Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Internet explorer opening multiple processes in task mgr. crashing internet.


  • Please log in to reply
19 replies to this topic

#1 hlane1012

hlane1012

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:01:09 AM

Posted 23 August 2013 - 09:27 AM

The internet started slowing down and completely freezing about a week ago. When I look at the task mgr it shows one or two Iexplore.exe processes but when I click show from all users it pops up between 10 and 20 iexplore.exe processes. I have run Malware bytes and superanti spyware as well as avast. it still shows up. I have tried only using chrome. When I restart the computer and use only chrome there still seems to pop up one or two iexplore.exe processes even though i have not opened ie explorer. Thanks in advance for any help you can give.



BC AdBot (Login to Remove)

 


#2 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,738 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:10:09 PM

Posted 23 August 2013 - 09:22 PM

Welcome aboard p22002758.gif

 

p22002970.gif Download Security Check from here or here and save it to your Desktop.

  • Double-click SecurityCheck.exe
  • Follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.

NOTE 1. If one of your security applications (e.g., third-party firewall) requests permission to allow DIG.EXE access the Internet, allow it to do so.
NOTE 2 SecurityCheck may produce some false warning(s), so leave the results reading to me.

p22002970.gif Please download Farbar Service Scanner (FSS) and run it on the computer with the issue.
  • Make sure the following options are checked:
    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center/Action Center
    • Windows Update
    • Windows Defender
    • Other Services
  • Press "Scan".
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the log to your reply.


p22002970.gif Please download MiniToolBox and run it.

Checkmark following boxes:
  • Report IE Proxy Settings
  • Report FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Devices (do NOT change any settings here)
  • List Users, Partitions and Memory size

Click Go and post the result.

p22002970.gif Download Malwarebytes' Anti-Malware (aka MBAM): https://www.bleepingcomputer.com/download/malwarebytes-anti-malware/ to your desktop.

* Double-click mbam-setup.exe and follow the prompts to install the program.
* At the end, be sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
* If an update is found, it will download and install the latest version.
* Once the program has loaded, select Perform quick scan, then click Scan.
* When the scan is complete, click OK, then Show Results to view the results.
* Be sure that everything is checked, and click Remove Selected.
* When completed, a log will open in Notepad.
* Post the log back here.

Be sure to restart the computer.

The log can also be found here:
C:\Documents and Settings\Username\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Logs\log-date.txt
Or at C:\Program Files\Malwarebytes' Anti-Malware\Logs\log-date.txt

p22002970.gifDownload Malwarebytes Anti-Rootkit from HERE to your Desktop.
  • Unzip downloaded file.
  • Open the folder where the contents were unzipped and run mbar.exe
  • Follow the instructions in the wizard to update and allow the program to scan your computer for threats.
  • DO NOT click on the Cleanup button. Simply exit the program.
  • When done, please post the two logs produced they will be in the MBAR folder..... mbar-log-xxxxx.txt and system-log.txt


p22002970.gif Please download Rkill (courtesy of BleepingComputer.com) to your desktop.
There are 2 different versions. If one of them won't run then download and try to run the other one.
You only need to get one of these to run, not all of them. You may get warnings from your antivirus about this tool, ignore them or shutdown your antivirus.

rKill.exe: http://www.bleepingcomputer.com/download/rkill/dl/10/
iExplore.exe (renamed rKill.exe): http://www.bleepingcomputer.com/download/rkill/dl/11/

  • Double-click on the Rkill desktop icon to run the tool.
  • If using Vista or Windows 7 right-click on it and choose Run As Administrator.
  • A black DOS box will briefly flash and then disappear. This is normal and indicates the tool ran successfully.
  • If not, delete the file, then download and use the one provided in Link 2.
  • Do not reboot until instructed.
  • If the tool does not run from any of the links provided, please let me know.


If normal mode still doesn't work, run the tool from safe mode.

When the scan is done Notepad will open with rKill log.
Post it in your next reply.

NOTE. rKill.txt log will also be present on your desktop.

NOTE Do NOT wrap your logs in "quote" or "code" brackets.


My Website

My help doesn't cost a penny, but if you'd like to consider a donation, click DONATE

 


#3 hlane1012

hlane1012
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:01:09 AM

Posted 25 August 2013 - 10:50 AM

Thanks for the help. Let me know what else to do.

 

Security Check

 Results of screen317's Security Check version 0.99.72  
 Windows 7 Service Pack 1 x64 (UAC is enabled)  
 Internet Explorer 10  
``````````````Antivirus/Firewall Check:`````````````` 
 Windows Firewall Enabled!  
avast! Antivirus   
 Antivirus up to date!   
`````````Anti-malware/Other Utilities Check:````````` 
 Malwarebytes Anti-Malware version 1.75.0.1300  
 Java 7 Update 25  
 Adobe Flash Player 11.8.800.94  
 Adobe Reader 10.1.7 Adobe Reader out of Date!  
 Google Chrome 28.0.1500.95  
 Google Chrome 29.0.1547.57  
````````Process Check: objlist.exe by Laurent````````  
 AVAST Software Avast AvastSvc.exe  
 AVAST Software Avast AvastUI.exe  
`````````````````System Health check````````````````` 
 Total Fragmentation on Drive C: 11% Defragment your hard drive soon! (Do NOT defrag if SSD!)
````````````````````End of Log`````````````````````` 
 

 Farbar Service Scanner 

 

Farbar Service Scanner Version: 18-08-2013

Ran by Stacey (administrator) on 25-08-2013 at 10:53:37
Running from "C:\Users\Stacey\Downloads"
Microsoft Windows 7 Home Premium  Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************
 
Internet Services:
============
 
Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo.com is accessible.
 
 
Windows Firewall:
=============
 
Firewall Disabled Policy: 
==================
 
 
System Restore:
============
 
System Restore Disabled Policy: 
========================
 
 
Action Center:
============
 
 
Windows Update:
============
 
Windows Autoupdate Disabled Policy: 
============================
 
 
Windows Defender:
==============
 
Other Services:
==============
 
 
File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\iphlpsvc.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
 
 
**** End of log ****

 

 

Minitoolbox

 

MiniToolBox by Farbar  Version: 13-07-2013

Ran by Stacey (administrator) on 25-08-2013 at 10:55:20
Running from "C:\Users\Stacey\Downloads"
Microsoft Windows 7 Home Premium  Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************
 
========================= IE Proxy Settings: ============================== 
 
Proxy is not enabled.
No Proxy Server is set.
========================= Hosts content: =================================
 
 
 
========================= IP Configuration: ================================
 
Realtek RTL8188CE Wireless LAN 802.11n PCI-E NIC = Wireless Network Connection (Connected)
Atheros AR8152/8158 PCI-E Fast Ethernet Controller (NDIS 6.20) = Local Area Connection (Media disconnected)
 
 
# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4
 
reset
set global icmpredirects=enabled
add route prefix=169.254.0.0/16 interface="iftype0_0" nexthop=192.168.0.11 metric=1 publish=Yes
add address name="Local Area Connection 2" address=169.254.53.1 mask=255.255.255.0
 
 
popd
# End of IPv4 configuration
 
 
 
Windows IP Configuration
 
   Host Name . . . . . . . . . . . . : Stacey-PC
   Primary Dns Suffix  . . . . . . . : 
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : Belkin
 
Ethernet adapter Local Area Connection:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : Belkin
   Description . . . . . . . . . . . : Atheros AR8152/8158 PCI-E Fast Ethernet Controller (NDIS 6.20)
   Physical Address. . . . . . . . . : E8-9A-8F-88-71-77
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Wireless LAN adapter Wireless Network Connection:
 
   Connection-specific DNS Suffix  . : Belkin
   Description . . . . . . . . . . . : Realtek RTL8188CE Wireless LAN 802.11n PCI-E NIC
   Physical Address. . . . . . . . . : D0-DF-9A-75-7A-92
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::d968:dd55:e10b:bbc3%11(Preferred) 
   IPv4 Address. . . . . . . . . . . : 192.168.2.6(Preferred) 
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Friday, August 23, 2013 2:47:49 PM
   Lease Expires . . . . . . . . . . : Wednesday, October 01, 2149 5:23:46 PM
   Default Gateway . . . . . . . . . : 192.168.2.1
   DHCP Server . . . . . . . . . . . : 192.168.2.1
   DHCPv6 IAID . . . . . . . . . . . : 248569754
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-15-B9-A4-9F-D0-DF-9A-75-7A-92
   DNS Servers . . . . . . . . . . . : 192.168.2.1
   NetBIOS over Tcpip. . . . . . . . : Enabled
 
Tunnel adapter isatap.Belkin:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : Belkin
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter Teredo Tunneling Pseudo-Interface:
 
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:9d38:6ab8:281f:3d17:e760:fd5c(Preferred) 
   Link-local IPv6 Address . . . . . : fe80::281f:3d17:e760:fd5c%14(Preferred) 
   Default Gateway . . . . . . . . . : ::
   NetBIOS over Tcpip. . . . . . . . : Disabled
Server:  
Address:  192.168.2.1
 
Name:    google.com
Addresses:  2607:f8b0:4002:801::1003
 74.125.134.102
 74.125.134.100
 74.125.134.113
 74.125.134.139
 74.125.134.101
 74.125.134.138
 
 
Pinging google.com [74.125.140.113] with 32 bytes of data:
Reply from 74.125.140.113: bytes=32 time=24ms TTL=42
Reply from 74.125.140.113: bytes=32 time=20ms TTL=42
 
Ping statistics for 74.125.140.113:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 20ms, Maximum = 24ms, Average = 22ms
Server:  
Address:  192.168.2.1
 
Name:    yahoo.com
Addresses:  98.139.183.24
 98.138.253.109
 206.190.36.45
 
 
Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
Reply from 98.138.253.109: bytes=32 time=66ms TTL=42
Reply from 98.138.253.109: bytes=32 time=90ms TTL=42
 
Ping statistics for 98.138.253.109:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 66ms, Maximum = 90ms, Average = 78ms
 
Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
 
Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 12...e8 9a 8f 88 71 77 ......Atheros AR8152/8158 PCI-E Fast Ethernet Controller (NDIS 6.20)
 11...d0 df 9a 75 7a 92 ......Realtek RTL8188CE Wireless LAN 802.11n PCI-E NIC
  1...........................Software Loopback Interface 1
 16...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
 14...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================
 
IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.2.1      192.168.2.6     25
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      169.254.0.0      255.255.0.0         On-link       192.168.2.6    306
  169.254.255.255  255.255.255.255         On-link       192.168.2.6    281
      192.168.2.0    255.255.255.0         On-link       192.168.2.6    281
      192.168.2.6  255.255.255.255         On-link       192.168.2.6    281
    192.168.2.255  255.255.255.255         On-link       192.168.2.6    281
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link       192.168.2.6    281
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link       192.168.2.6    281
===========================================================================
Persistent Routes:
  Network Address          Netmask  Gateway Address  Metric
      169.254.0.0      255.255.0.0     192.168.0.11       1
===========================================================================
 
IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
 14     58 ::/0                     On-link
  1    306 ::1/128                  On-link
 14     58 2001::/32                On-link
 14    306 2001:0:9d38:6ab8:281f:3d17:e760:fd5c/128
                                    On-link
 11    281 fe80::/64                On-link
 14    306 fe80::/64                On-link
 14    306 fe80::281f:3d17:e760:fd5c/128
                                    On-link
 11    281 fe80::d968:dd55:e10b:bbc3/128
                                    On-link
  1    306 ff00::/8                 On-link
 14    306 ff00::/8                 On-link
 11    281 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================
 
Catalog5 01 C:\windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 09 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 09 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (08/25/2013 03:08:07 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 3089
 
Error: (08/25/2013 03:08:07 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 3089
 
Error: (08/25/2013 03:08:07 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
 
Error: (08/25/2013 03:08:06 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 2044
 
Error: (08/25/2013 03:08:06 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 2044
 
Error: (08/25/2013 03:08:06 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
 
Error: (08/25/2013 03:08:05 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1014
 
Error: (08/25/2013 03:08:05 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1014
 
Error: (08/25/2013 03:08:05 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
 
Error: (08/24/2013 09:07:57 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1014
 
 
System errors:
=============
Error: (08/23/2013 02:47:46 PM) (Source: EventLog) (User: )
Description: The previous system shutdown at 2:45:35 PM on ?8/?23/?2013 was unexpected.
 
Error: (08/23/2013 10:09:10 AM) (Source: Service Control Manager) (User: )
Description: The AffinegyService service failed to start due to the following error: 
%%1053
 
Error: (08/23/2013 10:09:10 AM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the AffinegyService service to connect.
 
Error: (08/19/2013 11:08:05 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x80070652: Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition.
 
Error: (08/16/2013 10:44:51 AM) (Source: Service Control Manager) (User: )
Description: The Service Control Manager tried to take a corrective action (Restart the service) after the unexpected termination of the Program Compatibility Assistant Service service, but this action failed with the following error: 
%%1056
 
Error: (08/16/2013 10:43:51 AM) (Source: Service Control Manager) (User: )
Description: The Windows Driver Foundation - User-mode Driver Framework service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 120000 milliseconds: Restart the service.
 
Error: (08/16/2013 10:43:51 AM) (Source: Service Control Manager) (User: )
Description: The Portable Device Enumerator Service service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 120000 milliseconds: Restart the service.
 
Error: (08/16/2013 10:43:51 AM) (Source: Service Control Manager) (User: )
Description: The WLAN AutoConfig service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 120000 milliseconds: Restart the service.
 
Error: (08/16/2013 10:43:51 AM) (Source: Service Control Manager) (User: )
Description: The Diagnostic System Host service terminated unexpectedly.  It has done this 1 time(s).
 
Error: (08/16/2013 10:43:51 AM) (Source: Service Control Manager) (User: )
Description: The Desktop Window Manager Session Manager service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 120000 milliseconds: Restart the service.
 
 
Microsoft Office Sessions:
=========================
Error: (08/25/2013 03:08:07 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 3089
 
Error: (08/25/2013 03:08:07 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 3089
 
Error: (08/25/2013 03:08:07 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second
 
Error: (08/25/2013 03:08:06 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 2044
 
Error: (08/25/2013 03:08:06 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 2044
 
Error: (08/25/2013 03:08:06 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second
 
Error: (08/25/2013 03:08:05 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1014
 
Error: (08/25/2013 03:08:05 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1014
 
Error: (08/25/2013 03:08:05 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second
 
Error: (08/24/2013 09:07:57 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1014
 
 
=========================== Installed Programs ============================
 
Adobe AIR (Version: 3.7.0.1530)
Adobe Flash Player 11 ActiveX (Version: 11.8.800.94)
Adobe Flash Player 11 Plugin (Version: 11.8.800.94)
Adobe Reader X (10.1.7) MUI (Version: 10.1.7)
Apple Application Support (Version: 2.3.4)
Apple Mobile Device Support (Version: 6.1.0.13)
Apple Software Update (Version: 2.1.3.127)
Atheros Communications Inc.® AR81Family Gigabit/Fast Ethernet Driver (Version: 1.0.0.36)
avast! Free Antivirus (Version: 8.0.1489.0)
Belkin Setup and Router Monitor
Best Buy pc app (Version: 3.2.0.0)
Bonjour (Version: 3.0.0.10)
Canon IJ Network Scan Utility
Canon IJ Network Tool
Canon MP Navigator EX 2.0
Canon MP620 series MP Drivers
Canon MP620 series User Registration
Canon Utilities Easy-PhotoPrint EX
Canon Utilities My Printer
Canon Utilities Solution Menu
Cisco EAP-FAST Module (Version: 2.2.14)
Cisco LEAP Module (Version: 1.0.19)
Cisco PEAP Module (Version: 1.1.6)
Conexant HD Audio (Version: 8.51.1.0)
D3DX10 (Version: 15.4.2368.0902)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
DHTML Editing Component (Version: 6.02.0001)
Facebook Video Calling 1.2.0.287 (Version: 1.2.287)
Google Chrome (Version: 29.0.1547.57)
Google Earth Plug-in (Version: 7.1.1.1888)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.5.4413.1752)
Google Update Helper (Version: 1.3.21.153)
Intel® Management Engine Components (Version: 7.0.0.1144)
Intel® Processor Graphics (Version: 8.15.10.2353)
Intel® Rapid Storage Technology (Version: 10.1.2.1004)
Internet Explorer Toolbar 4.8 by SweetPacks (Version: 4.8.0000)
iTunes (Version: 11.0.4.4)
Java 7 Update 25 (Version: 7.0.250)
Java Auto Updater (Version: 2.1.9.5)
Junk Mail filter update (Version: 15.4.3502.0922)
Label@Once 1.0 (Version: 1.0)
LeapFrog Connect (Version: 5.0.20.17316)
LeapFrog LeapPad Explorer Plugin (Version: 5.0.19.17305)
LeapFrog Tag Plugin (Version: 5.0.19.17305)
Malwarebytes Anti-Malware version 1.75.0.1300 (Version: 1.75.0.1300)
Mesh Runtime (Version: 15.4.5722.2)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office 2010 (Version: 14.0.4763.1000)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Click-to-Run 2010 (Version: 14.0.4763.1000)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.7015.1000)
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Professional 2010 (Version: 14.0.7015.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.7015.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.7015.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Single Image 2010 (Version: 14.0.7015.1000)
Microsoft Office Starter 2010 - English (Version: 14.0.4763.1000)
Microsoft Office Word MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Silverlight (Version: 5.1.20513.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.30319 (Version: 10.0.30319)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
Picasa 3 (Version: 3.9)
PlayReady PC Runtime amd64 (Version: 1.3.0)
PlayReady PC Runtime x86 (Version: 1.3.0)
Realtek USB 2.0 Reader Driver (Version: 1.0.0.12)
Realtek WLAN Driver (Version: 2.00.0013)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition
Skype Click to Call (Version: 6.9.12585)
Skype™ 6.5 (Version: 6.5.158)
SUPERAntiSpyware (Version: 5.5.1012)
Synaptics Pointing Device Driver (Version: 15.2.11.1)
TOSHIBA Application Installer (Version: 9.0.1.1)
TOSHIBA Assist (Version: 4.02.02)
TOSHIBA Bulletin Board (Version: 1.6.08.64)
TOSHIBA Disc Creator (Version: 2.1.0.6 for x64)
TOSHIBA eco Utility (Version: 1.2.25.64)
TOSHIBA Face Recognition (Version: 3.1.8.64)
TOSHIBA Hardware Setup (Version: 4.08.06.00)
TOSHIBA HDD/SSD Alert (Version: 3.1.64.7)
TOSHIBA Media Controller (Version: 1.0.86.2)
TOSHIBA Media Controller Plug-in (Version: 1.0.8.0)
TOSHIBA PC Health Monitor (Version: 1.7.4.64)
TOSHIBA Quality Application (Version: 1.0.3)
TOSHIBA Recovery Media Creator (Version: 2.1.3.5109)
TOSHIBA ReelTime (Version: 1.7.17.64)
TOSHIBA Resolution+ Plug-in for Windows Media Player (Version: 1.1.0)
TOSHIBA Service Station (Version: 2.2.9)
TOSHIBA Sleep Utility (Version: 1.4.2.7)
TOSHIBA Supervisor Password (Version: 4.08.06.00)
TOSHIBA Value Added Package (Version: 1.5.4.64)
TOSHIBA Web Camera Application (Version: 2.0.0.19)
TOSHIBA Wireless LAN Indicator (Version: 1.0.3)
ToshibaRegistration (Version: 1.0.4)
Turbo Lister 2 (Version: 2.00.0000)
Unity Web Player (Version: )
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2836939) (Version: 1)
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition
Use the entry named LeapFrog Connect to uninstall (LeapFrog LeapPad Explorer Plugin)
Use the entry named LeapFrog Connect to uninstall (LeapFrog Tag Plugin) (Version: 5.0.19.17305)
Windows Driver Package - LeapFrog (FlyUsb) USB  (11/05/2008 1.1.1.0) (Version: 11/05/2008 1.1.1.0)
Windows Driver Package - Leapfrog (Leapfrog-USBLAN) Net  (09/10/2009 02.03.05.012) (Version: 09/10/2009 02.03.05.012)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3555.0308)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3555.0308)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
 
========================= Devices: ================================
 
 
========================= Memory info: ===================================
 
Percentage of memory in use: 52%
Total physical RAM: 2765.86 MB
Available physical RAM: 1319.45 MB
Total Pagefile: 5529.9 MB
Available Pagefile: 3382.68 MB
Total Virtual: 4095.88 MB
Available Virtual: 3974 MB
 
========================= Partitions: =====================================
 
1 Drive c: (TI106139W0E) (Fixed) (Total:450.57 GB) (Free:292.95 GB) NTFS
 
========================= Users: ========================================
 
User accounts for \\STACEY-PC
 
Administrator            Guest                    Stacey                   
 
 
**** End of log ****

 

 

Malware Bytes

 

 

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org
 
Database version: v2013.08.25.04
 
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16660
Stacey :: STACEY-PC [administrator]
 
8/25/2013 10:58:34 AM
mbam-log-2013-08-25 (10-58-34).txt
 
Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 236579
Time elapsed: 13 minute(s), 27 second(s)
 
Memory Processes Detected: 0
(No malicious items detected)
 
Memory Modules Detected: 0
(No malicious items detected)
 
Registry Keys Detected: 13
HKCR\CLSID\{EEE6C35B-6118-11DC-9C72-001320C79847} (PUP.Optional.SweetPacks) -> Quarantined and deleted successfully.
HKCR\TypeLib\{EEE6C35E-6118-11DC-9C72-001320C79847} (PUP.Optional.SweetPacks) -> Quarantined and deleted successfully.
HKCR\Interface\{EEE6C358-6118-11DC-9C72-001320C79847} (PUP.Optional.SweetPacks) -> Quarantined and deleted successfully.
HKCR\SWEETIE.IEToolbar.1 (PUP.Optional.SweetPacks) -> Quarantined and deleted successfully.
HKCR\SWEETIE.IEToolbar (PUP.Optional.SweetPacks) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35B-6118-11DC-9C72-001320C79847} 
 
(PUP.Optional.SweetPacks) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35B-6118-11DC-9C72-001320C79847} (PUP.Optional.SweetPacks) 
 
-> Quarantined and deleted successfully.
HKCR\CLSID\{EEE6C35C-6118-11DC-9C72-001320C79847} (PUP.Optional.SweetPacks) -> Quarantined and deleted successfully.
HKCR\Toolbar3.SWEETIE.1 (PUP.Optional.SweetPacks) -> Quarantined and deleted successfully.
HKCR\Toolbar3.SWEETIE (PUP.Optional.SweetPacks) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847} 
 
(PUP.Optional.SweetPacks) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35C-6118-11DC-9C72-001320C79847} 
 
(PUP.Optional.SweetPacks) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35C-6118-11DC-9C72-001320C79847} (PUP.Optional.SweetPacks) 
 
-> Quarantined and deleted successfully.
 
Registry Values Detected: 3
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar|{EEE6C35B-6118-11DC-9C72-001320C79847} (PUP.Optional.SweetPacks) -> Data: 
 
 -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Mozilla\Firefox\Extensions\{7D4F1959-3F72-49d5-8E59-F02F8AA6815D} (PUP.Optional.SweetPacks.A) -> Data:  -> 
 
Quarantined and deleted successfully.
HKLM\SOFTWARE\Mozilla\Firefox\Extensions|{7D4F1959-3F72-49d5-8E59-F02F8AA6815D} (PUP.Optional.SweetPacks.A) -> Data: C:
 
\Program Files\Updater By SweetPacks\Firefox -> Quarantined and deleted successfully.
 
Registry Data Items Detected: 1
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main|Start Page (PUP.Optional.SweetPacks) -> Bad: (http://start.sweetpacks.com/?
 
src=10&st=12&crg=3.5000006.10042&barid={CCA735E6-D9F5-11E2-AEA6-E89A8F887177}) Good: (http://www.google.com) -> Quarantined 
 
and repaired successfully.
 
Folders Detected: 1
C:\Program Files (x86)\DefaultTab (PUP.Optional.DefaultTab) -> Quarantined and deleted successfully.
 
Files Detected: 12
C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (PUP.Optional.SweetPacks) -> Quarantined and 
 
deleted successfully.
C:\Users\Stacey\AppData\Local\Temp\1371766135_80726835_11_4.tmp (PUP.Optional.SweetIM) -> Quarantined and deleted 
 
successfully.
C:\Users\Stacey\AppData\Local\Temp\1371766135_80727038_11_6.tmp (PUP.Optional.SweetIM) -> Quarantined and deleted 
 
successfully.
C:\Users\Stacey\AppData\Local\Temp\hsbing_717_active.exe (PUP.Optional.SweetPacks.A) -> Quarantined and deleted 
 
successfully.
C:\Users\Stacey\AppData\Local\Temp\mgsqlite3.7z (PUP.Optional.SweetIM) -> Quarantined and deleted successfully.
C:\Users\Stacey\AppData\Local\Temp\mgsqlite3.dll (PUP.Optional.SweetIM) -> Quarantined and deleted successfully.
C:\Users\Stacey\AppData\Local\Temp\Shortcut_bundlesweetimsetup.exe (PUP.Optional.SweetIM) -> Quarantined and deleted 
 
successfully.
C:\$Recycle.Bin\S-1-5-21-144927966-4054604706-1895636330-1000\$R2GRLGQ.exe (PUP.Optional.SweetIM) -> Quarantined and 
 
deleted successfully.
C:\Users\Stacey\Downloads\wintvapp__3192_il458047.exe (PUP.Optional.Amonetize) -> Quarantined and deleted successfully.
C:\Windows\Installer\4cf0db4.msi (PUP.Optional.SweetIM) -> Quarantined and deleted successfully.
C:\Program Files (x86)\DefaultTab\DefaultTab.crx (PUP.Optional.DefaultTab) -> Quarantined and deleted successfully.
C:\Program Files (x86)\DefaultTab\uid (PUP.Optional.DefaultTab) -> Quarantined and deleted successfully.
 
(end)
 

 MBAR

 

Malwarebytes Anti-Rootkit BETA 1.07.0.1005
www.malwarebytes.org
 
Database version: v2013.08.25.04
 
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16660
Stacey :: STACEY-PC [administrator]
 
8/25/2013 11:17:30 AM
mbar-log-2013-08-25 (11-17-30).txt
 
Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled: 
Objects scanned: 254549
Time elapsed: 25 minute(s), 16 second(s)
 
Memory Processes Detected: 0
(No malicious items detected)
 
Memory Modules Detected: 0
(No malicious items detected)
 
Registry Keys Detected: 0
(No malicious items detected)
 
Registry Values Detected: 0
(No malicious items detected)
 
Registry Data Items Detected: 0
(No malicious items detected)
 
Folders Detected: 0
(No malicious items detected)
 
Files Detected: 0
(No malicious items detected)
 
Physical Sectors Detected: 0
(No malicious items detected)
 
(end)
 

 

Malwarebytes Anti-Rootkit BETA 1.07.0.1005
 
© Malwarebytes Corporation 2011-2012
 
OS version: 6.1.7601 Windows 7 Service Pack 1 x64
 
Account is Administrative
 
Internet Explorer version: 10.0.9200.16660
 
File system is: NTFS
Disk drives: C:\ DRIVE_FIXED, Q:\ DRIVE_FIXED
CPU speed: 2.095000 GHz
Memory total: 2900213760, free: 1262170112
 
Downloaded database version: v2013.08.25.04
Downloaded database version: v2013.08.06.01
=======================================
Initializing...
------------ Kernel report ------------
     08/25/2013 11:17:25
------------ Loaded modules -----------
\SystemRoot\system32\ntoskrnl.exe
\SystemRoot\system32\hal.dll
\SystemRoot\system32\kdcom.dll
\SystemRoot\system32\mcupdate_GenuineIntel.dll
\SystemRoot\system32\PSHED.dll
\SystemRoot\system32\CLFS.SYS
\SystemRoot\system32\CI.dll
\SystemRoot\system32\drivers\Wdf01000.sys
\SystemRoot\system32\drivers\WDFLDR.SYS
\SystemRoot\system32\drivers\ACPI.sys
\SystemRoot\system32\drivers\WMILIB.SYS
\SystemRoot\system32\drivers\msisadrv.sys
\SystemRoot\system32\drivers\pci.sys
\SystemRoot\system32\drivers\vdrvroot.sys
\SystemRoot\System32\drivers\partmgr.sys
\SystemRoot\system32\drivers\compbatt.sys
\SystemRoot\system32\drivers\BATTC.SYS
\SystemRoot\system32\drivers\volmgr.sys
\SystemRoot\System32\drivers\volmgrx.sys
\SystemRoot\System32\drivers\mountmgr.sys
\SystemRoot\system32\DRIVERS\pciide.sys
\SystemRoot\system32\DRIVERS\PCIIDEX.SYS
\SystemRoot\system32\DRIVERS\iaStor.sys
\SystemRoot\system32\drivers\atapi.sys
\SystemRoot\system32\drivers\ataport.SYS
\SystemRoot\system32\DRIVERS\msahci.sys
\SystemRoot\system32\drivers\amdxata.sys
\SystemRoot\system32\drivers\fltmgr.sys
\SystemRoot\system32\drivers\fileinfo.sys
\SystemRoot\System32\Drivers\Ntfs.sys
\SystemRoot\System32\Drivers\msrpc.sys
\SystemRoot\System32\Drivers\ksecdd.sys
\SystemRoot\System32\Drivers\cng.sys
\SystemRoot\System32\drivers\pcw.sys
\SystemRoot\System32\Drivers\Fs_Rec.sys
\SystemRoot\system32\drivers\ndis.sys
\SystemRoot\system32\drivers\NETIO.SYS
\SystemRoot\System32\Drivers\ksecpkg.sys
\SystemRoot\System32\drivers\tcpip.sys
\SystemRoot\System32\drivers\fwpkclnt.sys
\SystemRoot\system32\drivers\wd.sys
\SystemRoot\system32\drivers\volsnap.sys
\SystemRoot\system32\DRIVERS\TVALZ_O.SYS
\SystemRoot\system32\DRIVERS\tos_sps64.sys
\SystemRoot\System32\Drivers\spldr.sys
\SystemRoot\System32\drivers\rdyboost.sys
\SystemRoot\System32\Drivers\mup.sys
\SystemRoot\System32\drivers\hwpolicy.sys
\SystemRoot\System32\DRIVERS\fvevol.sys
\SystemRoot\system32\drivers\disk.sys
\SystemRoot\system32\drivers\CLASSPNP.SYS
\SystemRoot\System32\Drivers\aswVmm.sys
\SystemRoot\System32\Drivers\aswRvrt.sys
\SystemRoot\system32\DRIVERS\cdrom.sys
\SystemRoot\System32\Drivers\aswSnx.SYS
\SystemRoot\System32\Drivers\Null.SYS
\SystemRoot\System32\Drivers\Beep.SYS
\SystemRoot\System32\drivers\vga.sys
\SystemRoot\System32\drivers\VIDEOPRT.SYS
\SystemRoot\System32\drivers\watchdog.sys
\SystemRoot\System32\DRIVERS\RDPCDD.sys
\SystemRoot\system32\drivers\rdpencdd.sys
\SystemRoot\system32\drivers\rdprefmp.sys
\SystemRoot\System32\Drivers\Msfs.SYS
\SystemRoot\System32\Drivers\Npfs.SYS
\SystemRoot\system32\DRIVERS\tdx.sys
\SystemRoot\system32\DRIVERS\TDI.SYS
\SystemRoot\System32\Drivers\aswTdi.SYS
\SystemRoot\system32\drivers\afd.sys
\SystemRoot\System32\Drivers\aswrdr2.sys
\SystemRoot\System32\DRIVERS\netbt.sys
\SystemRoot\system32\DRIVERS\wfplwf.sys
\SystemRoot\system32\DRIVERS\pacer.sys
\SystemRoot\system32\DRIVERS\vwififlt.sys
\SystemRoot\system32\DRIVERS\netbios.sys
\SystemRoot\system32\DRIVERS\wanarp.sys
\SystemRoot\system32\DRIVERS\termdd.sys
\??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
\??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
\SystemRoot\system32\DRIVERS\rdbss.sys
\SystemRoot\system32\drivers\nsiproxy.sys
\SystemRoot\system32\DRIVERS\mssmbios.sys
\SystemRoot\System32\drivers\discache.sys
\SystemRoot\System32\Drivers\dfsc.sys
\SystemRoot\system32\DRIVERS\blbdrive.sys
\SystemRoot\System32\Drivers\aswSP.SYS
\??\C:\Users\Stacey\Downloads\EmsisoftEmergencyKit\Run\a2ddax64.sys
\SystemRoot\system32\DRIVERS\tunnel.sys
\SystemRoot\system32\DRIVERS\igdkmd64.sys
\SystemRoot\System32\drivers\dxgkrnl.sys
\SystemRoot\System32\drivers\dxgmms1.sys
\SystemRoot\system32\DRIVERS\HECIx64.sys
\SystemRoot\system32\drivers\usbehci.sys
\SystemRoot\system32\drivers\USBPORT.SYS
\SystemRoot\system32\DRIVERS\HDAudBus.sys
\SystemRoot\system32\DRIVERS\rtl8192Ce.sys
\SystemRoot\system32\DRIVERS\vwifibus.sys
\SystemRoot\system32\DRIVERS\L1C62x64.sys
\SystemRoot\system32\DRIVERS\i8042prt.sys
\SystemRoot\system32\DRIVERS\kbdclass.sys
\SystemRoot\system32\DRIVERS\SynTP.sys
\SystemRoot\system32\DRIVERS\USBD.SYS
\SystemRoot\system32\DRIVERS\mouclass.sys
\SystemRoot\system32\DRIVERS\tdcmdpst.sys
\SystemRoot\system32\DRIVERS\GEARAspiWDM.sys
\SystemRoot\system32\DRIVERS\intelppm.sys
\SystemRoot\system32\DRIVERS\CmBatt.sys
\SystemRoot\system32\DRIVERS\QIOMem.sys
\SystemRoot\system32\DRIVERS\TVALZFL.sys
\SystemRoot\system32\DRIVERS\wmiacpi.sys
\SystemRoot\system32\DRIVERS\serscan.sys
\SystemRoot\system32\DRIVERS\pgeffect.sys
\SystemRoot\system32\drivers\ksthunk.sys
\SystemRoot\system32\drivers\ks.sys
\SystemRoot\system32\DRIVERS\CompositeBus.sys
\SystemRoot\system32\DRIVERS\AgileVpn.sys
\SystemRoot\system32\DRIVERS\rasl2tp.sys
\SystemRoot\system32\DRIVERS\ndistapi.sys
\SystemRoot\system32\DRIVERS\ndiswan.sys
\SystemRoot\system32\DRIVERS\raspppoe.sys
\SystemRoot\system32\DRIVERS\raspptp.sys
\SystemRoot\system32\DRIVERS\rassstp.sys
\SystemRoot\system32\DRIVERS\swenum.sys
\SystemRoot\system32\DRIVERS\umbus.sys
\SystemRoot\system32\DRIVERS\usbhub.sys
\SystemRoot\System32\Drivers\NDProxy.SYS
\SystemRoot\system32\drivers\CHDRT64.sys
\SystemRoot\system32\drivers\portcls.sys
\SystemRoot\system32\drivers\drmk.sys
\SystemRoot\system32\DRIVERS\IntcDAud.sys
\SystemRoot\system32\DRIVERS\usbccgp.sys
\SystemRoot\system32\DRIVERS\hidusb.sys
\SystemRoot\system32\DRIVERS\HIDCLASS.SYS
\SystemRoot\system32\DRIVERS\HIDPARSE.SYS
\SystemRoot\system32\DRIVERS\mouhid.sys
\SystemRoot\System32\Drivers\usbvideo.sys
\SystemRoot\System32\Drivers\crashdmp.sys
\SystemRoot\System32\Drivers\dump_iaStor.sys
\SystemRoot\System32\Drivers\dump_dumpfve.sys
\SystemRoot\System32\win32k.sys
\SystemRoot\System32\drivers\Dxapi.sys
\SystemRoot\system32\DRIVERS\monitor.sys
\SystemRoot\System32\TSDDD.dll
\SystemRoot\System32\cdd.dll
\SystemRoot\system32\drivers\luafv.sys
\??\C:\windows\system32\drivers\aswMonFlt.sys
\SystemRoot\System32\Drivers\aswFsBlk.SYS
\SystemRoot\system32\DRIVERS\Sftvollh.sys
\SystemRoot\system32\DRIVERS\lltdio.sys
\SystemRoot\system32\DRIVERS\nwifi.sys
\SystemRoot\system32\DRIVERS\ndisuio.sys
\SystemRoot\system32\DRIVERS\rspndr.sys
\SystemRoot\system32\drivers\HTTP.sys
\SystemRoot\system32\DRIVERS\bowser.sys
\SystemRoot\System32\drivers\mpsdrv.sys
\SystemRoot\system32\DRIVERS\mrxsmb.sys
\SystemRoot\system32\DRIVERS\mrxsmb10.sys
\SystemRoot\system32\DRIVERS\mrxsmb20.sys
\SystemRoot\system32\drivers\peauth.sys
\SystemRoot\System32\Drivers\secdrv.SYS
\SystemRoot\system32\DRIVERS\Sftfslh.sys
\SystemRoot\system32\DRIVERS\Sftplaylh.sys
\SystemRoot\System32\DRIVERS\srvnet.sys
\SystemRoot\System32\drivers\tcpipreg.sys
\SystemRoot\System32\DRIVERS\srv2.sys
\SystemRoot\System32\DRIVERS\srv.sys
\SystemRoot\system32\DRIVERS\Sftredirlh.sys
\??\C:\windows\system32\drivers\mbamchameleon.sys
\??\C:\windows\system32\drivers\MBAMSwissArmy.sys
\Windows\System32\ntdll.dll
\Windows\System32\smss.exe
\Windows\System32\apisetschema.dll
----------- End -----------
Done!
<<<1>>>
Upper Device Name: \Device\Harddisk0\DR0
Upper Device Object: 0xfffffa8004acc060
Upper Device Driver Name: \Driver\Disk\
Lower Device Name: \Device\Ide\IAAStorageDevice-1\
Lower Device Object: 0xfffffa8002b7d050
Lower Device Driver Name: \Driver\iaStor\
<<<2>>>
Physical Sector Size: 512
Drive: 0, DevicePointer: 0xfffffa8004acc060, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\
--------- Disk Stack ------
DevicePointer: 0xfffffa8004accb90, DeviceName: Unknown, DriverName: \Driver\partmgr\
DevicePointer: 0xfffffa8004acc060, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\
DevicePointer: 0xfffffa8002b7d050, DeviceName: \Device\Ide\IAAStorageDevice-1\, DriverName: \Driver\iaStor\
------------ End ----------
Alternate DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\
Upper DeviceData: 0x0, 0x0, 0x0
Lower DeviceData: 0x0, 0x0, 0x0
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
<<<2>>>
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
Scanning drivers directory: C:\WINDOWS\SYSTEM32\drivers...
<<<2>>>
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
Done!
Drive 0
Scanning MBR on drive 0...
Inspecting partition table:
MBR Signature: 55AA
Disk Signature: 4E59E2AF
 
Partition information:
 
    Partition 0 type is Other (0x27)
    Partition is ACTIVE.
    Partition starts at LBA: 2048  Numsec = 3072000
    Partition file system is NTFS
    Partition is bootable
 
    Partition 1 type is Primary (0x7)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 3074048  Numsec = 944908288
 
    Partition 2 type is HIDDEN (0x17)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 947982336  Numsec = 28790784
    Partition is not bootable
Hidden partition VBR is not infected.
 
    Partition 3 type is Empty (0x0)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 0  Numsec = 0
 
Disk Size: 500107862016 bytes
Sector size: 512 bytes
 
Scanning physical sectors of unpartitioned space on drive 0 (1-2047-976753168-976773168)...
Done!
Scan finished
=======================================
 
 
Removal queue found; removal started
Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\MBR_0_i.mbam...
Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\Bootstrap_0_0_2048_i.mbam...
Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\Bootstrap_0_2_947982336_i.mbam...
Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\MBR_0_r.mbam...
Removal finished
 

 

RKILL

 

Rkill 2.6.1 by Lawrence Abrams (Grinler)

Copyright 2008-2013 BleepingComputer.com
More Information about Rkill can be found at this link:
 
Program started at: 08/25/2013 11:45:51 AM in x64 mode.
Windows Version: Windows 7 Home Premium Service Pack 1
 
Checking for Windows services to stop:
 
 * No malware services found to stop.
 
Checking for processes to terminate:
 
 * No malware processes found to kill.
 
Checking Registry for malware related settings:
 
 * Explorer Policy Removed:  NoActiveDesktopChanges [HKLM]
 
Backup Registry file created at:
 C:\Users\Stacey\Desktop\rkill\rkill-08-25-2013-11-45-59.reg
 
Resetting .EXE, .COM, & .BAT associations in the Windows Registry.
 
Performing miscellaneous checks:
 
 * No issues found.
 
Checking Windows Service Integrity: 
 
 * No issues found.
 
Searching for Missing Digital Signatures: 
 
 * No issues found.
 
Checking HOSTS File: 
 
 * No issues found.
 
Program finished at: 08/25/2013 11:48:32 AM
Execution time: 0 hours(s), 2 minute(s), and 40 seconds(s)


#4 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,738 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:10:09 PM

Posted 25 August 2013 - 11:07 AM

p22002970.gif Download Temp File Cleaner (TFC)
Alternate download: http://www.itxassociates.com/OT-Tools/TFC.exe
Double click on TFC.exe to run the program.
Click on Start button to begin cleaning process.
TFC will close all running programs, and it may ask you to restart computer.

=============================================================================

p22002970.gif Please download AdwCleaner by Xplode onto your desktop.

  • Close all open programs and internet browsers.
  • Double click on adwcleaner.exe to run the tool.
  • Click on Scan button.
  • When the scan has finished click on Clean button.
  • Your computer will be rebooted automatically. A text file will open after the restart.
  • Please post the contents of that logfile with your next reply.
  • You can find the logfile at C:\AdwCleaner[S1].txt as well.


=============================================================================

p22002970.gif Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.


=======================================

p22002970.gif Please run a free online scan with the ESET Online Scanner

  • Disable your antivirus program
  • Tick the box next to YES, I accept the Terms of Use
  • Click Start
  • Accept any security warnings from your browser.
  • Check Scan archives
  • Click Start
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click on List of found threats
  • Click on Export to text file , and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
    NOTE. If Eset doesn't find any threats it'll NOT produce any log.


My Website

My help doesn't cost a penny, but if you'd like to consider a donation, click DONATE

 


#5 hlane1012

hlane1012
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:01:09 AM

Posted 25 August 2013 - 04:06 PM

ADW -

 

# AdwCleaner v3.001 - Report created 25/08/2013 at 12:42:18
# Updated 24/08/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Stacey - STACEY-PC
# Running from : C:\Users\Stacey\Downloads\adwcleaner.exe
# Option : Clean
 
***** [ Services ] *****
 
 
***** [ Files / Folders ] *****
 
Folder Deleted : C:\Program Files (x86)\SweetIM
Folder Deleted : C:\Users\Stacey\AppData\Roaming\DefaultTab
 
***** [ Shortcuts ] *****
 
 
***** [ Registry ] *****
 
Key Deleted : HKLM\SOFTWARE\Classes\sweetim_urlsearchhook.toolbarurlsearchhook
Key Deleted : HKLM\SOFTWARE\Classes\sweetim_urlsearchhook.toolbarurlsearchhook.1
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs [C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgHelperApp.exe]
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs [C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarProxy.dll]
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_printkey-pro_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_printkey-pro_RASMANCS
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{EEE6C35D-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EEE6C359-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EEE6C35A-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{EEE6C35F-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EEE6C367-6118-11DC-9C72-001320C79847}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\IM
Key Deleted : HKCU\Software\ImInstaller
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{DD85D6BF-4787-4A93-99A5-3F0CF0AE8834}
 
***** [ Browsers ] *****
 
-\\ Internet Explorer v10.0.9200.16660
 
 
-\\ Google Chrome v29.0.1547.57
 
[ File : C:\Users\Stacey\AppData\Local\Google\Chrome\User Data\Default\preferences ]
 
Deleted : icon_url
Deleted : search_url
Deleted : keyword
 
*************************
 
AdwCleaner[R0].txt - [3714 octets] - [25/08/2013 12:41:12]
AdwCleaner[S0].txt - [3455 octets] - [25/08/2013 12:42:18]
 
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [3515 octets] ##########
 

 

 

JRT-

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 5.5.4 (08.22.2013:1)
OS: Windows 7 Home Premium x64
Ran by Stacey on Sun 08/25/2013 at 12:52:17.08
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
 
 
~~~ Services
 
 
 
~~~ Registry Values
 
 
 
~~~ Registry Keys
 
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\sweetim
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\updater by sweetpacks
 
 
 
~~~ Files
 
Successfully deleted: [File] "C:\users\default user\start menu\programs\startup\best buy pc app.lnk"
 
 
 
~~~ Folders
 
Successfully deleted: [Folder] "C:\ProgramData\best buy pc app"
Successfully deleted: [Folder] "C:\Users\Stacey\appdata\local\best buy pc app"
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{001E27EC-BCD5-4E6D-9ADC-7A5BE5D3FA08}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{00C98A58-8343-4E8D-8058-E6431A3F973E}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{0201B71C-5E23-45E7-89AA-AB47021E46C5}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{03C14B17-DBB3-4761-AB68-E220400119FF}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{043D246D-8C1D-4378-AA8B-2DCE8F119B4A}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{04CFF8A4-2C56-447A-9C5E-2E406A7D25F0}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{062096AC-2D38-4E03-9FD8-47563E2B6996}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{07995013-5EE2-4A92-AEC5-017229F142E7}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{0827CED3-5939-4938-B828-B5A53C377385}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{086EBA25-9BBB-4089-A5D8-34480A00179D}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{08D78FC3-96DE-4D9E-BE24-7C8812CB9EAF}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{09B01781-274A-4944-A82F-5C2F269C2A48}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{0A433622-D312-445C-BFFE-87A5CD505DFC}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{0F89C16D-138E-48D8-857F-0C3D8BF61563}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{1801EFE1-D369-448E-8DCA-F4866C8D580F}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{19FC1CD5-44F5-461A-801F-3FB29E51F975}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{1C3DA77D-9D8D-47A8-B7F8-4B50531FFB0A}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{1CA586ED-7DD2-4C54-8BDF-D253A3157B93}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{1E896A1E-517E-4867-BD14-D5165B6388AC}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{1EDDDC11-D3A0-4F7A-80C2-00873A1D7A83}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{22763580-BACB-4FD7-A9A8-9F22DD7DB4CE}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{259C27D7-2997-4204-B983-645583E7F771}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{25B3A9DC-6118-4073-89D8-54FBB5A60A18}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{2795B309-8651-4D1B-AB87-386855D705C3}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{2998D1FB-AC9D-422A-B374-19FB7AA89DF9}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{2AA2F109-998C-495B-93DE-E7CC54138DC4}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{2AECD231-8B2C-4B4D-ACEB-97FB8E12708E}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{2B9E84EF-D92A-4119-81B2-B09711ECBD68}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{2D13E172-C652-4C80-B491-59A1F37CF56C}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{2E9B5A84-E95C-4EA8-A496-782BAC8C7429}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{2F9CCF10-9385-4D2F-B5C8-AE6698C6A08E}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{31BB062C-0074-480F-86E3-A5D27A304959}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{32166945-F251-4B7F-BD5F-B671E728D5DF}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{32F38F3E-E371-47F7-9B88-3479BC184EF7}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{3332A96D-5854-4DCF-91FF-3C03AF531775}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{33BA4A78-3D85-478D-8834-34608E319046}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{34D9FB18-6050-4505-9CDA-1F416D4D03E6}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{34E0150D-A53D-4250-A2F7-5462748B331A}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{3933DACF-228E-4AA8-A3E2-9F7CC5C76087}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{3B2FF767-D549-45A7-B050-83635328D533}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{3BBB7382-9386-4C2B-9283-9AA076E135EF}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{3D2AB1DA-71DE-46F8-9F06-904DF28938DE}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{4133FF7F-F849-4F6B-B471-13EFB4F95C67}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{42037F84-D4A2-46C4-990A-D4DDFA051A7C}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{420E7F95-8A41-46D1-9291-1FBD376FD257}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{434173C4-E0DB-4A50-9510-4942ADEF7859}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{490CCAA0-7884-4A4C-8116-42612EDF257F}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{497C3B89-3115-41C6-991D-B4ED5D389A23}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{4A5F5359-A2B5-4AF9-804F-9A5B0517D3BC}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{4AD323A9-B2E7-4CB1-964F-881A1860C6F6}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{4C67B910-6FAA-46BA-B9A3-6A0861D1BF2D}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{4D5515BB-F5E1-491C-8930-7C157716BA4C}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{4F1169AE-374B-4F21-915B-C2381EF34301}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{4FE1B743-2DCF-46B4-A685-3A8BE96B136C}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{50F5CC95-3DF7-4D7D-9AA1-DC75323BEFDF}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{53B46F7A-64A6-493D-9406-F00240D4D143}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{544196AF-FF8A-4EC8-80B5-0F6BF1DA3FCA}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{57943B15-EA8E-4582-8228-85E072DCBC01}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{588AD4ED-26CA-48A2-AF86-14579086EB8A}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{59DE8048-69CA-42BE-91A7-FBC67301D70B}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{5CBC44AA-7440-40EE-8533-78BF966E2E39}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{5F268152-6D4C-4893-9B52-30055C6CD129}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{6077FFF7-2B3A-4F10-B0D5-50C6C976A8B5}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{61946CF5-7441-4CFF-AD66-D22966649EEB}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{61E8AE51-0831-48A1-842E-6C8BA819D53B}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{634D14BC-ADC9-4EE4-9AEF-453B89CAC271}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{63645C5E-6706-4E14-92EC-911DB6E77EFB}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{688E0246-378C-443F-9C80-ECB18B3FB43F}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{69C0BBD7-5393-4F12-A44F-E87DF01D6B4B}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{6A6E7713-6873-42E6-B1C0-0E62A88EA805}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{6B45655E-EB69-40D0-B63E-2396E2C5879E}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{6E2A33C0-10FF-4B25-81DA-B45A081E0F21}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{702F3107-DB51-43DB-AF60-AC8B6B9481F5}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{7128CC83-5499-4A6C-AC94-A485C9FCB0BF}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{72B63C6C-2CDB-48FA-AD21-ED0E2D526733}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{751D3643-BFD6-4DA8-A59E-A5C958CBF654}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{757ECB40-6C82-4610-AB31-A5ED805D116B}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{76CD25F9-A3AF-4D32-AD47-0093BB1AB29E}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{77BBF0B7-8C30-45A3-9FCD-C35F59A328FF}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{79F3E172-59E4-4CFD-85D2-96EED025A48B}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{7A2CCC5B-D0B6-4E9A-AADC-9CBCEF3BDD41}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{7A5AF772-43C0-4B53-A0E6-6A5DCA45704A}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{7C502EFD-598D-4158-8B2B-382A54835E7F}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{7EE4B42A-4610-4721-852C-BEC7806CDD66}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{81BE9ADF-D79C-4897-9863-D450D12F0D71}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{83488A2D-D911-47A7-BF12-E85787DFC0F6}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{85FFF339-0593-4CDF-9D54-C4272107100C}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{8D45F8A7-801E-411F-A634-E8FFC3ECA9FB}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{8F77134E-5461-4D71-973C-32FF3D0E66F6}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{8F963E3D-07CC-41ED-9465-F3114AD90494}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{8FF2FBA6-C40C-49CF-82B0-226957C3F106}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{909EB036-578F-4568-9BF9-6B1415E74052}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{99A71235-BB12-4F22-B688-482DBD6F76E2}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{9A9BBE35-FA02-4437-81FE-450DA78483AC}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{9AB128D3-EBC0-4A1D-A9DE-6A5887E74451}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{9BF05AC8-FC68-46C2-A8FD-1BFA87514ADA}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{9D48ADAA-4B9B-4E26-BDF2-077D31395920}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{9F3CE1FE-629C-4451-A76F-F7BA6287CF17}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{9FE9A1A2-EB70-41AB-BA6E-1DDF9CEBA6C0}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{A198D0F6-42F2-47E8-B4C3-B2614ABD351B}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{A2C1835C-228A-4E61-8EDD-FCC2ACF5D3CE}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{A38E155C-DDF9-4642-A6BB-7351A68E27B7}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{A42D9C8A-1780-41E0-90BB-74713683D4E4}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{A4A728FA-AF52-4DEE-B518-EA50E29D5B36}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{A6975588-4A7C-4376-A91F-27BF60ED213B}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{ABD38636-AE39-4F5A-8525-F0D355B3B937}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{AC33714F-0B54-4CEA-B484-F97A37CEEDE6}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{ACB5F90C-0EEC-4DC7-AADE-0F4629F1937C}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{AF4E0FD1-5656-4BF8-A84B-6B9FFB12A89A}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{AF6990D5-D62E-4C47-A217-17FCBE026D5F}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{AFD21F4A-A956-4799-A2BE-779392EA8AFA}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{B1F24E21-22EB-4119-80B6-AAFAEBBEFF3C}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{B45E831C-0BC4-4F10-AA53-8E3C0240AB6D}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{B9F345F5-D938-45DB-9BAF-2484323D715C}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{BA0278A1-3865-4D88-A589-B48D97008C1A}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{BB3CC1D4-6C09-428A-9D5B-2AACCADBC8DC}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{BC42945A-CEC5-4433-86C2-E330FCBC6F81}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{C228AC8C-723C-4303-9D6A-750391CEDBD1}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{C2C094CD-4A2E-499D-A377-FAE082B76564}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{C44FED76-2E71-4C93-B449-E7B947A3FA31}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{C55C2EAD-7FB9-4812-AE49-A914DF424469}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{CEDC6FD7-32C1-47A2-9D39-6C4FFBC7A18B}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{D13AB6B8-9573-47E3-B682-F35B93667B8E}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{D28858A4-73F9-42A0-8EA0-2C7249466098}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{D4A83F87-C95F-4B7E-9A28-A666C03621A6}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{D6B206B4-2DB2-485B-8493-918D3987AAC6}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{D7045B8F-D287-4D25-938F-4F202B9CB5C9}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{D708246F-A348-40A5-95E3-C9AB0C168876}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{D7887E1E-8696-4109-9E96-85572EC2E9AD}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{D9E20D75-2C11-41E3-A492-ACB10435BC92}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{DB5816C3-BFEF-41DD-9138-971984F488D1}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{DC94DF55-9D53-4006-8B1B-40984BB5BDE9}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{DF121C47-060E-44E4-BBEB-9FAF7D716466}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{E1464E71-B53A-40EF-9B56-1C08F039BF9B}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{E549BED3-BA89-4738-B473-A02B4BFA5FD0}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{E5F541D5-8673-480E-BBC7-168406A9D7AD}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{E6A4627E-4E9A-4E35-A100-CB6F85003907}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{E7AA67B2-24B1-4FE8-8B6D-815AD00A8540}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{E9A4BCCC-1426-4997-8A1B-6243985BC456}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{E9CE5F7D-6999-493E-B6E9-F9C81357642C}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{ED19E353-A2C5-4B2B-A9D7-E71AF1882768}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{EEAB5F09-1DC3-4D13-9300-11FB67A77302}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{F221EAE1-316E-41C4-B7A6-2D1787B2195C}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{F2D7B10D-2D28-4E8D-BE48-AB110BF90018}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{F3CC0182-B047-49CE-B576-466364213C2F}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{F78637B7-5863-4B10-AB0A-5CE65A3B8A57}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{F7B5DC0A-D3E1-43C5-8DB2-075D41CB673C}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{FF08BBC2-4DCD-4182-9AFD-78BBD85ECB06}
Successfully deleted: [Empty Folder] C:\Users\Stacey\appdata\local\{FF975458-C419-44C1-ACF7-0FA91D1B40FA}
 
 
 
~~~ Event Viewer Logs were cleared
 
 
 
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Sun 08/25/2013 at 12:59:12.00
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 

ESET showed no infections



#6 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,738 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:10:09 PM

Posted 25 August 2013 - 06:41 PM

How is computer doing?

 

Update Adobe Reader

You can download it from http://www.adobe.com/products/acrobat/readstep2.html
After installing the latest Adobe Reader, uninstall all previous versions (if present).
Note. If you already have Adobe Photoshop® Album Starter Edition installed or do not wish to have it installed UNcheck the box which says Also Download Adobe Photoshop® Album Starter Edition.

Alternatively, you can uninstall Adobe Reader (33.5 MB) and install one of two free alternatives:

- Foxit PDF Reader(3.5MB) from HERE.
It's a much smaller file to download and uses a lot less resources than Adobe Reader.
Note: When installing FoxitReader, make sure to UN-check any pre-checked toolbar, or any other garbage.

- PDF-XChange Viewer: http://www.tracker-software.com/product/pdf-xchange-viewer


My Website

My help doesn't cost a penny, but if you'd like to consider a donation, click DONATE

 


#7 hlane1012

hlane1012
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:01:09 AM

Posted 25 August 2013 - 06:53 PM

It seems to be working better. Is it common to have 15 separate Svchost.exe processes running at the same time in the task manager. 3 are at over 70k in mem usage. 



#8 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,738 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:10:09 PM

Posted 25 August 2013 - 07:05 PM

It may be normal.

Don't worry about RAM usage. Always look at CPU usage.

 

Download Process Explorer: http://technet.microsoft.com/en-us/sysinternals/bb896653.aspx
Unzip ProcessExplorer.zip, and double click on procexp.exe to run the program.
Click on View > Select Colunms.
In addition to already pre-selected options, make sure, the Command Line is selected, and press OK.
Go File>Save As, and save the report as Procexp.txt.
 

Upload the file(s) here: http://www.sendspace.com/
Click on Browse button and navigate to the file you want to upload.
Click on Upload button.
Click on FIRST Copy Link button and paste the link in your next reply.


My Website

My help doesn't cost a penny, but if you'd like to consider a donation, click DONATE

 


#9 hlane1012

hlane1012
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:01:09 AM

Posted 26 August 2013 - 07:08 AM

http://www.sendspace.com/file/p17lqy



#10 hlane1012

hlane1012
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:01:09 AM

Posted 26 August 2013 - 05:05 PM

I am posting a different saved Process explorer report. After being online today and never opening Internet explorer and only using Chrome I have all of theses iexplorer.exe files showing up in the task manager and process explorer. Just curious about why these are showing up.They used to not do this a couple of  weeks ago.

 

http://www.sendspace.com/file/eaowgk



#11 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,738 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:10:09 PM

Posted 26 August 2013 - 07:41 PM

CPU usage is perfectly fine but I don't like iexplore.exe process there.

 

Download TDSSKiller and save it to your desktop.

  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.


My Website

My help doesn't cost a penny, but if you'd like to consider a donation, click DONATE

 


#12 hlane1012

hlane1012
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:01:09 AM

Posted 27 August 2013 - 07:34 AM

No Infected files found,

 

08:24:25.0684 4916  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
08:24:26.0308 4916  ============================================================
08:24:26.0308 4916  Current date / time: 2013/08/27 08:24:26.0308
08:24:26.0308 4916  SystemInfo:
08:24:26.0308 4916  
08:24:26.0308 4916  OS Version: 6.1.7601 ServicePack: 1.0
08:24:26.0308 4916  Product type: Workstation
08:24:26.0308 4916  ComputerName: STACEY-PC
08:24:26.0308 4916  UserName: Stacey
08:24:26.0308 4916  Windows directory: C:\windows
08:24:26.0308 4916  System windows directory: C:\windows
08:24:26.0308 4916  Running under WOW64
08:24:26.0308 4916  Processor architecture: Intel x64
08:24:26.0308 4916  Number of processors: 4
08:24:26.0308 4916  Page size: 0x1000
08:24:26.0308 4916  Boot type: Normal boot
08:24:26.0308 4916  ============================================================
08:24:26.0994 4916  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
08:24:26.0994 4916  ============================================================
08:24:26.0994 4916  \Device\Harddisk0\DR0:
08:24:26.0994 4916  MBR partitions:
08:24:26.0994 4916  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2EE800, BlocksNum 0x38522800
08:24:26.0994 4916  ============================================================
08:24:27.0010 4916  C: <-> \Device\Harddisk0\DR0\Partition1
08:24:27.0010 4916  ============================================================
08:24:27.0010 4916  Initialize success
08:24:27.0010 4916  ============================================================
08:31:40.0683 3616  ============================================================
08:31:40.0683 3616  Scan started
08:31:40.0683 3616  Mode: Manual; 
08:31:40.0683 3616  ============================================================
08:31:40.0993 3616  ================ Scan system memory ========================
08:31:40.0993 3616  System memory - ok
08:31:40.0994 3616  ================ Scan services =============================
08:31:41.0108 3616  [ 581D88B25C4D4121824FED2CA38E562F ] !SASCORE        C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
08:31:41.0110 3616  !SASCORE - ok
08:31:41.0372 3616  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\windows\system32\drivers\1394ohci.sys
08:31:41.0377 3616  1394ohci - ok
08:31:41.0509 3616  [ 3044D0F3FEB9FFE8BC953D8F34B5B504 ] A2DDA           C:\Users\Stacey\Downloads\EmsisoftEmergencyKit\Run\a2ddax64.sys
08:31:41.0511 3616  A2DDA - ok
08:31:41.0578 3616  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\windows\system32\drivers\ACPI.sys
08:31:41.0584 3616  ACPI - ok
08:31:41.0639 3616  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\windows\system32\drivers\acpipmi.sys
08:31:41.0641 3616  AcpiPmi - ok
08:31:41.0803 3616  [ ADDA5E1951B90D3D23C56D3CF0622ADC ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
08:31:41.0806 3616  AdobeARMservice - ok
08:31:41.0940 3616  [ 476BB014F3F68C0C15EDDD5B444DA8FF ] AdobeFlashPlayerUpdateSvc C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
08:31:41.0946 3616  AdobeFlashPlayerUpdateSvc - ok
08:31:42.0034 3616  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\windows\system32\drivers\adp94xx.sys
08:31:42.0043 3616  adp94xx - ok
08:31:42.0083 3616  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\windows\system32\drivers\adpahci.sys
08:31:42.0085 3616  adpahci - ok
08:31:42.0106 3616  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\windows\system32\drivers\adpu320.sys
08:31:42.0108 3616  adpu320 - ok
08:31:42.0148 3616  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\windows\System32\aelupsvc.dll
08:31:42.0149 3616  AeLookupSvc - ok
08:31:42.0243 3616  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD             C:\windows\system32\drivers\afd.sys
08:31:42.0252 3616  AFD - ok
08:31:42.0414 3616  [ 7E077309910CE334C3B2B7B8665A55C4 ] AffinegyService C:\Program Files (x86)\Belkin\Router Setup and Monitor\BelkinService.exe
08:31:42.0424 3616  AffinegyService - ok
08:31:42.0464 3616  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\windows\system32\drivers\agp440.sys
08:31:42.0466 3616  agp440 - ok
08:31:42.0501 3616  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\windows\System32\alg.exe
08:31:42.0503 3616  ALG - ok
08:31:42.0557 3616  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\windows\system32\drivers\aliide.sys
08:31:42.0559 3616  aliide - ok
08:31:42.0585 3616  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\windows\system32\drivers\amdide.sys
08:31:42.0586 3616  amdide - ok
08:31:42.0630 3616  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\windows\system32\drivers\amdk8.sys
08:31:42.0632 3616  AmdK8 - ok
08:31:42.0645 3616  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\windows\system32\drivers\amdppm.sys
08:31:42.0647 3616  AmdPPM - ok
08:31:42.0675 3616  [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata         C:\windows\system32\drivers\amdsata.sys
08:31:42.0677 3616  amdsata - ok
08:31:42.0704 3616  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\windows\system32\drivers\amdsbs.sys
08:31:42.0707 3616  amdsbs - ok
08:31:42.0722 3616  [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata         C:\windows\system32\drivers\amdxata.sys
08:31:42.0723 3616  amdxata - ok
08:31:42.0752 3616  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\windows\system32\drivers\appid.sys
08:31:42.0753 3616  AppID - ok
08:31:42.0807 3616  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\windows\System32\appidsvc.dll
08:31:42.0808 3616  AppIDSvc - ok
08:31:42.0857 3616  [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo         C:\windows\System32\appinfo.dll
08:31:42.0860 3616  Appinfo - ok
08:31:43.0080 3616  [ 4FE5C6D40664AE07BE5105874357D2ED ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
08:31:43.0084 3616  Apple Mobile Device - ok
08:31:43.0126 3616  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\windows\system32\drivers\arc.sys
08:31:43.0129 3616  arc - ok
08:31:43.0181 3616  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\windows\system32\drivers\arcsas.sys
08:31:43.0184 3616  arcsas - ok
08:31:43.0340 3616  [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state    C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
08:31:43.0343 3616  aspnet_state - ok
08:31:43.0435 3616  [ 0BAEFD3F648C6E7AB52990DD9565E4E2 ] aswFsBlk        C:\windows\system32\drivers\aswFsBlk.sys
08:31:43.0437 3616  aswFsBlk - ok
08:31:43.0488 3616  [ FA562F34ED6633C66170B09182B4C049 ] aswMonFlt       C:\windows\system32\drivers\aswMonFlt.sys
08:31:43.0490 3616  aswMonFlt - ok
08:31:43.0543 3616  [ 64E2BAB4096C13D2342BC4661C967E07 ] aswRdr          C:\windows\System32\Drivers\aswrdr2.sys
08:31:43.0546 3616  aswRdr - ok
08:31:43.0635 3616  [ 5573AA70993A2BB81525B1C704B88763 ] aswRvrt         C:\windows\system32\drivers\aswRvrt.sys
08:31:43.0637 3616  aswRvrt - ok
08:31:43.0734 3616  [ 8C0800CDB501CFC1164B286A0478DC10 ] aswSnx          C:\windows\system32\drivers\aswSnx.sys
08:31:43.0746 3616  aswSnx - ok
08:31:43.0833 3616  [ 3815DB16CDA62190F5C0A65118F3D714 ] aswSP           C:\windows\system32\drivers\aswSP.sys
08:31:43.0840 3616  aswSP - ok
08:31:43.0882 3616  [ 29DD8E458A84171202AA4979364C30C0 ] aswTdi          C:\windows\system32\drivers\aswTdi.sys
08:31:43.0884 3616  aswTdi - ok
08:31:43.0946 3616  [ 22F521108881DC59837F6FC614E0568F ] aswVmm          C:\windows\system32\drivers\aswVmm.sys
08:31:43.0951 3616  aswVmm - ok
08:31:44.0042 3616  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\windows\system32\DRIVERS\asyncmac.sys
08:31:44.0044 3616  AsyncMac - ok
08:31:44.0057 3616  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\windows\system32\drivers\atapi.sys
08:31:44.0059 3616  atapi - ok
08:31:44.0097 3616  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\windows\System32\Audiosrv.dll
08:31:44.0104 3616  AudioEndpointBuilder - ok
08:31:44.0117 3616  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\windows\System32\Audiosrv.dll
08:31:44.0124 3616  AudioSrv - ok
08:31:44.0207 3616  [ 28D6701C710AD7BA3CB95E75F8F1A9AA ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
08:31:44.0210 3616  avast! Antivirus - ok
08:31:44.0239 3616  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\windows\System32\AxInstSV.dll
08:31:44.0241 3616  AxInstSV - ok
08:31:44.0314 3616  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\windows\system32\drivers\bxvbda.sys
08:31:44.0322 3616  b06bdrv - ok
08:31:44.0344 3616  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\windows\system32\DRIVERS\b57nd60a.sys
08:31:44.0347 3616  b57nd60a - ok
08:31:44.0374 3616  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\windows\System32\bdesvc.dll
08:31:44.0376 3616  BDESVC - ok
08:31:44.0431 3616  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\windows\system32\drivers\Beep.sys
08:31:44.0433 3616  Beep - ok
08:31:44.0463 3616  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE             C:\windows\System32\bfe.dll
08:31:44.0469 3616  BFE - ok
08:31:44.0558 3616  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\windows\System32\qmgr.dll
08:31:44.0578 3616  BITS - ok
08:31:44.0624 3616  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\windows\system32\DRIVERS\blbdrive.sys
08:31:44.0626 3616  blbdrive - ok
08:31:44.0736 3616  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
08:31:44.0745 3616  Bonjour Service - ok
08:31:44.0798 3616  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\windows\system32\DRIVERS\bowser.sys
08:31:44.0800 3616  bowser - ok
08:31:44.0820 3616  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\windows\system32\drivers\BrFiltLo.sys
08:31:44.0822 3616  BrFiltLo - ok
08:31:44.0842 3616  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\windows\system32\drivers\BrFiltUp.sys
08:31:44.0844 3616  BrFiltUp - ok
08:31:44.0903 3616  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\windows\System32\browser.dll
08:31:44.0907 3616  Browser - ok
08:31:44.0948 3616  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\windows\System32\Drivers\Brserid.sys
08:31:44.0954 3616  Brserid - ok
08:31:44.0996 3616  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\windows\System32\Drivers\BrSerWdm.sys
08:31:44.0997 3616  BrSerWdm - ok
08:31:45.0003 3616  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\windows\System32\Drivers\BrUsbMdm.sys
08:31:45.0005 3616  BrUsbMdm - ok
08:31:45.0031 3616  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\windows\System32\Drivers\BrUsbSer.sys
08:31:45.0034 3616  BrUsbSer - ok
08:31:45.0050 3616  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\windows\system32\drivers\bthmodem.sys
08:31:45.0052 3616  BTHMODEM - ok
08:31:45.0104 3616  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\windows\system32\bthserv.dll
08:31:45.0106 3616  bthserv - ok
08:31:45.0133 3616  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\windows\system32\DRIVERS\cdfs.sys
08:31:45.0134 3616  cdfs - ok
08:31:45.0179 3616  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\windows\system32\DRIVERS\cdrom.sys
08:31:45.0182 3616  cdrom - ok
08:31:45.0196 3616  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\windows\System32\certprop.dll
08:31:45.0200 3616  CertPropSvc - ok
08:31:45.0216 3616  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\windows\system32\drivers\circlass.sys
08:31:45.0218 3616  circlass - ok
08:31:45.0297 3616  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\windows\system32\CLFS.sys
08:31:45.0302 3616  CLFS - ok
08:31:45.0392 3616  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
08:31:45.0396 3616  clr_optimization_v2.0.50727_32 - ok
08:31:45.0423 3616  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
08:31:45.0426 3616  clr_optimization_v2.0.50727_64 - ok
08:31:45.0513 3616  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
08:31:45.0517 3616  clr_optimization_v4.0.30319_32 - ok
08:31:45.0546 3616  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
08:31:45.0550 3616  clr_optimization_v4.0.30319_64 - ok
08:31:45.0612 3616  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\windows\system32\DRIVERS\CmBatt.sys
08:31:45.0613 3616  CmBatt - ok
08:31:45.0669 3616  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\windows\system32\drivers\cmdide.sys
08:31:45.0671 3616  cmdide - ok
08:31:45.0721 3616  [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG             C:\windows\system32\Drivers\cng.sys
08:31:45.0729 3616  CNG - ok
08:31:45.0845 3616  [ 66847C979893A11CFCC2280E772D7EA1 ] CnxtHdAudService C:\windows\system32\drivers\CHDRT64.sys
08:31:45.0870 3616  CnxtHdAudService - ok
08:31:45.0888 3616  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\windows\system32\drivers\compbatt.sys
08:31:45.0889 3616  Compbatt - ok
08:31:45.0935 3616  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\windows\system32\DRIVERS\CompositeBus.sys
08:31:45.0938 3616  CompositeBus - ok
08:31:45.0945 3616  COMSysApp - ok
08:31:45.0992 3616  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\windows\system32\drivers\crcdisk.sys
08:31:45.0994 3616  crcdisk - ok
08:31:46.0046 3616  [ 6B400F211BEE880A37A1ED0368776BF4 ] CryptSvc        C:\windows\system32\cryptsvc.dll
08:31:46.0050 3616  CryptSvc - ok
08:31:46.0179 3616  [ 72794D112CBAFF3BC0C29BF7350D4741 ] cvhsvc          C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
08:31:46.0196 3616  cvhsvc - ok
08:31:46.0240 3616  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\windows\system32\rpcss.dll
08:31:46.0247 3616  DcomLaunch - ok
08:31:46.0275 3616  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\windows\System32\defragsvc.dll
08:31:46.0280 3616  defragsvc - ok
08:31:46.0347 3616  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\windows\system32\Drivers\dfsc.sys
08:31:46.0351 3616  DfsC - ok
08:31:46.0373 3616  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\windows\system32\dhcpcore.dll
08:31:46.0381 3616  Dhcp - ok
08:31:46.0430 3616  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\windows\system32\drivers\discache.sys
08:31:46.0432 3616  discache - ok
08:31:46.0442 3616  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\windows\system32\drivers\disk.sys
08:31:46.0445 3616  Disk - ok
08:31:46.0469 3616  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\windows\System32\dnsrslvr.dll
08:31:46.0473 3616  Dnscache - ok
08:31:46.0511 3616  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\windows\System32\dot3svc.dll
08:31:46.0516 3616  dot3svc - ok
08:31:46.0534 3616  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\windows\system32\dps.dll
08:31:46.0538 3616  DPS - ok
08:31:46.0589 3616  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\windows\system32\drivers\drmkaud.sys
08:31:46.0592 3616  drmkaud - ok
08:31:46.0681 3616  [ AF2E16242AA723F68F461B6EAE2EAD3D ] DXGKrnl         C:\windows\System32\drivers\dxgkrnl.sys
08:31:46.0701 3616  DXGKrnl - ok
08:31:46.0722 3616  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\windows\System32\eapsvc.dll
08:31:46.0725 3616  EapHost - ok
08:31:46.0829 3616  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\windows\system32\drivers\evbda.sys
08:31:46.0849 3616  ebdrv - ok
08:31:46.0875 3616  [ C118A82CD78818C29AB228366EBF81C3 ] EFS             C:\windows\System32\lsass.exe
08:31:46.0877 3616  EFS - ok
08:31:46.0931 3616  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\windows\ehome\ehRecvr.exe
08:31:46.0946 3616  ehRecvr - ok
08:31:47.0009 3616  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\windows\ehome\ehsched.exe
08:31:47.0013 3616  ehSched - ok
08:31:47.0050 3616  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\windows\system32\drivers\elxstor.sys
08:31:47.0059 3616  elxstor - ok
08:31:47.0076 3616  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\windows\system32\drivers\errdev.sys
08:31:47.0077 3616  ErrDev - ok
08:31:47.0147 3616  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\windows\system32\es.dll
08:31:47.0156 3616  EventSystem - ok
08:31:47.0181 3616  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\windows\system32\drivers\exfat.sys
08:31:47.0187 3616  exfat - ok
08:31:47.0219 3616  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\windows\system32\drivers\fastfat.sys
08:31:47.0224 3616  fastfat - ok
08:31:47.0252 3616  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\windows\system32\fxssvc.exe
08:31:47.0264 3616  Fax - ok
08:31:47.0282 3616  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\windows\system32\drivers\fdc.sys
08:31:47.0283 3616  fdc - ok
08:31:47.0302 3616  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\windows\system32\fdPHost.dll
08:31:47.0304 3616  fdPHost - ok
08:31:47.0358 3616  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\windows\system32\fdrespub.dll
08:31:47.0363 3616  FDResPub - ok
08:31:47.0426 3616  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\windows\system32\drivers\fileinfo.sys
08:31:47.0429 3616  FileInfo - ok
08:31:47.0440 3616  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\windows\system32\drivers\filetrace.sys
08:31:47.0443 3616  Filetrace - ok
08:31:47.0458 3616  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\windows\system32\drivers\flpydisk.sys
08:31:47.0461 3616  flpydisk - ok
08:31:47.0474 3616  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\windows\system32\drivers\fltmgr.sys
08:31:47.0478 3616  FltMgr - ok
08:31:47.0546 3616  [ 6CD6BB45BD3E0EEF6CE496BF52854FF1 ] FlyUsb          C:\windows\system32\DRIVERS\FlyUsb.sys
08:31:47.0549 3616  FlyUsb - ok
08:31:47.0635 3616  [ C4C183E6551084039EC862DA1C945E3D ] FontCache       C:\windows\system32\FntCache.dll
08:31:47.0653 3616  FontCache - ok
08:31:47.0731 3616  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
08:31:47.0735 3616  FontCache3.0.0.0 - ok
08:31:47.0748 3616  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\windows\system32\drivers\FsDepends.sys
08:31:47.0751 3616  FsDepends - ok
08:31:47.0820 3616  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\windows\system32\drivers\Fs_Rec.sys
08:31:47.0823 3616  Fs_Rec - ok
08:31:47.0868 3616  [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol          C:\windows\system32\DRIVERS\fvevol.sys
08:31:47.0874 3616  fvevol - ok
08:31:47.0906 3616  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\windows\system32\drivers\gagp30kx.sys
08:31:47.0909 3616  gagp30kx - ok
08:31:47.0988 3616  [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM     C:\windows\system32\DRIVERS\GEARAspiWDM.sys
08:31:47.0991 3616  GEARAspiWDM - ok
08:31:48.0072 3616  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\windows\System32\gpsvc.dll
08:31:48.0091 3616  gpsvc - ok
08:31:48.0187 3616  [ F02A533F517EB38333CB12A9E8963773 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
08:31:48.0192 3616  gupdate - ok
08:31:48.0200 3616  [ F02A533F517EB38333CB12A9E8963773 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
08:31:48.0203 3616  gupdatem - ok
08:31:48.0250 3616  [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc           C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
08:31:48.0256 3616  gusvc - ok
08:31:48.0279 3616  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\windows\system32\drivers\hcw85cir.sys
08:31:48.0282 3616  hcw85cir - ok
08:31:48.0346 3616  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys
08:31:48.0355 3616  HdAudAddService - ok
08:31:48.0374 3616  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\windows\system32\DRIVERS\HDAudBus.sys
08:31:48.0377 3616  HDAudBus - ok
08:31:48.0382 3616  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\windows\system32\drivers\HidBatt.sys
08:31:48.0384 3616  HidBatt - ok
08:31:48.0401 3616  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\windows\system32\drivers\hidbth.sys
08:31:48.0404 3616  HidBth - ok
08:31:48.0413 3616  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\windows\system32\drivers\hidir.sys
08:31:48.0416 3616  HidIr - ok
08:31:48.0438 3616  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\windows\system32\hidserv.dll
08:31:48.0441 3616  hidserv - ok
08:31:48.0469 3616  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\windows\system32\DRIVERS\hidusb.sys
08:31:48.0471 3616  HidUsb - ok
08:31:48.0486 3616  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\windows\system32\kmsvc.dll
08:31:48.0490 3616  hkmsvc - ok
08:31:48.0506 3616  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\windows\system32\ListSvc.dll
08:31:48.0512 3616  HomeGroupListener - ok
08:31:48.0539 3616  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\windows\system32\provsvc.dll
08:31:48.0546 3616  HomeGroupProvider - ok
08:31:48.0565 3616  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\windows\system32\drivers\HpSAMD.sys
08:31:48.0568 3616  HpSAMD - ok
08:31:48.0627 3616  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\windows\system32\drivers\HTTP.sys
08:31:48.0643 3616  HTTP - ok
08:31:48.0665 3616  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\windows\system32\drivers\hwpolicy.sys
08:31:48.0668 3616  hwpolicy - ok
08:31:48.0690 3616  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\windows\system32\DRIVERS\i8042prt.sys
08:31:48.0693 3616  i8042prt - ok
08:31:48.0786 3616  [ D469B77687E12FE43E344806740B624D ] iaStor          C:\windows\system32\DRIVERS\iaStor.sys
08:31:48.0794 3616  iaStor - ok
08:31:48.0890 3616  [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV         C:\windows\system32\drivers\iaStorV.sys
08:31:48.0900 3616  iaStorV - ok
08:31:49.0004 3616  [ DAF66902F08796F9C694901660E5A64A ] IDriverT        C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
08:31:49.0009 3616  IDriverT - ok
08:31:49.0064 3616  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
08:31:49.0081 3616  idsvc - ok
08:31:49.0336 3616  [ 370C2A8629B30F910F740387795DDC6F ] igfx            C:\windows\system32\DRIVERS\igdkmd64.sys
08:31:49.0547 3616  igfx - ok
08:31:49.0565 3616  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\windows\system32\drivers\iirsp.sys
08:31:49.0567 3616  iirsp - ok
08:31:49.0605 3616  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\windows\System32\ikeext.dll
08:31:49.0616 3616  IKEEXT - ok
08:31:49.0645 3616  [ FC727061C0F47C8059E88E05D5C8E381 ] IntcDAud        C:\windows\system32\DRIVERS\IntcDAud.sys
08:31:49.0649 3616  IntcDAud - ok
08:31:49.0670 3616  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\windows\system32\drivers\intelide.sys
08:31:49.0671 3616  intelide - ok
08:31:49.0687 3616  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\windows\system32\DRIVERS\intelppm.sys
08:31:49.0688 3616  intelppm - ok
08:31:49.0720 3616  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\windows\system32\ipbusenum.dll
08:31:49.0724 3616  IPBusEnum - ok
08:31:49.0742 3616  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\windows\system32\DRIVERS\ipfltdrv.sys
08:31:49.0744 3616  IpFilterDriver - ok
08:31:49.0786 3616  [ 08C2957BB30058E663720C5606885653 ] iphlpsvc        C:\windows\System32\iphlpsvc.dll
08:31:49.0795 3616  iphlpsvc - ok
08:31:49.0810 3616  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\windows\system32\drivers\IPMIDrv.sys
08:31:49.0813 3616  IPMIDRV - ok
08:31:49.0823 3616  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\windows\system32\drivers\ipnat.sys
08:31:49.0825 3616  IPNAT - ok
08:31:49.0946 3616  [ 0FF335D687C85097725A53458160E81E ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
08:31:49.0961 3616  iPod Service - ok
08:31:50.0025 3616  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\windows\system32\drivers\irenum.sys
08:31:50.0028 3616  IRENUM - ok
08:31:50.0043 3616  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\windows\system32\drivers\isapnp.sys
08:31:50.0046 3616  isapnp - ok
08:31:50.0070 3616  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\windows\system32\drivers\msiscsi.sys
08:31:50.0077 3616  iScsiPrt - ok
08:31:50.0092 3616  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\windows\system32\DRIVERS\kbdclass.sys
08:31:50.0095 3616  kbdclass - ok
08:31:50.0112 3616  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\windows\system32\DRIVERS\kbdhid.sys
08:31:50.0113 3616  kbdhid - ok
08:31:50.0117 3616  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\windows\system32\lsass.exe
08:31:50.0120 3616  KeyIso - ok
08:31:50.0175 3616  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\windows\system32\Drivers\ksecdd.sys
08:31:50.0178 3616  KSecDD - ok
08:31:50.0216 3616  [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg         C:\windows\system32\Drivers\ksecpkg.sys
08:31:50.0222 3616  KSecPkg - ok
08:31:50.0276 3616  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\windows\system32\drivers\ksthunk.sys
08:31:50.0279 3616  ksthunk - ok
08:31:50.0306 3616  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\windows\system32\msdtckrm.dll
08:31:50.0320 3616  KtmRm - ok
08:31:50.0380 3616  [ EBED8B3FF4A823C1A6EEBEED7B29353F ] L1C             C:\windows\system32\DRIVERS\L1C62x64.sys
08:31:50.0384 3616  L1C - ok
08:31:50.0450 3616  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\windows\system32\srvsvc.dll
08:31:50.0463 3616  LanmanServer - ok
08:31:50.0490 3616  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\windows\System32\wkssvc.dll
08:31:50.0498 3616  LanmanWorkstation - ok
08:31:50.0719 3616  [ 3CDB12C59F9D1FB256A14565F0762DAF ] LeapFrog Connect Device Service C:\Program Files (x86)\LeapFrog\LeapFrog Connect\CommandService.exe
08:31:50.0768 3616  LeapFrog Connect Device Service - ok
08:31:50.0795 3616  [ 797289607A5EBF31353AA5EAD141F872 ] Leapfrog-USBLAN C:\windows\system32\DRIVERS\btblan.sys
08:31:50.0797 3616  Leapfrog-USBLAN - ok
08:31:50.0856 3616  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\windows\system32\DRIVERS\lltdio.sys
08:31:50.0860 3616  lltdio - ok
08:31:50.0903 3616  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\windows\System32\lltdsvc.dll
08:31:50.0915 3616  lltdsvc - ok
08:31:50.0965 3616  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\windows\System32\lmhsvc.dll
08:31:50.0971 3616  lmhosts - ok
08:31:51.0061 3616  [ 2ED1786B7542CDA261029F6B526EDF44 ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
08:31:51.0069 3616  LMS - ok
08:31:51.0095 3616  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\windows\system32\drivers\lsi_fc.sys
08:31:51.0098 3616  LSI_FC - ok
08:31:51.0130 3616  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\windows\system32\drivers\lsi_sas.sys
08:31:51.0133 3616  LSI_SAS - ok
08:31:51.0149 3616  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\windows\system32\drivers\lsi_sas2.sys
08:31:51.0152 3616  LSI_SAS2 - ok
08:31:51.0161 3616  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\windows\system32\drivers\lsi_scsi.sys
08:31:51.0164 3616  LSI_SCSI - ok
08:31:51.0211 3616  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\windows\system32\drivers\luafv.sys
08:31:51.0216 3616  luafv - ok
08:31:51.0290 3616  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\windows\system32\Mcx2Svc.dll
08:31:51.0298 3616  Mcx2Svc - ok
08:31:51.0352 3616  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\windows\system32\drivers\megasas.sys
08:31:51.0356 3616  megasas - ok
08:31:51.0373 3616  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\windows\system32\drivers\MegaSR.sys
08:31:51.0379 3616  MegaSR - ok
08:31:51.0414 3616  [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64          C:\windows\system32\DRIVERS\HECIx64.sys
08:31:51.0417 3616  MEIx64 - ok
08:31:51.0431 3616  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\windows\system32\mmcss.dll
08:31:51.0436 3616  MMCSS - ok
08:31:51.0460 3616  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\windows\system32\drivers\modem.sys
08:31:51.0462 3616  Modem - ok
08:31:51.0508 3616  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\windows\system32\DRIVERS\monitor.sys
08:31:51.0510 3616  monitor - ok
08:31:51.0535 3616  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\windows\system32\DRIVERS\mouclass.sys
08:31:51.0539 3616  mouclass - ok
08:31:51.0556 3616  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\windows\system32\DRIVERS\mouhid.sys
08:31:51.0559 3616  mouhid - ok
08:31:51.0579 3616  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\windows\system32\drivers\mountmgr.sys
08:31:51.0582 3616  mountmgr - ok
08:31:51.0604 3616  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\windows\system32\drivers\mpio.sys
08:31:51.0607 3616  mpio - ok
08:31:51.0626 3616  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\windows\system32\drivers\mpsdrv.sys
08:31:51.0629 3616  mpsdrv - ok
08:31:51.0668 3616  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc          C:\windows\system32\mpssvc.dll
08:31:51.0682 3616  MpsSvc - ok
08:31:51.0698 3616  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\windows\system32\drivers\mrxdav.sys
08:31:51.0700 3616  MRxDAV - ok
08:31:51.0783 3616  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\windows\system32\DRIVERS\mrxsmb.sys
08:31:51.0788 3616  mrxsmb - ok
08:31:51.0807 3616  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\windows\system32\DRIVERS\mrxsmb10.sys
08:31:51.0812 3616  mrxsmb10 - ok
08:31:51.0826 3616  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\windows\system32\DRIVERS\mrxsmb20.sys
08:31:51.0829 3616  mrxsmb20 - ok
08:31:51.0854 3616  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\windows\system32\DRIVERS\msahci.sys
08:31:51.0856 3616  msahci - ok
08:31:51.0868 3616  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\windows\system32\drivers\msdsm.sys
08:31:51.0871 3616  msdsm - ok
08:31:51.0891 3616  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\windows\System32\msdtc.exe
08:31:51.0896 3616  MSDTC - ok
08:31:51.0918 3616  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\windows\system32\drivers\Msfs.sys
08:31:51.0920 3616  Msfs - ok
08:31:51.0971 3616  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\windows\System32\drivers\mshidkmdf.sys
08:31:51.0974 3616  mshidkmdf - ok
08:31:51.0991 3616  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\windows\system32\drivers\msisadrv.sys
08:31:51.0994 3616  msisadrv - ok
08:31:52.0019 3616  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\windows\system32\iscsiexe.dll
08:31:52.0027 3616  MSiSCSI - ok
08:31:52.0035 3616  msiserver - ok
08:31:52.0065 3616  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\windows\system32\drivers\MSKSSRV.sys
08:31:52.0067 3616  MSKSSRV - ok
08:31:52.0080 3616  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\windows\system32\drivers\MSPCLOCK.sys
08:31:52.0082 3616  MSPCLOCK - ok
08:31:52.0090 3616  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\windows\system32\drivers\MSPQM.sys
08:31:52.0092 3616  MSPQM - ok
08:31:52.0116 3616  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\windows\system32\drivers\MsRPC.sys
08:31:52.0123 3616  MsRPC - ok
08:31:52.0137 3616  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\windows\system32\DRIVERS\mssmbios.sys
08:31:52.0138 3616  mssmbios - ok
08:31:52.0191 3616  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\windows\system32\drivers\MSTEE.sys
08:31:52.0194 3616  MSTEE - ok
08:31:52.0211 3616  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\windows\system32\drivers\MTConfig.sys
08:31:52.0214 3616  MTConfig - ok
08:31:52.0269 3616  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\windows\system32\Drivers\mup.sys
08:31:52.0272 3616  Mup - ok
08:31:52.0297 3616  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\windows\system32\qagentRT.dll
08:31:52.0307 3616  napagent - ok
08:31:52.0330 3616  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\windows\system32\DRIVERS\nwifi.sys
08:31:52.0335 3616  NativeWifiP - ok
08:31:52.0392 3616  [ 760E38053BF56E501D562B70AD796B88 ] NDIS            C:\windows\system32\drivers\ndis.sys
08:31:52.0413 3616  NDIS - ok
08:31:52.0442 3616  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\windows\system32\DRIVERS\ndiscap.sys
08:31:52.0445 3616  NdisCap - ok
08:31:52.0485 3616  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\windows\system32\DRIVERS\ndistapi.sys
08:31:52.0487 3616  NdisTapi - ok
08:31:52.0501 3616  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\windows\system32\DRIVERS\ndisuio.sys
08:31:52.0504 3616  Ndisuio - ok
08:31:52.0516 3616  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\windows\system32\DRIVERS\ndiswan.sys
08:31:52.0521 3616  NdisWan - ok
08:31:52.0570 3616  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\windows\system32\drivers\NDProxy.sys
08:31:52.0574 3616  NDProxy - ok
08:31:52.0586 3616  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\windows\system32\DRIVERS\netbios.sys
08:31:52.0590 3616  NetBIOS - ok
08:31:52.0627 3616  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\windows\system32\DRIVERS\netbt.sys
08:31:52.0633 3616  NetBT - ok
08:31:52.0642 3616  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\windows\system32\lsass.exe
08:31:52.0646 3616  Netlogon - ok
08:31:52.0669 3616  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\windows\System32\netman.dll
08:31:52.0675 3616  Netman - ok
08:31:52.0743 3616  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
08:31:52.0749 3616  NetMsmqActivator - ok
08:31:52.0764 3616  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
08:31:52.0767 3616  NetPipeActivator - ok
08:31:52.0809 3616  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\windows\System32\netprofm.dll
08:31:52.0823 3616  netprofm - ok
08:31:52.0830 3616  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
08:31:52.0832 3616  NetTcpActivator - ok
08:31:52.0836 3616  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
08:31:52.0838 3616  NetTcpPortSharing - ok
08:31:52.0909 3616  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\windows\system32\drivers\nfrd960.sys
08:31:52.0913 3616  nfrd960 - ok
08:31:52.0997 3616  [ 8AD77806D336673F270DB31645267293 ] NlaSvc          C:\windows\System32\nlasvc.dll
08:31:53.0010 3616  NlaSvc - ok
08:31:53.0083 3616  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\windows\system32\drivers\Npfs.sys
08:31:53.0087 3616  Npfs - ok
08:31:53.0111 3616  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\windows\system32\nsisvc.dll
08:31:53.0118 3616  nsi - ok
08:31:53.0151 3616  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\windows\system32\drivers\nsiproxy.sys
08:31:53.0154 3616  nsiproxy - ok
08:31:53.0241 3616  [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs            C:\windows\system32\drivers\Ntfs.sys
08:31:53.0263 3616  Ntfs - ok
08:31:53.0278 3616  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\windows\system32\drivers\Null.sys
08:31:53.0280 3616  Null - ok
08:31:53.0340 3616  [ 0A92CB65770442ED0DC44834632F66AD ] nvraid          C:\windows\system32\drivers\nvraid.sys
08:31:53.0346 3616  nvraid - ok
08:31:53.0370 3616  [ DAB0E87525C10052BF65F06152F37E4A ] nvstor          C:\windows\system32\drivers\nvstor.sys
08:31:53.0376 3616  nvstor - ok
08:31:53.0395 3616  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\windows\system32\drivers\nv_agp.sys
08:31:53.0400 3616  nv_agp - ok
08:31:53.0416 3616  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\windows\system32\drivers\ohci1394.sys
08:31:53.0419 3616  ohci1394 - ok
08:31:53.0478 3616  [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
08:31:53.0483 3616  ose - ok
08:31:53.0690 3616  [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
08:31:53.0833 3616  osppsvc - ok
08:31:53.0874 3616  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\windows\system32\pnrpsvc.dll
08:31:53.0880 3616  p2pimsvc - ok
08:31:53.0898 3616  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\windows\system32\p2psvc.dll
08:31:53.0905 3616  p2psvc - ok
08:31:53.0931 3616  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\windows\system32\drivers\parport.sys
08:31:53.0936 3616  Parport - ok
08:31:53.0959 3616  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\windows\system32\drivers\partmgr.sys
08:31:53.0961 3616  partmgr - ok
08:31:54.0017 3616  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\windows\System32\pcasvc.dll
08:31:54.0028 3616  PcaSvc - ok
08:31:54.0087 3616  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\windows\system32\drivers\pci.sys
08:31:54.0093 3616  pci - ok
08:31:54.0113 3616  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\windows\system32\DRIVERS\pciide.sys
08:31:54.0116 3616  pciide - ok
08:31:54.0137 3616  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\windows\system32\drivers\pcmcia.sys
08:31:54.0144 3616  pcmcia - ok
08:31:54.0162 3616  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\windows\system32\drivers\pcw.sys
08:31:54.0164 3616  pcw - ok
08:31:54.0196 3616  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\windows\system32\drivers\peauth.sys
08:31:54.0207 3616  PEAUTH - ok
08:31:54.0266 3616  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\windows\SysWow64\perfhost.exe
08:31:54.0270 3616  PerfHost - ok
08:31:54.0308 3616  [ 91111CEBBDE8015E822C46120ED9537C ] PGEffect        C:\windows\system32\DRIVERS\pgeffect.sys
08:31:54.0310 3616  PGEffect - ok
08:31:54.0363 3616  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\windows\system32\pla.dll
08:31:54.0389 3616  pla - ok
08:31:54.0419 3616  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\windows\system32\umpnpmgr.dll
08:31:54.0426 3616  PlugPlay - ok
08:31:54.0444 3616  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\windows\system32\pnrpauto.dll
08:31:54.0448 3616  PNRPAutoReg - ok
08:31:54.0463 3616  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\windows\system32\pnrpsvc.dll
08:31:54.0467 3616  PNRPsvc - ok
08:31:54.0506 3616  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\windows\System32\ipsecsvc.dll
08:31:54.0513 3616  PolicyAgent - ok
08:31:54.0549 3616  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\windows\system32\umpo.dll
08:31:54.0554 3616  Power - ok
08:31:54.0609 3616  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\windows\system32\DRIVERS\raspptp.sys
08:31:54.0614 3616  PptpMiniport - ok
08:31:54.0637 3616  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\windows\system32\drivers\processr.sys
08:31:54.0641 3616  Processor - ok
08:31:54.0693 3616  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc         C:\windows\system32\profsvc.dll
08:31:54.0704 3616  ProfSvc - ok
08:31:54.0720 3616  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\windows\system32\lsass.exe
08:31:54.0724 3616  ProtectedStorage - ok
08:31:54.0747 3616  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\windows\system32\DRIVERS\pacer.sys
08:31:54.0751 3616  Psched - ok
08:31:54.0810 3616  [ C8FCB4899F8B70CC34E0D9876A80963C ] QIOMem          C:\windows\system32\DRIVERS\QIOMem.sys
08:31:54.0813 3616  QIOMem - ok
08:31:54.0876 3616  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\windows\system32\drivers\ql2300.sys
08:31:54.0904 3616  ql2300 - ok
08:31:54.0921 3616  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\windows\system32\drivers\ql40xx.sys
08:31:54.0927 3616  ql40xx - ok
08:31:54.0956 3616  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\windows\system32\qwave.dll
08:31:54.0964 3616  QWAVE - ok
08:31:55.0009 3616  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\windows\system32\drivers\qwavedrv.sys
08:31:55.0011 3616  QWAVEdrv - ok
08:31:55.0033 3616  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\windows\system32\DRIVERS\rasacd.sys
08:31:55.0034 3616  RasAcd - ok
08:31:55.0059 3616  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\windows\system32\DRIVERS\AgileVpn.sys
08:31:55.0061 3616  RasAgileVpn - ok
08:31:55.0078 3616  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\windows\System32\rasauto.dll
08:31:55.0084 3616  RasAuto - ok
08:31:55.0102 3616  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\windows\system32\DRIVERS\rasl2tp.sys
08:31:55.0105 3616  Rasl2tp - ok
08:31:55.0139 3616  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\windows\System32\rasmans.dll
08:31:55.0154 3616  RasMan - ok
08:31:55.0172 3616  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\windows\system32\DRIVERS\raspppoe.sys
08:31:55.0175 3616  RasPppoe - ok
08:31:55.0190 3616  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\windows\system32\DRIVERS\rassstp.sys
08:31:55.0192 3616  RasSstp - ok
08:31:55.0236 3616  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\windows\system32\DRIVERS\rdbss.sys
08:31:55.0244 3616  rdbss - ok
08:31:55.0257 3616  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\windows\system32\drivers\rdpbus.sys
08:31:55.0261 3616  rdpbus - ok
08:31:55.0308 3616  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\windows\system32\DRIVERS\RDPCDD.sys
08:31:55.0309 3616  RDPCDD - ok
08:31:55.0339 3616  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\windows\system32\drivers\rdpencdd.sys
08:31:55.0341 3616  RDPENCDD - ok
08:31:55.0370 3616  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\windows\system32\drivers\rdprefmp.sys
08:31:55.0371 3616  RDPREFMP - ok
08:31:55.0471 3616  [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\windows\system32\drivers\rdpvideominiport.sys
08:31:55.0477 3616  RdpVideoMiniport - ok
08:31:55.0532 3616  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\windows\system32\drivers\RDPWD.sys
08:31:55.0535 3616  RDPWD - ok
08:31:55.0564 3616  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\windows\system32\drivers\rdyboost.sys
08:31:55.0567 3616  rdyboost - ok
08:31:55.0621 3616  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\windows\System32\mprdim.dll
08:31:55.0630 3616  RemoteAccess - ok
08:31:55.0670 3616  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\windows\system32\regsvc.dll
08:31:55.0680 3616  RemoteRegistry - ok
08:31:55.0691 3616  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\windows\System32\RpcEpMap.dll
08:31:55.0700 3616  RpcEptMapper - ok
08:31:55.0728 3616  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\windows\system32\locator.exe
08:31:55.0730 3616  RpcLocator - ok
08:31:55.0784 3616  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\windows\system32\rpcss.dll
08:31:55.0792 3616  RpcSs - ok
08:31:55.0845 3616  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\windows\system32\DRIVERS\rspndr.sys
08:31:55.0849 3616  rspndr - ok
08:31:55.0876 3616  [ 135A64530D7699AD48F29D73A658DD11 ] RSUSBSTOR       C:\windows\system32\Drivers\RtsUStor.sys
08:31:55.0882 3616  RSUSBSTOR - ok
08:31:55.0952 3616  [ E54A5586A28D0630A79A68BBAB84BFCF ] RSUSBVSTOR      C:\windows\system32\Drivers\RTSUVSTOR.sys
08:31:55.0960 3616  RSUSBVSTOR - ok
08:31:56.0030 3616  [ 64FDF4FE366CA42DA2B7D9D424B6E39B ] RTL8192Ce       C:\windows\system32\DRIVERS\rtl8192Ce.sys
08:31:56.0047 3616  RTL8192Ce - ok
08:31:56.0064 3616  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs           C:\windows\system32\lsass.exe
08:31:56.0067 3616  SamSs - ok
08:31:56.0146 3616  [ 3289766038DB2CB14D07DC84392138D5 ] SASDIFSV        C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
08:31:56.0148 3616  SASDIFSV - ok
08:31:56.0205 3616  [ 58A38E75F3316A83C23DF6173D41F2B5 ] SASKUTIL        C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
08:31:56.0207 3616  SASKUTIL - ok
08:31:56.0272 3616  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\windows\system32\drivers\sbp2port.sys
08:31:56.0276 3616  sbp2port - ok
08:31:56.0313 3616  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\windows\System32\SCardSvr.dll
08:31:56.0325 3616  SCardSvr - ok
08:31:56.0343 3616  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\windows\system32\DRIVERS\scfilter.sys
08:31:56.0345 3616  scfilter - ok
08:31:56.0381 3616  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\windows\system32\schedsvc.dll
08:31:56.0399 3616  Schedule - ok
08:31:56.0417 3616  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\windows\System32\certprop.dll
08:31:56.0418 3616  SCPolicySvc - ok
08:31:56.0447 3616  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\windows\System32\SDRSVC.dll
08:31:56.0451 3616  SDRSVC - ok
08:31:56.0472 3616  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\windows\system32\drivers\secdrv.sys
08:31:56.0474 3616  secdrv - ok
08:31:56.0490 3616  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\windows\system32\seclogon.dll
08:31:56.0494 3616  seclogon - ok
08:31:56.0508 3616  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\windows\System32\sens.dll
08:31:56.0512 3616  SENS - ok
08:31:56.0520 3616  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\windows\system32\sensrsvc.dll
08:31:56.0524 3616  SensrSvc - ok
08:31:56.0535 3616  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\windows\system32\drivers\serenum.sys
08:31:56.0537 3616  Serenum - ok
08:31:56.0554 3616  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\windows\system32\drivers\serial.sys
08:31:56.0557 3616  Serial - ok
08:31:56.0565 3616  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\windows\system32\drivers\sermouse.sys
08:31:56.0567 3616  sermouse - ok
08:31:56.0599 3616  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\windows\system32\sessenv.dll
08:31:56.0603 3616  SessionEnv - ok
08:31:56.0616 3616  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\windows\system32\drivers\sffdisk.sys
08:31:56.0617 3616  sffdisk - ok
08:31:56.0628 3616  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\windows\system32\drivers\sffp_mmc.sys
08:31:56.0630 3616  sffp_mmc - ok
08:31:56.0633 3616  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\windows\system32\drivers\sffp_sd.sys
08:31:56.0635 3616  sffp_sd - ok
08:31:56.0640 3616  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\windows\system32\drivers\sfloppy.sys
08:31:56.0641 3616  sfloppy - ok
08:31:56.0671 3616  [ C6CC9297BD53E5229653303E556AA539 ] Sftfs           C:\windows\system32\DRIVERS\Sftfslh.sys
08:31:56.0681 3616  Sftfs - ok
08:31:56.0731 3616  [ 13693B6354DD6E72DC5131DA7D764B90 ] sftlist         C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
08:31:56.0736 3616  sftlist - ok
08:31:56.0759 3616  [ 390AA7BC52CEE43F6790CDEA1E776703 ] Sftplay         C:\windows\system32\DRIVERS\Sftplaylh.sys
08:31:56.0764 3616  Sftplay - ok
08:31:56.0822 3616  [ 617E29A0B0A2807466560D4C4E338D3E ] Sftredir        C:\windows\system32\DRIVERS\Sftredirlh.sys
08:31:56.0826 3616  Sftredir - ok
08:31:56.0848 3616  [ 8F571F016FA1976F445147E9E6C8AE9B ] Sftvol          C:\windows\system32\DRIVERS\Sftvollh.sys
08:31:56.0852 3616  Sftvol - ok
08:31:56.0886 3616  [ C3CDDD18F43D44AB713CF8C4916F7696 ] sftvsa          C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
08:31:56.0890 3616  sftvsa - ok
08:31:56.0930 3616  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\windows\System32\ipnathlp.dll
08:31:56.0936 3616  SharedAccess - ok
08:31:57.0027 3616  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\windows\System32\shsvcs.dll
08:31:57.0040 3616  ShellHWDetection - ok
08:31:57.0055 3616  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\windows\system32\drivers\SiSRaid2.sys
08:31:57.0058 3616  SiSRaid2 - ok
08:31:57.0086 3616  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\windows\system32\drivers\sisraid4.sys
08:31:57.0088 3616  SiSRaid4 - ok
08:31:57.0192 3616  [ 4E8A4BB5B11D828FF986F6228B1CD3DF ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
08:31:57.0196 3616  SkypeUpdate - ok
08:31:57.0226 3616  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\windows\system32\DRIVERS\smb.sys
08:31:57.0228 3616  Smb - ok
08:31:57.0282 3616  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\windows\System32\snmptrap.exe
08:31:57.0288 3616  SNMPTRAP - ok
08:31:57.0311 3616  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\windows\system32\drivers\spldr.sys
08:31:57.0312 3616  spldr - ok
08:31:57.0356 3616  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler         C:\windows\System32\spoolsv.exe
08:31:57.0369 3616  Spooler - ok
08:31:57.0483 3616  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\windows\system32\sppsvc.exe
08:31:57.0527 3616  sppsvc - ok
08:31:57.0569 3616  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\windows\system32\sppuinotify.dll
08:31:57.0576 3616  sppuinotify - ok
08:31:57.0640 3616  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\windows\system32\DRIVERS\srv.sys
08:31:57.0649 3616  srv - ok
08:31:57.0719 3616  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\windows\system32\DRIVERS\srv2.sys
08:31:57.0727 3616  srv2 - ok
08:31:57.0793 3616  [ 0C4540311E11664B245A263E1154CEF8 ] SrvHsfHDA       C:\windows\system32\DRIVERS\VSTAZL6.SYS
08:31:57.0799 3616  SrvHsfHDA - ok
08:31:57.0845 3616  [ 02071D207A9858FBE3A48CBFD59C4A04 ] SrvHsfV92       C:\windows\system32\DRIVERS\VSTDPV6.SYS
08:31:57.0861 3616  SrvHsfV92 - ok
08:31:57.0921 3616  [ 18E40C245DBFAF36FD0134A7EF2DF396 ] SrvHsfWinac     C:\windows\system32\DRIVERS\VSTCNXT6.SYS
08:31:57.0933 3616  SrvHsfWinac - ok
08:31:57.0996 3616  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\windows\system32\DRIVERS\srvnet.sys
08:31:58.0000 3616  srvnet - ok
08:31:58.0038 3616  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\windows\System32\ssdpsrv.dll
08:31:58.0044 3616  SSDPSRV - ok
08:31:58.0098 3616  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\windows\system32\sstpsvc.dll
08:31:58.0107 3616  SstpSvc - ok
08:31:58.0133 3616  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\windows\system32\drivers\stexstor.sys
08:31:58.0136 3616  stexstor - ok
08:31:58.0195 3616  [ DECACB6921DED1A38642642685D77DAC ] StillCam        C:\windows\system32\DRIVERS\serscan.sys
08:31:58.0197 3616  StillCam - ok
08:31:58.0243 3616  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\windows\System32\wiaservc.dll
08:31:58.0260 3616  stisvc - ok
08:31:58.0282 3616  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\windows\system32\DRIVERS\swenum.sys
08:31:58.0283 3616  swenum - ok
08:31:58.0315 3616  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\windows\System32\swprv.dll
08:31:58.0323 3616  swprv - ok
08:31:58.0374 3616  [ F5B46DF59FEAA48A442AED7EEB754D4B ] SynTP           C:\windows\system32\DRIVERS\SynTP.sys
08:31:58.0388 3616  SynTP - ok
08:31:58.0468 3616  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\windows\system32\sysmain.dll
08:31:58.0487 3616  SysMain - ok
08:31:58.0500 3616  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\windows\System32\TabSvc.dll
08:31:58.0504 3616  TabletInputService - ok
08:31:58.0533 3616  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\windows\System32\tapisrv.dll
08:31:58.0538 3616  TapiSrv - ok
08:31:58.0580 3616  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\windows\System32\tbssvc.dll
08:31:58.0585 3616  TBS - ok
08:31:58.0702 3616  [ DB74544B75566C974815E79A62433F29 ] Tcpip           C:\windows\system32\drivers\tcpip.sys
08:31:58.0721 3616  Tcpip - ok
08:31:58.0747 3616  [ DB74544B75566C974815E79A62433F29 ] TCPIP6          C:\windows\system32\DRIVERS\tcpip.sys
08:31:58.0760 3616  TCPIP6 - ok
08:31:58.0836 3616  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg        C:\windows\system32\drivers\tcpipreg.sys
08:31:58.0838 3616  tcpipreg - ok
08:31:58.0901 3616  [ FD542B661BD22FA69CA789AD0AC58C29 ] tdcmdpst        C:\windows\system32\DRIVERS\tdcmdpst.sys
08:31:58.0902 3616  tdcmdpst - ok
08:31:58.0926 3616  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\windows\system32\drivers\tdpipe.sys
08:31:58.0927 3616  TDPIPE - ok
08:31:58.0986 3616  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\windows\system32\drivers\tdtcp.sys
08:31:58.0988 3616  TDTCP - ok
08:31:59.0009 3616  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\windows\system32\DRIVERS\tdx.sys
08:31:59.0012 3616  tdx - ok
08:31:59.0027 3616  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\windows\system32\DRIVERS\termdd.sys
08:31:59.0030 3616  TermDD - ok
08:31:59.0061 3616  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\windows\System32\termsrv.dll
08:31:59.0070 3616  TermService - ok
08:31:59.0087 3616  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\windows\system32\themeservice.dll
08:31:59.0091 3616  Themes - ok
08:31:59.0119 3616  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\windows\system32\mmcss.dll
08:31:59.0122 3616  THREADORDER - ok
08:31:59.0213 3616  [ F120967184A27E927052E8DDBB727851 ] TMachInfo       C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
08:31:59.0216 3616  TMachInfo - ok
08:31:59.0288 3616  [ 8E2C799D3476EAC32C3BA0DF7CE6AF19 ] TODDSrv         C:\Windows\system32\TODDSrv.exe
08:31:59.0299 3616  TODDSrv - ok
08:31:59.0393 3616  [ CDC97FA5C42B07FB0D4600E17C32F582 ] TosCoSrv        C:\Program Files\Toshiba\Power Saver\TosCoSrv.exe
08:31:59.0402 3616  TosCoSrv - ok
08:31:59.0449 3616  [ D0F868A67CB4D817A3F7ABEF8C42F49C ] TOSHIBA eco Utility Service C:\Program Files\TOSHIBA\TECO\TecoService.exe
08:31:59.0454 3616  TOSHIBA eco Utility Service - ok
08:31:59.0531 3616  [ EDB4B432DB13EA3D1EB2356310D33263 ] TOSHIBA HDD SSD Alert Service C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
08:31:59.0535 3616  TOSHIBA HDD SSD Alert Service - ok
08:31:59.0569 3616  [ 09FF7B0B1B5C3D225495CB6F5A9B39F8 ] tos_sps64       C:\windows\system32\DRIVERS\tos_sps64.sys
08:31:59.0578 3616  tos_sps64 - ok
08:31:59.0619 3616  [ D65C6B0C070534336B72005391B6168A ] TPCHSrv         C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
08:31:59.0627 3616  TPCHSrv - ok
08:31:59.0661 3616  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\windows\System32\trkwks.dll
08:31:59.0665 3616  TrkWks - ok
08:31:59.0765 3616  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe
08:31:59.0769 3616  TrustedInstaller - ok
08:31:59.0814 3616  [ 4CE278FC9671BA81A138D70823FCAA09 ] tssecsrv        C:\windows\system32\DRIVERS\tssecsrv.sys
08:31:59.0815 3616  tssecsrv - ok
08:31:59.0853 3616  [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt        C:\windows\system32\drivers\tsusbflt.sys
08:31:59.0856 3616  TsUsbFlt - ok
08:31:59.0899 3616  [ AD64450A4ABE076F5CB34CC08EEACB07 ] TsUsbGD         C:\windows\system32\drivers\TsUsbGD.sys
08:31:59.0901 3616  TsUsbGD - ok
08:31:59.0967 3616  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\windows\system32\DRIVERS\tunnel.sys
08:31:59.0971 3616  tunnel - ok
08:32:00.0033 3616  [ 550B567F9364D8F7684C3FB3EA665A72 ] TVALZ           C:\windows\system32\DRIVERS\TVALZ_O.SYS
08:32:00.0035 3616  TVALZ - ok
08:32:00.0065 3616  [ 9C7191F4B2E49BFF47A6C1144B5923FA ] TVALZFL         C:\windows\system32\DRIVERS\TVALZFL.sys
08:32:00.0068 3616  TVALZFL - ok
08:32:00.0091 3616  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\windows\system32\drivers\uagp35.sys
08:32:00.0094 3616  uagp35 - ok
08:32:00.0122 3616  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\windows\system32\DRIVERS\udfs.sys
08:32:00.0130 3616  udfs - ok
08:32:00.0162 3616  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\windows\system32\UI0Detect.exe
08:32:00.0166 3616  UI0Detect - ok
08:32:00.0176 3616  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\windows\system32\drivers\uliagpkx.sys
08:32:00.0177 3616  uliagpkx - ok
08:32:00.0200 3616  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\windows\system32\DRIVERS\umbus.sys
08:32:00.0201 3616  umbus - ok
08:32:00.0249 3616  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\windows\system32\drivers\umpass.sys
08:32:00.0251 3616  UmPass - ok
08:32:00.0394 3616  [ 7E5E1603D0FF2D240AE70295C5C3FEFC ] UNS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
08:32:00.0413 3616  UNS - ok
08:32:00.0438 3616  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\windows\System32\upnphost.dll
08:32:00.0443 3616  upnphost - ok
08:32:00.0511 3616  [ C9E9D59C0099A9FF51697E9306A44240 ] USBAAPL64       C:\windows\system32\Drivers\usbaapl64.sys
08:32:00.0514 3616  USBAAPL64 - ok
08:32:00.0553 3616  [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp         C:\windows\system32\DRIVERS\usbccgp.sys
08:32:00.0556 3616  usbccgp - ok
08:32:00.0589 3616  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\windows\system32\drivers\usbcir.sys
08:32:00.0593 3616  usbcir - ok
08:32:00.0644 3616  [ C025055FE7B87701EB042095DF1A2D7B ] usbehci         C:\windows\system32\drivers\usbehci.sys
08:32:00.0647 3616  usbehci - ok
08:32:00.0664 3616  [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub          C:\windows\system32\DRIVERS\usbhub.sys
08:32:00.0669 3616  usbhub - ok
08:32:00.0687 3616  [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci         C:\windows\system32\drivers\usbohci.sys
08:32:00.0689 3616  usbohci - ok
08:32:00.0705 3616  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\windows\system32\DRIVERS\usbprint.sys
08:32:00.0706 3616  usbprint - ok
08:32:00.0728 3616  [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan         C:\windows\system32\DRIVERS\usbscan.sys
08:32:00.0729 3616  usbscan - ok
08:32:00.0776 3616  [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR         C:\windows\system32\DRIVERS\USBSTOR.SYS
08:32:00.0778 3616  USBSTOR - ok
08:32:00.0800 3616  [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci         C:\windows\system32\drivers\usbuhci.sys
08:32:00.0803 3616  usbuhci - ok
08:32:00.0870 3616  [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo        C:\windows\system32\Drivers\usbvideo.sys
08:32:00.0874 3616  usbvideo - ok
08:32:00.0897 3616  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\windows\System32\uxsms.dll
08:32:00.0906 3616  UxSms - ok
08:32:00.0931 3616  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\windows\system32\lsass.exe
08:32:00.0935 3616  VaultSvc - ok
08:32:00.0947 3616  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\windows\system32\drivers\vdrvroot.sys
08:32:00.0949 3616  vdrvroot - ok
08:32:00.0975 3616  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\windows\System32\vds.exe
08:32:00.0985 3616  vds - ok
08:32:01.0011 3616  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\windows\system32\DRIVERS\vgapnp.sys
08:32:01.0012 3616  vga - ok
08:32:01.0025 3616  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\windows\System32\drivers\vga.sys
08:32:01.0026 3616  VgaSave - ok
08:32:01.0045 3616  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\windows\system32\drivers\vhdmp.sys
08:32:01.0047 3616  vhdmp - ok
08:32:01.0063 3616  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\windows\system32\drivers\viaide.sys
08:32:01.0064 3616  viaide - ok
08:32:01.0074 3616  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\windows\system32\drivers\volmgr.sys
08:32:01.0076 3616  volmgr - ok
08:32:01.0091 3616  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\windows\system32\drivers\volmgrx.sys
08:32:01.0095 3616  volmgrx - ok
08:32:01.0116 3616  [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap         C:\windows\system32\drivers\volsnap.sys
08:32:01.0118 3616  volsnap - ok
08:32:01.0129 3616  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\windows\system32\drivers\vsmraid.sys
08:32:01.0131 3616  vsmraid - ok
08:32:01.0193 3616  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\windows\system32\vssvc.exe
08:32:01.0211 3616  VSS - ok
08:32:01.0224 3616  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\windows\system32\DRIVERS\vwifibus.sys
08:32:01.0225 3616  vwifibus - ok
08:32:01.0237 3616  [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt        C:\windows\system32\DRIVERS\vwififlt.sys
08:32:01.0238 3616  vwififlt - ok
08:32:01.0258 3616  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\windows\system32\w32time.dll
08:32:01.0264 3616  W32Time - ok
08:32:01.0276 3616  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\windows\system32\drivers\wacompen.sys
08:32:01.0277 3616  WacomPen - ok
08:32:01.0296 3616  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\windows\system32\DRIVERS\wanarp.sys
08:32:01.0298 3616  WANARP - ok
08:32:01.0301 3616  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\windows\system32\DRIVERS\wanarp.sys
08:32:01.0302 3616  Wanarpv6 - ok
08:32:01.0401 3616  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\windows\system32\Wat\WatAdminSvc.exe
08:32:01.0415 3616  WatAdminSvc - ok
08:32:01.0474 3616  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\windows\system32\wbengine.exe
08:32:01.0489 3616  wbengine - ok
08:32:01.0501 3616  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\windows\System32\wbiosrvc.dll
08:32:01.0506 3616  WbioSrvc - ok
08:32:01.0528 3616  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\windows\System32\wcncsvc.dll
08:32:01.0534 3616  wcncsvc - ok
08:32:01.0561 3616  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll
08:32:01.0565 3616  WcsPlugInService - ok
08:32:01.0590 3616  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\windows\system32\drivers\wd.sys
08:32:01.0591 3616  Wd - ok
08:32:01.0642 3616  [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000        C:\windows\system32\drivers\Wdf01000.sys
08:32:01.0652 3616  Wdf01000 - ok
08:32:01.0686 3616  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\windows\system32\wdi.dll
08:32:01.0690 3616  WdiServiceHost - ok
08:32:01.0694 3616  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\windows\system32\wdi.dll
08:32:01.0700 3616  WdiSystemHost - ok
08:32:01.0720 3616  [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient       C:\windows\System32\webclnt.dll
08:32:01.0725 3616  WebClient - ok
08:32:01.0738 3616  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\windows\system32\wecsvc.dll
08:32:01.0743 3616  Wecsvc - ok
08:32:01.0775 3616  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\windows\System32\wercplsupport.dll
08:32:01.0779 3616  wercplsupport - ok
08:32:01.0785 3616  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\windows\System32\WerSvc.dll
08:32:01.0790 3616  WerSvc - ok
08:32:01.0817 3616  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\windows\system32\DRIVERS\wfplwf.sys
08:32:01.0818 3616  WfpLwf - ok
08:32:01.0831 3616  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\windows\system32\drivers\wimmount.sys
08:32:01.0832 3616  WIMMount - ok
08:32:01.0859 3616  WinDefend - ok
08:32:01.0890 3616  WinHttpAutoProxySvc - ok
08:32:01.0965 3616  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\windows\system32\wbem\WMIsvc.dll
08:32:01.0971 3616  Winmgmt - ok
08:32:02.0082 3616  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\windows\system32\WsmSvc.dll
08:32:02.0108 3616  WinRM - ok
08:32:02.0144 3616  [ FE88B288356E7B47B74B13372ADD906D ] WinUsb          C:\windows\system32\DRIVERS\WinUsb.sys
08:32:02.0145 3616  WinUsb - ok
08:32:02.0191 3616  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\windows\System32\wlansvc.dll
08:32:02.0202 3616  Wlansvc - ok
08:32:02.0271 3616  [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc        C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
08:32:02.0274 3616  wlcrasvc - ok
08:32:02.0464 3616  [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
08:32:02.0482 3616  wlidsvc - ok
08:32:02.0512 3616  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\windows\system32\DRIVERS\wmiacpi.sys
08:32:02.0513 3616  WmiAcpi - ok
08:32:02.0541 3616  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\windows\system32\wbem\WmiApSrv.exe
08:32:02.0543 3616  wmiApSrv - ok
08:32:02.0560 3616  WMPNetworkSvc - ok
08:32:02.0580 3616  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\windows\System32\wpcsvc.dll
08:32:02.0590 3616  WPCSvc - ok
08:32:02.0609 3616  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\windows\system32\wpdbusenum.dll
08:32:02.0616 3616  WPDBusEnum - ok
08:32:02.0642 3616  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\windows\system32\drivers\ws2ifsl.sys
08:32:02.0644 3616  ws2ifsl - ok
08:32:02.0650 3616  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\windows\System32\wscsvc.dll
08:32:02.0658 3616  wscsvc - ok
08:32:02.0662 3616  WSearch - ok
08:32:02.0750 3616  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\windows\system32\wuaueng.dll
08:32:02.0772 3616  wuauserv - ok
08:32:02.0847 3616  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\windows\system32\drivers\WudfPf.sys
08:32:02.0850 3616  WudfPf - ok
08:32:02.0873 3616  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\windows\system32\DRIVERS\WUDFRd.sys
08:32:02.0878 3616  WUDFRd - ok
08:32:02.0918 3616  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\windows\System32\WUDFSvc.dll
08:32:02.0925 3616  wudfsvc - ok
08:32:02.0967 3616  [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc         C:\windows\System32\wwansvc.dll
08:32:02.0975 3616  WwanSvc - ok
08:32:03.0004 3616  ================ Scan global ===============================
08:32:03.0051 3616  [ BA0CD8C393E8C9F83354106093832C7B ] C:\windows\system32\basesrv.dll
08:32:03.0097 3616  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\windows\system32\winsrv.dll
08:32:03.0117 3616  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\windows\system32\winsrv.dll
08:32:03.0143 3616  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\windows\system32\sxssrv.dll
08:32:03.0181 3616  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\windows\system32\services.exe
08:32:03.0193 3616  [Global] - ok
08:32:03.0194 3616  ================ Scan MBR ==================================
08:32:03.0210 3616  [ 5B5E648D12FCADC244C1EC30318E1EB9 ] \Device\Harddisk0\DR0
08:32:03.0387 3616  \Device\Harddisk0\DR0 - ok
08:32:03.0388 3616  ================ Scan VBR ==================================
08:32:03.0399 3616  [ B0C03BDDA8C5DFB0D598A9C4D2FBFF86 ] \Device\Harddisk0\DR0\Partition1
08:32:03.0401 3616  \Device\Harddisk0\DR0\Partition1 - ok
08:32:03.0402 3616  ============================================================
08:32:03.0402 3616  Scan finished
08:32:03.0402 3616  ============================================================
08:32:03.0416 6012  Detected object count: 0
08:32:03.0416 6012  Actual detected object count: 0


#13 hlane1012

hlane1012
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:01:09 AM

Posted 29 August 2013 - 09:25 AM

Did Everything look fine with that last post?



#14 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,738 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:10:09 PM

Posted 29 August 2013 - 06:30 PM

Looks clean.

 

Restart computer in safe mode with networking, run PE and see if any iexplore.exe are listed.


My Website

My help doesn't cost a penny, but if you'd like to consider a donation, click DONATE

 


#15 hlane1012

hlane1012
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Local time:01:09 AM

Posted 30 August 2013 - 09:48 AM

restarted in safe mode w/ networking and Iexplore.exe does not show up. but when I restart normal within a min or so without ever logging on to the internet (either through IE or Chrome) the iexplorer.exe process shows up. and they keep multipling. As an example I restarted yesterday afternoon used chrome a little last night and this morning never used IE and when I look at the task manager there are 9 instances of Iexplorer.exe showing. Oh and they only show in task manager when i click show processes from all users. 

 

Again Thank you for all the help so far.






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users