Jump to content


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.

Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

PUP.Optional.SearchProtect.A


  • This topic is locked This topic is locked
22 replies to this topic

#1 HelenWinkle

HelenWinkle

  • Members
  • 53 posts
  • OFFLINE
  •  
  • Local time:01:32 AM

Posted 15 August 2013 - 12:41 PM

My computer had PUP.Optional.SearchProtect.A

 when scanned with Malwarebytes.  Malwarebytes says my system is now clear, but something seems to be chugging all the time in the background.  I'm wondering if there is still some residual infection.  Thank you for any suggestions.



BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 61,889 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:01:32 AM

Posted 15 August 2013 - 02:15 PM

Hello Helen
Let's look at some more.

Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
Note: When using "Reset FF Proxy Settings" option Firefox should be closed.



Please Download TDSSkiller
Launch it.
Click on change parameters-Select TDLFS file system
Click on "Scan".
Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results.



Please download AdwCleaner by Xplode onto your desktop.
Close all open programs and internet browsers.
Double click on adwcleaner.exe to run the tool.
Click on Delete.
Confirm each time with Ok.
You will be prompted to restart your computer. A text file will open after the restart.
Please post the contents of that logfile with your next reply.
You can find the logfile at C:\AdwCleaner[S1].txt as well.



Last run ESET.
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
  • Scan potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE:Sometimes if ESET finds no infections it will not create a log.

How do I get help? Who is helping me?
Staying Updated Calendar of Updates.
For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....
Become a BleepingComputer fan: Facebook Have you seen..Select Real Security

#3 HelenWinkle

HelenWinkle
  • Topic Starter

  • Members
  • 53 posts
  • OFFLINE
  •  
  • Local time:01:32 AM

Posted 15 August 2013 - 02:38 PM

When I try to download Minitoolbox, I get a message saying the file cannot be downloaded.  Then it seems to download but I am not given the "run" option, only an open with option and then it doesn't open.



#4 HelenWinkle

HelenWinkle
  • Topic Starter

  • Members
  • 53 posts
  • OFFLINE
  •  
  • Local time:01:32 AM

Posted 15 August 2013 - 02:43 PM

I have an older version of Minitoolbox 3.3.8.1 that does seem to permit a "run" command.  Should I use this older version or is it out of date?



#5 HelenWinkle

HelenWinkle
  • Topic Starter

  • Members
  • 53 posts
  • OFFLINE
  •  
  • Local time:01:32 AM

Posted 15 August 2013 - 03:30 PM

Decided to burn the files to a CD rom using my Linux laptop and now the minitool box and other files did download properly--here is the first log.  I assume that the fact that I could not download any of the programs you recommend to be a sign that there is an underlying malware infection.

 

MiniToolBox by Farbar  Version: 13-07-2013
Ran by Helen (administrator) on 15-08-2013 at 16:28:05
Running from "C:\Users\Helen\Desktop"
Microsoft Windows 7 Ultimate  Service Pack 1 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

127.0.0.1       localhost

========================= IP Configuration: ================================

D-Link DWA-131 Wireless N Nano USB Adapter = Wireless Network Connection (Connected)

# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global

popd
# End of IPv4 configuration

 

Windows IP Configuration

   Host Name . . . . . . . . . . . . : Bigjay3
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : lan

Wireless LAN adapter Wireless Network Connection:

   Connection-specific DNS Suffix  . : lan
   Description . . . . . . . . . . . : D-Link DWA-131 Wireless N Nano USB Adapter
   Physical Address. . . . . . . . . : 1C-AF-F7-F6-4D-E1
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::64da:c153:a92a:e23%13(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.0.102(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Thursday, August 15, 2013 12:27:10
   Lease Expires . . . . . . . . . . : Friday, August 16, 2013 12:27:10
   Default Gateway . . . . . . . . . : 192.168.0.1
   DHCP Server . . . . . . . . . . . : 192.168.0.1
   DHCPv6 IAID . . . . . . . . . . . : 303869943
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-13-37-23-1B-00-24-E8-16-39-83
   DNS Servers . . . . . . . . . . . : 192.168.0.1
   NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.lan:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 9:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:9d38:6ab8:2820:159e:3f57:ff99(Preferred)
   Link-local IPv6 Address . . . . . : fe80::2820:159e:3f57:ff99%12(Preferred)
   Default Gateway . . . . . . . . . : ::
   NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter Local Area Connection* 12:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : lan
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
Server:  UnKnown
Address:  192.168.0.1

Name:    google.com
Addresses:  2607:f8b0:400b:807::1002
   173.194.43.105
   173.194.43.100
   173.194.43.104
   173.194.43.97
   173.194.43.102
   173.194.43.98
   173.194.43.110
   173.194.43.96
   173.194.43.101
   173.194.43.99
   173.194.43.103

Pinging google.com [173.194.43.103] with 32 bytes of data:
Reply from 173.194.43.103: bytes=32 time=14ms TTL=57
Reply from 173.194.43.103: bytes=32 time=12ms TTL=57

Ping statistics for 173.194.43.103:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 12ms, Maximum = 14ms, Average = 13ms
Server:  UnKnown
Address:  192.168.0.1

Name:    yahoo.com
Addresses:  98.139.183.24
   206.190.36.45
   98.138.253.109

Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
Reply from 98.138.253.109: bytes=32 time=114ms TTL=52
Request timed out.

Ping statistics for 98.138.253.109:
    Packets: Sent = 2, Received = 1, Lost = 1 (50% loss),
Approximate round trip times in milli-seconds:
    Minimum = 114ms, Maximum = 114ms, Average = 114ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 13...1c af f7 f6 4d e1 ......D-Link DWA-131 Wireless N Nano USB Adapter
  1...........................Software Loopback Interface 1
 15...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
 12...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
 17...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.0.1    192.168.0.102     25
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.0.0    255.255.255.0         On-link     192.168.0.102    281
    192.168.0.102  255.255.255.255         On-link     192.168.0.102    281
    192.168.0.255  255.255.255.255         On-link     192.168.0.102    281
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link     192.168.0.102    281
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link     192.168.0.102    281
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
 12     58 ::/0                     On-link
  1    306 ::1/128                  On-link
 12     58 2001::/32                On-link
 12    306 2001:0:9d38:6ab8:2820:159e:3f57:ff99/128
                                    On-link
 13    281 fe80::/64                On-link
 12    306 fe80::/64                On-link
 12    306 fe80::2820:159e:3f57:ff99/128
                                    On-link
 13    281 fe80::64da:c153:a92a:e23/128
                                    On-link
  1    306 ff00::/8                 On-link
 12    306 ff00::/8                 On-link
 13    281 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\system32\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\system32\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\system32\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\Windows\system32\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145648] (Microsoft Corp.)
Catalog5 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145648] (Microsoft Corp.)
Catalog9 01 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 20 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 21 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 22 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (08/15/2013 02:03:39 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.
The value "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" of attribute "version" in element "assemblyIdentity" is invalid.

System errors:
=============

Microsoft Office Sessions:
=========================
Error: (03/18/2013 03:03:43 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 8, Application Name: Microsoft Office Publisher, Application Version: 12.0.6652.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 1248 seconds with 1020 seconds of active time.  This session ended with a crash.

Error: (02/26/2013 06:19:27 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6668.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 162624 seconds with 360 seconds of active time.  This session ended with a crash.

Error: (02/12/2013 08:02:31 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6668.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 211536 seconds with 540 seconds of active time.  This session ended with a crash.

Error: (12/27/2012 05:40:25 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6668.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 455794 seconds with 900 seconds of active time.  This session ended with a crash.

Error: (11/11/2012 11:31:47 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6661.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 680 seconds with 540 seconds of active time.  This session ended with a crash.

Error: (11/11/2012 11:20:18 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6661.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 170 seconds with 120 seconds of active time.  This session ended with a crash.

Error: (06/19/2011 03:32:32 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6557.5001, Microsoft Office Version: 12.0.6425.1000. This session lasted 299 seconds with 60 seconds of active time.  This session ended with a crash.

Error: (05/02/2011 10:48:30 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6555.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 1198 seconds with 60 seconds of active time.  This session ended with a crash.

Error: (03/29/2011 02:45:39 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6550.5003, Microsoft Office Version: 12.0.6425.1000. This session lasted 1819 seconds with 240 seconds of active time.  This session ended with a crash.

Error: (03/20/2011 09:05:42 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6550.5003, Microsoft Office Version: 12.0.6425.1000. This session lasted 14273 seconds with 1740 seconds of active time.  This session ended with a crash.

=========================== Installed Programs ============================

 Update for Microsoft Office 2007 (KB2508958)
ACDSee Pro 3 (Version: 3.0.475)
ACDSee RAW Image Decoder Plug-In Update 4.1 (Version: 4.1.296)
Adobe Acrobat 9 Pro - English, Français, Deutsch (Version: 9.5.5)
Adobe Acrobat 9.5.5 - CPSID_83708
Adobe After Effects CS4 (Version: 9)
Adobe After Effects CS4 Presets (Version: 9)
Adobe After Effects CS4 Third Party Content (Version: 9)
Adobe AIR (Version: 1.1.0.5790)
Adobe Anchor Service CS4 (Version: 2.0)
Adobe Bridge CS4 (Version: 3)
Adobe CMaps CS4 (Version: 2.0)
Adobe Color - Photoshop Specific CS4 (Version: 2.0)
Adobe Color EU Extra Settings CS4 (Version: 2.0)
Adobe Color JA Extra Settings CS4 (Version: 2.0)
Adobe Color NA Recommended Settings CS4 (Version: 2.0)
Adobe Color Video Profiles AE CS4 (Version: 2.0)
Adobe Color Video Profiles CS CS4 (Version: 2.0)
Adobe Creative Suite 4 Master Collection (Version: 4.0)
Adobe CS4 American English Speech Analysis Models (Version: 1)
Adobe CSI CS4 (Version: 1)
Adobe Default Language CS4 (Version: 2.0)
Adobe Device Central CS4 (Version: 2)
Adobe Dreamweaver CS4 (Version: 10.0)
Adobe Drive CS4 (Version: 1)
Adobe Dynamiclink Support (Version: 1)
Adobe Encore CS4 Codecs (Version: 4)
Adobe ExtendScript Toolkit CS4 (Version: 3.0.0)
Adobe Extension Manager CS4 (Version: 2.0)
Adobe Fireworks CS4 (Version: 10.0)
Adobe Flash CS4 (Version: 10.0)
Adobe Flash CS4 Extension - Flash Lite STI en (Version: 3.0)
Adobe Flash CS4 STI-en (Version: 10.0)
Adobe Flash Player 11 ActiveX (Version: 11.8.800.94)
Adobe Flash Player 11 Plugin (Version: 11.7.700.224)
Adobe Fonts All (Version: 2.0)
Adobe Illustrator CS4 (Version: 14.0)
Adobe InDesign CS4 (Version: 6.0)
Adobe InDesign CS4 Application Feature Set Files (Roman) (Version: 6.0)
Adobe InDesign CS4 Common Base Files (Version: 6.0)
Adobe InDesign CS4 Icon Handler (Version: 6.0)
Adobe Linguistics CS4 (Version: 4.0.0)
Adobe Media Encoder CS4 (Version: 1.0)
Adobe Media Encoder CS4 Additional Exporter (Version: 1.0)
Adobe Media Encoder CS4 Dolby (Version: 1.0)
Adobe Media Encoder CS4 Exporter (Version: 1.0)
Adobe Media Encoder CS4 Importer (Version: 1.0)
Adobe MotionPicture Color Files CS4 (Version: 2.0)
Adobe Output Module (Version: 2.0)
Adobe PDF Library Files CS4 (Version: 9.0)
Adobe Photoshop CS4 (Version: 11.0)
Adobe Photoshop CS4 Support (Version: 11.0)
Adobe Premiere Pro CS4 (Version: 4)
Adobe Premiere Pro CS4 Functional Content (Version: 4)
Adobe Premiere Pro CS4 Third Party Content (Version: 4)
Adobe Reader X (10.1.7) (Version: 10.1.7)
Adobe Search for Help (Version: 1.0)
Adobe Service Manager Extension (Version: 1.0)
Adobe Setup (Version: 2.0)
Adobe SGM CS4 (Version: 3.0)
Adobe Shockwave Player 11.6 (Version: 11.6.0.626)
Adobe SING CS4 (Version: 2.0)
Adobe Soundbooth CS4 (Version: 2)
Adobe Soundbooth CS4 Codecs (Version: 2)
Adobe Type Support CS4 (Version: 9.0)
Adobe Update Manager CS4 (Version: 6.0.0)
Adobe WinSoft Linguistics Plugin (Version: 1.1)
Adobe XMP Panels CS4 (Version: 2.0)
AdobeColorCommonSetCMYK (Version: 2.0)
AdobeColorCommonSetRGB (Version: 2.0)
Apple Application Support (Version: 2.3.4)
Apple Mobile Device Support (Version: 6.1.0.13)
Apple Software Update (Version: 2.1.3.127)
ATI AVIVO Codecs (Version: 11.6.0.50517)
ATI Catalyst Install Manager (Version: 3.0.778.0)
ATI Catalyst Registration (Version: 2.01.0000)
Bonjour (Version: 3.0.0.10)
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center Graphics Previews Common (Version: 2010.0517.1742.29870)
Catalyst Control Center Graphics Previews Vista (Version: 2010.0517.1742.29870)
Catalyst Control Center InstallProxy (Version: 2010.0517.1742.29870)
Catalyst Control Center Localization All (Version: 2010.0517.1742.29870)
CCC Help Chinese Standard (Version: 2010.0517.1741.29870)
CCC Help Chinese Traditional (Version: 2010.0517.1741.29870)
CCC Help Czech (Version: 2010.0517.1741.29870)
CCC Help Danish (Version: 2010.0517.1741.29870)
CCC Help Dutch (Version: 2010.0517.1741.29870)
CCC Help English (Version: 2010.0517.1741.29870)
CCC Help Finnish (Version: 2010.0517.1741.29870)
CCC Help French (Version: 2010.0517.1741.29870)
CCC Help German (Version: 2010.0517.1741.29870)
CCC Help Greek (Version: 2010.0517.1741.29870)
CCC Help Hungarian (Version: 2010.0517.1741.29870)
CCC Help Italian (Version: 2010.0517.1741.29870)
CCC Help Japanese (Version: 2010.0517.1741.29870)
CCC Help Korean (Version: 2010.0517.1741.29870)
CCC Help Norwegian (Version: 2010.0517.1741.29870)
CCC Help Polish (Version: 2010.0517.1741.29870)
CCC Help Portuguese (Version: 2010.0517.1741.29870)
CCC Help Russian (Version: 2010.0517.1741.29870)
CCC Help Spanish (Version: 2010.0517.1741.29870)
CCC Help Swedish (Version: 2010.0517.1741.29870)
CCC Help Thai (Version: 2010.0517.1741.29870)
CCC Help Turkish (Version: 2010.0517.1741.29870)
ccc-core-static (Version: 2010.0517.1742.29870)
ccc-utility (Version: 2010.0517.1742.29870)
CinemaNow Media Manager (Version: 1.9.0.63)
Connect (Version: 1.0.0.1)
Core FTP LE 2.1
D3DX10 (Version: 15.4.2368.0902)
Debut Video Capture Software
Dell Backup and Recovery Manager (Version: 1.2.1)
Dell Driver Download Manager (Version: 2.1.0.0)
DHTML Editing Component (Version: 6.02.0001)
DirectX 9 Runtime (Version: 1.00.0000)
DivX Setup (Version: 1.0.1.5)
ESET Online Scanner v3
Facebook Video Calling 1.2.0.287 (Version: 1.2.287)
FTP Commander
Google Chrome (Version: 28.0.1500.95)
Google Talk Plugin (Version: 4.4.2.14502)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.5.4209.2358)
Google Update Helper (Version: 1.3.21.153)
Hitman Pro 3.5 (Version: 3.5.8.118)
HP Officejet Pro 8100 Basic Device Software (Version: 25.0.617.0)
HPDiagnosticCoreDll (Version: 1.0.3.0)
Intel® Rapid Storage Technology (Version: 9.6.0.1014)
iTunes (Version: 11.0.4.4)
Java 7 Update 25 (Version: 7.0.250)
Java Auto Updater (Version: 2.1.9.5)
Junk Mail filter update (Version: 16.4.3505.0912)
kuler (Version: 2.0)
Malwarebytes Anti-Malware version 1.75.0.1300 (Version: 1.75.0.1300)
Mega Manager (Version: 3.3.05)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Access MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Enterprise 2007 (Version: 12.0.6612.1000)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office FrontPage 2003 (Version: 11.0.8173.0)
Microsoft Office Groove MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Groove Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office InfoPath MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Outlook Connector (Version: 14.0.6123.5001)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Security Client (Version: 4.2.0223.1)
Microsoft Security Essentials (Version: 4.2.223.1)
Microsoft Silverlight (Version: 5.1.20513.0)
Microsoft SkyDrive (Version: 16.4.6013.0910)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Movie Maker (Version: 16.4.3505.0912)
Mozilla Firefox 22.0 (x86 en-US) (Version: 22.0)
Mozilla Maintenance Service (Version: 22.0)
Mozilla Thunderbird 17.0.7 (x86 en-US) (Version: 17.0.7)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT110 (Version: 16.4.1108.0727)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Nitro Reader 3 (Version: 3.5.2.10)
PDF Settings CS4 (Version: 9.0)
PdfCompressor 6.0 Professional (Version: 6.0.145)
Photo Gallery (Version: 16.4.3505.0912)
Photoshop Camera Raw (Version: 5.0)
Picasa 3 (Version: 3.9)
Pixel Bender Toolkit (Version: 1.0)
Protocol Plus Deluxe Ver 8.0R (Version: 1.0)
QuickTime (Version: 7.74.80.86)
Realtek High Definition Audio Driver (Version: 6.0.1.5859)
RecordPad Sound Recorder
Roxio Activation Module (Version: 1.0)
Roxio BackOnTrack (Version: 1.3.1)
Roxio Burn (Version: 1.0.0)
Roxio Burn Manager (Version: 1.0.0)
Roxio Burn Manager CDB (Version: 1.0)
Roxio CinePlayer (Version: 5.3)
Roxio CinePlayer Decoder Pack (Version: 4.3.0)
Roxio Creator 2010 Content (Version: 12.0.013)
Roxio Creator 2010 Pro (Version: 1.2.193)
Roxio Creator 2010 Pro (Version: 12.0)
Roxio Creator 2010 Pro (Version: 5.0.0)
Roxio Disaster Recovery (Version: 1.3.0)
Roxio File Backup (Version: 1.3.0)
Roxio PhotoShow (Version: 6.0)
Roxio Venue (Version: 2.2.170)
Roxio Video Capture USB (Version: 1.22.0000)
Samsung SCX-4100 Series
Samsung SCX-4100 Series - TWAIN
Sansa Updater (Version: 1.313)
Scan2PDF 1.6
SharpEye Music Reader 2
Skype Toolbars (Version: 5.3.7280)
Skype™ 5.10 (Version: 5.10.116)
SmartSound Quicktracks Plugin (Version: 3.0.8.0)
Suite Shared Configuration CS4 (Version: 1.0)
swMSM (Version: 12.0.0.1)
The Lord of the Rings FREE Trial  (Version: 1.00.0000)
TuneUp Utilities 2011 (Version: 10.0.4500.46)
TuneUp Utilities Language Pack (en-US) (Version: 10.0.4500.46)
UltraISO Premium V9.36
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596660) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596848) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition
Update for Microsoft Office Access 2007 Help (KB963663)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office Infopath 2007 Help (KB963662)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition
Update for Microsoft Office Outlook 2007 (KB2768023) 32-Bit Edition
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2817642) 32-Bit Edition
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Publisher 2007 Help (KB963667)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
VC80CRTRedist - 8.0.50727.4053 (Version: 1.1.0)
VideoPad Video Editor
Win7codecs (Version: 2.4.3)
Windows 7 USB/DVD Download Tool (Version: 1.0.30)
Windows Live Communications Platform (Version: 16.4.3505.0912)
Windows Live Essentials (Version: 16.4.3505.0912)
Windows Live Family Safety (Version: 16.4.3505.0912)
Windows Live ID Sign-in Assistant (Version: 7.250.4311.0)
Windows Live Installer (Version: 16.4.3505.0912)
Windows Live Mail (Version: 16.4.3505.0912)
Windows Live Messenger (Version: 16.4.3505.0912)
Windows Live MIME IFilter (Version: 16.4.3505.0912)
Windows Live Photo Common (Version: 16.4.3505.0912)
Windows Live PIMT Platform (Version: 16.4.3505.0912)
Windows Live SOXE (Version: 16.4.3505.0912)
Windows Live SOXE Definitions (Version: 16.4.3505.0912)
Windows Live Sync (Version: 14.0.8089.726)
Windows Live UX Platform (Version: 16.4.3505.0912)
Windows Live UX Platform Language Pack (Version: 16.4.3505.0912)
Windows Live Writer (Version: 16.4.3505.0912)
Windows Live Writer Resources (Version: 16.4.3505.0912)
Windows XP Mode (Version: 1.3.7600.16423)
WinRAR archiver
YoutubeMovieMaker (Version: 6.35)

========================= Memory info: ===================================

Percentage of memory in use: 54%
Total physical RAM: 3070.97 MB
Available physical RAM: 1383.55 MB
Total Pagefile: 6140.23 MB
Available Pagefile: 4219.16 MB
Total Virtual: 2047.88 MB
Available Virtual: 1922.68 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:465.62 GB) (Free:341.42 GB) NTFS
7 Drive k: () (Removable) (Total:3.68 GB) (Free:1.42 GB) FAT32

========================= Users: ========================================

User accounts for \\BIGJAY3

Administrator            Guest                    Helen                   
Leora                   

**** End of log ****



#6 HelenWinkle

HelenWinkle
  • Topic Starter

  • Members
  • 53 posts
  • OFFLINE
  •  
  • Local time:01:32 AM

Posted 15 August 2013 - 03:33 PM

16:31:37.0742 2260  TDSS rootkit removing tool 2.8.18.0 Jun 10 2013 21:44:19
16:31:38.0085 2260  ============================================================
16:31:38.0085 2260  Current date / time: 2013/08/15 16:31:38.0085
16:31:38.0085 2260  SystemInfo:
16:31:38.0085 2260 
16:31:38.0085 2260  OS Version: 6.1.7601 ServicePack: 1.0
16:31:38.0085 2260  Product type: Workstation
16:31:38.0085 2260  ComputerName: BIGJAY3
16:31:38.0085 2260  UserName: Helen
16:31:38.0085 2260  Windows directory: C:\Windows
16:31:38.0085 2260  System windows directory: C:\Windows
16:31:38.0085 2260  Processor architecture: Intel x86
16:31:38.0085 2260  Number of processors: 4
16:31:38.0085 2260  Page size: 0x1000
16:31:38.0085 2260  Boot type: Normal boot
16:31:38.0085 2260  ============================================================
16:31:38.0709 2260  Drive \Device\Harddisk0\DR0 - Size: 0x7470900000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED80, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
16:31:38.0849 2260  Drive \Device\Harddisk4\DR4 - Size: 0xEBE00000 (3.69 Gb), SectorSize: 0x200, Cylinders: 0x1E1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
16:31:38.0849 2260  ============================================================
16:31:38.0849 2260  \Device\Harddisk0\DR0:
16:31:38.0849 2260  MBR partitions:
16:31:38.0849 2260  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x14000, BlocksNum 0x32000
16:31:38.0849 2260  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x46000, BlocksNum 0x3A33E000
16:31:38.0849 2260  \Device\Harddisk4\DR4:
16:31:38.0849 2260  MBR partitions:
16:31:38.0849 2260  \Device\Harddisk4\DR4\Partition1: MBR, Type 0xB, StartLBA 0x2000, BlocksNum 0x75D000
16:31:38.0849 2260  ============================================================
16:31:38.0880 2260  C: <-> \Device\Harddisk0\DR0\Partition2
16:31:38.0880 2260  ============================================================
16:31:38.0880 2260  Initialize success
16:31:38.0880 2260  ============================================================
16:32:10.0065 3736  ============================================================
16:32:10.0065 3736  Scan started
16:32:10.0065 3736  Mode: Manual; TDLFS;
16:32:10.0065 3736  ============================================================
16:32:10.0252 3736  ================ Scan system memory ========================
16:32:10.0252 3736  System memory - ok
16:32:10.0268 3736  ================ Scan services =============================
16:32:10.0377 3736  [ 1B133875B8AA8AC48969BD3458AFE9F5 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
16:32:10.0392 3736  1394ohci - ok
16:32:10.0455 3736  [ A15069EEC83EBC54150564B2585CFDBA ] 9734BF6A-2DCD-40f0-BAB0-5AAFEEBE1269 C:\Program Files\Roxio\BackOnTrack\Disaster Recovery\SaibSVC.exe
16:32:10.0470 3736  9734BF6A-2DCD-40f0-BAB0-5AAFEEBE1269 - ok
16:32:10.0517 3736  [ CEA80C80BED809AA0DA6FEBC04733349 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
16:32:10.0517 3736  ACPI - ok
16:32:10.0564 3736  [ 1EFBC664ABFF416D1D07DB115DCB264F ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
16:32:10.0564 3736  AcpiPmi - ok
16:32:10.0611 3736  [ 73685E15EF8B0BD9C30F1AF413F13D49 ] adfs            C:\Windows\system32\drivers\adfs.sys
16:32:10.0626 3736  adfs - ok
16:32:10.0720 3736  [ ADDA5E1951B90D3D23C56D3CF0622ADC ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
16:32:10.0736 3736  AdobeARMservice - ok
16:32:10.0798 3736  [ 476BB014F3F68C0C15EDDD5B444DA8FF ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
16:32:10.0829 3736  AdobeFlashPlayerUpdateSvc - ok
16:32:10.0860 3736  [ 21E785EBD7DC90A06391141AAC7892FB ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
16:32:10.0876 3736  adp94xx - ok
16:32:10.0892 3736  [ 0C676BC278D5B59FF5ABD57BBE9123F2 ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
16:32:10.0892 3736  adpahci - ok
16:32:10.0923 3736  [ 7C7B5EE4B7B822EC85321FE23A27DB33 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
16:32:10.0923 3736  adpu320 - ok
16:32:10.0938 3736  [ 023867B6606FBABCDD52E089C4A507DA ] AegisP          C:\Windows\system32\DRIVERS\AegisP.sys
16:32:10.0985 3736  AegisP - ok
16:32:11.0016 3736  [ 8B5EEFEEC1E6D1A72A06C526628AD161 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
16:32:11.0032 3736  AeLookupSvc - ok
16:32:11.0063 3736  [ 7A841462AD4749F8A07B27AE8E8947B8 ] AERTFilters     C:\Program Files\Realtek\Audio\HDA\AERTSrv.exe
16:32:11.0079 3736  AERTFilters - ok
16:32:11.0126 3736  [ 9EBBBA55060F786F0FCAA3893BFA2806 ] AFD             C:\Windows\system32\drivers\afd.sys
16:32:11.0141 3736  AFD - ok
16:32:11.0157 3736  [ 507812C3054C21CEF746B6EE3D04DD6E ] agp440          C:\Windows\system32\drivers\agp440.sys
16:32:11.0172 3736  agp440 - ok
16:32:11.0188 3736  [ 8B30250D573A8F6B4BD23195160D8707 ] aic78xx         C:\Windows\system32\DRIVERS\djsvs.sys
16:32:11.0204 3736  aic78xx - ok
16:32:11.0219 3736  [ 18A54E132947CD98FEA9ACCC57F98F13 ] ALG             C:\Windows\System32\alg.exe
16:32:11.0235 3736  ALG - ok
16:32:11.0266 3736  [ 0D40BCF52EA90FC7DF2AEAB6503DEA44 ] aliide          C:\Windows\system32\drivers\aliide.sys
16:32:11.0266 3736  aliide - ok
16:32:11.0297 3736  [ 5C1CC909EA9EE3A1C087C38B35EE425F ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
16:32:11.0313 3736  AMD External Events Utility - ok
16:32:11.0344 3736  [ 3C6600A0696E90A463771C7422E23AB5 ] amdagp          C:\Windows\system32\drivers\amdagp.sys
16:32:11.0344 3736  amdagp - ok
16:32:11.0360 3736  [ CD5914170297126B6266860198D1D4F0 ] amdide          C:\Windows\system32\drivers\amdide.sys
16:32:11.0360 3736  amdide - ok
16:32:11.0391 3736  [ 00DDA200D71BAC534BF56A9DB5DFD666 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
16:32:11.0406 3736  AmdK8 - ok
16:32:11.0547 3736  [ 890D176407CE63B8036E175F8D550F62 ] amdkmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
16:32:11.0625 3736  amdkmdag - ok
16:32:11.0656 3736  [ 3C5E63C49EB61F762CDC9C22438B0041 ] amdkmdap        C:\Windows\system32\DRIVERS\atikmpag.sys
16:32:11.0672 3736  amdkmdap - ok
16:32:11.0687 3736  [ 3CBF30F5370FDA40DD3E87DF38EA53B6 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
16:32:11.0687 3736  AmdPPM - ok
16:32:11.0703 3736  [ D320BF87125326F996D4904FE24300FC ] amdsata         C:\Windows\system32\drivers\amdsata.sys
16:32:11.0718 3736  amdsata - ok
16:32:11.0734 3736  [ EA43AF0C423FF267355F74E7A53BDABA ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
16:32:11.0750 3736  amdsbs - ok
16:32:11.0765 3736  [ 46387FB17B086D16DEA267D5BE23A2F2 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
16:32:11.0765 3736  amdxata - ok
16:32:11.0812 3736  [ 48E008CF2EDCF8FC91A9D3507865A51D ] anodlwf         C:\Windows\system32\DRIVERS\anodlwf.sys
16:32:11.0828 3736  anodlwf - ok
16:32:11.0874 3736  [ AEA177F783E20150ACE5383EE368DA19 ] AppID           C:\Windows\system32\drivers\appid.sys
16:32:11.0874 3736  AppID - ok
16:32:11.0906 3736  [ 62A9C86CB6085E20DB4823E4E97826F5 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
16:32:11.0921 3736  AppIDSvc - ok
16:32:11.0937 3736  [ EACFDF31921F51C097629F1F3C9129B4 ] Appinfo         C:\Windows\System32\appinfo.dll
16:32:11.0952 3736  Appinfo - ok
16:32:11.0999 3736  [ 4FE5C6D40664AE07BE5105874357D2ED ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
16:32:12.0015 3736  Apple Mobile Device - ok
16:32:12.0046 3736  [ A45D184DF6A8803DA13A0B329517A64A ] AppMgmt         C:\Windows\System32\appmgmts.dll
16:32:12.0062 3736  AppMgmt - ok
16:32:12.0077 3736  [ 2932004F49677BD84DBC72EDB754FFB3 ] arc             C:\Windows\system32\DRIVERS\arc.sys
16:32:12.0077 3736  arc - ok
16:32:12.0077 3736  [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7 ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
16:32:12.0077 3736  arcsas - ok
16:32:12.0093 3736  [ ADD2ADE1C2B285AB8378D2DAAF991481 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
16:32:12.0108 3736  AsyncMac - ok
16:32:12.0140 3736  [ 338C86357871C167A96AB976519BF59E ] atapi           C:\Windows\system32\drivers\atapi.sys
16:32:12.0155 3736  atapi - ok
16:32:12.0186 3736  [ 5371FF39AB5C496AC609F9DAD755D778 ] AtiHdmiService  C:\Windows\system32\drivers\AtiHdmi.sys
16:32:12.0202 3736  AtiHdmiService - ok
16:32:12.0296 3736  [ 890D176407CE63B8036E175F8D550F62 ] atikmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
16:32:12.0327 3736  atikmdag - ok
16:32:12.0358 3736  [ CE3B4E731638D2EF62FCB419BE0D39F0 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
16:32:12.0374 3736  AudioEndpointBuilder - ok
16:32:12.0389 3736  [ CE3B4E731638D2EF62FCB419BE0D39F0 ] Audiosrv        C:\Windows\System32\Audiosrv.dll
16:32:12.0389 3736  Audiosrv - ok
16:32:12.0405 3736  [ 6E30D02AAC9CAC84F421622E3A2F6178 ] AxInstSV        C:\Windows\System32\AxInstSV.dll
16:32:12.0420 3736  AxInstSV - ok
16:32:12.0452 3736  [ 1A231ABEC60FD316EC54C66715543CEC ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbdx.sys
16:32:12.0467 3736  b06bdrv - ok
16:32:12.0483 3736  [ BD8869EB9CDE6BBE4508D869929869EE ] b57nd60x        C:\Windows\system32\DRIVERS\b57nd60x.sys
16:32:12.0483 3736  b57nd60x - ok
16:32:12.0498 3736  [ EE1E9C3BB8228AE423DD38DB69128E71 ] BDESVC          C:\Windows\System32\bdesvc.dll
16:32:12.0514 3736  BDESVC - ok
16:32:12.0514 3736  [ 505506526A9D467307B3C393DEDAF858 ] Beep            C:\Windows\system32\drivers\Beep.sys
16:32:12.0530 3736  Beep - ok
16:32:12.0576 3736  [ 1E2BAC209D184BB851E1A187D8A29136 ] BFE             C:\Windows\System32\bfe.dll
16:32:12.0592 3736  BFE - ok
16:32:12.0608 3736  [ E585445D5021971FAE10393F0F1C3961 ] BITS            C:\Windows\system32\qmgr.dll
16:32:12.0623 3736  BITS - ok
16:32:12.0623 3736  [ 2287078ED48FCFC477B05B20CF38F36F ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
16:32:12.0639 3736  blbdrive - ok
16:32:12.0701 3736  [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
16:32:12.0717 3736  Bonjour Service - ok
16:32:12.0732 3736  [ 8F2DA3028D5FCBD1A060A3DE64CD6506 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
16:32:12.0748 3736  bowser - ok
16:32:12.0764 3736  [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
16:32:12.0764 3736  BrFiltLo - ok
16:32:12.0764 3736  [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
16:32:12.0764 3736  BrFiltUp - ok
16:32:12.0779 3736  [ 77361D72A04F18809D0EFB6CCEB74D4B ] BridgeMP        C:\Windows\system32\DRIVERS\bridge.sys
16:32:12.0779 3736  BridgeMP - ok
16:32:12.0813 3736  [ 3DAA727B5B0A45039B0E1C9A211B8400 ] Browser         C:\Windows\System32\browser.dll
16:32:12.0829 3736  Browser - ok
16:32:12.0844 3736  [ 845B8CE732E67F3B4133164868C666EA ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
16:32:12.0844 3736  Brserid - ok
16:32:12.0860 3736  [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
16:32:12.0860 3736  BrSerWdm - ok
16:32:12.0860 3736  [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
16:32:12.0860 3736  BrUsbMdm - ok
16:32:12.0860 3736  [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
16:32:12.0860 3736  BrUsbSer - ok
16:32:12.0860 3736  [ ED3DF7C56CE0084EB2034432FC56565A ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
16:32:12.0860 3736  BTHMODEM - ok
16:32:12.0891 3736  [ 1DF19C96EEF6C29D1C3E1A8678E07190 ] bthserv         C:\Windows\system32\bthserv.dll
16:32:12.0891 3736  bthserv - ok
16:32:12.0969 3736  catchme - ok
16:32:12.0985 3736  [ 77EA11B065E0A8AB902D78145CA51E10 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
16:32:12.0985 3736  cdfs - ok
16:32:13.0031 3736  [ BE167ED0FDB9C1FA1133953C18D5A6C9 ] cdrom           C:\Windows\system32\drivers\cdrom.sys
16:32:13.0047 3736  cdrom - ok
16:32:13.0078 3736  [ 319C6B309773D063541D01DF8AC6F55F ] CertPropSvc     C:\Windows\System32\certprop.dll
16:32:13.0078 3736  CertPropSvc - ok
16:32:13.0125 3736  [ 127D4D0E9F78834FFD1EEEA3FCFB47C1 ] CinemaNow Service C:\Program Files\CinemaNow\CinemaNow Media Manager\CinemanowSvc.exe
16:32:13.0733 3736  CinemaNow Service - ok
16:32:13.0765 3736  [ 3FE3FE94A34DF6FB06E6418D0F6A0060 ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
16:32:13.0765 3736  circlass - ok
16:32:13.0780 3736  [ 635181E0E9BBF16871BF5380D71DB02D ] CLFS            C:\Windows\system32\CLFS.sys
16:32:13.0796 3736  CLFS - ok
16:32:13.0874 3736  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:32:13.0874 3736  clr_optimization_v2.0.50727_32 - ok
16:32:13.0952 3736  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
16:32:13.0967 3736  clr_optimization_v4.0.30319_32 - ok
16:32:13.0967 3736  [ DEA805815E587DAD1DD2C502220B5616 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
16:32:13.0967 3736  CmBatt - ok
16:32:13.0983 3736  [ C537B1DB64D495B9B4717B4D6D9EDBF2 ] cmdide          C:\Windows\system32\drivers\cmdide.sys
16:32:13.0983 3736  cmdide - ok
16:32:14.0014 3736  [ 247B4CE2DAB1160CD422D532D5241E1F ] CNG             C:\Windows\system32\Drivers\cng.sys
16:32:14.0030 3736  CNG - ok
16:32:14.0045 3736  [ A6023D3823C37043986713F118A89BEE ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
16:32:14.0045 3736  Compbatt - ok
16:32:14.0077 3736  [ CBE8C58A8579CFE5FCCF809E6F114E89 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
16:32:14.0077 3736  CompositeBus - ok
16:32:14.0092 3736  COMSysApp - ok
16:32:14.0092 3736  [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
16:32:14.0092 3736  crcdisk - ok
16:32:14.0139 3736  [ 7CA1BECEA5DE2643ADDAD32670E7A4C9 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
16:32:14.0139 3736  CryptSvc - ok
16:32:14.0186 3736  [ 3C2177A897B4CA2788C6FB0C3FD81D4B ] CSC             C:\Windows\system32\drivers\csc.sys
16:32:14.0201 3736  CSC - ok
16:32:14.0248 3736  [ 15F93B37F6801943360D9EB42485D5D3 ] CscService      C:\Windows\System32\cscsvc.dll
16:32:14.0248 3736  CscService - ok
16:32:14.0326 3736  [ 14E2FF7474C193F97297096FBD6EBB47 ] CVCompressionService C:\Program Files\CVision\PdfCompressor 6.0\Service\CVCompressionService.exe
16:32:14.0482 3736  CVCompressionService - ok
16:32:14.0513 3736  [ 7660F01D3B38ACA1747E397D21D790AF ] DcomLaunch      C:\Windows\system32\rpcss.dll
16:32:14.0529 3736  DcomLaunch - ok
16:32:14.0560 3736  [ 8D6E10A2D9A5EED59562D9B82CF804E1 ] defragsvc       C:\Windows\System32\defragsvc.dll
16:32:14.0560 3736  defragsvc - ok
16:32:14.0591 3736  [ F024449C97EC1E464AAFFDA18593DB88 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
16:32:14.0607 3736  DfsC - ok
16:32:14.0638 3736  [ 7F19DBA1A467B838CCB23124A2C55568 ] DgiVecp         C:\Windows\system32\Drivers\DgiVecp.sys
16:32:14.0654 3736  DgiVecp - ok
16:32:14.0685 3736  [ E9E01EB683C132F7FA27CD607B8A2B63 ] Dhcp            C:\Windows\system32\dhcpcore.dll
16:32:14.0701 3736  Dhcp - ok
16:32:14.0716 3736  [ 1A050B0274BFB3890703D490F330C0DA ] discache        C:\Windows\system32\drivers\discache.sys
16:32:14.0716 3736  discache - ok
16:32:14.0732 3736  [ 565003F326F99802E68CA78F2A68E9FF ] Disk            C:\Windows\system32\DRIVERS\disk.sys
16:32:14.0732 3736  Disk - ok
16:32:14.0747 3736  [ 33EF4861F19A0736B11314AAD9AE28D0 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
16:32:14.0763 3736  Dnscache - ok
16:32:14.0794 3736  [ 366BA8FB4B7BB7435E3B9EACB3843F67 ] dot3svc         C:\Windows\System32\dot3svc.dll
16:32:14.0794 3736  dot3svc - ok
16:32:14.0825 3736  [ 8EC04CA86F1D68DA9E11952EB85973D6 ] DPS             C:\Windows\system32\dps.dll
16:32:14.0841 3736  DPS - ok
16:32:14.0857 3736  [ B918E7C5F9BF77202F89E1A9539F2EB4 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
16:32:14.0857 3736  drmkaud - ok
16:32:14.0903 3736  [ 16498EBC04AE9DD07049A8884B205C05 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
16:32:14.0919 3736  DXGKrnl - ok
16:32:14.0935 3736  [ 8600142FA91C1B96367D3300AD0F3F3A ] EapHost         C:\Windows\System32\eapsvc.dll
16:32:14.0950 3736  EapHost - ok
16:32:14.0966 3736  [ C47E7C5E7410C7DE98F7219E3008C23D ] EAPPkt          C:\Windows\system32\DRIVERS\EAPPkt.sys
16:32:14.0981 3736  EAPPkt - ok
16:32:15.0091 3736  [ 024E1B5CAC09731E4D868E64DBFB4AB0 ] ebdrv           C:\Windows\system32\DRIVERS\evbdx.sys
16:32:15.0122 3736  ebdrv - ok
16:32:15.0137 3736  [ 81951F51E318AECC2D68559E47485CC4 ] EFS             C:\Windows\System32\lsass.exe
16:32:15.0153 3736  EFS - ok
16:32:15.0200 3736  [ A8C362018EFC87BEB013EE28F29C0863 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
16:32:15.0215 3736  ehRecvr - ok
16:32:15.0231 3736  [ D389BFF34F80CAEDE417BF9D1507996A ] ehSched         C:\Windows\ehome\ehsched.exe
16:32:15.0247 3736  ehSched - ok
16:32:15.0293 3736  [ 0ED67910C8C326796FAA00B2BF6D9D3C ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
16:32:15.0325 3736  elxstor - ok
16:32:15.0356 3736  [ 8FC3208352DD3912C94367A206AB3F11 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
16:32:15.0356 3736  ErrDev - ok
16:32:15.0387 3736  [ F6916EFC29D9953D5D0DF06882AE8E16 ] EventSystem     C:\Windows\system32\es.dll
16:32:15.0403 3736  EventSystem - ok
16:32:15.0418 3736  [ 2DC9108D74081149CC8B651D3A26207F ] exfat           C:\Windows\system32\drivers\exfat.sys
16:32:15.0434 3736  exfat - ok
16:32:15.0449 3736  [ 7E0AB74553476622FB6AE36F73D97D35 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
16:32:15.0465 3736  fastfat - ok
16:32:15.0527 3736  [ 967EA5B213E9984CBE270205DF37755B ] Fax             C:\Windows\system32\fxssvc.exe
16:32:15.0543 3736  Fax - ok
16:32:15.0559 3736  [ E817A017F82DF2A1F8CFDBDA29388B29 ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
16:32:15.0574 3736  fdc - ok
16:32:15.0574 3736  [ F3222C893BD2F5821A0179E5C71E88FB ] fdPHost         C:\Windows\system32\fdPHost.dll
16:32:15.0590 3736  fdPHost - ok
16:32:15.0605 3736  [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B ] FDResPub        C:\Windows\system32\fdrespub.dll
16:32:15.0605 3736  FDResPub - ok
16:32:15.0605 3736  [ 6CF00369C97F3CF563BE99BE983D13D8 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
16:32:15.0621 3736  FileInfo - ok
16:32:15.0621 3736  [ 42C51DC94C91DA21CB9196EB64C45DB9 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
16:32:15.0621 3736  Filetrace - ok
16:32:15.0699 3736  [ 1F63900E2EB00101B9ACA2B7A870704E ] FLEXnet Licensing Service C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
16:32:15.0715 3736  FLEXnet Licensing Service - ok
16:32:15.0715 3736  [ 87907AA70CB3C56600F1C2FB8841579B ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
16:32:15.0730 3736  flpydisk - ok
16:32:15.0746 3736  [ 7520EC808E0C35E0EE6F841294316653 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
16:32:15.0746 3736  FltMgr - ok
16:32:15.0793 3736  [ E12C4928B32ACE04610259647F072635 ] FontCache       C:\Windows\system32\FntCache.dll
16:32:15.0824 3736  FontCache - ok
16:32:15.0855 3736  [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
16:32:15.0871 3736  FontCache3.0.0.0 - ok
16:32:15.0871 3736  [ 1A16B57943853E598CFF37FE2B8CBF1D ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
16:32:15.0871 3736  FsDepends - ok
16:32:15.0902 3736  [ 2ED0BABD4CD98ED820FD0D0BCBE96721 ] fssfltr         C:\Windows\system32\DRIVERS\fssfltr.sys
16:32:15.0917 3736  fssfltr - ok
16:32:16.0011 3736  [ 812E1BA5C52A78F13EA6AA10DF708B1D ] fsssvc          C:\Program Files\Windows Live\Family Safety\fsssvc.exe
16:32:16.0027 3736  fsssvc - ok
16:32:16.0042 3736  [ 7DAE5EBCC80E45D3253F4923DC424D05 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
16:32:16.0058 3736  Fs_Rec - ok
16:32:16.0089 3736  [ E306A24D9694C724FA2491278BF50FDB ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
16:32:16.0089 3736  fvevol - ok
16:32:16.0120 3736  [ 65EE0C7A58B65E74AE05637418153938 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
16:32:16.0136 3736  gagp30kx - ok
16:32:16.0151 3736  [ 185ADA973B5020655CEE342059A86CBB ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
16:32:16.0151 3736  GEARAspiWDM - ok
16:32:16.0198 3736  [ E897EAF5ED6BA41E081060C9B447A673 ] gpsvc           C:\Windows\System32\gpsvc.dll
16:32:16.0214 3736  gpsvc - ok
16:32:16.0276 3736  [ F02A533F517EB38333CB12A9E8963773 ] gupdate         C:\Program Files\Google\Update\GoogleUpdate.exe
16:32:16.0292 3736  gupdate - ok
16:32:16.0339 3736  [ F02A533F517EB38333CB12A9E8963773 ] gupdatem        C:\Program Files\Google\Update\GoogleUpdate.exe
16:32:16.0339 3736  gupdatem - ok
16:32:16.0401 3736  [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc           C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
16:32:16.0417 3736  gusvc - ok
16:32:16.0432 3736  [ C44E3C2BAB6837DB337DDEE7544736DB ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
16:32:16.0432 3736  hcw85cir - ok
16:32:16.0479 3736  [ A5EF29D5315111C80A5C1ABAD14C8972 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
16:32:16.0495 3736  HdAudAddService - ok
16:32:16.0510 3736  [ 9036377B8A6C15DC2EEC53E489D159B5 ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
16:32:16.0526 3736  HDAudBus - ok
16:32:16.0541 3736  [ 1D58A7F3E11A9731D0EAAAA8405ACC36 ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
16:32:16.0541 3736  HidBatt - ok
16:32:16.0557 3736  [ 89448F40E6DF260C206A193A4683BA78 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
16:32:16.0573 3736  HidBth - ok
16:32:16.0588 3736  [ CF50B4CF4A4F229B9F3C08351F99CA5E ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
16:32:16.0588 3736  HidIr - ok
16:32:16.0604 3736  [ 2BC6F6A1992B3A77F5F41432CA6B3B6B ] hidserv         C:\Windows\System32\hidserv.dll
16:32:16.0619 3736  hidserv - ok
16:32:16.0651 3736  [ 10C19F8290891AF023EAEC0832E1EB4D ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
16:32:16.0651 3736  HidUsb - ok
16:32:16.0666 3736  [ 196B4E3F4CCCC24AF836CE58FACBB699 ] hkmsvc          C:\Windows\system32\kmsvc.dll
16:32:16.0682 3736  hkmsvc - ok
16:32:16.0697 3736  [ 6658F4404DE03D75FE3BA09F7ABA6A30 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
16:32:16.0713 3736  HomeGroupListener - ok
16:32:16.0744 3736  [ DBC02D918FFF1CAD628ACBE0C0EAA8E8 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
16:32:16.0760 3736  HomeGroupProvider - ok
16:32:16.0791 3736  [ 295FDC419039090EB8B49FFDBB374549 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
16:32:16.0807 3736  HpSAMD - ok
16:32:16.0838 3736  [ 871917B07A141BFF43D76D8844D48106 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
16:32:16.0853 3736  HTTP - ok
16:32:16.0869 3736  [ 0C4E035C7F105F1299258C90886C64C5 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
16:32:16.0885 3736  hwpolicy - ok
16:32:16.0900 3736  [ F151F0BDC47F4A28B1B20A0818EA36D6 ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
16:32:16.0916 3736  i8042prt - ok
16:32:16.0947 3736  [ 26541A068572F650A2FA490726FE81BE ] iaStor          C:\Windows\system32\DRIVERS\iaStor.sys
16:32:16.0947 3736  iaStor - ok
16:32:16.0978 3736  [ 31A0E93CDF29007D6C6FFFB632F375ED ] IAStorDataMgrSvc C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
16:32:16.0994 3736  IAStorDataMgrSvc - ok
16:32:16.0994 3736  [ 5CD5F9A5444E6CDCB0AC89BD62D8B76E ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
16:32:17.0009 3736  iaStorV - ok
16:32:17.0056 3736  [ C521D7EB6497BB1AF6AFA89E322FB43C ] idsvc           C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
16:32:17.0072 3736  idsvc - ok
16:32:17.0103 3736  [ 4173FF5708F3236CF25195FECD742915 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
16:32:17.0103 3736  iirsp - ok
16:32:17.0150 3736  [ F95622F161474511B8D80D6B093AA610 ] IKEEXT          C:\Windows\System32\ikeext.dll
16:32:17.0165 3736  IKEEXT - ok
16:32:17.0290 3736  [ 8B27C21412AE4404EB0ACFE1D98579EC ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
16:32:17.0321 3736  IntcAzAudAddService - ok
16:32:17.0337 3736  [ A0F12F2C9BA6C72F3987CE780E77C130 ] intelide        C:\Windows\system32\drivers\intelide.sys
16:32:17.0353 3736  intelide - ok
16:32:17.0368 3736  [ 3B514D27BFC4ACCB4037BC6685F766E0 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
16:32:17.0368 3736  intelppm - ok
16:32:17.0384 3736  [ ACB364B9075A45C0736E5C47BE5CAE19 ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
16:32:17.0399 3736  IPBusEnum - ok
16:32:17.0415 3736  [ 709D1761D3B19A932FF0238EA6D50200 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
16:32:17.0415 3736  IpFilterDriver - ok
16:32:17.0462 3736  [ 58F67245D041FBE7AF88F4EAF79DF0FA ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
16:32:17.0477 3736  iphlpsvc - ok
16:32:17.0493 3736  [ 4BD7134618C1D2A27466A099062547BF ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
16:32:17.0509 3736  IPMIDRV - ok
16:32:17.0524 3736  [ A5FA468D67ABCDAA36264E463A7BB0CD ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
16:32:17.0524 3736  IPNAT - ok
16:32:17.0602 3736  [ FE56897B27ED266F9C4E7D90A0B5DA47 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
16:32:17.0618 3736  iPod Service - ok
16:32:17.0633 3736  [ 42996CFF20A3084A56017B7902307E9F ] IRENUM          C:\Windows\system32\drivers\irenum.sys
16:32:17.0633 3736  IRENUM - ok
16:32:17.0649 3736  [ 1F32BB6B38F62F7DF1A7AB7292638A35 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
16:32:17.0665 3736  isapnp - ok
16:32:17.0696 3736  [ CB7A9ABB12B8415BCE5D74994C7BA3AE ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
16:32:17.0711 3736  iScsiPrt - ok
16:32:17.0727 3736  [ ADEF52CA1AEAE82B50DF86B56413107E ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
16:32:17.0743 3736  kbdclass - ok
16:32:17.0758 3736  [ 9E3CED91863E6EE98C24794D05E27A71 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
16:32:17.0758 3736  kbdhid - ok
16:32:17.0774 3736  [ 81951F51E318AECC2D68559E47485CC4 ] KeyIso          C:\Windows\system32\lsass.exe
16:32:17.0774 3736  KeyIso - ok
16:32:17.0805 3736  [ B7895B4182C0D16F6EFADEB8081E8D36 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
16:32:17.0821 3736  KSecDD - ok
16:32:17.0836 3736  [ D30159AC9237519FBC62C6EC247D2D46 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
16:32:17.0867 3736  KSecPkg - ok
16:32:17.0883 3736  [ 89A7B9CC98D0D80C6F31B91C0A310FCD ] KtmRm           C:\Windows\system32\msdtckrm.dll
16:32:17.0899 3736  KtmRm - ok
16:32:17.0945 3736  [ D64AF876D53ECA3668BB97B51B4E70AB ] LanmanServer    C:\Windows\System32\srvsvc.dll
16:32:17.0961 3736  LanmanServer - ok
16:32:17.0977 3736  [ 58405E4F68BA8E4057C6E914F326ABA2 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
16:32:17.0992 3736  LanmanWorkstation - ok
16:32:18.0008 3736  [ F7611EC07349979DA9B0AE1F18CCC7A6 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
16:32:18.0008 3736  lltdio - ok
16:32:18.0039 3736  [ 5700673E13A2117FA3B9020C852C01E2 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
16:32:18.0055 3736  lltdsvc - ok
16:32:18.0070 3736  [ 55CA01BA19D0006C8F2639B6C045E08B ] lmhosts         C:\Windows\System32\lmhsvc.dll
16:32:18.0070 3736  lmhosts - ok
16:32:18.0179 3736  [ F622A3C0C10A26C1DC789CDEB0B2A4EB ] LMIGuardianSvc  C:\Program Files\LogMeIn\x86\LMIGuardianSvc.exe
16:32:18.0179 3736  LMIGuardianSvc - ok
16:32:18.0179 3736  lmimirr - ok
16:32:18.0211 3736  [ EB119A53CCF2ACC000AC71B065B78FEF ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
16:32:18.0226 3736  LSI_FC - ok
16:32:18.0242 3736  [ 8ADE1C877256A22E49B75D1CC9161F9C ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
16:32:18.0257 3736  LSI_SAS - ok
16:32:18.0273 3736  [ DC9DC3D3DAA0E276FD2EC262E38B11E9 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
16:32:18.0273 3736  LSI_SAS2 - ok
16:32:18.0273 3736  [ 0A036C7D7CAB643A7F07135AC47E0524 ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
16:32:18.0273 3736  LSI_SCSI - ok
16:32:18.0304 3736  [ 6703E366CC18D3B6E534F5CF7DF39CEE ] luafv           C:\Windows\system32\drivers\luafv.sys
16:32:18.0304 3736  luafv - ok
16:32:18.0335 3736  [ B6E1CCD6572984ADCAE68439AFD07011 ] LVRS            C:\Windows\system32\DRIVERS\lvrs.sys
16:32:18.0351 3736  LVRS - ok
16:32:18.0491 3736  [ 6C42815DD57E397F0CD988304B5EB4B3 ] LVUVC           C:\Windows\system32\DRIVERS\lvuvc.sys
16:32:18.0538 3736  LVUVC - ok
16:32:18.0554 3736  [ BFB9EE8EE977EFE85D1A3105ABEF6DD1 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
16:32:18.0569 3736  Mcx2Svc - ok
16:32:18.0632 3736  [ 7CF1B716372B89568AE4C0FE769F5869 ] MDM             C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
16:32:18.0647 3736  MDM - ok
16:32:18.0663 3736  [ 0FFF5B045293002AB38EB1FD1FC2FB74 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
16:32:18.0679 3736  megasas - ok
16:32:18.0710 3736  [ DCBAB2920C75F390CAF1D29F675D03D6 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
16:32:18.0710 3736  MegaSR - ok
16:32:18.0725 3736  [ 146B6F43A673379A3C670E86D89BE5EA ] MMCSS           C:\Windows\system32\mmcss.dll
16:32:18.0741 3736  MMCSS - ok
16:32:18.0741 3736  [ F001861E5700EE84E2D4E52C712F4964 ] Modem           C:\Windows\system32\drivers\modem.sys
16:32:18.0741 3736  Modem - ok
16:32:18.0757 3736  [ 79D10964DE86B292320E9DFE02282A23 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
16:32:18.0772 3736  monitor - ok
16:32:18.0788 3736  [ FB18CC1D4C2E716B6B903B0AC0CC0609 ] mouclass        C:\Windows\system32\drivers\mouclass.sys
16:32:18.0788 3736  mouclass - ok
16:32:18.0819 3736  [ 2C388D2CD01C9042596CF3C8F3C7B24D ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
16:32:18.0819 3736  mouhid - ok
16:32:18.0850 3736  [ FC8771F45ECCCFD89684E38842539B9B ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
16:32:18.0866 3736  mountmgr - ok
16:32:18.0897 3736  MozillaMaintenance - ok
16:32:18.0944 3736  [ CF105EE42E3F71E648CEBB3F666E1CF0 ] MpFilter        C:\Windows\system32\DRIVERS\MpFilter.sys
16:32:18.0959 3736  MpFilter - ok
16:32:18.0975 3736  [ 2D699FB6E89CE0D8DA14ECC03B3EDFE0 ] mpio            C:\Windows\system32\drivers\mpio.sys
16:32:18.0975 3736  mpio - ok
16:32:19.0084 3736  [ A69630D039C38018689190234F866D77 ] MpKsl749451ee   c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{BCDED7F1-099A-4911-B5A6-74C9748F73B6}\MpKsl749451ee.sys
16:32:19.0100 3736  MpKsl749451ee - ok
16:32:19.0100 3736  [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
16:32:19.0115 3736  mpsdrv - ok
16:32:19.0147 3736  [ 9835584E999D25004E1EE8E5F3E3B881 ] MpsSvc          C:\Windows\system32\mpssvc.dll
16:32:19.0162 3736  MpsSvc - ok
16:32:19.0193 3736  [ CEB46AB7C01C9F825F8CC6BABC18166A ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
16:32:19.0193 3736  MRxDAV - ok
16:32:19.0225 3736  [ 5D16C921E3671636C0EBA3BBAAC5FD25 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
16:32:19.0225 3736  mrxsmb - ok
16:32:19.0256 3736  [ 6D17A4791ACA19328C685D256349FEFC ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
16:32:19.0256 3736  mrxsmb10 - ok
16:32:19.0271 3736  [ B81F204D146000BE76651A50670A5E9E ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
16:32:19.0271 3736  mrxsmb20 - ok
16:32:19.0271 3736  [ 012C5F4E9349E711E11E0F19A8589F0A ] msahci          C:\Windows\system32\drivers\msahci.sys
16:32:19.0287 3736  msahci - ok
16:32:19.0334 3736  [ 55055F8AD8BE27A64C831322A780A228 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
16:32:19.0365 3736  msdsm - ok
16:32:19.0396 3736  [ E1BCE74A3BD9902B72599C0192A07E27 ] MSDTC           C:\Windows\System32\msdtc.exe
16:32:19.0396 3736  MSDTC - ok
16:32:19.0427 3736  [ DAEFB28E3AF5A76ABCC2C3078C07327F ] Msfs            C:\Windows\system32\drivers\Msfs.sys
16:32:19.0443 3736  Msfs - ok
16:32:19.0443 3736  [ 3E1E5767043C5AF9367F0056295E9F84 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
16:32:19.0443 3736  mshidkmdf - ok
16:32:19.0474 3736  [ 0A4E5757AE09FA9622E3158CC1AEF114 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
16:32:19.0474 3736  msisadrv - ok
16:32:19.0505 3736  [ 90F7D9E6B6F27E1A707D4A297F077828 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
16:32:19.0521 3736  MSiSCSI - ok
16:32:19.0521 3736  msiserver - ok
16:32:19.0537 3736  [ 8C0860D6366AAFFB6C5BB9DF9448E631 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
16:32:19.0537 3736  MSKSSRV - ok
16:32:19.0599 3736  [ C1F19D2BACBEE9AB64D9AE69E9859AC0 ] MsMpSvc         c:\Program Files\Microsoft Security Client\MsMpEng.exe
16:32:19.0599 3736  MsMpSvc - ok
16:32:19.0615 3736  [ 3EA8B949F963562CEDBB549EAC0C11CE ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
16:32:19.0615 3736  MSPCLOCK - ok
16:32:19.0630 3736  [ F456E973590D663B1073E9C463B40932 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
16:32:19.0630 3736  MSPQM - ok
16:32:19.0646 3736  [ 0E008FC4819D238C51D7C93E7B41E560 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
16:32:19.0661 3736  MsRPC - ok
16:32:19.0677 3736  [ FC6B9FF600CC585EA38B12589BD4E246 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
16:32:19.0677 3736  mssmbios - ok
16:32:19.0693 3736  [ B42C6B921F61A6E55159B8BE6CD54A36 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
16:32:19.0693 3736  MSTEE - ok
16:32:19.0708 3736  [ 33599130F44E1F34631CEA241DE8AC84 ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
16:32:19.0708 3736  MTConfig - ok
16:32:19.0724 3736  [ 159FAD02F64E6381758C990F753BCC80 ] Mup             C:\Windows\system32\Drivers\mup.sys
16:32:19.0724 3736  Mup - ok
16:32:19.0739 3736  [ 61D57A5D7C6D9AFE10E77DAE6E1B445E ] napagent        C:\Windows\system32\qagentRT.dll
16:32:19.0739 3736  napagent - ok
16:32:19.0771 3736  [ 26384429FCD85D83746F63E798AB1480 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
16:32:19.0786 3736  NativeWifiP - ok
16:32:19.0833 3736  [ 8C9C922D71F1CD4DEF73F186416B7896 ] NDIS            C:\Windows\system32\drivers\ndis.sys
16:32:19.0849 3736  NDIS - ok
16:32:19.0864 3736  [ 0E1787AA6C9191D3D319E8BAFE86F80C ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
16:32:19.0864 3736  NdisCap - ok
16:32:19.0880 3736  [ E4A8AEC125A2E43A9E32AFEEA7C9C888 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
16:32:19.0895 3736  NdisTapi - ok
16:32:19.0927 3736  [ D8A65DAFB3EB41CBB622745676FCD072 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
16:32:19.0927 3736  Ndisuio - ok
16:32:19.0958 3736  [ 38FBE267E7E6983311179230FACB1017 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
16:32:19.0973 3736  NdisWan - ok
16:32:19.0973 3736  [ A4BDC541E69674FBFF1A8FF00BE913F2 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
16:32:19.0973 3736  NDProxy - ok
16:32:19.0989 3736  [ 80B275B1CE3B0E79909DB7B39AF74D51 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
16:32:19.0989 3736  NetBIOS - ok
16:32:20.0020 3736  [ 280122DDCF04B378EDD1AD54D71C1E54 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
16:32:20.0036 3736  NetBT - ok
16:32:20.0036 3736  [ 81951F51E318AECC2D68559E47485CC4 ] Netlogon        C:\Windows\system32\lsass.exe
16:32:20.0036 3736  Netlogon - ok
16:32:20.0083 3736  [ 7CCCFCA7510684768DA22092D1FA4DB2 ] Netman          C:\Windows\System32\netman.dll
16:32:20.0098 3736  Netman - ok
16:32:20.0145 3736  [ 8C338238C16777A802D6A9211EB2BA50 ] netprofm        C:\Windows\System32\netprofm.dll
16:32:20.0161 3736  netprofm - ok
16:32:20.0207 3736  [ 3F9816208532F4750F7C6A049BB36651 ] netr28          C:\Windows\system32\DRIVERS\Dnetr28.sys
16:32:20.0223 3736  netr28 - ok
16:32:20.0254 3736  [ F476EC40033CDB91EFBE73EB99B8362D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
16:32:20.0254 3736  NetTcpPortSharing - ok
16:32:20.0270 3736  [ 1D85C4B390B0EE09C7A46B91EFB2C097 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
16:32:20.0270 3736  nfrd960 - ok
16:32:20.0301 3736  [ 832E098BCA8235436FE2D8AE50AC3718 ] NisDrv          C:\Windows\system32\DRIVERS\NisDrvWFP.sys
16:32:20.0317 3736  NisDrv - ok
16:32:20.0348 3736  [ E570ECA850F30EB740C2E9699DF3D2BD ] NisSrv          c:\Program Files\Microsoft Security Client\NisSrv.exe
16:32:20.0363 3736  NisSrv - ok
16:32:20.0426 3736  [ A2D5A587A4F30E1B3E9D0FD8D736F8C4 ] NitroReaderDriverReadSpool3 C:\Program Files\Nitro\Reader 3\NitroPDFReaderDriverService3.exe
16:32:20.0441 3736  NitroReaderDriverReadSpool3 - ok
16:32:20.0473 3736  [ 374071043F9E4231EE43BE2BB48DD36D ] NlaSvc          C:\Windows\System32\nlasvc.dll
16:32:20.0488 3736  NlaSvc - ok
16:32:20.0488 3736  [ 1DB262A9F8C087E8153D89BEF3D2235F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
16:32:20.0488 3736  Npfs - ok
16:32:20.0504 3736  [ BA387E955E890C8A88306D9B8D06BF17 ] nsi             C:\Windows\system32\nsisvc.dll
16:32:20.0519 3736  nsi - ok
16:32:20.0519 3736  [ E9A0A4D07E53D8FEA2BB8387A3293C58 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
16:32:20.0519 3736  nsiproxy - ok
16:32:20.0582 3736  [ 5E43D2B0EE64123D4880DFA6626DEFDE ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
16:32:20.0597 3736  Ntfs - ok
16:32:20.0613 3736  [ F9756A98D69098DCA8945D62858A812C ] Null            C:\Windows\system32\drivers\Null.sys
16:32:20.0613 3736  Null - ok
16:32:20.0644 3736  [ B3E25EE28883877076E0E1FF877D02E0 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
16:32:20.0660 3736  nvraid - ok
16:32:20.0675 3736  [ 4380E59A170D88C4F1022EFF6719A8A4 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
16:32:20.0675 3736  nvstor - ok
16:32:20.0691 3736  [ 5A0983915F02BAE73267CC2A041F717D ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
16:32:20.0707 3736  nv_agp - ok
16:32:20.0769 3736  [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv          C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
16:32:20.0785 3736  odserv - ok
16:32:20.0800 3736  [ 08A70A1F2CDDE9BB49B885CB817A66EB ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
16:32:20.0816 3736  ohci1394 - ok
16:32:20.0847 3736  [ 5A432A042DAE460ABE7199B758E8606C ] ose             C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
16:32:20.0863 3736  ose - ok
16:32:20.0894 3736  [ 82A8521DDC60710C3D3D3E7325209BEC ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
16:32:20.0909 3736  p2pimsvc - ok
16:32:20.0925 3736  [ 59C3DDD501E39E006DAC31BF55150D91 ] p2psvc          C:\Windows\system32\p2psvc.dll
16:32:20.0941 3736  p2psvc - ok
16:32:20.0956 3736  [ 2EA877ED5DD9713C5AC74E8EA7348D14 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
16:32:20.0972 3736  Parport - ok
16:32:20.0987 3736  [ 3F34A1B4C5F6475F320C275E63AFCE9B ] partmgr         C:\Windows\system32\drivers\partmgr.sys
16:32:21.0003 3736  partmgr - ok
16:32:21.0019 3736  [ EB0A59F29C19B86479D36B35983DAADC ] Parvdm          C:\Windows\system32\DRIVERS\parvdm.sys
16:32:21.0019 3736  Parvdm - ok
16:32:21.0034 3736  [ 358AB7956D3160000726574083DFC8A6 ] PcaSvc          C:\Windows\System32\pcasvc.dll
16:32:21.0050 3736  PcaSvc - ok
16:32:21.0065 3736  [ 673E55C3498EB970088E812EA820AA8F ] pci             C:\Windows\system32\drivers\pci.sys
16:32:21.0081 3736  pci - ok
16:32:21.0081 3736  [ AFE86F419014DB4E5593F69FFE26CE0A ] pciide          C:\Windows\system32\drivers\pciide.sys
16:32:21.0081 3736  pciide - ok
16:32:21.0112 3736  [ F396431B31693E71E8A80687EF523506 ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
16:32:21.0112 3736  pcmcia - ok
16:32:21.0128 3736  [ 250F6B43D2B613172035C6747AEEB19F ] pcw             C:\Windows\system32\drivers\pcw.sys
16:32:21.0128 3736  pcw - ok
16:32:21.0175 3736  [ 26E6990BFD996A81011539EF37E487DF ] PdfCompressorFtpService C:\Program Files\CVision\PdfCompressor 6.0\ftpsvc.exe
16:32:21.0190 3736  PdfCompressorFtpService - ok
16:32:21.0221 3736  [ 9E0104BA49F4E6973749A02BF41344ED ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
16:32:21.0237 3736  PEAUTH - ok
16:32:21.0284 3736  [ AF4D64D2A57B9772CF3801950B8058A6 ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
16:32:21.0315 3736  PeerDistSvc - ok
16:32:21.0377 3736  [ 414BBA67A3DED1D28437EB66AEB8A720 ] pla             C:\Windows\system32\pla.dll
16:32:21.0424 3736  pla - ok
16:32:21.0471 3736  [ EC7BC28D207DA09E79B3E9FAF8B232CA ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
16:32:21.0487 3736  PlugPlay - ok
16:32:21.0487 3736  [ 63FF8572611249931EB16BB8EED6AFC8 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
16:32:21.0502 3736  PNRPAutoReg - ok
16:32:21.0502 3736  [ 82A8521DDC60710C3D3D3E7325209BEC ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
16:32:21.0518 3736  PNRPsvc - ok
16:32:21.0533 3736  [ 53946B69BA0836BD95B03759530C81EC ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
16:32:21.0549 3736  PolicyAgent - ok
16:32:21.0580 3736  [ F87D30E72E03D579A5199CCB3831D6EA ] Power           C:\Windows\system32\umpo.dll
16:32:21.0596 3736  Power - ok
16:32:21.0611 3736  [ 631E3E205AD6D86F2AED6A4A8E69F2DB ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
16:32:21.0627 3736  PptpMiniport - ok
16:32:21.0658 3736  [ 85B1E3A0C7585BC4AAE6899EC6FCF011 ] Processor       C:\Windows\system32\DRIVERS\processr.sys
16:32:21.0658 3736  Processor - ok
16:32:21.0689 3736  [ CADEFAC453040E370A1BDFF3973BE00D ] ProfSvc         C:\Windows\system32\profsvc.dll
16:32:21.0705 3736  ProfSvc - ok
16:32:21.0705 3736  [ 81951F51E318AECC2D68559E47485CC4 ] ProtectedStorage C:\Windows\system32\lsass.exe
16:32:21.0705 3736  ProtectedStorage - ok
16:32:21.0736 3736  [ 6270CCAE2A86DE6D146529FE55B3246A ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
16:32:21.0752 3736  Psched - ok
16:32:21.0783 3736  [ 40FEDD328F98245AD201CF5F9F311724 ] PxHelp20        C:\Windows\system32\Drivers\PxHelp20.sys
16:32:21.0783 3736  PxHelp20 - ok
16:32:21.0861 3736  [ AB95ECF1F6659A60DDC166D8315B0751 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
16:32:21.0877 3736  ql2300 - ok
16:32:21.0892 3736  [ B4DD51DD25182244B86737DC51AF2270 ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
16:32:21.0892 3736  ql40xx - ok
16:32:21.0923 3736  [ 31AC809E7707EB580B2BDB760390765A ] QWAVE           C:\Windows\system32\qwave.dll
16:32:21.0923 3736  QWAVE - ok
16:32:21.0939 3736  [ 584078CA1B95CA72DF2A27C336F9719D ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
16:32:21.0955 3736  QWAVEdrv - ok
16:32:21.0955 3736  [ 30A81B53C766D0133BB86D234E5556AB ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
16:32:21.0955 3736  RasAcd - ok
16:32:21.0970 3736  [ 57EC4AEF73660166074D8F7F31C0D4FD ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
16:32:21.0970 3736  RasAgileVpn - ok
16:32:22.0001 3736  [ A60F1839849C0C00739787FD5EC03F13 ] RasAuto         C:\Windows\System32\rasauto.dll
16:32:22.0017 3736  RasAuto - ok
16:32:22.0017 3736  [ D9F91EAFEC2815365CBE6D167E4E332A ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
16:32:22.0033 3736  Rasl2tp - ok
16:32:22.0064 3736  [ CB9E04DC05EACF5B9A36CA276D475006 ] RasMan          C:\Windows\System32\rasmans.dll
16:32:22.0079 3736  RasMan - ok
16:32:22.0079 3736  [ 0FE8B15916307A6AC12BFB6A63E45507 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
16:32:22.0079 3736  RasPppoe - ok
16:32:22.0095 3736  [ 44101F495A83EA6401D886E7FD70096B ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
16:32:22.0095 3736  RasSstp - ok
16:32:22.0111 3736  [ D528BC58A489409BA40334EBF96A311B ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
16:32:22.0126 3736  rdbss - ok
16:32:22.0142 3736  [ 0D8F05481CB76E70E1DA06EE9F0DA9DF ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
16:32:22.0142 3736  rdpbus - ok
16:32:22.0173 3736  [ 23DAE03F29D253AE74C44F99E515F9A1 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
16:32:22.0173 3736  RDPCDD - ok
16:32:22.0173 3736  [ B973FCFC50DC1434E1970A146F7E3885 ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
16:32:22.0189 3736  RDPDR - ok
16:32:22.0220 3736  [ 5A53CA1598DD4156D44196D200C94B8A ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
16:32:22.0220 3736  RDPENCDD - ok
16:32:22.0235 3736  [ 44B0A53CD4F27D50ED461DAE0C0B4E1F ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
16:32:22.0235 3736  RDPREFMP - ok
16:32:22.0298 3736  [ 68A0387F58E226DEEE23D9715955572A ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
16:32:22.0313 3736  RdpVideoMiniport - ok
16:32:22.0345 3736  [ F031683E6D1FEA157ABB2FF260B51E61 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
16:32:22.0360 3736  RDPWD - ok
16:32:22.0391 3736  [ 518395321DC96FE2C9F0E96AC743B656 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
16:32:22.0391 3736  rdyboost - ok
16:32:22.0407 3736  [ 7B5E1419717FAC363A31CC302895217A ] RemoteAccess    C:\Windows\System32\mprdim.dll
16:32:22.0423 3736  RemoteAccess - ok
16:32:22.0423 3736  [ CB9A8683F4EF2BF99E123D79950D7935 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
16:32:22.0438 3736  RemoteRegistry - ok
16:32:22.0516 3736  [ FF578453D3B3ADAAB22D7151D7F9E592 ] RoxMediaDB12    C:\Program Files\Common Files\Roxio Shared\12.0\SharedCOM\RoxMediaDB12.exe
16:32:22.0547 3736  RoxMediaDB12 - ok
16:32:22.0563 3736  [ 71B38B8DF1A9B55FC0FB64958CC7B9DD ] RoxWatch12      C:\Program Files\Common Files\Roxio Shared\12.0\SharedCOM\RoxWatch12.exe
16:32:22.0579 3736  RoxWatch12 - ok
16:32:22.0594 3736  [ 78D072F35BC45D9E4E1B61895C152234 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
16:32:22.0594 3736  RpcEptMapper - ok
16:32:22.0625 3736  [ 94D36C0E44677DD26981D2BFEEF2A29D ] RpcLocator      C:\Windows\system32\locator.exe
16:32:22.0625 3736  RpcLocator - ok
16:32:22.0641 3736  [ 7660F01D3B38ACA1747E397D21D790AF ] RpcSs           C:\Windows\System32\rpcss.dll
16:32:22.0657 3736  RpcSs - ok
16:32:22.0672 3736  [ 032B0D36AD92B582D869879F5AF5B928 ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
16:32:22.0672 3736  rspndr - ok
16:32:22.0750 3736  [ E8022899C37F2F4E497CF65AF7B91052 ] RT80x86         C:\Windows\system32\DRIVERS\DRT2860.sys
16:32:22.0781 3736  RT80x86 - ok
16:32:22.0813 3736  [ 80B66A4181F782884A815E69D0AFA743 ] RTL8167         C:\Windows\system32\DRIVERS\Rt86win7.sys
16:32:22.0813 3736  RTL8167 - ok
16:32:22.0844 3736  [ B6B3C4259D514F10B458CA6C2E50BC2E ] RTL8187B        C:\Windows\system32\DRIVERS\wg111v3.sys
16:32:22.0859 3736  RTL8187B - ok
16:32:22.0875 3736  [ CD17C8E42D82BD0CB07B2DE00DABE202 ] RTL8192su       C:\Windows\system32\DRIVERS\RTL8192su.sys
16:32:22.0906 3736  RTL8192su - ok
16:32:22.0922 3736  [ 7FA7F2E249A5DCBB7970630E15E1F482 ] s3cap           C:\Windows\system32\drivers\vms3cap.sys
16:32:22.0922 3736  s3cap - ok
16:32:22.0937 3736  [ 0B2D5D2341437D7D7E1A6C7BBCE3786A ] SahdIa32        C:\Windows\system32\Drivers\SahdIa32.sys
16:32:22.0937 3736  SahdIa32 - ok
16:32:22.0953 3736  [ 7A5F65B16249AF2BC9D18D815F5D7172 ] SaibIa32        C:\Windows\system32\Drivers\SaibIa32.sys
16:32:22.0953 3736  SaibIa32 - ok
16:32:22.0969 3736  [ E333C9515822DE586A3FF759A0C9B7BF ] SaibVd32        C:\Windows\system32\Drivers\SaibVd32.sys
16:32:22.0984 3736  SaibVd32 - ok
16:32:22.0984 3736  [ 81951F51E318AECC2D68559E47485CC4 ] SamSs           C:\Windows\system32\lsass.exe
16:32:22.0984 3736  SamSs - ok
16:32:23.0015 3736  [ 05D860DA1040F111503AC416CCEF2BCA ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
16:32:23.0031 3736  sbp2port - ok
16:32:23.0047 3736  [ 8FC518FFE9519C2631D37515A68009C4 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
16:32:23.0062 3736  SCardSvr - ok
16:32:23.0078 3736  [ 0693B5EC673E34DC147E195779A4DCF6 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
16:32:23.0093 3736  scfilter - ok
16:32:23.0140 3736  [ A04BB13F8A72F8B6E8B4071723E4E336 ] Schedule        C:\Windows\system32\schedsvc.dll
16:32:23.0156 3736  Schedule - ok
16:32:23.0171 3736  [ 319C6B309773D063541D01DF8AC6F55F ] SCPolicySvc     C:\Windows\System32\certprop.dll
16:32:23.0171 3736  SCPolicySvc - ok
16:32:23.0203 3736  [ 08236C4BCE5EDD0A0318A438AF28E0F7 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
16:32:23.0218 3736  SDRSVC - ok
16:32:23.0249 3736  [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
16:32:23.0249 3736  secdrv - ok
16:32:23.0265 3736  [ A59B3A4442C52060CC7A85293AA3546F ] seclogon        C:\Windows\system32\seclogon.dll
16:32:23.0281 3736  seclogon - ok
16:32:23.0296 3736  [ DCB7FCDCC97F87360F75D77425B81737 ] SENS            C:\Windows\system32\sens.dll
16:32:23.0312 3736  SENS - ok
16:32:23.0327 3736  [ 50087FE1EE447009C9CC2997B90DE53F ] SensrSvc        C:\Windows\system32\sensrsvc.dll
16:32:23.0343 3736  SensrSvc - ok
16:32:23.0359 3736  [ 9AD8B8B515E3DF6ACD4212EF465DE2D1 ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
16:32:23.0359 3736  Serenum - ok
16:32:23.0374 3736  [ 5FB7FCEA0490D821F26F39CC5EA3D1E2 ] Serial          C:\Windows\system32\DRIVERS\serial.sys
16:32:23.0374 3736  Serial - ok
16:32:23.0390 3736  [ 79BFFB520327FF916A582DFEA17AA813 ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
16:32:23.0390 3736  sermouse - ok
16:32:23.0421 3736  [ 4AE380F39A0032EAB7DD953030B26D28 ] SessionEnv      C:\Windows\system32\sessenv.dll
16:32:23.0437 3736  SessionEnv - ok
16:32:23.0452 3736  [ 9F976E1EB233DF46FCE808D9DEA3EB9C ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
16:32:23.0452 3736  sffdisk - ok
16:32:23.0468 3736  [ 932A68EE27833CFD57C1639D375F2731 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
16:32:23.0468 3736  sffp_mmc - ok
16:32:23.0468 3736  [ 6D4CCAEDC018F1CF52866BBBAA235982 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
16:32:23.0483 3736  sffp_sd - ok
16:32:23.0483 3736  [ DB96666CC8312EBC45032F30B007A547 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
16:32:23.0499 3736  sfloppy - ok
16:32:23.0530 3736  [ D1A079A0DE2EA524513B6930C24527A2 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
16:32:23.0546 3736  SharedAccess - ok
16:32:23.0561 3736  [ 414DA952A35BF5D50192E28263B40577 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
16:32:23.0577 3736  ShellHWDetection - ok
16:32:23.0593 3736  [ 2565CAC0DC9FE0371BDCE60832582B2E ] sisagp          C:\Windows\system32\drivers\sisagp.sys
16:32:23.0593 3736  sisagp - ok
16:32:23.0608 3736  [ A9F0486851BECB6DDA1D89D381E71055 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
16:32:23.0624 3736  SiSRaid2 - ok
16:32:23.0624 3736  [ 3727097B55738E2F554972C3BE5BC1AA ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
16:32:23.0639 3736  SiSRaid4 - ok
16:32:23.0686 3736  [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate     C:\Program Files\Skype\Updater\Updater.exe
16:32:23.0702 3736  SkypeUpdate - ok
16:32:23.0702 3736  [ 3E21C083B8A01CB70BA1F09303010FCE ] Smb             C:\Windows\system32\DRIVERS\smb.sys
16:32:23.0702 3736  Smb - ok
16:32:23.0733 3736  [ 6A984831644ECA1A33FFEAE4126F4F37 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
16:32:23.0733 3736  SNMPTRAP - ok
16:32:23.0749 3736  [ 95CF1AE7527FB70F7816563CBC09D942 ] spldr           C:\Windows\system32\drivers\spldr.sys
16:32:23.0749 3736  spldr - ok
16:32:23.0795 3736  [ 9AEA093B8F9C37CF45538382CABA2475 ] Spooler         C:\Windows\System32\spoolsv.exe
16:32:23.0811 3736  Spooler - ok
16:32:23.0905 3736  [ CF87A1DE791347E75B98885214CED2B8 ] sppsvc          C:\Windows\system32\sppsvc.exe
16:32:23.0936 3736  sppsvc - ok
16:32:23.0967 3736  [ B0180B20B065D89232A78A40FE56EAA6 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
16:32:23.0983 3736  sppuinotify - ok
16:32:23.0998 3736  [ E4C2764065D66EA1D2D3EBC28FE99C46 ] srv             C:\Windows\system32\DRIVERS\srv.sys
16:32:24.0014 3736  srv - ok
16:32:24.0045 3736  [ 03F0545BD8D4C77FA0AE1CEEDFCC71AB ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
16:32:24.0045 3736  srv2 - ok
16:32:24.0061 3736  [ BE6BD660CAA6F291AE06A718A4FA8ABC ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
16:32:24.0061 3736  srvnet - ok
16:32:24.0076 3736  [ D887C9FD02AC9FA880F6E5027A43E118 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
16:32:24.0076 3736  SSDPSRV - ok
16:32:24.0107 3736  [ EF3458337D7341A05169CEFC73709264 ] SSPORT          C:\Windows\system32\Drivers\SSPORT.sys
16:32:24.0107 3736  SSPORT - ok
16:32:24.0123 3736  [ D318F23BE45D5E3A107469EB64815B50 ] SstpSvc         C:\Windows\system32\sstpsvc.dll
16:32:24.0139 3736  SstpSvc - ok
16:32:24.0139 3736  [ DB32D325C192B801DF274BFD12A7E72B ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
16:32:24.0139 3736  stexstor - ok
16:32:24.0170 3736  [ E1FB3706030FB4578A0D72C2FC3689E4 ] StiSvc          C:\Windows\System32\wiaservc.dll
16:32:24.0185 3736  StiSvc - ok
16:32:24.0201 3736  [ 472AF0311073DCECEAA8FA18BA2BDF89 ] storflt         C:\Windows\system32\drivers\vmstorfl.sys
16:32:24.0201 3736  storflt - ok
16:32:24.0232 3736  [ DCAFFD62259E0BDB433DD67B5BB37619 ] storvsc         C:\Windows\system32\drivers\storvsc.sys
16:32:24.0248 3736  storvsc - ok
16:32:24.0248 3736  [ E58C78A848ADD9610A4DB6D214AF5224 ] swenum          C:\Windows\system32\drivers\swenum.sys
16:32:24.0248 3736  swenum - ok
16:32:24.0279 3736  [ A28BD92DF340E57B024BA433165D34D7 ] swprv           C:\Windows\System32\swprv.dll
16:32:24.0295 3736  swprv - ok
16:32:24.0310 3736  Synth3dVsc - ok
16:32:24.0357 3736  [ 36650D618CA34C9D357DFD3D89B2C56F ] SysMain         C:\Windows\system32\sysmain.dll
16:32:24.0373 3736  SysMain - ok
16:32:24.0388 3736  [ 763FECDC3D30C815FE72DD57936C6CD1 ] TabletInputService C:\Windows\System32\TabSvc.dll
16:32:24.0404 3736  TabletInputService - ok
16:32:24.0435 3736  [ 613BF4820361543956909043A265C6AC ] TapiSrv         C:\Windows\System32\tapisrv.dll
16:32:24.0451 3736  TapiSrv - ok
16:32:24.0482 3736  [ B799D9FDB26111737F58288D8DC172D9 ] TBS             C:\Windows\System32\tbssvc.dll
16:32:24.0482 3736  TBS - ok
16:32:24.0544 3736  [ 4E8B9BE71B807B3BAEDB7F4243F85E3C ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
16:32:24.0560 3736  Tcpip - ok
16:32:24.0591 3736  [ 4E8B9BE71B807B3BAEDB7F4243F85E3C ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
16:32:24.0591 3736  TCPIP6 - ok
16:32:24.0622 3736  [ 3EEBD3BD93DA46A26E89893C7AB2FF3B ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
16:32:24.0638 3736  tcpipreg - ok
16:32:24.0653 3736  [ 1CB91B2BD8F6DD367DFC2EF26FD751B2 ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
16:32:24.0669 3736  TDPIPE - ok
16:32:24.0685 3736  [ 2C2C5AFE7EE4F620D69C23C0617651A8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
16:32:24.0700 3736  TDTCP - ok
16:32:24.0731 3736  [ B459575348C20E8121D6039DA063C704 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
16:32:24.0747 3736  tdx - ok
16:32:24.0747 3736  [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20 ] TermDD          C:\Windows\system32\drivers\termdd.sys
16:32:24.0763 3736  TermDD - ok
16:32:24.0794 3736  [ 382C804C92811BE57829D8E550A900E2 ] TermService     C:\Windows\System32\termsrv.dll
16:32:24.0809 3736  TermService - ok
16:32:24.0825 3736  [ 42FB6AFD6B79D9FE07381609172E7CA4 ] Themes          C:\Windows\system32\themeservice.dll
16:32:24.0841 3736  Themes - ok
16:32:24.0856 3736  [ 146B6F43A673379A3C670E86D89BE5EA ] THREADORDER     C:\Windows\system32\mmcss.dll
16:32:24.0856 3736  THREADORDER - ok
16:32:24.0872 3736  [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A ] TrkWks          C:\Windows\System32\trkwks.dll
16:32:24.0887 3736  TrkWks - ok
16:32:24.0919 3736  [ 2C49B175AEE1D4364B91B531417FE583 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
16:32:24.0934 3736  TrustedInstaller - ok
16:32:24.0965 3736  [ B37B08F2E5EEB1A37E448E09BACE1101 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
16:32:24.0965 3736  tssecsrv - ok
16:32:25.0012 3736  [ FD1D6C73E6333BE727CBCC6054247654 ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
16:32:25.0028 3736  TsUsbFlt - ok
16:32:25.0028 3736  tsusbhub - ok
16:32:25.0106 3736  [ 118EDC3E712FF83CE25612081A69075D ] TuneUp.UtilitiesSvc C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe
16:32:25.0137 3736  TuneUp.UtilitiesSvc - ok
16:32:25.0184 3736  [ F2107C9D85EC0DF116939CCCE06AE697 ] TuneUpUtilitiesDrv C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesDriver32.sys
16:32:25.0184 3736  TuneUpUtilitiesDrv - ok
16:32:25.0199 3736  [ B2FA25D9B17A68BB93D58B0556E8C90D ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
16:32:25.0215 3736  tunnel - ok
16:32:25.0231 3736  [ 750FBCB269F4D7DD2E420C56B795DB6D ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
16:32:25.0246 3736  uagp35 - ok
16:32:25.0277 3736  [ EE43346C7E4B5E63E54F927BABBB32FF ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
16:32:25.0293 3736  udfs - ok
16:32:25.0324 3736  [ 8344FD4FCE927880AA1AA7681D4927E5 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
16:32:25.0324 3736  UI0Detect - ok
16:32:25.0355 3736  [ 44E8048ACE47BEFBFDC2E9BE4CBC8880 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
16:32:25.0355 3736  uliagpkx - ok
16:32:25.0387 3736  [ D295BED4B898F0FD999FCFA9B32B071B ] umbus           C:\Windows\system32\drivers\umbus.sys
16:32:25.0387 3736  umbus - ok
16:32:25.0418 3736  [ 7550AD0C6998BA1CB4843E920EE0FEAC ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
16:32:25.0418 3736  UmPass - ok
16:32:25.0449 3736  [ 409994A8EACEEE4E328749C0353527A0 ] UmRdpService    C:\Windows\System32\umrdp.dll
16:32:25.0465 3736  UmRdpService - ok
16:32:25.0527 3736  [ 8B802B483CBDE06F62DBC04DC7AFAF8E ] UMVPFSrv        C:\Program Files\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
16:32:25.0543 3736  UMVPFSrv - ok
16:32:25.0558 3736  [ 833FBB672460EFCE8011D262175FAD33 ] upnphost        C:\Windows\System32\upnphost.dll
16:32:25.0574 3736  upnphost - ok
16:32:25.0621 3736  [ 6E421CCC57059B0186C6259CA3B6DFC9 ] USBAAPL         C:\Windows\system32\Drivers\usbaapl.sys
16:32:25.0636 3736  USBAAPL - ok
16:32:25.0667 3736  [ 1D9F2BD026E8E2D45033A4DF3F16B78C ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
16:32:25.0667 3736  usbaudio - ok
16:32:25.0683 3736  [ BD9C55D7023C5DE374507ACC7A14E2AC ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
16:32:25.0699 3736  usbccgp - ok
16:32:25.0730 3736  [ 04EC7CEC62EC3B6D9354EEE93327FC82 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
16:32:25.0745 3736  usbcir - ok
16:32:25.0761 3736  [ F92DE757E4B7CE9C07C5E65423F3AE3B ] usbehci         C:\Windows\system32\drivers\usbehci.sys
16:32:25.0761 3736  usbehci - ok
16:32:25.0792 3736  [ 8DC94AEC6A7E644A06135AE7506DC2E9 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
16:32:25.0808 3736  usbhub - ok
16:32:25.0839 3736  [ E185D44FAC515A18D9DEDDC23C2CDF44 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
16:32:25.0855 3736  usbohci - ok
16:32:25.0870 3736  [ 797D862FE0875E75C7CC4C1AD7B30252 ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
16:32:25.0886 3736  usbprint - ok
16:32:25.0901 3736  [ 576096CCBC07E7C4EA4F5E6686D6888F ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
16:32:25.0901 3736  usbscan - ok
16:32:25.0917 3736  [ F991AB9CC6B908DB552166768176896A ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
16:32:25.0933 3736  USBSTOR - ok
16:32:25.0948 3736  [ 68DF884CF41CDADA664BEB01DAF67E3D ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
16:32:25.0964 3736  usbuhci - ok
16:32:25.0979 3736  [ 081E6E1C91AEC36758902A9F727CD23C ] UxSms           C:\Windows\System32\uxsms.dll
16:32:25.0979 3736  UxSms - ok
16:32:26.0026 3736  [ 24F51FBA322F06A3E336C301025D6D12 ] UxTuneUp        C:\Windows\System32\uxtuneup.dll
16:32:26.0042 3736  UxTuneUp - ok
16:32:26.0057 3736  [ 81951F51E318AECC2D68559E47485CC4 ] VaultSvc        C:\Windows\system32\lsass.exe
16:32:26.0057 3736  VaultSvc - ok
16:32:26.0073 3736  [ A059C4C3EDB09E07D21A8E5C0AABD3CB ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
16:32:26.0073 3736  vdrvroot - ok
16:32:26.0120 3736  [ C3CD30495687C2A2F66A65CA6FD89BE9 ] vds             C:\Windows\System32\vds.exe
16:32:26.0135 3736  vds - ok
16:32:26.0151 3736  [ 17C408214EA61696CEC9C66E388B14F3 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
16:32:26.0167 3736  vga - ok
16:32:26.0167 3736  [ 8E38096AD5C8570A6F1570A61E251561 ] VgaSave         C:\Windows\System32\drivers\vga.sys
16:32:26.0182 3736  VgaSave - ok
16:32:26.0198 3736  VGPU - ok
16:32:26.0229 3736  [ 5461686CCA2FDA57B024547733AB42E3 ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
16:32:26.0245 3736  vhdmp - ok
16:32:26.0260 3736  [ C829317A37B4BEA8F39735D4B076E923 ] viaagp          C:\Windows\system32\drivers\viaagp.sys
16:32:26.0260 3736  viaagp - ok
16:32:26.0291 3736  [ E02F079A6AA107F06B16549C6E5C7B74 ] ViaC7           C:\Windows\system32\DRIVERS\viac7.sys
16:32:26.0291 3736  ViaC7 - ok
16:32:26.0307 3736  [ E43574F6A56A0EE11809B48C09E4FD3C ] viaide          C:\Windows\system32\drivers\viaide.sys
16:32:26.0307 3736  viaide - ok
16:32:26.0323 3736  [ C2F2911156FDC7817C52829C86DA494E ] vmbus           C:\Windows\system32\drivers\vmbus.sys
16:32:26.0338 3736  vmbus - ok
16:32:26.0354 3736  [ D4D77455211E204F370D08F4963063CE ] VMBusHID        C:\Windows\system32\drivers\VMBusHID.sys
16:32:26.0354 3736  VMBusHID - ok
16:32:26.0354 3736  [ 4C63E00F2F4B5F86AB48A58CD990F212 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
16:32:26.0354 3736  volmgr - ok
16:32:26.0369 3736  [ B5BB72067DDDDBBFB04B2F89FF8C3C87 ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
16:32:26.0369 3736  volmgrx - ok
16:32:26.0385 3736  [ F497F67932C6FA693D7DE2780631CFE7 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
16:32:26.0385 3736  volsnap - ok
16:32:26.0432 3736  [ B26536ADD1D748CDA104D856C979AE79 ] vpcbus          C:\Windows\system32\DRIVERS\vpchbus.sys
16:32:26.0447 3736  vpcbus - ok
16:32:26.0463 3736  [ A0F7E923A6261760130F22B85DF9040E ] vpcnfltr        C:\Windows\system32\DRIVERS\vpcnfltr.sys
16:32:26.0479 3736  vpcnfltr - ok
16:32:26.0494 3736  [ 5F4B55E91CE7E2523C9E1E0ECE858869 ] vpcusb          C:\Windows\system32\DRIVERS\vpcusb.sys
16:32:26.0494 3736  vpcusb - ok
16:32:26.0525 3736  [ B487191FE18D6863381A1AC55482469A ] vpcvmm          C:\Windows\system32\drivers\vpcvmm.sys
16:32:26.0541 3736  vpcvmm - ok
16:32:26.0557 3736  [ 9DFA0CC2F8855A04816729651175B631 ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
16:32:26.0557 3736  vsmraid - ok
16:32:26.0588 3736  [ 209A3B1901B83AEB8527ED211CCE9E4C ] VSS             C:\Windows\system32\vssvc.exe
16:32:26.0635 3736  VSS - ok
16:32:26.0635 3736  [ 90567B1E658001E79D7C8BBD3DDE5AA6 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
16:32:26.0635 3736  vwifibus - ok
16:32:26.0666 3736  [ 7090D3436EEB4E7DA3373090A23448F7 ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
16:32:26.0666 3736  vwififlt - ok
16:32:26.0697 3736  [ 55187FD710E27D5095D10A472C8BAF1C ] W32Time         C:\Windows\system32\w32time.dll
16:32:26.0713 3736  W32Time - ok
16:32:26.0728 3736  [ DE3721E89C653AA281428C8A69745D90 ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
16:32:26.0728 3736  WacomPen - ok
16:32:26.0744 3736  [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
16:32:26.0744 3736  WANARP - ok
16:32:26.0744 3736  [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
16:32:26.0744 3736  Wanarpv6 - ok
16:32:26.0806 3736  [ 353A04C273EC58475D8633E75CCD5604 ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
16:32:26.0837 3736  WatAdminSvc - ok
16:32:26.0884 3736  [ 691E3285E53DCA558E1A84667F13E15A ] wbengine        C:\Windows\system32\wbengine.exe
16:32:26.0900 3736  wbengine - ok
16:32:26.0931 3736  [ 9614B5D29DC76AC3C29F6D2D3AA70E67 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
16:32:26.0947 3736  WbioSrvc - ok
16:32:26.0978 3736  [ 34EEE0DFAADB4F691D6D5308A51315DC ] wcncsvc         C:\Windows\System32\wcncsvc.dll
16:32:26.0993 3736  wcncsvc - ok
16:32:27.0009 3736  [ 5D930B6357A6D2AF4D7653BDABBF352F ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
16:32:27.0025 3736  WcsPlugInService - ok
16:32:27.0025 3736  [ 1112A9BADACB47B7C0BB0392E3158DFF ] Wd              C:\Windows\system32\DRIVERS\wd.sys
16:32:27.0025 3736  Wd - ok
16:32:27.0071 3736  [ A840213F1ACDCC175B4D1D5AAEAC0D7A ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
16:32:27.0087 3736  Wdf01000 - ok
16:32:27.0087 3736  [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiServiceHost  C:\Windows\system32\wdi.dll
16:32:27.0103 3736  WdiServiceHost - ok
16:32:27.0103 3736  [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiSystemHost   C:\Windows\system32\wdi.dll
16:32:27.0103 3736  WdiSystemHost - ok
16:32:27.0134 3736  [ A9D880F97530D5B8FEE278923349929D ] WebClient       C:\Windows\System32\webclnt.dll
16:32:27.0149 3736  WebClient - ok
16:32:27.0165 3736  [ 760F0AFE937A77CFF27153206534F275 ] Wecsvc          C:\Windows\system32\wecsvc.dll
16:32:27.0165 3736  Wecsvc - ok
16:32:27.0181 3736  [ AC804569BB2364FB6017370258A4091B ] wercplsupport   C:\Windows\System32\wercplsupport.dll
16:32:27.0196 3736  wercplsupport - ok
16:32:27.0227 3736  [ 08E420D873E4FD85241EE2421B02C4A4 ] WerSvc          C:\Windows\System32\WerSvc.dll
16:32:27.0227 3736  WerSvc - ok
16:32:27.0259 3736  [ 8B9A943F3B53861F2BFAF6C186168F79 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
16:32:27.0259 3736  WfpLwf - ok
16:32:27.0274 3736  [ 5CF95B35E59E2A38023836FFF31BE64C ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
16:32:27.0290 3736  WIMMount - ok
16:32:27.0321 3736  [ 082CF481F659FAE0DE51AD060881EB47 ] WinDefend       C:\Program Files\Windows Defender\mpsvc.dll
16:32:27.0337 3736  WinDefend - ok
16:32:27.0337 3736  WinHttpAutoProxySvc - ok
16:32:27.0368 3736  [ F62E510B6AD4C21EB9FE8668ED251826 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
16:32:27.0383 3736  Winmgmt - ok
16:32:27.0430 3736  [ 1B91CD34EA3A90AB6A4EF0550174F4CC ] WinRM           C:\Windows\system32\WsmSvc.dll
16:32:27.0446 3736  WinRM - ok
16:32:27.0477 3736  [ A67E5F9A400F3BD1BE3D80613B45F708 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
16:32:27.0493 3736  WinUsb - ok
16:32:27.0524 3736  [ 16935C98FF639D185086A3529B1F2067 ] Wlansvc         C:\Windows\System32\wlansvc.dll
16:32:27.0555 3736  Wlansvc - ok
16:32:27.0649 3736  [ 5E7C103F8475C4289847D15E129C20F7 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
16:32:27.0695 3736  wlidsvc - ok
16:32:27.0727 3736  [ 0217679B8FCA58714C3BF2726D2CA84E ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
16:32:27.0727 3736  WmiAcpi - ok
16:32:27.0742 3736  [ 6EB6B66517B048D87DC1856DDF1F4C3F ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
16:32:27.0758 3736  wmiApSrv - ok
16:32:27.0805 3736  [ 3B40D3A61AA8C21B88AE57C58AB3122E ] WMPNetworkSvc   C:\Program Files\Windows Media Player\wmpnetwk.exe
16:32:27.0820 3736  WMPNetworkSvc - ok
16:32:27.0851 3736  [ A2F0EC770A92F2B3F9DE6D518E11409C ] WPCSvc          C:\Windows\System32\wpcsvc.dll
16:32:27.0851 3736  WPCSvc - ok
16:32:27.0867 3736  [ AA53356D60AF47EACC85BC617A4F3F66 ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
16:32:27.0883 3736  WPDBusEnum - ok
16:32:27.0898 3736  [ 6DB3276587B853BF886B69528FDB048C ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
16:32:27.0898 3736  ws2ifsl - ok
16:32:27.0929 3736  [ 6F5D49EFE0E7164E03AE773A3FE25340 ] wscsvc          C:\Windows\system32\wscsvc.dll
16:32:27.0929 3736  wscsvc - ok
16:32:27.0945 3736  WSearch - ok
16:32:27.0976 3736  [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv        C:\Windows\system32\wuaueng.dll
16:32:27.0992 3736  wuauserv - ok
16:32:28.0023 3736  [ 06E6F32C8D0A3F66D956F57B43A2E070 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
16:32:28.0023 3736  WudfPf - ok
16:32:28.0070 3736  [ 867C301E8B790040AE9CF6486E8041DF ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
16:32:28.0085 3736  WUDFRd - ok
16:32:28.0117 3736  [ FE47B7BC8EA320C2D9B5E5BF6E303765 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
16:32:28.0132 3736  wudfsvc - ok
16:32:28.0163 3736  [ 3C5E51C05BE9B56EAFF4E388C3AB25E4 ] WwanSvc         C:\Windows\System32\wwansvc.dll
16:32:28.0179 3736  WwanSvc - ok
16:32:28.0195 3736  ================ Scan global ===============================
16:32:28.0226 3736  [ DAB748AE0439955ED2FA22357533DDDB ] C:\Windows\system32\basesrv.dll
16:32:28.0273 3736  [ 1F5F07091D50244F17DD8D5147A628CC ] C:\Windows\system32\winsrv.dll
16:32:28.0288 3736  [ 1F5F07091D50244F17DD8D5147A628CC ] C:\Windows\system32\winsrv.dll
16:32:28.0304 3736  [ 364455805E64882844EE9ACB72522830 ] C:\Windows\system32\sxssrv.dll
16:32:28.0319 3736  [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6 ] C:\Windows\system32\services.exe
16:32:28.0351 3736  [Global] - ok
16:32:28.0351 3736  ================ Scan MBR ==================================
16:32:28.0351 3736  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
16:32:28.0631 3736  \Device\Harddisk0\DR0 - ok
16:32:28.0647 3736  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk4\DR4
16:32:28.0975 3736  \Device\Harddisk4\DR4 - ok
16:32:28.0975 3736  ================ Scan VBR ==================================
16:32:28.0975 3736  [ 0EDBBCD171E278E1C4F48E26E139A017 ] \Device\Harddisk0\DR0\Partition1
16:32:28.0975 3736  \Device\Harddisk0\DR0\Partition1 - ok
16:32:29.0006 3736  [ A7AA837720141CC6AACD6EF346E973B1 ] \Device\Harddisk0\DR0\Partition2
16:32:29.0006 3736  \Device\Harddisk0\DR0\Partition2 - ok
16:32:29.0006 3736  [ 5027EC0F00BA6FF223F2203E2108B4DC ] \Device\Harddisk4\DR4\Partition1
16:32:29.0006 3736  \Device\Harddisk4\DR4\Partition1 - ok
16:32:29.0006 3736  ============================================================
16:32:29.0006 3736  Scan finished
16:32:29.0006 3736  ============================================================
16:32:29.0021 5232  Detected object count: 0
16:32:29.0021 5232  Actual detected object count: 0
16:32:37.0539 2092  Deinitialize success
 



#7 HelenWinkle

HelenWinkle
  • Topic Starter

  • Members
  • 53 posts
  • OFFLINE
  •  
  • Local time:01:32 AM

Posted 15 August 2013 - 04:16 PM

after doing the third test, (ADWcleaner) my computer will not boot into Windows or into Safe Mode with networking.  Not sure if something is completely damaged, or if there is somethig else I can try.



#8 HelenWinkle

HelenWinkle
  • Topic Starter

  • Members
  • 53 posts
  • OFFLINE
  •  
  • Local time:01:32 AM

Posted 15 August 2013 - 05:09 PM

I tried to restart again and the Windows startup repair tool began to run, so I hope it can fix whatever the startup problem is.  I was getting a black screen with the mouse visible and movable, but no desktop and the hard drive light seemed to be on continuously



#9 HelenWinkle

HelenWinkle
  • Topic Starter

  • Members
  • 53 posts
  • OFFLINE
  •  
  • Local time:01:32 AM

Posted 15 August 2013 - 06:18 PM

The startup tool did not work, nor did booting into the last known good configuration.   I have booted using an ubuntu live CD and will back up all my files before I try anything else.  I suspect the operating system is damaged and perhaps will need to be reinstalled.



#10 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 61,889 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:01:32 AM

Posted 15 August 2013 - 06:47 PM

Hello, sometimes malware causes so much damage that reformatting and reinstalling is the best option.

Or I can ask someone that specializes in these non booting issues to look here.

Edited by boopme, 15 August 2013 - 06:48 PM.

How do I get help? Who is helping me?
Staying Updated Calendar of Updates.
For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....
Become a BleepingComputer fan: Facebook Have you seen..Select Real Security

#11 HelenWinkle

HelenWinkle
  • Topic Starter

  • Members
  • 53 posts
  • OFFLINE
  •  
  • Local time:01:32 AM

Posted 15 August 2013 - 07:20 PM

I could try some suggestions to reboot before I reinstall--it may take a day or two before I can act on the suggestions as I want to ensure everything is well backed up before experimenting.  So, if the consultant posts suggestions, I would start trying things over the weekend some time before giving up and start reinstalling Widows 7.  Thank you.



#12 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 61,889 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:01:32 AM

Posted 15 August 2013 - 07:32 PM

 OK< I posted for them to look here. You are welcome!


How do I get help? Who is helping me?
Staying Updated Calendar of Updates.
For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....
Become a BleepingComputer fan: Facebook Have you seen..Select Real Security

#13 HelenWinkle

HelenWinkle
  • Topic Starter

  • Members
  • 53 posts
  • OFFLINE
  •  
  • Local time:01:32 AM

Posted 16 August 2013 - 12:45 PM

I have backed up everything now and have found my installation disk--how would I get in touch with the boot resource person?



#14 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 61,889 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:01:32 AM

Posted 16 August 2013 - 12:50 PM

They will post here soon.
How do I get help? Who is helping me?
Staying Updated Calendar of Updates.
For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....
Become a BleepingComputer fan: Facebook Have you seen..Select Real Security

#15 HelenWinkle

HelenWinkle
  • Topic Starter

  • Members
  • 53 posts
  • OFFLINE
  •  
  • Local time:01:32 AM

Posted 16 August 2013 - 06:20 PM

I did locate the ADWcleaner log using my Ubuntu live CD--there are 2 logs and I will paste them here in case they are of any help with restoring the system:# AdwCleaner v2.306 - Logfile created 08/15/2013 at 12:25:46
# Updated 19/07/2013 by Xplode
# Operating system : Windows 7 Ultimate Service Pack 1 (32 bits)
# User : Helen - BIGJAY3
# Boot Mode : Normal
# Running from : C:\Users\Helen\Downloads\AdwCleaner.exe
# Option [Delete]
 
 
***** [Services] *****
 
 
***** [Files / Folders] *****
 
File Deleted : C:\END
File Deleted : C:\Users\Helen\AppData\Roaming\Mozilla\Firefox\Profiles\y17ix014.default\searchplugins\Conduit.xml
Folder Deleted : C:\Program Files\Conduit
Folder Deleted : C:\Program Files\Free Ride Games
Folder Deleted : C:\Program Files\SearchProtect
Folder Deleted : C:\Users\Helen\AppData\Local\Conduit
Folder Deleted : C:\Users\Helen\AppData\LocalLow\Conduit
Folder Deleted : C:\Users\Helen\AppData\LocalLow\PriceGong
Folder Deleted : C:\Users\Helen\AppData\Roaming\Mozilla\Firefox\Profiles\y17ix014.default\CT3298573
Folder Deleted : C:\Users\Helen\AppData\Roaming\Mozilla\Firefox\Profiles\y17ix014.default\extensions\{eef3855c-fc2d-41e6-8d91-d368f51b3055}
Folder Deleted : C:\Users\Helen\AppData\Roaming\Mozilla\Firefox\Profiles\y17ix014.default\extensions\staged
Folder Deleted : C:\Users\Helen\AppData\Roaming\Mozilla\Firefox\Profiles\y17ix014.default\Smartbar
Folder Deleted : C:\Users\Helen\AppData\Roaming\SearchProtect
Folder Deleted : C:\Users\Leora\AppData\Roaming\SearchProtect
 
***** [Registry] *****
 
Key Deleted : HKCU\Software\AppDataLow\Software\Conduit
Key Deleted : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
Key Deleted : HKCU\Software\AppDataLow\Software\PriceGong
Key Deleted : HKCU\Software\AppDataLow\Software\PricePeep
Key Deleted : HKCU\Software\AppDataLow\Software\SmartBar
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\grusskartencenter.com
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\grusskartencenter.com
Key Deleted : HKCU\Software\SearchProtect
Key Deleted : HKCU\Software\YahooPartnerToolbar
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{D616A4A2-7B38-4DBC-9093-6FE7A4A21B17}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT3298573
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\063A857434EDED11A893800002C0A966
Key Deleted : HKLM\Software\SearchProtect
 
***** [Internet Browsers] *****
 
-\\ Internet Explorer v10.0.9200.16660
 
[OK] Registry is clean.
 
-\\ Mozilla Firefox v22.0 (en-US)
 
File : C:\Users\Helen\AppData\Roaming\Mozilla\Firefox\Profiles\y17ix014.default\prefs.js
 
C:\Users\Helen\AppData\Roaming\Mozilla\Firefox\Profiles\y17ix014.default\user.js ... Deleted !
 
Deleted : user_pref("CT3298573.1000082.isPlayDisplay", "true");
Deleted : user_pref("CT3298573.1000082.state", "{\"state\":\"stopped\",\"text\":\"Californi...\",\"description[...]
Deleted : user_pref("CT3298573.ENABALE_HISTORY", "{\"dataType\":\"string\",\"data\":\"true\"}");
Deleted : user_pref("CT3298573.ENABLE_RETURN_WEB_SEARCH_ON_THE_PAGE", "{\"dataType\":\"string\",\"data\":\"tru[...]
Deleted : user_pref("CT3298573.FF19Solved", "true");
Deleted : user_pref("CT3298573.FirstTime", "true");
Deleted : user_pref("CT3298573.FirstTimeFF3", "true");
Deleted : user_pref("CT3298573.PG_ENABLE", "dHJ1ZQ==");
Deleted : user_pref("CT3298573.PG_ENABLE.enc", "dHJ1ZQ==");
Deleted : user_pref("CT3298573.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT329[...]
Deleted : user_pref("CT3298573.UserID", "UN68938786314419323");
Deleted : user_pref("CT3298573.YTbyClickFavorites.enc", "W10=");
Deleted : user_pref("CT3298573.YTbyClickRecent.enc", "JTVCJTdCJTIyaWQlMjIlM0ElMjJvZTMwaGFiTTBscyUyMiUyQyUyMnRp[...]
Deleted : user_pref("CT3298573.addressBarTakeOverEnabledInHidden", "true");
Deleted : user_pref("CT3298573.autoDisableScopes", -1);
Deleted : user_pref("CT3298573.browser.search.defaultthis.engineName", "true");
Deleted : user_pref("CT3298573.defaultSearch", "true");
Deleted : user_pref("CT3298573.embeddedsData", "[{\"appId\":\"130110228602769889\",\"apiPermissions\":{\"cross[...]
Deleted : user_pref("CT3298573.enableAlerts", "true");
Deleted : user_pref("CT3298573.enableFix404ByUser", "TRUE");
Deleted : user_pref("CT3298573.enableSearchFromAddressBar", "true");
Deleted : user_pref("CT3298573.enlargeSearchBox", "{\"enabled\":true,\"maxWidth\":1000,\"minWidth\":250,\"widt[...]
Deleted : user_pref("CT3298573.firstTimeDialogOpened", "true");
Deleted : user_pref("CT3298573.fixPageNotFoundError", "true");
Deleted : user_pref("CT3298573.fixPageNotFoundErrorByUser", "true");
Deleted : user_pref("CT3298573.fixPageNotFoundErrorInHidden", "true");
Deleted : user_pref("CT3298573.fixUrls", true);
Deleted : user_pref("CT3298573.installDate", "7/5/2013 15:49:14");
Deleted : user_pref("CT3298573.installId", "cid128_48");
Deleted : user_pref("CT3298573.installSessionId", "{637274FD-3031-4FE5-99FA-6B8A1AD2D009}");
Deleted : user_pref("CT3298573.installSp", "TRUE");
Deleted : user_pref("CT3298573.installType", "conduitnsisintegration");
Deleted : user_pref("CT3298573.installUsage", "2013-05-08T00:18:22.9039301+03:00");
Deleted : user_pref("CT3298573.installUsageEarly", "2013-05-08T00:18:22.0303245+03:00");
Deleted : user_pref("CT3298573.installerVersion", "1.4.2.3");
Deleted : user_pref("CT3298573.isCheckedStartAsHidden", true);
Deleted : user_pref("CT3298573.isEnableAllDialogs", "{\"dataType\":\"string\",\"data\":\"true\"}");
Deleted : user_pref("CT3298573.isFirstTimeToolbarLoading", "false");
Deleted : user_pref("CT3298573.isToolbarShrinked", "{\"dataType\":\"string\",\"data\":\"false\"}");
Deleted : user_pref("CT3298573.keyword", "true");
Deleted : user_pref("CT3298573.lastNewTabSettings", "{\"isEnabled\":true,\"newTabUrl\":\"hxxp://search.conduit[...]
Deleted : user_pref("CT3298573.lastVersion", "10.15.2.523");
Deleted : user_pref("CT3298573.mam_gk_appStateReportTime.enc", "MTM3NTU3NjI5ODAyNQ==");
Deleted : user_pref("CT3298573.mam_gk_appState_CouponBuddy.enc", "b24=");
Deleted : user_pref("CT3298573.mam_gk_appState_PriceGong.enc", "b24=");
Deleted : user_pref("CT3298573.mam_gk_appsData.enc", "eyJhcHBzIjpbeyJpZCI6IlByaWNlR29uZyIsInVybCI6Imh0dHA6Ly9w[...]
Deleted : user_pref("CT3298573.mam_gk_appsDefaultEnabled.enc", "bnVsbA==");
Deleted : user_pref("CT3298573.mam_gk_calledSetupService.enc", "MQ==");
Deleted : user_pref("CT3298573.mam_gk_configuration.enc", "eyJjb25maWd1cmF0aW9uIjpbeyJpZCI6IkNvdXBvbkJ1ZGR5Iiw[...]
Deleted : user_pref("CT3298573.mam_gk_currentVersion.enc", "MS45LjAuNA==");
Deleted : user_pref("CT3298573.mam_gk_eventsCache.enc", "eyJhYTkxZGRiNS02YjQyLTRmNTAtYmQ4Yi05N2YxMWVkOTE5OGYiO[...]
Deleted : user_pref("CT3298573.mam_gk_existingUsersRecoveryDone.enc", "MQ==");
Deleted : user_pref("CT3298573.mam_gk_first_time.enc", "MQ==");
Deleted : user_pref("CT3298573.mam_gk_gadgetOpen.enc", "d2VsY29tZQ==");
Deleted : user_pref("CT3298573.mam_gk_installer_preapproved.enc", "ZmFsc2U=");
Deleted : user_pref("CT3298573.mam_gk_lastLoginTime.enc", "MTM3NTU3NjI5NzA2NA==");
Deleted : user_pref("CT3298573.mam_gk_localization.enc", "eyJnYWRnZXRDb250ZW50UG9saWN5Ijp7IlRleHQiOiJDb250ZW50[...]
Deleted : user_pref("CT3298573.mam_gk_pgUnloadedOnce.enc", "dHJ1ZQ==");
Deleted : user_pref("CT3298573.mam_gk_settings1.8.0.4.enc", "eyJTdGF0dXMiOiJzdWNjZWVkZWQiLCJEYXRhIjp7ImludGVyd[...]
Deleted : user_pref("CT3298573.mam_gk_settings1.9.0.4.enc", "eyJTdGF0dXMiOiJzdWNjZWVkZWQiLCJEYXRhIjp7ImludGVyd[...]
Deleted : user_pref("CT3298573.mam_gk_showCloseButton.enc", "dHJ1ZQ==");
Deleted : user_pref("CT3298573.mam_gk_showWelcomeGadget.enc", "ZmFsc2U=");
Deleted : user_pref("CT3298573.mam_gk_userId.enc", "ZDVlM2VmYzgtMDkyOS00OTVkLThmY2YtYjA0YjVmYjQyZjk2");
Deleted : user_pref("CT3298573.migrateAppsAndComponents", true);
Deleted : user_pref("CT3298573.navigationAliasesJson", "{\"EB_SEARCH_TERM\":\"\",\"EB_MAIN_FRAME_URL\":\"hxxp%[...]
Deleted : user_pref("CT3298573.newSettings", "{\"dataType\":\"boolean\",\"data\":\"true\"}");
Deleted : user_pref("CT3298573.openThankYouPage", "false");
Deleted : user_pref("CT3298573.openUninstallPage", "true");
Deleted : user_pref("CT3298573.originalHomepage", "about:home");
Deleted : user_pref("CT3298573.originalSearchAddressUrl", "");
Deleted : user_pref("CT3298573.originalSearchEngine", "");
Deleted : user_pref("CT3298573.price-gong.isManagedApp", "true");
Deleted : user_pref("CT3298573.revertSettingsEnabled", "false");
Deleted : user_pref("CT3298573.search.searchAppId", "130110228602769889");
Deleted : user_pref("CT3298573.search.searchCount", "0");
Deleted : user_pref("CT3298573.searchFromAddressBarEnabledByUser", "true");
Deleted : user_pref("CT3298573.searchInNewTabEnabledByUser", "true");
Deleted : user_pref("CT3298573.searchInNewTabEnabledInHidden", "true");
Deleted : user_pref("CT3298573.searchRevert", "false");
Deleted : user_pref("CT3298573.searchUserMode", "99");
Deleted : user_pref("CT3298573.selectToSearchBoxEnabled", "{\"dataType\":\"string\",\"data\":\"true\"}");
Deleted : user_pref("CT3298573.serviceLayer_service_login_isFirstLoginInvoked", "{\"dataType\":\"boolean\",\"d[...]
Deleted : user_pref("CT3298573.serviceLayer_service_login_loginCount", "{\"dataType\":\"number\",\"data\":\"4\[...]
Deleted : user_pref("CT3298573.serviceLayer_service_toolbarGrouping_activeCTID", "{\"dataType\":\"string\",\"d[...]
Deleted : user_pref("CT3298573.serviceLayer_service_toolbarGrouping_activeDownloadUrl", "{\"dataType\":\"strin[...]
Deleted : user_pref("CT3298573.serviceLayer_service_toolbarGrouping_activeToolbarName", "{\"dataType\":\"strin[...]
Deleted : user_pref("CT3298573.serviceLayer_service_toolbarGrouping_invoked", "{\"dataType\":\"string\",\"data[...]
Deleted : user_pref("CT3298573.serviceLayer_services_appTrackingFirstTime_lastUpdate", "1375561996806");
Deleted : user_pref("CT3298573.serviceLayer_services_appsMetadata_lastUpdate", "1375561882566");
Deleted : user_pref("CT3298573.serviceLayer_services_gottenAppsContextMenu_lastUpdate", "1375561996874");
Deleted : user_pref("CT3298573.serviceLayer_services_installUsage_ToolbarInstallEarly_lastUpdate", "1367961490[...]
Deleted : user_pref("CT3298573.serviceLayer_services_installUsage_ToolbarInstall_lastUpdate", "1367961491240")[...]
Deleted : user_pref("CT3298573.serviceLayer_services_location_lastUpdate", "1375561996517");
Deleted : user_pref("CT3298573.serviceLayer_services_login_10.15.2.523_lastUpdate", "1375576396981");
Deleted : user_pref("CT3298573.serviceLayer_services_login_10.16.1.21_lastUpdate", "1368358163584");
Deleted : user_pref("CT3298573.serviceLayer_services_otherAppsContextMenu_lastUpdate", "1375561996956");
Deleted : user_pref("CT3298573.serviceLayer_services_searchAPI_lastUpdate", "1375561996565");
Deleted : user_pref("CT3298573.serviceLayer_services_serviceMap_lastUpdate", "1375561996417");
Deleted : user_pref("CT3298573.serviceLayer_services_toolbarContextMenu_lastUpdate", "1375561996811");
Deleted : user_pref("CT3298573.serviceLayer_services_toolbarSettings_lastUpdate", "1375583483200");
Deleted : user_pref("CT3298573.serviceLayer_services_translation_lastUpdate", "1373685027449");
Deleted : user_pref("CT3298573.settingsINI", true);
Deleted : user_pref("CT3298573.shouldFirstTimeDialog", "false");
Deleted : user_pref("CT3298573.showToolbarPermission", "false");
Deleted : user_pref("CT3298573.smartbar.CTID", "CT3298573");
Deleted : user_pref("CT3298573.smartbar.Uninstall", "0");
Deleted : user_pref("CT3298573.smartbar.homepage", "true");
Deleted : user_pref("CT3298573.smartbar.toolbarName", "MixiDJ V37 ");
Deleted : user_pref("CT3298573.startPage", "true");
Deleted : user_pref("CT3298573.toolbarBornServerTime", "8-5-2013");
Deleted : user_pref("CT3298573.toolbarCurrentServerTime", "4-8-2013");
Deleted : user_pref("CT3298573.toolbarLoginClientTime", "Tue May 07 2013 17:18:11 GMT-0400 (Eastern Standard T[...]
Deleted : user_pref("CT3298573.versionFromInstaller", "10.16.1.21");
Deleted : user_pref("CT3298573_Firefox.csv", "[{\"from\":\"Abs Layer\",\"action\":\"loading toolbar\",\"time\"[...]
Deleted : user_pref("Smartbar.ConduitHomepagesList", "");
Deleted : user_pref("Smartbar.ConduitSearchEngineList", "MixiDJ V37 Customized Web Search");
Deleted : user_pref("Smartbar.ConduitSearchUrlList", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3298573[...]
Deleted : user_pref("Smartbar.SearchFromAddressBarSavedUrl", "");
Deleted : user_pref("Smartbar.keywordURLSelectedCTID", "CT3298573");
Deleted : user_pref("browser.search.defaultthis.engineName", "MixiDJ V37 Customized Web Search");
Deleted : user_pref("browser.search.defaulturl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3298573&CUI[...]
Deleted : user_pref("browser.search.selectedEngine", "MixiDJ V37 Customized Web Search");
Deleted : user_pref("browser.startup.homepage", "hxxp://search.conduit.com/?ctid=CT3298573&octid=CT3298573&Sea[...]
Deleted : user_pref("keyword.URL", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3298573&SearchSource=2&CU[...]
Deleted : user_pref("smartbar.addressBarOwnerCTID", "CT3298573");
Deleted : user_pref("smartbar.conduitHomepageList", "hxxp://search.conduit.com/?ctid=CT3298573&CUI=UN689387863[...]
Deleted : user_pref("smartbar.conduitSearchAddressUrlList", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT[...]
Deleted : user_pref("smartbar.defaultSearchOwnerCTID", "CT3298573");
Deleted : user_pref("smartbar.homePageOwnerCTID", "CT3298573");
Deleted : user_pref("smartbar.machineId", "AS2/IPUDCB10ML2TFDZ87S4U2HCCDSEN0TCY3KKFIRSNH8MS3HNVPZTBCBJOSG9NSUC[...]
Deleted : user_pref("smartbar.originalHomepage", "hxxp://search.conduit.com/?ctid=CT3298573&CUI=UN689387863144[...]
Deleted : user_pref("smartbar.originalSearchAddressUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT329[...]
 
-\\ Google Chrome v28.0.1500.95
 
File : C:\Users\Helen\AppData\Local\Google\Chrome\User Data\Default\Preferences
 
Deleted [l.220] : urls_to_restore_on_startup =    ["hxxp://search.conduit.com/?ctid=CT3298573&SearchSource=48&CUI=UN39[...]
Deleted [l.222] : homepage =    "hxxp://search.conduit.com/?ctid=CT3298573&SearchSource=48&CUI=UN39744495653109793&UM=9[...]
 
File : C:\Users\Leora\AppData\Local\Google\Chrome\User Data\Default\Preferences
 
[OK] File is clean.
 
*************************
 
AdwCleaner[R1].txt - [15164 octets] - [15/08/2013 12:25:22]
AdwCleaner[S1].txt - [3639 octets] - [01/03/2013 19:52:14]
AdwCleaner[S2].txt - [15520 octets] - [15/08/2013 12:25:46]
 
########## EOF - C:\AdwCleaner[S2].txt - [15581 octets] ##########

# AdwCleaner v2.306 - Logfile created 08/15/2013 at 16:35:24
# Updated 19/07/2013 by Xplode
# Operating system : Windows 7 Ultimate Service Pack 1 (32 bits)
# User : Helen - BIGJAY3
# Boot Mode : Normal
# Running from : C:\Users\Helen\Desktop\AdwCleaner.exe
# Option [Delete]
 
 
***** [Services] *****
 
 
***** [Files / Folders] *****
 
 
***** [Registry] *****
 
 
***** [Internet Browsers] *****
 
-\\ Internet Explorer v10.0.9200.16660
 
[OK] Registry is clean.
 
-\\ Mozilla Firefox v22.0 (en-US)
 
File : C:\Users\Helen\AppData\Roaming\Mozilla\Firefox\Profiles\y17ix014.default\prefs.js
 
[OK] File is clean.
 
-\\ Google Chrome v28.0.1500.95
 
File : C:\Users\Helen\AppData\Local\Google\Chrome\User Data\Default\Preferences
 
Deleted [l.222] : homepage =    "hxxp://search.conduit.com/?ctid=CT3298573&SearchSource=48&CUI=UN39744495653109793&UM=9[...]
 
File : C:\Users\Leora\AppData\Local\Google\Chrome\User Data\Default\Preferences
 
[OK] File is clean.
 
*************************
 
AdwCleaner[R1].txt - [15164 octets] - [15/08/2013 12:25:22]
AdwCleaner[S1].txt - [3639 octets] - [01/03/2013 19:52:14]
AdwCleaner[S2].txt - [15651 octets] - [15/08/2013 12:25:46]
AdwCleaner[S3].txt - [1194 octets] - [15/08/2013 16:35:24]
 
########## EOF - C:\AdwCleaner[S3].txt - [1254 octets] ##########






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users