Jump to content


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.

Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Unable to download says virus detected deleted


  • This topic is locked This topic is locked
24 replies to this topic

#1 Oliviaaugust

Oliviaaugust

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:06:11 AM

Posted 15 July 2013 - 11:31 PM

2 big problems. First I cant uninstall Microsoft security essentials I get the error message you do not have sufficient access please contact system administrator, second I can not download anything. I have tried everything I am pretty sure I have a virus but I don't have a security program on my computer at all and I cant download a new one nor can I remove Microsoft security essentials please help. I have tried a few do it yourself websites but nothing has helped.



BC AdBot (Login to Remove)

 


#2 Condobloke

Condobloke

  • Members
  • 2,045 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Australian Outback....middle of nowhere....
  • Local time:12:11 AM

Posted 16 July 2013 - 04:15 AM

Do you have access to another PC to communicate here ?

 

This will save exposing the problem pc unnecessarily.

 

Brian


Edited by Condobloke, 16 July 2013 - 04:32 AM.

Condobloke

Outback Australia.

 

Don't miss the donut by looking through the hole.

#3 Oliviaaugust

Oliviaaugust
  • Topic Starter

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:06:11 AM

Posted 16 July 2013 - 10:44 AM

yes I have another computer



#4 Oliviaaugust

Oliviaaugust
  • Topic Starter

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:06:11 AM

Posted 16 July 2013 - 03:34 PM

Any ideas of what I should do?



#5 Oliviaaugust

Oliviaaugust
  • Topic Starter

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:06:11 AM

Posted 16 July 2013 - 05:16 PM

Ok so I was able to install rkll spy-bot avast and malware but I still can not uninstall micro soft security essentials any ideas?



#6 Condobloke

Condobloke

  • Members
  • 2,045 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Australian Outback....middle of nowhere....
  • Local time:12:11 AM

Posted 16 July 2013 - 06:35 PM

I would use your 'spare' pc to download this::     http://www.bleepingcomputer.com/download/microsoft-security-essentials-removal-tool/

 

and then transfer via usb stick it to the problem pc in order to remove MSE.  I would adopt this approach to keep the problem pc offline to avoid further infection.

 

Edit.::just noticed your latest post....you have Avast on the prob pc......in that case you can download the removal tool directly to the problem pc.

I have notified the moderator that you suspect virus activity on your pc. You would be well advised to read here.

 

http://www.bleepingcomputer.com/forums/t/34773/preparation-guide-for-use-before-using-malware-removal-tools-and-requesting-help/

 

Also... supply relevant info....eg operating system etc,  why you suspect viral activity..... run scans with Avast, and MalwareBytes....what are the results ?


Edited by Condobloke, 16 July 2013 - 08:51 PM.

Condobloke

Outback Australia.

 

Don't miss the donut by looking through the hole.

#7 Oliviaaugust

Oliviaaugust
  • Topic Starter

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:06:11 AM

Posted 16 July 2013 - 09:44 PM

Ok so I was able to uninstall microsoft security essentials now my last problem is i am able to download files on chrome but not on internet explorer what is the best anti virus program and what info should i give you on my computer



#8 Oliviaaugust

Oliviaaugust
  • Topic Starter

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:06:11 AM

Posted 16 July 2013 - 09:45 PM

here is a list from rkll

 

Rkill 2.5.5 by Lawrence Abrams (Grinler)
Copyright 2008-2013 BleepingComputer.com
More Information about Rkill can be found at this link:
 
Program started at: 07/16/2013 07:33:27 PM in x64 mode.
Windows Version: Windows 7 Home Premium Service Pack 1
 
Checking for Windows services to stop:
 
 * No malware services found to stop.
 
Checking for processes to terminate:
 
 * No malware processes found to kill.
 
Checking Registry for malware related settings:
 
 * No issues found in the Registry.
 
Resetting .EXE, .COM, & .BAT associations in the Windows Registry.
 
Performing miscellaneous checks:
 
 * ALERT: ZEROACCESS Reparse Point/Junction found!
 
     * C:\Program Files\Microsoft Security Client\Backup => c:\windows\system32\config\ [Dir]
     * C:\Program Files\Microsoft Security Client\DbgHelp.dll => c:\windows\system32\config [File]
     * C:\Program Files\Microsoft Security Client\Drivers => c:\windows\system32\config\ [Dir]
     * C:\Program Files\Microsoft Security Client\en-us => c:\windows\system32\config\ [Dir]
     * C:\Program Files\Microsoft Security Client\EppManifest.dll => c:\windows\system32\config [File]
     * C:\Program Files\Microsoft Security Client\MpAsDesc.dll => c:\windows\system32\config [File]
     * C:\Program Files\Microsoft Security Client\MpClient.dll => c:\windows\system32\config [File]
     * C:\Program Files\Microsoft Security Client\MpCmdRun.exe => c:\windows\system32\config [File]
     * C:\Program Files\Microsoft Security Client\MpCommu.dll => c:\windows\system32\config [File]
     * C:\Program Files\Microsoft Security Client\mpevmsg.dll => c:\windows\system32\config [File]
     * C:\Program Files\Microsoft Security Client\MpOAv.dll => c:\windows\system32\config [File]
     * C:\Program Files\Microsoft Security Client\MpRTP.dll => c:\windows\system32\config [File]
     * C:\Program Files\Microsoft Security Client\MpSvc.dll => c:\windows\system32\config [File]
     * C:\Program Files\Microsoft Security Client\MSESysprep.dll => c:\windows\system32\config [File]
     * C:\Program Files\Microsoft Security Client\MsMpCom.dll => c:\windows\system32\config [File]
     * C:\Program Files\Microsoft Security Client\MsMpEng.exe => c:\windows\system32\config [File]
     * C:\Program Files\Microsoft Security Client\MsMpLics.dll => c:\windows\system32\config [File]
     * C:\Program Files\Microsoft Security Client\MsMpRes.dll => c:\windows\system32\config [File]
     * C:\Program Files\Microsoft Security Client\msseces.exe => c:\windows\system32\config [File]
     * C:\Program Files\Microsoft Security Client\msseoobe.exe => c:\windows\system32\config [File]
     * C:\Program Files\Microsoft Security Client\msseooberes.dll => c:\windows\system32\config [File]
     * C:\Program Files\Microsoft Security Client\MsseWat.dll => c:\windows\system32\config [File]
     * C:\Program Files\Microsoft Security Client\NisIpsPlugin.dll => c:\windows\system32\config [File]
     * C:\Program Files\Microsoft Security Client\NisLog.dll => c:\windows\system32\config [File]
     * C:\Program Files\Microsoft Security Client\NisSrv.exe => c:\windows\system32\config [File]
     * C:\Program Files\Microsoft Security Client\NisWFP.dll => c:\windows\system32\config [File]
     * C:\Program Files\Microsoft Security Client\Setup.exe => c:\windows\system32\config [File]
     * C:\Program Files\Microsoft Security Client\SetupRes.dll => c:\windows\system32\config [File]
     * C:\Program Files\Microsoft Security Client\shellext.dll => c:\windows\system32\config [File]
     * C:\Program Files\Microsoft Security Client\SqmApi.dll => c:\windows\system32\config [File]
     * C:\Program Files\Microsoft Security Client\SymSrv.dll => c:\windows\system32\config [File]
     * C:\Program Files\Microsoft Security Client\SymSrv.yes => c:\windows\system32\config [File]
     * C:\Program Files\Windows Defender\en-US => c:\windows\system32\config\ [Dir]
     * C:\Program Files\Windows Defender\MpAsDesc.dll => c:\windows\system32\config [File]
     * C:\Program Files\Windows Defender\MpClient.dll => c:\windows\system32\config [File]
     * C:\Program Files\Windows Defender\MpCmdRun.exe => c:\windows\system32\config [File]
     * C:\Program Files\Windows Defender\MpCommu.dll => c:\windows\system32\config [File]
     * C:\Program Files\Windows Defender\MpEvMsg.dll => c:\windows\system32\config [File]
     * C:\Program Files\Windows Defender\MpOAV.dll => c:\windows\system32\config [File]
     * C:\Program Files\Windows Defender\MpRTP.dll => c:\windows\system32\config [File]
     * C:\Program Files\Windows Defender\MpSvc.dll => c:\windows\system32\config [File]
     * C:\Program Files\Windows Defender\MSASCui.exe => c:\windows\system32\config [File]
     * C:\Program Files\Windows Defender\MsMpCom.dll => c:\windows\system32\config [File]
     * C:\Program Files\Windows Defender\MsMpLics.dll => c:\windows\system32\config [File]
     * C:\Program Files\Windows Defender\MsMpRes.dll => c:\windows\system32\config [File]
 
Checking Windows Service Integrity: 
 
 * Windows Firewall Authorization Driver (mpsdrv) is not Running.
   Startup Type set to: Manual
 
 * BFE [Missing Service]
 * iphlpsvc [Missing Service]
 * MpsSvc [Missing Service]
 * wscsvc [Missing Service]
 
 * SharedAccess [Missing ImagePath]
 
Searching for Missing Digital Signatures: 
 
 * No issues found.
 
Checking HOSTS File: 
 
 * Cannot edit the HOSTS file.
 * Permissions Fixed. Administrators can now edit the HOSTS file.
 
 * HOSTS file entries found: 
 
  127.0.0.1 www.007guard.com
  127.0.0.1 007guard.com
  127.0.0.1 008i.com
  127.0.0.1 www.008k.com
  127.0.0.1 008k.com
  127.0.0.1 www.00hq.com
  127.0.0.1 00hq.com
  127.0.0.1 010402.com
  127.0.0.1 www.032439.com
  127.0.0.1 032439.com
  127.0.0.1 www.0scan.com
  127.0.0.1 0scan.com
  127.0.0.1 1000gratisproben.com
  127.0.0.1 www.1000gratisproben.com
  127.0.0.1 1001namen.com
  127.0.0.1 www.1001namen.com
  127.0.0.1 100888290cs.com
  127.0.0.1 www.100888290cs.com
  127.0.0.1 www.100sexlinks.com
  127.0.0.1 100sexlinks.com
 
  20 out of 15471 HOSTS entries shown.
  Please review HOSTS file for further entries.
 
Program finished at: 07/16/2013 07:34:15 PM
Execution time: 0 hours(s), 0 minute(s), and 47 seconds(s)


#9 Oliviaaugust

Oliviaaugust
  • Topic Starter

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:06:11 AM

Posted 16 July 2013 - 09:48 PM

I uninstalled avast and malware i am left with spybot i do not know enough about computers to know if just this program will work any help is appreciated THANK YOU



#10 Condobloke

Condobloke

  • Members
  • 2,045 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Australian Outback....middle of nowhere....
  • Local time:12:11 AM

Posted 16 July 2013 - 10:22 PM

Why did you uninstall Avast?...at least you had protection.

 

I have Reported this to the forum Moderator, because of this entry in the rkill log ::* ALERT: ZEROACCESS Reparse Point/Junction found

 

Be patient...someone will come to you.


Condobloke

Outback Australia.

 

Don't miss the donut by looking through the hole.

#11 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 62,683 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:08:11 AM

Posted 16 July 2013 - 10:26 PM

Hello, I would like for you to run these next.
If you have rebooted since running RKill then run it again.

Please Download TDSSkiller
Launch it.
Click on change parameters-Select TDLFS file system
Click on "Scan".
Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results.



Please download aswMBR ( 4.5MB ) to your desktop.
  • Double click the aswMBR.exe icon, and click Run.
  • When asked if you'd like to "download the latest Avast! virus definitions", click Yes.
  • Click the Scan button to start the scan.
  • On completion of the scan, click the save log button, save it to your desktop, then copy and paste it in your next reply.
Please download AdwCleaner by Xplode onto your desktop.
Close all open programs and internet browsers.
Double click on adwcleaner.exe to run the tool.
Click on Delete.
Confirm each time with Ok.
You will be prompted to restart your computer. A text file will open after the restart.
Please post the contents of that logfile with your next reply.
You can find the logfile at C:\AdwCleaner[S1].txt as well.



Last run ESET.
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
  • Scan potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE:Sometimes if ESET finds no infections it will not create a log.

How do I get help? Who is helping me?
Staying Updated Calendar of Updates.
For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....
Become a BleepingComputer fan: Facebook Have you seen..Select Real Security

#12 Oliviaaugust

Oliviaaugust
  • Topic Starter

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:06:11 AM

Posted 16 July 2013 - 10:38 PM

20:35:28.0506 4444  TDSS rootkit removing tool 2.8.18.0 Jun 10 2013 21:44:19
20:35:29.0134 4444  ============================================================
20:35:29.0134 4444  Current date / time: 2013/07/16 20:35:29.0134
20:35:29.0134 4444  SystemInfo:
20:35:29.0134 4444  
20:35:29.0134 4444  OS Version: 6.1.7601 ServicePack: 1.0
20:35:29.0134 4444  Product type: Workstation
20:35:29.0134 4444  ComputerName: MAECOAUGUST-PC
20:35:29.0135 4444  UserName: Maeco
20:35:29.0135 4444  Windows directory: C:\windows
20:35:29.0135 4444  System windows directory: C:\windows
20:35:29.0135 4444  Running under WOW64
20:35:29.0135 4444  Processor architecture: Intel x64
20:35:29.0135 4444  Number of processors: 2
20:35:29.0135 4444  Page size: 0x1000
20:35:29.0135 4444  Boot type: Normal boot
20:35:29.0135 4444  ============================================================
20:35:30.0108 4444  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
20:35:30.0112 4444  ============================================================
20:35:30.0112 4444  \Device\Harddisk0\DR0:
20:35:30.0112 4444  MBR partitions:
20:35:30.0112 4444  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x64000
20:35:30.0113 4444  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x64800, BlocksNum 0x34BA1000
20:35:30.0141 4444  \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x34C06000, BlocksNum 0x39FD800
20:35:30.0141 4444  ============================================================
20:35:30.0198 4444  C: <-> \Device\Harddisk0\DR0\Partition2
20:35:30.0277 4444  D: <-> \Device\Harddisk0\DR0\Partition3
20:35:30.0277 4444  ============================================================
20:35:30.0278 4444  Initialize success
20:35:30.0278 4444  ============================================================
20:35:32.0204 4072  ============================================================
20:35:32.0204 4072  Scan started
20:35:32.0204 4072  Mode: Manual; 
20:35:32.0205 4072  ============================================================
20:35:33.0333 4072  ================ Scan system memory ========================
20:35:33.0333 4072  System memory - ok
20:35:33.0334 4072  ================ Scan services =============================
20:35:33.0667 4072  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\windows\system32\drivers\1394ohci.sys
20:35:33.0671 4072  1394ohci - ok
20:35:33.0704 4072  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\windows\system32\drivers\ACPI.sys
20:35:33.0709 4072  ACPI - ok
20:35:33.0748 4072  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\windows\system32\drivers\acpipmi.sys
20:35:33.0750 4072  AcpiPmi - ok
20:35:33.0868 4072  [ 5BBFF8B826EC38D32C26334E079C7EFC ] ACPIVPC         C:\windows\system32\DRIVERS\AcpiVpc.sys
20:35:33.0869 4072  ACPIVPC - ok
20:35:34.0153 4072  [ 9915504F602D277EE47FD843A677FD15 ] AdobeFlashPlayerUpdateSvc C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
20:35:34.0155 4072  AdobeFlashPlayerUpdateSvc - ok
20:35:34.0212 4072  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\windows\system32\drivers\adp94xx.sys
20:35:34.0219 4072  adp94xx - ok
20:35:34.0251 4072  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\windows\system32\drivers\adpahci.sys
20:35:34.0256 4072  adpahci - ok
20:35:34.0299 4072  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\windows\system32\drivers\adpu320.sys
20:35:34.0302 4072  adpu320 - ok
20:35:34.0335 4072  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\windows\System32\aelupsvc.dll
20:35:34.0337 4072  AeLookupSvc - ok
20:35:34.0383 4072  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD             C:\windows\system32\drivers\afd.sys
20:35:34.0390 4072  AFD - ok
20:35:34.0428 4072  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\windows\system32\drivers\agp440.sys
20:35:34.0430 4072  agp440 - ok
20:35:34.0472 4072  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\windows\System32\alg.exe
20:35:34.0474 4072  ALG - ok
20:35:34.0498 4072  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\windows\system32\drivers\aliide.sys
20:35:34.0500 4072  aliide - ok
20:35:34.0508 4072  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\windows\system32\drivers\amdide.sys
20:35:34.0510 4072  amdide - ok
20:35:34.0532 4072  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\windows\system32\drivers\amdk8.sys
20:35:34.0534 4072  AmdK8 - ok
20:35:34.0564 4072  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\windows\system32\drivers\amdppm.sys
20:35:34.0566 4072  AmdPPM - ok
20:35:34.0599 4072  [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata         C:\windows\system32\drivers\amdsata.sys
20:35:34.0601 4072  amdsata - ok
20:35:34.0631 4072  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\windows\system32\drivers\amdsbs.sys
20:35:34.0634 4072  amdsbs - ok
20:35:34.0653 4072  [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata         C:\windows\system32\drivers\amdxata.sys
20:35:34.0655 4072  amdxata - ok
20:35:34.0693 4072  [ 4DE0D5D747A73797C95A97DCCE5018B5 ] androidusb      C:\windows\system32\Drivers\ssadadb.sys
20:35:34.0695 4072  androidusb - ok
20:35:34.0750 4072  [ 59D01FA91962C9C1E9B4022B2D3B46DB ] AppHostSvc      C:\windows\system32\inetsrv\apphostsvc.dll
20:35:34.0752 4072  AppHostSvc - ok
20:35:34.0789 4072  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\windows\system32\drivers\appid.sys
20:35:34.0791 4072  AppID - ok
20:35:34.0816 4072  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\windows\System32\appidsvc.dll
20:35:34.0818 4072  AppIDSvc - ok
20:35:34.0854 4072  [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo         C:\windows\System32\appinfo.dll
20:35:34.0856 4072  Appinfo - ok
20:35:34.0909 4072  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\windows\system32\drivers\arc.sys
20:35:34.0913 4072  arc - ok
20:35:34.0923 4072  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\windows\system32\drivers\arcsas.sys
20:35:34.0926 4072  arcsas - ok
20:35:35.0021 4072  [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state    C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
20:35:35.0023 4072  aspnet_state - ok
20:35:35.0052 4072  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\windows\system32\DRIVERS\asyncmac.sys
20:35:35.0053 4072  AsyncMac - ok
20:35:35.0082 4072  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\windows\system32\drivers\atapi.sys
20:35:35.0084 4072  atapi - ok
20:35:35.0164 4072  [ 782D36BAD8DDBF008D02E055DBE70F82 ] athr            C:\windows\system32\DRIVERS\athrx.sys
20:35:35.0194 4072  athr - ok
20:35:35.0238 4072  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\windows\System32\Audiosrv.dll
20:35:35.0247 4072  AudioEndpointBuilder - ok
20:35:35.0257 4072  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\windows\System32\Audiosrv.dll
20:35:35.0262 4072  AudioSrv - ok
20:35:35.0294 4072  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\windows\System32\AxInstSV.dll
20:35:35.0296 4072  AxInstSV - ok
20:35:35.0338 4072  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\windows\system32\drivers\bxvbda.sys
20:35:35.0347 4072  b06bdrv - ok
20:35:35.0379 4072  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\windows\system32\DRIVERS\b57nd60a.sys
20:35:35.0383 4072  b57nd60a - ok
20:35:35.0428 4072  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\windows\System32\bdesvc.dll
20:35:35.0431 4072  BDESVC - ok
20:35:35.0453 4072  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\windows\system32\drivers\Beep.sys
20:35:35.0454 4072  Beep - ok
20:35:35.0533 4072  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\windows\System32\qmgr.dll
20:35:35.0549 4072  BITS - ok
20:35:35.0570 4072  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\windows\system32\DRIVERS\blbdrive.sys
20:35:35.0571 4072  blbdrive - ok
20:35:35.0603 4072  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\windows\system32\DRIVERS\bowser.sys
20:35:35.0605 4072  bowser - ok
20:35:35.0665 4072  [ AAA4F992F879977A000FE8B8C730CD2C ] BPntDrv         C:\windows\system32\drivers\BPntDrv.sys
20:35:35.0669 4072  BPntDrv - ok
20:35:35.0699 4072  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\windows\system32\drivers\BrFiltLo.sys
20:35:35.0700 4072  BrFiltLo - ok
20:35:35.0713 4072  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\windows\system32\drivers\BrFiltUp.sys
20:35:35.0714 4072  BrFiltUp - ok
20:35:35.0745 4072  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\windows\System32\browser.dll
20:35:35.0748 4072  Browser - ok
20:35:35.0774 4072  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\windows\System32\Drivers\Brserid.sys
20:35:35.0779 4072  Brserid - ok
20:35:35.0797 4072  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\windows\System32\Drivers\BrSerWdm.sys
20:35:35.0800 4072  BrSerWdm - ok
20:35:35.0818 4072  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\windows\System32\Drivers\BrUsbMdm.sys
20:35:35.0820 4072  BrUsbMdm - ok
20:35:35.0834 4072  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\windows\System32\Drivers\BrUsbSer.sys
20:35:35.0835 4072  BrUsbSer - ok
20:35:35.0883 4072  [ CF98190A94F62E405C8CB255018B2315 ] BthEnum         C:\windows\system32\drivers\BthEnum.sys
20:35:35.0885 4072  BthEnum - ok
20:35:35.0915 4072  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\windows\system32\drivers\bthmodem.sys
20:35:35.0917 4072  BTHMODEM - ok
20:35:35.0943 4072  [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan          C:\windows\system32\DRIVERS\bthpan.sys
20:35:35.0947 4072  BthPan - ok
20:35:35.0986 4072  [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT         C:\windows\System32\Drivers\BTHport.sys
20:35:35.0995 4072  BTHPORT - ok
20:35:36.0031 4072  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\windows\system32\bthserv.dll
20:35:36.0035 4072  bthserv - ok
20:35:36.0087 4072  [ F188B7394D81010767B6DF3178519A37 ] BTHUSB          C:\windows\System32\Drivers\BTHUSB.sys
20:35:36.0089 4072  BTHUSB - ok
20:35:36.0149 4072  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\windows\system32\DRIVERS\cdfs.sys
20:35:36.0151 4072  cdfs - ok
20:35:36.0222 4072  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\windows\system32\DRIVERS\cdrom.sys
20:35:36.0225 4072  cdrom - ok
20:35:36.0289 4072  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\windows\System32\certprop.dll
20:35:36.0291 4072  CertPropSvc - ok
20:35:36.0340 4072  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\windows\system32\drivers\circlass.sys
20:35:36.0342 4072  circlass - ok
20:35:36.0382 4072  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\windows\system32\CLFS.sys
20:35:36.0388 4072  CLFS - ok
20:35:36.0442 4072  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
20:35:36.0445 4072  clr_optimization_v2.0.50727_32 - ok
20:35:36.0468 4072  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
20:35:36.0470 4072  clr_optimization_v2.0.50727_64 - ok
20:35:36.0544 4072  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
20:35:36.0547 4072  clr_optimization_v4.0.30319_32 - ok
20:35:36.0572 4072  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
20:35:36.0575 4072  clr_optimization_v4.0.30319_64 - ok
20:35:36.0599 4072  [ 50F92C943F18B070F166D019DFAB3D9A ] clwvd           C:\windows\system32\DRIVERS\clwvd.sys
20:35:36.0600 4072  clwvd - ok
20:35:36.0623 4072  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\windows\system32\DRIVERS\CmBatt.sys
20:35:36.0625 4072  CmBatt - ok
20:35:36.0653 4072  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\windows\system32\drivers\cmdide.sys
20:35:36.0654 4072  cmdide - ok
20:35:36.0695 4072  [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG             C:\windows\system32\Drivers\cng.sys
20:35:36.0702 4072  CNG - ok
20:35:36.0737 4072  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\windows\system32\drivers\compbatt.sys
20:35:36.0739 4072  Compbatt - ok
20:35:36.0790 4072  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\windows\system32\DRIVERS\CompositeBus.sys
20:35:36.0792 4072  CompositeBus - ok
20:35:36.0850 4072  COMSysApp - ok
20:35:36.0886 4072  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\windows\system32\drivers\crcdisk.sys
20:35:36.0888 4072  crcdisk - ok
20:35:36.0993 4072  [ D8129C49798CBBFB2E4351D4B7B8EF9C ] CryptSvc        C:\windows\system32\cryptsvc.dll
20:35:36.0997 4072  CryptSvc - ok
20:35:37.0176 4072  [ 72794D112CBAFF3BC0C29BF7350D4741 ] cvhsvc          C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
20:35:37.0183 4072  cvhsvc - ok
20:35:37.0278 4072  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\windows\system32\rpcss.dll
20:35:37.0288 4072  DcomLaunch - ok
20:35:37.0370 4072  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\windows\System32\defragsvc.dll
20:35:37.0376 4072  defragsvc - ok
20:35:37.0427 4072  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\windows\system32\Drivers\dfsc.sys
20:35:37.0430 4072  DfsC - ok
20:35:37.0542 4072  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\windows\system32\dhcpcore.dll
20:35:37.0548 4072  Dhcp - ok
20:35:37.0572 4072  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\windows\system32\drivers\discache.sys
20:35:37.0573 4072  discache - ok
20:35:37.0681 4072  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\windows\system32\drivers\disk.sys
20:35:37.0683 4072  Disk - ok
20:35:37.0718 4072  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\windows\System32\dnsrslvr.dll
20:35:37.0722 4072  Dnscache - ok
20:35:37.0764 4072  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\windows\System32\dot3svc.dll
20:35:37.0769 4072  dot3svc - ok
20:35:37.0786 4072  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\windows\system32\dps.dll
20:35:37.0790 4072  DPS - ok
20:35:37.0821 4072  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\windows\system32\drivers\drmkaud.sys
20:35:37.0822 4072  drmkaud - ok
20:35:37.0886 4072  [ AF2E16242AA723F68F461B6EAE2EAD3D ] DXGKrnl         C:\windows\System32\drivers\dxgkrnl.sys
20:35:37.0899 4072  DXGKrnl - ok
20:35:37.0944 4072  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\windows\System32\eapsvc.dll
20:35:37.0947 4072  EapHost - ok
20:35:38.0049 4072  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\windows\system32\drivers\evbda.sys
20:35:38.0117 4072  ebdrv - ok
20:35:38.0152 4072  [ C118A82CD78818C29AB228366EBF81C3 ] EFS             C:\windows\System32\lsass.exe
20:35:38.0156 4072  EFS - ok
20:35:38.0229 4072  [ 2C1A297638E4319179A1112D4D6522B8 ] EgisTec Service C:\Program Files (x86)\EgisTec BioExcess\EgisService.exe
20:35:38.0234 4072  EgisTec Service - ok
20:35:38.0278 4072  [ 0AC3BAA7DF250C76DD9BCFC51565CB5F ] EgisTec Service Help C:\Program Files (x86)\EgisTec Port Locker\Egishlpsvc.exe
20:35:38.0281 4072  EgisTec Service Help - ok
20:35:38.0318 4072  [ 7745AAFFB61438C28C75E18CE98D4E64 ] EgisTec Ticket Service C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe
20:35:38.0326 4072  EgisTec Ticket Service - ok
20:35:38.0358 4072  [ 33708C6D915F8DE734CF3ABB0731515B ] EgisTecFF       C:\windows\system32\DRIVERS\EgisTecFF.sys
20:35:38.0360 4072  EgisTecFF - ok
20:35:38.0424 4072  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\windows\ehome\ehRecvr.exe
20:35:38.0433 4072  ehRecvr - ok
20:35:38.0449 4072  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\windows\ehome\ehsched.exe
20:35:38.0452 4072  ehSched - ok
20:35:38.0483 4072  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\windows\system32\drivers\elxstor.sys
20:35:38.0490 4072  elxstor - ok
20:35:38.0503 4072  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\windows\system32\drivers\errdev.sys
20:35:38.0505 4072  ErrDev - ok
20:35:38.0550 4072  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\windows\system32\es.dll
20:35:38.0557 4072  EventSystem - ok
20:35:38.0582 4072  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\windows\system32\drivers\exfat.sys
20:35:38.0585 4072  exfat - ok
20:35:38.0604 4072  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\windows\system32\drivers\fastfat.sys
20:35:38.0608 4072  fastfat - ok
20:35:38.0655 4072  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\windows\system32\fxssvc.exe
20:35:38.0672 4072  Fax - ok
20:35:38.0722 4072  [ 3191ACA33088EE2481044FC0DB736442 ] fbfmon          C:\windows\system32\drivers\fbfmon.sys
20:35:38.0724 4072  fbfmon - ok
20:35:38.0762 4072  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\windows\system32\drivers\fdc.sys
20:35:38.0764 4072  fdc - ok
20:35:38.0795 4072  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\windows\system32\fdPHost.dll
20:35:38.0798 4072  fdPHost - ok
20:35:38.0852 4072  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\windows\system32\fdrespub.dll
20:35:38.0855 4072  FDResPub - ok
20:35:38.0881 4072  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\windows\system32\drivers\fileinfo.sys
20:35:38.0883 4072  FileInfo - ok
20:35:38.0902 4072  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\windows\system32\drivers\filetrace.sys
20:35:38.0903 4072  Filetrace - ok
20:35:38.0932 4072  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\windows\system32\drivers\flpydisk.sys
20:35:38.0934 4072  flpydisk - ok
20:35:38.0995 4072  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\windows\system32\drivers\fltmgr.sys
20:35:39.0000 4072  FltMgr - ok
20:35:39.0153 4072  [ C4C183E6551084039EC862DA1C945E3D ] FontCache       C:\windows\system32\FntCache.dll
20:35:39.0168 4072  FontCache - ok
20:35:39.0269 4072  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
20:35:39.0270 4072  FontCache3.0.0.0 - ok
20:35:39.0373 4072  [ 1899D0FB4C5AD0D6D0BFA258C54903F7 ] FPSensor        C:\windows\system32\Drivers\FPSensor.sys
20:35:39.0375 4072  FPSensor - ok
20:35:39.0407 4072  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\windows\system32\drivers\FsDepends.sys
20:35:39.0409 4072  FsDepends - ok
20:35:39.0438 4072  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\windows\system32\drivers\Fs_Rec.sys
20:35:39.0440 4072  Fs_Rec - ok
20:35:39.0484 4072  [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol          C:\windows\system32\DRIVERS\fvevol.sys
20:35:39.0488 4072  fvevol - ok
20:35:39.0524 4072  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\windows\system32\drivers\gagp30kx.sys
20:35:39.0526 4072  gagp30kx - ok
20:35:39.0561 4072  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\windows\System32\gpsvc.dll
20:35:39.0573 4072  gpsvc - ok
20:35:39.0675 4072  [ F02A533F517EB38333CB12A9E8963773 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
20:35:39.0678 4072  gupdate - ok
20:35:39.0702 4072  [ F02A533F517EB38333CB12A9E8963773 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
20:35:39.0703 4072  gupdatem - ok
20:35:39.0705 4072  gxubxeme - ok
20:35:39.0730 4072  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\windows\system32\drivers\hcw85cir.sys
20:35:39.0732 4072  hcw85cir - ok
20:35:39.0757 4072  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys
20:35:39.0762 4072  HdAudAddService - ok
20:35:39.0793 4072  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\windows\system32\DRIVERS\HDAudBus.sys
20:35:39.0795 4072  HDAudBus - ok
20:35:39.0825 4072  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\windows\system32\drivers\HidBatt.sys
20:35:39.0827 4072  HidBatt - ok
20:35:39.0839 4072  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\windows\system32\drivers\hidbth.sys
20:35:39.0841 4072  HidBth - ok
20:35:39.0852 4072  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\windows\system32\drivers\hidir.sys
20:35:39.0854 4072  HidIr - ok
20:35:39.0878 4072  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\windows\system32\hidserv.dll
20:35:39.0881 4072  hidserv - ok
20:35:39.0940 4072  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\windows\system32\DRIVERS\hidusb.sys
20:35:39.0942 4072  HidUsb - ok
20:35:39.0976 4072  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\windows\system32\kmsvc.dll
20:35:39.0981 4072  hkmsvc - ok
20:35:40.0016 4072  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\windows\system32\ListSvc.dll
20:35:40.0022 4072  HomeGroupListener - ok
20:35:40.0033 4072  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\windows\system32\provsvc.dll
20:35:40.0040 4072  HomeGroupProvider - ok
20:35:40.0064 4072  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\windows\system32\drivers\HpSAMD.sys
20:35:40.0067 4072  HpSAMD - ok
20:35:40.0094 4072  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\windows\system32\drivers\HTTP.sys
20:35:40.0104 4072  HTTP - ok
20:35:40.0121 4072  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\windows\system32\drivers\hwpolicy.sys
20:35:40.0122 4072  hwpolicy - ok
20:35:40.0148 4072  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\windows\system32\DRIVERS\i8042prt.sys
20:35:40.0150 4072  i8042prt - ok
20:35:40.0176 4072  [ 53CC5BF8B5A219119953C7ABB19A7705 ] iaStor          C:\windows\system32\DRIVERS\iaStor.sys
20:35:40.0180 4072  iaStor - ok
20:35:40.0234 4072  [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV         C:\windows\system32\drivers\iaStorV.sys
20:35:40.0240 4072  iaStorV - ok
20:35:40.0299 4072  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
20:35:40.0310 4072  idsvc - ok
20:35:40.0582 4072  [ 795C99DC4F574C97C03D0BB39CF099EE ] igfx            C:\windows\system32\DRIVERS\igdkmd64.sys
20:35:40.0822 4072  igfx - ok
20:35:40.0852 4072  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\windows\system32\drivers\iirsp.sys
20:35:40.0854 4072  iirsp - ok
20:35:40.0913 4072  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\windows\System32\ikeext.dll
20:35:40.0925 4072  IKEEXT - ok
20:35:41.0026 4072  [ 03076F51AF9F78A272CCCDE03E9340CE ] IntcAzAudAddService C:\windows\system32\drivers\RTKVHD64.sys
20:35:41.0057 4072  IntcAzAudAddService - ok
20:35:41.0099 4072  [ FC727061C0F47C8059E88E05D5C8E381 ] IntcDAud        C:\windows\system32\DRIVERS\IntcDAud.sys
20:35:41.0104 4072  IntcDAud - ok
20:35:41.0136 4072  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\windows\system32\drivers\intelide.sys
20:35:41.0138 4072  intelide - ok
20:35:41.0160 4072  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\windows\system32\DRIVERS\intelppm.sys
20:35:41.0161 4072  intelppm - ok
20:35:41.0194 4072  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\windows\system32\ipbusenum.dll
20:35:41.0199 4072  IPBusEnum - ok
20:35:41.0214 4072  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\windows\system32\DRIVERS\ipfltdrv.sys
20:35:41.0216 4072  IpFilterDriver - ok
20:35:41.0239 4072  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\windows\system32\drivers\IPMIDrv.sys
20:35:41.0241 4072  IPMIDRV - ok
20:35:41.0265 4072  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\windows\system32\drivers\ipnat.sys
20:35:41.0267 4072  IPNAT - ok
20:35:41.0294 4072  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\windows\system32\drivers\irenum.sys
20:35:41.0296 4072  IRENUM - ok
20:35:41.0315 4072  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\windows\system32\drivers\isapnp.sys
20:35:41.0317 4072  isapnp - ok
20:35:41.0331 4072  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\windows\system32\drivers\msiscsi.sys
20:35:41.0336 4072  iScsiPrt - ok
20:35:41.0371 4072  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\windows\system32\DRIVERS\kbdclass.sys
20:35:41.0373 4072  kbdclass - ok
20:35:41.0397 4072  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\windows\system32\drivers\kbdhid.sys
20:35:41.0399 4072  kbdhid - ok
20:35:41.0419 4072  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\windows\system32\lsass.exe
20:35:41.0423 4072  KeyIso - ok
20:35:41.0505 4072  [ 140692763A50BFFF322CDC076300587E ] Kodak AiO Network Discovery Service C:\Program Files (x86)\Kodak\AiO\Center\EKAiOHostService.exe
20:35:41.0511 4072  Kodak AiO Network Discovery Service - ok
20:35:41.0592 4072  [ E29F999616D7C08B0E91296908C47CAF ] Kodak AiO Status Monitor Service C:\Program Files (x86)\Kodak\AiO\StatusMonitor\EKPrinterSDK.exe
20:35:41.0601 4072  Kodak AiO Status Monitor Service - ok
20:35:41.0623 4072  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\windows\system32\Drivers\ksecdd.sys
20:35:41.0625 4072  KSecDD - ok
20:35:41.0644 4072  [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg         C:\windows\system32\Drivers\ksecpkg.sys
20:35:41.0647 4072  KSecPkg - ok
20:35:41.0679 4072  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\windows\system32\drivers\ksthunk.sys
20:35:41.0681 4072  ksthunk - ok
20:35:41.0721 4072  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\windows\system32\msdtckrm.dll
20:35:41.0729 4072  KtmRm - ok
20:35:41.0773 4072  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\windows\system32\srvsvc.dll
20:35:41.0784 4072  LanmanServer - ok
20:35:41.0830 4072  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\windows\System32\wkssvc.dll
20:35:41.0837 4072  LanmanWorkstation - ok
20:35:41.0938 4072  [ BE166935083F9C38EDFDC21B9A7A679B ] LHDmgr          C:\windows\system32\DRIVERS\LhdX64.sys
20:35:41.0940 4072  LHDmgr - ok
20:35:42.0030 4072  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\windows\system32\DRIVERS\lltdio.sys
20:35:42.0031 4072  lltdio - ok
20:35:42.0091 4072  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\windows\System32\lltdsvc.dll
20:35:42.0099 4072  lltdsvc - ok
20:35:42.0113 4072  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\windows\System32\lmhsvc.dll
20:35:42.0116 4072  lmhosts - ok
20:35:42.0199 4072  [ 2ED1786B7542CDA261029F6B526EDF44 ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
20:35:42.0204 4072  LMS - ok
20:35:42.0290 4072  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\windows\system32\drivers\lsi_fc.sys
20:35:42.0292 4072  LSI_FC - ok
20:35:42.0313 4072  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\windows\system32\drivers\lsi_sas.sys
20:35:42.0316 4072  LSI_SAS - ok
20:35:42.0354 4072  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\windows\system32\drivers\lsi_sas2.sys
20:35:42.0356 4072  LSI_SAS2 - ok
20:35:42.0392 4072  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\windows\system32\drivers\lsi_scsi.sys
20:35:42.0406 4072  LSI_SCSI - ok
20:35:42.0448 4072  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\windows\system32\drivers\luafv.sys
20:35:42.0451 4072  luafv - ok
20:35:42.0494 4072  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\windows\system32\Mcx2Svc.dll
20:35:42.0499 4072  Mcx2Svc - ok
20:35:42.0516 4072  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\windows\system32\drivers\megasas.sys
20:35:42.0518 4072  megasas - ok
20:35:42.0552 4072  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\windows\system32\drivers\MegaSR.sys
20:35:42.0557 4072  MegaSR - ok
20:35:42.0587 4072  [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64          C:\windows\system32\DRIVERS\HECIx64.sys
20:35:42.0589 4072  MEIx64 - ok
20:35:42.0617 4072  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\windows\system32\mmcss.dll
20:35:42.0622 4072  MMCSS - ok
20:35:42.0644 4072  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\windows\system32\drivers\modem.sys
20:35:42.0646 4072  Modem - ok
20:35:42.0662 4072  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\windows\system32\DRIVERS\monitor.sys
20:35:42.0663 4072  monitor - ok
20:35:42.0716 4072  [ E90ABA3C6F01BE2C456C4AA857B28646 ] motmodem        C:\windows\system32\DRIVERS\motmodem.sys
20:35:42.0718 4072  motmodem - ok
20:35:42.0756 4072  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\windows\system32\DRIVERS\mouclass.sys
20:35:42.0759 4072  mouclass - ok
20:35:42.0773 4072  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\windows\system32\DRIVERS\mouhid.sys
20:35:42.0775 4072  mouhid - ok
20:35:42.0792 4072  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\windows\system32\drivers\mountmgr.sys
20:35:42.0795 4072  mountmgr - ok
20:35:42.0826 4072  [ F8A10560B35C66F9DE212F03DAD5BFA7 ] MpFilter        C:\windows\system32\DRIVERS\MpFilter.sys
20:35:42.0830 4072  MpFilter - ok
20:35:42.0845 4072  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\windows\system32\drivers\mpio.sys
20:35:42.0848 4072  mpio - ok
20:35:42.0879 4072  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\windows\system32\drivers\mpsdrv.sys
20:35:42.0882 4072  mpsdrv - ok
20:35:42.0906 4072  [ CD22D2563039DDA6793F7624719363A7 ] MQAC            C:\windows\system32\drivers\mqac.sys
20:35:42.0909 4072  MQAC - ok
20:35:42.0927 4072  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\windows\system32\drivers\mrxdav.sys
20:35:42.0930 4072  MRxDAV - ok
20:35:42.0963 4072  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\windows\system32\DRIVERS\mrxsmb.sys
20:35:42.0966 4072  mrxsmb - ok
20:35:42.0987 4072  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\windows\system32\DRIVERS\mrxsmb10.sys
20:35:42.0992 4072  mrxsmb10 - ok
20:35:43.0010 4072  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\windows\system32\DRIVERS\mrxsmb20.sys
20:35:43.0013 4072  mrxsmb20 - ok
20:35:43.0027 4072  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\windows\system32\drivers\msahci.sys
20:35:43.0029 4072  msahci - ok
20:35:43.0042 4072  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\windows\system32\drivers\msdsm.sys
20:35:43.0045 4072  msdsm - ok
20:35:43.0061 4072  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\windows\System32\msdtc.exe
20:35:43.0067 4072  MSDTC - ok
20:35:43.0086 4072  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\windows\system32\drivers\Msfs.sys
20:35:43.0088 4072  Msfs - ok
20:35:43.0122 4072  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\windows\System32\drivers\mshidkmdf.sys
20:35:43.0124 4072  mshidkmdf - ok
20:35:43.0137 4072  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\windows\system32\drivers\msisadrv.sys
20:35:43.0139 4072  msisadrv - ok
20:35:43.0168 4072  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\windows\system32\iscsiexe.dll
20:35:43.0174 4072  MSiSCSI - ok
20:35:43.0176 4072  msiserver - ok
20:35:43.0201 4072  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\windows\system32\drivers\MSKSSRV.sys
20:35:43.0203 4072  MSKSSRV - ok
20:35:43.0278 4072  MsMpSvc - ok
20:35:43.0298 4072  [ FAAEAEF99E53561BEEE58F946CA56F0D ] MSMQ            C:\windows\system32\mqsvc.exe
20:35:43.0302 4072  MSMQ - ok
20:35:43.0328 4072  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\windows\system32\drivers\MSPCLOCK.sys
20:35:43.0330 4072  MSPCLOCK - ok
20:35:43.0337 4072  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\windows\system32\drivers\MSPQM.sys
20:35:43.0339 4072  MSPQM - ok
20:35:43.0361 4072  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\windows\system32\drivers\MsRPC.sys
20:35:43.0367 4072  MsRPC - ok
20:35:43.0384 4072  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\windows\system32\DRIVERS\mssmbios.sys
20:35:43.0386 4072  mssmbios - ok
20:35:43.0422 4072  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\windows\system32\drivers\MSTEE.sys
20:35:43.0424 4072  MSTEE - ok
20:35:43.0442 4072  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\windows\system32\drivers\MTConfig.sys
20:35:43.0443 4072  MTConfig - ok
20:35:43.0456 4072  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\windows\system32\Drivers\mup.sys
20:35:43.0458 4072  Mup - ok
20:35:43.0473 4072  [ 9B1EAC6FAF6F37305E822F5588DC8056 ] mwlPSDFilter    C:\windows\system32\DRIVERS\mwlPSDFilter.sys
20:35:43.0474 4072  mwlPSDFilter - ok
20:35:43.0490 4072  [ AD55C1524B296280ED9C6E0D730D35DA ] mwlPSDNServ     C:\windows\system32\DRIVERS\mwlPSDNServ.sys
20:35:43.0492 4072  mwlPSDNServ - ok
20:35:43.0500 4072  [ 2B599E6EC8843637BDD62E7F8F3BA201 ] mwlPSDVDisk     C:\windows\system32\DRIVERS\mwlPSDVDisk.sys
20:35:43.0502 4072  mwlPSDVDisk - ok
20:35:43.0539 4072  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\windows\system32\qagentRT.dll
20:35:43.0549 4072  napagent - ok
20:35:43.0590 4072  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\windows\system32\DRIVERS\nwifi.sys
20:35:43.0595 4072  NativeWifiP - ok
20:35:43.0650 4072  [ 760E38053BF56E501D562B70AD796B88 ] NDIS            C:\windows\system32\drivers\ndis.sys
20:35:43.0661 4072  NDIS - ok
20:35:43.0683 4072  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\windows\system32\DRIVERS\ndiscap.sys
20:35:43.0685 4072  NdisCap - ok
20:35:43.0705 4072  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\windows\system32\DRIVERS\ndistapi.sys
20:35:43.0706 4072  NdisTapi - ok
20:35:43.0735 4072  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\windows\system32\DRIVERS\ndisuio.sys
20:35:43.0737 4072  Ndisuio - ok
20:35:43.0754 4072  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\windows\system32\DRIVERS\ndiswan.sys
20:35:43.0757 4072  NdisWan - ok
20:35:43.0764 4072  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\windows\system32\drivers\NDProxy.sys
20:35:43.0766 4072  NDProxy - ok
20:35:43.0786 4072  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\windows\system32\DRIVERS\netbios.sys
20:35:43.0788 4072  NetBIOS - ok
20:35:43.0798 4072  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\windows\system32\DRIVERS\netbt.sys
20:35:43.0803 4072  NetBT - ok
20:35:43.0830 4072  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\windows\system32\lsass.exe
20:35:43.0834 4072  Netlogon - ok
20:35:43.0876 4072  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\windows\System32\netman.dll
20:35:43.0884 4072  Netman - ok
20:35:43.0902 4072  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:35:43.0903 4072  NetMsmqActivator - ok
20:35:43.0907 4072  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:35:43.0908 4072  NetPipeActivator - ok
20:35:43.0949 4072  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\windows\System32\netprofm.dll
20:35:43.0961 4072  netprofm - ok
20:35:43.0990 4072  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:35:43.0992 4072  NetTcpActivator - ok
20:35:43.0996 4072  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:35:43.0997 4072  NetTcpPortSharing - ok
20:35:44.0087 4072  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\windows\system32\drivers\nfrd960.sys
20:35:44.0089 4072  nfrd960 - ok
20:35:44.0127 4072  [ 162100E0BC8377710F9D170631921C03 ] NisDrv          C:\windows\system32\DRIVERS\NisDrvWFP.sys
20:35:44.0130 4072  NisDrv - ok
20:35:44.0168 4072  NisSrv - ok
20:35:44.0215 4072  [ 8AD77806D336673F270DB31645267293 ] NlaSvc          C:\windows\System32\nlasvc.dll
20:35:44.0224 4072  NlaSvc - ok
20:35:44.0239 4072  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\windows\system32\drivers\Npfs.sys
20:35:44.0241 4072  Npfs - ok
20:35:44.0261 4072  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\windows\system32\nsisvc.dll
20:35:44.0267 4072  nsi - ok
20:35:44.0272 4072  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\windows\system32\drivers\nsiproxy.sys
20:35:44.0273 4072  nsiproxy - ok
20:35:44.0338 4072  [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs            C:\windows\system32\drivers\Ntfs.sys
20:35:44.0358 4072  Ntfs - ok
20:35:44.0385 4072  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\windows\system32\drivers\Null.sys
20:35:44.0387 4072  Null - ok
20:35:44.0419 4072  [ 0A92CB65770442ED0DC44834632F66AD ] nvraid          C:\windows\system32\drivers\nvraid.sys
20:35:44.0423 4072  nvraid - ok
20:35:44.0433 4072  [ DAB0E87525C10052BF65F06152F37E4A ] nvstor          C:\windows\system32\drivers\nvstor.sys
20:35:44.0436 4072  nvstor - ok
20:35:44.0465 4072  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\windows\system32\drivers\nv_agp.sys
20:35:44.0468 4072  nv_agp - ok
20:35:44.0485 4072  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\windows\system32\drivers\ohci1394.sys
20:35:44.0487 4072  ohci1394 - ok
20:35:44.0537 4072  [ 30B5F9FB0C35AE6B4A0851D24CE2EE8B ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
20:35:44.0540 4072  ose - ok
20:35:44.0683 4072  [ FE9C0029E1AF26350D9985D00520E5C8 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
20:35:44.0785 4072  osppsvc - ok
20:35:44.0818 4072  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\windows\system32\pnrpsvc.dll
20:35:44.0826 4072  p2pimsvc - ok
20:35:44.0848 4072  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\windows\system32\p2psvc.dll
20:35:44.0858 4072  p2psvc - ok
20:35:44.0881 4072  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\windows\system32\drivers\parport.sys
20:35:44.0884 4072  Parport - ok
20:35:44.0917 4072  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\windows\system32\drivers\partmgr.sys
20:35:44.0919 4072  partmgr - ok
20:35:44.0946 4072  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\windows\System32\pcasvc.dll
20:35:44.0953 4072  PcaSvc - ok
20:35:44.0986 4072  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\windows\system32\drivers\pci.sys
20:35:44.0990 4072  pci - ok
20:35:45.0004 4072  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\windows\system32\drivers\pciide.sys
20:35:45.0005 4072  pciide - ok
20:35:45.0022 4072  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\windows\system32\drivers\pcmcia.sys
20:35:45.0026 4072  pcmcia - ok
20:35:45.0063 4072  [ AF7CE12C4F3DC8CB2B07685C916BBCFE ] pcouffin        C:\windows\system32\Drivers\pcouffin.sys
20:35:45.0065 4072  pcouffin - ok
20:35:45.0086 4072  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\windows\system32\drivers\pcw.sys
20:35:45.0088 4072  pcw - ok
20:35:45.0116 4072  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\windows\system32\drivers\peauth.sys
20:35:45.0125 4072  PEAUTH - ok
20:35:45.0205 4072  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\windows\SysWow64\perfhost.exe
20:35:45.0209 4072  PerfHost - ok
20:35:45.0271 4072  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\windows\system32\pla.dll
20:35:45.0293 4072  pla - ok
20:35:45.0334 4072  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\windows\system32\umpnpmgr.dll
20:35:45.0346 4072  PlugPlay - ok
20:35:45.0378 4072  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\windows\system32\pnrpauto.dll
20:35:45.0383 4072  PNRPAutoReg - ok
20:35:45.0408 4072  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\windows\system32\pnrpsvc.dll
20:35:45.0415 4072  PNRPsvc - ok
20:35:45.0445 4072  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\windows\System32\ipsecsvc.dll
20:35:45.0454 4072  PolicyAgent - ok
20:35:45.0482 4072  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\windows\system32\umpo.dll
20:35:45.0490 4072  Power - ok
20:35:45.0527 4072  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\windows\system32\DRIVERS\raspptp.sys
20:35:45.0530 4072  PptpMiniport - ok
20:35:45.0545 4072  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\windows\system32\drivers\processr.sys
20:35:45.0547 4072  Processor - ok
20:35:45.0578 4072  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc         C:\windows\system32\profsvc.dll
20:35:45.0585 4072  ProfSvc - ok
20:35:45.0597 4072  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\windows\system32\lsass.exe
20:35:45.0601 4072  ProtectedStorage - ok
20:35:45.0634 4072  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\windows\system32\DRIVERS\pacer.sys
20:35:45.0638 4072  Psched - ok
20:35:45.0811 4072  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\windows\system32\drivers\ql2300.sys
20:35:45.0835 4072  ql2300 - ok
20:35:45.0877 4072  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\windows\system32\drivers\ql40xx.sys
20:35:45.0882 4072  ql40xx - ok
20:35:45.0898 4072  qurpkkhi - ok
20:35:45.0933 4072  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\windows\system32\qwave.dll
20:35:45.0941 4072  QWAVE - ok
20:35:45.0966 4072  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\windows\system32\drivers\qwavedrv.sys
20:35:45.0969 4072  QWAVEdrv - ok
20:35:45.0991 4072  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\windows\system32\DRIVERS\rasacd.sys
20:35:45.0993 4072  RasAcd - ok
20:35:46.0045 4072  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\windows\system32\DRIVERS\AgileVpn.sys
20:35:46.0047 4072  RasAgileVpn - ok
20:35:46.0059 4072  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\windows\System32\rasauto.dll
20:35:46.0065 4072  RasAuto - ok
20:35:46.0081 4072  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\windows\system32\DRIVERS\rasl2tp.sys
20:35:46.0084 4072  Rasl2tp - ok
20:35:46.0124 4072  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\windows\System32\rasmans.dll
20:35:46.0134 4072  RasMan - ok
20:35:46.0160 4072  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\windows\system32\DRIVERS\raspppoe.sys
20:35:46.0167 4072  RasPppoe - ok
20:35:46.0195 4072  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\windows\system32\DRIVERS\rassstp.sys
20:35:46.0197 4072  RasSstp - ok
20:35:46.0249 4072  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\windows\system32\DRIVERS\rdbss.sys
20:35:46.0255 4072  rdbss - ok
20:35:46.0269 4072  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\windows\system32\drivers\rdpbus.sys
20:35:46.0271 4072  rdpbus - ok
20:35:46.0288 4072  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\windows\system32\DRIVERS\RDPCDD.sys
20:35:46.0290 4072  RDPCDD - ok
20:35:46.0314 4072  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\windows\system32\drivers\rdpencdd.sys
20:35:46.0315 4072  RDPENCDD - ok
20:35:46.0323 4072  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\windows\system32\drivers\rdprefmp.sys
20:35:46.0324 4072  RDPREFMP - ok
20:35:46.0351 4072  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\windows\system32\drivers\RDPWD.sys
20:35:46.0355 4072  RDPWD - ok
20:35:46.0401 4072  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\windows\system32\drivers\rdyboost.sys
20:35:46.0405 4072  rdyboost - ok
20:35:46.0444 4072  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\windows\System32\mprdim.dll
20:35:46.0449 4072  RemoteAccess - ok
20:35:46.0481 4072  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\windows\system32\regsvc.dll
20:35:46.0488 4072  RemoteRegistry - ok
20:35:46.0520 4072  [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM          C:\windows\system32\DRIVERS\rfcomm.sys
20:35:46.0523 4072  RFCOMM - ok
20:35:46.0540 4072  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\windows\System32\RpcEpMap.dll
20:35:46.0547 4072  RpcEptMapper - ok
20:35:46.0560 4072  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\windows\system32\locator.exe
20:35:46.0564 4072  RpcLocator - ok
20:35:46.0599 4072  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\windows\system32\rpcss.dll
20:35:46.0608 4072  RpcSs - ok
20:35:46.0635 4072  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\windows\system32\DRIVERS\rspndr.sys
20:35:46.0638 4072  rspndr - ok
20:35:46.0684 4072  [ E54A5586A28D0630A79A68BBAB84BFCF ] RSUSBVSTOR      C:\windows\system32\Drivers\RtsUVStor.sys
20:35:46.0688 4072  RSUSBVSTOR - ok
20:35:46.0724 4072  [ 20A466B9EA2BD828C0EC723F99B8CFE7 ] RTL8167         C:\windows\system32\DRIVERS\Rt64win7.sys
20:35:46.0730 4072  RTL8167 - ok
20:35:46.0834 4072  [ 8E5297D5747A90636D5EFAEC8E466623 ] S6000KNT        C:\windows\system32\Drivers\S6000KNT.sys
20:35:46.0904 4072  S6000KNT - ok
20:35:46.0919 4072  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs           C:\windows\system32\lsass.exe
20:35:46.0923 4072  SamSs - ok
20:35:46.0947 4072  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\windows\system32\drivers\sbp2port.sys
20:35:46.0950 4072  sbp2port - ok
20:35:47.0052 4072  [ 794D4B48DFB6E999537C7C3947863463 ] SBSDWSCService  C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
20:35:47.0063 4072  SBSDWSCService - ok
20:35:47.0085 4072  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\windows\System32\SCardSvr.dll
20:35:47.0095 4072  SCardSvr - ok
20:35:47.0108 4072  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\windows\system32\DRIVERS\scfilter.sys
20:35:47.0110 4072  scfilter - ok
20:35:47.0142 4072  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\windows\system32\schedsvc.dll
20:35:47.0165 4072  Schedule - ok
20:35:47.0200 4072  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\windows\System32\certprop.dll
20:35:47.0201 4072  SCPolicySvc - ok
20:35:47.0219 4072  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\windows\System32\SDRSVC.dll
20:35:47.0226 4072  SDRSVC - ok
20:35:47.0259 4072  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\windows\system32\drivers\secdrv.sys
20:35:47.0262 4072  secdrv - ok
20:35:47.0293 4072  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\windows\system32\seclogon.dll
20:35:47.0302 4072  seclogon - ok
20:35:47.0313 4072  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\windows\System32\sens.dll
20:35:47.0321 4072  SENS - ok
20:35:47.0352 4072  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\windows\system32\sensrsvc.dll
20:35:47.0358 4072  SensrSvc - ok
20:35:47.0375 4072  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\windows\system32\drivers\serenum.sys
20:35:47.0378 4072  Serenum - ok
20:35:47.0400 4072  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\windows\system32\drivers\serial.sys
20:35:47.0403 4072  Serial - ok
20:35:47.0414 4072  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\windows\system32\drivers\sermouse.sys
20:35:47.0415 4072  sermouse - ok
20:35:47.0443 4072  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\windows\system32\sessenv.dll
20:35:47.0451 4072  SessionEnv - ok
20:35:47.0468 4072  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\windows\system32\drivers\sffdisk.sys
20:35:47.0470 4072  sffdisk - ok
20:35:47.0487 4072  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\windows\system32\drivers\sffp_mmc.sys
20:35:47.0488 4072  sffp_mmc - ok
20:35:47.0501 4072  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\windows\system32\drivers\sffp_sd.sys
20:35:47.0504 4072  sffp_sd - ok
20:35:47.0523 4072  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\windows\system32\drivers\sfloppy.sys
20:35:47.0525 4072  sfloppy - ok
20:35:47.0566 4072  [ C6CC9297BD53E5229653303E556AA539 ] Sftfs           C:\windows\system32\DRIVERS\Sftfslh.sys
20:35:47.0576 4072  Sftfs - ok
20:35:47.0645 4072  [ 13693B6354DD6E72DC5131DA7D764B90 ] sftlist         C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
20:35:47.0649 4072  sftlist - ok
20:35:47.0662 4072  [ 390AA7BC52CEE43F6790CDEA1E776703 ] Sftplay         C:\windows\system32\DRIVERS\Sftplaylh.sys
20:35:47.0667 4072  Sftplay - ok
20:35:47.0677 4072  [ 617E29A0B0A2807466560D4C4E338D3E ] Sftredir        C:\windows\system32\DRIVERS\Sftredirlh.sys
20:35:47.0679 4072  Sftredir - ok
20:35:47.0710 4072  [ 8F571F016FA1976F445147E9E6C8AE9B ] Sftvol          C:\windows\system32\DRIVERS\Sftvollh.sys
20:35:47.0711 4072  Sftvol - ok
20:35:47.0749 4072  [ C3CDDD18F43D44AB713CF8C4916F7696 ] sftvsa          C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
20:35:47.0751 4072  sftvsa - ok
20:35:47.0779 4072  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\windows\System32\shsvcs.dll
20:35:47.0789 4072  ShellHWDetection - ok
20:35:47.0810 4072  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\windows\system32\drivers\SiSRaid2.sys
20:35:47.0812 4072  SiSRaid2 - ok
20:35:47.0839 4072  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\windows\system32\drivers\sisraid4.sys
20:35:47.0841 4072  SiSRaid4 - ok
20:35:47.0872 4072  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\windows\system32\DRIVERS\smb.sys
20:35:47.0875 4072  Smb - ok
20:35:47.0917 4072  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\windows\System32\snmptrap.exe
20:35:47.0924 4072  SNMPTRAP - ok
20:35:47.0936 4072  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\windows\system32\drivers\spldr.sys
20:35:47.0938 4072  spldr - ok
20:35:47.0982 4072  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler         C:\windows\System32\spoolsv.exe
20:35:47.0991 4072  Spooler - ok
20:35:48.0075 4072  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\windows\system32\sppsvc.exe
20:35:48.0167 4072  sppsvc - ok
20:35:48.0185 4072  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\windows\system32\sppuinotify.dll
20:35:48.0191 4072  sppuinotify - ok
20:35:48.0247 4072  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\windows\system32\DRIVERS\srv.sys
20:35:48.0254 4072  srv - ok
20:35:48.0284 4072  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\windows\system32\DRIVERS\srv2.sys
20:35:48.0290 4072  srv2 - ok
20:35:48.0310 4072  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\windows\system32\DRIVERS\srvnet.sys
20:35:48.0314 4072  srvnet - ok
20:35:48.0408 4072  [ 8F8324ED1DE63FFC7B1A02CD2D963C72 ] ssadbus         C:\windows\system32\DRIVERS\ssadbus.sys
20:35:48.0412 4072  ssadbus - ok
20:35:48.0475 4072  [ 58221EFCB74167B73667F0024C661CE0 ] ssadmdfl        C:\windows\system32\DRIVERS\ssadmdfl.sys
20:35:48.0477 4072  ssadmdfl - ok
20:35:48.0499 4072  [ 4DA7C71BFAC5AD71255B7E4CAB980163 ] ssadmdm         C:\windows\system32\DRIVERS\ssadmdm.sys
20:35:48.0503 4072  ssadmdm - ok
20:35:48.0583 4072  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\windows\System32\ssdpsrv.dll
20:35:48.0593 4072  SSDPSRV - ok
20:35:48.0612 4072  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\windows\system32\sstpsvc.dll
20:35:48.0620 4072  SstpSvc - ok
20:35:48.0664 4072  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\windows\system32\drivers\stexstor.sys
20:35:48.0666 4072  stexstor - ok
20:35:48.0758 4072  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\windows\System32\wiaservc.dll
20:35:48.0771 4072  stisvc - ok
20:35:48.0802 4072  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\windows\system32\DRIVERS\swenum.sys
20:35:48.0804 4072  swenum - ok
20:35:48.0883 4072  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\windows\System32\swprv.dll
20:35:48.0895 4072  swprv - ok
20:35:49.0124 4072  [ 08425CD92972C6430F350A9697F4A553 ] SynTP           C:\windows\system32\DRIVERS\SynTP.sys
20:35:49.0142 4072  SynTP - ok
20:35:49.0216 4072  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\windows\system32\sysmain.dll
20:35:49.0241 4072  SysMain - ok
20:35:49.0258 4072  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\windows\System32\TabSvc.dll
20:35:49.0265 4072  TabletInputService - ok
20:35:49.0298 4072  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\windows\System32\tapisrv.dll
20:35:49.0308 4072  TapiSrv - ok
20:35:49.0324 4072  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\windows\System32\tbssvc.dll
20:35:49.0330 4072  TBS - ok
20:35:49.0394 4072  [ 9849EA3843A2ADBDD1497E97A85D8CAE ] Tcpip           C:\windows\system32\drivers\tcpip.sys
20:35:49.0418 4072  Tcpip - ok
20:35:49.0483 4072  [ 9849EA3843A2ADBDD1497E97A85D8CAE ] TCPIP6          C:\windows\system32\DRIVERS\tcpip.sys
20:35:49.0495 4072  TCPIP6 - ok
20:35:49.0533 4072  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg        C:\windows\system32\drivers\tcpipreg.sys
20:35:49.0535 4072  tcpipreg - ok
20:35:49.0562 4072  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\windows\system32\drivers\tdpipe.sys
20:35:49.0564 4072  TDPIPE - ok
20:35:49.0586 4072  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\windows\system32\drivers\tdtcp.sys
20:35:49.0588 4072  TDTCP - ok
20:35:49.0602 4072  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\windows\system32\DRIVERS\tdx.sys
20:35:49.0605 4072  tdx - ok
20:35:49.0625 4072  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\windows\system32\DRIVERS\termdd.sys
20:35:49.0627 4072  TermDD - ok
20:35:49.0663 4072  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\windows\System32\termsrv.dll
20:35:49.0677 4072  TermService - ok
20:35:49.0685 4072  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\windows\system32\themeservice.dll
20:35:49.0693 4072  Themes - ok
20:35:49.0718 4072  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\windows\system32\mmcss.dll
20:35:49.0722 4072  THREADORDER - ok
20:35:49.0758 4072  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\windows\System32\trkwks.dll
20:35:49.0765 4072  TrkWks - ok
20:35:49.0817 4072  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe
20:35:49.0820 4072  TrustedInstaller - ok
20:35:49.0828 4072  [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv        C:\windows\system32\DRIVERS\tssecsrv.sys
20:35:49.0830 4072  tssecsrv - ok
20:35:49.0858 4072  [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt        C:\windows\system32\drivers\tsusbflt.sys
20:35:49.0860 4072  TsUsbFlt - ok
20:35:49.0876 4072  [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD         C:\windows\system32\drivers\TsUsbGD.sys
20:35:49.0878 4072  TsUsbGD - ok
20:35:49.0905 4072  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\windows\system32\DRIVERS\tunnel.sys
20:35:49.0908 4072  tunnel - ok
20:35:49.0926 4072  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\windows\system32\drivers\uagp35.sys
20:35:49.0929 4072  uagp35 - ok
20:35:49.0946 4072  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\windows\system32\DRIVERS\udfs.sys
20:35:49.0952 4072  udfs - ok
20:35:49.0999 4072  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\windows\system32\UI0Detect.exe
20:35:50.0012 4072  UI0Detect - ok
20:35:50.0043 4072  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\windows\system32\drivers\uliagpkx.sys
20:35:50.0045 4072  uliagpkx - ok
20:35:50.0097 4072  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\windows\system32\DRIVERS\umbus.sys
20:35:50.0100 4072  umbus - ok
20:35:50.0161 4072  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\windows\system32\DRIVERS\umpass.sys
20:35:50.0163 4072  UmPass - ok
20:35:50.0362 4072  [ 7E5E1603D0FF2D240AE70295C5C3FEFC ] UNS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
20:35:50.0393 4072  UNS - ok
20:35:50.0434 4072  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\windows\System32\upnphost.dll
20:35:50.0442 4072  upnphost - ok
20:35:50.0484 4072  [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp         C:\windows\system32\DRIVERS\usbccgp.sys
20:35:50.0487 4072  usbccgp - ok
20:35:50.0534 4072  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\windows\system32\drivers\usbcir.sys
20:35:50.0536 4072  usbcir - ok
20:35:50.0576 4072  [ C025055FE7B87701EB042095DF1A2D7B ] usbehci         C:\windows\system32\drivers\usbehci.sys
20:35:50.0578 4072  usbehci - ok
20:35:50.0625 4072  [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub          C:\windows\system32\DRIVERS\usbhub.sys
20:35:50.0631 4072  usbhub - ok
20:35:50.0647 4072  [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci         C:\windows\system32\drivers\usbohci.sys
20:35:50.0649 4072  usbohci - ok
20:35:50.0709 4072  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\windows\system32\DRIVERS\usbprint.sys
20:35:50.0711 4072  usbprint - ok
20:35:50.0792 4072  [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan         C:\windows\system32\DRIVERS\usbscan.sys
20:35:50.0794 4072  usbscan - ok
20:35:50.0822 4072  [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR         C:\windows\system32\DRIVERS\USBSTOR.SYS
20:35:50.0825 4072  USBSTOR - ok
20:35:50.0828 4072  [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci         C:\windows\system32\drivers\usbuhci.sys
20:35:50.0831 4072  usbuhci - ok
20:35:50.0925 4072  [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo        C:\windows\system32\Drivers\usbvideo.sys
20:35:50.0929 4072  usbvideo - ok
20:35:51.0002 4072  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\windows\System32\uxsms.dll
20:35:51.0015 4072  UxSms - ok
20:35:51.0042 4072  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\windows\system32\lsass.exe
20:35:51.0046 4072  VaultSvc - ok
20:35:51.0083 4072  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\windows\system32\drivers\vdrvroot.sys
20:35:51.0086 4072  vdrvroot - ok
20:35:51.0106 4072  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\windows\System32\vds.exe
20:35:51.0119 4072  vds - ok
20:35:51.0143 4072  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\windows\system32\DRIVERS\vgapnp.sys
20:35:51.0145 4072  vga - ok
20:35:51.0158 4072  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\windows\System32\drivers\vga.sys
20:35:51.0160 4072  VgaSave - ok
20:35:51.0179 4072  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\windows\system32\drivers\vhdmp.sys
20:35:51.0183 4072  vhdmp - ok
20:35:51.0197 4072  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\windows\system32\drivers\viaide.sys
20:35:51.0199 4072  viaide - ok
20:35:51.0202 4072  vnsrlzgi - ok
20:35:51.0226 4072  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\windows\system32\drivers\volmgr.sys
20:35:51.0229 4072  volmgr - ok
20:35:51.0246 4072  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\windows\system32\drivers\volmgrx.sys
20:35:51.0252 4072  volmgrx - ok
20:35:51.0270 4072  [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap         C:\windows\system32\drivers\volsnap.sys
20:35:51.0276 4072  volsnap - ok
20:35:51.0301 4072  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\windows\system32\drivers\vsmraid.sys
20:35:51.0304 4072  vsmraid - ok
20:35:51.0356 4072  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\windows\system32\vssvc.exe
20:35:51.0380 4072  VSS - ok
20:35:51.0383 4072  vulzrvcp - ok
20:35:51.0403 4072  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\windows\system32\DRIVERS\vwifibus.sys
20:35:51.0406 4072  vwifibus - ok
20:35:51.0439 4072  [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt        C:\windows\system32\DRIVERS\vwififlt.sys
20:35:51.0442 4072  vwififlt - ok
20:35:51.0472 4072  [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp         C:\windows\system32\DRIVERS\vwifimp.sys
20:35:51.0474 4072  vwifimp - ok
20:35:51.0498 4072  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\windows\system32\w32time.dll
20:35:51.0506 4072  W32Time - ok
20:35:51.0556 4072  [ B32009DB1972E7F2C227499289C4384A ] W3SVC           C:\windows\system32\inetsrv\iisw3adm.dll
20:35:51.0562 4072  W3SVC - ok
20:35:51.0577 4072  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\windows\system32\drivers\wacompen.sys
20:35:51.0579 4072  WacomPen - ok
20:35:51.0611 4072  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\windows\system32\DRIVERS\wanarp.sys
20:35:51.0613 4072  WANARP - ok
20:35:51.0629 4072  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\windows\system32\DRIVERS\wanarp.sys
20:35:51.0631 4072  Wanarpv6 - ok
20:35:51.0667 4072  [ B32009DB1972E7F2C227499289C4384A ] WAS             C:\windows\system32\inetsrv\iisw3adm.dll
20:35:51.0671 4072  WAS - ok
20:35:51.0753 4072  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\windows\system32\Wat\WatAdminSvc.exe
20:35:51.0771 4072  WatAdminSvc - ok
20:35:51.0817 4072  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\windows\system32\wbengine.exe
20:35:51.0840 4072  wbengine - ok
20:35:51.0852 4072  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\windows\System32\wbiosrvc.dll
20:35:51.0861 4072  WbioSrvc - ok
20:35:51.0874 4072  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\windows\System32\wcncsvc.dll
20:35:51.0884 4072  wcncsvc - ok
20:35:51.0909 4072  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll
20:35:51.0915 4072  WcsPlugInService - ok
20:35:51.0933 4072  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\windows\system32\drivers\wd.sys
20:35:51.0935 4072  Wd - ok
20:35:52.0057 4072  [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000        C:\windows\system32\drivers\Wdf01000.sys
20:35:52.0068 4072  Wdf01000 - ok
20:35:52.0111 4072  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\windows\system32\wdi.dll
20:35:52.0122 4072  WdiServiceHost - ok
20:35:52.0126 4072  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\windows\system32\wdi.dll
20:35:52.0132 4072  WdiSystemHost - ok
20:35:52.0176 4072  [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient       C:\windows\System32\webclnt.dll
20:35:52.0185 4072  WebClient - ok
20:35:52.0235 4072  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\windows\system32\wecsvc.dll
20:35:52.0246 4072  Wecsvc - ok
20:35:52.0284 4072  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\windows\System32\wercplsupport.dll
20:35:52.0291 4072  wercplsupport - ok
20:35:52.0350 4072  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\windows\System32\WerSvc.dll
20:35:52.0358 4072  WerSvc - ok
20:35:52.0457 4072  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\windows\system32\DRIVERS\wfplwf.sys
20:35:52.0459 4072  WfpLwf - ok
20:35:52.0488 4072  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\windows\system32\drivers\wimmount.sys
20:35:52.0490 4072  WIMMount - ok
20:35:52.0582 4072  WinDefend - ok
20:35:52.0587 4072  WinHttpAutoProxySvc - ok
20:35:52.0670 4072  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\windows\system32\wbem\WMIsvc.dll
20:35:52.0675 4072  Winmgmt - ok
20:35:52.0758 4072  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\windows\system32\WsmSvc.dll
20:35:52.0789 4072  WinRM - ok
20:35:52.0839 4072  [ FE88B288356E7B47B74B13372ADD906D ] WinUsb          C:\windows\system32\DRIVERS\WinUsb.sys
20:35:52.0841 4072  WinUsb - ok
20:35:52.0878 4072  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\windows\System32\wlansvc.dll
20:35:52.0894 4072  Wlansvc - ok
20:35:52.0916 4072  [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc        C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
20:35:52.0918 4072  wlcrasvc - ok
20:35:52.0970 4072  [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
20:35:52.0998 4072  wlidsvc - ok
20:35:53.0034 4072  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\windows\system32\DRIVERS\wmiacpi.sys
20:35:53.0036 4072  WmiAcpi - ok
20:35:53.0069 4072  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\windows\system32\wbem\WmiApSrv.exe
20:35:53.0073 4072  wmiApSrv - ok
20:35:53.0107 4072  WMPNetworkSvc - ok
20:35:53.0125 4072  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\windows\System32\wpcsvc.dll
20:35:53.0132 4072  WPCSvc - ok
20:35:53.0148 4072  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\windows\system32\wpdbusenum.dll
20:35:53.0158 4072  WPDBusEnum - ok
20:35:53.0177 4072  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\windows\system32\drivers\ws2ifsl.sys
20:35:53.0179 4072  ws2ifsl - ok
20:35:53.0182 4072  WSearch - ok
20:35:53.0206 4072  [ 83575C43B2BFE9AB0661A7F957E843C0 ] wsvd            C:\windows\system32\DRIVERS\wsvd.sys
20:35:53.0209 4072  wsvd - ok
20:35:53.0297 4072  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\windows\system32\wuaueng.dll
20:35:53.0330 4072  wuauserv - ok
20:35:53.0365 4072  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\windows\system32\drivers\WudfPf.sys
20:35:53.0368 4072  WudfPf - ok
20:35:53.0393 4072  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\windows\system32\DRIVERS\WUDFRd.sys
20:35:53.0397 4072  WUDFRd - ok
20:35:53.0414 4072  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\windows\System32\WUDFSvc.dll
20:35:53.0422 4072  wudfsvc - ok
20:35:53.0458 4072  [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc         C:\windows\System32\wwansvc.dll
20:35:53.0468 4072  WwanSvc - ok
20:35:53.0495 4072  [ 38F55D07B1D3391065C40EC065F984E2 ] xusb21          C:\windows\system32\DRIVERS\xusb21.sys
20:35:53.0498 4072  xusb21 - ok
20:35:53.0527 4072  ================ Scan global ===============================
20:35:53.0557 4072  [ BA0CD8C393E8C9F83354106093832C7B ] C:\windows\system32\basesrv.dll
20:35:53.0598 4072  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\windows\system32\winsrv.dll
20:35:53.0613 4072  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\windows\system32\winsrv.dll
20:35:53.0643 4072  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\windows\system32\sxssrv.dll
20:35:53.0669 4072  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\windows\system32\services.exe
20:35:53.0677 4072  [Global] - ok
20:35:53.0677 4072  ================ Scan MBR ==================================
20:35:53.0687 4072  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
20:35:53.0864 4072  \Device\Harddisk0\DR0 - ok
20:35:53.0864 4072  ================ Scan VBR ==================================
20:35:53.0875 4072  [ 2FE6362D1590119C33B2C2A02B3C0C21 ] \Device\Harddisk0\DR0\Partition1
20:35:53.0878 4072  \Device\Harddisk0\DR0\Partition1 - ok
20:35:53.0891 4072  [ 3AA01ABD0E4D3C22A13CED7E1B3B0D95 ] \Device\Harddisk0\DR0\Partition2
20:35:53.0894 4072  \Device\Harddisk0\DR0\Partition2 - ok
20:35:53.0918 4072  [ 642B3DFC71E081C36B0B1608B52DF243 ] \Device\Harddisk0\DR0\Partition3
20:35:53.0920 4072  \Device\Harddisk0\DR0\Partition3 - ok
20:35:53.0921 4072  ============================================================
20:35:53.0921 4072  Scan finished
20:35:53.0921 4072  ============================================================
20:35:53.0923 4152  Detected object count: 0
20:35:53.0923 4152  Actual detected object count: 0


#13 Oliviaaugust

Oliviaaugust
  • Topic Starter

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:06:11 AM

Posted 16 July 2013 - 10:52 PM

aswMBR version 0.9.9.1771 Copyright© 2011 AVAST Software
Run date: 2013-07-16 20:39:39
-----------------------------
20:39:39.753    OS Version: Windows x64 6.1.7601 Service Pack 1
20:39:39.753    Number of processors: 2 586 0x2A07
20:39:39.754    ComputerName: MAECOAUGUST-PC  UserName: Maeco
20:39:40.881    Initialize success
20:41:13.199    AVAST engine defs: 13071601
20:41:51.262    Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
20:41:51.265    Disk 0 Vendor: HITACHI_ JE3Z Size: 476940MB BusType: 3
20:41:51.399    Disk 0 MBR read successfully
20:41:51.401    Disk 0 MBR scan
20:41:51.405    Disk 0 Windows 7 default MBR code
20:41:51.419    Disk 0 Partition 1 80 (A) 07    HPFS/NTFS NTFS          200 MB offset 2048
20:41:51.435    Disk 0 Partition 2 00     07    HPFS/NTFS NTFS       431938 MB offset 411648
20:41:51.440    Disk 0 Partition - 00     0F Extended LBA             29692 MB offset 885020672
20:41:51.469    Disk 0 Partition 3 00     12  Compaq diag NTFS        15109 MB offset 945829888
20:41:51.529    Disk 0 Partition 4 00     07    HPFS/NTFS NTFS        29691 MB offset 885022720
20:41:51.661    Disk 0 scanning C:\windows\system32\drivers
20:42:03.636    Service scanning
20:42:38.874    Modules scanning
20:42:38.876    Disk 0 trace - called modules:
20:42:38.890    ntoskrnl.exe CLASSPNP.SYS disk.sys iaStor.sys hal.dll 
20:42:38.890    1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8004c32060]
20:42:38.891    3 CLASSPNP.SYS[fffff88001bcd43f] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa80046de050]
20:42:40.670    AVAST engine scan C:\windows
20:42:44.082    AVAST engine scan C:\windows\system32
20:49:08.146    AVAST engine scan C:\windows\system32\drivers
20:49:41.579    AVAST engine scan C:\Users\Maeco
20:52:30.841    Disk 0 MBR has been saved successfully to "C:\Users\Maeco\Desktop\MBR.dat"
20:52:30.862    The log file has been saved successfully to "C:\Users\Maeco\Desktop\aswMBR.txt"


#14 Oliviaaugust

Oliviaaugust
  • Topic Starter

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:06:11 AM

Posted 17 July 2013 - 01:24 AM

C:\Users\All Users\Spybot - Search & Destroy\Recovery\WebCakeBHO20.zip Win32/Bagle.gen.zip worm
C:\Users\All Users\Spybot - Search & Destroy\Recovery\WebCakeBHO9.zip Win32/Bagle.gen.zip worm
C:\Program Files (x86)\Zwinky_5qEI\Installr\2.bin\5qEIPlug.dll Win32/Toolbar.MyWebSearch application cleaned by deleting - quarantined
C:\ProgramData\Spybot - Search & Destroy\Recovery\WebCakeBHO20.zip Win32/Bagle.gen.zip worm cleaned by deleting - quarantined
C:\ProgramData\Spybot - Search & Destroy\Recovery\WebCakeBHO9.zip Win32/Bagle.gen.zip worm cleaned by deleting - quarantined
C:\Users\Maeco\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\26\5060821a-3d56263f multiple threats cleaned by deleting - quarantined
C:\Users\Maeco\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\61\1d24a2fd-28247b24 a variant of Java/Exploit.Agent.OXJ trojan cleaned by deleting - quarantined
C:\Users\Maeco\Documents\APNSetup1.exe Win32/Bundled.Toolbar.Ask.B application deleted - quarantined
C:\Users\Maeco\Documents\APNSetup2.exe Win32/Bundled.Toolbar.Ask.B application deleted - quarantined
C:\Users\Maeco\Downloads\cbsidlm-tr1_13-KODAK_AllinOne_Printer_Software-ORG-10964527.exe Win32/DownloadAdmin.G application cleaned by deleting - quarantined
C:\Users\Maeco\Downloads\DLLOpener (1).exe a variant of Win32/Bundled.Toolbar.Ask.D application cleaned by deleting - quarantined
C:\Users\Maeco\Downloads\DLLOpener.exe a variant of Win32/Bundled.Toolbar.Ask.D application cleaned by deleting - quarantined


#15 Oliviaaugust

Oliviaaugust
  • Topic Starter

  • Members
  • 27 posts
  • OFFLINE
  •  
  • Local time:06:11 AM

Posted 17 July 2013 - 01:29 AM

# AdwCleaner v2.305 - Logfile created 07/16/2013 at 23:25:20
# Updated 11/07/2013 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : Maeco - MAECOAUGUST-PC
# Boot Mode : Normal
# Running from : C:\Users\Maeco\Desktop\AdwCleaner.exe
# Option [Delete]
 
 
***** [Services] *****
 
 
***** [Files / Folders] *****
 
Deleted on reboot : C:\Users\Maeco\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejpbbhjlbipncjklfjjaedaieimbmdda
Deleted on reboot : C:\Users\Maeco\AppData\Local\Google\Chrome\User Data\Default\Extensions\klibnahbojhkanfgaglnlalfkgpcppfi
File Deleted : C:\user.js
File Deleted : C:\windows\SysWOW64\conduitEngine.tmp
Folder Deleted : C:\Program Files (x86)\Conduit
Folder Deleted : C:\Program Files (x86)\Perion
Folder Deleted : C:\Program Files (x86)\TelevisionFanaticEI
Folder Deleted : C:\ProgramData\APN
Folder Deleted : C:\ProgramData\Ask
Folder Deleted : C:\ProgramData\boost_interprocess
Folder Deleted : C:\ProgramData\Partner
Folder Deleted : C:\ProgramData\Tarma Installer
Folder Deleted : C:\Users\Maeco\AppData\Local\APN
Folder Deleted : C:\Users\Maeco\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejpbbhjlbipncjklfjjaedaieimbmdda
Folder Deleted : C:\Users\Maeco\AppData\Local\Google\Chrome\User Data\Default\Extensions\klibnahbojhkanfgaglnlalfkgpcppfi
Folder Deleted : C:\Users\Maeco\AppData\Local\SwvUpdater
Folder Deleted : C:\Users\Maeco\AppData\Local\Temp\APN
Folder Deleted : C:\Users\Maeco\AppData\LocalLow\BabylonToolbar
Folder Deleted : C:\Users\Maeco\AppData\LocalLow\Conduit
Folder Deleted : C:\Users\Maeco\AppData\LocalLow\iac
Folder Deleted : C:\Users\Maeco\AppData\LocalLow\incredibar.com
Folder Deleted : C:\Users\Maeco\AppData\LocalLow\Playbryte
Folder Deleted : C:\Users\Maeco\AppData\LocalLow\PriceGong
Folder Deleted : C:\Users\Maeco\AppData\LocalLow\TelevisionFanatic
Folder Deleted : C:\Users\Maeco\AppData\LocalLow\TelevisionFanaticEI
 
***** [Registry] *****
 
Key Deleted : HKCU\Software\APN PIP
Key Deleted : HKCU\Software\AppDataLow\Software\Conduit
Key Deleted : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
Key Deleted : HKCU\Software\AppDataLow\Software\Crossrider
Key Deleted : HKCU\Software\AppDataLow\Software\PriceGong
Key Deleted : HKCU\Software\AppDataLow\Software\SmartBar
Key Deleted : HKCU\Software\AppDataLow\Software\Toolbar
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\Default Tab
Key Deleted : HKCU\Software\Google\Chrome\Extensions\ejpbbhjlbipncjklfjjaedaieimbmdda
Key Deleted : HKCU\Software\Google\Chrome\Extensions\klibnahbojhkanfgaglnlalfkgpcppfi
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\grusskartencenter.com
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\grusskartencenter.com
Key Deleted : HKCU\Software\StartSearch
Key Deleted : HKCU\Software\systweak
Key Deleted : HKCU\Software\wecarereminder
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{D616A4A2-7B38-4DBC-9093-6FE7A4A21B17}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\NCTAudioCDGrabber2.DLL
Key Deleted : HKLM\SOFTWARE\Classes\Conduit.Engine
Key Deleted : HKLM\SOFTWARE\Classes\FCTB000100884.FCTB000100884Pos
Key Deleted : HKLM\SOFTWARE\Classes\FCTB000100884.FCTB000100884Pos.1
Key Deleted : HKLM\SOFTWARE\Classes\FCTB000100884.IEToolbar
Key Deleted : HKLM\SOFTWARE\Classes\FCTB000100884.IEToolbar.1
Key Deleted : HKLM\SOFTWARE\Classes\FCTB000100884.JSOptionsImpl
Key Deleted : HKLM\SOFTWARE\Classes\FCTB000100884.JSOptionsImpl.1
Key Deleted : HKLM\SOFTWARE\Classes\FreeCauseURLSearchHook.FCToolbarURLSearchHook
Key Deleted : HKLM\SOFTWARE\Classes\FreeCauseURLSearchHook.FCToolbarURLSearchHook.1
Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT2612669
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT2737658
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT2786678
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT3072253
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT3196716
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT3209604
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT3220468
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT3289847
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{93E3D79C-0786-48FF-9329-93BC9F6DC2B3}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\Default Tab
Key Deleted : HKLM\Software\DefaultTab
Key Deleted : HKLM\Software\InfoAtoms
Key Deleted : HKLM\Software\InstallIQ
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apntoolbarinstaller_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apntoolbarinstaller_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Babylon_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Babylon_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\ConduitInstaller_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\ConduitInstaller_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\datamngrUI_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\datamngrUI_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\I Want This_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\I Want This_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SearchquMediaBar_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SearchquMediaBar_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SetupDataMngr_Searchqu_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SetupDataMngr_Searchqu_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\WebCakeDesktop_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\WebCakeDesktop_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{8F0B76E1-4E46-427B-B55B-B90593468AC6}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F464A68D-1CF2-4991-93AB-A84351D7F676}
Key Deleted : HKLM\Software\PIP
Key Deleted : HKLM\Software\Playbryte
Key Deleted : HKLM\Software\systweak
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{35B8892D-C3FB-4D88-990D-31DB2EBD72BD}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{5EB0259D-AB79-4AE6-A6E6-24FFE21C3DA4}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{99079A25-328F-4BD4-BE04-00955ACAA0A7}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{BC9FD17D-30F6-4464-9E53-596A90AFF023}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{CADAF6BE-BF50-4669-8BFD-C27BD4E6181B}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{CC5AD34C-6F10-4CB3-B74A-C2DD4D5060A3}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{D824F0DE-3D60-4F57-9EB1-66033ECD8ABB}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{2BEF239C-752E-4001-8048-F256E0D8CD93}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{49C00A51-6E59-41FE-B3FA-2D2157FAD67B}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{6DFF5DBA-AE3A-46DB-B301-ECFFC6DB2982}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{DE34CD67-F1C8-4001-9A23-B8A68F63F377}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\FCTB000100884
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\ejpbbhjlbipncjklfjjaedaieimbmdda
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\klibnahbojhkanfgaglnlalfkgpcppfi
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{154D339E-CCAA-49A5-9B38-6878AD4220BC}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2410}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{23119123-0854-469D-807A-171568457991}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2BEF239C-752E-4001-8048-F256E0D8CD93}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{328D6F78-0DBB-4F17-ACD5-26A2EA4EF251}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{49C00A51-6E59-41FE-B3FA-2D2157FAD67B}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{6DFF5DBA-AE3A-46DB-B301-ECFFC6DB2982}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{98623C86-E768-4C5A-B23B-EE8CE3727CD3}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{DE34CD67-F1C8-4001-9A23-B8A68F63F377}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}
Key Deleted : HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ApnUpdater
Key Deleted : HKLM\SOFTWARE\Tarma Installer
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{0E1230F8-EA50-42A9-983C-D22ABC2EED3B}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{30F9B915-B755-4826-820B-08FBA6BD249D}]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{B278D9F8-0FA9-465E-9938-0C392605D8E3}]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [10]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [10]
 
***** [Internet Browsers] *****
 
-\\ Internet Explorer v10.0.9200.16635
 
Replaced : [HKCU\Software\Microsoft\Internet Explorer\Search - Default_Search_URL] = hxxp://www.searchamong.com/searchview.php?query={searchTerms}&cat=webs&bar=true --> hxxp://www.google.com
 
-\\ Google Chrome v28.0.1500.72
 
File : C:\Users\Maeco\AppData\Local\Google\Chrome\User Data\Default\Preferences
 
[OK] File is clean.
 
*************************
 
AdwCleaner[R1].txt - [11024 octets] - [16/07/2013 22:09:27]
AdwCleaner[S1].txt - [324 octets] - [16/07/2013 22:11:02]
AdwCleaner[S2].txt - [10992 octets] - [16/07/2013 23:25:20]
 
########## EOF - C:\AdwCleaner[S2].txt - [11053 octets] ##########





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users