:40:59.0468 1296  RDPWD - ok
19:40:59.0571 1296  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
19:40:59.0574 1296  rdyboost - ok
19:40:59.0657 1296  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
19:40:59.0660 1296  RemoteAccess - ok
19:40:59.0742 1296  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
19:40:59.0746 1296  RemoteRegistry - ok
19:40:59.0801 1296  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
19:40:59.0804 1296  RpcEptMapper - ok
19:40:59.0870 1296  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
19:40:59.0872 1296  RpcLocator - ok
19:40:59.0943 1296  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\Windows\system32\rpcss.dll
19:40:59.0948 1296  RpcSs - ok
19:41:00.0023 1296  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
19:41:00.0025 1296  rspndr - ok
19:41:00.0103 1296  [ 30F463768D5143BFD7B2DF822B53CF4D ] RSUSBSTOR       C:\Windows\system32\Drivers\RtsUStor.sys
19:41:00.0106 1296  RSUSBSTOR - ok
19:41:00.0235 1296  [ 301FBA4594FB5C0A469299A65106B4AA ] s1018bus        C:\Windows\system32\DRIVERS\s1018bus.sys
19:41:00.0237 1296  s1018bus - ok
19:41:00.0334 1296  [ D1D7C744F79710357E60FC04D125ED01 ] s1018mdfl       C:\Windows\system32\DRIVERS\s1018mdfl.sys
19:41:00.0336 1296  s1018mdfl - ok
19:41:00.0459 1296  [ 7DBE12CCCD837D4266B2DDD80A329C09 ] s1018mdm        C:\Windows\system32\DRIVERS\s1018mdm.sys
19:41:00.0462 1296  s1018mdm - ok
19:41:00.0548 1296  [ 065FF5E62D2D18A6D93FD925546CD549 ] s1018mgmt       C:\Windows\system32\DRIVERS\s1018mgmt.sys
19:41:00.0550 1296  s1018mgmt - ok
19:41:00.0622 1296  [ 5101D815BDF0D667E3D5F0EA727CAAEE ] s1018nd5        C:\Windows\system32\DRIVERS\s1018nd5.sys
19:41:00.0631 1296  s1018nd5 - ok
19:41:00.0719 1296  [ 13F220C65B444AC9BDA49DACFC3230BB ] s1018obex       C:\Windows\system32\DRIVERS\s1018obex.sys
19:41:00.0722 1296  s1018obex - ok
19:41:00.0733 1296  [ CE7D8BCE80211D8A35F6BD7A87791860 ] s1018unic       C:\Windows\system32\DRIVERS\s1018unic.sys
19:41:00.0736 1296  s1018unic - ok
19:41:00.0755 1296  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs           C:\Windows\system32\lsass.exe
19:41:00.0756 1296  SamSs - ok
19:41:00.0839 1296  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
19:41:00.0845 1296  sbp2port - ok
19:41:00.0893 1296  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
19:41:00.0897 1296  SCardSvr - ok
19:41:00.0961 1296  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
19:41:00.0963 1296  scfilter - ok
19:41:01.0039 1296  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\Windows\system32\schedsvc.dll
19:41:01.0074 1296  Schedule - ok
19:41:01.0218 1296  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\Windows\System32\certprop.dll
19:41:01.0220 1296  SCPolicySvc - ok
19:41:01.0252 1296  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
19:41:01.0256 1296  SDRSVC - ok
19:41:01.0382 1296  [ 16A252022535B680046F6E34E136D378 ] SeaPort         C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
19:41:01.0384 1296  SeaPort - ok
19:41:01.0417 1296  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
19:41:01.0418 1296  secdrv - ok
19:41:01.0506 1296  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\Windows\system32\seclogon.dll
19:41:01.0509 1296  seclogon - ok
19:41:01.0807 1296  [ 05E383849FA1FBBBC160612B0080618C ] Secunia PSI Agent C:\Program Files (x86)\Secunia\PSI\PSIA.exe
19:41:01.0815 1296  Secunia PSI Agent - ok
19:41:02.0194 1296  [ F8173F1454F21C451439CB47EF75830A ] Secunia Update Agent C:\Program Files (x86)\Secunia\PSI\sua.exe
19:41:02.0198 1296  Secunia Update Agent - ok
19:41:02.0331 1296  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\System32\sens.dll
19:41:02.0333 1296  SENS - ok
19:41:02.0383 1296  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
19:41:02.0385 1296  SensrSvc - ok
19:41:02.0442 1296  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
19:41:02.0443 1296  Serenum - ok
19:41:02.0475 1296  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\DRIVERS\serial.sys
19:41:02.0477 1296  Serial - ok
19:41:02.0572 1296  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
19:41:02.0573 1296  sermouse - ok
19:41:02.0622 1296  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\Windows\system32\sessenv.dll
19:41:02.0625 1296  SessionEnv - ok
19:41:02.0748 1296  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
19:41:02.0749 1296  sffdisk - ok
19:41:02.0777 1296  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
19:41:02.0778 1296  sffp_mmc - ok
19:41:02.0811 1296  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
19:41:02.0812 1296  sffp_sd - ok
19:41:02.0912 1296  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
19:41:02.0913 1296  sfloppy - ok
19:41:03.0043 1296  [ C6CC9297BD53E5229653303E556AA539 ] Sftfs           C:\Windows\system32\DRIVERS\Sftfslh.sys
19:41:03.0062 1296  Sftfs - ok
19:41:03.0246 1296  [ 13693B6354DD6E72DC5131DA7D764B90 ] sftlist         C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
19:41:03.0250 1296  sftlist - ok
19:41:03.0322 1296  [ 390AA7BC52CEE43F6790CDEA1E776703 ] Sftplay         C:\Windows\system32\DRIVERS\Sftplaylh.sys
19:41:03.0327 1296  Sftplay - ok
19:41:03.0432 1296  [ 617E29A0B0A2807466560D4C4E338D3E ] Sftredir        C:\Windows\system32\DRIVERS\Sftredirlh.sys
19:41:03.0434 1296  Sftredir - ok
19:41:03.0537 1296  [ 38F88F0DF46C4D42125EF721ABD7F6B9 ] SftService      C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
19:41:03.0542 1296  SftService - ok
19:41:03.0615 1296  [ 8F571F016FA1976F445147E9E6C8AE9B ] Sftvol          C:\Windows\system32\DRIVERS\Sftvollh.sys
19:41:03.0616 1296  Sftvol - ok
19:41:03.0718 1296  [ C3CDDD18F43D44AB713CF8C4916F7696 ] sftvsa          C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
19:41:03.0720 1296  sftvsa - ok
19:41:03.0835 1296  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll
19:41:03.0844 1296  SharedAccess - ok
19:41:03.0932 1296  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
19:41:03.0939 1296  ShellHWDetection - ok
19:41:03.0984 1296  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
19:41:03.0986 1296  SiSRaid2 - ok
19:41:04.0042 1296  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
19:41:04.0044 1296  SiSRaid4 - ok
19:41:04.0173 1296  [ 7C15061CD0372487903B07B9BB03AFAD ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
19:41:04.0175 1296  SkypeUpdate - ok
19:41:04.0191 1296  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
19:41:04.0193 1296  Smb - ok
19:41:04.0250 1296  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
19:41:04.0252 1296  SNMPTRAP - ok
19:41:04.0380 1296  [ 3A4F2C0BB87A0895ABEBA341AA1E341B ] Sony PC Companion C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe
19:41:04.0382 1296  Sony PC Companion - ok
19:41:04.0427 1296  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
19:41:04.0428 1296  spldr - ok
19:41:04.0525 1296  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler         C:\Windows\System32\spoolsv.exe
19:41:04.0543 1296  Spooler - ok
19:41:04.0693 1296  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\Windows\system32\sppsvc.exe
19:41:04.0775 1296  sppsvc - ok
19:41:04.0825 1296  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
19:41:04.0827 1296  sppuinotify - ok
19:41:04.0893 1296  [ D630B6F2E8379B6F10DC16E82A426552 ] sprtsvc_DellSupportCenter C:\Program Files (x86)\Dell Support Center\bin\sprtsvc.exe
19:41:04.0894 1296  sprtsvc_DellSupportCenter - ok
19:41:04.0965 1296  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\Windows\system32\DRIVERS\srv.sys
19:41:04.0972 1296  srv - ok
19:41:05.0007 1296  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
19:41:05.0014 1296  srv2 - ok
19:41:05.0051 1296  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
19:41:05.0054 1296  srvnet - ok
19:41:05.0148 1296  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
19:41:05.0152 1296  SSDPSRV - ok
19:41:05.0202 1296  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
19:41:05.0204 1296  SstpSvc - ok
19:41:05.0250 1296  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
19:41:05.0251 1296  stexstor - ok
19:41:05.0384 1296  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\Windows\System32\wiaservc.dll
19:41:05.0402 1296  stisvc - ok
19:41:05.0456 1296  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\drivers\swenum.sys
19:41:05.0457 1296  swenum - ok
19:41:05.0544 1296  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
19:41:05.0583 1296  swprv - ok
19:41:05.0685 1296  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\Windows\system32\sysmain.dll
19:41:05.0752 1296  SysMain - ok
19:41:05.0817 1296  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
19:41:05.0820 1296  TabletInputService - ok
19:41:05.0882 1296  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\Windows\System32\tapisrv.dll
19:41:05.0888 1296  TapiSrv - ok
19:41:05.0931 1296  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
19:41:05.0934 1296  TBS - ok
19:41:06.0037 1296  [ 9849EA3843A2ADBDD1497E97A85D8CAE ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
19:41:06.0091 1296  Tcpip - ok
19:41:06.0200 1296  [ 9849EA3843A2ADBDD1497E97A85D8CAE ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
19:41:06.0212 1296  TCPIP6 - ok
19:41:06.0315 1296  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
19:41:06.0316 1296  tcpipreg - ok
19:41:06.0357 1296  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
19:41:06.0358 1296  TDPIPE - ok
19:41:06.0484 1296  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
19:41:06.0485 1296  TDTCP - ok
19:41:06.0628 1296  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
19:41:06.0630 1296  tdx - ok
19:41:06.0675 1296  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\Windows\system32\drivers\termdd.sys
19:41:06.0677 1296  TermDD - ok
19:41:06.0752 1296  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\Windows\System32\termsrv.dll
19:41:06.0786 1296  TermService - ok
19:41:06.0915 1296  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
19:41:06.0917 1296  Themes - ok
19:41:07.0003 1296  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
19:41:07.0005 1296  THREADORDER - ok
19:41:07.0061 1296  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
19:41:07.0064 1296  TrkWks - ok
19:41:07.0164 1296  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
19:41:07.0165 1296  TrustedInstaller - ok
19:41:07.0257 1296  [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
19:41:07.0258 1296  tssecsrv - ok
19:41:07.0418 1296  [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
19:41:07.0420 1296  TsUsbFlt - ok
19:41:07.0501 1296  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
19:41:07.0504 1296  tunnel - ok
19:41:07.0661 1296  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
19:41:07.0663 1296  uagp35 - ok
19:41:07.0702 1296  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
19:41:07.0707 1296  udfs - ok
19:41:07.0760 1296  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
19:41:07.0762 1296  UI0Detect - ok
19:41:07.0818 1296  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
19:41:07.0821 1296  uliagpkx - ok
19:41:07.0894 1296  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
19:41:07.0896 1296  umbus - ok
19:41:08.0048 1296  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
19:41:08.0049 1296  UmPass - ok
19:41:08.0088 1296  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
19:41:08.0095 1296  upnphost - ok
19:41:08.0201 1296  [ C9E9D59C0099A9FF51697E9306A44240 ] USBAAPL64       C:\Windows\system32\Drivers\usbaapl64.sys
19:41:08.0206 1296  USBAAPL64 - ok
19:41:08.0302 1296  [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
19:41:08.0304 1296  usbccgp - ok
19:41:08.0360 1296  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
19:41:08.0362 1296  usbcir - ok
19:41:08.0453 1296  [ C025055FE7B87701EB042095DF1A2D7B ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
19:41:08.0454 1296  usbehci - ok
19:41:08.0579 1296  [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
19:41:08.0586 1296  usbhub - ok
19:41:08.0618 1296  [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
19:41:08.0619 1296  usbohci - ok
19:41:08.0706 1296  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
19:41:08.0707 1296  usbprint - ok
19:41:08.0792 1296  [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
19:41:08.0793 1296  usbscan - ok
19:41:08.0867 1296  [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
19:41:08.0870 1296  USBSTOR - ok
19:41:08.0904 1296  [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci         C:\Windows\system32\DRIVERS\usbuhci.sys
19:41:08.0905 1296  usbuhci - ok
19:41:09.0000 1296  [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo        C:\Windows\System32\Drivers\usbvideo.sys
19:41:09.0004 1296  usbvideo - ok
19:41:09.0106 1296  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
19:41:09.0109 1296  UxSms - ok
19:41:09.0149 1296  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\Windows\system32\lsass.exe
19:41:09.0150 1296  VaultSvc - ok
19:41:09.0209 1296  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
19:41:09.0210 1296  vdrvroot - ok
19:41:09.0337 1296  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\Windows\System32\vds.exe
19:41:09.0356 1296  vds - ok
19:41:09.0445 1296  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
19:41:09.0447 1296  vga - ok
19:41:09.0513 1296  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
19:41:09.0514 1296  VgaSave - ok
19:41:09.0589 1296  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
19:41:09.0593 1296  vhdmp - ok
19:41:09.0690 1296  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\drivers\viaide.sys
19:41:09.0700 1296  viaide - ok
19:41:09.0817 1296  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
19:41:09.0843 1296  volmgr - ok
19:41:09.0909 1296  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
19:41:09.0915 1296  volmgrx - ok
19:41:09.0978 1296  [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
19:41:09.0983 1296  volsnap - ok
19:41:10.0131 1296  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
19:41:10.0133 1296  vsmraid - ok
19:41:10.0290 1296  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\Windows\system32\vssvc.exe
19:41:10.0337 1296  VSS - ok
19:41:10.0367 1296  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
19:41:10.0369 1296  vwifibus - ok
19:41:10.0481 1296  [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
19:41:10.0482 1296  vwififlt - ok
19:41:10.0511 1296  [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp         C:\Windows\system32\DRIVERS\vwifimp.sys
19:41:10.0512 1296  vwifimp - ok
19:41:10.0612 1296  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
19:41:10.0619 1296  W32Time - ok
19:41:10.0662 1296  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
19:41:10.0663 1296  WacomPen - ok
19:41:10.0734 1296  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
19:41:10.0736 1296  WANARP - ok
19:41:10.0744 1296  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
19:41:10.0745 1296  Wanarpv6 - ok
19:41:10.0830 1296  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
19:41:10.0863 1296  WatAdminSvc - ok
19:41:10.0968 1296  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\Windows\system32\wbengine.exe
19:41:11.0024 1296  wbengine - ok
19:41:11.0059 1296  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
19:41:11.0063 1296  WbioSrvc - ok
19:41:11.0146 1296  [ 8BDA6DB43AA54E8BB5E0794541DDC209 ] WcesComm        C:\Windows\WindowsMobile\wcescomm.dll
19:41:11.0150 1296  WcesComm - ok
19:41:11.0213 1296  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\Windows\System32\wcncsvc.dll
19:41:11.0220 1296  wcncsvc - ok
19:41:11.0287 1296  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
19:41:11.0290 1296  WcsPlugInService - ok
19:41:11.0333 1296  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\DRIVERS\wd.sys
19:41:11.0334 1296  Wd - ok
19:41:11.0387 1296  [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
19:41:11.0405 1296  Wdf01000 - ok
19:41:11.0442 1296  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
19:41:11.0446 1296  WdiServiceHost - ok
19:41:11.0454 1296  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
19:41:11.0456 1296  WdiSystemHost - ok
19:41:11.0527 1296  [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient       C:\Windows\System32\webclnt.dll
19:41:11.0532 1296  WebClient - ok
19:41:11.0613 1296  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
19:41:11.0618 1296  Wecsvc - ok
19:41:11.0659 1296  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
19:41:11.0662 1296  wercplsupport - ok
19:41:11.0749 1296  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
19:41:11.0758 1296  WerSvc - ok
19:41:11.0893 1296  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
19:41:11.0894 1296  WfpLwf - ok
19:41:11.0950 1296  [ B14EF15BD757FA488F9C970EEE9C0D35 ] WimFltr         C:\Windows\system32\DRIVERS\wimfltr.sys
19:41:11.0953 1296  WimFltr - ok
19:41:12.0001 1296  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
19:41:12.0002 1296  WIMMount - ok
19:41:12.0059 1296  WinDefend - ok
19:41:12.0101 1296  WinHttpAutoProxySvc - ok
19:41:12.0293 1296  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
19:41:12.0297 1296  Winmgmt - ok
19:41:12.0406 1296  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\Windows\system32\WsmSvc.dll
19:41:12.0474 1296  WinRM - ok
19:41:12.0598 1296  [ FE88B288356E7B47B74B13372ADD906D ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
19:41:12.0600 1296  WinUsb - ok
19:41:12.0669 1296  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
19:41:12.0701 1296  Wlansvc - ok
19:41:12.0788 1296  [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc        C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
19:41:12.0789 1296  wlcrasvc - ok
19:41:12.0998 1296  [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
19:41:13.0041 1296  wlidsvc - ok
19:41:13.0125 1296  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
19:41:13.0126 1296  WmiAcpi - ok
19:41:13.0202 1296  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
19:41:13.0206 1296  wmiApSrv - ok
19:41:13.0257 1296  WMPNetworkSvc - ok
19:41:13.0314 1296  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
19:41:13.0316 1296  WPCSvc - ok
19:41:13.0400 1296  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
19:41:13.0403 1296  WPDBusEnum - ok
19:41:13.0485 1296  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
19:41:13.0487 1296  ws2ifsl - ok
19:41:13.0557 1296  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\Windows\system32\wscsvc.dll
19:41:13.0560 1296  wscsvc - ok
19:41:13.0568 1296  WSearch - ok
19:41:13.0701 1296  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
19:41:13.0781 1296  wuauserv - ok
19:41:13.0841 1296  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
19:41:13.0843 1296  WudfPf - ok
19:41:13.0876 1296  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
19:41:13.0880 1296  WUDFRd - ok
19:41:13.0925 1296  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
19:41:13.0928 1296  wudfsvc - ok
19:41:14.0051 1296  [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc         C:\Windows\System32\wwansvc.dll
19:41:14.0056 1296  WwanSvc - ok
19:41:14.0117 1296  [ B3EEACF62445E24FBB2CD4B0FB4DB026 ] yukonw7         C:\Windows\system32\DRIVERS\yk62x64.sys
19:41:14.0123 1296  yukonw7 - ok
19:41:14.0197 1296  ================ Scan global ===============================
19:41:14.0356 1296  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
19:41:14.0427 1296  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
19:41:14.0449 1296  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
19:41:14.0483 1296  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
19:41:14.0546 1296  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
19:41:14.0552 1296  [Global] - ok
19:41:14.0555 1296  ================ Scan MBR ==================================
19:41:14.0585 1296  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
19:41:15.0059 1296  \Device\Harddisk0\DR0 - ok
19:41:15.0062 1296  ================ Scan VBR ==================================
19:41:15.0103 1296  [ B4A651EA79A9998884DA67ECFFB5E2E7 ] \Device\Harddisk0\DR0\Partition1
19:41:15.0105 1296  \Device\Harddisk0\DR0\Partition1 - ok
19:41:15.0149 1296  [ 42830D70BBEF9B5EC0B23BAAE40FA686 ] \Device\Harddisk0\DR0\Partition2
19:41:15.0151 1296  \Device\Harddisk0\DR0\Partition2 - ok
19:41:15.0154 1296  ============================================================
19:41:15.0154 1296  Scan finished
19:41:15.0154 1296  ============================================================
19:41:15.0165 1224  Detected object count: 0
19:41:15.0165 1224  Actual detected object count: 0
19:42:06.0230 0404  Deinitialize success


#6 likishi84

likishi84
  • Topic Starter

  • Members
  • 44 posts
  • OFFLINE
  •  
  • Local time:11:40 AM

Posted 11 August 2013 - 01:46 PM

i started the eset scan before i put up post and didn't unchecke the box sorry



#7 GodfatherKing

GodfatherKing

  • Members
  • 587 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:40 PM

Posted 11 August 2013 - 01:47 PM

That's not a problem, it can sometimes delete files that are OK. If those good programs are deleted, you can best install them back. 


If you have received help from me and I don't have respond to you for almost >= 3 days, send me a Private Message.  :hello:


#8 likishi84

likishi84
  • Topic Starter

  • Members
  • 44 posts
  • OFFLINE
  •  
  • Local time:11:40 AM

Posted 11 August 2013 - 01:49 PM

i have not removed any items yet they are still in the quarantine file 



#9 GodfatherKing

GodfatherKing

  • Members
  • 587 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:40 PM

Posted 11 August 2013 - 01:50 PM

Unquarantines these files because, they are OK:

 

C:\Program Files (x86)\Dell DataSafe Local Backup\hstart.exe a variant of Win32/HiddenStart.A application cleaned by deleting - quarantined
C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\hstart.exe a variant of Win32/HiddenStart.A application cleaned by deleting - quarantined
C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\UpdateWorkingDirectory\DSL\hstart.exe a variant of Win32/HiddenStart.A application cleaned by deleting - quarantined
C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\UpdateWorkingDirectory\DSL\Components\DSUpdate\hstart.exe a variant of Win32/HiddenStart.A application cleaned by deleting - quarantined

If you have received help from me and I don't have respond to you for almost >= 3 days, send me a Private Message.  :hello:


#10 likishi84

likishi84
  • Topic Starter

  • Members
  • 44 posts
  • OFFLINE
  •  
  • Local time:11:40 AM

Posted 11 August 2013 - 01:52 PM

i have done that thank you i am doing the malware bytes scan now and will post report when done there where a few more on the computer the other day and i think i have removed them all but not sure 



#11 GodfatherKing

GodfatherKing

  • Members
  • 587 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:40 PM

Posted 11 August 2013 - 01:53 PM

:thumbup2: Will see your logs. 


If you have received help from me and I don't have respond to you for almost >= 3 days, send me a Private Message.  :hello:


#12 likishi84

likishi84
  • Topic Starter

  • Members
  • 44 posts
  • OFFLINE
  •  
  • Local time:11:40 AM

Posted 11 August 2013 - 01:55 PM

i did this as well today as well not to sure what it means 

 

# AdwCleaner v2.306 - Logfile created 08/11/2013 at 17:31:49
# Updated 19/07/2013 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : lisa - LISA-PC
# Boot Mode : Safe mode with networking
# Running from : C:\Users\lisa\Downloads\AdwCleaner.exe
# Option [Search]
 
 
***** [Services] *****
 
 
***** [Files / Folders] *****
 
File Found : C:\END
File Found : C:\user.js
Folder Found : C:\Program Files (x86)\AVG Secure Search
Folder Found : C:\Program Files (x86)\Common Files\AVG Secure Search
Folder Found : C:\Program Files (x86)\Vuze_Remote
Folder Found : C:\Program Files (x86)\Vuze_Remote
Folder Found : C:\Program Files (x86)\Wondershare
Folder Found : C:\ProgramData\Ask
Folder Found : C:\ProgramData\AVG Secure Search
Folder Found : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare
Folder Found : C:\ProgramData\Premium
Folder Found : C:\Users\lisa\AppData\Local\AVG Secure Search
Folder Found : C:\Users\lisa\AppData\Local\Wondershare
Folder Found : C:\Users\lisa\AppData\LocalLow\AskToolbar
Folder Found : C:\Users\lisa\AppData\LocalLow\AVG Secure Search
Folder Found : C:\Users\lisa\AppData\LocalLow\Conduit
Folder Found : C:\Users\lisa\AppData\LocalLow\ConduitEngine
Folder Found : C:\Users\lisa\AppData\LocalLow\PriceGong
Folder Found : C:\Users\lisa\AppData\LocalLow\Vuze_Remote
Folder Found : C:\Users\lisa\AppData\LocalLow\Vuze_Remote
Folder Found : C:\Users\lisa\AppData\Roaming\CheckPoint\ZoneAlarm LTD Toolbar
 
***** [Registry] *****
 
Key Found : HKCU\Software\AppDataLow\Software\Conduit
Key Found : HKCU\Software\AppDataLow\Software\conduitEngine
Key Found : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
Key Found : HKCU\Software\AppDataLow\Software\PriceGong
Key Found : HKCU\Software\AppDataLow\Software\SmartBar
Key Found : HKCU\Software\AppDataLow\Software\Toolbar
Key Found : HKCU\Software\AppDataLow\Software\Vuze_Remote
Key Found : HKCU\Software\AppDataLow\Toolbar
Key Found : HKCU\Software\AVG Secure Search
Key Found : HKCU\Software\IM
Key Found : HKCU\Software\ImInstaller
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{BA14329E-9550-4989-B3F2-9732E92D17CC}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{BA14329E-9550-4989-B3F2-9732E92D17CC}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BA14329E-9550-4989-B3F2-9732E92D17CC}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BA14329E-9550-4989-B3F2-9732E92D17CC}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Found : HKCU\Software\Wajam
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Found : HKLM\Software\AVG Secure Search
Key Found : HKLM\Software\AVG Security Toolbar
Key Found : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Key Found : HKLM\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}
Key Found : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
Key Found : HKLM\SOFTWARE\Classes\AppID\{CFDAFE39-20CE-451D-BD45-A37452F39CF0}
Key Found : HKLM\SOFTWARE\Classes\AppID\{D616A4A2-7B38-4DBC-9093-6FE7A4A21B17}
Key Found : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE
Key Found : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
Key Found : HKLM\SOFTWARE\Classes\AppID\YontooIEClient.DLL
Key Found : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI
Key Found : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI.1
Key Found : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj
Key Found : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj.1
Key Found : HKLM\SOFTWARE\Classes\bhoclass.bho.bhoclass.bho
Key Found : HKLM\SOFTWARE\Classes\bhoclass.bho.bhoclass.bho.1.0
Key Found : HKLM\SOFTWARE\Classes\PROTOCOLS\Handler\viprotocol
Key Found : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
Key Found : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
Key Found : HKLM\SOFTWARE\Classes\Toolbar.CT2504091
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Key Found : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE
Key Found : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1
Key Found : HKLM\SOFTWARE\Classes\YontooIEClient.Api
Key Found : HKLM\SOFTWARE\Classes\YontooIEClient.Api.1
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\incredibar_install_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\incredibar_install_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\IncredibarToolbar_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\IncredibarToolbar_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{9B9D1427-5631-4412-B4E0-48DEA49ABA2F}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Found : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
Key Found : HKLM\SOFTWARE\MozillaPlugins\@checkpoint.com/FFApi
Key Found : HKLM\Software\Vuze_Remote
Key Found : HKLM\Software\Wajam
Key Found : HKLM\Software\Web Assistant
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{9B9D1427-5631-4412-B4E0-48DEA49ABA2F}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{BA14329E-9550-4989-B3F2-9732E92D17CC}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{BA14329E-9550-4989-B3F2-9732E92D17CC}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{FE9271F2-6EFD-44B0-A826-84C829536E93}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{D2F39980-399F-492E-8D88-5FF7CCB3B47F}
Key Found : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{14B24666-C5CD-4209-9E8A-53ED5CCD501C}
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C4CBFF1A-DA3F-4375-963C-044472C1E9A8}
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BA14329E-9550-4989-B3F2-9732E92D17CC}
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BA14329E-9550-4989-B3F2-9732E92D17CC}
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Vuze_Remote Toolbar
Key Found : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WajamUpdater
Key Found : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Found : HKLM\SOFTWARE\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}
Key Found : HKLM\SOFTWARE\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5}
Key Found : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Found : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Found : HKLM\SOFTWARE\Classes\Interface\{A36867C6-302D-49FC-9D8E-1EB037B5F1AB}
Key Found : HKLM\SOFTWARE\Classes\Interface\{BBA74401-6D6F-4BBD-9F65-E8623814F3BB}
Key Found : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Found : HKLM\SOFTWARE\Classes\Interface\{D2F39980-399F-492E-8D88-5FF7CCB3B47F}
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ZoneAlarm LTD Toolbar
Key Found : HKLM\SOFTWARE\Tarma Installer
Key Found : HKLM\SOFTWARE\Web Assistant
Key Found : HKU\S-1-5-21-3217549572-3652149361-1128273679-1000\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Found : HKU\S-1-5-21-3217549572-3652149361-1128273679-1000\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Value Found : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{BA14329E-9550-4989-B3F2-9732E92D17CC}]
Value Found : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{BA14329E-9550-4989-B3F2-9732E92D17CC}]
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{BA14329E-9550-4989-B3F2-9732E92D17CC}]
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{BA14329E-9550-4989-B3F2-9732E92D17CC}]
Value Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [vProt]
Value Found : HKLM\SOFTWARE\Mozilla\Firefox\extensions [{336D0C35-8A85-403a-B9D2-65C292C39087}]
Value Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{95B7759C-8C7F-4BF1-B163-73684A933233}]
Value Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{BA14329E-9550-4989-B3F2-9732E92D17CC}]
Value Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{BA14329E-9550-4989-B3F2-9732E92D17CC}]
 
***** [Internet Browsers] *****
 
-\\ Internet Explorer v10.0.9200.16635
 
[OK] Registry is clean.
 
-\\ Google Chrome v28.0.1500.95
 
File : C:\Users\lisa\AppData\Local\Google\Chrome\User Data\Default\Preferences
 
[OK] File is clean.
 
*************************
 
AdwCleaner[R1].txt - [11998 octets] - [11/08/2013 17:31:50]
 
########## EOF - C:\AdwCleaner[R1].txt - [12059 octets] ##########


#13 likishi84

likishi84
  • Topic Starter

  • Members
  • 44 posts
  • OFFLINE
  •  
  • Local time:11:40 AM

Posted 11 August 2013 - 02:44 PM

here is the malware bytes report 

 

qwwwwwwwwwwwwwwwwwwwwwwwwwwwwwwwwwwwwwwwwwwwwwwwwwwwwwwwww
 mMalwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org
 
Database version: v2013.08.10.03
 
Windows 7 Service Pack 1 x64 NTFS (Safe Mode/Networking)
Internet Explorer 10.0.9200.16635
lisa :: LISA-PC [administrator]
 
11-Aug-13 7:37:38 PM
mbam-log-2013-08-11 (19-37-38).txt
 
Scan type: Full scan (C:\|D:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 383230
Time elapsed: 52 minute(s), 58 second(s)
 
Memory Processes Detected: 0
(No malicious items detected)
 
Memory Modules Detected: 0
(No malicious items detected)
 
Registry Keys Detected: 0
(No malicious items detected)
 
Registry Values Detected: 0
(No malicious items detected)
 
Registry Data Items Detected: 0
(No malicious items detected)
 
Folders Detected: 0
(No malicious items detected)
 
Files Detected: 0
(No malicious items detected)
 
(end)


#14 GodfatherKing

GodfatherKing

  • Members
  • 587 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:40 PM

Posted 12 August 2013 - 03:20 AM

That's clean.

 

Let's run some other tools to be sure:
 

:step1: Download Emsisoft Emergency Kit

  • Open EmsisoftEmergencyKit by  double-click Start.exe.
  • A new window will open. Under "Run Directly:" click Emergency Kit Scanner.
  • When asked to run an online update, click Yes.
  • When the update is finished, click the Back to Security Status link in the left corner. On the main screen click the Scan Now button.
  • Select the Deep Scan option and click the SCAN button.
  • When the scan is finished click the Quarantine selected objects button. Note, this option is only available if malicious objects were detected during the scan.
  • Click the View Report button and in the Reports window double-click on the most recent log. Note, logs are named as follows: a2scan_<date>-<time>.txt.
  • Copy/paste the report contents in your next reply

 

:step2: Download SUPERAntiSpyware Free (aka SAS)

  •  Double-click SAS -setup.exe and follow the prompts to install the program.
  • At the end, be sure to Check for Updates to be sure it is current
  • If an update is found, it will download and install the latest version.
  • Once the program has loaded, select Perform quick scan, then click Scan.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Be sure that everything is checked, and click Remove Selected.
  • When completed, a log will open in Notepad.
  • Post the log back here.
  • Be sure to reboot the computer after you post the log.

If you have received help from me and I don't have respond to you for almost >= 3 days, send me a Private Message.  :hello:


#15 likishi84

likishi84
  • Topic Starter

  • Members
  • 44 posts
  • OFFLINE
  •  
  • Local time:11:40 AM

Posted 12 August 2013 - 12:29 PM

Thanks will run tools when at home and post reports when done




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users