Jump to content


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.

Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Do I need to re-install the OS?


  • Please log in to reply
25 replies to this topic

#1 Dutchman99

Dutchman99

  • Members
  • 30 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Three Points, Az
  • Local time:10:48 AM

Posted 28 September 2012 - 07:30 PM

My wife downloaded the Windows Vista 64 Recovery Disk from this site and printed out all the instructions for my Acer, Aspire desk top. But after reading about Boot loaders and sequential Boot programs I'm (a lot) confused. My PC Boots to the desktop with no problem. About Three weeks ago my PC started acting very strange. I hope to include an attachment showing what it WILL NOT do (1). I found a link on a Forum for "Malwarebytes Anti - Malware" after running 4 Anti-Virus and Anti_Spyware programs which only picked up a bunch of cookies. I've attached the results after running the Malwarebytes program. I'm not a Geek, but to me it looks like 20 infections (2).


Needless to say, I need help. One repair shop told me the OS needs to be re-installed but that Vista 64 is obsolete. Another wants $175.95 to "take a look at it". No guarantees! I've been limping along like this for about three weeks and it's starting to get old. Any help, suggestions, or explanations would be greatly appreciated. Thank you... Attached File  1_Won't_Do.jpg   74.34KB   5 downloads Attached File  2_20 Problems.doc   60.5KB   4 downloads



Edited by Orange Blossom, 28 September 2012 - 09:04 PM.
Moved to AII. ~ OB

A Wasted Woman is Never a Waste of Time


BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:12:48 PM

Posted 28 September 2012 - 08:53 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here.If you get crashes in normal mode,run it in safemode with networking

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 Dutchman99

Dutchman99
  • Topic Starter

  • Members
  • 30 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Three Points, Az
  • Local time:10:48 AM

Posted 29 September 2012 - 06:42 PM

Hello Naren:

I am assuming the post requesting the 3 downloads for virus definitions are for me even though I didn't get an e mail notice that someone answered my post. This is all new to me but your instructions are pretty straight forward, however I will have to wait till tomorrow morning since it is getting late here and this will probably take me some time being inexperienced in this type of procedure. I really appreciate the response . I hope it's OK if I have any problems getting these logs together I can tell you the problem?

Many thanks...

A Wasted Woman is Never a Waste of Time


#4 Dutchman99

Dutchman99
  • Topic Starter

  • Members
  • 30 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Three Points, Az
  • Local time:10:48 AM

Posted 30 September 2012 - 09:38 PM

Here are the results of the 3 programs. I don't know if the results of ESET is what you are looking for but TDSSkiller and aswMBR didn't find anything but
ESET found about 39 infected files in 3 hours of running. I Exported the ESET to my desktop but could not copy the text to this post. Please tell me if you need any other information and how to get it. Thank you Naren.


13:35:26.0104 3548 TDSS rootkit removing tool 2.8.10.0 Sep 17 2012 19:23:24
13:35:26.0697 3548 ============================================================
13:35:26.0697 3548 Current date / time: 2012/09/30 13:35:26.0697
13:35:26.0697 3548 SystemInfo:
13:35:26.0697 3548
13:35:26.0697 3548 OS Version: 6.0.6002 ServicePack: 2.0
13:35:26.0697 3548 Product type: Workstation
13:35:26.0697 3548 ComputerName: DUTCHMAN-PC
13:35:26.0697 3548 UserName: Dutchman
13:35:26.0697 3548 Windows directory: C:\Windows
13:35:26.0697 3548 System windows directory: C:\Windows
13:35:26.0697 3548 Running under WOW64
13:35:26.0697 3548 Processor architecture: Intel x64
13:35:26.0697 3548 Number of processors: 2
13:35:26.0697 3548 Page size: 0x1000
13:35:26.0697 3548 Boot type: Normal boot
13:35:26.0697 3548 ============================================================
13:35:26.0978 3548 Drive \Device\Harddisk0\DR0 - Size: 0x950B056000 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
13:35:26.0994 3548 Drive \Device\Harddisk1\DR1 - Size: 0x950A60000 (37.26 Gb), SectorSize: 0x200, Cylinders: 0x1300, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
13:35:27.0633 3548 Drive \Device\Harddisk2\DR2 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
13:35:30.0925 3548 ============================================================
13:35:30.0925 3548 \Device\Harddisk0\DR0:
13:35:30.0925 3548 MBR partitions:
13:35:30.0925 3548 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1E00800, BlocksNum 0x24329800
13:35:30.0925 3548 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x2612A02A, BlocksNum 0x2472CE97
13:35:30.0925 3548 \Device\Harddisk1\DR1:
13:35:30.0925 3548 MBR partitions:
13:35:30.0925 3548 \Device\Harddisk1\DR1\Partition1: MBR, Type 0xC, StartLBA 0x3F, BlocksNum 0x4A81400
13:35:30.0925 3548 \Device\Harddisk2\DR2:
13:35:30.0925 3548 MBR partitions:
13:35:30.0925 3548 \Device\Harddisk2\DR2\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x2542D6C1
13:35:30.0925 3548 ============================================================
13:35:30.0940 3548 C: <-> \Device\Harddisk0\DR0\Partition1
13:35:30.0972 3548 D: <-> \Device\Harddisk0\DR0\Partition2
13:35:30.0972 3548 E: <-> \Device\Harddisk1\DR1\Partition1
13:35:31.0081 3548 I: <-> \Device\Harddisk2\DR2\Partition1
13:35:31.0081 3548 ============================================================
13:35:31.0081 3548 Initialize success
13:35:31.0081 3548 ============================================================
13:36:44.0245 3288 ============================================================
13:36:44.0245 3288 Scan started
13:36:44.0245 3288 Mode: Manual; TDLFS;
13:36:44.0245 3288 ============================================================
13:36:44.0791 3288 ================ Scan system memory ========================
13:36:44.0791 3288 System memory - ok
13:36:44.0806 3288 ================ Scan services =============================
13:36:44.0853 3288 [ 581D88B25C4D4121824FED2CA38E562F ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
13:36:44.0853 3288 !SASCORE - ok
13:36:44.0962 3288 [ 1965AAFFAB07E3FB03C77F81BEBA3547 ] ACPI C:\Windows\system32\drivers\acpi.sys
13:36:44.0962 3288 ACPI - ok
13:36:45.0025 3288 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
13:36:45.0025 3288 AdobeARMservice - ok
13:36:45.0134 3288 [ E12CFCF1DDBFC50948A75E6E38793225 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
13:36:45.0134 3288 AdobeFlashPlayerUpdateSvc - ok
13:36:45.0165 3288 [ F14215E37CF124104575073F782111D2 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
13:36:45.0181 3288 adp94xx - ok
13:36:45.0196 3288 [ 7D05A75E3066861A6610F7EE04FF085C ] adpahci C:\Windows\system32\drivers\adpahci.sys
13:36:45.0212 3288 adpahci - ok
13:36:45.0228 3288 [ 820A201FE08A0C345B3BEDBC30E1A77C ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
13:36:45.0228 3288 adpu160m - ok
13:36:45.0243 3288 [ 9B4AB6854559DC168FBB4C24FC52E794 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
13:36:45.0259 3288 adpu320 - ok
13:36:45.0290 3288 [ 0F421175574BFE0BF2F4D8E910A253BB ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
13:36:45.0290 3288 AeLookupSvc - ok
13:36:45.0321 3288 [ C4F6CE6087760AD70960C9EB130E7943 ] AFD C:\Windows\system32\drivers\afd.sys
13:36:45.0321 3288 AFD - ok
13:36:45.0352 3288 [ 8B0D8B5BAFD4C9D57B41426BC68B32F9 ] AgereModemAudio C:\Windows\system32\agr64svc.exe
13:36:45.0352 3288 AgereModemAudio - ok
13:36:45.0384 3288 [ DDF52C4C92D831A4CDB7788B37585E36 ] AgereSoftModem C:\Windows\system32\DRIVERS\agrsm64.sys
13:36:45.0415 3288 AgereSoftModem - ok
13:36:45.0430 3288 [ F6F6793B7F17B550ECFDBD3B229173F7 ] agp440 C:\Windows\system32\drivers\agp440.sys
13:36:45.0430 3288 agp440 - ok
13:36:45.0446 3288 [ 222CB641B4B8A1D1126F8033F9FD6A00 ] aic78xx C:\Windows\system32\drivers\djsvs.sys
13:36:45.0446 3288 aic78xx - ok
13:36:45.0462 3288 [ 5922F4F59B7868F3D74BBBBEB7B825A3 ] ALG C:\Windows\System32\alg.exe
13:36:45.0462 3288 ALG - ok
13:36:45.0477 3288 [ 157D0898D4B73F075CE9FA26B482DF98 ] aliide C:\Windows\system32\drivers\aliide.sys
13:36:45.0477 3288 aliide - ok
13:36:45.0493 3288 [ 970FA5059E61E30D25307B99903E991E ] amdide C:\Windows\system32\drivers\amdide.sys
13:36:45.0493 3288 amdide - ok
13:36:45.0508 3288 [ CDC3632A3A5EA4DBB83E46076A3165A1 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
13:36:45.0508 3288 AmdK8 - ok
13:36:45.0524 3288 [ 9C37B3FD5615477CB9A0CD116CF43F5C ] Appinfo C:\Windows\System32\appinfo.dll
13:36:45.0524 3288 Appinfo - ok
13:36:45.0540 3288 [ BA8417D4765F3988FF921F30F630E303 ] arc C:\Windows\system32\drivers\arc.sys
13:36:45.0555 3288 arc - ok
13:36:45.0571 3288 [ 9D41C435619733B34CC16A511E644B11 ] arcsas C:\Windows\system32\drivers\arcsas.sys
13:36:45.0571 3288 arcsas - ok
13:36:45.0586 3288 [ 22D13FF3DAFEC2A80634752B1EAA2DE6 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
13:36:45.0586 3288 AsyncMac - ok
13:36:45.0618 3288 [ E68D9B3A3905619732F7FE039466A623 ] atapi C:\Windows\system32\drivers\atapi.sys
13:36:45.0618 3288 atapi - ok
13:36:45.0649 3288 [ 79318C744693EC983D20E9337A2F8196 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
13:36:45.0664 3288 AudioEndpointBuilder - ok
13:36:45.0680 3288 [ 79318C744693EC983D20E9337A2F8196 ] AudioSrv C:\Windows\System32\Audiosrv.dll
13:36:45.0680 3288 AudioSrv - ok
13:36:45.0711 3288 AVGIDSAgent - ok
13:36:45.0727 3288 AVGIDSDriver - ok
13:36:45.0742 3288 AVGIDSFilter - ok
13:36:45.0742 3288 AVGIDSHA - ok
13:36:45.0758 3288 Avgrkx64 - ok
13:36:45.0758 3288 Avgtdia - ok
13:36:45.0789 3288 [ EA1145DEBCD508FD25BD1E95C4346929 ] avgwd C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe
13:36:45.0789 3288 avgwd - ok
13:36:45.0836 3288 [ 6D316F4859634071CC25C4FD4589AD2C ] BITS C:\Windows\System32\qmgr.dll
13:36:45.0852 3288 BITS - ok
13:36:45.0867 3288 [ 79FEEB40056683F8F61398D81DDA65D2 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
13:36:45.0883 3288 blbdrive - ok
13:36:45.0898 3288 [ 2348447A80920B2493A9B582A23E81E1 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
13:36:45.0898 3288 bowser - ok
13:36:45.0930 3288 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
13:36:45.0930 3288 BrFiltLo - ok
13:36:45.0945 3288 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
13:36:45.0945 3288 BrFiltUp - ok
13:36:45.0976 3288 [ A1B39DE453433B115B4EA69EE0343816 ] Browser C:\Windows\System32\browser.dll
13:36:45.0976 3288 Browser - ok
13:36:45.0992 3288 [ F0F0BA4D815BE446AA6A4583CA3BCA9B ] Brserid C:\Windows\system32\drivers\brserid.sys
13:36:45.0992 3288 Brserid - ok
13:36:46.0008 3288 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
13:36:46.0008 3288 BrSerWdm - ok
13:36:46.0023 3288 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
13:36:46.0023 3288 BrUsbMdm - ok
13:36:46.0039 3288 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
13:36:46.0039 3288 BrUsbSer - ok
13:36:46.0054 3288 [ E0777B34E05F8A82A21856EFC900C29F ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
13:36:46.0054 3288 BTHMODEM - ok
13:36:46.0086 3288 [ 09E6AFFAE6C0E9158BF05C7D08D0107A ] BUNAgentSvc C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe
13:36:46.0086 3288 BUNAgentSvc - ok
13:36:46.0101 3288 [ B4D787DB8D30793A4D4DF9FEED18F136 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
13:36:46.0101 3288 cdfs - ok
13:36:46.0132 3288 [ C025AA69BE3D0D25C7A2E746EF6F94FC ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
13:36:46.0132 3288 cdrom - ok
13:36:46.0148 3288 [ 5A268127633C7EE2A7FB87F39D748D56 ] CertPropSvc C:\Windows\System32\certprop.dll
13:36:46.0148 3288 CertPropSvc - ok
13:36:46.0164 3288 [ 02EA568D498BBDD4BA55BF3FCE34D456 ] circlass C:\Windows\system32\drivers\circlass.sys
13:36:46.0164 3288 circlass - ok
13:36:46.0179 3288 [ 3DCA9A18B204939CFB24BEA53E31EB48 ] CLFS C:\Windows\system32\CLFS.sys
13:36:46.0195 3288 CLFS - ok
13:36:46.0226 3288 [ 8EE772032E2FE80A924F3B8DD5082194 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
13:36:46.0226 3288 clr_optimization_v2.0.50727_32 - ok
13:36:46.0273 3288 [ CE07A466201096F021CD09D631B21540 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
13:36:46.0288 3288 clr_optimization_v2.0.50727_64 - ok
13:36:46.0320 3288 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
13:36:46.0320 3288 clr_optimization_v4.0.30319_32 - ok
13:36:46.0351 3288 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
13:36:46.0351 3288 clr_optimization_v4.0.30319_64 - ok
13:36:46.0366 3288 [ E5D5499A1C50A54B5161296B6AFE6192 ] cmdide C:\Windows\system32\drivers\cmdide.sys
13:36:46.0366 3288 cmdide - ok
13:36:46.0398 3288 [ 7FB8AD01DB0EABE60C8A861531A8F431 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
13:36:46.0398 3288 Compbatt - ok
13:36:46.0398 3288 COMSysApp - ok
13:36:46.0413 3288 [ A8585B6412253803CE8EFCBD6D6DC15C ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
13:36:46.0413 3288 crcdisk - ok
13:36:46.0460 3288 [ 62740B9D2A137E8CED41A9E4239A7A31 ] CryptSvc C:\Windows\system32\cryptsvc.dll
13:36:46.0460 3288 CryptSvc - ok
13:36:46.0507 3288 [ CF8B9A3A5E7DC57724A89D0C3E8CF9EF ] DcomLaunch C:\Windows\system32\rpcss.dll
13:36:46.0522 3288 DcomLaunch - ok
13:36:46.0569 3288 [ 8B722BA35205C71E7951CDC4CDBADE19 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
13:36:46.0569 3288 DfsC - ok
13:36:46.0632 3288 [ C647F468F7DE343DF8C143655C5557D4 ] DFSR C:\Windows\system32\DFSR.exe
13:36:46.0694 3288 DFSR - ok
13:36:46.0725 3288 [ 3ED0321127CE70ACDAABBF77E157C2A7 ] Dhcp C:\Windows\System32\dhcpcsvc.dll
13:36:46.0725 3288 Dhcp - ok
13:36:46.0756 3288 [ B0107E40ECDB5FA692EBF832F295D905 ] disk C:\Windows\system32\drivers\disk.sys
13:36:46.0756 3288 disk - ok
13:36:46.0788 3288 [ 06230F1B721494A6DF8D47FD395BB1B0 ] Dnscache C:\Windows\System32\dnsrslvr.dll
13:36:46.0788 3288 Dnscache - ok
13:36:46.0819 3288 [ 1A7156DD1E850E9914E5E991E3225B94 ] dot3svc C:\Windows\System32\dot3svc.dll
13:36:46.0819 3288 dot3svc - ok
13:36:46.0834 3288 [ 1583B39790DB3EAEC7EDB0CB0140C708 ] DPS C:\Windows\system32\dps.dll
13:36:46.0834 3288 DPS - ok
13:36:46.0866 3288 [ F1A78A98CFC2EE02144C6BEC945447E6 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
13:36:46.0866 3288 drmkaud - ok
13:36:46.0897 3288 [ B8E554E502D5123BC111F99D6A2181B4 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
13:36:46.0912 3288 DXGKrnl - ok
13:36:46.0975 3288 [ 264CEE7B031A9D6C827F3D0CB031F2FE ] E1G60 C:\Windows\system32\DRIVERS\E1G6032E.sys
13:36:46.0975 3288 E1G60 - ok
13:36:47.0006 3288 [ C2303883FD9BE49DC36A6400643002EA ] EapHost C:\Windows\System32\eapsvc.dll
13:36:47.0006 3288 EapHost - ok
13:36:47.0022 3288 [ 5F94962BE5A62DB6E447FF6470C4F48A ] Ecache C:\Windows\system32\drivers\ecache.sys
13:36:47.0022 3288 Ecache - ok
13:36:47.0053 3288 [ 14CE384D2E27B64C256BDA4DC39C312D ] ehRecvr C:\Windows\ehome\ehRecvr.exe
13:36:47.0068 3288 ehRecvr - ok
13:36:47.0068 3288 [ B93159C1313D66FDFBBE876F5189CD52 ] ehSched C:\Windows\ehome\ehsched.exe
13:36:47.0084 3288 ehSched - ok
13:36:47.0100 3288 [ F5EE2527D74449868E3C3227A59BCD28 ] ehstart C:\Windows\ehome\ehstart.dll
13:36:47.0100 3288 ehstart - ok
13:36:47.0115 3288 ekrn - ok
13:36:47.0146 3288 [ C4636D6E10469404AB5308D9FD45ED07 ] elxstor C:\Windows\system32\drivers\elxstor.sys
13:36:47.0146 3288 elxstor - ok
13:36:47.0178 3288 [ A9B18B63A4FD6BAAB83326706D857FAB ] EMDMgmt C:\Windows\system32\emdmgmt.dll
13:36:47.0193 3288 EMDMgmt - ok
13:36:47.0209 3288 [ BC3A58E938BB277E46BF4B3003B01ABD ] ErrDev C:\Windows\system32\drivers\errdev.sys
13:36:47.0209 3288 ErrDev - ok
13:36:47.0256 3288 [ E12F22B73F153DECE721CD45EC05B4AF ] EventSystem C:\Windows\system32\es.dll
13:36:47.0256 3288 EventSystem - ok
13:36:47.0271 3288 [ 486844F47B6636044A42454614ED4523 ] exfat C:\Windows\system32\drivers\exfat.sys
13:36:47.0271 3288 exfat - ok
13:36:47.0302 3288 [ 1A4BEE34277784619DDAF0422C0C6E23 ] fastfat C:\Windows\system32\drivers\fastfat.sys
13:36:47.0302 3288 fastfat - ok
13:36:47.0318 3288 [ 81B79B6DF71FA1D2C6D688D830616E39 ] fdc C:\Windows\system32\DRIVERS\fdc.sys
13:36:47.0318 3288 fdc - ok
13:36:47.0334 3288 [ BB9267ACACD8B7533DD936C34A0CBA5E ] fdPHost C:\Windows\system32\fdPHost.dll
13:36:47.0334 3288 fdPHost - ok
13:36:47.0349 3288 [ 300C80931EABBE1DB7591C516EFE8D0F ] FDResPub C:\Windows\system32\fdrespub.dll
13:36:47.0365 3288 FDResPub - ok
13:36:47.0365 3288 [ 457B7D1D533E4BD62A99AED9C7BB4C59 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
13:36:47.0380 3288 FileInfo - ok
13:36:47.0396 3288 [ D421327FD6EFCCAF884A54C58E1B0D7F ] Filetrace C:\Windows\system32\drivers\filetrace.sys
13:36:47.0396 3288 Filetrace - ok
13:36:47.0412 3288 [ 230923EA2B80F79B0F88D90F87B87EBD ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
13:36:47.0412 3288 flpydisk - ok
13:36:47.0443 3288 [ E3041BC26D6930D61F42AEDB79C91720 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
13:36:47.0443 3288 FltMgr - ok
13:36:47.0474 3288 [ BE1C5BD1CA7ED015BC6FA1AE67E592C8 ] FontCache C:\Windows\system32\FntCache.dll
13:36:47.0505 3288 FontCache - ok
13:36:47.0536 3288 [ BC5B0BE5AF3510B0FD8C140EE42C6D3E ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
13:36:47.0536 3288 FontCache3.0.0.0 - ok
13:36:47.0568 3288 [ 5779B86CD8B32519FBECB136394D946A ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
13:36:47.0568 3288 Fs_Rec - ok
13:36:47.0583 3288 [ C8E416668D3DC2BE3D4FE4C79224997F ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
13:36:47.0583 3288 gagp30kx - ok
13:36:47.0614 3288 [ A0E1B575BA8F504968CD40C0FAEB2384 ] gpsvc C:\Windows\System32\gpsvc.dll
13:36:47.0630 3288 gpsvc - ok
13:36:47.0692 3288 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
13:36:47.0692 3288 gupdate - ok
13:36:47.0708 3288 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
13:36:47.0708 3288 gupdatem - ok
13:36:47.0739 3288 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
13:36:47.0739 3288 gusvc - ok
13:36:47.0770 3288 [ 68E732382B32417FF61FD663259B4B09 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
13:36:47.0770 3288 HdAudAddService - ok
13:36:47.0817 3288 [ F942C5820205F2FB453243EDFEC82A3D ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
13:36:47.0833 3288 HDAudBus - ok
13:36:47.0848 3288 [ B4881C84A180E75B8C25DC1D726C375F ] HidBth C:\Windows\system32\drivers\hidbth.sys
13:36:47.0848 3288 HidBth - ok
13:36:47.0848 3288 [ 4E77A77E2C986E8F88F996BB3E1AD829 ] HidIr C:\Windows\system32\drivers\hidir.sys
13:36:47.0848 3288 HidIr - ok
13:36:47.0880 3288 [ 59361D38A297755D46A540E450202B2A ] hidserv C:\Windows\system32\hidserv.dll
13:36:47.0880 3288 hidserv - ok
13:36:47.0926 3288 [ 443BDD2D30BB4F00795C797E2CF99EDF ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
13:36:47.0926 3288 HidUsb - ok
13:36:47.0942 3288 [ B12F367EA39C0795FD57E31242CE1A5A ] hkmsvc C:\Windows\system32\kmsvc.dll
13:36:47.0942 3288 hkmsvc - ok
13:36:47.0958 3288 [ D7109A1E6BD2DFDBCBA72A6BC626A13B ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
13:36:47.0958 3288 HpCISSs - ok
13:36:47.0989 3288 [ 098F1E4E5C9CB5B0063A959063631610 ] HTTP C:\Windows\system32\drivers\HTTP.sys
13:36:48.0004 3288 HTTP - ok
13:36:48.0036 3288 [ DA94C854CEA5FAC549D4E1F6E88349E8 ] i2omp C:\Windows\system32\drivers\i2omp.sys
13:36:48.0036 3288 i2omp - ok
13:36:48.0051 3288 [ CBB597659A2713CE0C9CC20C88C7591F ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
13:36:48.0051 3288 i8042prt - ok
13:36:48.0082 3288 [ 3E3BF3627D886736D0B4E90054F929F6 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
13:36:48.0082 3288 iaStorV - ok
13:36:48.0145 3288 [ 749F5F8CEDCA70F2A512945325FC489D ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
13:36:48.0145 3288 idsvc - ok
13:36:48.0160 3288 [ 8C3951AD2FE886EF76C7B5027C3125D3 ] iirsp C:\Windows\system32\drivers\iirsp.sys
13:36:48.0160 3288 iirsp - ok
13:36:48.0176 3288 [ 0C9EA6E654E7B0471741E343A6C671AF ] IKEEXT C:\Windows\System32\ikeext.dll
13:36:48.0192 3288 IKEEXT - ok
13:36:48.0238 3288 [ 023EB98945069178C21B324B880AD787 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
13:36:48.0254 3288 IntcAzAudAddService - ok
13:36:48.0285 3288 [ DF797A12176F11B2D301C5B234BB200E ] intelide C:\Windows\system32\drivers\intelide.sys
13:36:48.0285 3288 intelide - ok
13:36:48.0301 3288 [ BFD84AF32FA1BAD6231C4585CB469630 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
13:36:48.0301 3288 intelppm - ok
13:36:48.0316 3288 [ 5624BC1BC5EEB49C0AB76A8114F05EA3 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
13:36:48.0332 3288 IPBusEnum - ok
13:36:48.0348 3288 [ D8AABC341311E4780D6FCE8C73C0AD81 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
13:36:48.0348 3288 IpFilterDriver - ok
13:36:48.0363 3288 IpInIp - ok
13:36:48.0379 3288 [ 9C2EE2E6E5A7203BFAE15C299475EC67 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
13:36:48.0379 3288 IPMIDRV - ok
13:36:48.0394 3288 [ B7E6212F581EA5F6AB0C3A6CEEEB89BE ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
13:36:48.0394 3288 IPNAT - ok
13:36:48.0410 3288 [ 8C42CA155343A2F11D29FECA67FAA88D ] IRENUM C:\Windows\system32\drivers\irenum.sys
13:36:48.0410 3288 IRENUM - ok
13:36:48.0441 3288 [ 0672BFCEDC6FC468A2B0500D81437F4F ] isapnp C:\Windows\system32\drivers\isapnp.sys
13:36:48.0441 3288 isapnp - ok
13:36:48.0457 3288 [ E4FDF99599F27EC25D2CF6D754243520 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
13:36:48.0457 3288 iScsiPrt - ok
13:36:48.0488 3288 [ 63C766CDC609FF8206CB447A65ABBA4A ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
13:36:48.0488 3288 iteatapi - ok
13:36:48.0504 3288 [ 1281FE73B17664631D12F643CBEA3F59 ] iteraid C:\Windows\system32\drivers\iteraid.sys
13:36:48.0504 3288 iteraid - ok
13:36:48.0535 3288 [ 423696F3BA6472DD17699209B933BC26 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
13:36:48.0535 3288 kbdclass - ok
13:36:48.0535 3288 [ DBDF75D51464FBC47D0104EC3D572C05 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
13:36:48.0535 3288 kbdhid - ok
13:36:48.0566 3288 [ 260BF9C43EE12C6898A9F5AAB0FB0E5D ] KeyIso C:\Windows\system32\lsass.exe
13:36:48.0566 3288 KeyIso - ok
13:36:48.0613 3288 [ 88956AD9FA510848AD176777A6C6C1F5 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
13:36:48.0628 3288 KSecDD - ok
13:36:48.0644 3288 [ 1D419CF43DB29396ECD7113D129D94EB ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
13:36:48.0644 3288 ksthunk - ok
13:36:48.0675 3288 [ 1FAF6926F3416D3DA05C5B265491BDAE ] KtmRm C:\Windows\system32\msdtckrm.dll
13:36:48.0691 3288 KtmRm - ok
13:36:48.0722 3288 [ 50C7A3CB427E9BB5ED0708A669956AB5 ] LanmanServer C:\Windows\system32\srvsvc.dll
13:36:48.0722 3288 LanmanServer - ok
13:36:48.0738 3288 [ CAF86FC1388BE1E470F1A7B43E348ADB ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
13:36:48.0753 3288 LanmanWorkstation - ok
13:36:48.0784 3288 [ 793FF718477345CD5D232C50BED1E452 ] LightScribeService C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
13:36:48.0784 3288 LightScribeService - ok
13:36:48.0800 3288 [ 96ECE2659B6654C10A0C310AE3A6D02C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
13:36:48.0800 3288 lltdio - ok
13:36:48.0831 3288 [ 961CCBD0B1CCB5675D64976FAE37D092 ] lltdsvc C:\Windows\System32\lltdsvc.dll
13:36:48.0847 3288 lltdsvc - ok
13:36:48.0862 3288 [ A47F8080CACC23C91FE823AD19AA5612 ] lmhosts C:\Windows\System32\lmhsvc.dll
13:36:48.0862 3288 lmhosts - ok
13:36:48.0878 3288 [ ACBE1AF32D3123E330A07BFBC5EC4A9B ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
13:36:48.0878 3288 LSI_FC - ok
13:36:48.0894 3288 [ 799FFB2FC4729FA46D2157C0065B3525 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
13:36:48.0909 3288 LSI_SAS - ok
13:36:48.0909 3288 [ F445FF1DAAD8A226366BFAF42551226B ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
13:36:48.0909 3288 LSI_SCSI - ok
13:36:48.0940 3288 [ 52F87B9CC8932C2A7375C3B2A9BE5E3E ] luafv C:\Windows\system32\drivers\luafv.sys
13:36:48.0940 3288 luafv - ok
13:36:48.0972 3288 [ B9FC4CCE5758B816F27DD4D1EED11841 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
13:36:48.0972 3288 MBAMProtector - ok
13:36:49.0018 3288 [ 0DCF16B1449811EFA47AB52CAC84093C ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
13:36:49.0018 3288 MBAMScheduler - ok
13:36:49.0065 3288 [ 9EAABA4D601004BEA4DAA6E146E19A96 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
13:36:49.0065 3288 MBAMService - ok
13:36:49.0081 3288 [ 76A58DF02BD4EA29F189B82D0BEF17F8 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
13:36:49.0081 3288 Mcx2Svc - ok
13:36:49.0112 3288 [ 5C5CD6AACED32FB26C3FB34B3DCF972F ] megasas C:\Windows\system32\drivers\megasas.sys
13:36:49.0112 3288 megasas - ok
13:36:49.0159 3288 [ 859BC2436B076C77C159ED694ACFE8F8 ] MegaSR C:\Windows\system32\drivers\megasr.sys
13:36:49.0159 3288 MegaSR - ok
13:36:49.0190 3288 [ 3CBE4995E80E13CCFBC42E5DCF3AC81A ] MMCSS C:\Windows\system32\mmcss.dll
13:36:49.0190 3288 MMCSS - ok
13:36:49.0206 3288 [ 59848D5CC74606F0EE7557983BB73C2E ] Modem C:\Windows\system32\drivers\modem.sys
13:36:49.0206 3288 Modem - ok
13:36:49.0252 3288 [ C247CC2A57E0A0C8C6DCCF7807B3E9E5 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
13:36:49.0252 3288 monitor - ok
13:36:49.0284 3288 [ 9367304E5E412B120CF5F4EA14E4E4F1 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
13:36:49.0284 3288 mouclass - ok
13:36:49.0284 3288 [ C2C2BD5C5CE5AAF786DDD74B75D2AC69 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
13:36:49.0284 3288 mouhid - ok
13:36:49.0315 3288 [ 11BC9B1E8801B01F7F6ADB9EAD30019B ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
13:36:49.0315 3288 MountMgr - ok
13:36:49.0330 3288 [ F8276EB8698142884498A528DFEA8478 ] mpio C:\Windows\system32\drivers\mpio.sys
13:36:49.0330 3288 mpio - ok
13:36:49.0346 3288 [ C92B9ABDB65A5991E00C28F13491DBA2 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
13:36:49.0346 3288 mpsdrv - ok
13:36:49.0393 3288 [ 3C200630A89EF2C0864D515B7A75802E ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
13:36:49.0393 3288 Mraid35x - ok
13:36:49.0424 3288 [ 7C1DE4AA96DC0C071611F9E7DE02A68D ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
13:36:49.0424 3288 MRxDAV - ok
13:36:49.0440 3288 [ 1485811B320FF8C7EDAD1CAEBB1C6C2B ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
13:36:49.0440 3288 mrxsmb - ok
13:36:49.0486 3288 [ 3B929A60C833FC615FD97FBA82BC7632 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
13:36:49.0486 3288 mrxsmb10 - ok
13:36:49.0486 3288 [ C64AB3E1F53B4F5B5BB6D796B2D7BEC3 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
13:36:49.0502 3288 mrxsmb20 - ok
13:36:49.0518 3288 [ 1AC860612B85D8E85EE257D372E39F4D ] msahci C:\Windows\system32\drivers\msahci.sys
13:36:49.0518 3288 msahci - ok
13:36:49.0533 3288 [ 264BBB4AAF312A485F0E44B65A6B7202 ] msdsm C:\Windows\system32\drivers\msdsm.sys
13:36:49.0533 3288 msdsm - ok
13:36:49.0549 3288 [ 7EC02CE772F068ED0BEAFA3DA341A9BC ] MSDTC C:\Windows\System32\msdtc.exe
13:36:49.0549 3288 MSDTC - ok
13:36:49.0580 3288 [ 704F59BFC4512D2BB0146AEC31B10A7C ] Msfs C:\Windows\system32\drivers\Msfs.sys
13:36:49.0580 3288 Msfs - ok
13:36:49.0596 3288 [ 00EBC952961664780D43DCA157E79B27 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
13:36:49.0596 3288 msisadrv - ok
13:36:49.0611 3288 [ 366B0C1F4478B519C181E37D43DCDA32 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
13:36:49.0611 3288 MSiSCSI - ok
13:36:49.0627 3288 msiserver - ok
13:36:49.0642 3288 [ 0EA73E498F53B96D83DBFCA074AD4CF8 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
13:36:49.0642 3288 MSKSSRV - ok
13:36:49.0674 3288 [ 52E59B7E992A58E740AA63F57EDBAE8B ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
13:36:49.0674 3288 MSPCLOCK - ok
13:36:49.0674 3288 [ 49084A75BAE043AE02D5B44D02991BB2 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
13:36:49.0674 3288 MSPQM - ok
13:36:49.0705 3288 [ DC6CCF440CDEDE4293DB41C37A5060A5 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
13:36:49.0720 3288 MsRPC - ok
13:36:49.0720 3288 [ 855796E59DF77EA93AF46F20155BF55B ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
13:36:49.0736 3288 mssmbios - ok
13:36:49.0736 3288 [ 86D632D75D05D5B7C7C043FA3564AE86 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
13:36:49.0736 3288 MSTEE - ok
13:36:49.0752 3288 [ 0CC49F78D8ACA0877D885F149084E543 ] Mup C:\Windows\system32\Drivers\mup.sys
13:36:49.0752 3288 Mup - ok
13:36:49.0783 3288 [ A5B10C845E7538C60C0F5D87A57CB3F5 ] napagent C:\Windows\system32\qagentRT.dll
13:36:49.0783 3288 napagent - ok
13:36:49.0814 3288 [ 2007B826C4ACD94AE32232B41F0842B9 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
13:36:49.0814 3288 NativeWifiP - ok
13:36:49.0845 3288 [ 65950E07329FCEE8E6516B17C8D0ABB6 ] NDIS C:\Windows\system32\drivers\ndis.sys
13:36:49.0845 3288 NDIS - ok
13:36:49.0861 3288 [ 64DF698A425478E321981431AC171334 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
13:36:49.0861 3288 NdisTapi - ok
13:36:49.0876 3288 [ 8BAA43196D7B5BB972C9A6B2BBF61A19 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
13:36:49.0876 3288 Ndisuio - ok
13:36:49.0892 3288 [ F8158771905260982CE724076419EF19 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
13:36:49.0908 3288 NdisWan - ok
13:36:49.0923 3288 [ 9CB77ED7CB72850253E973A2D6AFDF49 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
13:36:49.0923 3288 NDProxy - ok
13:36:49.0923 3288 [ A499294F5029A7862ADC115BDA7371CE ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
13:36:49.0923 3288 NetBIOS - ok
13:36:49.0954 3288 [ FC2C792EBDDC8E28DF939D6A92C83D61 ] netbt C:\Windows\system32\DRIVERS\netbt.sys
13:36:49.0954 3288 netbt - ok
13:36:49.0970 3288 [ 260BF9C43EE12C6898A9F5AAB0FB0E5D ] Netlogon C:\Windows\system32\lsass.exe
13:36:49.0970 3288 Netlogon - ok
13:36:49.0986 3288 [ 9B63B29DEFC0F3115A559D2597BF5D75 ] Netman C:\Windows\System32\netman.dll
13:36:50.0001 3288 Netman - ok
13:36:50.0017 3288 [ 7846D0136CC2B264926A73047BA7688A ] netprofm C:\Windows\System32\netprofm.dll
13:36:50.0032 3288 netprofm - ok
13:36:50.0032 3288 [ 74751DDA198165947FD7454D83F49825 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
13:36:50.0032 3288 NetTcpPortSharing - ok
13:36:50.0064 3288 [ 4AC08BD6AF2DF42E0C3196D826C8AEA7 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
13:36:50.0064 3288 nfrd960 - ok
13:36:50.0079 3288 [ F145BF4C4668E7E312069F81EF847CFC ] NlaSvc C:\Windows\System32\nlasvc.dll
13:36:50.0079 3288 NlaSvc - ok
13:36:50.0110 3288 [ B298874F8E0EA93F06EC40AA8D146478 ] Npfs C:\Windows\system32\drivers\Npfs.sys
13:36:50.0110 3288 Npfs - ok
13:36:50.0126 3288 [ ACB62BAA1C319B17752553DF3026EEEB ] nsi C:\Windows\system32\nsisvc.dll
13:36:50.0142 3288 nsi - ok
13:36:50.0157 3288 [ 1523AF19EE8B030BA682F7A53537EAEB ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
13:36:50.0157 3288 nsiproxy - ok
13:36:50.0204 3288 [ BAC869DFB98E499BA4D9BB1FB43270E1 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
13:36:50.0235 3288 Ntfs - ok
13:36:50.0251 3288 [ A2B6583A5652A385DFF5E4F49AD48761 ] NTIBackupSvc C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
13:36:50.0251 3288 NTIBackupSvc - ok
13:36:50.0266 3288 [ 7D397449AAF52B0E7C79B64F6AD4473E ] NTIDrvr C:\Windows\system32\Drivers\NTIDrvr.sys
13:36:50.0266 3288 NTIDrvr - ok
13:36:50.0282 3288 [ 40B87FE8A1A9A5AC9E5A91D96F212BCD ] NTISchedulerSvc C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
13:36:50.0282 3288 NTISchedulerSvc - ok
13:36:50.0298 3288 [ DD5D684975352B85B52E3FD5347C20CB ] Null C:\Windows\system32\drivers\Null.sys
13:36:50.0298 3288 Null - ok
13:36:50.0344 3288 [ 98350606682594521D56ECCB5D01ECF7 ] NVENETFD C:\Windows\system32\DRIVERS\nvmfdx64.sys
13:36:50.0360 3288 NVENETFD - ok
13:36:50.0391 3288 [ 6E022D5F44CD8B029CF799807BB31269 ] NVHDA C:\Windows\system32\drivers\nvhda64v.sys
13:36:50.0391 3288 NVHDA - ok
13:36:51.0031 3288 [ 0EB204639119370F5F8F2871FBF4E14B ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
13:36:51.0234 3288 nvlddmkm - ok
13:36:51.0249 3288 [ 2C040B7ADA5B06F6FACADAC8514AA034 ] nvraid C:\Windows\system32\drivers\nvraid.sys
13:36:51.0249 3288 nvraid - ok
13:36:51.0265 3288 [ F7EA0FE82842D05EDA3EFDD376DBFDBA ] nvstor C:\Windows\system32\drivers\nvstor.sys
13:36:51.0265 3288 nvstor - ok
13:36:51.0280 3288 [ 581286807B5832503FD700A3217B589F ] nvstor64 C:\Windows\system32\DRIVERS\nvstor64.sys
13:36:51.0280 3288 nvstor64 - ok
13:36:51.0343 3288 [ 32FF8EE6DCEE5C0CB91FF892FB1CA364 ] nvsvc C:\Windows\system32\nvvsvc.exe
13:36:51.0358 3288 nvsvc - ok
13:36:51.0374 3288 [ 19067CA93075EF4823E3938A686F532F ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
13:36:51.0374 3288 nv_agp - ok
13:36:51.0390 3288 NwlnkFlt - ok
13:36:51.0390 3288 NwlnkFwd - ok
13:36:51.0421 3288 [ B5B1CE65AC15BBD11C0619E3EF7CFC28 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
13:36:51.0421 3288 ohci1394 - ok
13:36:51.0452 3288 [ 9AE31D2E1D15C10D91318E0EC149CEAC ] p2pimsvc C:\Windows\system32\p2psvc.dll
13:36:51.0468 3288 p2pimsvc - ok
13:36:51.0499 3288 [ 9AE31D2E1D15C10D91318E0EC149CEAC ] p2psvc C:\Windows\system32\p2psvc.dll
13:36:51.0499 3288 p2psvc - ok
13:36:51.0514 3288 [ AECD57F94C887F58919F307C35498EA0 ] Parport C:\Windows\system32\drivers\parport.sys
13:36:51.0514 3288 Parport - ok
13:36:51.0546 3288 [ B43751085E2ABE389DA466BC62A4B987 ] partmgr C:\Windows\system32\drivers\partmgr.sys
13:36:51.0546 3288 partmgr - ok
13:36:51.0561 3288 [ 9AB157B374192FF276C1628FBDBA2B0E ] PcaSvc C:\Windows\System32\pcasvc.dll
13:36:51.0561 3288 PcaSvc - ok
13:36:51.0577 3288 [ 47AB1E0FC9D0E12BB53BA246E3A0906D ] pci C:\Windows\system32\drivers\pci.sys
13:36:51.0577 3288 pci - ok
13:36:51.0592 3288 [ 2657F6C0B78C36D95034BE109336E382 ] pciide C:\Windows\system32\drivers\pciide.sys
13:36:51.0592 3288 pciide - ok
13:36:51.0608 3288 [ 037661F3D7C507C9993B7010CEEE6288 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
13:36:51.0608 3288 pcmcia - ok
13:36:51.0639 3288 [ 58865916F53592A61549B04941BFD80D ] PEAUTH C:\Windows\system32\drivers\peauth.sys
13:36:51.0655 3288 PEAUTH - ok
13:36:51.0733 3288 [ 0ED8727EA0172860F47258456C06CAEA ] PerfHost C:\Windows\SysWow64\perfhost.exe
13:36:51.0733 3288 PerfHost - ok
13:36:51.0780 3288 [ E9E68C1A0F25CF4A7AC966EEA74EE89E ] pla C:\Windows\system32\pla.dll
13:36:51.0811 3288 pla - ok
13:36:51.0826 3288 [ FE6B0F59215C9FD9F9D26539C58C8B82 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
13:36:51.0842 3288 PlugPlay - ok
13:36:51.0858 3288 [ 9AE31D2E1D15C10D91318E0EC149CEAC ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
13:36:51.0873 3288 PNRPAutoReg - ok
13:36:51.0889 3288 [ 9AE31D2E1D15C10D91318E0EC149CEAC ] PNRPsvc C:\Windows\system32\p2psvc.dll
13:36:51.0904 3288 PNRPsvc - ok
13:36:51.0920 3288 [ 89A5560671C2D8B4A4B51F3E1AA069D8 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
13:36:51.0936 3288 PolicyAgent - ok
13:36:51.0967 3288 [ 23386E9952025F5F21C368971E2E7301 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
13:36:51.0982 3288 PptpMiniport - ok
13:36:51.0998 3288 [ 5080E59ECEE0BC923F14018803AA7A01 ] Processor C:\Windows\system32\drivers\processr.sys
13:36:51.0998 3288 Processor - ok
13:36:52.0014 3288 [ E058CE4FC2449D8BFA14739C83B7FF2A ] ProfSvc C:\Windows\system32\profsvc.dll
13:36:52.0029 3288 ProfSvc - ok
13:36:52.0029 3288 [ 260BF9C43EE12C6898A9F5AAB0FB0E5D ] ProtectedStorage C:\Windows\system32\lsass.exe
13:36:52.0029 3288 ProtectedStorage - ok
13:36:52.0060 3288 [ C5AB7F0809392D0DA027F4A2A81BFA31 ] PSched C:\Windows\system32\DRIVERS\pacer.sys
13:36:52.0060 3288 PSched - ok
13:36:52.0107 3288 [ 0B83F4E681062F3839BE2EC1D98FD94A ] ql2300 C:\Windows\system32\drivers\ql2300.sys
13:36:52.0123 3288 ql2300 - ok
13:36:52.0138 3288 [ E1C80F8D4D1E39EF9595809C1369BF2A ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
13:36:52.0138 3288 ql40xx - ok
13:36:52.0170 3288 [ 90574842C3DA781E279061A3EFF91F07 ] QWAVE C:\Windows\system32\qwave.dll
13:36:52.0170 3288 QWAVE - ok
13:36:52.0170 3288 [ E8D76EDAB77EC9C634C27B8EAC33ADC5 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
13:36:52.0185 3288 QWAVEdrv - ok
13:36:52.0185 3288 [ 1013B3B663A56D3DDD784F581C1BD005 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
13:36:52.0185 3288 RasAcd - ok
13:36:52.0216 3288 [ B2AE18F847D07F0044404DDF7CB04497 ] RasAuto C:\Windows\System32\rasauto.dll
13:36:52.0216 3288 RasAuto - ok
13:36:52.0232 3288 [ AC7BC4D42A7E558718DFDEC599BBFC2C ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
13:36:52.0248 3288 Rasl2tp - ok
13:36:52.0263 3288 [ 3AD83E4046C43BE510DE681588ACB8AF ] RasMan C:\Windows\System32\rasmans.dll
13:36:52.0263 3288 RasMan - ok
13:36:52.0294 3288 [ 4517FBF8B42524AFE4EDE1DE102AAE3E ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
13:36:52.0294 3288 RasPppoe - ok
13:36:52.0310 3288 [ C6A593B51F34C33E5474539544072527 ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
13:36:52.0310 3288 RasSstp - ok
13:36:52.0357 3288 [ 322DB5C6B55E8D8EE8D6F358B2AAABB1 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
13:36:52.0357 3288 rdbss - ok
13:36:52.0372 3288 [ 603900CC05F6BE65CCBF373800AF3716 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
13:36:52.0372 3288 RDPCDD - ok
13:36:52.0404 3288 [ C045D1FB111C28DF0D1BE8D4BDA22C06 ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
13:36:52.0404 3288 rdpdr - ok
13:36:52.0419 3288 [ CAB9421DAF3D97B33D0D055858E2C3AB ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
13:36:52.0419 3288 RDPENCDD - ok
13:36:52.0466 3288 [ AE4BD9E1C33D351D8E607FC81F15160C ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
13:36:52.0466 3288 RDPWD - ok
13:36:52.0497 3288 [ C612B9557DA73F70D41F8A6FBC8E5344 ] RemoteAccess C:\Windows\System32\mprdim.dll
13:36:52.0497 3288 RemoteAccess - ok
13:36:52.0528 3288 [ 44B9D8EC2F3EF3A0EFB00857AF70D861 ] RemoteRegistry C:\Windows\system32\regsvc.dll
13:36:52.0544 3288 RemoteRegistry - ok
13:36:52.0560 3288 [ F46C457840D4B7A4DAAFEE739CE04102 ] RpcLocator C:\Windows\system32\locator.exe
13:36:52.0560 3288 RpcLocator - ok
13:36:52.0591 3288 [ CF8B9A3A5E7DC57724A89D0C3E8CF9EF ] RpcSs C:\Windows\system32\rpcss.dll
13:36:52.0591 3288 RpcSs - ok
13:36:52.0606 3288 [ 22A9CB08B1A6707C1550C6BF099AAE73 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
13:36:52.0606 3288 rspndr - ok
13:36:52.0622 3288 [ 260BF9C43EE12C6898A9F5AAB0FB0E5D ] SamSs C:\Windows\system32\lsass.exe
13:36:52.0622 3288 SamSs - ok
13:36:52.0653 3288 [ 3289766038DB2CB14D07DC84392138D5 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
13:36:52.0653 3288 SASDIFSV - ok
13:36:52.0669 3288 [ 58A38E75F3316A83C23DF6173D41F2B5 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
13:36:52.0669 3288 SASKUTIL - ok
13:36:52.0684 3288 [ CD9C693589C60AD59BBBCFB0E524E01B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
13:36:52.0684 3288 sbp2port - ok
13:36:52.0700 3288 [ FD1CDCF108D5EF3366F00D18B70FB89B ] SCardSvr C:\Windows\System32\SCardSvr.dll
13:36:52.0700 3288 SCardSvr - ok
13:36:52.0731 3288 [ 0F838C811AD295D2A4489B9993096C63 ] Schedule C:\Windows\system32\schedsvc.dll
13:36:52.0747 3288 Schedule - ok
13:36:52.0762 3288 [ 5A268127633C7EE2A7FB87F39D748D56 ] SCPolicySvc C:\Windows\System32\certprop.dll
13:36:52.0762 3288 SCPolicySvc - ok
13:36:52.0794 3288 [ 4FF71B076A7760FE75EA5AE2D0EE0018 ] SDRSVC C:\Windows\System32\SDRSVC.dll
13:36:52.0794 3288 SDRSVC - ok
13:36:52.0794 3288 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
13:36:52.0809 3288 secdrv - ok
13:36:52.0825 3288 [ 5ACDCBC67FCF894A1815B9F96D704490 ] seclogon C:\Windows\system32\seclogon.dll
13:36:52.0825 3288 seclogon - ok
13:36:52.0840 3288 [ 90973A64B96CD647FF81C79443618EED ] SENS C:\Windows\System32\sens.dll
13:36:52.0840 3288 SENS - ok
13:36:52.0840 3288 [ 2449316316411D65BD2C761A6FFB2CE2 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
13:36:52.0840 3288 Serenum - ok
13:36:52.0856 3288 [ 4B438170BE2FC8E0BD35EE87A960F84F ] Serial C:\Windows\system32\DRIVERS\serial.sys
13:36:52.0856 3288 Serial - ok
13:36:52.0872 3288 [ A842F04833684BCEEA7336211BE478DF ] sermouse C:\Windows\system32\drivers\sermouse.sys
13:36:52.0872 3288 sermouse - ok
13:36:52.0903 3288 [ A8E4A4407A09F35DCCC3771AF590B0C4 ] SessionEnv C:\Windows\system32\sessenv.dll
13:36:52.0903 3288 SessionEnv - ok
13:36:52.0918 3288 [ 14D4B4465193A87C127933978E8C4106 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
13:36:52.0918 3288 sffdisk - ok
13:36:52.0934 3288 [ 7073AEE3F82F3D598E3825962AA98AB2 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
13:36:52.0934 3288 sffp_mmc - ok
13:36:52.0950 3288 [ 35E59EBE4A01A0532ED67975161C7B82 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
13:36:52.0950 3288 sffp_sd - ok
13:36:52.0965 3288 [ 6B7838C94135768BD455CBDC23E39E5F ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
13:36:52.0965 3288 sfloppy - ok
13:36:53.0012 3288 [ 4C5AEE179DA7E1EE9A9CCB9DA289AF34 ] SharedAccess C:\Windows\System32\ipnathlp.dll
13:36:53.0012 3288 SharedAccess - ok
13:36:53.0043 3288 [ 56793271ECDEDD350C5ADD305603E963 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
13:36:53.0043 3288 ShellHWDetection - ok
13:36:53.0059 3288 [ 7A5DE502AEB719D4594C6471060A78B3 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
13:36:53.0059 3288 SiSRaid2 - ok
13:36:53.0074 3288 [ 3A2F769FAB9582BC720E11EA1DFB184D ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
13:36:53.0074 3288 SiSRaid4 - ok
13:36:53.0137 3288 [ A9A27A8E257B45A604FDAD4F26FE7241 ] slsvc C:\Windows\system32\SLsvc.exe
13:36:53.0184 3288 slsvc - ok
13:36:53.0199 3288 [ FD74B4B7C2088E390A30C85A896FC3AF ] SLUINotify C:\Windows\system32\SLUINotify.dll
13:36:53.0215 3288 SLUINotify - ok
13:36:53.0230 3288 [ 327383124D31AC398B98F4AE300421E8 ] SmartDefragDriver C:\Windows\system32\Drivers\SmartDefragDriver.sys
13:36:53.0246 3288 SmartDefragDriver - ok
13:36:53.0262 3288 [ 290B6F6A0EC4FCDFC90F5CB6D7020473 ] Smb C:\Windows\system32\DRIVERS\smb.sys
13:36:53.0262 3288 Smb - ok
13:36:53.0293 3288 [ F8F47F38909823B1AF28D60B96340CFF ] SNMPTRAP C:\Windows\System32\snmptrap.exe
13:36:53.0293 3288 SNMPTRAP - ok
13:36:53.0308 3288 [ 386C3C63F00A7040C7EC5E384217E89D ] spldr C:\Windows\system32\drivers\spldr.sys
13:36:53.0308 3288 spldr - ok
13:36:53.0340 3288 [ F66FF751E7EFC816D266977939EF5DC3 ] Spooler C:\Windows\System32\spoolsv.exe
13:36:53.0340 3288 Spooler - ok
13:36:53.0371 3288 [ 880A57FCCB571EBD063D4DD50E93E46D ] srv C:\Windows\system32\DRIVERS\srv.sys
13:36:53.0371 3288 srv - ok
13:36:53.0402 3288 [ A1AD14A6D7A37891FFFECA35EBBB0730 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
13:36:53.0402 3288 srv2 - ok
13:36:53.0418 3288 [ 4BED62F4FA4D8300973F1151F4C4D8A7 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
13:36:53.0418 3288 srvnet - ok
13:36:53.0433 3288 [ 192C74646EC5725AEF3F80D19FF75F6A ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
13:36:53.0433 3288 SSDPSRV - ok
13:36:53.0480 3288 [ 2EE3FA0308E6185BA64A9A7F2E74332B ] SstpSvc C:\Windows\system32\sstpsvc.dll
13:36:53.0480 3288 SstpSvc - ok
13:36:53.0496 3288 Steam Client Service - ok
13:36:53.0542 3288 [ 15825C1FBFB8779992CB65087F316AF5 ] stisvc C:\Windows\System32\wiaservc.dll
13:36:53.0558 3288 stisvc - ok
13:36:53.0574 3288 [ 8A851CA908B8B974F89C50D2E18D4F0C ] swenum C:\Windows\system32\DRIVERS\swenum.sys
13:36:53.0574 3288 swenum - ok
13:36:53.0605 3288 [ 6DE37F4DE19D4EFD9C48C43ADDBC949A ] swprv C:\Windows\System32\swprv.dll
13:36:53.0620 3288 swprv - ok
13:36:53.0636 3288 [ 2F26A2C6FC96B29BEFF5D8ED74E6625B ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
13:36:53.0636 3288 Symc8xx - ok
13:36:53.0652 3288 [ A909667976D3BCCD1DF813FED517D837 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
13:36:53.0652 3288 Sym_hi - ok
13:36:53.0667 3288 [ 36887B56EC2D98B9C362F6AE4DE5B7B0 ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
13:36:53.0667 3288 Sym_u3 - ok
13:36:53.0714 3288 [ 92D7A8B0F87B036F17D25885937897A6 ] SysMain C:\Windows\system32\sysmain.dll
13:36:53.0730 3288 SysMain - ok
13:36:53.0745 3288 [ 005CE42567F9113A3BCCB3B20073B029 ] TabletInputService C:\Windows\System32\TabSvc.dll
13:36:53.0745 3288 TabletInputService - ok
13:36:53.0776 3288 [ CC2562B4D55E0B6A4758C65407F63B79 ] TapiSrv C:\Windows\System32\tapisrv.dll
13:36:53.0776 3288 TapiSrv - ok
13:36:53.0808 3288 [ CDBE8D7C1E201B911CDC346D06617FB5 ] TBS C:\Windows\System32\tbssvc.dll
13:36:53.0808 3288 TBS - ok
13:36:53.0854 3288 [ 46D448E9117464E4D3BBF36D7E3FA48E ] Tcpip C:\Windows\system32\drivers\tcpip.sys
13:36:53.0886 3288 Tcpip - ok
13:36:53.0901 3288 [ 46D448E9117464E4D3BBF36D7E3FA48E ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
13:36:53.0917 3288 Tcpip6 - ok
13:36:53.0932 3288 [ C7E72A4071EE0200E3C075DACFB2B334 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
13:36:53.0932 3288 tcpipreg - ok
13:36:53.0948 3288 [ 1D8BF4AAA5FB7A2761475781DC1195BC ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
13:36:53.0948 3288 TDPIPE - ok
13:36:53.0979 3288 [ 7F7E00CDF609DF657F4CDA02DD1C9BB1 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
13:36:53.0979 3288 TDTCP - ok
13:36:53.0995 3288 [ 458919C8C42E398DC4802178D5FFEE27 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
13:36:53.0995 3288 tdx - ok
13:36:54.0026 3288 [ 8C19678D22649EC002EF2282EAE92F98 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
13:36:54.0026 3288 TermDD - ok
13:36:54.0042 3288 [ 5CDD30BC217082DAC71A9878D9BFD566 ] TermService C:\Windows\System32\termsrv.dll
13:36:54.0057 3288 TermService - ok
13:36:54.0088 3288 [ 56793271ECDEDD350C5ADD305603E963 ] Themes C:\Windows\system32\shsvcs.dll
13:36:54.0088 3288 Themes - ok
13:36:54.0104 3288 [ 3CBE4995E80E13CCFBC42E5DCF3AC81A ] THREADORDER C:\Windows\system32\mmcss.dll
13:36:54.0104 3288 THREADORDER - ok
13:36:54.0120 3288 [ F4689F05AF472A651A7B1B7B02D200E7 ] TrkWks C:\Windows\System32\trkwks.dll
13:36:54.0135 3288 TrkWks - ok
13:36:54.0151 3288 [ 66328B08EF5A9305D8EDE36B93930369 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
13:36:54.0151 3288 TrustedInstaller - ok
13:36:54.0182 3288 [ 9E5409CD17C8BEF193AAD498F3BC2CB8 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
13:36:54.0182 3288 tssecsrv - ok
13:36:54.0198 3288 [ 89EC74A9E602D16A75A4170511029B3C ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
13:36:54.0198 3288 tunmp - ok
13:36:54.0229 3288 [ 30A9B3F45AD081BFFC3BCAA9C812B609 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
13:36:54.0229 3288 tunnel - ok
13:36:54.0244 3288 [ FEC266EF401966311744BD0F359F7F56 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
13:36:54.0244 3288 uagp35 - ok
13:36:54.0260 3288 [ 00C8CE31657624A125FDB90EFD554371 ] UBHelper C:\Windows\system32\drivers\UBHelper.sys
13:36:54.0260 3288 UBHelper - ok
13:36:54.0291 3288 [ FAF2640A2A76ED03D449E443194C4C34 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
13:36:54.0291 3288 udfs - ok
13:36:54.0307 3288 [ 060507C4113391394478F6953A79EEDC ] UI0Detect C:\Windows\system32\UI0Detect.exe
13:36:54.0307 3288 UI0Detect - ok
13:36:54.0354 3288 [ 34859D3801F4BD3DACFA131DD928455A ] UimBus C:\Windows\system32\DRIVERS\uimx64.sys
13:36:54.0354 3288 UimBus - ok
13:36:54.0385 3288 [ D3CE4776E7FFB25E6935B1C797F4650C ] Uim_IM C:\Windows\system32\Drivers\Uim_IMx64.sys
13:36:54.0400 3288 Uim_IM - ok
13:36:54.0416 3288 [ 4EC9447AC3AB462647F60E547208CA00 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
13:36:54.0416 3288 uliagpkx - ok
13:36:54.0432 3288 [ 697F0446134CDC8F99E69306184FBBB4 ] uliahci C:\Windows\system32\drivers\uliahci.sys
13:36:54.0432 3288 uliahci - ok
13:36:54.0447 3288 [ 31707F09846056651EA2C37858F5DDB0 ] UlSata C:\Windows\system32\drivers\ulsata.sys
13:36:54.0447 3288 UlSata - ok
13:36:54.0463 3288 [ 85E5E43ED5B48C8376281BAB519271B7 ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
13:36:54.0478 3288 ulsata2 - ok
13:36:54.0494 3288 [ 46E9A994C4FED537DD951F60B86AD3F4 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
13:36:54.0494 3288 umbus - ok
13:36:54.0525 3288 [ 7093799FF80E9DECA0680D2E3535BE60 ] upnphost C:\Windows\System32\upnphost.dll
13:36:54.0525 3288 upnphost - ok
13:36:54.0572 3288 [ 07E3498FC60834219D2356293DA0FECC ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
13:36:54.0572 3288 usbccgp - ok
13:36:54.0588 3288 [ 9247F7E0B65852C1F6631480984D6ED2 ] usbcir C:\Windows\system32\drivers\usbcir.sys
13:36:54.0588 3288 usbcir - ok
13:36:54.0619 3288 [ 827E44DE934A736EA31E91D353EB126F ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
13:36:54.0619 3288 usbehci - ok
13:36:54.0634 3288 [ BB35CD80A2ECECFADC73569B3D70C7D1 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
13:36:54.0650 3288 usbhub - ok
13:36:54.0666 3288 [ E406B003A354776D317762694956B0FC ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
13:36:54.0666 3288 usbohci - ok
13:36:54.0681 3288 [ 28B693B6D31E7B9332C1BDCEFEF228C1 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
13:36:54.0681 3288 usbprint - ok
13:36:54.0697 3288 [ EA0BF666868964FBE8CB10E50C97B9F1 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
13:36:54.0712 3288 usbscan - ok
13:36:54.0728 3288 [ B854C1558FCA0C269A38663E8B59B581 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
13:36:54.0728 3288 USBSTOR - ok
13:36:54.0759 3288 [ B2872CBF9F47316ABD0E0C74A1ABA507 ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
13:36:54.0759 3288 usbuhci - ok
13:36:54.0775 3288 [ D76E231E4850BB3F88A3D9A78DF191E3 ] UxSms C:\Windows\System32\uxsms.dll
13:36:54.0775 3288 UxSms - ok
13:36:54.0806 3288 [ 294945381DFA7CE58CECF0A9896AF327 ] vds C:\Windows\System32\vds.exe
13:36:54.0822 3288 vds - ok
13:36:54.0837 3288 [ 916B94BCF1E09873FFF2D5FB11767BBC ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
13:36:54.0837 3288 vga - ok
13:36:54.0853 3288 [ B83AB16B51FEDA65DD81B8C59D114D63 ] VgaSave C:\Windows\System32\drivers\vga.sys
13:36:54.0853 3288 VgaSave - ok
13:36:54.0868 3288 [ 8294B6C3FDB6C33F24E150DE647ECDAA ] viaide C:\Windows\system32\drivers\viaide.sys
13:36:54.0868 3288 viaide - ok
13:36:54.0900 3288 [ 2B7E885ED951519A12C450D24535DFCA ] volmgr C:\Windows\system32\drivers\volmgr.sys
13:36:54.0900 3288 volmgr - ok
13:36:54.0915 3288 [ CEC5AC15277D75D9E5DEC2E1C6EAF877 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
13:36:54.0931 3288 volmgrx - ok
13:36:54.0946 3288 [ 5280AADA24AB36B01A84A6424C475C8D ] volsnap C:\Windows\system32\drivers\volsnap.sys
13:36:54.0946 3288 volsnap - ok
13:36:54.0962 3288 [ A68F455ED2673835209318DD61BFBB0E ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
13:36:54.0962 3288 vsmraid - ok
13:36:55.0009 3288 [ B75232DAD33BFD95BF6F0A3E6BFF51E1 ] VSS C:\Windows\system32\vssvc.exe
13:36:55.0040 3288 VSS - ok
13:36:55.0056 3288 [ F14A7DE2EA41883E250892E1E5230A9A ] W32Time C:\Windows\system32\w32time.dll
13:36:55.0087 3288 W32Time - ok
13:36:55.0102 3288 [ FEF8FE5923FEAD2CEE4DFABFCE3393A7 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
13:36:55.0102 3288 WacomPen - ok
13:36:55.0134 3288 [ B8E7049622300D20BA6D8BE0C47C0CFD ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
13:36:55.0134 3288 Wanarp - ok
13:36:55.0134 3288 [ B8E7049622300D20BA6D8BE0C47C0CFD ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
13:36:55.0134 3288 Wanarpv6 - ok
13:36:55.0165 3288 [ B4E4C37D0AA6100090A53213EE2BF1C1 ] wcncsvc C:\Windows\System32\wcncsvc.dll
13:36:55.0180 3288 wcncsvc - ok
13:36:55.0196 3288 [ EA4B369560E986F19D93F45A881484AC ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
13:36:55.0196 3288 WcsPlugInService - ok
13:36:55.0212 3288 [ 0C17A0816F65B89E362E682AD5E7266E ] Wd C:\Windows\system32\drivers\wd.sys
13:36:55.0212 3288 Wd - ok
13:36:55.0243 3288 [ D02E7E4567DA1E7582FBF6A91144B0DF ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
13:36:55.0258 3288 Wdf01000 - ok
13:36:55.0274 3288 [ C5EFDA73EBFCA8B02A094898DE0A9276 ] WdiServiceHost C:\Windows\system32\wdi.dll
13:36:55.0290 3288 WdiServiceHost - ok
13:36:55.0290 3288 [ C5EFDA73EBFCA8B02A094898DE0A9276 ] WdiSystemHost C:\Windows\system32\wdi.dll
13:36:55.0290 3288 WdiSystemHost - ok
13:36:55.0305 3288 [ 3E6D05381CF35F75EBB055544A8ED9AC ] WebClient C:\Windows\System32\webclnt.dll
13:36:55.0305 3288 WebClient - ok
13:36:55.0336 3288 [ 8D40BC587993F876658BF9FB0F7D3462 ] Wecsvc C:\Windows\system32\wecsvc.dll
13:36:55.0336 3288 Wecsvc - ok
13:36:55.0352 3288 [ 9C980351D7E96288EA0C23AE232BD065 ] wercplsupport C:\Windows\System32\wercplsupport.dll
13:36:55.0352 3288 wercplsupport - ok
13:36:55.0368 3288 [ 66B9ECEBC46683F47EDC06333C075FEF ] WerSvc C:\Windows\System32\WerSvc.dll
13:36:55.0368 3288 WerSvc - ok
13:36:55.0383 3288 WinHttpAutoProxySvc - ok
13:36:55.0414 3288 [ D2E7296ED1BD26D8DB2799770C077A02 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
13:36:55.0414 3288 Winmgmt - ok
13:36:55.0477 3288 [ 6CBB0C68F13B9C2EC1B16F5FA5E7C869 ] WinRM C:\Windows\system32\WsmSvc.dll
13:36:55.0508 3288 WinRM - ok
13:36:55.0539 3288 [ EC339C8115E91BAED835957E9A677F16 ] Wlansvc C:\Windows\System32\wlansvc.dll
13:36:55.0555 3288 Wlansvc - ok
13:36:55.0633 3288 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
13:36:55.0648 3288 wlidsvc - ok
13:36:55.0664 3288 [ E18AEBAAA5A773FE11AA2C70F65320F5 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
13:36:55.0664 3288 WmiAcpi - ok
13:36:55.0695 3288 [ 21FA389E65A852698B6A1341F36EE02D ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
13:36:55.0695 3288 wmiApSrv - ok
13:36:55.0711 3288 WMPNetworkSvc - ok
13:36:55.0711 3288 [ CBC156C913F099E6680D1DF9307DB7A8 ] WPCSvc C:\Windows\System32\wpcsvc.dll
13:36:55.0726 3288 WPCSvc - ok
13:36:55.0758 3288 [ 490A18B4E4D53DC10879DEAA8E8B70D9 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
13:36:55.0758 3288 WPDBusEnum - ok
13:36:55.0851 3288 [ 991E2C2CF3BC204C2BB2EE1476149E4E ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\WPF\WPFFontCache_v0400.exe
13:36:55.0867 3288 WPFFontCache_v0400 - ok
13:36:55.0882 3288 [ 8A900348370E359B6BFF6A550E4649E1 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
13:36:55.0882 3288 ws2ifsl - ok
13:36:55.0898 3288 WSearch - ok
13:36:55.0960 3288 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
13:36:56.0007 3288 wuauserv - ok
13:36:56.0023 3288 [ 501A65252617B495C0F1832F908D54D8 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
13:36:56.0023 3288 WUDFRd - ok
13:36:56.0070 3288 [ 6CBD51FF913C851D56ED9DC7F2A27DDE ] wudfsvc C:\Windows\System32\WUDFSvc.dll
13:36:56.0070 3288 wudfsvc - ok
13:36:56.0070 3288 ================ Scan global ===============================
13:36:56.0101 3288 [ 060DC3A7A9A2626031EB23D90151428D ] C:\Windows\system32\basesrv.dll
13:36:56.0116 3288 [ AA137104CDFC81818A309CDE32ABB74A ] C:\Windows\system32\winsrv.dll
13:36:56.0148 3288 [ AA137104CDFC81818A309CDE32ABB74A ] C:\Windows\system32\winsrv.dll
13:36:56.0179 3288 [ 934E0B7D77FF78C18D9F8891221B6DE3 ] C:\Windows\system32\services.exe
13:36:56.0179 3288 [Global] - ok
13:36:56.0179 3288 ================ Scan MBR ==================================
13:36:56.0194 3288 [ EF932EAA6EF4C94E66A7F6CEEC7EB422 ] \Device\Harddisk0\DR0
13:36:58.0456 3288 \Device\Harddisk0\DR0 - ok
13:36:58.0456 3288 [ 414FF7C52D109DA63C8AA38FF0846C4F ] \Device\Harddisk1\DR1
13:37:09.0267 3288 \Device\Harddisk1\DR1 - ok
13:37:09.0267 3288 [ 739B36F7A373FC81121D831231B6D311 ] \Device\Harddisk2\DR2
13:37:10.0266 3288 \Device\Harddisk2\DR2 - ok
13:37:10.0266 3288 ================ Scan VBR ==================================
13:37:10.0281 3288 [ A0AFFFC921249EAACFAE17ECBA47B9C7 ] \Device\Harddisk0\DR0\Partition1
13:37:10.0281 3288 \Device\Harddisk0\DR0\Partition1 - ok
13:37:10.0297 3288 [ C9FFD61DD1C6B3B06FA1A87D028CE969 ] \Device\Harddisk0\DR0\Partition2
13:37:10.0312 3288 \Device\Harddisk0\DR0\Partition2 - ok
13:37:10.0312 3288 [ 6B48F0B4711060D197A1D8140F054076 ] \Device\Harddisk1\DR1\Partition1
13:37:10.0312 3288 \Device\Harddisk1\DR1\Partition1 - ok
13:37:10.0312 3288 [ E46360071ABA9D3EBF533AD7E20A0F6C ] \Device\Harddisk2\DR2\Partition1
13:37:10.0312 3288 \Device\Harddisk2\DR2\Partition1 - ok
13:37:10.0312 3288 ============================================================
13:37:10.0328 3288 Scan finished
13:37:10.0328 3288 ============================================================
13:37:10.0328 2260 Detected object count: 0
13:37:10.0328 2260 Actual detected object count: 0
aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-09-30 13:42:39



-----------------------------
13:42:39.122 OS Version: Windows x64 6.0.6002 Service Pack 2
13:42:39.122 Number of processors: 2 586 0xF0D
13:42:39.138 ComputerName: DUTCHMAN-PC UserName: Dutchman
13:42:39.809 Initialize success
13:52:59.386 AVAST engine defs: 12093001
13:58:40.555 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\00000056
13:58:40.571 Disk 0 Vendor: WDC_WD64 01.0 Size: 610480MB BusType: 3
13:58:40.571 Disk 0 MBR read successfully
13:58:40.586 Disk 0 MBR scan
13:58:40.586 Disk 0 unknown MBR code
13:58:40.602 Disk 0 Partition 1 00 27 Hidden NTFS WinRE NTFS 15360 MB offset 2048
13:58:40.617 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 296531 MB offset 31459328
13:58:40.649 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 298585 MB offset 638754858
13:58:40.680 Disk 0 scanning C:\Windows\system32\drivers
13:58:47.622 Service scanning
13:59:01.755 Modules scanning
13:59:01.771 Disk 0 trace - called modules:
13:59:01.787 ntoskrnl.exe CLASSPNP.SYS disk.sys acpi.sys storport.sys hal.dll nvstor64.sys
13:59:01.802 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8004d29560]
13:59:01.802 3 CLASSPNP.SYS[fffffa600120fc33] -> nt!IofCallDriver -> [0xfffffa8003cea3e0]
13:59:01.818 5 acpi.sys[fffffa60008fcfde] -> nt!IofCallDriver -> \Device\00000056[0xfffffa8003cee550]
13:59:02.879 AVAST engine scan C:\Windows
13:59:05.468 AVAST engine scan C:\Windows\system32
14:01:33.434 AVAST engine scan C:\Windows\system32\drivers
14:01:47.490 AVAST engine scan C:\Users\Dutchman
14:04:36.460 Disk 0 MBR has been saved successfully to "C:\Users\Dutchman\Desktop\MBR.dat"
14:04:36.491 The log file has been saved successfully to "C:\Users\Dutchman\Desktop\aswMBR.txt"


aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-09-30 13:42:39


-----------------------------
13:42:39.122 OS Version: Windows x64 6.0.6002 Service Pack 2
13:42:39.122 Number of processors: 2 586 0xF0D
13:42:39.138 ComputerName: DUTCHMAN-PC UserName: Dutchman
13:42:39.809 Initialize success
13:52:59.386 AVAST engine defs: 12093001
13:58:40.555 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\00000056
13:58:40.571 Disk 0 Vendor: WDC_WD64 01.0 Size: 610480MB BusType: 3
13:58:40.571 Disk 0 MBR read successfully
13:58:40.586 Disk 0 MBR scan
13:58:40.586 Disk 0 unknown MBR code
13:58:40.602 Disk 0 Partition 1 00 27 Hidden NTFS WinRE NTFS 15360 MB offset 2048
13:58:40.617 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 296531 MB offset 31459328
13:58:40.649 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 298585 MB offset 638754858
13:58:40.680 Disk 0 scanning C:\Windows\system32\drivers
13:58:47.622 Service scanning
13:59:01.755 Modules scanning
13:59:01.771 Disk 0 trace - called modules:
13:59:01.787 ntoskrnl.exe CLASSPNP.SYS disk.sys acpi.sys storport.sys hal.dll nvstor64.sys
13:59:01.802 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8004d29560]
13:59:01.802 3 CLASSPNP.SYS[fffffa600120fc33] -> nt!IofCallDriver -> [0xfffffa8003cea3e0]
13:59:01.818 5 acpi.sys[fffffa60008fcfde] -> nt!IofCallDriver -> \Device\00000056[0xfffffa8003cee550]
13:59:02.879 AVAST engine scan C:\Windows
13:59:05.468 AVAST engine scan C:\Windows\system32
14:01:33.434 AVAST engine scan C:\Windows\system32\drivers
14:01:47.490 AVAST engine scan C:\Users\Dutchman
14:04:36.460 Disk 0 MBR has been saved successfully to "C:\Users\Dutchman\Desktop\MBR.dat"
14:04:36.491 The log file has been saved successfully to "C:\Users\Dutchman\Desktop\aswMBR.txt"







A Wasted Woman is Never a Waste of Time


#5 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:12:48 PM

Posted 30 September 2012 - 09:42 PM

Run ESET scanner again and makesure it comes out clean

Download

Malwarebytes

Install,update and run a full scan

Click on Show results.Right click on the list ,select all and remove them.

Post the generated log here

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size
List restore points

Click Go and post the result.

Download

Farbar service scanner

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.

Download

adware cleaner

Launch it click on Delete

A log should be generated after scan ,post it here

Download

Junkware removal tool

Launch it and after scan gets completed,post the generated log here.

NOTE: For vista and windows 7 right click on the tool and select run as administrator

#6 Dutchman99

Dutchman99
  • Topic Starter

  • Members
  • 30 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Three Points, Az
  • Local time:10:48 AM

Posted 01 October 2012 - 02:09 PM

Will send you the results as they come in.

A Wasted Woman is Never a Waste of Time


#7 Dutchman99

Dutchman99
  • Topic Starter

  • Members
  • 30 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Three Points, Az
  • Local time:10:48 AM

Posted 01 October 2012 - 07:27 PM

Here are the results of the 3 1/2 hour Eset scan. NON-FOUND! I am also able to get the Google Home Screen. I'm also sending you the screen (5) of what happened when I tried to get a free trial of Eset. The Print Screen comes up.

I normally run Malwarebytes, but I will run it again and send the results.

<a href="http://s277.photobucket.com/albums/kk47/norwood1081/?action=view&amp;current=ESETPRINT_SCREEN-1.jpg" target="_blank"><img src="http://i277.photobucket.com/albums/kk47/norwood1081/ESETPRINT_SCREEN-1.jpg" border="0" alt="Photobucket"></a>


<a href="http://s277.photobucket.com/albums/kk47/norwood1081/?action=view&amp;current=ESET_RES_1.jpg" target="_blank"><img src="http://i277.photobucket.com/albums/kk47/norwood1081/ESET_RES_1.jpg" border="0" alt="Photobucket"></a>


<a href="http://s277.photobucket.com/albums/kk47/norwood1081/?action=view&amp;current=ESET_RES_2.jpg" target="_blank"><img src="http://i277.photobucket.com/albums/kk47/norwood1081/ESET_RES_2.jpg" border="0" alt="Photobucket"></a>


<a href="http://s277.photobucket.com/albums/kk47/norwood1081/?action=view&amp;current=ESET_RES_3.jpg" target="_blank"><img src="http://i277.photobucket.com/albums/kk47/norwood1081/ESET_RES_3.jpg" border="0" alt="Photobucket"></a>


<a href="http://s277.photobucket.com/albums/kk47/norwood1081/?action=view&amp;current=ESET_RES_4.jpg" target="_blank"><img src="http://i277.photobucket.com/albums/kk47/norwood1081/ESET_RES_4.jpg" border="0" alt="Photobucket"></a>

A Wasted Woman is Never a Waste of Time


#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:12:48 PM

Posted 01 October 2012 - 09:55 PM

what is this?

If you have issues running ESET scanner ,run it in safemode with networking

#9 Dutchman99

Dutchman99
  • Topic Starter

  • Members
  • 30 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Three Points, Az
  • Local time:10:48 AM

Posted 01 October 2012 - 09:58 PM

I could not post the generated log from Malwarebytes because there was no "Click on Show Results" at the end of the scan. However there was "NOTHING FOUND" in the final entery. The only thing showing in the quarentine was what I sent you previously. (Attached.)


<a href="http://s277.photobucket.com/albums/kk47/norwood1081/?action=view&amp;current=20_Problem.jpg" target="_blank"><img src="http://i277.photobucket.com/albums/kk47/norwood1081/20_Problem.jpg" border="0" alt="Photobucket"></a>

A Wasted Woman is Never a Waste of Time


#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:12:48 PM

Posted 01 October 2012 - 10:03 PM

I do not want the logs of ESET and malwarebytes.Run them again and make sure it comes out clean.I will wait for other logs.

#11 Dutchman99

Dutchman99
  • Topic Starter

  • Members
  • 30 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Three Points, Az
  • Local time:10:48 AM

Posted 01 October 2012 - 10:07 PM

I didn't have any issues running ESET so I'm continuing, (probably tomorrow morning) depending how long "Mini Toolbox" takes.

A Wasted Woman is Never a Waste of Time


#12 Dutchman99

Dutchman99
  • Topic Starter

  • Members
  • 30 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Three Points, Az
  • Local time:10:48 AM

Posted 01 October 2012 - 10:11 PM

Eset and Malwarebytes both came out CLEAN! I will continue with "Mini Toolbox" in the morning since it is getting pretty late over here. I am really grateful for your continued patience.

A Wasted Woman is Never a Waste of Time


#13 Dutchman99

Dutchman99
  • Topic Starter

  • Members
  • 30 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Three Points, Az
  • Local time:10:48 AM

Posted 02 October 2012 - 01:23 PM

I had a problem signing in today, therefore the delay.

Here is the result of "Mini Toolbox:


MiniToolBox by Farbar Version: 23-07-2012
Ran by Dutchman (administrator) on 02-10-2012 at 10:58:00
Microsoft® Windows Vista™ Home Premium Service Pack 2 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
ProxyServer: 148.233.239.24:3128

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

::1 localhost

127.0.0.1 localhost

========================= IP Configuration: ================================

NVIDIA nForce 10/100/1000 Mbps Ethernet = Local Area Connection (Connected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Dutchman-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : domain.actdsltmp

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . : domain.actdsltmp
Description . . . . . . . . . . . : NVIDIA nForce 10/100/1000 Mbps Ethernet #2
Physical Address. . . . . . . . . : 00-21-97-AF-F4-48
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::4cf3:a03f:b852:49a1%10(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.0.3(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Tuesday, October 02, 2012 10:47:00 AM
Lease Expires . . . . . . . . . . : Wednesday, October 03, 2012 10:47:01 AM
Default Gateway . . . . . . . . . : 192.168.0.1
DHCP Server . . . . . . . . . . . : 192.168.0.1
DHCPv6 IAID . . . . . . . . . . . : 234889623
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-0C-BE-05-63-00-21-97-AF-F4-48
DNS Servers . . . . . . . . . . . : 192.168.0.1
205.171.3.25
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter Local Area Connection* 6:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{76BDAEED-FC23-4D6F-9F1B-A136BCD6A26C}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 7:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 02-00-54-55-4E-01
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: qwestmodem.domain.actdsltmp
Address: 192.168.0.1

DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.
Name: google.com
Addresses: 2001:4860:4007:801::1006
74.125.224.198
74.125.224.199
74.125.224.200
74.125.224.201
74.125.224.206
74.125.224.192
74.125.224.193
74.125.224.194
74.125.224.195
74.125.224.196
74.125.224.197



Pinging google.com [74.125.224.200] with 32 bytes of data:

Reply from 74.125.224.200: bytes=32 time=64ms TTL=57

Reply from 74.125.224.200: bytes=32 time=63ms TTL=57



Ping statistics for 74.125.224.200:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 63ms, Maximum = 64ms, Average = 63ms

Server: qwestmodem.domain.actdsltmp
Address: 192.168.0.1

DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.
Name: yahoo.com
Addresses: 72.30.38.140
98.138.253.109
98.139.183.24



Pinging yahoo.com [98.138.253.109] with 32 bytes of data:

Reply from 98.138.253.109: bytes=32 time=246ms TTL=52

Reply from 98.138.253.109: bytes=32 time=235ms TTL=52



Ping statistics for 98.138.253.109:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 235ms, Maximum = 246ms, Average = 240ms

Server: qwestmodem.domain.actdsltmp
Address: 192.168.0.1

DNS request timed out.
timeout was 2 seconds.
DNS request timed out.
timeout was 2 seconds.
Name: bleepingcomputer.com
Address: 208.43.87.2



Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:

Reply from 208.43.87.2: Destination host unreachable.

Reply from 208.43.87.2: Destination host unreachable.



Ping statistics for 208.43.87.2:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),



Pinging 127.0.0.1 with 32 bytes of data:

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128



Ping statistics for 127.0.0.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
10 ...00 21 97 af f4 48 ...... NVIDIA nForce 10/100/1000 Mbps Ethernet #2
1 ........................... Software Loopback Interface 1
11 ...00 00 00 00 00 00 00 e0 isatap.{76BDAEED-FC23-4D6F-9F1B-A136BCD6A26C}
12 ...02 00 54 55 4e 01 ...... Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.0.1 192.168.0.3 20
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.0.0 255.255.255.0 On-link 192.168.0.3 276
192.168.0.3 255.255.255.255 On-link 192.168.0.3 276
192.168.0.255 255.255.255.255 On-link 192.168.0.3 276
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.0.3 276
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.0.3 276
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
10 276 fe80::/64 On-link
10 276 fe80::4cf3:a03f:b852:49a1/128
On-link
1 306 ff00::/8 On-link
10 276 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [48128] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [50176] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [19968] (Microsoft Corporation)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [61440] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [62976] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [78848] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [78848] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [27648] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (10/02/2012 10:48:38 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/01/2012 08:12:15 PM) (Source: Windows Search Service) (User: )
Description: The update cannot be started because the content sources cannot be accessed. Fix the errors and try the update again.

Context: Application, SystemIndex Catalog

Error: (10/01/2012 08:02:27 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/01/2012 00:12:16 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_1509f852f40ee5cd.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_1509f852f40ee5cd.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_1509f852f40ee5cd.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_1509f852f40ee5cd.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3.manifest.

Error: (10/01/2012 11:00:58 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/30/2012 07:43:35 PM) (Source: Application Error) (User: )
Description: Faulting application prism3d.exe, version 1.0.0.1, time stamp 0x454070b0, faulting module p3core.dll, version 0.0.0.0, time stamp 0x45407096, exception code 0xc0000005, fault offset 0x0000a155,
process id 0xa00, application start time 0xprism3d.exe0.

Error: (09/30/2012 03:18:01 PM) (Source: Application Error) (User: )
Description: Faulting application prism3d.exe, version 1.0.0.1, time stamp 0x454070b0, faulting module p3core.dll, version 0.0.0.0, time stamp 0x45407096, exception code 0xc0000005, fault offset 0x0003f4ee,
process id 0x9d8, application start time 0xprism3d.exe0.

Error: (09/30/2012 03:16:32 PM) (Source: Application Error) (User: )
Description: Faulting application prism3d.exe, version 1.0.0.1, time stamp 0x454070b0, faulting module p3core.dll, version 0.0.0.0, time stamp 0x45407096, exception code 0xc0000005, fault offset 0x0003f4ee,
process id 0x460, application start time 0xprism3d.exe0.

Error: (09/30/2012 03:03:04 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_1509f852f40ee5cd.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_1509f852f40ee5cd.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_1509f852f40ee5cd.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_1509f852f40ee5cd.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3.manifest.

Error: (09/30/2012 03:02:45 PM) (Source: Application Error) (User: )
Description: Faulting application IncMail.exe, version 5.8.6.4332, time stamp 0x4aa51843, faulting module kernel32.dll, version 6.0.6002.18449, time stamp 0x4da47a32, exception code 0xe06d7363, fault offset 0x0001c83b,
process id 0xf94, application start time 0xIncMail.exe0.


System errors:
=============
Error: (10/02/2012 10:48:38 AM) (Source: Service Control Manager) (User: )
Description: IPsec Policy AgentBFE

Error: (10/02/2012 10:48:38 AM) (Source: Service Control Manager) (User: )
Description: IKE and AuthIP IPsec Keying ModulesBFE

Error: (10/02/2012 10:48:38 AM) (Source: Service Control Manager) (User: )
Description: ESET Service%%3

Error: (10/02/2012 10:48:38 AM) (Source: Service Control Manager) (User: )
Description: AVGIDSFilter%%2

Error: (10/02/2012 10:48:38 AM) (Source: Service Control Manager) (User: )
Description: AVGIDSAgentAVGIDSDriver%%1058

Error: (10/02/2012 10:48:38 AM) (Source: Service Control Manager) (User: )
Description: Computer Browser%%1060

Error: (10/01/2012 08:02:27 PM) (Source: Service Control Manager) (User: )
Description: IPsec Policy AgentBFE

Error: (10/01/2012 08:02:27 PM) (Source: Service Control Manager) (User: )
Description: IKE and AuthIP IPsec Keying ModulesBFE

Error: (10/01/2012 08:02:27 PM) (Source: Service Control Manager) (User: )
Description: ESET Service%%3

Error: (10/01/2012 08:02:27 PM) (Source: Service Control Manager) (User: )
Description: AVGIDSFilter%%2


Microsoft Office Sessions:
=========================
Error: (10/02/2012 10:48:38 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/01/2012 08:12:15 PM) (Source: Windows Search Service)(User: )
Description: Context: Application, SystemIndex Catalog

Error: (10/01/2012 08:02:27 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/01/2012 00:12:16 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_1509f852f40ee5cd.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3.manifestC:\Users\Dutchman\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\QC0QWTWE\esetsmartinstaller_enu[1].exe

Error: (10/01/2012 11:00:58 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/30/2012 07:43:35 PM) (Source: Application Error)(User: )
Description: prism3d.exe1.0.0.1454070b0p3core.dll0.0.0.045407096c00000050000a155a0001cd9f7e75687a60

Error: (09/30/2012 03:18:01 PM) (Source: Application Error)(User: )
Description: prism3d.exe1.0.0.1454070b0p3core.dll0.0.0.045407096c00000050003f4ee9d801cd9f595af55bf0

Error: (09/30/2012 03:16:32 PM) (Source: Application Error)(User: )
Description: prism3d.exe1.0.0.1454070b0p3core.dll0.0.0.045407096c00000050003f4ee46001cd9f58a9d46b40

Error: (09/30/2012 03:03:04 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_1509f852f40ee5cd.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3.manifestC:\Users\Dutchman\Desktop\esetsmartinstaller_enu.exe

Error: (09/30/2012 03:02:45 PM) (Source: Application Error)(User: )
Description: IncMail.exe5.8.6.43324aa51843kernel32.dll6.0.6002.184494da47a32e06d73630001c83bf9401cd9f568c2cc8a0


=========================== Installed Programs ============================

AI RoboForm
AVG 2012 (Version: 12.0.2180)
Canon MX320 series MP Drivers
CCleaner (Version: 3.21)
LSI PCI-SV92EX Soft Modem (Version: 2.2.100)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
NVIDIA Drivers
NVIDIA Graphics Driver 296.10 (Version: 296.10)
PDF-Viewer (Version: 2.0.42.9)
PE585QAEncoder-64 (Version: 6.00.1918)
SUPERAntiSpyware (Version: 5.5.1016)
Visual Studio 2010 x64 Redistributables (Version: 13.0.0.1)
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0)
Windows Live Language Selector (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)

========================= Memory info: ===================================

Percentage of memory in use: 34%
Total physical RAM: 4094.32 MB
Available physical RAM: 2687.46 MB
Total Pagefile: 8415.93 MB
Available Pagefile: 6375.45 MB
Total Virtual: 4095.88 MB
Available Virtual: 3996.96 MB

========================= Partitions: =====================================

1 Drive c: (ACER) (Fixed) (Total:289.58 GB) (Free:186.76 GB) NTFS
2 Drive d: (DATA) (Fixed) (Total:291.59 GB) (Free:288.19 GB) NTFS
3 Drive e: (WD Passport) (Fixed) (Total:37.24 GB) (Free:14.3 GB) FAT32
6 Drive i: (Expansion Drive) (Fixed) (Total:298.09 GB) (Free:224.82 GB) NTFS

========================= Users: ========================================

User accounts for \\DUTCHMAN-PC

Administrator Dutchman Guest

========================= Restore Points ==================================

11-09-2012 23:06:52 Device Driver Package Install: Eset spol s r. o.
11-09-2012 23:07:31 Device Driver Package Install: Eset spol s r. o.
11-09-2012 23:07:50 Device Driver Package Install: Eset spol s r. o.
11-09-2012 23:08:12 Device Driver Package Install: Eset spol s r. o.
11-09-2012 23:08:39 Device Driver Package Install: ESET Network Service
12-09-2012 04:32:59 Removed AVG 2012
12-09-2012 04:35:22 Removed AVG 2012
12-09-2012 04:36:39 Removed AVG 2012
13-09-2012 10:00:11 Windows Update
19-09-2012 00:00:37 Removed 18 WoS Haulin.
19-09-2012 00:16:39 Installed 18 WoS Haulin.
19-09-2012 00:22:08 Removed 18 WoS Haulin.
19-09-2012 00:30:23 Installed 18 WoS Haulin.
22-09-2012 19:47:54 Windows Update
25-09-2012 02:09:59 Scheduled Checkpoint
26-09-2012 00:56:16 Scheduled Checkpoint
26-09-2012 20:30:34 Installed AVG 2013
26-09-2012 20:31:17 Installed AVG 2013
26-09-2012 20:32:44 Removed AVG 2013
26-09-2012 20:39:15 Installed AVG 2013
26-09-2012 20:39:53 Installed AVG 2013
26-09-2012 20:40:58 Removed AVG 2013
28-09-2012 00:56:39 Scheduled Checkpoint

**** End of log ****



A Wasted Woman is Never a Waste of Time


#14 Dutchman99

Dutchman99
  • Topic Starter

  • Members
  • 30 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Three Points, Az
  • Local time:10:48 AM

Posted 02 October 2012 - 01:50 PM

Here is the results from "Farbar Service Scanner:


Farbar Service Scanner Version: 19-09-2012
Ran by Dutchman (administrator) on 02-10-2012 at 11:29:56
Running from "I:\Backup\Windows\Virus Programs ss"
Microsoft® Windows Vista™ Home Premium Service Pack 2 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============
mpsdrv Service is not running. Checking service configuration:
The start type of mpsdrv service is OK.
The ImagePath of mpsdrv service is OK.

MpsSvc Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open MpsSvc registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open MpsSvc registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open MpsSvc registry key. The service key does not exist.

bfe Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open bfe registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open bfe registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open bfe registry key. The service key does not exist.


Firewall Disabled Policy:
==================
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall"=DWORD:0


System Restore:
============

System Restore Disabled Policy:
========================


Security Center:
============
wscsvc Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.


Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.


Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcsvc.dll
[2009-06-11 10:34] - [2009-04-11 00:11] - 0268288 ____A (Microsoft Corporation) 3ED0321127CE70ACDAABBF77E157C2A7

C:\Windows\System32\drivers\afd.sys
[2012-02-14 19:27] - [2012-01-03 07:25] - 0404992 ____A (Microsoft Corporation) C4F6CE6087760AD70960C9EB130E7943

C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys
[2012-05-11 12:20] - [2012-03-30 05:45] - 1423744 ____A (Microsoft Corporation) 46D448E9117464E4D3BBF36D7E3FA48E

C:\Windows\System32\dnsrslvr.dll
[2011-04-15 14:42] - [2011-03-02 09:12] - 0117760 ____A (Microsoft Corporation) 06230F1B721494A6DF8D47FD395BB1B0

C:\Windows\System32\mpssvc.dll
[2009-06-11 10:34] - [2009-04-11 00:11] - 0603136 ____A (Microsoft Corporation) 897E3BAF68BA406A61682AE39C83900C

C:\Windows\System32\bfe.dll
[2009-06-11 10:33] - [2009-04-11 00:11] - 0458240 ____A (Microsoft Corporation) FFB96C2589FFA60473EAD78B39FBDE29

C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe
[2009-06-11 10:34] - [2009-04-11 00:11] - 1433600 ____A (Microsoft Corporation) B75232DAD33BFD95BF6F0A3E6BFF51E1

C:\Windows\System32\wscsvc.dll
[2009-06-11 10:33] - [2009-04-11 00:11] - 0074752 ____A (Microsoft Corporation) 9EA3E6D0EF7A5C2B9181961052A4B01A

C:\Windows\System32\wbem\WMIsvc.dll
[2009-06-11 10:34] - [2009-04-11 00:11] - 0221696 ____A (Microsoft Corporation) D2E7296ED1BD26D8DB2799770C077A02

C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll
[2009-06-11 10:34] - [2009-04-11 00:11] - 1081856 ____A (Microsoft Corporation) 6D316F4859634071CC25C4FD4589AD2C

C:\Windows\System32\es.dll
[2009-06-11 10:34] - [2009-04-11 00:11] - 0361984 ____A (Microsoft Corporation) E12F22B73F153DECE721CD45EC05B4AF

C:\Windows\System32\cryptsvc.dll
[2012-06-13 12:18] - [2012-04-23 09:25] - 0174592 ____A (Microsoft Corporation) 62740B9D2A137E8CED41A9E4239A7A31

C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll
[2009-06-11 10:34] - [2009-04-11 00:11] - 0719872 ____A (Microsoft Corporation) CF8B9A3A5E7DC57724A89D0C3E8CF9EF



**** End of log ****


A Wasted Woman is Never a Waste of Time


#15 Dutchman99

Dutchman99
  • Topic Starter

  • Members
  • 30 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Three Points, Az
  • Local time:10:48 AM

Posted 02 October 2012 - 02:02 PM

Here are the results for "Adware Cleaner":


# AdwCleaner v2.003 - Logfile created 10/02/2012 at 11:55:15
# Updated 23/09/2012 by Xplode
# Operating system : Windows ™ Vista Home Premium Service Pack 2 (64 bits)
# User : Dutchman - DUTCHMAN-PC
# Boot Mode : Normal
# Running from : I:\Backup\Windows\Virus Programs ss\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

Deleted on reboot : C:\Program Files (x86)\Babylon
Deleted on reboot : C:\Program Files (x86)\Conduit
Deleted on reboot : C:\Program Files (x86)\IncrediMail_MediaBar_2
Deleted on reboot : C:\Program Files (x86)\Produtools_Manuals_2.1
Deleted on reboot : C:\Program Files (x86)\Searchqu Toolbar
Deleted on reboot : C:\Program Files (x86)\WiseConvert
Deleted on reboot : C:\Program Files\Babylon
Deleted on reboot : C:\ProgramData\Ask
Deleted on reboot : C:\ProgramData\Trymedia
Deleted on reboot : C:\Users\Dutchman\AppData\Local\Conduit
Deleted on reboot : C:\Users\Dutchman\AppData\Local\Ilivid Player
Deleted on reboot : C:\Users\Dutchman\AppData\Local\vghd
Deleted on reboot : C:\Users\Dutchman\AppData\Local\WiseConvert
Deleted on reboot : C:\Users\Dutchman\AppData\LocalLow\AskToolbar
Deleted on reboot : C:\Users\Dutchman\AppData\LocalLow\BabylonToolbar
Deleted on reboot : C:\Users\Dutchman\AppData\LocalLow\Conduit
Deleted on reboot : C:\Users\Dutchman\AppData\LocalLow\FunWebProducts
Deleted on reboot : C:\Users\Dutchman\AppData\LocalLow\IncrediMail_MediaBar_2
Deleted on reboot : C:\Users\Dutchman\AppData\LocalLow\PriceGong
Deleted on reboot : C:\Users\Dutchman\AppData\LocalLow\Produtools_Manuals_2.1
Deleted on reboot : C:\Users\Dutchman\AppData\LocalLow\searchquband
Deleted on reboot : C:\Users\Dutchman\AppData\LocalLow\Searchqutoolbar
Deleted on reboot : C:\Users\Dutchman\AppData\LocalLow\WiseConvert
Deleted on reboot : C:\Users\Dutchman\AppData\Roaming\Media Finder
Deleted on reboot : C:\Users\Dutchman\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\gencrawler@some.com
Deleted on reboot : C:\Users\Dutchman\AppData\Roaming\PriceGong
File Deleted : C:\user.js

***** [Registry] *****

Data Deleted : HKLM\..\Windows [AppInit_DLLs] = C:\PROGRA~2\SEARCH~1\Datamngr\datamngr.dll C:\PROGRA~2\SEARCH~1\Datamngr\IEBHO.dll
Key Deleted : HKCU\Software\AppDataLow\Software\AskToolbar
Key Deleted : HKCU\Software\AppDataLow\Software\Conduit
Key Deleted : HKCU\Software\AppDataLow\Software\Fun Web Products
Key Deleted : HKCU\Software\AppDataLow\Software\FunWebProducts
Key Deleted : HKCU\Software\AppDataLow\Software\MyWebSearch
Key Deleted : HKCU\Software\AppDataLow\Software\PriceGong
Key Deleted : HKCU\Software\AppDataLow\Software\Produtools_Manuals_2.1
Key Deleted : HKCU\Software\AppDataLow\Software\searchqutoolbar
Key Deleted : HKCU\Software\AppDataLow\Software\SmartBar
Key Deleted : HKCU\Software\AppDataLow\Software\WiseConvert
Key Deleted : HKCU\Software\AppDataLow\Toolbar
Key Deleted : HKCU\Software\Babylon
Key Deleted : HKCU\Software\DataMngr
Key Deleted : HKCU\Software\DataMngr_Toolbar
Key Deleted : HKCU\Software\Headlight
Key Deleted : HKCU\Software\IM
Key Deleted : HKCU\Software\ImInstaller
Key Deleted : HKCU\Software\MediaFinder
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\MenuExt\Download with &Media Finder
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Produtools_Manuals_2.1 Toolbar
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Searchqu Toolbar
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\WiseConvert Toolbar
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2EECD738-5844-4A99-B4B6-146BF802613B}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{98889811-442D-49DD-99D7-DC866BE87DBC}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{99079A25-328F-4BD4-BE04-00955ACAA0A7}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{9CFACCB6-2F3F-4177-94EA-0D2B72D384C1}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{9D717F81-9148-4F12-8568-69135F087DB0}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AD4DF010-E2FD-43CE-864A-6BD1EDC59AC2}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{B2BF7B3F-BF0B-4C48-AEC6-F92C51BE63E1}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EBD898F8-FCF6-4694-BC3B-EABC7271EEB1}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2EECD738-5844-4A99-B4B6-146BF802613B}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{43AF84A8-BAEA-4A72-9698-7C4CB7082D92}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{71B1DF81-18D9-4E5B-9493-CAB02B6E9D8F}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{99079A25-328F-4BD4-BE04-00955ACAA0A7}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9CFACCB6-2F3F-4177-94EA-0D2B72D384C1}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9D717F81-9148-4F12-8568-69135F087DB0}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AD4DF010-E2FD-43CE-864A-6BD1EDC59AC2}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{B2BF7B3F-BF0B-4C48-AEC6-F92C51BE63E1}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{E38FA08E-F56A-4169-ABF5-5C71E3C153A1}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EBD898F8-FCF6-4694-BC3B-EABC7271EEB1}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{000E1111-F332-12DB-84A4-B811200B9A66}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40B7-AC73-056A5EBA4A7E}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8B63A8D6-BBED-4341-8867-790E5F524C96}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{CFF4DB9B-135F-47C0-9269-B4C6572FD61A}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{3F39D17D-50C7-4AC4-A63A-CDF6CDBD0C61}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\IEPlugin.DLL
Key Deleted : HKLM\SOFTWARE\Classes\IEPlugin.IEWebHook
Key Deleted : HKLM\SOFTWARE\Classes\IEPlugin.IEWebHook.1
Key Deleted : HKLM\SOFTWARE\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF
Key Deleted : HKLM\SOFTWARE\Classes\MF
Key Deleted : HKLM\SOFTWARE\Classes\SearchQUIEHelper.DNSGuard
Key Deleted : HKLM\SOFTWARE\Classes\SearchQUIEHelper.DNSGuard.1
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT3196716
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT3209604
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{11549FE4-7C5A-4C17-9FC3-56FC5162A994}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{5B4144E1-B61D-495A-9A50-CD1A95D86D15}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{6A4BCABA-C437-4C76-A54E-AF31B8A76CB9}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{71E3A30E-9444-49D9-ABDB-B4B531D0BBA3}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{841D5A49-E48D-413C-9C28-EB3D9081D705}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{92E5039E-FF1E-4AFB-8F24-87592D20C383}
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\DataMngr
Key Deleted : HKLM\Software\Freeze.com
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{43AF84A8-BAEA-4A72-9698-7C4CB7082D92}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{71B1DF81-18D9-4E5B-9493-CAB02B6E9D8F}
Key Deleted : HKLM\Software\Produtools_Manuals_2.1
Key Deleted : HKLM\Software\SearchquMediabarTb
Key Deleted : HKLM\Software\WiseConvert
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{43AF84A8-BAEA-4A72-9698-7C4CB7082D92}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{71B1DF81-18D9-4E5B-9493-CAB02B6E9D8F}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{99079A25-328F-4BD4-BE04-00955ACAA0A7}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{9D717F81-9148-4F12-8568-69135F087DB0}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{A40DC6C5-79D0-4CA8-A185-8FF989AF1115}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{B2BF7B3F-BF0B-4C48-AEC6-F92C51BE63E1}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{CC1AC828-BB47-4361-AFB5-96EEE259DD87}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{EBD898F8-FCF6-4694-BC3B-EABC7271EEB1}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{FEFD3AF5-A346-4451-AA23-A3AD54915515}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\dednnpigldgdbpgcdpfppmlcnnbjciel
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\lpmkgpnbiojfaoklbkpfneikocaobfai
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{23265F28-619A-4DD8-82E8-93364FDDD3C2}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{27DB6B74-41DF-4CEA-A34B-8383183851F3}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4050460C-81B6-4EEE-9FCD-42ABCC35AE95}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5A03CDA4-03D7-4EE1-85A2-E34FAF3B8B1A}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{99079A25-328F-4BD4-BE04-00955ACAA0A7}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{99079A25-328F-4BD4-BE04-00955ACAA0A7}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9D717F81-9148-4F12-8568-69135F087DB0}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B2BF7B3F-BF0B-4C48-AEC6-F92C51BE63E1}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EBD898F8-FCF6-4694-BC3B-EABC7271EEB1}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Produtools_Manuals_2.1 Toolbar
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Searchqu Toolbar
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\WiseConvert Toolbar
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{9D717F81-9148-4F12-8568-69135F087DB0}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A40DC6C5-79D0-4CA8-A185-8FF989AF1115}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AD4DF010-E2FD-43CE-864A-6BD1EDC59AC2}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CC1AC828-BB47-4361-AFB5-96EEE259DD87}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FEFD3AF5-A346-4451-AA23-A3AD54915515}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{AE9908C1-3400-4B10-9061-C6C04D96E3D2}
Key Deleted : HKLM\SOFTWARE\DataMngr
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9D717F81-9148-4F12-8568-69135F087DB0}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AD4DF010-E2FD-43CE-864A-6BD1EDC59AC2}
Key Deleted : HKU\.DEFAULT\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40B7-AC73-056A5EBA4A7E}
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{B2BF7B3F-BF0B-4C48-AEC6-F92C51BE63E1}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{EBD898F8-FCF6-4694-BC3B-EABC7271EEB1}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{B2BF7B3F-BF0B-4C48-AEC6-F92C51BE63E1}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{E38FA08E-F56A-4169-ABF5-5C71E3C153A1}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{B2BF7B3F-BF0B-4C48-AEC6-F92C51BE63E1}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{EBD898F8-FCF6-4694-BC3B-EABC7271EEB1}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [DataMngr]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{99079A25-328F-4BD4-BE04-00955ACAA0A7}]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{B2BF7B3F-BF0B-4C48-AEC6-F92C51BE63E1}]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{EBD898F8-FCF6-4694-BC3B-EABC7271EEB1}]

***** [Internet Browsers] *****

-\\ Internet Explorer v8.0.6001.19328

Restored : [HKCU\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKCU\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope]

*************************

AdwCleaner[S1].txt - [14502 octets] - [02/10/2012 11:55:15]

########## EOF - C:\AdwCleaner[S1].txt - [14563 octets] ##########



A Wasted Woman is Never a Waste of Time





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users