Javascript Disabled Detected

You currently have javascript disabled. Several functions may not work. Please re-enable javascript to access full functionality.

Register a free account to unlock additional features at BleepingComputer.com

Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.

Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

How do I remove mystart by incredibar on firefox

Started by Erick913 , Dec 01 2012 09:21 PM

Please log in to reply

5 replies to this topic

#1 Erick913

Member

Members
24 posts

Gender:Male
Location:California

Posted 01 December 2012 - 09:21 PM

I am using FireFox and every time I click "Open a new Tab" it would open MyStart by IncrediBar. Can anyone help me out with this?

Using this below: Did the scan with spybot Search and Destroy and Malwarebytes Anti-Malware Free and removed the virus with both, but it still show up on my firefox "Open a new Tab"

Spybot Search and Destroy
Malwarebytes Anti-Malware Free
Superantisypware

My spec:
Windows 7 Home Premium
64 bit Operation system
Mobo: ASUS P8Z68-V PRO/GEN3 LGA1155
CPU:Intel Core i7-3770K Ivy Bridge 3.5GHz

Back to top

BC Ads
BleepingComputer.com

#2 boopme

To Insanity and Beyond

Global Moderator
54,869 posts

Gender:Male
Location:NJ USA

Posted 01 December 2012 - 09:55 PM

Hello Erick913,please run these next and tell me how it is.

Post that MBAM log also.. ]The log is automatically saved and can be viewed by clicking the Logs tab.
Copy and paste the contents of that report in your next reply. Be sure to post the complete log to include the top portion which shows the database version and your operating system.

>>>>>

Please Download TDSSkiller
Launch it.
Click on change parameters-Select TDLFS file system
Click on "Scan".
Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results.
>>>>

ADW Cleaner

Please download AdwCleaner by Xplode onto your desktop.

Close all open programs and internet browsers.
Double click on adwcleaner.exe to run the tool.
Click on Delete.
Confirm each time with Ok.
You will be prompted to restart your computer. A text file will open after the restart.
Please post the contents of that logfile with your next reply.
You can find the logfile at C:\AdwCleaner[S1].txt as well.

>>>>>>

ESET ONLINE

I'd like us to scan your machine with ESET OnlineScan

Hold down Control and click on this link to open ESET OnlineScan in a new window.
Click the button.
For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
- Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
- Double click on the
  icon on your desktop.
Check "YES, I accept the Terms of Use."
Click the Start button.
Accept any security warnings from your browser.
Under scan settings, check "Scan Archives" and "Remove found threats"
Click Advanced settings and select the following:
- Scan potentially unwanted applications
- Scan for potentially unsafe applications
- Enable Anti-Stealth technology
ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
When the scan completes, click List Threats
Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
Click the Back button.
Click the Finish button.

NOTE:Sometimes if ESET finds no infections it will not create a log.

How do I get help? Who is helping me?
Staying Updated Calendar of Updates.
For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....
Become a BleepingComputer fan: Facebook Have you seen..Select Real Security

Back to top

#3 Erick913

Member

Members
24 posts

Gender:Male
Location:California

Posted 02 December 2012 - 01:16 AM

Thanks boopme for the help. Info below

************************************************************
Malwarebytes Anti-Malware 1.65.1.1000
www.malwarebytes.org

Database version: v2012.11.24.09

Windows 7 Service Pack 1 x64 NTFS (Safe Mode)
Internet Explorer 9.0.8112.16421
Erick Molina :: ERICKMOLINA-PC [administrator]

12/1/2012 4:45:37 PM
mbam-log-2012-12-01 (16-45-37).txt

Scan type: Full scan (C:\|E:\|F:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 489013
Time elapsed: 19 minute(s), 7 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 1
HKLM\SYSTEM\CurrentControlSet\Services\IBUpdaterService (PUP.InstallBrain) -> Quarantined and deleted successfully.

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)
>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>

19:12:12.0435 2672 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
19:12:13.0095 2672 ============================================================
19:12:13.0095 2672 Current date / time: 2012/12/01 19:12:13.0095
19:12:13.0095 2672 SystemInfo:
19:12:13.0095 2672
19:12:13.0095 2672 OS Version: 6.1.7601 ServicePack: 1.0
19:12:13.0095 2672 Product type: Workstation
19:12:13.0095 2672 ComputerName: ERICKMOLINA-PC
19:12:13.0095 2672 UserName: Erick Molina
19:12:13.0095 2672 Windows directory: C:\Windows
19:12:13.0105 2672 System windows directory: C:\Windows
19:12:13.0105 2672 Running under WOW64
19:12:13.0105 2672 Processor architecture: Intel x64
19:12:13.0105 2672 Number of processors: 8
19:12:13.0105 2672 Page size: 0x1000
19:12:13.0105 2672 Boot type: Normal boot
19:12:13.0105 2672 ============================================================
19:12:13.0435 2672 Drive \Device\Harddisk0\DR0 - Size: 0x3B9E656000 (238.47 Gb), SectorSize: 0x200, Cylinders: 0x799A, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
19:12:13.0435 2672 Drive \Device\Harddisk1\DR1 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
19:12:13.0435 2672 Drive \Device\Harddisk2\DR2 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
19:12:13.0445 2672 ============================================================
19:12:13.0445 2672 \Device\Harddisk0\DR0:
19:12:13.0445 2672 MBR partitions:
19:12:13.0445 2672 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
19:12:13.0445 2672 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x1DCC0000
19:12:13.0445 2672 \Device\Harddisk1\DR1:
19:12:13.0445 2672 MBR partitions:
19:12:13.0445 2672 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x3A384800
19:12:13.0445 2672 \Device\Harddisk2\DR2:
19:12:13.0445 2672 MBR partitions:
19:12:13.0445 2672 \Device\Harddisk2\DR2\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x74705800
19:12:13.0445 2672 ============================================================
19:12:13.0445 2672 C: <-> \Device\Harddisk0\DR0\Partition2
19:12:13.0445 2672 E: <-> \Device\Harddisk1\DR1\Partition1
19:12:13.0445 2672 F: <-> \Device\Harddisk2\DR2\Partition1
19:12:13.0445 2672 ============================================================
19:12:13.0445 2672 Initialize success
19:12:13.0445 2672 ============================================================
19:12:15.0654 1908 ============================================================
19:12:15.0654 1908 Scan started
19:12:15.0654 1908 Mode: Manual;
19:12:15.0654 1908 ============================================================
19:12:16.0372 1908 ================ Scan system memory ========================
19:12:16.0372 1908 System memory - ok
19:12:16.0372 1908 ================ Scan services =============================
19:12:16.0372 1908 [ 581D88B25C4D4121824FED2CA38E562F ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
19:12:16.0372 1908 !SASCORE - ok
19:12:16.0403 1908 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
19:12:16.0403 1908 1394ohci - ok
19:12:16.0418 1908 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
19:12:16.0418 1908 ACPI - ok
19:12:16.0418 1908 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
19:12:16.0418 1908 AcpiPmi - ok
19:12:16.0418 1908 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
19:12:16.0418 1908 adp94xx - ok
19:12:16.0434 1908 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys
19:12:16.0434 1908 adpahci - ok
19:12:16.0434 1908 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
19:12:16.0434 1908 adpu320 - ok
19:12:16.0434 1908 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
19:12:16.0434 1908 AeLookupSvc - ok
19:12:16.0450 1908 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
19:12:16.0450 1908 AFD - ok
19:12:16.0450 1908 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
19:12:16.0450 1908 agp440 - ok
19:12:16.0450 1908 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
19:12:16.0450 1908 ALG - ok
19:12:16.0450 1908 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
19:12:16.0450 1908 aliide - ok
19:12:16.0450 1908 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
19:12:16.0450 1908 amdide - ok
19:12:16.0450 1908 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
19:12:16.0450 1908 AmdK8 - ok
19:12:16.0465 1908 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
19:12:16.0465 1908 AmdPPM - ok
19:12:16.0465 1908 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
19:12:16.0465 1908 amdsata - ok
19:12:16.0465 1908 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
19:12:16.0465 1908 amdsbs - ok
19:12:16.0465 1908 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
19:12:16.0465 1908 amdxata - ok
19:12:16.0465 1908 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
19:12:16.0465 1908 AppID - ok
19:12:16.0465 1908 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
19:12:16.0465 1908 AppIDSvc - ok
19:12:16.0481 1908 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
19:12:16.0481 1908 Appinfo - ok
19:12:16.0481 1908 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys
19:12:16.0481 1908 arc - ok
19:12:16.0481 1908 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys
19:12:16.0481 1908 arcsas - ok
19:12:16.0496 1908 [ 6E3F4538B33BC19259E99BE1826286A3 ] asComSvc C:\Program Files (x86)\ASUS\AXSP\1.00.14\atkexComSvc.exe
19:12:16.0496 1908 asComSvc - ok
19:12:16.0496 1908 [ A63173897EA1A73A75D0E65036DE5B15 ] asHmComSvc C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe
19:12:16.0512 1908 asHmComSvc - ok
19:12:16.0528 1908 [ FEF9DD9EA587F8886ADE43C1BEFBDAFE ] AsIO C:\Windows\syswow64\drivers\AsIO.sys
19:12:16.0528 1908 AsIO - ok
19:12:16.0528 1908 [ 6D9C024AA8F24065A6DBEAB1F431D854 ] asmthub3 C:\Windows\system32\DRIVERS\asmthub3.sys
19:12:16.0528 1908 asmthub3 - ok
19:12:16.0528 1908 [ ECAD22F15D8F17CC04F24E9A6FB00F2F ] asmtxhci C:\Windows\system32\DRIVERS\asmtxhci.sys
19:12:16.0528 1908 asmtxhci - ok
19:12:16.0543 1908 [ 108FB6DDB69E537A2EA53F425363FAE5 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
19:12:16.0543 1908 aspnet_state - ok
19:12:16.0543 1908 [ 5C31DFB196CB3A488A041881634D86D2 ] AsSysCtrlService C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe
19:12:16.0559 1908 AsSysCtrlService - ok
19:12:16.0559 1908 [ A5E4CDB420540095D1293C874B5F89AA ] ASUSFILTER C:\Windows\syswow64\drivers\ASUSFILTER.sys
19:12:16.0559 1908 ASUSFILTER - ok
19:12:16.0559 1908 [ EA569D48B2E755AF6D96F03F3335D98A ] AsusSE C:\Program Files (x86)\ASUS\PCE-N15 WLAN Card Utilities\RtlService.exe
19:12:16.0559 1908 AsusSE - ok
19:12:16.0559 1908 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
19:12:16.0559 1908 AsyncMac - ok
19:12:16.0559 1908 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
19:12:16.0559 1908 atapi - ok
19:12:16.0574 1908 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
19:12:16.0574 1908 AudioEndpointBuilder - ok
19:12:16.0574 1908 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
19:12:16.0590 1908 AudioSrv - ok
19:12:16.0590 1908 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
19:12:16.0590 1908 AxInstSV - ok
19:12:16.0590 1908 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
19:12:16.0590 1908 b06bdrv - ok
19:12:16.0590 1908 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
19:12:16.0606 1908 b57nd60a - ok
19:12:16.0606 1908 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
19:12:16.0606 1908 BDESVC - ok
19:12:16.0606 1908 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
19:12:16.0606 1908 Beep - ok
19:12:16.0606 1908 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
19:12:16.0621 1908 BFE - ok
19:12:16.0621 1908 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
19:12:16.0621 1908 BITS - ok
19:12:16.0637 1908 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
19:12:16.0637 1908 blbdrive - ok
19:12:16.0637 1908 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
19:12:16.0637 1908 bowser - ok
19:12:16.0637 1908 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
19:12:16.0637 1908 BrFiltLo - ok
19:12:16.0637 1908 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
19:12:16.0637 1908 BrFiltUp - ok
19:12:16.0637 1908 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
19:12:16.0637 1908 Browser - ok
19:12:16.0652 1908 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
19:12:16.0652 1908 Brserid - ok
19:12:16.0652 1908 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
19:12:16.0652 1908 BrSerWdm - ok
19:12:16.0652 1908 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
19:12:16.0652 1908 BrUsbMdm - ok
19:12:16.0652 1908 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
19:12:16.0652 1908 BrUsbSer - ok
19:12:16.0652 1908 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
19:12:16.0652 1908 BTHMODEM - ok
19:12:16.0652 1908 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
19:12:16.0652 1908 bthserv - ok
19:12:16.0668 1908 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
19:12:16.0668 1908 cdfs - ok
19:12:16.0668 1908 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
19:12:16.0668 1908 cdrom - ok
19:12:16.0668 1908 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
19:12:16.0668 1908 CertPropSvc - ok
19:12:16.0668 1908 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\drivers\circlass.sys
19:12:16.0668 1908 circlass - ok
19:12:16.0668 1908 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
19:12:16.0668 1908 CLFS - ok
19:12:16.0684 1908 [ 524DC3807CB1746225F9D26ADD19C319 ] CLKMSVC10_38F51D56 C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe
19:12:16.0684 1908 CLKMSVC10_38F51D56 - ok
19:12:16.0684 1908 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:12:16.0684 1908 clr_optimization_v2.0.50727_32 - ok
19:12:16.0684 1908 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
19:12:16.0699 1908 clr_optimization_v2.0.50727_64 - ok
19:12:16.0699 1908 [ 6D7C8A951AF6AD6835C029B3CB88D333 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:12:16.0699 1908 clr_optimization_v4.0.30319_32 - ok
19:12:16.0699 1908 [ 86329C35FF23CFEF0FB6C0023BA06BCE ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
19:12:16.0699 1908 clr_optimization_v4.0.30319_64 - ok
19:12:16.0699 1908 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\drivers\CmBatt.sys
19:12:16.0699 1908 CmBatt - ok
19:12:16.0699 1908 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
19:12:16.0699 1908 cmdide - ok
19:12:16.0715 1908 [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG C:\Windows\system32\Drivers\cng.sys
19:12:16.0715 1908 CNG - ok
19:12:16.0715 1908 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
19:12:16.0715 1908 Compbatt - ok
19:12:16.0715 1908 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
19:12:16.0715 1908 CompositeBus - ok
19:12:16.0715 1908 COMSysApp - ok
19:12:16.0715 1908 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
19:12:16.0715 1908 crcdisk - ok
19:12:16.0730 1908 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
19:12:16.0730 1908 CryptSvc - ok
19:12:16.0730 1908 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
19:12:16.0730 1908 DcomLaunch - ok
19:12:16.0746 1908 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
19:12:16.0746 1908 defragsvc - ok
19:12:16.0746 1908 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
19:12:16.0746 1908 DfsC - ok
19:12:16.0746 1908 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
19:12:16.0746 1908 Dhcp - ok
19:12:16.0746 1908 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
19:12:16.0746 1908 discache - ok
19:12:16.0746 1908 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\drivers\disk.sys
19:12:16.0746 1908 Disk - ok
19:12:16.0762 1908 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
19:12:16.0762 1908 Dnscache - ok
19:12:16.0762 1908 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
19:12:16.0762 1908 dot3svc - ok
19:12:16.0762 1908 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
19:12:16.0762 1908 DPS - ok
19:12:16.0762 1908 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
19:12:16.0762 1908 drmkaud - ok
19:12:16.0777 1908 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
19:12:16.0777 1908 DXGKrnl - ok
19:12:16.0777 1908 [ EAFCB4551836FF44EE775CEDDFA7A77E ] e1cexpress C:\Windows\system32\DRIVERS\e1c62x64.sys
19:12:16.0793 1908 e1cexpress - ok
19:12:16.0793 1908 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
19:12:16.0793 1908 EapHost - ok
19:12:16.0808 1908 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\drivers\evbda.sys
19:12:16.0824 1908 ebdrv - ok
19:12:16.0824 1908 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
19:12:16.0824 1908 EFS - ok
19:12:16.0840 1908 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
19:12:16.0840 1908 ehRecvr - ok
19:12:16.0840 1908 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
19:12:16.0840 1908 ehSched - ok
19:12:16.0840 1908 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys
19:12:16.0840 1908 elxstor - ok
19:12:16.0855 1908 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
19:12:16.0855 1908 ErrDev - ok
19:12:16.0855 1908 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
19:12:16.0855 1908 EventSystem - ok
19:12:16.0855 1908 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
19:12:16.0855 1908 exfat - ok
19:12:16.0855 1908 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
19:12:16.0871 1908 fastfat - ok
19:12:16.0871 1908 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
19:12:16.0871 1908 Fax - ok
19:12:16.0871 1908 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\drivers\fdc.sys
19:12:16.0871 1908 fdc - ok
19:12:16.0871 1908 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
19:12:16.0871 1908 fdPHost - ok
19:12:16.0886 1908 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
19:12:16.0886 1908 FDResPub - ok
19:12:16.0886 1908 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
19:12:16.0886 1908 FileInfo - ok
19:12:16.0886 1908 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
19:12:16.0886 1908 Filetrace - ok
19:12:16.0886 1908 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
19:12:16.0886 1908 flpydisk - ok
19:12:16.0886 1908 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
19:12:16.0886 1908 FltMgr - ok
19:12:16.0902 1908 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
19:12:16.0902 1908 FontCache - ok
19:12:16.0918 1908 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
19:12:16.0918 1908 FontCache3.0.0.0 - ok
19:12:16.0918 1908 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
19:12:16.0918 1908 FsDepends - ok
19:12:16.0918 1908 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
19:12:16.0918 1908 Fs_Rec - ok
19:12:16.0918 1908 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
19:12:16.0918 1908 fvevol - ok
19:12:16.0918 1908 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
19:12:16.0918 1908 gagp30kx - ok
19:12:16.0933 1908 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
19:12:16.0933 1908 gpsvc - ok
19:12:16.0933 1908 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
19:12:16.0933 1908 hcw85cir - ok
19:12:16.0933 1908 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
19:12:16.0933 1908 HdAudAddService - ok
19:12:16.0949 1908 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
19:12:16.0949 1908 HDAudBus - ok
19:12:16.0949 1908 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
19:12:16.0949 1908 HidBatt - ok
19:12:16.0949 1908 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\drivers\hidbth.sys
19:12:16.0949 1908 HidBth - ok
19:12:16.0949 1908 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\drivers\hidir.sys
19:12:16.0949 1908 HidIr - ok
19:12:16.0949 1908 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
19:12:16.0949 1908 hidserv - ok
19:12:16.0949 1908 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
19:12:16.0949 1908 HidUsb - ok
19:12:16.0964 1908 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
19:12:16.0964 1908 hkmsvc - ok
19:12:16.0964 1908 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
19:12:16.0964 1908 HomeGroupListener - ok
19:12:16.0964 1908 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
19:12:16.0964 1908 HomeGroupProvider - ok
19:12:16.0964 1908 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
19:12:16.0964 1908 HpSAMD - ok
19:12:16.0980 1908 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
19:12:16.0980 1908 HTTP - ok
19:12:16.0980 1908 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
19:12:16.0980 1908 hwpolicy - ok
19:12:16.0980 1908 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
19:12:16.0980 1908 i8042prt - ok
19:12:16.0996 1908 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
19:12:16.0996 1908 iaStorV - ok
19:12:16.0996 1908 [ 8B672417438380704E6A39B2F9D78EE8 ] IB Updater C:\Program Files\IB Updater\ExtensionUpdaterService.exe
19:12:16.0996 1908 IB Updater - ok
19:12:17.0011 1908 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
19:12:17.0011 1908 idsvc - ok
19:12:17.0011 1908 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\drivers\iirsp.sys
19:12:17.0011 1908 iirsp - ok
19:12:17.0011 1908 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
19:12:17.0027 1908 IKEEXT - ok
19:12:17.0027 1908 [ D7B978F4504D3DA95A21002863D0E7EE ] Intel® PROSet Monitoring Service C:\Windows\system32\IProsetMonitor.exe
19:12:17.0027 1908 Intel® PROSet Monitoring Service - ok
19:12:17.0027 1908 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
19:12:17.0027 1908 intelide - ok
19:12:17.0027 1908 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
19:12:17.0027 1908 intelppm - ok
19:12:17.0027 1908 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
19:12:17.0027 1908 IPBusEnum - ok
19:12:17.0042 1908 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
19:12:17.0042 1908 IpFilterDriver - ok
19:12:17.0042 1908 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
19:12:17.0042 1908 iphlpsvc - ok
19:12:17.0042 1908 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
19:12:17.0042 1908 IPMIDRV - ok
19:12:17.0058 1908 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
19:12:17.0058 1908 IPNAT - ok
19:12:17.0058 1908 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
19:12:17.0058 1908 IRENUM - ok
19:12:17.0058 1908 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
19:12:17.0058 1908 isapnp - ok
19:12:17.0058 1908 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
19:12:17.0058 1908 iScsiPrt - ok
19:12:17.0058 1908 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
19:12:17.0058 1908 kbdclass - ok
19:12:17.0058 1908 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
19:12:17.0058 1908 kbdhid - ok
19:12:17.0074 1908 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
19:12:17.0074 1908 KeyIso - ok
19:12:17.0074 1908 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
19:12:17.0074 1908 KSecDD - ok
19:12:17.0074 1908 [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
19:12:17.0074 1908 KSecPkg - ok
19:12:17.0074 1908 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
19:12:17.0074 1908 ksthunk - ok
19:12:17.0074 1908 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
19:12:17.0089 1908 KtmRm - ok
19:12:17.0089 1908 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
19:12:17.0089 1908 LanmanServer - ok
19:12:17.0089 1908 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
19:12:17.0089 1908 LanmanWorkstation - ok
19:12:17.0089 1908 [ FA4A45C179AB0E0F1A31B9751D4B18D7 ] LightScribeService C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
19:12:17.0089 1908 LightScribeService - ok
19:12:17.0089 1908 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
19:12:17.0089 1908 lltdio - ok
19:12:17.0105 1908 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
19:12:17.0105 1908 lltdsvc - ok
19:12:17.0105 1908 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
19:12:17.0105 1908 lmhosts - ok
19:12:17.0105 1908 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
19:12:17.0105 1908 LSI_FC - ok
19:12:17.0105 1908 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
19:12:17.0105 1908 LSI_SAS - ok
19:12:17.0120 1908 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
19:12:17.0120 1908 LSI_SAS2 - ok
19:12:17.0120 1908 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
19:12:17.0120 1908 LSI_SCSI - ok
19:12:17.0120 1908 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
19:12:17.0120 1908 luafv - ok
19:12:17.0120 1908 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
19:12:17.0120 1908 Mcx2Svc - ok
19:12:17.0120 1908 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\drivers\megasas.sys
19:12:17.0120 1908 megasas - ok
19:12:17.0136 1908 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
19:12:17.0136 1908 MegaSR - ok
19:12:17.0136 1908 [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
19:12:17.0136 1908 MEIx64 - ok
19:12:17.0136 1908 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
19:12:17.0136 1908 MMCSS - ok
19:12:17.0136 1908 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
19:12:17.0136 1908 Modem - ok
19:12:17.0136 1908 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
19:12:17.0136 1908 monitor - ok
19:12:17.0136 1908 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
19:12:17.0136 1908 mouclass - ok
19:12:17.0136 1908 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
19:12:17.0152 1908 mouhid - ok
19:12:17.0152 1908 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
19:12:17.0152 1908 mountmgr - ok
19:12:17.0152 1908 [ 8C7336950F1E69CDFD811CBBD9CF00A2 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
19:12:17.0152 1908 MozillaMaintenance - ok
19:12:17.0152 1908 [ 05BF204EC0E82CC4A054DB189C8A3D84 ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
19:12:17.0152 1908 MpFilter - ok
19:12:17.0152 1908 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
19:12:17.0152 1908 mpio - ok
19:12:17.0167 1908 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
19:12:17.0167 1908 mpsdrv - ok
19:12:17.0167 1908 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
19:12:17.0167 1908 MpsSvc - ok
19:12:17.0183 1908 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
19:12:17.0183 1908 MRxDAV - ok
19:12:17.0183 1908 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
19:12:17.0183 1908 mrxsmb - ok
19:12:17.0183 1908 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
19:12:17.0183 1908 mrxsmb10 - ok
19:12:17.0183 1908 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
19:12:17.0183 1908 mrxsmb20 - ok
19:12:17.0183 1908 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
19:12:17.0183 1908 msahci - ok
19:12:17.0198 1908 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
19:12:17.0198 1908 msdsm - ok
19:12:17.0198 1908 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
19:12:17.0198 1908 MSDTC - ok
19:12:17.0198 1908 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
19:12:17.0198 1908 Msfs - ok
19:12:17.0198 1908 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
19:12:17.0198 1908 mshidkmdf - ok
19:12:17.0198 1908 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
19:12:17.0198 1908 msisadrv - ok
19:12:17.0214 1908 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
19:12:17.0214 1908 MSiSCSI - ok
19:12:17.0214 1908 msiserver - ok
19:12:17.0214 1908 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
19:12:17.0214 1908 MSKSSRV - ok
19:12:17.0214 1908 [ CC8E4F72F21340A4D3A3D4DB50313EF5 ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
19:12:17.0214 1908 MsMpSvc - ok
19:12:17.0214 1908 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
19:12:17.0214 1908 MSPCLOCK - ok
19:12:17.0214 1908 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
19:12:17.0214 1908 MSPQM - ok
19:12:17.0214 1908 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
19:12:17.0230 1908 MsRPC - ok
19:12:17.0230 1908 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
19:12:17.0230 1908 mssmbios - ok
19:12:17.0230 1908 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
19:12:17.0230 1908 MSTEE - ok
19:12:17.0230 1908 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
19:12:17.0230 1908 MTConfig - ok
19:12:17.0230 1908 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
19:12:17.0230 1908 Mup - ok
19:12:17.0230 1908 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
19:12:17.0245 1908 napagent - ok
19:12:17.0245 1908 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
19:12:17.0245 1908 NativeWifiP - ok
19:12:17.0261 1908 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
19:12:17.0261 1908 NDIS - ok
19:12:17.0261 1908 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
19:12:17.0261 1908 NdisCap - ok
19:12:17.0261 1908 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
19:12:17.0261 1908 NdisTapi - ok
19:12:17.0261 1908 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
19:12:17.0261 1908 Ndisuio - ok
19:12:17.0261 1908 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
19:12:17.0261 1908 NdisWan - ok
19:12:17.0276 1908 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
19:12:17.0276 1908 NDProxy - ok
19:12:17.0276 1908 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
19:12:17.0276 1908 NetBIOS - ok
19:12:17.0276 1908 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
19:12:17.0276 1908 NetBT - ok
19:12:17.0276 1908 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
19:12:17.0276 1908 Netlogon - ok
19:12:17.0276 1908 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
19:12:17.0292 1908 Netman - ok
19:12:17.0292 1908 [ 5243CFC2E7161C91C2B355240035B9E4 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:12:17.0292 1908 NetMsmqActivator - ok
19:12:17.0292 1908 [ 5243CFC2E7161C91C2B355240035B9E4 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:12:17.0292 1908 NetPipeActivator - ok
19:12:17.0292 1908 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
19:12:17.0292 1908 netprofm - ok
19:12:17.0308 1908 [ 5243CFC2E7161C91C2B355240035B9E4 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:12:17.0308 1908 NetTcpActivator - ok
19:12:17.0308 1908 [ 5243CFC2E7161C91C2B355240035B9E4 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:12:17.0308 1908 NetTcpPortSharing - ok
19:12:17.0308 1908 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
19:12:17.0308 1908 nfrd960 - ok
19:12:17.0308 1908 [ 5FF89F20317309D28AC1EDEB0CD1BA72 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
19:12:17.0308 1908 NisDrv - ok
19:12:17.0323 1908 [ 79E80B10FE8F6662E0C9162A68C43444 ] NisSrv c:\Program Files\Microsoft Security Client\NisSrv.exe
19:12:17.0323 1908 NisSrv - ok
19:12:17.0323 1908 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
19:12:17.0323 1908 NlaSvc - ok
19:12:17.0323 1908 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
19:12:17.0323 1908 Npfs - ok
19:12:17.0323 1908 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
19:12:17.0323 1908 nsi - ok
19:12:17.0323 1908 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
19:12:17.0323 1908 nsiproxy - ok
19:12:17.0339 1908 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
19:12:17.0354 1908 Ntfs - ok
19:12:17.0354 1908 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
19:12:17.0354 1908 Null - ok
19:12:17.0354 1908 [ 1F07B814C0BB5AABA703ABFF1F31F2E8 ] NVHDA C:\Windows\system32\drivers\nvhda64v.sys
19:12:17.0354 1908 NVHDA - ok
19:12:17.0432 1908 [ C9FC4C5A7EBE09A40C7DC37C04542900 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
19:12:17.0479 1908 nvlddmkm - ok
19:12:17.0479 1908 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
19:12:17.0479 1908 nvraid - ok
19:12:17.0479 1908 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
19:12:17.0479 1908 nvstor - ok
19:12:17.0495 1908 [ 7056BD6DE1DBF6B8665038AF35D9E146 ] nvsvc C:\Windows\system32\nvvsvc.exe
19:12:17.0495 1908 nvsvc - ok
19:12:17.0510 1908 [ 1B6FA911436D227B24554C33BC68B774 ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
19:12:17.0510 1908 nvUpdatusService - ok
19:12:17.0510 1908 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
19:12:17.0510 1908 nv_agp - ok
19:12:17.0510 1908 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
19:12:17.0510 1908 ohci1394 - ok
19:12:17.0526 1908 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
19:12:17.0526 1908 p2pimsvc - ok
19:12:17.0526 1908 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
19:12:17.0526 1908 p2psvc - ok
19:12:17.0526 1908 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\drivers\parport.sys
19:12:17.0526 1908 Parport - ok
19:12:17.0542 1908 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
19:12:17.0542 1908 partmgr - ok
19:12:17.0542 1908 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
19:12:17.0542 1908 PcaSvc - ok
19:12:17.0542 1908 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
19:12:17.0542 1908 pci - ok
19:12:17.0542 1908 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
19:12:17.0542 1908 pciide - ok
19:12:17.0542 1908 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
19:12:17.0542 1908 pcmcia - ok
19:12:17.0557 1908 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
19:12:17.0557 1908 pcw - ok
19:12:17.0557 1908 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
19:12:17.0557 1908 PEAUTH - ok
19:12:17.0573 1908 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
19:12:17.0573 1908 PerfHost - ok
19:12:17.0588 1908 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
19:12:17.0588 1908 pla - ok
19:12:17.0604 1908 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
19:12:17.0604 1908 PlugPlay - ok
19:12:17.0604 1908 PnkBstrA - ok
19:12:17.0604 1908 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
19:12:17.0604 1908 PNRPAutoReg - ok
19:12:17.0620 1908 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
19:12:17.0620 1908 PNRPsvc - ok
19:12:17.0620 1908 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
19:12:17.0620 1908 PolicyAgent - ok
19:12:17.0635 1908 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
19:12:17.0635 1908 Power - ok
19:12:17.0635 1908 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
19:12:17.0635 1908 PptpMiniport - ok
19:12:17.0635 1908 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\drivers\processr.sys
19:12:17.0635 1908 Processor - ok
19:12:17.0635 1908 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
19:12:17.0635 1908 ProfSvc - ok
19:12:17.0635 1908 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
19:12:17.0635 1908 ProtectedStorage - ok
19:12:17.0651 1908 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
19:12:17.0651 1908 Psched - ok
19:12:17.0651 1908 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
19:12:17.0666 1908 ql2300 - ok
19:12:17.0666 1908 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
19:12:17.0666 1908 ql40xx - ok
19:12:17.0666 1908 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
19:12:17.0666 1908 QWAVE - ok
19:12:17.0666 1908 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
19:12:17.0666 1908 QWAVEdrv - ok
19:12:17.0666 1908 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
19:12:17.0666 1908 RasAcd - ok
19:12:17.0682 1908 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
19:12:17.0682 1908 RasAgileVpn - ok
19:12:17.0682 1908 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
19:12:17.0682 1908 RasAuto - ok
19:12:17.0682 1908 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
19:12:17.0682 1908 Rasl2tp - ok
19:12:17.0682 1908 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
19:12:17.0682 1908 RasMan - ok
19:12:17.0698 1908 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
19:12:17.0698 1908 RasPppoe - ok
19:12:17.0698 1908 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
19:12:17.0698 1908 RasSstp - ok
19:12:17.0698 1908 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
19:12:17.0698 1908 rdbss - ok
19:12:17.0698 1908 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\drivers\rdpbus.sys
19:12:17.0698 1908 rdpbus - ok
19:12:17.0698 1908 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
19:12:17.0698 1908 RDPCDD - ok
19:12:17.0713 1908 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
19:12:17.0713 1908 RDPENCDD - ok
19:12:17.0713 1908 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
19:12:17.0713 1908 RDPREFMP - ok
19:12:17.0713 1908 [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
19:12:17.0713 1908 RdpVideoMiniport - ok
19:12:17.0713 1908 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
19:12:17.0713 1908 RDPWD - ok
19:12:17.0713 1908 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
19:12:17.0729 1908 rdyboost - ok
19:12:17.0729 1908 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
19:12:17.0729 1908 RemoteAccess - ok
19:12:17.0729 1908 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
19:12:17.0729 1908 RemoteRegistry - ok
19:12:17.0729 1908 [ 7CCAEBCAB6FC1ED0206C07E083E79207 ] RichVideo C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
19:12:17.0729 1908 RichVideo - ok
19:12:17.0729 1908 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
19:12:17.0744 1908 RpcEptMapper - ok
19:12:17.0744 1908 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
19:12:17.0744 1908 RpcLocator - ok
19:12:17.0744 1908 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
19:12:17.0744 1908 RpcSs - ok
19:12:17.0744 1908 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
19:12:17.0744 1908 rspndr - ok
19:12:17.0744 1908 [ D63C9C1A427A134461258B7B8742858F ] RTCore64 C:\Program Files (x86)\EVGA Precision X\RTCore64.sys
19:12:17.0744 1908 RTCore64 - ok
19:12:17.0760 1908 [ 177963A6EEBAA9EF3B56A2DBE9D5D0FC ] RTL8192Ce C:\Windows\system32\DRIVERS\rtl8192Ce.sys
19:12:17.0760 1908 RTL8192Ce - ok
19:12:17.0760 1908 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
19:12:17.0776 1908 SamSs - ok
19:12:17.0776 1908 [ 3289766038DB2CB14D07DC84392138D5 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
19:12:17.0776 1908 SASDIFSV - ok
19:12:17.0776 1908 [ 58A38E75F3316A83C23DF6173D41F2B5 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
19:12:17.0776 1908 SASKUTIL - ok
19:12:17.0776 1908 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
19:12:17.0776 1908 sbp2port - ok
19:12:17.0776 1908 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
19:12:17.0776 1908 SCardSvr - ok
19:12:17.0776 1908 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
19:12:17.0776 1908 scfilter - ok
19:12:17.0791 1908 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
19:12:17.0791 1908 Schedule - ok
19:12:17.0791 1908 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
19:12:17.0791 1908 SCPolicySvc - ok
19:12:17.0807 1908 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
19:12:17.0807 1908 SDRSVC - ok
19:12:17.0807 1908 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
19:12:17.0807 1908 secdrv - ok
19:12:17.0807 1908 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
19:12:17.0807 1908 seclogon - ok
19:12:17.0807 1908 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
19:12:17.0807 1908 SENS - ok
19:12:17.0807 1908 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
19:12:17.0807 1908 SensrSvc - ok
19:12:17.0822 1908 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\drivers\serenum.sys
19:12:17.0822 1908 Serenum - ok
19:12:17.0822 1908 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\drivers\serial.sys
19:12:17.0822 1908 Serial - ok
19:12:17.0822 1908 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\drivers\sermouse.sys
19:12:17.0822 1908 sermouse - ok
19:12:17.0838 1908 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
19:12:17.0838 1908 SessionEnv - ok
19:12:17.0838 1908 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
19:12:17.0838 1908 sffdisk - ok
19:12:17.0838 1908 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
19:12:17.0838 1908 sffp_mmc - ok
19:12:17.0838 1908 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
19:12:17.0838 1908 sffp_sd - ok
19:12:17.0838 1908 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
19:12:17.0838 1908 sfloppy - ok
19:12:17.0838 1908 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
19:12:17.0854 1908 SharedAccess - ok
19:12:17.0854 1908 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
19:12:17.0854 1908 ShellHWDetection - ok
19:12:17.0854 1908 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
19:12:17.0854 1908 SiSRaid2 - ok
19:12:17.0854 1908 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
19:12:17.0854 1908 SiSRaid4 - ok
19:12:17.0854 1908 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
19:12:17.0854 1908 Smb - ok
19:12:17.0869 1908 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
19:12:17.0869 1908 SNMPTRAP - ok
19:12:17.0869 1908 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
19:12:17.0869 1908 spldr - ok
19:12:17.0869 1908 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
19:12:17.0869 1908 Spooler - ok
19:12:17.0900 1908 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
19:12:17.0916 1908 sppsvc - ok
19:12:17.0916 1908 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
19:12:17.0916 1908 sppuinotify - ok
19:12:17.0916 1908 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
19:12:17.0916 1908 srv - ok
19:12:17.0932 1908 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
19:12:17.0932 1908 srv2 - ok
19:12:17.0932 1908 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
19:12:17.0932 1908 srvnet - ok
19:12:17.0932 1908 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
19:12:17.0932 1908 SSDPSRV - ok
19:12:17.0947 1908 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
19:12:17.0947 1908 SstpSvc - ok
19:12:17.0947 1908 Steam Client Service - ok
19:12:17.0947 1908 [ 88BD236A405DBC139E9DE278EF17A322 ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
19:12:17.0947 1908 Stereo Service - ok
19:12:17.0947 1908 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\drivers\stexstor.sys
19:12:17.0947 1908 stexstor - ok
19:12:17.0963 1908 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
19:12:17.0963 1908 stisvc - ok
19:12:17.0963 1908 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
19:12:17.0963 1908 swenum - ok
19:12:17.0963 1908 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
19:12:17.0978 1908 swprv - ok
19:12:17.0978 1908 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
19:12:17.0994 1908 SysMain - ok
19:12:17.0994 1908 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
19:12:17.0994 1908 TabletInputService - ok
19:12:17.0994 1908 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
19:12:18.0010 1908 TapiSrv - ok
19:12:18.0010 1908 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
19:12:18.0010 1908 TBS - ok
19:12:18.0025 1908 [ 37608401DFDB388CAF66917F6B2D6FB0 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
19:12:18.0025 1908 Tcpip - ok
19:12:18.0041 1908 [ 37608401DFDB388CAF66917F6B2D6FB0 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
19:12:18.0056 1908 TCPIP6 - ok
19:12:18.0056 1908 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
19:12:18.0056 1908 tcpipreg - ok
19:12:18.0056 1908 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
19:12:18.0056 1908 TDPIPE - ok
19:12:18.0056 1908 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
19:12:18.0056 1908 TDTCP - ok
19:12:18.0056 1908 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
19:12:18.0056 1908 tdx - ok
19:12:18.0056 1908 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
19:12:18.0056 1908 TermDD - ok
19:12:18.0072 1908 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
19:12:18.0072 1908 TermService - ok
19:12:18.0072 1908 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
19:12:18.0072 1908 Themes - ok
19:12:18.0072 1908 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
19:12:18.0072 1908 THREADORDER - ok
19:12:18.0088 1908 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
19:12:18.0088 1908 TrkWks - ok
19:12:18.0088 1908 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
19:12:18.0088 1908 TrustedInstaller - ok
19:12:18.0088 1908 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
19:12:18.0088 1908 tssecsrv - ok
19:12:18.0088 1908 [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
19:12:18.0088 1908 TsUsbFlt - ok
19:12:18.0088 1908 [ AD64450A4ABE076F5CB34CC08EEACB07 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
19:12:18.0088 1908 TsUsbGD - ok
19:12:18.0103 1908 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
19:12:18.0103 1908 tunnel - ok
19:12:18.0103 1908 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
19:12:18.0103 1908 uagp35 - ok
19:12:18.0103 1908 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
19:12:18.0103 1908 udfs - ok
19:12:18.0103 1908 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
19:12:18.0103 1908 UI0Detect - ok
19:12:18.0119 1908 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
19:12:18.0119 1908 uliagpkx - ok
19:12:18.0119 1908 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
19:12:18.0119 1908 umbus - ok
19:12:18.0119 1908 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\drivers\umpass.sys
19:12:18.0119 1908 UmPass - ok
19:12:18.0119 1908 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
19:12:18.0119 1908 upnphost - ok
19:12:18.0119 1908 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
19:12:18.0119 1908 usbaudio - ok
19:12:18.0134 1908 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
19:12:18.0134 1908 usbccgp - ok
19:12:18.0134 1908 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
19:12:18.0134 1908 usbcir - ok
19:12:18.0134 1908 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys
19:12:18.0134 1908 usbehci - ok
19:12:18.0134 1908 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
19:12:18.0134 1908 usbhub - ok
19:12:18.0150 1908 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
19:12:18.0150 1908 usbohci - ok
19:12:18.0150 1908 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\drivers\usbprint.sys
19:12:18.0150 1908 usbprint - ok
19:12:18.0150 1908 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
19:12:18.0150 1908 USBSTOR - ok
19:12:18.0150 1908 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
19:12:18.0150 1908 usbuhci - ok
19:12:18.0150 1908 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
19:12:18.0150 1908 UxSms - ok
19:12:18.0150 1908 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
19:12:18.0150 1908 VaultSvc - ok
19:12:18.0166 1908 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
19:12:18.0166 1908 vdrvroot - ok
19:12:18.0166 1908 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
19:12:18.0166 1908 vds - ok
19:12:18.0166 1908 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
19:12:18.0166 1908 vga - ok
19:12:18.0166 1908 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
19:12:18.0166 1908 VgaSave - ok
19:12:18.0181 1908 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
19:12:18.0181 1908 vhdmp - ok
19:12:18.0181 1908 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
19:12:18.0181 1908 viaide - ok
19:12:18.0181 1908 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
19:12:18.0181 1908 volmgr - ok
19:12:18.0181 1908 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
19:12:18.0181 1908 volmgrx - ok
19:12:18.0197 1908 [ DF8126BD41180351A093A3AD2FC8903B ] volsnap C:\Windows\system32\drivers\volsnap.sys
19:12:18.0197 1908 volsnap - ok
19:12:18.0197 1908 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
19:12:18.0197 1908 vsmraid - ok
19:12:18.0212 1908 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
19:12:18.0212 1908 VSS - ok
19:12:18.0212 1908 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
19:12:18.0212 1908 vwifibus - ok
19:12:18.0212 1908 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
19:12:18.0212 1908 vwififlt - ok
19:12:18.0228 1908 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
19:12:18.0228 1908 W32Time - ok
19:12:18.0228 1908 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\drivers\wacompen.sys
19:12:18.0228 1908 WacomPen - ok
19:12:18.0228 1908 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
19:12:18.0228 1908 WANARP - ok
19:12:18.0228 1908 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
19:12:18.0228 1908 Wanarpv6 - ok
19:12:18.0244 1908 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
19:12:18.0244 1908 WatAdminSvc - ok
19:12:18.0259 1908 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
19:12:18.0259 1908 wbengine - ok
19:12:18.0275 1908 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
19:12:18.0275 1908 WbioSrvc - ok
19:12:18.0275 1908 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
19:12:18.0275 1908 wcncsvc - ok
19:12:18.0275 1908 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
19:12:18.0275 1908 WcsPlugInService - ok
19:12:18.0275 1908 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\drivers\wd.sys
19:12:18.0275 1908 Wd - ok
19:12:18.0290 1908 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
19:12:18.0290 1908 Wdf01000 - ok
19:12:18.0290 1908 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
19:12:18.0290 1908 WdiServiceHost - ok
19:12:18.0290 1908 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
19:12:18.0290 1908 WdiSystemHost - ok
19:12:18.0306 1908 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
19:12:18.0306 1908 WebClient - ok
19:12:18.0306 1908 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
19:12:18.0306 1908 Wecsvc - ok
19:12:18.0306 1908 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
19:12:18.0306 1908 wercplsupport - ok
19:12:18.0306 1908 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
19:12:18.0306 1908 WerSvc - ok
19:12:18.0322 1908 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
19:12:18.0322 1908 WfpLwf - ok
19:12:18.0322 1908 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
19:12:18.0322 1908 WIMMount - ok
19:12:18.0322 1908 WinDefend - ok
19:12:18.0322 1908 WinHttpAutoProxySvc - ok
19:12:18.0322 1908 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
19:12:18.0337 1908 Winmgmt - ok
19:12:18.0337 1908 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
19:12:18.0353 1908 WinRM - ok
19:12:18.0368 1908 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
19:12:18.0368 1908 Wlansvc - ok
19:12:18.0368 1908 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
19:12:18.0368 1908 WmiAcpi - ok
19:12:18.0368 1908 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
19:12:18.0368 1908 wmiApSrv - ok
19:12:18.0368 1908 WMPNetworkSvc - ok
19:12:18.0384 1908 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
19:12:18.0384 1908 WPCSvc - ok
19:12:18.0384 1908 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
19:12:18.0384 1908 WPDBusEnum - ok
19:12:18.0384 1908 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
19:12:18.0384 1908 ws2ifsl - ok
19:12:18.0384 1908 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
19:12:18.0384 1908 wscsvc - ok
19:12:18.0384 1908 WSearch - ok
19:12:18.0415 1908 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
19:12:18.0415 1908 wuauserv - ok
19:12:18.0415 1908 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
19:12:18.0415 1908 WudfPf - ok
19:12:18.0431 1908 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
19:12:18.0431 1908 WUDFRd - ok
19:12:18.0431 1908 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
19:12:18.0431 1908 wudfsvc - ok
19:12:18.0431 1908 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
19:12:18.0431 1908 WwanSvc - ok
19:12:18.0431 1908 [ 2C6BC21B2D5B58D8B1D638C1704CB494 ] xusb21 C:\Windows\system32\DRIVERS\xusb21.sys
19:12:18.0431 1908 xusb21 - ok
19:12:18.0431 1908 ================ Scan global ===============================
19:12:18.0446 1908 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
19:12:18.0446 1908 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
19:12:18.0446 1908 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
19:12:18.0446 1908 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
19:12:18.0462 1908 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
19:12:18.0462 1908 [Global] - ok
19:12:18.0462 1908 ================ Scan MBR ==================================
19:12:18.0462 1908 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
19:12:18.0509 1908 \Device\Harddisk0\DR0 - ok
19:12:18.0509 1908 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
19:12:18.0509 1908 \Device\Harddisk1\DR1 - ok
19:12:18.0509 1908 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk2\DR2
19:12:18.0509 1908 \Device\Harddisk2\DR2 - ok
19:12:18.0509 1908 ================ Scan VBR ==================================
19:12:18.0509 1908 [ 04D2B10668764EDFFCDE095B452F88C2 ] \Device\Harddisk0\DR0\Partition1
19:12:18.0509 1908 \Device\Harddisk0\DR0\Partition1 - ok
19:12:18.0509 1908 [ 963F6968DD21E9D90BD4C4EA281E858F ] \Device\Harddisk0\DR0\Partition2
19:12:18.0509 1908 \Device\Harddisk0\DR0\Partition2 - ok
19:12:18.0509 1908 [ D16CDFF2FA3C8738C58AC6B1E07E9774 ] \Device\Harddisk1\DR1\Partition1
19:12:18.0509 1908 \Device\Harddisk1\DR1\Partition1 - ok
19:12:18.0509 1908 [ 839CB6944883F6313FF46193E770F488 ] \Device\Harddisk2\DR2\Partition1
19:12:18.0524 1908 \Device\Harddisk2\DR2\Partition1 - ok
19:12:18.0524 1908 ============================================================
19:12:18.0524 1908 Scan finished
19:12:18.0524 1908 ============================================================
19:12:18.0524 2108 Detected object count: 0
19:12:18.0524 2108 Actual detected object count: 0
19:12:21.0036 1956 Deinitialize success

>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>

# AdwCleaner v2.010 - Logfile created 12/01/2012 at 19:13:46
# Updated 29/11/2012 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : Erick Molina - ERICKMOLINA-PC
# Boot Mode : Normal
# Running from : C:\Users\Erick Molina\Desktop\AdwCleaner.exe
# Option [Delete]

***** [Services] *****

Stopped & Deleted : IB Updater

***** [Files / Folders] *****

File Deleted : C:\user.js
File Deleted : C:\Users\Erick Molina\AppData\Roaming\Mozilla\Firefox\Profiles\uxro2cac.default\searchplugins\funmoods.xml
File Deleted : C:\Users\Erick Molina\AppData\Roaming\Mozilla\Firefox\Profiles\uxro2cac.default\searchplugins\MyStart Search.xml
Folder Deleted : C:\Program Files\IB Updater
Folder Deleted : C:\Users\Erick Molina\AppData\Roaming\OpenCandy
Folder Deleted : C:\Windows\SysWOW64\WNLT

***** [Registry] *****

Key Deleted : HKCU\Software\AppDataLow\Software\Crossrider
Key Deleted : HKCU\Software\InstalledBrowserExtensions
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{B7971660-A1CE-4FDD-B9E0-2C37D77AFB0B}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{960DF771-CFCB-4E53-A5B5-6EF2BBE6E706}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0004493.BHO
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0004493.BHO.1
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0004493.Sandbox
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0004493.Sandbox.1
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0019866.BHO
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0019866.BHO.1
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0019866.Sandbox
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0019866.Sandbox.1
Key Deleted : HKLM\Software\IB Updater
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\incredibar_install_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\incredibar_install_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\IncredibarToolbar_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\IncredibarToolbar_RASMANCS
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{B7971660-A1CE-4FDD-B9E0-2C37D77AFB0B}
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\bbjciahceamgodcoidkjpchnokgfpphh
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{B7971660-A1CE-4FDD-B9E0-2C37D77AFB0B}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{336D0C35-8A85-403a-B9D2-65C292C39087}_is1
Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\extensions [{336D0C35-8A85-403a-B9D2-65C292C39087}]

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16421

[OK] Registry is clean.

-\\ Mozilla Firefox v17.0.1 (en-US)

Profile name : default
File : C:\Users\Erick Molina\AppData\Roaming\Mozilla\Firefox\Profiles\uxro2cac.default\prefs.js

C:\Users\Erick Molina\AppData\Roaming\Mozilla\Firefox\Profiles\uxro2cac.default\user.js ... Deleted !

Deleted : user_pref("extensions.crossriderapp19866.19866.InstallationThankYouPage", true);
Deleted : user_pref("extensions.crossriderapp19866.19866.InstallationTime", 1354407289);
Deleted : user_pref("extensions.crossriderapp19866.19866.InstallationUserSettings.searchUserConifrmation", fal[...]
Deleted : user_pref("extensions.crossriderapp19866.19866.InstallationUserSettings.setHomepage", false);
Deleted : user_pref("extensions.crossriderapp19866.19866.InstallationUserSettings.setNewTab", false);
Deleted : user_pref("extensions.crossriderapp19866.19866.InstallationUserSettings.setSearch", false);
Deleted : user_pref("extensions.crossriderapp19866.19866.active", true);
Deleted : user_pref("extensions.crossriderapp19866.19866.addressbar", "");
Deleted : user_pref("extensions.crossriderapp19866.19866.addressbarenhanced", "");
Deleted : user_pref("extensions.crossriderapp19866.19866.backgroundjs", "\n\n\"undefined\"!=typeof _GPL_BG_NEW[...]
Deleted : user_pref("extensions.crossriderapp19866.19866.backgroundver", 3);
Deleted : user_pref("extensions.crossriderapp19866.19866.can_run_bg_code", true);
Deleted : user_pref("extensions.crossriderapp19866.19866.certdomaininstaller", "");
Deleted : user_pref("extensions.crossriderapp19866.19866.changeprevious", false);
Deleted : user_pref("extensions.crossriderapp19866.19866.cookie.InstallationTime.expiration", "Fri Feb 01 2030[...]
Deleted : user_pref("extensions.crossriderapp19866.19866.cookie.InstallationTime.value", "1354407289");
Deleted : user_pref("extensions.crossriderapp19866.19866.cookie.InstallerParams.expiration", "Fri Feb 01 2030 [...]
Deleted : user_pref("extensions.crossriderapp19866.19866.cookie._GPL_aoi.expiration", "Fri Feb 01 2030 00:00:0[...]
Deleted : user_pref("extensions.crossriderapp19866.19866.cookie._GPL_aoi.value", "1354407289");
Deleted : user_pref("extensions.crossriderapp19866.19866.cookie._GPL_blocklist.expiration", "Sat Dec 01 2012 1[...]
Deleted : user_pref("extensions.crossriderapp19866.19866.cookie._GPL_blocklist.value", "%22nonexistantdomain.c[...]
Deleted : user_pref("extensions.crossriderapp19866.19866.cookie._GPL_country_code.expiration", "Sat Dec 08 201[...]
Deleted : user_pref("extensions.crossriderapp19866.19866.cookie._GPL_country_code.value", "%22US%22");
Deleted : user_pref("extensions.crossriderapp19866.19866.cookie._GPL_crr.expiration", "Fri Feb 01 2030 00:00:0[...]
Deleted : user_pref("extensions.crossriderapp19866.19866.cookie._GPL_crr.value", "1354417019");
Deleted : user_pref("extensions.crossriderapp19866.19866.cookie._GPL_hotfix20111102645.expiration", "Fri Feb 0[...]
Deleted : user_pref("extensions.crossriderapp19866.19866.cookie._GPL_hotfix20111102645.value", "%221%22");
Deleted : user_pref("extensions.crossriderapp19866.19866.cookie._GPL_installer_params.expiration", "Fri Feb 01[...]
Deleted : user_pref("extensions.crossriderapp19866.19866.cookie._GPL_installer_params.value", "%7B%22source_id[...]
Deleted : user_pref("extensions.crossriderapp19866.19866.cookie._GPL_parent_zoneid.expiration", "Fri Feb 01 20[...]
Deleted : user_pref("extensions.crossriderapp19866.19866.cookie._GPL_parent_zoneid.value", "%22106776%22");
Deleted : user_pref("extensions.crossriderapp19866.19866.cookie._GPL_pc_20120828.expiration", "Fri Feb 01 2030[...]
Deleted : user_pref("extensions.crossriderapp19866.19866.cookie._GPL_pc_20120828.value", "1354407376728");
Deleted : user_pref("extensions.crossriderapp19866.19866.cookie._GPL_product_id.expiration", "Fri Feb 01 2030 [...]
Deleted : user_pref("extensions.crossriderapp19866.19866.cookie._GPL_product_id.value", "%221341%22");
Deleted : user_pref("extensions.crossriderapp19866.19866.cookie._GPL_zoneid.expiration", "Fri Feb 01 2030 00:0[...]
Deleted : user_pref("extensions.crossriderapp19866.19866.cookie._GPL_zoneid.value", "%22113975%22");
Deleted : user_pref("extensions.crossriderapp19866.19866.cookie.dbtest.expiration", "Fri Feb 01 2030 00:00:00 [...]
Deleted : user_pref("extensions.crossriderapp19866.19866.cookie.dbtest.value", "1354407371149");
Deleted : user_pref("extensions.crossriderapp19866.19866.description", "Deal Vault");
Deleted : user_pref("extensions.crossriderapp19866.19866.domain", "");
Deleted : user_pref("extensions.crossriderapp19866.19866.enablesearch", false);
Deleted : user_pref("extensions.crossriderapp19866.19866.fbremoteurl", "");
Deleted : user_pref("extensions.crossriderapp19866.19866.group", 0);
Deleted : user_pref("extensions.crossriderapp19866.19866.homepage", "");
Deleted : user_pref("extensions.crossriderapp19866.19866.iframe", false);
Deleted : user_pref("extensions.crossriderapp19866.19866.internaldb.InstallerIdentifiers.expiration", "Fri Feb[...]
Deleted : user_pref("extensions.crossriderapp19866.19866.internaldb.InstallerIdentifiers.value", "%7B%22instal[...]
Deleted : user_pref("extensions.crossriderapp19866.19866.internaldb.Resources_appVer.expiration", "Fri Feb 01 [...]
Deleted : user_pref("extensions.crossriderapp19866.19866.internaldb.Resources_appVer.value", "6");
Deleted : user_pref("extensions.crossriderapp19866.19866.internaldb.Resources_lastVersion.expiration", "Fri Fe[...]
Deleted : user_pref("extensions.crossriderapp19866.19866.internaldb.Resources_lastVersion.value", "1");
Deleted : user_pref("extensions.crossriderapp19866.19866.internaldb.Resources_meta.expiration", "Fri Feb 01 20[...]
Deleted : user_pref("extensions.crossriderapp19866.19866.internaldb.Resources_meta.value", "%7B%7D");
Deleted : user_pref("extensions.crossriderapp19866.19866.internaldb.Resources_nextCheck.expiration", "Sat Dec [...]
Deleted : user_pref("extensions.crossriderapp19866.19866.internaldb.Resources_nextCheck.value", "true");
Deleted : user_pref("extensions.crossriderapp19866.19866.internaldb.Resources_queue.expiration", "Fri Feb 01 2[...]
Deleted : user_pref("extensions.crossriderapp19866.19866.internaldb.Resources_queue.value", "%7B%7D");
Deleted : user_pref("extensions.crossriderapp19866.19866.internaldb.SoftwareDetected.expiration", "Fri Feb 01 [...]
Deleted : user_pref("extensions.crossriderapp19866.19866.internaldb.SoftwareDetected.value", "%7B%22AnySoftwar[...]
Deleted : user_pref("extensions.crossriderapp19866.19866.js", "\n\nif(\"undefined\"!=typeof _GPL_PLUGIN){var _[...]
Deleted : user_pref("extensions.crossriderapp19866.19866.manifesturl", "");
Deleted : user_pref("extensions.crossriderapp19866.19866.name", "Deal Vault");
Deleted : user_pref("extensions.crossriderapp19866.19866.newtab", "");
Deleted : user_pref("extensions.crossriderapp19866.19866.opensearch", "");
Deleted : user_pref("extensions.crossriderapp19866.19866.plugins.plugin_1.code", "appAPI._cr_config={appID:fun[...]
Deleted : user_pref("extensions.crossriderapp19866.19866.plugins.plugin_1.name", "base");
Deleted : user_pref("extensions.crossriderapp19866.19866.plugins.plugin_1.ver", 3);
Deleted : user_pref("extensions.crossriderapp19866.19866.plugins.plugin_1000014.code", "Array.prototype.indexO[...]
Deleted : user_pref("extensions.crossriderapp19866.19866.plugins.plugin_1000014.name", "GPL Plugin (Loader)");
Deleted : user_pref("extensions.crossriderapp19866.19866.plugins.plugin_1000014.ver", 7);
Deleted : user_pref("extensions.crossriderapp19866.19866.plugins.plugin_1000015.code", "var _GPL_BG={vars:{},r[...]
Deleted : user_pref("extensions.crossriderapp19866.19866.plugins.plugin_1000015.name", "GPL Background (BG)");
Deleted : user_pref("extensions.crossriderapp19866.19866.plugins.plugin_1000015.ver", 4);
Deleted : user_pref("extensions.crossriderapp19866.19866.plugins.plugin_13.code", "(function(a){a.selectedText[...]
Deleted : user_pref("extensions.crossriderapp19866.19866.plugins.plugin_13.name", "CrossriderAppUtils");
Deleted : user_pref("extensions.crossriderapp19866.19866.plugins.plugin_13.ver", 2);
Deleted : user_pref("extensions.crossriderapp19866.19866.plugins.plugin_14.code", "if(typeof(appAPI)===\"undef[...]
Deleted : user_pref("extensions.crossriderapp19866.19866.plugins.plugin_14.name", "CrossriderUtils");
Deleted : user_pref("extensions.crossriderapp19866.19866.plugins.plugin_14.ver", 2);
Deleted : user_pref("extensions.crossriderapp19866.19866.plugins.plugin_15.code", "(function(f){var u={};var e[...]
Deleted : user_pref("extensions.crossriderapp19866.19866.plugins.plugin_15.name", "FacebookFFIE");
Deleted : user_pref("extensions.crossriderapp19866.19866.plugins.plugin_15.ver", 1);
Deleted : user_pref("extensions.crossriderapp19866.19866.plugins.plugin_16.code", "if((typeof isBackground===\[...]
Deleted : user_pref("extensions.crossriderapp19866.19866.plugins.plugin_16.name", "FFAppAPIWrapper");
Deleted : user_pref("extensions.crossriderapp19866.19866.plugins.plugin_16.ver", 4);
Deleted : user_pref("extensions.crossriderapp19866.19866.plugins.plugin_17.code", "if(typeof window!==\"undefi[...]
Deleted : user_pref("extensions.crossriderapp19866.19866.plugins.plugin_17.name", "jQuery");
Deleted : user_pref("extensions.crossriderapp19866.19866.plugins.plugin_17.ver", 3);
Deleted : user_pref("extensions.crossriderapp19866.19866.plugins.plugin_21.code", "var CrossriderDebugManager=[...]
Deleted : user_pref("extensions.crossriderapp19866.19866.plugins.plugin_21.name", "debug");
Deleted : user_pref("extensions.crossriderapp19866.19866.plugins.plugin_21.ver", 3);
Deleted : user_pref("extensions.crossriderapp19866.19866.plugins.plugin_22.code", "(function(a){appAPI.queueMa[...]
Deleted : user_pref("extensions.crossriderapp19866.19866.plugins.plugin_22.name", "resources");
Deleted : user_pref("extensions.crossriderapp19866.19866.plugins.plugin_22.ver", 2);
Deleted : user_pref("extensions.crossriderapp19866.19866.plugins.plugin_28.code", "var CrossriderInitializerPl[...]
Deleted : user_pref("extensions.crossriderapp19866.19866.plugins.plugin_28.name", "initializer");
Deleted : user_pref("extensions.crossriderapp19866.19866.plugins.plugin_28.ver", 2);
Deleted : user_pref("extensions.crossriderapp19866.19866.plugins.plugin_4.code", "/*! jQuery v1.7.1 jquery.com[...]
Deleted : user_pref("extensions.crossriderapp19866.19866.plugins.plugin_4.name", "jquery_1_7_1");
Deleted : user_pref("extensions.crossriderapp19866.19866.plugins.plugin_4.ver", 3);
Deleted : user_pref("extensions.crossriderapp19866.19866.plugins.plugin_47.code", "(function(){appAPI.ready=fu[...]
Deleted : user_pref("extensions.crossriderapp19866.19866.plugins.plugin_47.name", "resources_background");
Deleted : user_pref("extensions.crossriderapp19866.19866.plugins.plugin_47.ver", 1);
Deleted : user_pref("extensions.crossriderapp19866.19866.plugins_lists.plugins_0", "17,14,16,47,1000015");
Deleted : user_pref("extensions.crossriderapp19866.19866.plugins_lists.plugins_1", "17,14,13,16,15,4,1,21,22,1[...]
Deleted : user_pref("extensions.crossriderapp19866.19866.pluginsurl", "hxxp://app-static.crossrider.com/plugin[...]
Deleted : user_pref("extensions.crossriderapp19866.19866.pluginsversion", 3);
Deleted : user_pref("extensions.crossriderapp19866.19866.publisher", "215 Apps");
Deleted : user_pref("extensions.crossriderapp19866.19866.searchstatus", 0);
Deleted : user_pref("extensions.crossriderapp19866.19866.setnewtab", false);
Deleted : user_pref("extensions.crossriderapp19866.19866.settingsurl", "");
Deleted : user_pref("extensions.crossriderapp19866.19866.thankyou", "");
Deleted : user_pref("extensions.crossriderapp19866.19866.updateinterval", 360);
Deleted : user_pref("extensions.crossriderapp19866.19866.ver", 6);
Deleted : user_pref("extensions.crossriderapp19866.adsOldValue", -1);
Deleted : user_pref("extensions.crossriderapp19866.apps", "19866");
Deleted : user_pref("extensions.crossriderapp19866.bic", "13a86f2d49821678eeb185ba433927f5");
Deleted : user_pref("extensions.crossriderapp19866.cid", 19866);
Deleted : user_pref("extensions.crossriderapp19866.firstrun", false);
Deleted : user_pref("extensions.crossriderapp19866.hadappinstalled", true);
Deleted : user_pref("extensions.crossriderapp19866.installationdate", 1354407342);
Deleted : user_pref("extensions.crossriderapp19866.lastcheck", 22573456);
Deleted : user_pref("extensions.crossriderapp19866.lastcheckitem", 22573620);
Deleted : user_pref("extensions.crossriderapp19866.modetype", "production");
Deleted : user_pref("extensions.crossriderapp19866.reportInstall", true);
Deleted : user_pref("extensions.crossriderapp4493.4493.InstallationThankYouPage", true);
Deleted : user_pref("extensions.crossriderapp4493.4493.InstallationTime", 1350883771);
Deleted : user_pref("extensions.crossriderapp4493.4493.InstallationUserSettings.searchUserConifrmation", false[...]
Deleted : user_pref("extensions.crossriderapp4493.4493.InstallationUserSettings.setHomepage", false);
Deleted : user_pref("extensions.crossriderapp4493.4493.InstallationUserSettings.setNewTab", false);
Deleted : user_pref("extensions.crossriderapp4493.4493.InstallationUserSettings.setSearch", false);
Deleted : user_pref("extensions.crossriderapp4493.4493.active", true);
Deleted : user_pref("extensions.crossriderapp4493.4493.addressbar", "");
Deleted : user_pref("extensions.crossriderapp4493.4493.backgroundjs", "\n\n\"undefined\"!=typeof _GPL_BG_NEW&&[...]
Deleted : user_pref("extensions.crossriderapp4493.4493.backgroundver", 7);
Deleted : user_pref("extensions.crossriderapp4493.4493.can_run_bg_code", true);
Deleted : user_pref("extensions.crossriderapp4493.4493.certdomaininstaller", "");
Deleted : user_pref("extensions.crossriderapp4493.4493.changeprevious", false);
Deleted : user_pref("extensions.crossriderapp4493.4493.cookie.InstallationTime.expiration", "Fri Feb 01 2030 0[...]
Deleted : user_pref("extensions.crossriderapp4493.4493.cookie.InstallationTime.value", "1350883771");
Deleted : user_pref("extensions.crossriderapp4493.4493.cookie.InstallerParams.expiration", "Fri Feb 01 2030 00[...]
Deleted : user_pref("extensions.crossriderapp4493.4493.cookie._GPL_aoi.expiration", "Fri Feb 01 2030 00:00:00 [...]
Deleted : user_pref("extensions.crossriderapp4493.4493.cookie._GPL_aoi.value", "1350883771");
Deleted : user_pref("extensions.crossriderapp4493.4493.cookie._GPL_blocklist.expiration", "Sat Dec 01 2012 19:[...]
Deleted : user_pref("extensions.crossriderapp4493.4493.cookie._GPL_blocklist.value", "%22nonexistantdomain.com[...]
Deleted : user_pref("extensions.crossriderapp4493.4493.cookie._GPL_country_code.expiration", "Sat Dec 08 2012 [...]
Deleted : user_pref("extensions.crossriderapp4493.4493.cookie._GPL_country_code.value", "%22US%22");
Deleted : user_pref("extensions.crossriderapp4493.4493.cookie._GPL_crr.expiration", "Fri Feb 01 2030 00:00:00 [...]
Deleted : user_pref("extensions.crossriderapp4493.4493.cookie._GPL_crr.value", "1354417019");
Deleted : user_pref("extensions.crossriderapp4493.4493.cookie._GPL_hotfix20111102645.expiration", "Fri Feb 01 [...]
Deleted : user_pref("extensions.crossriderapp4493.4493.cookie._GPL_hotfix20111102645.value", "%221%22");
Deleted : user_pref("extensions.crossriderapp4493.4493.cookie._GPL_installer_params.expiration", "Fri Feb 01 2[...]
Deleted : user_pref("extensions.crossriderapp4493.4493.cookie._GPL_installer_params.value", "%7B%22source_id%2[...]
Deleted : user_pref("extensions.crossriderapp4493.4493.cookie._GPL_parent_zoneid.expiration", "Fri Feb 01 2030[...]
Deleted : user_pref("extensions.crossriderapp4493.4493.cookie._GPL_parent_zoneid.value", "%2214019%22");
Deleted : user_pref("extensions.crossriderapp4493.4493.cookie._GPL_pc_20120828.expiration", "Fri Feb 01 2030 0[...]
Deleted : user_pref("extensions.crossriderapp4493.4493.cookie._GPL_pc_20120828.value", "1350883831149");
Deleted : user_pref("extensions.crossriderapp4493.4493.cookie._GPL_product_id.expiration", "Fri Feb 01 2030 00[...]
Deleted : user_pref("extensions.crossriderapp4493.4493.cookie._GPL_product_id.value", "%221175%22");
Deleted : user_pref("extensions.crossriderapp4493.4493.cookie._GPL_zoneid.expiration", "Fri Feb 01 2030 00:00:[...]
Deleted : user_pref("extensions.crossriderapp4493.4493.cookie._GPL_zoneid.value", "%2296311%22");
Deleted : user_pref("extensions.crossriderapp4493.4493.cookie.dbtest.expiration", "Fri Feb 01 2030 00:00:00 GM[...]
Deleted : user_pref("extensions.crossriderapp4493.4493.cookie.dbtest.value", "1350883824322");
Deleted : user_pref("extensions.crossriderapp4493.4493.description", "Coupon Companion");
Deleted : user_pref("extensions.crossriderapp4493.4493.domain", "");
Deleted : user_pref("extensions.crossriderapp4493.4493.enablesearch", false);
Deleted : user_pref("extensions.crossriderapp4493.4493.fbremoteurl", "");
Deleted : user_pref("extensions.crossriderapp4493.4493.group", 0);
Deleted : user_pref("extensions.crossriderapp4493.4493.homepage", "");
Deleted : user_pref("extensions.crossriderapp4493.4493.iframe", false);
Deleted : user_pref("extensions.crossriderapp4493.4493.internaldb.InstallerIdentifiers.expiration", "Fri Feb 0[...]
Deleted : user_pref("extensions.crossriderapp4493.4493.internaldb.InstallerIdentifiers.value", "%7B%22installe[...]
Deleted : user_pref("extensions.crossriderapp4493.4493.internaldb.Resources_appVer.expiration", "Fri Feb 01 20[...]
Deleted : user_pref("extensions.crossriderapp4493.4493.internaldb.Resources_appVer.value", "41");
Deleted : user_pref("extensions.crossriderapp4493.4493.internaldb.Resources_lastVersion.expiration", "Fri Feb [...]
Deleted : user_pref("extensions.crossriderapp4493.4493.internaldb.Resources_lastVersion.value", "0");
Deleted : user_pref("extensions.crossriderapp4493.4493.internaldb.Resources_meta.expiration", "Fri Feb 01 2030[...]
Deleted : user_pref("extensions.crossriderapp4493.4493.internaldb.Resources_meta.value", "%7B%7D");
Deleted : user_pref("extensions.crossriderapp4493.4493.internaldb.Resources_nextCheck.expiration", "Sat Dec 01[...]
Deleted : user_pref("extensions.crossriderapp4493.4493.internaldb.Resources_nextCheck.value", "true");
Deleted : user_pref("extensions.crossriderapp4493.4493.internaldb.Resources_queue.expiration", "Fri Feb 01 203[...]
Deleted : user_pref("extensions.crossriderapp4493.4493.internaldb.Resources_queue.value", "%7B%7D");
Deleted : user_pref("extensions.crossriderapp4493.4493.internaldb.Resources_remote_resources.expiration", "Fri[...]
Deleted : user_pref("extensions.crossriderapp4493.4493.internaldb.Resources_remote_resources.value", "%7B%22re[...]
Deleted : user_pref("extensions.crossriderapp4493.4493.internaldb.SoftwareDetected.expiration", "Fri Feb 01 20[...]
Deleted : user_pref("extensions.crossriderapp4493.4493.internaldb.SoftwareDetected.value", "%7B%22AnySoftware%[...]
Deleted : user_pref("extensions.crossriderapp4493.4493.js", "\n\nif(\"undefined\"!=typeof _GPL_PLUGIN){var _GP[...]
Deleted : user_pref("extensions.crossriderapp4493.4493.manifesturl", "");
Deleted : user_pref("extensions.crossriderapp4493.4493.name", "Coupon Companion");
Deleted : user_pref("extensions.crossriderapp4493.4493.newtab", "");
Deleted : user_pref("extensions.crossriderapp4493.4493.opensearch", "");
Deleted : user_pref("extensions.crossriderapp4493.4493.plugins.plugin_1.code", "appAPI._cr_config={appID:funct[...]
Deleted : user_pref("extensions.crossriderapp4493.4493.plugins.plugin_1.name", "base");
Deleted : user_pref("extensions.crossriderapp4493.4493.plugins.plugin_1.ver", 3);
Deleted : user_pref("extensions.crossriderapp4493.4493.plugins.plugin_1000014.code", "Array.prototype.indexOf|[...]
Deleted : user_pref("extensions.crossriderapp4493.4493.plugins.plugin_1000014.name", "GPL Plugin (Loader)");
Deleted : user_pref("extensions.crossriderapp4493.4493.plugins.plugin_1000014.ver", 7);
Deleted : user_pref("extensions.crossriderapp4493.4493.plugins.plugin_1000015.code", "var _GPL_BG={vars:{},rul[...]
Deleted : user_pref("extensions.crossriderapp4493.4493.plugins.plugin_1000015.name", "GPL Background (BG)");
Deleted : user_pref("extensions.crossriderapp4493.4493.plugins.plugin_1000015.ver", 4);
Deleted : user_pref("extensions.crossriderapp4493.4493.plugins.plugin_13.code", "(function(a){a.selectedText=f[...]
Deleted : user_pref("extensions.crossriderapp4493.4493.plugins.plugin_13.name", "CrossriderAppUtils");
Deleted : user_pref("extensions.crossriderapp4493.4493.plugins.plugin_13.ver", 2);
Deleted : user_pref("extensions.crossriderapp4493.4493.plugins.plugin_14.code", "if(typeof(appAPI)===\"undefin[...]
Deleted : user_pref("extensions.crossriderapp4493.4493.plugins.plugin_14.name", "CrossriderUtils");
Deleted : user_pref("extensions.crossriderapp4493.4493.plugins.plugin_14.ver", 2);
Deleted : user_pref("extensions.crossriderapp4493.4493.plugins.plugin_15.code", "(function(f){var u={};var e=M[...]
Deleted : user_pref("extensions.crossriderapp4493.4493.plugins.plugin_15.name", "FacebookFFIE");
Deleted : user_pref("extensions.crossriderapp4493.4493.plugins.plugin_15.ver", 1);
Deleted : user_pref("extensions.crossriderapp4493.4493.plugins.plugin_16.code", "if((typeof isBackground===\"u[...]
Deleted : user_pref("extensions.crossriderapp4493.4493.plugins.plugin_16.name", "FFAppAPIWrapper");
Deleted : user_pref("extensions.crossriderapp4493.4493.plugins.plugin_16.ver", 4);
Deleted : user_pref("extensions.crossriderapp4493.4493.plugins.plugin_17.code", "if(typeof window!==\"undefine[...]
Deleted : user_pref("extensions.crossriderapp4493.4493.plugins.plugin_17.name", "jQuery");
Deleted : user_pref("extensions.crossriderapp4493.4493.plugins.plugin_17.ver", 3);
Deleted : user_pref("extensions.crossriderapp4493.4493.plugins.plugin_21.code", "var CrossriderDebugManager=(f[...]
Deleted : user_pref("extensions.crossriderapp4493.4493.plugins.plugin_21.name", "debug");
Deleted : user_pref("extensions.crossriderapp4493.4493.plugins.plugin_21.ver", 3);
Deleted : user_pref("extensions.crossriderapp4493.4493.plugins.plugin_22.code", "(function(a){appAPI.queueMana[...]
Deleted : user_pref("extensions.crossriderapp4493.4493.plugins.plugin_22.name", "resources");
Deleted : user_pref("extensions.crossriderapp4493.4493.plugins.plugin_22.ver", 2);
Deleted : user_pref("extensions.crossriderapp4493.4493.plugins.plugin_28.code", "var CrossriderInitializerPlug[...]
Deleted : user_pref("extensions.crossriderapp4493.4493.plugins.plugin_28.name", "initializer");
Deleted : user_pref("extensions.crossriderapp4493.4493.plugins.plugin_28.ver", 2);
Deleted : user_pref("extensions.crossriderapp4493.4493.plugins.plugin_4.code", "/*! jQuery v1.7.1 jquery.com |[...]
Deleted : user_pref("extensions.crossriderapp4493.4493.plugins.plugin_4.name", "jquery_1_7_1");
Deleted : user_pref("extensions.crossriderapp4493.4493.plugins.plugin_4.ver", 3);
Deleted : user_pref("extensions.crossriderapp4493.4493.plugins.plugin_47.code", "(function(){appAPI.ready=func[...]
Deleted : user_pref("extensions.crossriderapp4493.4493.plugins.plugin_47.name", "resources_background");
Deleted : user_pref("extensions.crossriderapp4493.4493.plugins.plugin_47.ver", 1);
Deleted : user_pref("extensions.crossriderapp4493.4493.plugins_lists.plugins_0", "17,14,16,47,1000015");
Deleted : user_pref("extensions.crossriderapp4493.4493.plugins_lists.plugins_1", "17,14,13,16,15,4,1,21,22,100[...]
Deleted : user_pref("extensions.crossriderapp4493.4493.pluginsurl", "hxxp://app-static.crossrider.com/plugin/a[...]
Deleted : user_pref("extensions.crossriderapp4493.4493.pluginsversion", 17);
Deleted : user_pref("extensions.crossriderapp4493.4493.publisher", "215 Apps");
Deleted : user_pref("extensions.crossriderapp4493.4493.searchstatus", 0);
Deleted : user_pref("extensions.crossriderapp4493.4493.setnewtab", false);
Deleted : user_pref("extensions.crossriderapp4493.4493.settingsurl", "");
Deleted : user_pref("extensions.crossriderapp4493.4493.thankyou", "");
Deleted : user_pref("extensions.crossriderapp4493.4493.updateinterval", 360);
Deleted : user_pref("extensions.crossriderapp4493.4493.ver", 41);
Deleted : user_pref("extensions.crossriderapp4493.adsOldValue", -1);
Deleted : user_pref("extensions.crossriderapp4493.apps", "4493");
Deleted : user_pref("extensions.crossriderapp4493.bic", "13a86f2d49821678eeb185ba433927f5");
Deleted : user_pref("extensions.crossriderapp4493.cid", 4493);
Deleted : user_pref("extensions.crossriderapp4493.firstrun", false);
Deleted : user_pref("extensions.crossriderapp4493.hadappinstalled", true);
Deleted : user_pref("extensions.crossriderapp4493.installationdate", 1350883792);
Deleted : user_pref("extensions.crossriderapp4493.lastcheck", 22573278);
Deleted : user_pref("extensions.crossriderapp4493.lastcheckitem", 22573620);
Deleted : user_pref("extensions.crossriderapp4493.modetype", "production");
Deleted : user_pref("extensions.crossriderapp4493.reportInstall", true);
Deleted : user_pref("extensions.enabledAddons", "crossriderapp19866%40crossrider.com:0.86.6,crossriderapp4493%[...]
Deleted : user_pref("extensions.funmoods.aflt", "download");
Deleted : user_pref("extensions.funmoods.autoRvrt", false);
Deleted : user_pref("extensions.funmoods.dfltLng", "");
Deleted : user_pref("extensions.funmoods.dfltSrch", true);
Deleted : user_pref("extensions.funmoods.dnsErr", true);
Deleted : user_pref("extensions.funmoods.envrmnt", "production");
Deleted : user_pref("extensions.funmoods.excTlbr", true);
Deleted : user_pref("extensions.funmoods.hmpg", false);
Deleted : user_pref("extensions.funmoods.hmpgUrl", "hxxp://searchfunmoods.com/?f=1&a=download&chnl=download&cd[...]
Deleted : user_pref("extensions.funmoods.id", "5404A6DEB7486417");
Deleted : user_pref("extensions.funmoods.instlDay", "15634");
Deleted : user_pref("extensions.funmoods.instlRef", "download");
Deleted : user_pref("extensions.funmoods.isdcmntcmplt", true);
Deleted : user_pref("extensions.funmoods.lastVrsnTs", "1.5.23.2222:29:21");
Deleted : user_pref("extensions.funmoods.mntrvrsn", "1.3.0");
Deleted : user_pref("extensions.funmoods.newTab", false);
Deleted : user_pref("extensions.funmoods.newTabUrl", "hxxp://searchfunmoods.com/?f=2&a=download&chnl=download&[...]
Deleted : user_pref("extensions.funmoods.prdct", "funmoods");
Deleted : user_pref("extensions.funmoods.prtnrId", "funmoods");
Deleted : user_pref("extensions.funmoods.smplGrp", "none");
Deleted : user_pref("extensions.funmoods.srchPrvdr", "Search");
Deleted : user_pref("extensions.funmoods.tlbrId", "base");
Deleted : user_pref("extensions.funmoods.tlbrSrchUrl", "hxxp://searchfunmoods.com/?f=3&a=download&chnl=downloa[...]
Deleted : user_pref("extensions.funmoods.vrsn", "1.5.23.22");
Deleted : user_pref("extensions.funmoods.vrsnTs", "1.5.23.2222:29:21");
Deleted : user_pref("extensions.funmoods.vrsni", "1.5.23.22");
Deleted : user_pref("extensions.funmoods_i.newTab", false);
Deleted : user_pref("extensions.funmoods_i.smplGrp", "none");
Deleted : user_pref("extensions.funmoods_i.vrsnTs", "1.5.23.2222:29:21");
Deleted : user_pref("extensions.incredibar.admin", false);
Deleted : user_pref("extensions.incredibar.aflt", "orgnl");
Deleted : user_pref("extensions.incredibar.cntry", "US");
Deleted : user_pref("extensions.incredibar.dfltLng", "EN");
Deleted : user_pref("extensions.incredibar.dfltSrch", false);
Deleted : user_pref("extensions.incredibar.dfltlng", "en");
Deleted : user_pref("extensions.incredibar.dfltsrch", "false");
Deleted : user_pref("extensions.incredibar.did", "10678");
Deleted : user_pref("extensions.incredibar.envrmnt", "production");
Deleted : user_pref("extensions.incredibar.excTlbr", false);
Deleted : user_pref("extensions.incredibar.hdrMd5", "C127B6B7B527486BFB76502A48C7A85A");
Deleted : user_pref("extensions.incredibar.hmpg", false);
Deleted : user_pref("extensions.incredibar.hrdid", "e86f64170000000000005404a6deb748");
Deleted : user_pref("extensions.incredibar.id", "e86f64170000000000005404a6deb748");
Deleted : user_pref("extensions.incredibar.installerproductid", "26");
Deleted : user_pref("extensions.incredibar.instlDay", "15676");
Deleted : user_pref("extensions.incredibar.instlRef", "");
Deleted : user_pref("extensions.incredibar.instlday", "15676");
Deleted : user_pref("extensions.incredibar.instlref", "");
Deleted : user_pref("extensions.incredibar.isDcmntCmplt", false);
Deleted : user_pref("extensions.incredibar.isdcmntcmplt", "false");
Deleted : user_pref("extensions.incredibar.keywordurl", "");
Deleted : user_pref("extensions.incredibar.lastVrsnTs", "1.5.11.1416:15:34");
Deleted : user_pref("extensions.incredibar.mntrvrsn", "1.2.0");
Deleted : user_pref("extensions.incredibar.newTab", false);
Deleted : user_pref("extensions.incredibar.newtab", "false");
Deleted : user_pref("extensions.incredibar.newtaburl", "");
Deleted : user_pref("extensions.incredibar.noFFXTlbr", false);
Deleted : user_pref("extensions.incredibar.ppd", "119");
Deleted : user_pref("extensions.incredibar.prdct", "incredibar");
Deleted : user_pref("extensions.incredibar.productid", "26");
Deleted : user_pref("extensions.incredibar.prtnrId", "Incredibar");
Deleted : user_pref("extensions.incredibar.prtnrid", "Incredibar");
Deleted : user_pref("extensions.incredibar.sg", "none");
Deleted : user_pref("extensions.incredibar.smplGrp", "none");
Deleted : user_pref("extensions.incredibar.smplgrp", "none");
Deleted : user_pref("extensions.incredibar.srch", "");
Deleted : user_pref("extensions.incredibar.srchprvdr", "");
Deleted : user_pref("extensions.incredibar.tlbrId", "base");
Deleted : user_pref("extensions.incredibar.tlbrid", "base");
Deleted : user_pref("extensions.incredibar.upn2", "6OyVUME1jl");
Deleted : user_pref("extensions.incredibar.upn2n", "92262549089106355");
Deleted : user_pref("extensions.incredibar.vrsn", "1.5.11.14");
Deleted : user_pref("extensions.incredibar.vrsnTs", "1.5.11.1416:15:34");
Deleted : user_pref("extensions.incredibar.vrsni", "1.5.11.14");
Deleted : user_pref("extensions.incredibar.vrsnts", "1.5.11.1416:15:34");
Deleted : user_pref("extensions.incredibar_i.aflt", "orgnl");
Deleted : user_pref("extensions.incredibar_i.dfltLng", "");
Deleted : user_pref("extensions.incredibar_i.did", "10678");
Deleted : user_pref("extensions.incredibar_i.excTlbr", false);
Deleted : user_pref("extensions.incredibar_i.id", "e86f64170000000000005404a6deb748");
Deleted : user_pref("extensions.incredibar_i.installerproductid", "26");
Deleted : user_pref("extensions.incredibar_i.instlDay", "15676");
Deleted : user_pref("extensions.incredibar_i.instlRef", "");
Deleted : user_pref("extensions.incredibar_i.ms_url_id", "");
Deleted : user_pref("extensions.incredibar_i.newTab", false);
Deleted : user_pref("extensions.incredibar_i.ppd", "119");
Deleted : user_pref("extensions.incredibar_i.prdct", "incredibar");
Deleted : user_pref("extensions.incredibar_i.productid", "26");
Deleted : user_pref("extensions.incredibar_i.prtnrId", "Incredibar");
Deleted : user_pref("extensions.incredibar_i.smplGrp", "none");
Deleted : user_pref("extensions.incredibar_i.tlbrId", "base");
Deleted : user_pref("extensions.incredibar_i.tlbrSrchUrl", "hxxp://mystart.Incredibar.com/?a=6OyVUME1jl&loc=IB[...]
Deleted : user_pref("extensions.incredibar_i.upn2", "6OyVUME1jl");
Deleted : user_pref("extensions.incredibar_i.upn2n", "92262549089106355");
Deleted : user_pref("extensions.incredibar_i.vrsn", "1.5.11.14");
Deleted : user_pref("extensions.incredibar_i.vrsnTs", "1.5.11.1416:15:34");
Deleted : user_pref("extensions.incredibar_i.vrsni", "1.5.11.14");

-\\ Google Chrome v [Unable to get version]

File : C:\Users\Erick Molina\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[S1].txt - [34887 octets] - [01/12/2012 19:13:46]

########## EOF - C:\AdwCleaner[S1].txt - [34948 octets] ##########

>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>
ESET OnlineScan

C:\Users\Erick Molina\AppData\Local\Temp\NODBF6B.tmp a variant of Win32/Toolbar.CrossRider.A application cleaned by deleting - quarantined
C:\Users\Erick Molina\AppData\Local\Temp\NODC008.tmp a variant of Win32/Toolbar.CrossRider.A application cleaned by deleting - quarantined
C:\Users\Erick Molina\Documents\New folder (5)\driver_fusion_1.3.0.exe Win32/OpenCandy application cleaned by deleting - quarantined
E:\A skyrim backup\USB backup files\gtx 680 driver update and remover\driver_fusion_1.2.0_2.exe Win32/OpenCandy application cleaned by deleting - quarantined

Back to top

#4 boopme

To Insanity and Beyond

Global Moderator
54,869 posts

Gender:Male
Location:NJ USA

Posted 02 December 2012 - 05:54 PM

That looks like it.. How are things now?

How do I get help? Who is helping me?
Staying Updated Calendar of Updates.
For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....
Become a BleepingComputer fan: Facebook Have you seen..Select Real Security

Back to top

#5 Erick913

Member

Members
24 posts

Gender:Male
Location:California

Posted 03 December 2012 - 11:51 AM

Seems like the problem has been fixed. I appreciate the help. Thanks.

Back to top

#6 boopme

To Insanity and Beyond

Global Moderator
54,869 posts

Gender:Male
Location:NJ USA

Posted 03 December 2012 - 11:55 AM

You're welcome!!
Now you should Create a New Restore Point (alternate method) to prevent possible reinfection from an old one. Some of the malware you picked up could have been backed up, renamed and saved in System Restore. Since this is a protected directory your tools cannot access to delete these files, they sometimes can reinfect your system if you accidentally use an old restore point. Setting a new restore point AFTER cleaning your system will help prevent this and enable your computer to "roll-back" to a clean working state.

The easiest and safest way to do this is:

Go to Start > All Programs > Accessories > System Tools and click "System Restore".
Choose the radio button marked "Create a Restore Point" on the first screen then click "Next". Give the R.P. a name, then click "Create". The new point will be stamped with the current date and time. Keep a log of this so you can find it easily should you need to use System Restore.

Then use Disk Cleanup to remove all but the newly created Restore Point.

How do I get help? Who is helping me?
Staying Updated Calendar of Updates.
For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....
Become a BleepingComputer fan: Facebook Have you seen..Select Real Security