Jump to content


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.

Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

pop up ads on bottom of my browser constantly??


  • Please log in to reply
3 replies to this topic

#1 zlloyd1

zlloyd1

  • Members
  • 40 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia Beach
  • Local time:10:41 PM

Posted 21 June 2013 - 02:15 AM

I keep getting my browser hijacked!! :smash:
 
Please help me here, I have gotten yet ANOTHER browser Hijack bug.... :killcomp:
 
This one is putting little boxes in the bottom left and right hand corners of web pages s[poradically. :radioactive:
I have no idea whewre it came from, but it is annoying, and occasionally redirects me to pages I am not interested in, I am using Windows 7 Home Premium, and Firefox 21.0, and I have no new add ons, or programs that I can recall that could have caused this, but it is really peeving me off here!! :axe:
 
PLEASE help me here, and thanks in advance!! :clapping:


*Moderator Edit: Moved topic from Web Browsing/Email and Other Internet Applications to the appropriate forum. ~ Queen-Evie*

Edited by Queen-Evie, 21 June 2013 - 09:20 AM.


BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 62,874 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:09:41 PM

Posted 21 June 2013 - 09:23 AM

Hello zlloyd

Can you run these next.

If needed to complete the scans use Safe Mode with Networking as a boot option.

Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
Note: When using "Reset FF Proxy Settings" option Firefox should be closed.



Please Download TDSSkiller
Launch it.
Click on change parameters-Select TDLFS file system
Click on "Scan".
Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results.



Please download AdwCleaner by Xplode onto your desktop.
Close all open programs and internet browsers.
Double click on adwcleaner.exe to run the tool.
Click on Delete.
Confirm each time with Ok.
You will be prompted to restart your computer. A text file will open after the restart.
Please post the contents of that logfile with your next reply.
You can find the logfile at C:\AdwCleaner[S1].txt as well.



Last run ESET.
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
  • Scan potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE:Sometimes if ESET finds no infections it will not create a log.

How do I get help? Who is helping me?
Staying Updated Calendar of Updates.
For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....
Become a BleepingComputer fan: Facebook Have you seen..Select Real Security

#3 zlloyd1

zlloyd1
  • Topic Starter

  • Members
  • 40 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia Beach
  • Local time:10:41 PM

Posted 21 June 2013 - 01:13 PM

I followed your instructions, and have pasted the logs from MiniToolBox, and TDSSkiller here, but when I ran the AdwCleaner, it did not ask me to reboot the system....

Here is the MiniToolBox log:

MiniToolBox by Farbar  Version: 16-06-2013
Ran by zllo (administrator) on 21-06-2013 at 10:47:41
Running from "C:\Users\zllo\Desktop"
Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

::1             localhost


Here is the TDSSkiller log:

10:51:31.0041 3992  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
10:51:31.0541 3992  ============================================================
10:51:31.0541 3992  Current date / time: 2013/06/21 10:51:31.0541
10:51:31.0541 3992  SystemInfo:
10:51:31.0541 3992  
10:51:31.0541 3992  OS Version: 6.1.7601 ServicePack: 1.0
10:51:31.0541 3992  Product type: Workstation
10:51:31.0541 3992  ComputerName: ZLLO-PC
10:51:31.0541 3992  UserName: zllo
10:51:31.0541 3992  Windows directory: C:\Windows
10:51:31.0541 3992  System windows directory: C:\Windows
10:51:31.0541 3992  Running under WOW64
10:51:31.0541 3992  Processor architecture: Intel x64
10:51:31.0541 3992  Number of processors: 4
10:51:31.0541 3992  Page size: 0x1000
10:51:31.0541 3992  Boot type: Normal boot
10:51:31.0541 3992  ============================================================
10:51:32.0651 3992  Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
10:51:32.0661 3992  ============================================================
10:51:32.0661 3992  \Device\Harddisk0\DR0:
10:51:32.0661 3992  MBR partitions:
10:51:32.0661 3992  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x14000, BlocksNum 0x1A7F000
10:51:32.0661 3992  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1A93000, BlocksNum 0x72C73000
10:51:32.0661 3992  ============================================================
10:51:32.0681 3992  C: <-> \Device\Harddisk0\DR0\Partition2
10:51:32.0681 3992  ============================================================
10:51:32.0681 3992  Initialize success
10:51:32.0681 3992  ============================================================
10:51:52.0713 0836  ============================================================
10:51:52.0713 0836  Scan started
10:51:52.0713 0836  Mode: Manual; TDLFS;
10:51:52.0713 0836  ============================================================
10:51:52.0993 0836  ================ Scan system memory ========================
10:51:52.0993 0836  System memory - ok
10:51:52.0993 0836  ================ Scan services =============================
10:51:53.0273 0836  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
10:51:53.0273 0836  1394ohci - ok
10:51:53.0313 0836  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
10:51:53.0323 0836  ACPI - ok
10:51:53.0333 0836  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
10:51:53.0333 0836  AcpiPmi - ok
10:51:53.0393 0836  [ 8B46D5A1D3EF08232C04D0EAFB871FB2 ] Adobe LM Service C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
10:51:53.0393 0836  Adobe LM Service - ok
10:51:53.0463 0836  [ ADDA5E1951B90D3D23C56D3CF0622ADC ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
10:51:53.0463 0836  AdobeARMservice - ok
10:51:53.0633 0836  [ 9915504F602D277EE47FD843A677FD15 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
10:51:53.0633 0836  AdobeFlashPlayerUpdateSvc - ok
10:51:53.0693 0836  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
10:51:53.0703 0836  adp94xx - ok
10:51:53.0713 0836  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
10:51:53.0723 0836  adpahci - ok
10:51:53.0723 0836  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
10:51:53.0723 0836  adpu320 - ok
10:51:53.0763 0836  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
10:51:53.0763 0836  AeLookupSvc - ok
10:51:53.0813 0836  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD             C:\Windows\system32\drivers\afd.sys
10:51:53.0813 0836  AFD - ok
10:51:53.0843 0836  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\drivers\agp440.sys
10:51:53.0843 0836  agp440 - ok
10:51:53.0873 0836  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
10:51:53.0873 0836  ALG - ok
10:51:53.0913 0836  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\drivers\aliide.sys
10:51:53.0913 0836  aliide - ok
10:51:53.0953 0836  [ 310F86335B0505DDC6D2DD48E66EF06B ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
10:51:53.0953 0836  AMD External Events Utility - ok
10:51:53.0963 0836  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\drivers\amdide.sys
10:51:53.0963 0836  amdide - ok
10:51:54.0003 0836  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
10:51:54.0003 0836  AmdK8 - ok
10:51:54.0183 0836  [ 79CC9BE187E3144E1B58A54B842475E7 ] amdkmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
10:51:54.0223 0836  amdkmdag - ok
10:51:54.0243 0836  [ 07561D3B7FD99F6E186C49C2D0628E38 ] amdkmdap        C:\Windows\system32\DRIVERS\atikmpag.sys
10:51:54.0243 0836  amdkmdap - ok
10:51:54.0273 0836  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
10:51:54.0273 0836  AmdPPM - ok
10:51:54.0303 0836  [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
10:51:54.0303 0836  amdsata - ok
10:51:54.0313 0836  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
10:51:54.0313 0836  amdsbs - ok
10:51:54.0323 0836  [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
10:51:54.0323 0836  amdxata - ok
10:51:54.0363 0836  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\Windows\system32\drivers\appid.sys
10:51:54.0363 0836  AppID - ok
10:51:54.0393 0836  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
10:51:54.0393 0836  AppIDSvc - ok
10:51:54.0423 0836  [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo         C:\Windows\System32\appinfo.dll
10:51:54.0423 0836  Appinfo - ok
10:51:54.0473 0836  [ 4FE5C6D40664AE07BE5105874357D2ED ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
10:51:54.0473 0836  Apple Mobile Device - ok
10:51:54.0483 0836  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\DRIVERS\arc.sys
10:51:54.0483 0836  arc - ok
10:51:54.0493 0836  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
10:51:54.0493 0836  arcsas - ok
10:51:54.0673 0836  [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
10:51:54.0673 0836  aspnet_state - ok
10:51:54.0703 0836  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
10:51:54.0703 0836  AsyncMac - ok
10:51:54.0713 0836  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\drivers\atapi.sys
10:51:54.0713 0836  atapi - ok
10:51:54.0763 0836  [ ED3A041014FBBFDC23D6C04F9C7A5D79 ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
10:51:54.0763 0836  AtiHDAudioService - ok
10:51:54.0803 0836  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
10:51:54.0803 0836  AudioEndpointBuilder - ok
10:51:54.0813 0836  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
10:51:54.0823 0836  AudioSrv - ok
10:51:54.0883 0836  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\Windows\System32\AxInstSV.dll
10:51:54.0883 0836  AxInstSV - ok
10:51:54.0923 0836  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
10:51:54.0923 0836  b06bdrv - ok
10:51:54.0963 0836  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
10:51:54.0963 0836  b57nd60a - ok
10:51:55.0003 0836  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
10:51:55.0003 0836  BDESVC - ok
10:51:55.0013 0836  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
10:51:55.0013 0836  Beep - ok
10:51:55.0083 0836  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE             C:\Windows\System32\bfe.dll
10:51:55.0083 0836  BFE - ok
10:51:55.0133 0836  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\Windows\System32\qmgr.dll
10:51:55.0133 0836  BITS - ok
10:51:55.0143 0836  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
10:51:55.0143 0836  blbdrive - ok
10:51:55.0203 0836  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
10:51:55.0203 0836  Bonjour Service - ok
10:51:55.0233 0836  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
10:51:55.0233 0836  bowser - ok
10:51:55.0313 0836  [ 96AFB6D33247FE90421A5B2E76F4ED59 ] BrcmMgmtAgent   C:\Program Files\Broadcom\MgmtAgent\BrcmMgmtAgent.exe
10:51:55.0323 0836  BrcmMgmtAgent - ok
10:51:55.0343 0836  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
10:51:55.0343 0836  BrFiltLo - ok
10:51:55.0353 0836  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
10:51:55.0353 0836  BrFiltUp - ok
10:51:55.0383 0836  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\Windows\System32\browser.dll
10:51:55.0383 0836  Browser - ok
10:51:55.0413 0836  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
10:51:55.0413 0836  Brserid - ok
10:51:55.0433 0836  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
10:51:55.0433 0836  BrSerWdm - ok
10:51:55.0443 0836  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
10:51:55.0443 0836  BrUsbMdm - ok
10:51:55.0463 0836  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
10:51:55.0463 0836  BrUsbSer - ok
10:51:55.0483 0836  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
10:51:55.0483 0836  BTHMODEM - ok
10:51:55.0533 0836  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
10:51:55.0533 0836  bthserv - ok
10:51:55.0543 0836  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
10:51:55.0553 0836  cdfs - ok
10:51:55.0593 0836  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
10:51:55.0593 0836  cdrom - ok
10:51:55.0643 0836  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\Windows\System32\certprop.dll
10:51:55.0643 0836  CertPropSvc - ok
10:51:55.0653 0836  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
10:51:55.0653 0836  circlass - ok
10:51:55.0713 0836  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
10:51:55.0713 0836  CLFS - ok
10:51:55.0793 0836  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
10:51:55.0793 0836  clr_optimization_v2.0.50727_32 - ok
10:51:55.0813 0836  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
10:51:55.0813 0836  clr_optimization_v2.0.50727_64 - ok
10:51:55.0873 0836  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
10:51:55.0873 0836  clr_optimization_v4.0.30319_32 - ok
10:51:55.0883 0836  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
10:51:55.0883 0836  clr_optimization_v4.0.30319_64 - ok
10:51:55.0913 0836  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
10:51:55.0913 0836  CmBatt - ok
10:51:55.0933 0836  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\drivers\cmdide.sys
10:51:55.0933 0836  cmdide - ok
10:51:55.0973 0836  [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG             C:\Windows\system32\Drivers\cng.sys
10:51:55.0973 0836  CNG - ok
10:51:55.0993 0836  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
10:51:55.0993 0836  Compbatt - ok
10:51:56.0023 0836  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
10:51:56.0023 0836  CompositeBus - ok
10:51:56.0023 0836  COMSysApp - ok
10:51:56.0043 0836  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
10:51:56.0043 0836  crcdisk - ok
10:51:56.0093 0836  [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc        C:\Windows\system32\cryptsvc.dll
10:51:56.0093 0836  CryptSvc - ok
10:51:56.0143 0836  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\Windows\system32\rpcss.dll
10:51:56.0143 0836  DcomLaunch - ok
10:51:56.0273 0836  [ 34AE0DFA3EE3B5B9975042D87332D0B7 ] DefaultTabUpdate C:\Users\zllo\AppData\Roaming\DefaultTab\DefaultTab\DTUpdate.exe
10:51:56.0273 0836  DefaultTabUpdate - ok
10:51:56.0313 0836  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
10:51:56.0323 0836  defragsvc - ok
10:51:56.0373 0836  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
10:51:56.0373 0836  DfsC - ok
10:51:56.0423 0836  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\Windows\system32\dhcpcore.dll
10:51:56.0423 0836  Dhcp - ok
10:51:56.0433 0836  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
10:51:56.0433 0836  discache - ok
10:51:56.0463 0836  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\DRIVERS\disk.sys
10:51:56.0473 0836  Disk - ok
10:51:56.0493 0836  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
10:51:56.0493 0836  Dnscache - ok
10:51:56.0533 0836  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\Windows\System32\dot3svc.dll
10:51:56.0533 0836  dot3svc - ok
10:51:56.0573 0836  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\Windows\system32\dps.dll
10:51:56.0573 0836  DPS - ok
10:51:56.0613 0836  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
10:51:56.0613 0836  drmkaud - ok
10:51:56.0663 0836  [ AF2E16242AA723F68F461B6EAE2EAD3D ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
10:51:56.0673 0836  DXGKrnl - ok
10:51:56.0743 0836  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
10:51:56.0743 0836  EapHost - ok
10:51:56.0813 0836  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
10:51:56.0843 0836  ebdrv - ok
10:51:56.0863 0836  [ C118A82CD78818C29AB228366EBF81C3 ] EFS             C:\Windows\System32\lsass.exe
10:51:56.0863 0836  EFS - ok
10:51:56.0953 0836  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
10:51:56.0953 0836  ehRecvr - ok
10:51:56.0993 0836  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
10:51:56.0993 0836  ehSched - ok
10:51:57.0033 0836  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
10:51:57.0033 0836  elxstor - ok
10:51:57.0053 0836  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\drivers\errdev.sys
10:51:57.0053 0836  ErrDev - ok
10:51:57.0113 0836  esgiguard - ok
10:51:57.0133 0836  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
10:51:57.0143 0836  EventSystem - ok
10:51:57.0163 0836  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
10:51:57.0163 0836  exfat - ok
10:51:57.0183 0836  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
10:51:57.0183 0836  fastfat - ok
10:51:57.0273 0836  [ 83158CA47591AF55A9759B5C648B0462 ] FastFreeConverterUpdt C:\Program Files (x86)\Fast Free Converter\FastFreeConverterUpdt.exe
10:51:57.0283 0836  FastFreeConverterUpdt - ok
10:51:57.0343 0836  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\Windows\system32\fxssvc.exe
10:51:57.0343 0836  Fax - ok
10:51:57.0373 0836  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
10:51:57.0373 0836  fdc - ok
10:51:57.0403 0836  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
10:51:57.0403 0836  fdPHost - ok
10:51:57.0413 0836  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
10:51:57.0413 0836  FDResPub - ok
10:51:57.0423 0836  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
10:51:57.0423 0836  FileInfo - ok
10:51:57.0433 0836  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
10:51:57.0433 0836  Filetrace - ok
10:51:57.0453 0836  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
10:51:57.0463 0836  flpydisk - ok
10:51:57.0493 0836  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
10:51:57.0493 0836  FltMgr - ok
10:51:57.0533 0836  [ C4C183E6551084039EC862DA1C945E3D ] FontCache       C:\Windows\system32\FntCache.dll
10:51:57.0543 0836  FontCache - ok
10:51:57.0613 0836  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
10:51:57.0623 0836  FontCache3.0.0.0 - ok
10:51:57.0633 0836  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
10:51:57.0633 0836  FsDepends - ok
10:51:57.0653 0836  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
10:51:57.0653 0836  Fs_Rec - ok
10:51:57.0673 0836  [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
10:51:57.0673 0836  fvevol - ok
10:51:57.0713 0836  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
10:51:57.0713 0836  gagp30kx - ok
10:51:57.0793 0836  [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
10:51:57.0793 0836  GEARAspiWDM - ok
10:51:57.0833 0836  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\Windows\System32\gpsvc.dll
10:51:57.0843 0836  gpsvc - ok
10:51:57.0863 0836  [ C1B577B2169900F4CF7190C39F085794 ] gusvc           C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
10:51:57.0873 0836  gusvc - ok
10:51:57.0873 0836  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
10:51:57.0873 0836  hcw85cir - ok
10:51:57.0923 0836  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
10:51:57.0923 0836  HdAudAddService - ok
10:51:57.0963 0836  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
10:51:57.0963 0836  HDAudBus - ok
10:51:57.0983 0836  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
10:51:57.0983 0836  HidBatt - ok
10:51:57.0993 0836  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
10:51:57.0993 0836  HidBth - ok
10:51:58.0013 0836  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
10:51:58.0013 0836  HidIr - ok
10:51:58.0043 0836  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\system32\hidserv.dll
10:51:58.0043 0836  hidserv - ok
10:51:58.0083 0836  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\Windows\system32\drivers\hidusb.sys
10:51:58.0083 0836  HidUsb - ok
10:51:58.0123 0836  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\Windows\system32\kmsvc.dll
10:51:58.0123 0836  hkmsvc - ok
10:51:58.0183 0836  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
10:51:58.0183 0836  HomeGroupListener - ok
10:51:58.0233 0836  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
10:51:58.0233 0836  HomeGroupProvider - ok
10:51:58.0273 0836  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
10:51:58.0273 0836  HpSAMD - ok
10:51:58.0313 0836  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
10:51:58.0323 0836  HTTP - ok
10:51:58.0353 0836  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
10:51:58.0353 0836  hwpolicy - ok
10:51:58.0413 0836  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
10:51:58.0413 0836  i8042prt - ok
10:51:58.0443 0836  [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
10:51:58.0453 0836  iaStorV - ok
10:51:58.0493 0836  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
10:51:58.0503 0836  idsvc - ok
10:51:58.0523 0836  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
10:51:58.0523 0836  iirsp - ok
10:51:58.0553 0836  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\Windows\System32\ikeext.dll
10:51:58.0553 0836  IKEEXT - ok
10:51:58.0663 0836  [ 5C0BBE779BA3D6F84EB5AE3CB8793E11 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
10:51:58.0683 0836  IntcAzAudAddService - ok
10:51:58.0773 0836  [ C2712BF2D18C0D4214065A170E80C664 ] Intel® Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
10:51:58.0783 0836  Intel® Capability Licensing Service Interface - ok
10:51:58.0793 0836  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\drivers\intelide.sys
10:51:58.0793 0836  intelide - ok
10:51:58.0823 0836  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
10:51:58.0823 0836  intelppm - ok
10:51:58.0853 0836  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
10:51:58.0853 0836  IPBusEnum - ok
10:51:58.0893 0836  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
10:51:58.0893 0836  IpFilterDriver - ok
10:51:58.0923 0836  [ 08C2957BB30058E663720C5606885653 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
10:51:58.0933 0836  iphlpsvc - ok
10:51:58.0953 0836  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
10:51:58.0953 0836  IPMIDRV - ok
10:51:58.0983 0836  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
10:51:58.0983 0836  IPNAT - ok
10:51:59.0043 0836  [ 0FF335D687C85097725A53458160E81E ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
10:51:59.0043 0836  iPod Service - ok
10:51:59.0063 0836  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
10:51:59.0063 0836  IRENUM - ok
10:51:59.0093 0836  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
10:51:59.0093 0836  isapnp - ok
10:51:59.0113 0836  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
10:51:59.0123 0836  iScsiPrt - ok
10:51:59.0173 0836  [ 12E27942DBB7C91880163634B0D8A776 ] k57nd60a        C:\Windows\system32\DRIVERS\k57nd60a.sys
10:51:59.0183 0836  k57nd60a - ok
10:51:59.0203 0836  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\drivers\kbdclass.sys
10:51:59.0213 0836  kbdclass - ok
10:51:59.0243 0836  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\Windows\system32\drivers\kbdhid.sys
10:51:59.0243 0836  kbdhid - ok
10:51:59.0243 0836  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\Windows\system32\lsass.exe
10:51:59.0243 0836  KeyIso - ok
10:51:59.0263 0836  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
10:51:59.0263 0836  KSecDD - ok
10:51:59.0283 0836  [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
10:51:59.0283 0836  KSecPkg - ok
10:51:59.0293 0836  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
10:51:59.0293 0836  ksthunk - ok
10:51:59.0343 0836  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
10:51:59.0343 0836  KtmRm - ok
10:51:59.0383 0836  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\Windows\system32\srvsvc.dll
10:51:59.0383 0836  LanmanServer - ok
10:51:59.0423 0836  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
10:51:59.0423 0836  LanmanWorkstation - ok
10:51:59.0453 0836  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
10:51:59.0453 0836  lltdio - ok
10:51:59.0493 0836  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
10:51:59.0493 0836  lltdsvc - ok
10:51:59.0513 0836  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
10:51:59.0513 0836  lmhosts - ok
10:51:59.0573 0836  [ 6E137BA2D06434D6B876EF9C18FA4327 ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
10:51:59.0583 0836  LMS - ok
10:51:59.0613 0836  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
10:51:59.0613 0836  LSI_FC - ok
10:51:59.0623 0836  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
10:51:59.0633 0836  LSI_SAS - ok
10:51:59.0633 0836  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
10:51:59.0633 0836  LSI_SAS2 - ok
10:51:59.0643 0836  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
10:51:59.0653 0836  LSI_SCSI - ok
10:51:59.0683 0836  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
10:51:59.0693 0836  luafv - ok
10:51:59.0723 0836  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
10:51:59.0723 0836  Mcx2Svc - ok
10:51:59.0743 0836  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
10:51:59.0743 0836  megasas - ok
10:51:59.0843 0836  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
10:51:59.0843 0836  MegaSR - ok
10:51:59.0863 0836  [ D71FD7A4FDB01C554AE144037B688DF1 ] MEIx64          C:\Windows\system32\DRIVERS\HECIx64.sys
10:51:59.0863 0836  MEIx64 - ok
10:51:59.0873 0836  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
10:51:59.0873 0836  MMCSS - ok
10:51:59.0893 0836  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
10:51:59.0893 0836  Modem - ok
10:51:59.0933 0836  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
10:51:59.0933 0836  monitor - ok
10:51:59.0943 0836  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\drivers\mouclass.sys
10:51:59.0943 0836  mouclass - ok
10:51:59.0973 0836  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
10:51:59.0983 0836  mouhid - ok
10:52:00.0023 0836  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
10:52:00.0023 0836  mountmgr - ok
10:52:00.0033 0836  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\Windows\system32\drivers\mpio.sys
10:52:00.0033 0836  mpio - ok
10:52:00.0043 0836  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
10:52:00.0043 0836  mpsdrv - ok
10:52:00.0093 0836  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc          C:\Windows\system32\mpssvc.dll
10:52:00.0103 0836  MpsSvc - ok
10:52:00.0123 0836  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
10:52:00.0133 0836  MRxDAV - ok
10:52:00.0153 0836  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
10:52:00.0163 0836  mrxsmb - ok
10:52:00.0173 0836  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
10:52:00.0173 0836  mrxsmb10 - ok
10:52:00.0193 0836  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
10:52:00.0193 0836  mrxsmb20 - ok
10:52:00.0213 0836  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\Windows\system32\drivers\msahci.sys
10:52:00.0213 0836  msahci - ok
10:52:00.0223 0836  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
10:52:00.0223 0836  msdsm - ok
10:52:00.0243 0836  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
10:52:00.0243 0836  MSDTC - ok
10:52:00.0263 0836  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
10:52:00.0263 0836  Msfs - ok
10:52:00.0293 0836  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
10:52:00.0293 0836  mshidkmdf - ok
10:52:00.0303 0836  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
10:52:00.0303 0836  msisadrv - ok
10:52:00.0343 0836  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
10:52:00.0343 0836  MSiSCSI - ok
10:52:00.0343 0836  msiserver - ok
10:52:00.0383 0836  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
10:52:00.0383 0836  MSKSSRV - ok
10:52:00.0393 0836  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
10:52:00.0393 0836  MSPCLOCK - ok
10:52:00.0413 0836  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
10:52:00.0413 0836  MSPQM - ok
10:52:00.0453 0836  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
10:52:00.0453 0836  MsRPC - ok
10:52:00.0463 0836  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
10:52:00.0473 0836  mssmbios - ok
10:52:00.0473 0836  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
10:52:00.0483 0836  MSTEE - ok
10:52:00.0503 0836  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
10:52:00.0503 0836  MTConfig - ok
10:52:00.0523 0836  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
10:52:00.0523 0836  Mup - ok
10:52:00.0563 0836  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\Windows\system32\qagentRT.dll
10:52:00.0563 0836  napagent - ok
10:52:00.0603 0836  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
10:52:00.0603 0836  NativeWifiP - ok
10:52:00.0643 0836  [ 760E38053BF56E501D562B70AD796B88 ] NDIS            C:\Windows\system32\drivers\ndis.sys
10:52:00.0643 0836  NDIS - ok
10:52:00.0683 0836  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
10:52:00.0683 0836  NdisCap - ok
10:52:00.0723 0836  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
10:52:00.0723 0836  NdisTapi - ok
10:52:00.0773 0836  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
10:52:00.0773 0836  Ndisuio - ok
10:52:00.0873 0836  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
10:52:00.0873 0836  NdisWan - ok
10:52:00.0903 0836  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
10:52:00.0903 0836  NDProxy - ok
10:52:00.0933 0836  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
10:52:00.0933 0836  NetBIOS - ok
10:52:00.0963 0836  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
10:52:00.0963 0836  NetBT - ok
10:52:00.0983 0836  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\Windows\system32\lsass.exe
10:52:00.0983 0836  Netlogon - ok
10:52:01.0034 0836  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
10:52:01.0034 0836  Netman - ok
10:52:01.0054 0836  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:52:01.0054 0836  NetMsmqActivator - ok
10:52:01.0074 0836  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:52:01.0074 0836  NetPipeActivator - ok
10:52:01.0094 0836  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
10:52:01.0094 0836  netprofm - ok
10:52:01.0104 0836  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:52:01.0104 0836  NetTcpActivator - ok
10:52:01.0104 0836  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:52:01.0104 0836  NetTcpPortSharing - ok
10:52:01.0134 0836  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
10:52:01.0134 0836  nfrd960 - ok
10:52:01.0164 0836  [ 8AD77806D336673F270DB31645267293 ] NlaSvc          C:\Windows\System32\nlasvc.dll
10:52:01.0174 0836  NlaSvc - ok
10:52:01.0184 0836  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
10:52:01.0184 0836  Npfs - ok
10:52:01.0214 0836  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
10:52:01.0214 0836  nsi - ok
10:52:01.0224 0836  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
10:52:01.0224 0836  nsiproxy - ok
10:52:01.0274 0836  [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
10:52:01.0284 0836  Ntfs - ok
10:52:01.0294 0836  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
10:52:01.0294 0836  Null - ok
10:52:01.0334 0836  [ 158AD24745BD85BA9BE3C51C38F48C32 ] nusb3hub        C:\Windows\system32\DRIVERS\nusb3hub.sys
10:52:01.0334 0836  nusb3hub - ok
10:52:01.0374 0836  [ D40A13B2C0891E218F9523B376955DB6 ] nusb3xhc        C:\Windows\system32\DRIVERS\nusb3xhc.sys
10:52:01.0374 0836  nusb3xhc - ok
10:52:01.0414 0836  [ 0A92CB65770442ED0DC44834632F66AD ] nvraid          C:\Windows\system32\drivers\nvraid.sys
10:52:01.0414 0836  nvraid - ok
10:52:01.0434 0836  [ DAB0E87525C10052BF65F06152F37E4A ] nvstor          C:\Windows\system32\drivers\nvstor.sys
10:52:01.0434 0836  nvstor - ok
10:52:01.0474 0836  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
10:52:01.0474 0836  nv_agp - ok
10:52:01.0504 0836  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
10:52:01.0504 0836  ohci1394 - ok
10:52:01.0564 0836  [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
10:52:01.0574 0836  ose - ok
10:52:01.0694 0836  [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
10:52:01.0714 0836  osppsvc - ok
10:52:01.0744 0836  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
10:52:01.0744 0836  p2pimsvc - ok
10:52:01.0784 0836  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
10:52:01.0784 0836  p2psvc - ok
10:52:01.0804 0836  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
10:52:01.0804 0836  Parport - ok
10:52:01.0904 0836  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\Windows\system32\drivers\partmgr.sys
10:52:01.0904 0836  partmgr - ok
10:52:01.0914 0836  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
10:52:01.0914 0836  PcaSvc - ok
10:52:01.0924 0836  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\Windows\system32\drivers\pci.sys
10:52:01.0924 0836  pci - ok
10:52:01.0934 0836  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\drivers\pciide.sys
10:52:01.0934 0836  pciide - ok
10:52:01.0954 0836  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
10:52:01.0954 0836  pcmcia - ok
10:52:01.0974 0836  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
10:52:01.0974 0836  pcw - ok
10:52:01.0994 0836  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
10:52:01.0994 0836  PEAUTH - ok
10:52:02.0094 0836  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
10:52:02.0094 0836  PerfHost - ok
10:52:02.0144 0836  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\Windows\system32\pla.dll
10:52:02.0154 0836  pla - ok
10:52:02.0184 0836  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
10:52:02.0194 0836  PlugPlay - ok
10:52:02.0204 0836  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
10:52:02.0204 0836  PNRPAutoReg - ok
10:52:02.0214 0836  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
10:52:02.0214 0836  PNRPsvc - ok
10:52:02.0254 0836  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
10:52:02.0264 0836  PolicyAgent - ok
10:52:02.0294 0836  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
10:52:02.0294 0836  Power - ok
10:52:02.0344 0836  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
10:52:02.0344 0836  PptpMiniport - ok
10:52:02.0364 0836  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\DRIVERS\processr.sys
10:52:02.0364 0836  Processor - ok
10:52:02.0384 0836  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc         C:\Windows\system32\profsvc.dll
10:52:02.0384 0836  ProfSvc - ok
10:52:02.0394 0836  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
10:52:02.0394 0836  ProtectedStorage - ok
10:52:02.0454 0836  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
10:52:02.0454 0836  Psched - ok
10:52:02.0484 0836  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
10:52:02.0494 0836  ql2300 - ok
10:52:02.0524 0836  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
10:52:02.0524 0836  ql40xx - ok
10:52:02.0564 0836  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
10:52:02.0564 0836  QWAVE - ok
10:52:02.0574 0836  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
10:52:02.0574 0836  QWAVEdrv - ok
10:52:02.0594 0836  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
10:52:02.0594 0836  RasAcd - ok
10:52:02.0634 0836  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
10:52:02.0634 0836  RasAgileVpn - ok
10:52:02.0644 0836  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
10:52:02.0644 0836  RasAuto - ok
10:52:02.0684 0836  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
10:52:02.0684 0836  Rasl2tp - ok
10:52:02.0734 0836  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\Windows\System32\rasmans.dll
10:52:02.0744 0836  RasMan - ok
10:52:02.0744 0836  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
10:52:02.0744 0836  RasPppoe - ok
10:52:02.0774 0836  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
10:52:02.0774 0836  RasSstp - ok
10:52:02.0794 0836  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
10:52:02.0794 0836  rdbss - ok
10:52:02.0804 0836  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
10:52:02.0804 0836  rdpbus - ok
10:52:02.0824 0836  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
10:52:02.0824 0836  RDPCDD - ok
10:52:02.0854 0836  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
10:52:02.0854 0836  RDPENCDD - ok
10:52:02.0914 0836  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
10:52:02.0914 0836  RDPREFMP - ok
10:52:02.0974 0836  [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
10:52:02.0974 0836  RdpVideoMiniport - ok
10:52:03.0014 0836  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
10:52:03.0014 0836  RDPWD - ok
10:52:03.0044 0836  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
10:52:03.0044 0836  rdyboost - ok
10:52:03.0124 0836  [ B2D01290C0E0465ACA54C2088E947823 ] RealNetworks Downloader Resolver Service C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
10:52:03.0124 0836  RealNetworks Downloader Resolver Service - ok
10:52:03.0174 0836  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
10:52:03.0174 0836  RemoteAccess - ok
10:52:03.0184 0836  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
10:52:03.0184 0836  RemoteRegistry - ok
10:52:03.0224 0836  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
10:52:03.0224 0836  RpcEptMapper - ok
10:52:03.0264 0836  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
10:52:03.0264 0836  RpcLocator - ok
10:52:03.0304 0836  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\Windows\system32\rpcss.dll
10:52:03.0314 0836  RpcSs - ok
10:52:03.0324 0836  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
10:52:03.0324 0836  rspndr - ok
10:52:03.0334 0836  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs           C:\Windows\system32\lsass.exe
10:52:03.0334 0836  SamSs - ok
10:52:03.0354 0836  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
10:52:03.0354 0836  sbp2port - ok
10:52:03.0364 0836  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
10:52:03.0374 0836  SCardSvr - ok
10:52:03.0404 0836  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
10:52:03.0404 0836  scfilter - ok
10:52:03.0464 0836  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\Windows\system32\schedsvc.dll
10:52:03.0464 0836  Schedule - ok
10:52:03.0504 0836  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\Windows\System32\certprop.dll
10:52:03.0514 0836  SCPolicySvc - ok
10:52:03.0544 0836  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
10:52:03.0554 0836  SDRSVC - ok
10:52:03.0574 0836  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
10:52:03.0574 0836  secdrv - ok
10:52:03.0614 0836  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\Windows\system32\seclogon.dll
10:52:03.0614 0836  seclogon - ok
10:52:03.0654 0836  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\System32\sens.dll
10:52:03.0664 0836  SENS - ok
10:52:03.0664 0836  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
10:52:03.0664 0836  SensrSvc - ok
10:52:03.0704 0836  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
10:52:03.0704 0836  Serenum - ok
10:52:03.0734 0836  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\DRIVERS\serial.sys
10:52:03.0734 0836  Serial - ok
10:52:03.0774 0836  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
10:52:03.0774 0836  sermouse - ok
10:52:03.0814 0836  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\Windows\system32\sessenv.dll
10:52:03.0814 0836  SessionEnv - ok
10:52:03.0834 0836  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
10:52:03.0834 0836  sffdisk - ok
10:52:03.0844 0836  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
10:52:03.0844 0836  sffp_mmc - ok
10:52:03.0854 0836  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
10:52:03.0854 0836  sffp_sd - ok
10:52:03.0894 0836  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
10:52:03.0894 0836  sfloppy - ok
10:52:03.0984 0836  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll
10:52:03.0994 0836  SharedAccess - ok
10:52:04.0034 0836  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
10:52:04.0034 0836  ShellHWDetection - ok
10:52:04.0074 0836  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
10:52:04.0074 0836  SiSRaid2 - ok
10:52:04.0084 0836  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
10:52:04.0084 0836  SiSRaid4 - ok
10:52:04.0114 0836  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
10:52:04.0114 0836  Smb - ok
10:52:04.0164 0836  [ CA62AE004E98374BF7F082CD765EEA02 ] SNMP            C:\Windows\System32\snmp.exe
10:52:04.0164 0836  SNMP - ok
10:52:04.0204 0836  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
10:52:04.0204 0836  SNMPTRAP - ok
10:52:04.0214 0836  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
10:52:04.0214 0836  spldr - ok
10:52:04.0234 0836  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler         C:\Windows\System32\spoolsv.exe
10:52:04.0244 0836  Spooler - ok
10:52:04.0324 0836  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\Windows\system32\sppsvc.exe
10:52:04.0344 0836  sppsvc - ok
10:52:04.0384 0836  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
10:52:04.0384 0836  sppuinotify - ok
10:52:04.0454 0836  [ D6AB7C13FCDD2E4CAC35244D2C172D9A ] sptd            C:\Windows\System32\Drivers\sptd.sys
10:52:04.0454 0836  sptd - ok
10:52:04.0484 0836  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\Windows\system32\DRIVERS\srv.sys
10:52:04.0484 0836  srv - ok
10:52:04.0504 0836  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
10:52:04.0504 0836  srv2 - ok
10:52:04.0514 0836  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
10:52:04.0524 0836  srvnet - ok
10:52:04.0564 0836  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
10:52:04.0564 0836  SSDPSRV - ok
10:52:04.0574 0836  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
10:52:04.0574 0836  SstpSvc - ok
10:52:04.0584 0836  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
10:52:04.0584 0836  stexstor - ok
10:52:04.0634 0836  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\Windows\System32\wiaservc.dll
10:52:04.0634 0836  stisvc - ok
10:52:04.0664 0836  [ 1CBAC4E81F735C310A0D503BCD1B9E55 ] SWDUMon         C:\Windows\system32\DRIVERS\SWDUMon.sys
10:52:04.0664 0836  SWDUMon - ok
10:52:04.0684 0836  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\drivers\swenum.sys
10:52:04.0684 0836  swenum - ok
10:52:04.0814 0836  [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard     C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
10:52:04.0814 0836  SwitchBoard - ok
10:52:04.0824 0836  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
10:52:04.0834 0836  swprv - ok
10:52:04.0894 0836  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\Windows\system32\sysmain.dll
10:52:04.0904 0836  SysMain - ok
10:52:04.0954 0836  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
10:52:04.0954 0836  TabletInputService - ok
10:52:05.0044 0836  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\Windows\System32\tapisrv.dll
10:52:05.0054 0836  TapiSrv - ok
10:52:05.0084 0836  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
10:52:05.0094 0836  TBS - ok
10:52:05.0154 0836  [ B62A953F2BF3922C8764A29C34A22899 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
10:52:05.0174 0836  Tcpip - ok
10:52:05.0224 0836  [ B62A953F2BF3922C8764A29C34A22899 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
10:52:05.0234 0836  TCPIP6 - ok
10:52:05.0254 0836  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
10:52:05.0254 0836  tcpipreg - ok
10:52:05.0294 0836  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
10:52:05.0294 0836  TDPIPE - ok
10:52:05.0324 0836  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
10:52:05.0324 0836  TDTCP - ok
10:52:05.0354 0836  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
10:52:05.0354 0836  tdx - ok
10:52:05.0364 0836  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\Windows\system32\drivers\termdd.sys
10:52:05.0364 0836  TermDD - ok
10:52:05.0414 0836  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\Windows\System32\termsrv.dll
10:52:05.0414 0836  TermService - ok
10:52:05.0424 0836  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
10:52:05.0434 0836  Themes - ok
10:52:05.0474 0836  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
10:52:05.0474 0836  THREADORDER - ok
10:52:05.0494 0836  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
10:52:05.0494 0836  TrkWks - ok
10:52:05.0564 0836  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
10:52:05.0564 0836  TrustedInstaller - ok
10:52:05.0584 0836  [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
10:52:05.0594 0836  tssecsrv - ok
10:52:05.0614 0836  [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
10:52:05.0614 0836  TsUsbFlt - ok
10:52:05.0674 0836  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
10:52:05.0674 0836  tunnel - ok
10:52:05.0694 0836  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
10:52:05.0694 0836  uagp35 - ok
10:52:05.0734 0836  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
10:52:05.0744 0836  udfs - ok
10:52:05.0754 0836  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
10:52:05.0754 0836  UI0Detect - ok
10:52:05.0794 0836  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
10:52:05.0794 0836  uliagpkx - ok
10:52:05.0834 0836  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\Windows\system32\drivers\umbus.sys
10:52:05.0834 0836  umbus - ok
10:52:05.0854 0836  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
10:52:05.0854 0836  UmPass - ok
10:52:05.0904 0836  [ 4BBFC6FFD2CD2971CD3507E60AD01B6F ] UNS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
10:52:05.0914 0836  UNS - ok
10:52:05.0974 0836  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
10:52:05.0974 0836  upnphost - ok
10:52:06.0024 0836  [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
10:52:06.0024 0836  usbccgp - ok
10:52:06.0054 0836  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
10:52:06.0054 0836  usbcir - ok
10:52:06.0064 0836  [ C025055FE7B87701EB042095DF1A2D7B ] usbehci         C:\Windows\system32\drivers\usbehci.sys
10:52:06.0064 0836  usbehci - ok
10:52:06.0074 0836  [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
10:52:06.0074 0836  usbhub - ok
10:52:06.0094 0836  [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
10:52:06.0094 0836  usbohci - ok
10:52:06.0124 0836  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
10:52:06.0124 0836  usbprint - ok
10:52:06.0164 0836  [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
10:52:06.0174 0836  usbscan - ok
10:52:06.0184 0836  [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
10:52:06.0184 0836  USBSTOR - ok
10:52:06.0204 0836  [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
10:52:06.0204 0836  usbuhci - ok
10:52:06.0234 0836  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
10:52:06.0244 0836  UxSms - ok
10:52:06.0244 0836  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\Windows\system32\lsass.exe
10:52:06.0244 0836  VaultSvc - ok
10:52:06.0264 0836  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
10:52:06.0264 0836  vdrvroot - ok
10:52:06.0304 0836  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\Windows\System32\vds.exe
10:52:06.0314 0836  vds - ok
10:52:06.0334 0836  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
10:52:06.0334 0836  vga - ok
10:52:06.0344 0836  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
10:52:06.0344 0836  VgaSave - ok
10:52:06.0354 0836  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
10:52:06.0364 0836  vhdmp - ok
10:52:06.0374 0836  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\drivers\viaide.sys
10:52:06.0374 0836  viaide - ok
10:52:06.0384 0836  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
10:52:06.0384 0836  volmgr - ok
10:52:06.0424 0836  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
10:52:06.0424 0836  volmgrx - ok
10:52:06.0434 0836  [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
10:52:06.0444 0836  volsnap - ok
10:52:06.0474 0836  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
10:52:06.0474 0836  vsmraid - ok
10:52:06.0534 0836  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\Windows\system32\vssvc.exe
10:52:06.0544 0836  VSS - ok
10:52:06.0584 0836  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
10:52:06.0584 0836  vwifibus - ok
10:52:06.0594 0836  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
10:52:06.0604 0836  W32Time - ok
10:52:06.0624 0836  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
10:52:06.0624 0836  WacomPen - ok
10:52:06.0754 0836  [ 5D81DFEDC21830764B02F12415AFAE2B ] wampapache      c:\wamp\bin\apache\apache2.2.22\bin\httpd.exe
10:52:06.0754 0836  wampapache - ok
10:52:06.0804 0836  wampmysqld - ok
10:52:06.0844 0836  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
10:52:06.0844 0836  WANARP - ok
10:52:06.0864 0836  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
10:52:06.0864 0836  Wanarpv6 - ok
10:52:06.0934 0836  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
10:52:06.0944 0836  WatAdminSvc - ok
10:52:06.0994 0836  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\Windows\system32\wbengine.exe
10:52:07.0004 0836  wbengine - ok
10:52:07.0074 0836  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
10:52:07.0074 0836  WbioSrvc - ok
10:52:07.0114 0836  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\Windows\System32\wcncsvc.dll
10:52:07.0124 0836  wcncsvc - ok
10:52:07.0134 0836  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
10:52:07.0134 0836  WcsPlugInService - ok
10:52:07.0144 0836  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\DRIVERS\wd.sys
10:52:07.0144 0836  Wd - ok
10:52:07.0174 0836  [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
10:52:07.0174 0836  Wdf01000 - ok
10:52:07.0194 0836  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
10:52:07.0194 0836  WdiServiceHost - ok
10:52:07.0194 0836  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
10:52:07.0194 0836  WdiSystemHost - ok
10:52:07.0224 0836  [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient       C:\Windows\System32\webclnt.dll
10:52:07.0234 0836  WebClient - ok
10:52:07.0264 0836  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
10:52:07.0264 0836  Wecsvc - ok
10:52:07.0274 0836  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
10:52:07.0274 0836  wercplsupport - ok
10:52:07.0304 0836  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
10:52:07.0304 0836  WerSvc - ok
10:52:07.0324 0836  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
10:52:07.0324 0836  WfpLwf - ok
10:52:07.0334 0836  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
10:52:07.0334 0836  WIMMount - ok
10:52:07.0354 0836  WinDefend - ok
10:52:07.0364 0836  WinHttpAutoProxySvc - ok
10:52:07.0424 0836  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
10:52:07.0424 0836  Winmgmt - ok
10:52:07.0484 0836  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\Windows\system32\WsmSvc.dll
10:52:07.0494 0836  WinRM - ok
10:52:07.0554 0836  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
10:52:07.0564 0836  Wlansvc - ok
10:52:07.0584 0836  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
10:52:07.0594 0836  WmiAcpi - ok
10:52:07.0624 0836  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
10:52:07.0624 0836  wmiApSrv - ok
10:52:07.0644 0836  WMPNetworkSvc - ok
10:52:07.0684 0836  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
10:52:07.0684 0836  WPCSvc - ok
10:52:07.0724 0836  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
10:52:07.0724 0836  WPDBusEnum - ok
10:52:07.0744 0836  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
10:52:07.0744 0836  ws2ifsl - ok
10:52:07.0754 0836  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\Windows\System32\wscsvc.dll
10:52:07.0754 0836  wscsvc - ok
10:52:07.0754 0836  WSearch - ok
10:52:07.0824 0836  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
10:52:07.0844 0836  wuauserv - ok
10:52:07.0854 0836  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
10:52:07.0854 0836  WudfPf - ok
10:52:07.0884 0836  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
10:52:07.0884 0836  WUDFRd - ok
10:52:07.0904 0836  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
10:52:07.0904 0836  wudfsvc - ok
10:52:07.0934 0836  [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc         C:\Windows\System32\wwansvc.dll
10:52:07.0934 0836  WwanSvc - ok
10:52:07.0934 0836  ================ Scan global ===============================
10:52:07.0964 0836  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
10:52:08.0024 0836  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
10:52:08.0074 0836  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
10:52:08.0124 0836  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
10:52:08.0164 0836  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
10:52:08.0164 0836  [Global] - ok
10:52:08.0164 0836  ================ Scan MBR ==================================
10:52:08.0184 0836  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
10:52:08.0454 0836  \Device\Harddisk0\DR0 - ok
10:52:08.0454 0836  ================ Scan VBR ==================================
10:52:08.0454 0836  [ 5FE3593936C0BE309219514740EF646D ] \Device\Harddisk0\DR0\Partition1
10:52:08.0454 0836  \Device\Harddisk0\DR0\Partition1 - ok
10:52:08.0484 0836  [ E76369173FC32E1942ADBFCEAB02EB36 ] \Device\Harddisk0\DR0\Partition2
10:52:08.0484 0836  \Device\Harddisk0\DR0\Partition2 - ok
10:52:08.0484 0836  ============================================================
10:52:08.0484 0836  Scan finished
10:52:08.0484 0836  ============================================================
10:52:08.0494 3920  Detected object count: 0
10:52:08.0494 3920  Actual detected object count: 0
10:52:18.0065 3348  Deinitialize success

Here is the AdwCleaner log:

# AdwCleaner v2.303 - Logfile created 06/21/2013 at 10:56:02
# Updated 08/06/2013 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : zllo - ZLLO-PC
# Boot Mode : Normal
# Running from : C:\Users\zllo\Desktop\AdwCleaner.exe
# Option [Search]


***** [Services] *****

Found : DefaultTabUpdate

***** [Files / Folders] *****

File Found : C:\Users\zllo\AppData\Roaming\Mozilla\Firefox\Profiles\wr8f8sbn.default\searchplugins\search.xml
Folder Found : C:\Program Files (x86)\Common Files\Software Update Utility
Folder Found : C:\ProgramData\APN
Folder Found : C:\ProgramData\ParetoLogic
Folder Found : C:\Users\zllo\AppData\Roaming\DefaultTab
Folder Found : C:\Users\zllo\AppData\Roaming\DriverCure
Folder Found : C:\Users\zllo\AppData\Roaming\DSite
Folder Found : C:\Users\zllo\AppData\Roaming\OpenCandy
Folder Found : C:\Users\zllo\AppData\Roaming\ParetoLogic

***** [Registry] *****

Key Found : HKCU\Software\1ClickDownload
Key Found : HKCU\Software\AppDataLow\Software\DefaultTab
Key Found : HKCU\Software\Default Tab
Key Found : HKCU\Software\DefaultTab
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7F6AFBF1-E065-4627-A2FD-810366367D01}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{7F6AFBF1-E065-4627-A2FD-810366367D01}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{7F6AFBF1-E065-4627-A2FD-810366367D01}
Key Found : HKLM\SOFTWARE\Classes\AppID\{6C259840-5BA8-46E6-8ED1-EF3BA47D8BA1}
Key Found : HKLM\SOFTWARE\Classes\AppID\DefaultTabBHO.DLL
Key Found : HKLM\SOFTWARE\Classes\AppID\dnu.EXE
Key Found : HKLM\SOFTWARE\Classes\DefaultTabBHO.DefaultTabBrowser
Key Found : HKLM\SOFTWARE\Classes\DefaultTabBHO.DefaultTabBrowser.1
Key Found : HKLM\SOFTWARE\Classes\DefaultTabBHO.DefaultTabBrowserActiveX
Key Found : HKLM\SOFTWARE\Classes\DefaultTabBHO.DefaultTabBrowserActiveX.1
Key Found : HKLM\SOFTWARE\Classes\dnUpdate
Key Found : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUIBrowser
Key Found : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUIBrowser.1
Key Found : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUpdController
Key Found : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUpdController.1
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{92380354-381A-471F-BE2E-DD9ACD9777EA}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{93E3D79C-0786-48FF-9329-93BC9F6DC2B3}
Key Found : HKLM\Software\Default Tab
Key Found : HKLM\Software\InstallIQ
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7B089B94-D1DC-4C6B-87E1-8156E22C1D96}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7F6AFBF1-E065-4627-A2FD-810366367D01}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{35B8892D-C3FB-4D88-990D-31DB2EBD72BD}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{7B089B94-D1DC-4C6B-87E1-8156E22C1D96}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{7F6AFBF1-E065-4627-A2FD-810366367D01}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{E15A9BFD-D16D-496D-8222-44CADF316E70}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{660E6F4F-840D-436D-B668-433D9591BAC5}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{E7435878-65B9-44D1-A443-81754E5DFC90}
Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7F6AFBF1-E065-4627-A2FD-810366367D01}
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\DefaultTab
Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\SoftwareUpdUtility
Key Found : HKLM\SOFTWARE\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
Key Found : HKLM\SOFTWARE\Classes\Interface\{660E6F4F-840D-436D-B668-433D9591BAC5}
Key Found : HKLM\SOFTWARE\Classes\Interface\{E7435878-65B9-44D1-A443-81754E5DFC90}
Key Found : HKLM\SOFTWARE\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}

***** [Internet Browsers] *****

-\\ Internet Explorer v10.0.9200.16576

[OK] Registry is clean.

-\\ Mozilla Firefox v21.0 (en-US)

File : C:\Users\zllo\AppData\Roaming\Mozilla\Firefox\Profiles\01oht0r2.default-1370638134855\prefs.js

[OK] File is clean.

File : C:\Users\zllo\AppData\Roaming\Mozilla\Firefox\Profiles\wr8f8sbn.default\prefs.js

Found : user_pref("FirstSearch.aol_toolbar.search.hasDoneFirst", 2);
Found : user_pref("aol_toolbar.buttons.layout", "aol_mail_5496;facebook_40839;mapquest_40872;twitter_40883;e[...]
Found : user_pref("aol_toolbar.cookie.homepage", "");
Found : user_pref("aol_toolbar.cookie.search", "");
Found : user_pref("aol_toolbar.curtain.congrats", "curtain");
Found : user_pref("aol_toolbar.default.homepage.check", false);
Found : user_pref("aol_toolbar.default.homepage.protection", false);
Found : user_pref("aol_toolbar.default.homepage.url", "");
Found : user_pref("aol_toolbar.default.search.check", false);
Found : user_pref("aol_toolbar.firsttime.showwindow", false);
Found : user_pref("aol_toolbar.guid", "{6C5E9B0B-7138-9A31-1C70-6F9FCDE4D146}");
Found : user_pref("aol_toolbar.homepageprotection.enabled", false);
Found : user_pref("aol_toolbar.install.distroid", "aol");
Found : user_pref("aol_toolbar.install.homepage.label", "AOL.com");
Found : user_pref("aol_toolbar.install.lastTbVersion", "5.74.1.9430");
Found : user_pref("aol_toolbar.install.lid", "hyplognew00000010");
Found : user_pref("aol_toolbar.install.mtmhp", "hyplogusaolp00000023");
Found : user_pref("aol_toolbar.install.ncid", "");
Found : user_pref("aol_toolbar.metrics.activestampdate", "10");
Found : user_pref("aol_toolbar.metrics.activestampmonth", "4");
Found : user_pref("aol_toolbar.metrics.activestampyear", "2013");
Found : user_pref("aol_toolbar.metrics.log", false);
Found : user_pref("aol_toolbar.metrics.originalDate", "6");
Found : user_pref("aol_toolbar.metrics.originalHours", "4");
Found : user_pref("aol_toolbar.metrics.originalMinutes", "0");
Found : user_pref("aol_toolbar.metrics.originalMonth", "5");
Found : user_pref("aol_toolbar.metrics.originalSeconds", "0");
Found : user_pref("aol_toolbar.metrics.originalYear", "2013");
Found : user_pref("aol_toolbar.relatednews.enabled", false);
Found : user_pref("aol_toolbar.remote.publish.xml", "1368161850842");
Found : user_pref("aol_toolbar.reset.flag", "3");
Found : user_pref("aol_toolbar.reset.style", "B");
Found : user_pref("aol_toolbar.resetprompt.daily.num", "1");
Found : user_pref("aol_toolbar.resetprompt.daily.timestamp", "1367887844965");
Found : user_pref("aol_toolbar.resetprompt.display.limit", "8");
Found : user_pref("aol_toolbar.rtw.active", false);
Found : user_pref("aol_toolbar.search.button", true);
Found : user_pref("aol_toolbar.search.cid", "06-05-2013");
Found : user_pref("aol_toolbar.search.focusnewtab", true);
Found : user_pref("aol_toolbar.search.instd", "20130506105659505");
Found : user_pref("aol_toolbar.search.newtab", true);
Found : user_pref("aol_toolbar.search.oid", "06-05-2013");
Found : user_pref("aol_toolbar.search.placement", "right");
Found : user_pref("aol_toolbar.search.populateoncomplete", false);
Found : user_pref("aol_toolbar.search.savehistory", false);
Found : user_pref("aol_toolbar.search.searchtype", "web");
Found : user_pref("aol_toolbar.search.source", "adknowledgeaol-ff");
Found : user_pref("aol_toolbar.searchengine.label", "AOL Search");
Found : user_pref("aol_toolbar.searchprotection.enabled", false);
Found : user_pref("aol_toolbar.skin.custom", false);
Found : user_pref("aol_toolbar.surf.date", "34");
Found : user_pref("aol_toolbar.surf.lastDate", "10");
Found : user_pref("aol_toolbar.surf.lastMonth", "4");
Found : user_pref("aol_toolbar.surf.lastYear", "2013");
Found : user_pref("aol_toolbar.surf.month", "996");
Found : user_pref("aol_toolbar.surf.prevMonth", "0");
Found : user_pref("aol_toolbar.surf.total", "1000");
Found : user_pref("aol_toolbar.surf.week", "996");
Found : user_pref("aol_toolbar.surf.year", "996");
Found : user_pref("aol_toolbar.ticker.active", false);
Found : user_pref("aol_toolbar.upgrade.showwindow", false);
Found : user_pref("aol_toolbar.weather.degc", "17");
Found : user_pref("aol_toolbar.weather.degf", "63");
Found : user_pref("aol_toolbar.weather.image", "chrome://aoltoolbar/skin/weather/29_n.png");
Found : user_pref("aol_toolbar.weather.locationid", "USNY0996");
Found : user_pref("aol_toolbar.weather.metric", true);
Found : user_pref("aol_toolbar.weather.tooltip", "New York , NY : Partly Cloudy");
Found : user_pref("aol_toolbar.weather.update", "1368161850854");
Found : user_pref("aol_toolbar.winamp.volume", "");
Found : user_pref("browser.search.defaulturl", "hxxp://search.aol.com/search/search?q={searchTerms}&s_it=adk[...]

*************************

AdwCleaner[R1].txt - [12408 octets] - [08/06/2013 10:16:01]
AdwCleaner[R2].txt - [12469 octets] - [08/06/2013 10:17:10]
AdwCleaner[R3].txt - [9136 octets] - [21/06/2013 10:56:02]

########## EOF - C:\AdwCleaner[R3].txt - [9196 octets] ##########

ESET returned this as threats:

C:\Program Files (x86)\Uniblue\RegistryBooster\rbmonitor.exe    Win32/RegistryBooster application    
C:\Program Files (x86)\Uniblue\RegistryBooster\rbnotifier.exe    Win32/RegistryBooster application    
C:\Program Files (x86)\Uniblue\RegistryBooster\rb_move_serial.exe    Win32/RegistryBooster application    
C:\Program Files (x86)\Uniblue\RegistryBooster\rb_ubm.exe    Win32/RegistryBooster application    
C:\Program Files (x86)\Uniblue\RegistryBooster\registrybooster.exe    Win32/RegistryBooster application    
C:\ProgramData\APN\APN-Stub\W3IV6-G\APNIC.7z    Win32/Bundled.Toolbar.Ask.B application    
C:\ProgramData\APN\APN-Stub\W3IV6-G\APNIC.dll    Win32/Bundled.Toolbar.Ask.B application    
C:\Users\All Users\APN\APN-Stub\W3IV6-G\APNIC.7z    Win32/Bundled.Toolbar.Ask.B application    
C:\Users\All Users\APN\APN-Stub\W3IV6-G\APNIC.dll    Win32/Bundled.Toolbar.Ask.B application    
C:\Users\zllo\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\DSJJ29KV\stubinst_pkg_en-us[1].cab    Win32/OpenCandy application    
C:\Users\zllo\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\10\75035aca-663a5ff1    Java/Exploit.Agent.OKY trojan    
C:\Users\zllo\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\32\74f76420-2442f98e    a variant of Java/Exploit.CVE-2013-2423.DD trojan    
C:\Users\zllo\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\9\f53b2c9-7072603a    multiple threats    
C:\Users\zllo\AppData\Roaming\skype.dat    a variant of Win32/Kryptik.BDNN trojan    
C:\Users\zllo\AppData\Roaming\DefaultTab\DefaultTab\DefaultTabBHO.dll    Win32/Toolbar.DefaultTab.A application    
C:\Users\zllo\AppData\Roaming\DefaultTab\DefaultTab\DefaultTabStart.exe    Win32/Toolbar.DefaultTab.A application    
C:\Users\zllo\AppData\Roaming\DefaultTab\DefaultTab\DefaultTabStart64.exe    Win64/Toolbar.DefaultTab.A application    
C:\Users\zllo\AppData\Roaming\DefaultTab\DefaultTab\DefaultTabWrap.dll    Win32/Toolbar.DefaultTab.A application    
C:\Users\zllo\AppData\Roaming\DefaultTab\DefaultTab\DefaultTabWrap64.dll    Win64/Toolbar.DefaultTab.A application    
C:\Users\zllo\AppData\Roaming\DefaultTab\DefaultTab\DTUpdate.exe    Win32/Toolbar.DefaultTab.A application    
C:\Users\zllo\AppData\Roaming\OpenCandy\C9973080A4FE43C0B6DA24F654F5BC00\GOMPLAYERENSETUP.EXE    Win32/OpenCandy application    
C:\Users\zllo\Downloads\DTLite4471-0333.exe    Win32/OpenCandy application    
C:\Users\zllo\Downloads\FlvMPlayer.exe    a variant of MSIL/Solimba.I application    
C:\Users\zllo\Downloads\FreeSoundRecorder(1).exe    Win32/OpenCandy application    
C:\Users\zllo\Downloads\FreeSoundRecorder.exe    Win32/OpenCandy application    
C:\Users\zllo\Downloads\FreeVideoToMP3Converter(1).exe    Win32/OpenCandy application    
C:\Users\zllo\Downloads\FreeVideoToMP3Converter(2).exe    Win32/OpenCandy application    
C:\Users\zllo\Downloads\FreeVideoToMP3Converter.exe    Win32/OpenCandy application    
C:\Users\zllo\Downloads\Klite_Setup.exe    a variant of Win32/Adware.iBryte.G application    
C:\Users\zllo\Downloads\Microsoft Office 2010.exe    a variant of MSIL/Solimba.I application    
C:\Users\zllo\Downloads\mp3mymp3install.exe    Win32/Adware.RK.AP application    
C:\Users\zllo\Downloads\nuancepdf_d165400.exe    a variant of Win32/InstallIQ.A application    
C:\Users\zllo\Downloads\Picasa_Setup.exe    a variant of Win32/Adware.iBryte.G application    
C:\Users\zllo\Downloads\powerpointviewer-setup(1).exe    Win32/DownloadAdmin.G application    
C:\Users\zllo\Downloads\powerpointviewer-setup.exe    Win32/DownloadAdmin.G application    
C:\Users\zllo\Downloads\registrybooster(1).exe    Win32/RegistryBooster application    
C:\Users\zllo\Downloads\registrybooster.exe    Win32/RegistryBooster application    
C:\Users\zllo\Downloads\Setup(1).exe    a variant of Win32/Adware.iBryte.G application    
C:\Users\zllo\Downloads\Setup.exe    a variant of Win32/Adware.iBryte.G application    
C:\Windows.old.000\Documents and Settings\zlloyd1\AppData\Local\Application Data\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\80PX6FIC\Setup[1].exe    a variant of Win32/Adware.iBryte.G application    

 

After completing these very LONG scans, :whistle: and receiving these log files, I then ran Combofix, which I also downloaded from this site, and it seems to have taken care of the issue, at least temporarily.... :bounce:

I have no clue what any of this means truly, but I am hoping to be eenlightened here, and thanks for taking the time so far!! :flowers:
 



#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 62,874 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:09:41 PM

Posted 21 June 2013 - 08:15 PM

You had a lot of infection. You posted the TDSS log over half the Mini log somehow.
Anyway from the Blue text above this forum

When posting your problem, do not run and post a ComboFix log. ComboFix is a tool that should only be run under the supervision of someone who has been trained in its use. Using it on your own can cause problems with your computer

Fortunately your PC did not shut down.,but we also cannot review that log here to see what it was.

Glad it's working now though.
How do I get help? Who is helping me?
Staying Updated Calendar of Updates.
For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....
Become a BleepingComputer fan: Facebook Have you seen..Select Real Security




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users