Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Page redirects


  • Please log in to reply
8 replies to this topic

#1 JONES113

JONES113

  • Members
  • 117 posts
  • OFFLINE
  •  
  • Local time:06:39 AM

Posted 25 September 2012 - 11:29 AM

Any time I click on a search result from a search engine it redirects me to another site and I cannot get to what I was searching for.

Edit: Moved topic from Web Browsing/Email and Other Internet Applications to the more appropriate forum. ~ Animal

BC AdBot (Login to Remove)

 


#2 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:05:39 AM

Posted 25 September 2012 - 12:31 PM

Update do a quick scan with Superantispyware remove all this finds reboot.
http://www.superantispyware.com/downloadfile.html?productid=SUPERANTISPYWAREFREE


Post the log here.



Then run a scan with eset remove all that it finds reboot your machine and if the issue persist see below.
http://www.eset.com/us/online-scanner/

When the scan finish list found threats save to clipboard post to notepad Post the log here.



Please download FarbarServiceScanner and run it on the computer with the issue.
http://download.bleepingcomputer.com/farbar/FSS.exe


Make sure the following options are checked:
Internet Services
Windows Firewall
System Restore
Security Center/Action Center
Windows Update

Press "Scan".
It will create a log (FSS.txt) in the same directory the tool is run.
Please copy and paste the log to your reply.

Please download MINITOOLBOX and run it.
http://download.bleepingcomputer.com/farbar/MiniToolBox.exe

Checkmark following boxes:


Report IE Proxy Settings
Report FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size
List Devices (problems only)



Click Go and post the result.



Download Adware Cleaner run it as admin Click the delete button allow it to run and post the log it creates.

http://general-changelog-team.fr/fr/downloads/finish/20-outils-de-xplode/2-adwcleaner


Download tdss killer

http://support.kaspersky.com/downloads/utils/tdsskiller.exe



Right Click it Run as Admin . Click on Change parameters Select TDLFS file system

Hit the Scan button Post the LOG In your next reply

Do not change the default options on scan results

Download Norman Malware Cleaner Run it Hit the quick scan>>>>>>>>Let it finish>>>>>>>>Go to the quarantine Tab>>>>>>> Tick the Select All>>>>>Then the Delete>>>>>>Quit
http://normanasa.vo.llnwd.net/o29/public/Norman_Malware_Cleaner.exe
A log will appear on your desktop post that here in your next reply.


REBoot after Norman.

Edited by InadequateInfirmity, 25 September 2012 - 09:34 PM.


#3 JONES113

JONES113
  • Topic Starter

  • Members
  • 117 posts
  • OFFLINE
  •  
  • Local time:06:39 AM

Posted 26 September 2012 - 10:28 AM

SUPERAntiSpyware Scan Log
http://www.superantispyware.com

Generated 09/25/2012 at 02:05 PM

Application Version : 5.5.1022

Core Rules Database Version : 9289
Trace Rules Database Version: 7101

Scan type : Quick Scan
Total Scan Time : 00:15:29

Operating System Information
Windows 7 Home Premium 64-bit, Service Pack 1 (Build 6.01.7601)
UAC On - Limited User

Memory items scanned : 461
Memory threats detected : 0
Registry items scanned : 54702
Registry threats detected : 67
File items scanned : 11242
File threats detected : 29

Malware.Trace
(x86) HKU\S-1-5-21-2127711081-1942083041-1217278544-1001\Software\Microsoft\Windows\CurrentVersion\Run#Adobe [ rundll32.exe "C:\Users\JONES\AppData\Local\Apple Computer\Adobe\xracugzvm.dll",AllocInstanceDataW ]
(x86) HKU\S-1-5-21-2127711081-1942083041-1217278544-1001_Classes\Software\Microsoft\Windows\CurrentVersion\Run#Adobe [ rundll32.exe "C:\Users\JONES\AppData\Local\Apple Computer\Adobe\xracugzvm.dll",AllocInstanceDataW ]

Security.HiJack[ImageFileExecutionOptions]
(x86) HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ACRORD32.EXE
(x86) HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ACRORD32.EXE#DisableExceptionChainValidation
(x86) HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ACRORD32.EXE#Debugger
(x86) HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\BEJEWELED2-WT.EXE
(x86) HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\BEJEWELED2-WT.EXE#Debugger
(x86) HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\BLACKHAWK2-WT.EXE
(x86) HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\BLACKHAWK2-WT.EXE#Debugger
(x86) HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\CFADDGADGETS.EXE
(x86) HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\CFADDGADGETS.EXE#Debugger
(x86) HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\CFMAIN.EXE
(x86) HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\CFMAIN.EXE#Debugger
(x86) HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\CFPROFILE.EXE
(x86) HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\CFPROFILE.EXE#Debugger
(x86) HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\FAERIE SOLITAIRE OBERON-WT.EXE
(x86) HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\FAERIE SOLITAIRE OBERON-WT.EXE#Debugger
(x86) HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\FATE-WT.EXE
(x86) HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\FATE-WT.EXE#Debugger
(x86) HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\JAVAW.EXE
(x86) HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\JAVAW.EXE#Debugger
(x86) HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\JAVAWS.EXE
(x86) HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\JAVAWS.EXE#Debugger
(x86) HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\LIFECAM.EXE
(x86) HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\LIFECAM.EXE#Debugger
(x86) HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\MONOPOLYPB-WT.EXE
(x86) HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\MONOPOLYPB-WT.EXE#Debugger
(x86) HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\MYSTERYPIVEGAS-WT.EXE
(x86) HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\MYSTERYPIVEGAS-WT.EXE#Debugger
(x86) HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\NDSTRAY.EXE
(x86) HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\NDSTRAY.EXE#Debugger
(x86) HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ONPLAY.EXE
(x86) HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\ONPLAY.EXE#Debugger
(x86) HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\PCDIAG.EXE
(x86) HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\PCDIAG.EXE#Debugger
(x86) HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\POLAR-WT.EXE
(x86) HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\POLAR-WT.EXE#Debugger
(x86) HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\PROVIDER.EXE
(x86) HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\PROVIDER.EXE#Debugger
(x86) HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\SCRABBLE PLUS-WT.EXE
(x86) HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\SCRABBLE PLUS-WT.EXE#Debugger
(x86) HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\SKYPE.EXE
(x86) HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\SKYPE.EXE#Debugger
(x86) HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\SMOOTHVIEW.EXE
(x86) HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\SMOOTHVIEW.EXE#Debugger
(x86) HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TACSPROP.EXE
(x86) HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TACSPROP.EXE#Debugger
(x86) HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TEAMVIEWER.EXE
(x86) HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TEAMVIEWER.EXE#Debugger
(x86) HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TECO.EXE
(x86) HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TECO.EXE#Debugger
(x86) HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TFCCONF.EXE
(x86) HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TFCCONF.EXE#Debugger
(x86) HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TFCRST.EXE
(x86) HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TFCRST.EXE#Debugger
(x86) HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TODISC.EXE
(x86) HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TODISC.EXE#Debugger
(x86) HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TOSHIBASERVICESTATION.EXE
(x86) HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TOSHIBASERVICESTATION.EXE#Debugger
(x86) HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TOSRAMUTIL.EXE
(x86) HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TOSRAMUTIL.EXE#Debugger
(x86) HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TRMCLCHER.EXE
(x86) HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\TRMCLCHER.EXE#Debugger
(x86) HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\VIRTUAL FAMILIES-WT.EXE
(x86) HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\VIRTUAL FAMILIES-WT.EXE#Debugger
(x86) HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\VIRTUAL VILLAGERS - THE SECRET CITY-WT.EXE
(x86) HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\VIRTUAL VILLAGERS - THE SECRET CITY-WT.EXE#Debugger

Adware.Tracking Cookie
C:\USERS\JONES\AppData\Roaming\Microsoft\Windows\Cookies\Low\50JDJYEM.txt [ Cookie:jones@richmedia.yahoo.com/ ]
C:\USERS\JONES\AppData\Roaming\Microsoft\Windows\Cookies\Low\1BB4OYCT.txt [ Cookie:jones@ads.pointroll.com/ ]
C:\USERS\JONES\AppData\Roaming\Microsoft\Windows\Cookies\Low\R4SGK4PR.txt [ Cookie:jones@zedo.com/ ]
C:\USERS\JONES\AppData\Roaming\Microsoft\Windows\Cookies\Low\T68OT4ZJ.txt [ Cookie:jones@collective-media.net/ ]
C:\USERS\JONES\AppData\Roaming\Microsoft\Windows\Cookies\Low\BGDIBD5T.txt [ Cookie:jones@pointroll.com/ ]
C:\USERS\JONES\AppData\Roaming\Microsoft\Windows\Cookies\Low\A3G30381.txt [ Cookie:jones@ad.yieldmanager.com/ ]
C:\USERS\JONES\AppData\Roaming\Microsoft\Windows\Cookies\Low\X1PXC3H6.txt [ Cookie:jones@imrworldwide.com/cgi-bin ]
C:\USERS\JONES\AppData\Roaming\Microsoft\Windows\Cookies\Low\QD8Z8BPR.txt [ Cookie:jones@a1.interclick.com/ ]
C:\USERS\JONES\AppData\Roaming\Microsoft\Windows\Cookies\Low\8IGPDE07.txt [ Cookie:jones@mediaplex.com/ ]
C:\USERS\JONES\AppData\Roaming\Microsoft\Windows\Cookies\Low\OQEBT5OF.txt [ Cookie:jones@media6degrees.com/ ]
C:\USERS\JONES\AppData\Roaming\Microsoft\Windows\Cookies\Low\K01PKIKU.txt [ Cookie:jones@clickbooth.com/ ]
C:\USERS\JONES\AppData\Roaming\Microsoft\Windows\Cookies\Low\DOI40VR6.txt [ Cookie:jones@adbrite.com/ ]
C:\USERS\JONES\AppData\Roaming\Microsoft\Windows\Cookies\Low\9TDHWZJG.txt [ Cookie:jones@interclick.com/ ]
C:\USERS\JONES\AppData\Roaming\Microsoft\Windows\Cookies\Low\28OS0ZM3.txt [ Cookie:jones@ad.mlnadvertising.com/ ]
C:\USERS\JONES\AppData\Roaming\Microsoft\Windows\Cookies\Low\OP156NJW.txt [ Cookie:jones@advertising.com/ ]
C:\USERS\JONES\AppData\Roaming\Microsoft\Windows\Cookies\Low\33GZFSSG.txt [ Cookie:jones@revsci.net/ ]
C:\USERS\JONES\AppData\Roaming\Microsoft\Windows\Cookies\Low\GA5OLV5R.txt [ Cookie:jones@intermundomedia.com/ ]
C:\USERS\JONES\AppData\Roaming\Microsoft\Windows\Cookies\Low\0KSHKB92.txt [ Cookie:jones@mediaservices-d.openxenterprise.com/ ]
C:\USERS\JONES\AppData\Roaming\Microsoft\Windows\Cookies\Low\CB3SEJQS.txt [ Cookie:jones@casalemedia.com/ ]
C:\USERS\JONES\AppData\Roaming\Microsoft\Windows\Cookies\Low\YJDYQ2SC.txt [ Cookie:jones@www.bizrate.com/ ]
C:\USERS\JONES\AppData\Roaming\Microsoft\Windows\Cookies\Low\JYS2NTVD.txt [ Cookie:jones@accounts.youtube.com/accounts ]
C:\USERS\JONES\AppData\Roaming\Microsoft\Windows\Cookies\Low\1YJS8Z2D.txt [ Cookie:jones@adinterax.com/ ]
C:\USERS\JONES\AppData\Roaming\Microsoft\Windows\Cookies\Low\FNMO0K4I.txt [ Cookie:jones@realmedia.com/ ]
C:\USERS\JONES\AppData\Roaming\Microsoft\Windows\Cookies\Low\A0JUJV0G.txt [ Cookie:jones@atdmt.com/ ]
C:\USERS\JONES\AppData\Roaming\Microsoft\Windows\Cookies\Low\QP3NSO30.txt [ Cookie:jones@at.atwola.com/ ]
C:\USERS\JONES\AppData\Roaming\Microsoft\Windows\Cookies\Low\45JYLTH2.txt [ Cookie:jones@accounts.google.com/ ]
C:\USERS\JONES\AppData\Roaming\Microsoft\Windows\Cookies\Low\KT1YMRMT.txt [ Cookie:jones@apmebf.com/ ]
C:\USERS\JONES\AppData\Roaming\Microsoft\Windows\Cookies\Low\DO03POEA.txt [ Cookie:jones@burstnet.com/ ]
C:\USERS\JONES\AppData\Roaming\Microsoft\Windows\Cookies\Low\3LASO6K3.txt [ Cookie:jones@bizrate.com/ ]




C:\Users\JONES\AppData\Local\Google\Chrome\User Data\Default\Default\aagegbdbdddcgegddagddgdfdedigggb\background.html Win32/BHO.OEI trojan cleaned by deleting - quarantined
C:\Users\JONES\AppData\Local\Google\Chrome\User Data\Default\Default\aagegbdbdddcgegddagddgdfdedigggb\ContentScript.js Win32/BHO.OEI trojan cleaned by deleting - quarantined

#4 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:05:39 AM

Posted 26 September 2012 - 06:23 PM

As soon as we have the other logs we will continue. :)

#5 JONES113

JONES113
  • Topic Starter

  • Members
  • 117 posts
  • OFFLINE
  •  
  • Local time:06:39 AM

Posted 27 September 2012 - 01:06 PM

Farbar Service Scanner Version: 19-09-2012
Ran by JONES (administrator) on 27-09-2012 at 13:46:29
Running from "C:\Users\JONES\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\7RBO0YXH"
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****


MiniToolBox by Farbar Version: 23-07-2012
Ran by JONES (administrator) on 27-09-2012 at 13:48:42
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

========================= FF Proxy Settings: ==============================

========================= Hosts content: =================================

127.0.0.1 localhost

========================= IP Configuration: ================================

Realtek RTL8187SE Wireless LAN PCIE Network Adapter = Wireless Network Connection (Connected)
Realtek PCIe FE Family Controller = Local Area Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : JONES-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : netgear.com

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . : netgear.com
Description . . . . . . . . . . . : Realtek RTL8187SE Wireless LAN PCIE Network Adapter
Physical Address. . . . . . . . . : 70-1A-04-7A-69-D6
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::ed:555a:a79a:5a10%11(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.254.16(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Thursday, September 27, 2012 9:37:59 AM
Lease Expires . . . . . . . . . . : Friday, September 28, 2012 9:37:59 AM
Default Gateway . . . . . . . . . : 192.168.254.254
DHCP Server . . . . . . . . . . . : 192.168.254.254
DHCPv6 IAID . . . . . . . . . . . : 309336580
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-15-67-6D-F0-00-26-6C-37-EA-24
DNS Servers . . . . . . . . . . . : 192.168.254.254
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . : netgear.com
Description . . . . . . . . . . . : Realtek PCIe FE Family Controller
Physical Address. . . . . . . . . : 00-26-6C-37-EA-24
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.att.net:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: dslrouter.netgear.com
Address: 192.168.254.254

Name: google.com
Addresses: 2607:f8b0:400c:c03::65
173.194.75.138
173.194.75.113
173.194.75.102
173.194.75.101
173.194.75.100
173.194.75.139


Pinging google.com [173.194.75.139] with 32 bytes of data:
Reply from 173.194.75.139: bytes=32 time=75ms TTL=40
Reply from 173.194.75.139: bytes=32 time=84ms TTL=40

Ping statistics for 173.194.75.139:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 75ms, Maximum = 84ms, Average = 79ms
Server: dslrouter.netgear.com
Address: 192.168.254.254

Name: yahoo.com
Addresses: 98.139.183.24
98.138.253.109
72.30.38.140


Pinging yahoo.com [72.30.38.140] with 32 bytes of data:
Reply from 72.30.38.140: bytes=32 time=1020ms TTL=43
Reply from 72.30.38.140: bytes=32 time=1095ms TTL=43

Ping statistics for 72.30.38.140:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 1020ms, Maximum = 1095ms, Average = 1057ms
Server: dslrouter.netgear.com
Address: 192.168.254.254

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
11...70 1a 04 7a 69 d6 ......Realtek RTL8187SE Wireless LAN PCIE Network Adapter
10...00 26 6c 37 ea 24 ......Realtek PCIe FE Family Controller
1...........................Software Loopback Interface 1
14...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
12...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.254.254 192.168.254.16 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.254.0 255.255.255.0 On-link 192.168.254.16 281
192.168.254.16 255.255.255.255 On-link 192.168.254.16 281
192.168.254.255 255.255.255.255 On-link 192.168.254.16 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.254.16 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.254.16 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
11 281 fe80::/64 On-link
11 281 fe80::ed:555a:a79a:5a10/128
On-link
1 306 ff00::/8 On-link
11 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None

========================= Event log errors: ===============================

Application errors:
==================
Error: (09/26/2012 02:48:43 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object.

Details:
AddLegacyDriverFiles: Unable to back up image of binary SASKUTIL.

System Error:
The system cannot find the file specified.
.

Error: (09/25/2012 10:33:45 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (09/25/2012 09:15:15 AM) (Source: Microsoft-Windows-LoadPerf) (User: NT AUTHORITY)NT AUTHORITY
Description: Unloading the performance counter strings for service WmiApRpl (WmiApRpl) failed. The first DWORD in the Data section contains the error code.

Error: (09/25/2012 09:15:15 AM) (Source: Microsoft-Windows-LoadPerf) (User: NT AUTHORITY)NT AUTHORITY
Description: The performance strings in the Performance registry value is corrupted when process Performance extension counter provider. The BaseIndex value from the Performance registry is the first DWORD in the Data section, LastCounter value is the second DWORD in the Data section, and LastHelp value is the third DWORD in the Data section.

Error: (09/24/2012 01:38:44 PM) (Source: Microsoft-Windows-LoadPerf) (User: NT AUTHORITY)NT AUTHORITY
Description: Unloading the performance counter strings for service WmiApRpl (WmiApRpl) failed. The first DWORD in the Data section contains the error code.

Error: (09/24/2012 01:38:44 PM) (Source: Microsoft-Windows-LoadPerf) (User: NT AUTHORITY)NT AUTHORITY
Description: The performance strings in the Performance registry value is corrupted when process Performance extension counter provider. The BaseIndex value from the Performance registry is the first DWORD in the Data section, LastCounter value is the second DWORD in the Data section, and LastHelp value is the third DWORD in the Data section.

Error: (09/24/2012 10:12:14 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (09/24/2012 09:07:57 AM) (Source: Microsoft-Windows-LoadPerf) (User: NT AUTHORITY)NT AUTHORITY
Description: Unloading the performance counter strings for service WmiApRpl (WmiApRpl) failed. The first DWORD in the Data section contains the error code.

Error: (09/24/2012 09:07:57 AM) (Source: Microsoft-Windows-LoadPerf) (User: NT AUTHORITY)NT AUTHORITY
Description: The performance strings in the Performance registry value is corrupted when process Performance extension counter provider. The BaseIndex value from the Performance registry is the first DWORD in the Data section, LastCounter value is the second DWORD in the Data section, and LastHelp value is the third DWORD in the Data section.

Error: (09/24/2012 09:07:33 AM) (Source: Microsoft-Windows-LoadPerf) (User: NT AUTHORITY)NT AUTHORITY
Description: Unloading the performance counter strings for service WmiApRpl (WmiApRpl) failed. The first DWORD in the Data section contains the error code.


System errors:
=============
Error: (09/27/2012 09:37:59 AM) (Source: Service Control Manager) (User: )
Description: The MCSTRM service failed to start due to the following error:
%%2

Error: (09/27/2012 09:37:45 AM) (Source: atikmdag) (User: )
Description: Display is not active

Error: (09/27/2012 09:37:45 AM) (Source: atikmdag) (User: )
Description: CPLIB :: General - Invalid Parameter

Error: (09/27/2012 09:37:48 AM) (Source: EventLog) (User: )
Description: The previous system shutdown at 9:36:07 AM on ?9/?27/?2012 was unexpected.

Error: (09/27/2012 09:00:26 AM) (Source: Service Control Manager) (User: )
Description: The MCSTRM service failed to start due to the following error:
%%2

Error: (09/27/2012 09:00:14 AM) (Source: atikmdag) (User: )
Description: Display is not active

Error: (09/27/2012 09:00:14 AM) (Source: atikmdag) (User: )
Description: CPLIB :: General - Invalid Parameter

Error: (09/26/2012 02:48:57 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x80246007: Update for Windows 7 for x64-based Systems (KB2732059).

Error: (09/26/2012 01:25:59 PM) (Source: Service Control Manager) (User: )
Description: The Windows Image Acquisition (WIA) service depends on the Shell Hardware Detection service which failed to start because of the following error:
%%1058

Error: (09/26/2012 01:19:26 PM) (Source: Service Control Manager) (User: )
Description: The Windows Image Acquisition (WIA) service depends on the Shell Hardware Detection service which failed to start because of the following error:
%%1058


Microsoft Office Sessions:
=========================
Error: (09/26/2012 02:48:43 PM) (Source: Microsoft-Windows-CAPI2)(User: )
Description: Details:
AddLegacyDriverFiles: Unable to back up image of binary SASKUTIL.

System Error:
The system cannot find the file specified.

Error: (09/25/2012 10:33:45 AM) (Source: SideBySide)(User: )
Description: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestc:\program files (x86)\ESET\eset online scanner\ESETSmartInstaller.exe

Error: (09/25/2012 09:15:15 AM) (Source: Microsoft-Windows-LoadPerf)(User: NT AUTHORITY)NT AUTHORITY
Description: WmiApRplWmiApRpl8F20300004D070000

Error: (09/25/2012 09:15:15 AM) (Source: Microsoft-Windows-LoadPerf)(User: NT AUTHORITY)NT AUTHORITY
Description: Performance1637070000000000000000000009030000

Error: (09/24/2012 01:38:44 PM) (Source: Microsoft-Windows-LoadPerf)(User: NT AUTHORITY)NT AUTHORITY
Description: WmiApRplWmiApRpl8F20300004D070000

Error: (09/24/2012 01:38:44 PM) (Source: Microsoft-Windows-LoadPerf)(User: NT AUTHORITY)NT AUTHORITY
Description: Performance1637070000000000000000000009030000

Error: (09/24/2012 10:12:14 AM) (Source: SideBySide)(User: )
Description: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestc:\program files (x86)\ESET\eset online scanner\ESETSmartInstaller.exe

Error: (09/24/2012 09:07:57 AM) (Source: Microsoft-Windows-LoadPerf)(User: NT AUTHORITY)NT AUTHORITY
Description: WmiApRplWmiApRpl8F20300004D070000

Error: (09/24/2012 09:07:57 AM) (Source: Microsoft-Windows-LoadPerf)(User: NT AUTHORITY)NT AUTHORITY
Description: Performance1637070000000000000000000009030000

Error: (09/24/2012 09:07:33 AM) (Source: Microsoft-Windows-LoadPerf)(User: NT AUTHORITY)NT AUTHORITY
Description: WmiApRplWmiApRpl8F20300004D070000


=========================== Installed Programs ============================

µTorrent (Version: 3.1.0)
Adobe Flash Player 11 ActiveX (Version: 11.4.402.265)
Adobe Flash Player 11 Plugin (Version: 11.3.300.268)
Adobe Reader X (10.1.4) (Version: 10.1.4)
Apple Application Support (Version: 2.2.2)
Apple Mobile Device Support (Version: 6.0.0.59)
Apple Software Update (Version: 2.1.3.127)
ATI Catalyst Install Manager (Version: 3.0.732.0)
Audacity 1.3.13 (Unicode)
AVI To MP4 Converter 1.0
Bejeweled 2 Deluxe (Version: 2.2.0.82)
Blackhawk Striker 2 (Version: 2.2.0.82)
Bonjour (Version: 3.0.0.10)
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center Core Implementation (Version: 2009.0729.2238.38827)
Catalyst Control Center Graphics Full Existing (Version: 2009.0729.2238.38827)
Catalyst Control Center Graphics Full New (Version: 2009.0729.2238.38827)
Catalyst Control Center Graphics Light (Version: 2009.0729.2238.38827)
Catalyst Control Center Graphics Previews Common (Version: 2009.0729.2238.38827)
Catalyst Control Center Graphics Previews Vista (Version: 2009.0729.2238.38827)
Catalyst Control Center InstallProxy (Version: 2009.0729.2238.38827)
Catalyst Control Center Localization All (Version: 2009.0729.2238.38827)
ccc-core-static (Version: 2009.0729.2238.38827)
ccc-utility64 (Version: 2009.0729.2238.38827)
CCC Help Chinese Standard (Version: 2009.0729.2237.38827)
CCC Help Chinese Traditional (Version: 2009.0729.2237.38827)
CCC Help Czech (Version: 2009.0729.2237.38827)
CCC Help Danish (Version: 2009.0729.2237.38827)
CCC Help Dutch (Version: 2009.0729.2237.38827)
CCC Help English (Version: 2009.0729.2237.38827)
CCC Help Finnish (Version: 2009.0729.2237.38827)
CCC Help French (Version: 2009.0729.2237.38827)
CCC Help German (Version: 2009.0729.2237.38827)
CCC Help Greek (Version: 2009.0729.2237.38827)
CCC Help Hungarian (Version: 2009.0729.2237.38827)
CCC Help Italian (Version: 2009.0729.2237.38827)
CCC Help Japanese (Version: 2009.0729.2237.38827)
CCC Help Korean (Version: 2009.0729.2237.38827)
CCC Help Norwegian (Version: 2009.0729.2237.38827)
CCC Help Polish (Version: 2009.0729.2237.38827)
CCC Help Portuguese (Version: 2009.0729.2237.38827)
CCC Help Russian (Version: 2009.0729.2237.38827)
CCC Help Spanish (Version: 2009.0729.2237.38827)
CCC Help Swedish (Version: 2009.0729.2237.38827)
CCC Help Thai (Version: 2009.0729.2237.38827)
CCC Help Turkish (Version: 2009.0729.2237.38827)
Compatibility Pack for the 2007 Office system (Version: 12.0.6612.1000)
D3DX10 (Version: 15.4.2368.0902)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
Dropbox (Version: 1.4.7)
Faerie Solitaire (Version: 2.2.0.82)
FATE Undiscovered Realms (Version: 2.2.0.82)
FFmpeg v0.6.2 for Audacity
Flow Chart Maker (Version: 4.19.0000)
Garmin Communicator Plugin (Version: 2.9.3)
Garmin USB Drivers (Version: 2.3.0.0)
GoGear VIBE Device Manager (Version: 01.06)
Google Earth Plug-in (Version: 6.2.1.6014)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Update Helper (Version: 1.3.21.99)
HP FWUpdateEDO2 (Version: 1.2.0.0)
HP Officejet Pro 8600 Basic Device Software (Version: 25.0.619.0)
HP Update (Version: 5.003.001.001)
I.R.I.S. OCR (Version: 12.3.4.0)
iCloud (Version: 1.1.0.40)
iTunes (Version: 10.7.0.21)
Java Auto Updater (Version: 2.0.6.1)
Java™ 6 Update 29 (Version: 6.0.290)
Junk Mail filter update (Version: 15.4.3502.0922)
LAME v3.98.3 for Audacity
Malwarebytes Anti-Malware version 1.62.0.1300 (Version: 1.62.0.1300)
Media Converter for Philips (Version: 2.5.2.231)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Corporation (Version: 9.1.0.0)
Microsoft LifeCam (Version: 3.22.270.0)
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Home and Student 2010 (Version: 14.0.6029.1000)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.6029.1000)
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office PowerPoint Viewer 2007 (English) (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Single Image 2010 (Version: 14.0.6029.1000)
Microsoft Office Suite Activation Assistant (Version: 2.9)
Microsoft Office Word MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Security Client (Version: 4.0.1526.0)
Microsoft Security Essentials (Version: 4.0.1526.0)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (Version: 8.0.51011)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
MobileMe Control Panel (Version: 3.1.8.0)
Monopoly (Version: 2.2.0.82)
Mozilla Firefox 14.0.1 (x86 en-US) (Version: 14.0.1)
Mozilla Maintenance Service (Version: 14.0.1)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Mystery P.I. - The Vegas Heist (Version: 2.2.0.82)
Nuance PDF Converter Professional 7 (Version: 7.20.6160)
PlayReady PC Runtime amd64 (Version: 1.3.0)
Polar Bowler (Version: 2.2.0.82)
QuickTime (Version: 7.72.80.56)
Realtek Ethernet Controller Driver (Version: 1.00.0008)
Realtek High Definition Audio Driver (Version: 6.0.1.5904)
Realtek USB 2.0 Card Reader (Version: 6.1.7600.30101)
Realtek WLAN Driver (Version: 2.00.0006)
Rhapsody
Safari (Version: 5.34.57.2)
Scansoft PDF Professional
Scrabble Plus (Version: 2.2.0.82)
Skype Launcher (Version: 2.01)
Skype™ 5.10 (Version: 5.10.116)
Spotify (Version: 0.8.4.124.ga3559d86)
Synaptics Pointing Device Driver (Version: 13.2.6.1)
TeamViewer 6 (Version: 6.0.10722)
Text Twist 2 1.00
TOSHIBA Application Installer (Version: 9.0.1.0)
TOSHIBA Assist (Version: 3.00.10)
TOSHIBA Bulletin Board (Version: 1.5.05.64)
TOSHIBA ConfigFree (Version: 8.0.21)
TOSHIBA Disc Creator (Version: 2.1.0.1 for x64)
TOSHIBA DVD PLAYER (Version: 3.01.0.07-A)
TOSHIBA eco Utility (Version: 1.1.7.64)
TOSHIBA Extended Tiles for Windows Mobility Center (Version: )
TOSHIBA Extended Tiles for Windows Mobility Center (Version: 1.01.00)
TOSHIBA Hardware Setup (Version: 2.00.11)
TOSHIBA HDD/SSD Alert (Version: 3.1.64.0)
TOSHIBA Media Controller (Version: 1.0.65)
Toshiba Online Backup (Version: 1.2.0.38)
TOSHIBA PC Health Monitor (Version: 1.4.1.64)
TOSHIBA Quality Application (Version: 1.0.1)
TOSHIBA Recovery Media Creator (Version: 2.1.0.4 for x64)
TOSHIBA ReelTime (Version: 1.5.07.64)
TOSHIBA Service Station (Version: 2.2.9)
TOSHIBA Speech System Applications (Version: 1.00.2518)
TOSHIBA Speech System SR Engine(U.S.) Version1.0
TOSHIBA Speech System TTS Engine(U.S.) Version1.0
TOSHIBA Supervisor Password (Version: 2.00.09)
TOSHIBA Value Added Package (Version: 1.2.26.64)
ToshibaRegistration (Version: 1.0.3)
TuneUp Utilities 2012 (Version: 12.0.2160.13)
TuneUp Utilities Language Pack (en-US) (Version: 12.0.2160.13)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft Office 2010 (KB2494150)
Update for Microsoft Office 2010 (KB2553065)
Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553270) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553272) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition
Update for Microsoft Office 2010 (KB2566458)
Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition
Update for Microsoft Office 2010 (KB2598289) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2589345) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2553248) 32-Bit Edition
Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition
Virtual Families (Version: 2.2.0.82)
Virtual Villagers - The Secret City (Version: 2.2.0.82)
WildTangent Games (Version: 1.0.0.80)
WildTangent ORB Game Console
Windows Driver Package - Garmin (grmnusb) GARMIN Devices (06/03/2009 2.3.0.0) (Version: 06/03/2009 2.3.0.0)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3502.0922)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Messenger (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3502.0922)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live Sync (Version: 14.0.8089.726)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3502.0922)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
WinRAR 4.01 (32-bit) (Version: 4.01.0)

========================= Devices: ================================


========================= Memory info: ===================================

Percentage of memory in use: 56%
Total physical RAM: 1788.17 MB
Available physical RAM: 783.36 MB
Total Pagefile: 4470.17 MB
Available Pagefile: 3111.27 MB
Total Virtual: 4095.88 MB
Available Virtual: 3973.1 MB

========================= Partitions: =====================================

1 Drive c: (JONES) (Fixed) (Total:222.41 GB) (Free:131.26 GB) NTFS
3 Drive e: (RF-8GB11) (Removable) (Total:7.53 GB) (Free:4.07 GB) FAT32

========================= Users: ========================================

User accounts for \\JONES-PC

Administrator Guest JONES


**** End of log ****



# AdwCleaner v2.003 - Logfile created 09/27/2012 at 13:51:51
# Updated 23/09/2012 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : JONES - JONES-PC
# Boot Mode : Normal
# Running from : C:\Users\JONES\Desktop\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

File Deleted : C:\Program Files (x86)\Mozilla Firefox\Plugins\npvsharetvplg.dll
File Deleted : C:\Users\JONES\AppData\Roaming\Mozilla\Firefox\Profiles\85lwufpe.default\searchplugins\Startsear.xml
Folder Deleted : C:\Program Files (x86)\OApps
Folder Deleted : C:\ProgramData\Partner
Folder Deleted : C:\Users\JONES\AppData\LocalLow\CouponAlert_2p
Folder Deleted : C:\Users\JONES\AppData\Roaming\Mozilla\Firefox\Profiles\85lwufpe.default\extensions\2pffxtbr@CouponAlert_2p.com

***** [Registry] *****

Key Deleted : HKCU\Software\AppDataLow\Software\CouponAlert_2p
Key Deleted : HKCU\Software\AppDataLow\Software\Freecause
Key Deleted : HKCU\Software\AppDataLow\Software\iWon
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{78F3A323-798E-4AEA-9A57-88F4B05FD5DD}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7AC3E13B-3BCA-4158-B330-F66DBB03C1B5}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{8F97BFF8-488B-4107-BCEE-B161AB4E4183}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A1B48071-416D-474E-A13B-BE5456E7FC31}
Key Deleted : HKCU\Software\StartSearch
Key Deleted : HKCU\Software\Zugo
Key Deleted : HKLM\SOFTWARE\Classes\FCTB000100569.FCTB000100569Pos
Key Deleted : HKLM\SOFTWARE\Classes\FCTB000100569.FCTB000100569Pos.1
Key Deleted : HKLM\SOFTWARE\Classes\FCTB000100569.IEToolbar
Key Deleted : HKLM\SOFTWARE\Classes\FCTB000100569.IEToolbar.1
Key Deleted : HKLM\SOFTWARE\Classes\FCTB000100569.JSOptionsImpl
Key Deleted : HKLM\SOFTWARE\Classes\FCTB000100569.JSOptionsImpl.1
Key Deleted : HKLM\SOFTWARE\Classes\FreeCauseURLSearchHook.FCToolbarURLSearchHook
Key Deleted : HKLM\SOFTWARE\Classes\FreeCauseURLSearchHook.FCToolbarURLSearchHook.1
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{8F97BFF8-488B-4107-BCEE-B161AB4E4183}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{A1B48071-416D-474E-A13B-BE5456E7FC31}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{0F1794F2-900B-4C81-8146-9234E5CC5BE2}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{21D9997E-5D2A-4737-BCBA-C958C0590295}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{58E64AEE-516A-4DFC-AC38-31C50E8AF0F1}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{5F701D7D-C869-41F0-B0E2-8136F02B539C}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{6BDA50D2-5597-4C68-A842-9B857FCCDA49}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{6CA3D0AB-F807-462C-BA7F-E27F07F91E32}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{6F99D2AE-5C90-43C2-A2FE-81DBE512E2FC}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{8997561D-CF0B-42C7-AAE6-78801B3ADC7F}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{92580E8C-88F5-4551-9D9E-8147E7EE2C32}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{A786F51D-B3C7-4F52-91EF-E1A892C2A2AE}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{D8AF87C1-0B1E-494B-AAF0-CECC3FFEDF99}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{DAFC4DAE-7794-4E16-9A98-F6001303DCD0}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{EAB77009-B974-48DF-8229-E70CFAA11C69}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{EBAA6283-B61F-4DDD-9659-56635433A307}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{EFB0C189-5077-4340-9838-AF7B8E792A54}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{EFB4F034-3EB5-48D5-84DD-89BBCF9A182F}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{F9D45087-1CF1-452E-9649-FDFDAC578E03}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{FF2EBC1C-6579-41DB-91DD-945A1C8DB2D2}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\kincjchfokkeneeofpeefomkikfkiedl
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2AF08E71-3657-462F-898C-F7E791948F94}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{56965DCF-718F-4148-BECF-5A2B466F4556}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6F99D2AE-5C90-43C2-A2FE-81DBE512E2FC}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7225F6C9-CF64-4D6D-AE8A-169779FD7B4D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{004EB151-885B-4A9E-A22D-CA98DD998D75}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{041278C7-DF92-486D-AE85-921BDFC75A43}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0F1794F2-900B-4C81-8146-9234E5CC5BE2}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{1116A14B-F6A3-4FD9-A00E-FF8CF270EE48}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{21D9997E-5D2A-4737-BCBA-C958C0590295}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{36A7148B-639E-423C-90BB-30B6E1A40BD7}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3D782BB2-F2A5-11D3-BF4C-000000000000}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{56965DCF-718F-4148-BECF-5A2B466F4556}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{58E64AEE-516A-4DFC-AC38-31C50E8AF0F1}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{5F701D7D-C869-41F0-B0E2-8136F02B539C}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{61DAB0AD-AD23-4E40-84AC-7C6CE64D4EB3}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{65D8E17B-312E-4E12-913B-A841A8631143}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{6BDA50D2-5597-4C68-A842-9B857FCCDA49}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{6CA3D0AB-F807-462C-BA7F-E27F07F91E32}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{6F99D2AE-5C90-43C2-A2FE-81DBE512E2FC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{860AF5D1-0735-409D-8E5F-E3E99356D7E9}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{8997561D-CF0B-42C7-AAE6-78801B3ADC7F}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{92580E8C-88F5-4551-9D9E-8147E7EE2C32}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A0636D37-97D0-4DC4-95A6-93AABA07437F}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A786F51D-B3C7-4F52-91EF-E1A892C2A2AE}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D244EAC5-A0F5-4859-A1F8-18ABC0AC3A00}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D8AF87C1-0B1E-494B-AAF0-CECC3FFEDF99}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{DAFC4DAE-7794-4E16-9A98-F6001303DCD0}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EAB77009-B974-48DF-8229-E70CFAA11C69}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EBAA6283-B61F-4DDD-9659-56635433A307}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EFB0C189-5077-4340-9838-AF7B8E792A54}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EFB4F034-3EB5-48D5-84DD-89BBCF9A182F}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{F9D45087-1CF1-452E-9649-FDFDAC578E03}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FF2EBC1C-6579-41DB-91DD-945A1C8DB2D2}
Key Deleted : HKLM\SOFTWARE\Software

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16421

Restored : [HKCU\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKCU\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope]

-\\ Mozilla Firefox v14.0.1 (en-US)

Profile name : default
File : C:\Users\JONES\AppData\Roaming\Mozilla\Firefox\Profiles\85lwufpe.default\prefs.js

C:\Users\JONES\AppData\Roaming\Mozilla\Firefox\Profiles\85lwufpe.default\user.js ... Deleted !

Deleted : user_pref("browser.search.defaultengine", "Web Search");
Deleted : user_pref("browser.search.defaultenginename", "Web Search");
Deleted : user_pref("browser.search.order.1", "Web Search");

-\\ Google Chrome v [Unable to get version]

File : C:\Users\JONES\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[S1].txt - [8727 octets] - [27/09/2012 13:51:51]

########## EOF - C:\AdwCleaner[S1].txt - [8787 octets] ##########



13:55:42.0319 1852 TDSS rootkit removing tool 2.8.10.0 Sep 17 2012 19:23:24
13:55:42.0669 1852 ============================================================
13:55:42.0669 1852 Current date / time: 2012/09/27 13:55:42.0669
13:55:42.0669 1852 SystemInfo:
13:55:42.0669 1852
13:55:42.0669 1852 OS Version: 6.1.7601 ServicePack: 1.0
13:55:42.0669 1852 Product type: Workstation
13:55:42.0669 1852 ComputerName: JONES-PC
13:55:42.0669 1852 UserName: JONES
13:55:42.0669 1852 Windows directory: C:\windows
13:55:42.0669 1852 System windows directory: C:\windows
13:55:42.0669 1852 Running under WOW64
13:55:42.0669 1852 Processor architecture: Intel x64
13:55:42.0669 1852 Number of processors: 1
13:55:42.0669 1852 Page size: 0x1000
13:55:42.0669 1852 Boot type: Normal boot
13:55:42.0669 1852 ============================================================
13:55:45.0809 1852 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
13:55:45.0819 1852 ============================================================
13:55:45.0819 1852 \Device\Harddisk0\DR0:
13:55:45.0819 1852 MBR partitions:
13:55:45.0819 1852 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2EE800, BlocksNum 0x1BCD0000
13:55:45.0819 1852 ============================================================
13:55:45.0849 1852 C: <-> \Device\Harddisk0\DR0\Partition1
13:55:45.0849 1852 ============================================================
13:55:45.0849 1852 Initialize success
13:55:45.0849 1852 ============================================================
13:56:23.0079 2584 ============================================================
13:56:23.0079 2584 Scan started
13:56:23.0079 2584 Mode: Manual; TDLFS;
13:56:23.0079 2584 ============================================================
13:56:24.0149 2584 ================ Scan system memory ========================
13:56:24.0149 2584 System memory - ok
13:56:24.0149 2584 ================ Scan services =============================
13:56:24.0309 2584 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\windows\system32\drivers\1394ohci.sys
13:56:24.0309 2584 1394ohci - ok
13:56:24.0389 2584 [ ADC420616C501B45D26C0FD3EF1E54E4 ] ACDaemon C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
13:56:24.0399 2584 ACDaemon - ok
13:56:24.0449 2584 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\windows\system32\drivers\ACPI.sys
13:56:24.0459 2584 ACPI - ok
13:56:24.0489 2584 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\windows\system32\drivers\acpipmi.sys
13:56:24.0489 2584 AcpiPmi - ok
13:56:24.0559 2584 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
13:56:24.0569 2584 AdobeARMservice - ok
13:56:24.0619 2584 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\windows\system32\DRIVERS\adp94xx.sys
13:56:24.0629 2584 adp94xx - ok
13:56:24.0649 2584 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\windows\system32\DRIVERS\adpahci.sys
13:56:24.0649 2584 adpahci - ok
13:56:24.0679 2584 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\windows\system32\DRIVERS\adpu320.sys
13:56:24.0679 2584 adpu320 - ok
13:56:24.0709 2584 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\windows\System32\aelupsvc.dll
13:56:24.0709 2584 AeLookupSvc - ok
13:56:24.0759 2584 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\windows\system32\drivers\afd.sys
13:56:24.0759 2584 AFD - ok
13:56:24.0809 2584 [ 98022774D9930ECBB292E70DB7601DF6 ] AgereSoftModem C:\windows\system32\DRIVERS\agrsm64.sys
13:56:24.0829 2584 AgereSoftModem - ok
13:56:24.0879 2584 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\windows\system32\drivers\agp440.sys
13:56:24.0879 2584 agp440 - ok
13:56:24.0909 2584 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\windows\System32\alg.exe
13:56:24.0909 2584 ALG - ok
13:56:24.0929 2584 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\windows\system32\drivers\aliide.sys
13:56:24.0929 2584 aliide - ok
13:56:24.0959 2584 [ 98A2774D3F18C107874C8C1163EBE484 ] AMD External Events Utility C:\windows\system32\atiesrxx.exe
13:56:24.0969 2584 AMD External Events Utility - ok
13:56:24.0999 2584 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\windows\system32\drivers\amdide.sys
13:56:24.0999 2584 amdide - ok
13:56:25.0039 2584 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\windows\system32\DRIVERS\amdk8.sys
13:56:25.0039 2584 AmdK8 - ok
13:56:25.0069 2584 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\windows\system32\DRIVERS\amdppm.sys
13:56:25.0069 2584 AmdPPM - ok
13:56:25.0109 2584 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\windows\system32\drivers\amdsata.sys
13:56:25.0109 2584 amdsata - ok
13:56:25.0139 2584 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\windows\system32\DRIVERS\amdsbs.sys
13:56:25.0139 2584 amdsbs - ok
13:56:25.0159 2584 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\windows\system32\drivers\amdxata.sys
13:56:25.0159 2584 amdxata - ok
13:56:25.0199 2584 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\windows\system32\drivers\appid.sys
13:56:25.0199 2584 AppID - ok
13:56:25.0229 2584 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\windows\System32\appidsvc.dll
13:56:25.0229 2584 AppIDSvc - ok
13:56:25.0259 2584 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\windows\System32\appinfo.dll
13:56:25.0269 2584 Appinfo - ok
13:56:25.0329 2584 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
13:56:25.0329 2584 Apple Mobile Device - ok
13:56:25.0389 2584 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\windows\system32\DRIVERS\arc.sys
13:56:25.0389 2584 arc - ok
13:56:25.0399 2584 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\windows\system32\DRIVERS\arcsas.sys
13:56:25.0409 2584 arcsas - ok
13:56:25.0429 2584 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\windows\system32\DRIVERS\asyncmac.sys
13:56:25.0429 2584 AsyncMac - ok
13:56:25.0459 2584 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\windows\system32\drivers\atapi.sys
13:56:25.0459 2584 atapi - ok
13:56:25.0509 2584 [ E857EEE6B92AAA473EBB3465ADD8F7E7 ] athr C:\windows\system32\DRIVERS\athrx.sys
13:56:25.0539 2584 athr - ok
13:56:25.0689 2584 [ 173F4C05F87085E9BDA3F7037BC9F40E ] atikmdag C:\windows\system32\DRIVERS\atikmdag.sys
13:56:25.0819 2584 atikmdag - ok
13:56:25.0859 2584 [ 7C5D273E29DCC5505469B299C6F29163 ] AtiPcie C:\windows\system32\DRIVERS\AtiPcie.sys
13:56:25.0859 2584 AtiPcie - ok
13:56:25.0909 2584 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\windows\System32\Audiosrv.dll
13:56:25.0919 2584 AudioEndpointBuilder - ok
13:56:25.0929 2584 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\windows\System32\Audiosrv.dll
13:56:25.0939 2584 AudioSrv - ok
13:56:25.0979 2584 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\windows\System32\AxInstSV.dll
13:56:25.0979 2584 AxInstSV - ok
13:56:26.0019 2584 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\windows\system32\DRIVERS\bxvbda.sys
13:56:26.0029 2584 b06bdrv - ok
13:56:26.0049 2584 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\windows\system32\DRIVERS\b57nd60a.sys
13:56:26.0049 2584 b57nd60a - ok
13:56:26.0099 2584 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\windows\System32\bdesvc.dll
13:56:26.0099 2584 BDESVC - ok
13:56:26.0119 2584 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\windows\system32\drivers\Beep.sys
13:56:26.0119 2584 Beep - ok
13:56:26.0169 2584 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\windows\System32\bfe.dll
13:56:26.0169 2584 BFE - ok
13:56:26.0219 2584 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\windows\system32\qmgr.dll
13:56:26.0229 2584 BITS - ok
13:56:26.0259 2584 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\windows\system32\DRIVERS\blbdrive.sys
13:56:26.0259 2584 blbdrive - ok
13:56:26.0329 2584 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
13:56:26.0339 2584 Bonjour Service - ok
13:56:26.0389 2584 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\windows\system32\DRIVERS\bowser.sys
13:56:26.0389 2584 bowser - ok
13:56:26.0429 2584 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\windows\system32\DRIVERS\BrFiltLo.sys
13:56:26.0429 2584 BrFiltLo - ok
13:56:26.0449 2584 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\windows\system32\DRIVERS\BrFiltUp.sys
13:56:26.0449 2584 BrFiltUp - ok
13:56:26.0489 2584 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\windows\System32\browser.dll
13:56:26.0499 2584 Browser - ok
13:56:26.0529 2584 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\windows\System32\Drivers\Brserid.sys
13:56:26.0529 2584 Brserid - ok
13:56:26.0549 2584 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\windows\System32\Drivers\BrSerWdm.sys
13:56:26.0549 2584 BrSerWdm - ok
13:56:26.0569 2584 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\windows\System32\Drivers\BrUsbMdm.sys
13:56:26.0569 2584 BrUsbMdm - ok
13:56:26.0589 2584 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\windows\System32\Drivers\BrUsbSer.sys
13:56:26.0589 2584 BrUsbSer - ok
13:56:26.0609 2584 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\windows\system32\DRIVERS\bthmodem.sys
13:56:26.0609 2584 BTHMODEM - ok
13:56:26.0649 2584 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\windows\system32\bthserv.dll
13:56:26.0649 2584 bthserv - ok
13:56:26.0669 2584 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\windows\system32\DRIVERS\cdfs.sys
13:56:26.0669 2584 cdfs - ok
13:56:26.0709 2584 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\windows\system32\drivers\cdrom.sys
13:56:26.0709 2584 cdrom - ok
13:56:26.0739 2584 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\windows\System32\certprop.dll
13:56:26.0739 2584 CertPropSvc - ok
13:56:26.0839 2584 [ 837FF2D497880198C918E6954DBD170C ] cfWiMAXService C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe
13:56:26.0849 2584 cfWiMAXService - ok
13:56:26.0909 2584 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\windows\system32\DRIVERS\circlass.sys
13:56:26.0909 2584 circlass - ok
13:56:26.0949 2584 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\windows\system32\CLFS.sys
13:56:26.0949 2584 CLFS - ok
13:56:27.0029 2584 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
13:56:27.0039 2584 clr_optimization_v2.0.50727_32 - ok
13:56:27.0089 2584 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
13:56:27.0089 2584 clr_optimization_v2.0.50727_64 - ok
13:56:27.0139 2584 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
13:56:27.0149 2584 clr_optimization_v4.0.30319_32 - ok
13:56:27.0209 2584 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
13:56:27.0209 2584 clr_optimization_v4.0.30319_64 - ok
13:56:27.0229 2584 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\windows\system32\DRIVERS\CmBatt.sys
13:56:27.0239 2584 CmBatt - ok
13:56:27.0269 2584 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\windows\system32\drivers\cmdide.sys
13:56:27.0269 2584 cmdide - ok
13:56:27.0309 2584 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\windows\system32\Drivers\cng.sys
13:56:27.0319 2584 CNG - ok
13:56:27.0339 2584 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\windows\system32\DRIVERS\compbatt.sys
13:56:27.0339 2584 Compbatt - ok
13:56:27.0369 2584 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\windows\system32\drivers\CompositeBus.sys
13:56:27.0369 2584 CompositeBus - ok
13:56:27.0369 2584 COMSysApp - ok
13:56:27.0399 2584 [ D252C53BCDFC199BBA55EEB10CDB266E ] ConfigFree Gadget Service C:\Program Files (x86)\TOSHIBA\ConfigFree\CFProcSRVC.exe
13:56:27.0399 2584 ConfigFree Gadget Service - ok
13:56:27.0419 2584 [ CAB0EEAF5295FC96DDD3E19DCE27E131 ] ConfigFree Service C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe
13:56:27.0429 2584 ConfigFree Service - ok
13:56:27.0449 2584 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\windows\system32\DRIVERS\crcdisk.sys
13:56:27.0449 2584 crcdisk - ok
13:56:27.0479 2584 [ 4F5414602E2544A4554D95517948B705 ] CryptSvc C:\windows\system32\cryptsvc.dll
13:56:27.0479 2584 CryptSvc - ok
13:56:27.0519 2584 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\windows\system32\rpcss.dll
13:56:27.0529 2584 DcomLaunch - ok
13:56:27.0559 2584 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\windows\System32\defragsvc.dll
13:56:27.0559 2584 defragsvc - ok
13:56:27.0589 2584 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\windows\system32\Drivers\dfsc.sys
13:56:27.0589 2584 DfsC - ok
13:56:27.0629 2584 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\windows\system32\dhcpcore.dll
13:56:27.0639 2584 Dhcp - ok
13:56:27.0669 2584 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\windows\system32\drivers\discache.sys
13:56:27.0669 2584 discache - ok
13:56:27.0679 2584 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\windows\system32\DRIVERS\disk.sys
13:56:27.0679 2584 Disk - ok
13:56:27.0709 2584 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\windows\System32\dnsrslvr.dll
13:56:27.0709 2584 Dnscache - ok
13:56:27.0759 2584 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\windows\System32\dot3svc.dll
13:56:27.0769 2584 dot3svc - ok
13:56:27.0809 2584 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\windows\system32\dps.dll
13:56:27.0819 2584 DPS - ok
13:56:27.0839 2584 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\windows\system32\drivers\drmkaud.sys
13:56:27.0839 2584 drmkaud - ok
13:56:27.0889 2584 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\windows\System32\drivers\dxgkrnl.sys
13:56:27.0899 2584 DXGKrnl - ok
13:56:27.0929 2584 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\windows\System32\eapsvc.dll
13:56:27.0929 2584 EapHost - ok
13:56:28.0039 2584 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\windows\system32\DRIVERS\evbda.sys
13:56:28.0149 2584 ebdrv - ok
13:56:28.0179 2584 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\windows\System32\lsass.exe
13:56:28.0179 2584 EFS - ok
13:56:28.0279 2584 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\windows\ehome\ehRecvr.exe
13:56:28.0289 2584 ehRecvr - ok
13:56:28.0339 2584 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\windows\ehome\ehsched.exe
13:56:28.0359 2584 ehSched - ok
13:56:28.0469 2584 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\windows\system32\DRIVERS\elxstor.sys
13:56:28.0499 2584 elxstor - ok
13:56:28.0539 2584 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\windows\system32\drivers\errdev.sys
13:56:28.0569 2584 ErrDev - ok
13:56:28.0659 2584 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\windows\system32\es.dll
13:56:28.0679 2584 EventSystem - ok
13:56:28.0709 2584 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\windows\system32\drivers\exfat.sys
13:56:28.0729 2584 exfat - ok
13:56:28.0759 2584 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\windows\system32\drivers\fastfat.sys
13:56:28.0789 2584 fastfat - ok
13:56:28.0909 2584 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\windows\system32\fxssvc.exe
13:56:28.0929 2584 Fax - ok
13:56:28.0949 2584 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\windows\system32\DRIVERS\fdc.sys
13:56:28.0959 2584 fdc - ok
13:56:28.0999 2584 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\windows\system32\fdPHost.dll
13:56:29.0009 2584 fdPHost - ok
13:56:29.0039 2584 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\windows\system32\fdrespub.dll
13:56:29.0059 2584 FDResPub - ok
13:56:29.0069 2584 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\windows\system32\drivers\fileinfo.sys
13:56:29.0089 2584 FileInfo - ok
13:56:29.0119 2584 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\windows\system32\drivers\filetrace.sys
13:56:29.0159 2584 Filetrace - ok
13:56:29.0189 2584 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\windows\system32\DRIVERS\flpydisk.sys
13:56:29.0199 2584 flpydisk - ok
13:56:29.0249 2584 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\windows\system32\drivers\fltmgr.sys
13:56:29.0259 2584 FltMgr - ok
13:56:29.0379 2584 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\windows\system32\FntCache.dll
13:56:29.0439 2584 FontCache - ok
13:56:29.0629 2584 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
13:56:29.0629 2584 FontCache3.0.0.0 - ok
13:56:29.0659 2584 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\windows\system32\drivers\FsDepends.sys
13:56:29.0659 2584 FsDepends - ok
13:56:29.0689 2584 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\windows\system32\drivers\Fs_Rec.sys
13:56:29.0689 2584 Fs_Rec - ok
13:56:29.0719 2584 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\windows\system32\DRIVERS\fvevol.sys
13:56:29.0729 2584 fvevol - ok
13:56:29.0759 2584 [ 60ACB128E64C35C2B4E4AAB1B0A5C293 ] FwLnk C:\windows\system32\DRIVERS\FwLnk.sys
13:56:29.0759 2584 FwLnk - ok
13:56:29.0779 2584 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\windows\system32\DRIVERS\gagp30kx.sys
13:56:29.0779 2584 gagp30kx - ok
13:56:29.0869 2584 [ 4FBCCBDD99A75C9EFBC90392CF32AF61 ] GameConsoleService C:\Program Files (x86)\TOSHIBA Games\TOSHIBA Game Console\GameConsoleService.exe
13:56:29.0879 2584 GameConsoleService - ok
13:56:29.0989 2584 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\windows\system32\DRIVERS\GEARAspiWDM.sys
13:56:30.0019 2584 GEARAspiWDM - ok
13:56:30.0119 2584 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\windows\System32\gpsvc.dll
13:56:30.0129 2584 gpsvc - ok
13:56:30.0209 2584 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
13:56:30.0219 2584 gupdate - ok
13:56:30.0229 2584 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
13:56:30.0229 2584 gupdatem - ok
13:56:30.0259 2584 [ CC839E8D766CC31A7710C9F38CF3E375 ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
13:56:30.0269 2584 gusvc - ok
13:56:30.0309 2584 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\windows\system32\drivers\hcw85cir.sys
13:56:30.0309 2584 hcw85cir - ok
13:56:30.0359 2584 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys
13:56:30.0369 2584 HdAudAddService - ok
13:56:30.0399 2584 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\windows\system32\drivers\HDAudBus.sys
13:56:30.0399 2584 HDAudBus - ok
13:56:30.0429 2584 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\windows\system32\DRIVERS\HidBatt.sys
13:56:30.0429 2584 HidBatt - ok
13:56:30.0429 2584 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\windows\system32\DRIVERS\hidbth.sys
13:56:30.0439 2584 HidBth - ok
13:56:30.0439 2584 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\windows\system32\DRIVERS\hidir.sys
13:56:30.0439 2584 HidIr - ok
13:56:30.0469 2584 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\windows\System32\hidserv.dll
13:56:30.0479 2584 hidserv - ok
13:56:30.0499 2584 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\windows\system32\drivers\hidusb.sys
13:56:30.0509 2584 HidUsb - ok
13:56:30.0539 2584 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\windows\system32\kmsvc.dll
13:56:30.0539 2584 hkmsvc - ok
13:56:30.0639 2584 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\windows\system32\ListSvc.dll
13:56:30.0699 2584 HomeGroupListener - ok
13:56:30.0739 2584 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\windows\system32\provsvc.dll
13:56:30.0739 2584 HomeGroupProvider - ok
13:56:30.0779 2584 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\windows\system32\drivers\HpSAMD.sys
13:56:30.0779 2584 HpSAMD - ok
13:56:30.0849 2584 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\windows\system32\drivers\HTTP.sys
13:56:30.0859 2584 HTTP - ok
13:56:30.0889 2584 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\windows\system32\drivers\hwpolicy.sys
13:56:30.0889 2584 hwpolicy - ok
13:56:30.0919 2584 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\windows\system32\drivers\i8042prt.sys
13:56:30.0919 2584 i8042prt - ok
13:56:30.0939 2584 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\windows\system32\drivers\iaStorV.sys
13:56:30.0949 2584 iaStorV - ok
13:56:31.0049 2584 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
13:56:31.0059 2584 idsvc - ok
13:56:31.0079 2584 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\windows\system32\DRIVERS\iirsp.sys
13:56:31.0089 2584 iirsp - ok
13:56:31.0129 2584 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\windows\System32\ikeext.dll
13:56:31.0139 2584 IKEEXT - ok
13:56:31.0209 2584 [ 0C3CF4B3BAE28E121A1689E3538F8712 ] IntcAzAudAddService C:\windows\system32\drivers\RTKVHD64.sys
13:56:31.0219 2584 IntcAzAudAddService - ok
13:56:31.0239 2584 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\windows\system32\drivers\intelide.sys
13:56:31.0239 2584 intelide - ok
13:56:31.0259 2584 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\windows\system32\DRIVERS\intelppm.sys
13:56:31.0269 2584 intelppm - ok
13:56:31.0299 2584 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\windows\system32\ipbusenum.dll
13:56:31.0299 2584 IPBusEnum - ok
13:56:31.0329 2584 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\windows\system32\DRIVERS\ipfltdrv.sys
13:56:31.0329 2584 IpFilterDriver - ok
13:56:31.0369 2584 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\windows\System32\iphlpsvc.dll
13:56:31.0369 2584 iphlpsvc - ok
13:56:31.0399 2584 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\windows\system32\drivers\IPMIDrv.sys
13:56:31.0409 2584 IPMIDRV - ok
13:56:31.0439 2584 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\windows\system32\drivers\ipnat.sys
13:56:31.0439 2584 IPNAT - ok
13:56:31.0529 2584 [ 6E50CFA46527B39015B750AAD161C5CC ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
13:56:31.0539 2584 iPod Service - ok
13:56:31.0559 2584 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\windows\system32\drivers\irenum.sys
13:56:31.0559 2584 IRENUM - ok
13:56:31.0589 2584 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\windows\system32\drivers\isapnp.sys
13:56:31.0589 2584 isapnp - ok
13:56:31.0629 2584 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\windows\system32\drivers\msiscsi.sys
13:56:31.0629 2584 iScsiPrt - ok
13:56:31.0649 2584 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\windows\system32\drivers\kbdclass.sys
13:56:31.0649 2584 kbdclass - ok
13:56:31.0679 2584 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\windows\system32\drivers\kbdhid.sys
13:56:31.0679 2584 kbdhid - ok
13:56:31.0689 2584 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\windows\system32\lsass.exe
13:56:31.0689 2584 KeyIso - ok
13:56:31.0719 2584 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\windows\system32\Drivers\ksecdd.sys
13:56:31.0719 2584 KSecDD - ok
13:56:31.0819 2584 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\windows\system32\Drivers\ksecpkg.sys
13:56:31.0819 2584 KSecPkg - ok
13:56:31.0849 2584 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\windows\system32\drivers\ksthunk.sys
13:56:31.0899 2584 ksthunk - ok
13:56:32.0039 2584 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\windows\system32\msdtckrm.dll
13:56:32.0049 2584 KtmRm - ok
13:56:32.0079 2584 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\windows\System32\srvsvc.dll
13:56:32.0079 2584 LanmanServer - ok
13:56:32.0119 2584 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\windows\System32\wkssvc.dll
13:56:32.0119 2584 LanmanWorkstation - ok
13:56:32.0139 2584 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\windows\system32\DRIVERS\lltdio.sys
13:56:32.0139 2584 lltdio - ok
13:56:32.0169 2584 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\windows\System32\lltdsvc.dll
13:56:32.0169 2584 lltdsvc - ok
13:56:32.0189 2584 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\windows\System32\lmhsvc.dll
13:56:32.0189 2584 lmhosts - ok
13:56:32.0219 2584 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\windows\system32\DRIVERS\lsi_fc.sys
13:56:32.0229 2584 LSI_FC - ok
13:56:32.0229 2584 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\windows\system32\DRIVERS\lsi_sas.sys
13:56:32.0229 2584 LSI_SAS - ok
13:56:32.0239 2584 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\windows\system32\DRIVERS\lsi_sas2.sys
13:56:32.0249 2584 LSI_SAS2 - ok
13:56:32.0259 2584 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\windows\system32\DRIVERS\lsi_scsi.sys
13:56:32.0269 2584 LSI_SCSI - ok
13:56:32.0279 2584 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\windows\system32\drivers\luafv.sys
13:56:32.0289 2584 luafv - ok
13:56:32.0289 2584 MCSTRM - ok
13:56:32.0309 2584 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\windows\system32\Mcx2Svc.dll
13:56:32.0319 2584 Mcx2Svc - ok
13:56:32.0329 2584 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\windows\system32\DRIVERS\megasas.sys
13:56:32.0329 2584 megasas - ok
13:56:32.0349 2584 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\windows\system32\DRIVERS\MegaSR.sys
13:56:32.0369 2584 MegaSR - ok
13:56:32.0429 2584 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\windows\system32\mmcss.dll
13:56:32.0429 2584 MMCSS - ok
13:56:32.0429 2584 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\windows\system32\drivers\modem.sys
13:56:32.0439 2584 Modem - ok
13:56:32.0459 2584 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\windows\system32\DRIVERS\monitor.sys
13:56:32.0459 2584 monitor - ok
13:56:32.0469 2584 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\windows\system32\drivers\mouclass.sys
13:56:32.0479 2584 mouclass - ok
13:56:32.0489 2584 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\windows\system32\DRIVERS\mouhid.sys
13:56:32.0499 2584 mouhid - ok
13:56:32.0529 2584 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\windows\system32\drivers\mountmgr.sys
13:56:32.0529 2584 mountmgr - ok
13:56:32.0619 2584 [ 46297FA8E30A6007F14118FC2B942FBC ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
13:56:32.0629 2584 MozillaMaintenance - ok
13:56:32.0679 2584 [ 94C66EDEDCDB6A126880472F9A704D8E ] MpFilter C:\windows\system32\DRIVERS\MpFilter.sys
13:56:32.0679 2584 MpFilter - ok
13:56:32.0719 2584 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\windows\system32\drivers\mpio.sys
13:56:32.0719 2584 mpio - ok
13:56:32.0749 2584 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\windows\system32\drivers\mpsdrv.sys
13:56:32.0749 2584 mpsdrv - ok
13:56:32.0889 2584 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\windows\system32\mpssvc.dll
13:56:32.0909 2584 MpsSvc - ok
13:56:32.0949 2584 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\windows\system32\drivers\mrxdav.sys
13:56:32.0949 2584 MRxDAV - ok
13:56:32.0989 2584 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\windows\system32\DRIVERS\mrxsmb.sys
13:56:32.0989 2584 mrxsmb - ok
13:56:33.0029 2584 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\windows\system32\DRIVERS\mrxsmb10.sys
13:56:33.0029 2584 mrxsmb10 - ok
13:56:33.0039 2584 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\windows\system32\DRIVERS\mrxsmb20.sys
13:56:33.0039 2584 mrxsmb20 - ok
13:56:33.0049 2584 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\windows\system32\drivers\msahci.sys
13:56:33.0049 2584 msahci - ok
13:56:33.0079 2584 [ A592A054D78750B4D73ABAA4C94DECDF ] MSCamSvc C:\Program Files\Microsoft LifeCam\MSCamS64.exe
13:56:33.0089 2584 MSCamSvc - ok
13:56:33.0109 2584 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\windows\system32\drivers\msdsm.sys
13:56:33.0109 2584 msdsm - ok
13:56:33.0159 2584 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\windows\System32\msdtc.exe
13:56:33.0169 2584 MSDTC - ok
13:56:33.0179 2584 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\windows\system32\drivers\Msfs.sys
13:56:33.0189 2584 Msfs - ok
13:56:33.0199 2584 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\windows\System32\drivers\mshidkmdf.sys
13:56:33.0209 2584 mshidkmdf - ok
13:56:33.0219 2584 [ 55218F924E55FD2786ED40EDF4ED79C3 ] MSHUSBVideo C:\windows\system32\Drivers\nx6000.sys
13:56:33.0229 2584 MSHUSBVideo - ok
13:56:33.0249 2584 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\windows\system32\drivers\msisadrv.sys
13:56:33.0249 2584 msisadrv - ok
13:56:33.0299 2584 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\windows\system32\iscsiexe.dll
13:56:33.0299 2584 MSiSCSI - ok
13:56:33.0309 2584 msiserver - ok
13:56:33.0329 2584 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\windows\system32\drivers\MSKSSRV.sys
13:56:33.0339 2584 MSKSSRV - ok
13:56:33.0419 2584 [ 59FAAF2C83C8169EA20F9E335E418907 ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
13:56:33.0419 2584 MsMpSvc - ok
13:56:33.0429 2584 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\windows\system32\drivers\MSPCLOCK.sys
13:56:33.0429 2584 MSPCLOCK - ok
13:56:33.0439 2584 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\windows\system32\drivers\MSPQM.sys
13:56:33.0439 2584 MSPQM - ok
13:56:33.0479 2584 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\windows\system32\drivers\MsRPC.sys
13:56:33.0489 2584 MsRPC - ok
13:56:33.0529 2584 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\windows\system32\drivers\mssmbios.sys
13:56:33.0529 2584 mssmbios - ok
13:56:33.0549 2584 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\windows\system32\drivers\MSTEE.sys
13:56:33.0549 2584 MSTEE - ok
13:56:33.0559 2584 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\windows\system32\DRIVERS\MTConfig.sys
13:56:33.0569 2584 MTConfig - ok
13:56:33.0589 2584 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\windows\system32\Drivers\mup.sys
13:56:33.0589 2584 Mup - ok
13:56:33.0619 2584 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\windows\system32\qagentRT.dll
13:56:33.0629 2584 napagent - ok
13:56:33.0649 2584 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\windows\system32\DRIVERS\nwifi.sys
13:56:33.0659 2584 NativeWifiP - ok
13:56:33.0709 2584 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\windows\system32\drivers\ndis.sys
13:56:33.0719 2584 NDIS - ok
13:56:33.0739 2584 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\windows\system32\DRIVERS\ndiscap.sys
13:56:33.0739 2584 NdisCap - ok
13:56:33.0759 2584 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\windows\system32\DRIVERS\ndistapi.sys
13:56:33.0759 2584 NdisTapi - ok
13:56:33.0789 2584 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\windows\system32\DRIVERS\ndisuio.sys
13:56:33.0799 2584 Ndisuio - ok
13:56:33.0819 2584 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\windows\system32\DRIVERS\ndiswan.sys
13:56:33.0819 2584 NdisWan - ok
13:56:33.0859 2584 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\windows\system32\drivers\NDProxy.sys
13:56:33.0859 2584 NDProxy - ok
13:56:33.0859 2584 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\windows\system32\DRIVERS\netbios.sys
13:56:33.0859 2584 NetBIOS - ok
13:56:33.0909 2584 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\windows\system32\DRIVERS\netbt.sys
13:56:33.0919 2584 NetBT - ok
13:56:33.0939 2584 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\windows\system32\lsass.exe
13:56:33.0939 2584 Netlogon - ok
13:56:33.0979 2584 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\windows\System32\netman.dll
13:56:33.0989 2584 Netman - ok
13:56:34.0019 2584 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\windows\System32\netprofm.dll
13:56:34.0029 2584 netprofm - ok
13:56:34.0059 2584 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
13:56:34.0059 2584 NetTcpPortSharing - ok
13:56:34.0089 2584 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\windows\system32\DRIVERS\nfrd960.sys
13:56:34.0089 2584 nfrd960 - ok
13:56:34.0139 2584 [ 91B4E0273D2F6C24EF845F2B41311289 ] NisDrv C:\windows\system32\DRIVERS\NisDrvWFP.sys
13:56:34.0139 2584 NisDrv - ok
13:56:34.0179 2584 [ 10A43829A9E606AF3EEF25A1C1665923 ] NisSrv c:\Program Files\Microsoft Security Client\NisSrv.exe
13:56:34.0189 2584 NisSrv - ok
13:56:34.0219 2584 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\windows\System32\nlasvc.dll
13:56:34.0219 2584 NlaSvc - ok
13:56:34.0229 2584 Normandy - ok
13:56:34.0249 2584 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\windows\system32\drivers\Npfs.sys
13:56:34.0249 2584 Npfs - ok
13:56:34.0279 2584 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\windows\system32\nsisvc.dll
13:56:34.0279 2584 nsi - ok
13:56:34.0299 2584 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\windows\system32\drivers\nsiproxy.sys
13:56:34.0309 2584 nsiproxy - ok
13:56:34.0379 2584 [ A2F74975097F52A00745F9637451FDD8 ] Ntfs C:\windows\system32\drivers\Ntfs.sys
13:56:34.0439 2584 Ntfs - ok
13:56:34.0459 2584 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\windows\system32\drivers\Null.sys
13:56:34.0469 2584 Null - ok
13:56:34.0499 2584 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\windows\system32\drivers\nvraid.sys
13:56:34.0499 2584 nvraid - ok
13:56:34.0519 2584 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\windows\system32\drivers\nvstor.sys
13:56:34.0519 2584 nvstor - ok
13:56:34.0539 2584 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\windows\system32\drivers\nv_agp.sys
13:56:34.0539 2584 nv_agp - ok
13:56:34.0569 2584 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\windows\system32\drivers\ohci1394.sys
13:56:34.0569 2584 ohci1394 - ok
13:56:34.0639 2584 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
13:56:34.0649 2584 ose - ok
13:56:34.0809 2584 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
13:56:34.0969 2584 osppsvc - ok
13:56:34.0999 2584 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\windows\system32\pnrpsvc.dll
13:56:34.0999 2584 p2pimsvc - ok
13:56:35.0019 2584 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\windows\system32\p2psvc.dll
13:56:35.0029 2584 p2psvc - ok
13:56:35.0069 2584 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\windows\system32\DRIVERS\parport.sys
13:56:35.0069 2584 Parport - ok
13:56:35.0099 2584 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\windows\system32\drivers\partmgr.sys
13:56:35.0109 2584 partmgr - ok
13:56:35.0139 2584 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\windows\System32\pcasvc.dll
13:56:35.0149 2584 PcaSvc - ok
13:56:35.0179 2584 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\windows\system32\drivers\pci.sys
13:56:35.0179 2584 pci - ok
13:56:35.0189 2584 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\windows\system32\drivers\pciide.sys
13:56:35.0189 2584 pciide - ok
13:56:35.0209 2584 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\windows\system32\DRIVERS\pcmcia.sys
13:56:35.0219 2584 pcmcia - ok
13:56:35.0219 2584 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\windows\system32\drivers\pcw.sys
13:56:35.0219 2584 pcw - ok
13:56:35.0309 2584 [ 3F87885CB3767BFD27811B3CA3CC608D ] PDFProFiltSrv C:\Program Files (x86)\Nuance\PDF Professional 7\PDFProFiltSrv.exe
13:56:35.0349 2584 PDFProFiltSrv - ok
13:56:35.0399 2584 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\windows\system32\drivers\peauth.sys
13:56:35.0399 2584 PEAUTH - ok
13:56:35.0489 2584 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\windows\SysWow64\perfhost.exe
13:56:35.0489 2584 PerfHost - ok
13:56:35.0579 2584 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\windows\system32\pla.dll
13:56:35.0599 2584 pla - ok
13:56:35.0649 2584 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\windows\system32\umpnpmgr.dll
13:56:35.0659 2584 PlugPlay - ok
13:56:35.0669 2584 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\windows\system32\pnrpauto.dll
13:56:35.0679 2584 PNRPAutoReg - ok
13:56:35.0699 2584 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\windows\system32\pnrpsvc.dll
13:56:35.0699 2584 PNRPsvc - ok
13:56:35.0739 2584 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\windows\System32\ipsecsvc.dll
13:56:35.0739 2584 PolicyAgent - ok
13:56:35.0769 2584 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\windows\system32\umpo.dll
13:56:35.0769 2584 Power - ok
13:56:35.0799 2584 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\windows\system32\DRIVERS\raspptp.sys
13:56:35.0799 2584 PptpMiniport - ok
13:56:35.0829 2584 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\windows\system32\DRIVERS\processr.sys
13:56:35.0829 2584 Processor - ok
13:56:35.0869 2584 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\windows\system32\profsvc.dll
13:56:35.0869 2584 ProfSvc - ok
13:56:35.0919 2584 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\windows\system32\lsass.exe
13:56:35.0919 2584 ProtectedStorage - ok
13:56:35.0949 2584 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\windows\system32\DRIVERS\pacer.sys
13:56:35.0949 2584 Psched - ok
13:56:35.0959 2584 PTQHBUS - ok
13:56:35.0959 2584 PTQHMDM - ok
13:56:35.0969 2584 PTQHVSP - ok
13:56:36.0009 2584 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\windows\system32\DRIVERS\ql2300.sys
13:56:36.0029 2584 ql2300 - ok
13:56:36.0049 2584 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\windows\system32\DRIVERS\ql40xx.sys
13:56:36.0059 2584 ql40xx - ok
13:56:36.0079 2584 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\windows\system32\qwave.dll
13:56:36.0089 2584 QWAVE - ok
13:56:36.0099 2584 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\windows\system32\drivers\qwavedrv.sys
13:56:36.0099 2584 QWAVEdrv - ok
13:56:36.0109 2584 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\windows\system32\DRIVERS\rasacd.sys
13:56:36.0119 2584 RasAcd - ok
13:56:36.0149 2584 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\windows\system32\DRIVERS\AgileVpn.sys
13:56:36.0149 2584 RasAgileVpn - ok
13:56:36.0169 2584 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\windows\System32\rasauto.dll
13:56:36.0189 2584 RasAuto - ok
13:56:36.0199 2584 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\windows\system32\DRIVERS\rasl2tp.sys
13:56:36.0199 2584 Rasl2tp - ok
13:56:36.0239 2584 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\windows\System32\rasmans.dll
13:56:36.0249 2584 RasMan - ok
13:56:36.0279 2584 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\windows\system32\DRIVERS\raspppoe.sys
13:56:36.0279 2584 RasPppoe - ok
13:56:36.0279 2584 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\windows\system32\DRIVERS\rassstp.sys
13:56:36.0279 2584 RasSstp - ok
13:56:36.0309 2584 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\windows\system32\DRIVERS\rdbss.sys
13:56:36.0309 2584 rdbss - ok
13:56:36.0319 2584 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\windows\system32\DRIVERS\rdpbus.sys
13:56:36.0319 2584 rdpbus - ok
13:56:36.0329 2584 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\windows\system32\DRIVERS\RDPCDD.sys
13:56:36.0329 2584 RDPCDD - ok
13:56:36.0339 2584 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\windows\system32\drivers\rdpencdd.sys
13:56:36.0339 2584 RDPENCDD - ok
13:56:36.0349 2584 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\windows\system32\drivers\rdprefmp.sys
13:56:36.0349 2584 RDPREFMP - ok
13:56:36.0379 2584 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\windows\system32\drivers\RDPWD.sys
13:56:36.0379 2584 RDPWD - ok
13:56:36.0409 2584 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\windows\system32\drivers\rdyboost.sys
13:56:36.0419 2584 rdyboost - ok
13:56:36.0469 2584 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\windows\System32\mprdim.dll
13:56:36.0469 2584 RemoteAccess - ok
13:56:36.0499 2584 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\windows\system32\regsvc.dll
13:56:36.0509 2584 RemoteRegistry - ok
13:56:36.0529 2584 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\windows\System32\RpcEpMap.dll
13:56:36.0539 2584 RpcEptMapper - ok
13:56:36.0559 2584 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\windows\system32\locator.exe
13:56:36.0559 2584 RpcLocator - ok
13:56:36.0589 2584 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\windows\system32\rpcss.dll
13:56:36.0599 2584 RpcSs - ok
13:56:36.0619 2584 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\windows\system32\DRIVERS\rspndr.sys
13:56:36.0619 2584 rspndr - ok
13:56:36.0659 2584 [ 8C22F21C924413D4E109995F748E18BB ] RSUSBSTOR C:\windows\system32\Drivers\RtsUStor.sys
13:56:36.0669 2584 RSUSBSTOR - ok
13:56:36.0719 2584 [ EE082E06A82FF630351D1E0EBBD3D8D0 ] RTL8167 C:\windows\system32\DRIVERS\Rt64win7.sys
13:56:36.0729 2584 RTL8167 - ok
13:56:36.0759 2584 [ CF8FD8A8CB249D38E41E0318E2032C38 ] RTL8187Se C:\windows\system32\DRIVERS\RTL8187Se.sys
13:56:36.0769 2584 RTL8187Se - ok
13:56:36.0769 2584 RtsUIR - ok
13:56:36.0789 2584 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\windows\system32\lsass.exe
13:56:36.0799 2584 SamSs - ok
13:56:36.0829 2584 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\windows\system32\drivers\sbp2port.sys
13:56:36.0829 2584 sbp2port - ok
13:56:36.0849 2584 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\windows\System32\SCardSvr.dll
13:56:36.0859 2584 SCardSvr - ok
13:56:36.0889 2584 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\windows\system32\DRIVERS\scfilter.sys
13:56:36.0889 2584 scfilter - ok
13:56:36.0919 2584 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\windows\system32\schedsvc.dll
13:56:36.0939 2584 Schedule - ok
13:56:36.0959 2584 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\windows\System32\certprop.dll
13:56:36.0969 2584 SCPolicySvc - ok
13:56:37.0019 2584 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\windows\System32\SDRSVC.dll
13:56:37.0019 2584 SDRSVC - ok
13:56:37.0059 2584 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\windows\system32\drivers\secdrv.sys
13:56:37.0059 2584 secdrv - ok
13:56:37.0109 2584 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\windows\system32\seclogon.dll
13:56:37.0119 2584 seclogon - ok
13:56:37.0139 2584 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\windows\system32\sens.dll
13:56:37.0149 2584 SENS - ok
13:56:37.0169 2584 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\windows\system32\sensrsvc.dll
13:56:37.0169 2584 SensrSvc - ok
13:56:37.0189 2584 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\windows\system32\DRIVERS\serenum.sys
13:56:37.0189 2584 Serenum - ok
13:56:37.0219 2584 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\windows\system32\DRIVERS\serial.sys
13:56:37.0229 2584 Serial - ok
13:56:37.0269 2584 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\windows\system32\DRIVERS\sermouse.sys
13:56:37.0269 2584 sermouse - ok
13:56:37.0299 2584 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\windows\system32\sessenv.dll
13:56:37.0299 2584 SessionEnv - ok
13:56:37.0329 2584 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\windows\system32\drivers\sffdisk.sys
13:56:37.0329 2584 sffdisk - ok
13:56:37.0339 2584 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\windows\system32\drivers\sffp_mmc.sys
13:56:37.0339 2584 sffp_mmc - ok
13:56:37.0349 2584 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\windows\system32\drivers\sffp_sd.sys
13:56:37.0349 2584 sffp_sd - ok
13:56:37.0369 2584 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\windows\system32\DRIVERS\sfloppy.sys
13:56:37.0379 2584 sfloppy - ok
13:56:37.0419 2584 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\windows\System32\ipnathlp.dll
13:56:37.0429 2584 SharedAccess - ok
13:56:37.0499 2584 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\windows\System32\shsvcs.dll
13:56:37.0519 2584 ShellHWDetection - ok
13:56:37.0539 2584 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\windows\system32\DRIVERS\SiSRaid2.sys
13:56:37.0549 2584 SiSRaid2 - ok
13:56:37.0559 2584 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\windows\system32\DRIVERS\sisraid4.sys
13:56:37.0579 2584 SiSRaid4 - ok
13:56:37.0629 2584 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
13:56:37.0639 2584 SkypeUpdate - ok
13:56:37.0649 2584 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\windows\system32\DRIVERS\smb.sys
13:56:37.0649 2584 Smb - ok
13:56:37.0679 2584 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\windows\System32\snmptrap.exe
13:56:37.0689 2584 SNMPTRAP - ok
13:56:37.0699 2584 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\windows\system32\drivers\spldr.sys
13:56:37.0699 2584 spldr - ok
13:56:37.0739 2584 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\windows\System32\spoolsv.exe
13:56:37.0759 2584 Spooler - ok
13:56:37.0859 2584 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\windows\system32\sppsvc.exe
13:56:37.0959 2584 sppsvc - ok
13:56:38.0009 2584 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\windows\system32\sppuinotify.dll
13:56:38.0009 2584 sppuinotify - ok
13:56:38.0039 2584 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\windows\system32\DRIVERS\srv.sys
13:56:38.0049 2584 srv - ok
13:56:38.0069 2584 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\windows\system32\DRIVERS\srv2.sys
13:56:38.0069 2584 srv2 - ok
13:56:38.0079 2584 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\windows\system32\DRIVERS\srvnet.sys
13:56:38.0079 2584 srvnet - ok
13:56:38.0139 2584 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\windows\System32\ssdpsrv.dll
13:56:38.0149 2584 SSDPSRV - ok
13:56:38.0159 2584 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\windows\system32\sstpsvc.dll
13:56:38.0169 2584 SstpSvc - ok
13:56:38.0199 2584 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\windows\system32\DRIVERS\stexstor.sys
13:56:38.0209 2584 stexstor - ok
13:56:38.0239 2584 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\windows\System32\wiaservc.dll
13:56:38.0249 2584 stisvc - ok
13:56:38.0289 2584 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\windows\system32\drivers\swenum.sys
13:56:38.0289 2584 swenum - ok
13:56:38.0309 2584 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\windows\System32\swprv.dll
13:56:38.0319 2584 swprv - ok
13:56:38.0359 2584 [ BE7311DA9D6833FA69ED04B744A1C8F8 ] SynTP C:\windows\system32\DRIVERS\SynTP.sys
13:56:38.0359 2584 SynTP - ok
13:56:38.0439 2584 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\windows\system32\sysmain.dll
13:56:38.0459 2584 SysMain - ok
13:56:38.0489 2584 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\windows\System32\TabSvc.dll
13:56:38.0499 2584 TabletInputService - ok
13:56:38.0529 2584 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\windows\System32\tapisrv.dll
13:56:38.0529 2584 TapiSrv - ok
13:56:38.0559 2584 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\windows\System32\tbssvc.dll
13:56:38.0559 2584 TBS - ok
13:56:38.0629 2584 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] Tcpip C:\windows\system32\drivers\tcpip.sys
13:56:38.0659 2584 Tcpip - ok
13:56:38.0679 2584 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] TCPIP6 C:\windows\system32\DRIVERS\tcpip.sys
13:56:38.0689 2584 TCPIP6 - ok
13:56:38.0709 2584 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\windows\system32\drivers\tcpipreg.sys
13:56:38.0719 2584 tcpipreg - ok
13:56:38.0749 2584 [ FD542B661BD22FA69CA789AD0AC58C29 ] tdcmdpst C:\windows\system32\DRIVERS\tdcmdpst.sys
13:56:38.0749 2584 tdcmdpst - ok
13:56:38.0769 2584 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\windows\system32\drivers\tdpipe.sys
13:56:38.0779 2584 TDPIPE - ok
13:56:38.0829 2584 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\windows\system32\drivers\tdtcp.sys
13:56:38.0829 2584 TDTCP - ok
13:56:38.0869 2584 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\windows\system32\DRIVERS\tdx.sys
13:56:38.0869 2584 tdx - ok
13:56:38.0999 2584 [ 8A9828975A857E477EFEF5A61BA45AC0 ] TeamViewer6 C:\Program Files (x86)\TeamViewer\Version6\TeamViewer_Service.exe
13:56:39.0109 2584 TeamViewer6 - ok
13:56:39.0129 2584 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\windows\system32\drivers\termdd.sys
13:56:39.0129 2584 TermDD - ok
13:56:39.0169 2584 [ 2E648163254233755035B46DD7B89123 ] TermService C:\windows\System32\termsrv.dll
13:56:39.0179 2584 TermService - ok
13:56:39.0199 2584 [ F0344071948D1A1FA732231785A0664C ] Themes C:\windows\system32\themeservice.dll
13:56:39.0209 2584 Themes - ok
13:56:39.0239 2584 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\windows\system32\mmcss.dll
13:56:39.0239 2584 THREADORDER - ok
13:56:39.0339 2584 [ F120967184A27E927052E8DDBB727851 ] TMachInfo C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
13:56:39.0439 2584 TMachInfo - ok
13:56:39.0529 2584 [ ED32035BDFECED1AD66D459FD9CC1140 ] TODDSrv C:\Windows\system32\TODDSrv.exe
13:56:39.0559 2584 TODDSrv - ok
13:56:39.0869 2584 [ 06C61275ADC64F1E36240A2287998A5E ] TosCoSrv C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
13:56:40.0059 2584 TosCoSrv - ok
13:56:40.0159 2584 [ 32FF64D06A91DAA0331C624AFF442679 ] TOSHIBA eco Utility Service C:\Program Files\TOSHIBA\TECO\TecoService.exe
13:56:40.0209 2584 TOSHIBA eco Utility Service - ok
13:56:40.0309 2584 [ DD58E1250F604CBBADDA04575E5E2376 ] TOSHIBA HDD SSD Alert Service C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
13:56:40.0359 2584 TOSHIBA HDD SSD Alert Service - ok
13:56:40.0459 2584 [ 09FF7B0B1B5C3D225495CB6F5A9B39F8 ] tos_sps64 C:\windows\system32\DRIVERS\tos_sps64.sys
13:56:40.0469 2584 tos_sps64 - ok
13:56:40.0669 2584 [ DE64C52BD0671165CF2EEBF2A728A3E2 ] TPCHSrv C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
13:56:40.0769 2584 TPCHSrv - ok
13:56:40.0789 2584 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\windows\System32\trkwks.dll
13:56:40.0809 2584 TrkWks - ok
13:56:40.0909 2584 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe
13:56:40.0979 2584 TrustedInstaller - ok
13:56:41.0009 2584 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\windows\system32\DRIVERS\tssecsrv.sys
13:56:41.0009 2584 tssecsrv - ok
13:56:41.0089 2584 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\windows\system32\drivers\tsusbflt.sys
13:56:41.0109 2584 TsUsbFlt - ok
13:56:41.0669 2584 [ DC0F2A0C445EF104BC240954D3A460C2 ] TuneUp.UtilitiesSvc C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesService64.exe
13:56:41.0959 2584 TuneUp.UtilitiesSvc - ok
13:56:42.0019 2584 [ DCC94C51D27C7EC0DADECA8F64C94FCF ] TuneUpUtilitiesDrv C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesDriver64.sys
13:56:42.0019 2584 TuneUpUtilitiesDrv - ok
13:56:42.0059 2584 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\windows\system32\DRIVERS\tunnel.sys
13:56:42.0069 2584 tunnel - ok
13:56:42.0109 2584 [ 550B567F9364D8F7684C3FB3EA665A72 ] TVALZ C:\windows\system32\DRIVERS\TVALZ_O.SYS
13:56:42.0119 2584 TVALZ - ok
13:56:42.0159 2584 [ 9C7191F4B2E49BFF47A6C1144B5923FA ] TVALZFL C:\windows\system32\DRIVERS\TVALZFL.sys
13:56:42.0159 2584 TVALZFL - ok
13:56:42.0209 2584 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\windows\system32\DRIVERS\uagp35.sys
13:56:42.0219 2584 uagp35 - ok
13:56:42.0259 2584 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\windows\system32\DRIVERS\udfs.sys
13:56:42.0279 2584 udfs - ok
13:56:42.0319 2584 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\windows\system32\UI0Detect.exe
13:56:42.0429 2584 UI0Detect - ok
13:56:42.0449 2584 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\windows\system32\drivers\uliagpkx.sys
13:56:42.0449 2584 uliagpkx - ok
13:56:42.0499 2584 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\windows\system32\DRIVERS\umbus.sys
13:56:42.0509 2584 umbus - ok
13:56:42.0549 2584 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\windows\system32\DRIVERS\umpass.sys
13:56:42.0569 2584 UmPass - ok
13:56:42.0619 2584 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\windows\System32\upnphost.dll
13:56:42.0639 2584 upnphost - ok
13:56:42.0669 2584 [ AF1B9474D67897D0C2CFF58E0ACEACCC ] USBAAPL64 C:\windows\system32\Drivers\usbaapl64.sys
13:56:42.0689 2584 USBAAPL64 - ok
13:56:42.0719 2584 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:\windows\system32\drivers\usbaudio.sys
13:56:42.0739 2584 usbaudio - ok
13:56:42.0769 2584 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\windows\system32\DRIVERS\usbccgp.sys
13:56:42.0789 2584 usbccgp - ok
13:56:42.0789 2584 USBCCID - ok
13:56:42.0849 2584 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\windows\system32\drivers\usbcir.sys
13:56:42.0869 2584 usbcir - ok
13:56:42.0929 2584 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\windows\system32\DRIVERS\usbehci.sys
13:56:42.0939 2584 usbehci - ok
13:56:42.0959 2584 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\windows\system32\DRIVERS\usbhub.sys
13:56:42.0969 2584 usbhub - ok
13:56:42.0999 2584 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\windows\system32\DRIVERS\usbohci.sys
13:56:43.0009 2584 usbohci - ok
13:56:43.0099 2584 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\windows\system32\DRIVERS\usbprint.sys
13:56:43.0259 2584 usbprint - ok
13:56:43.0319 2584 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\windows\system32\DRIVERS\usbscan.sys
13:56:43.0339 2584 usbscan - ok
13:56:43.0389 2584 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\windows\system32\DRIVERS\USBSTOR.SYS
13:56:43.0409 2584 USBSTOR - ok
13:56:43.0449 2584 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\windows\system32\drivers\usbuhci.sys
13:56:43.0469 2584 usbuhci - ok
13:56:43.0509 2584 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\windows\system32\Drivers\usbvideo.sys
13:56:43.0519 2584 usbvideo - ok
13:56:43.0539 2584 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\windows\System32\uxsms.dll
13:56:43.0559 2584 UxSms - ok
13:56:43.0659 2584 [ 04611BC8F101EF6BAE519260EE4225D4 ] UxTuneUp C:\windows\System32\uxtuneup.dll
13:56:43.0679 2584 UxTuneUp - ok
13:56:43.0709 2584 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\windows\system32\lsass.exe
13:56:43.0709 2584 VaultSvc - ok
13:56:43.0749 2584 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\windows\system32\drivers\vdrvroot.sys
13:56:43.0749 2584 vdrvroot - ok
13:56:43.0799 2584 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\windows\System32\vds.exe
13:56:43.0819 2584 vds - ok
13:56:43.0859 2584 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\windows\system32\DRIVERS\vgapnp.sys
13:56:43.0859 2584 vga - ok
13:56:43.0879 2584 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\windows\System32\drivers\vga.sys
13:56:43.0889 2584 VgaSave - ok
13:56:43.0939 2584 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\windows\system32\drivers\vhdmp.sys
13:56:43.0949 2584 vhdmp - ok
13:56:43.0989 2584 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\windows\system32\drivers\viaide.sys
13:56:43.0999 2584 viaide - ok
13:56:44.0029 2584 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\windows\system32\drivers\volmgr.sys
13:56:44.0039 2584 volmgr - ok
13:56:44.0079 2584 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\windows\system32\drivers\volmgrx.sys
13:56:44.0079 2584 volmgrx - ok
13:56:44.0109 2584 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\windows\system32\drivers\volsnap.sys
13:56:44.0129 2584 volsnap - ok
13:56:44.0179 2584 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\windows\system32\DRIVERS\vsmraid.sys
13:56:44.0179 2584 vsmraid - ok
13:56:44.0399 2584 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\windows\system32\vssvc.exe
13:56:44.0429 2584 VSS - ok
13:56:44.0469 2584 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\windows\system32\DRIVERS\vwifibus.sys
13:56:44.0469 2584 vwifibus - ok
13:56:44.0479 2584 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\windows\system32\DRIVERS\vwififlt.sys
13:56:44.0499 2584 vwififlt - ok
13:56:44.0599 2584 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\windows\system32\DRIVERS\vwifimp.sys
13:56:44.0619 2584 vwifimp - ok
13:56:44.0699 2584 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\windows\system32\w32time.dll
13:56:44.0729 2584 W32Time - ok
13:56:44.0759 2584 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\windows\system32\DRIVERS\wacompen.sys
13:56:44.0779 2584 WacomPen - ok
13:56:44.0829 2584 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\windows\system32\DRIVERS\wanarp.sys
13:56:44.0839 2584 WANARP - ok
13:56:44.0839 2584 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\windows\system32\DRIVERS\wanarp.sys
13:56:44.0839 2584 Wanarpv6 - ok
13:56:45.0049 2584 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\windows\system32\Wat\WatAdminSvc.exe
13:56:45.0109 2584 WatAdminSvc - ok
13:56:45.0309 2584 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\windows\system32\wbengine.exe
13:56:45.0349 2584 wbengine - ok
13:56:45.0409 2584 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\windows\System32\wbiosrvc.dll
13:56:45.0429 2584 WbioSrvc - ok
13:56:45.0499 2584 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\windows\System32\wcncsvc.dll
13:56:45.0509 2584 wcncsvc - ok
13:56:45.0539 2584 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll
13:56:45.0559 2584 WcsPlugInService - ok
13:56:45.0629 2584 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\windows\system32\DRIVERS\wd.sys
13:56:45.0639 2584 Wd - ok
13:56:45.0719 2584 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\windows\system32\drivers\Wdf01000.sys
13:56:45.0739 2584 Wdf01000 - ok
13:56:45.0759 2584 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\windows\system32\wdi.dll
13:56:45.0779 2584 WdiServiceHost - ok
13:56:45.0789 2584 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\windows\system32\wdi.dll
13:56:45.0799 2584 WdiSystemHost - ok
13:56:45.0879 2584 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\windows\System32\webclnt.dll
13:56:45.0889 2584 WebClient - ok
13:56:45.0939 2584 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\windows\system32\wecsvc.dll
13:56:45.0959 2584 Wecsvc - ok
13:56:45.0969 2584 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\windows\System32\wercplsupport.dll
13:56:45.0989 2584 wercplsupport - ok
13:56:46.0009 2584 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\windows\System32\WerSvc.dll
13:56:46.0029 2584 WerSvc - ok
13:56:46.0049 2584 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\windows\system32\DRIVERS\wfplwf.sys
13:56:46.0069 2584 WfpLwf - ok
13:56:46.0089 2584 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\windows\system32\drivers\wimmount.sys
13:56:46.0109 2584 WIMMount - ok
13:56:46.0129 2584 WinDefend - ok
13:56:46.0139 2584 WinHttpAutoProxySvc - ok
13:56:46.0289 2584 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\windows\system32\wbem\WMIsvc.dll
13:56:46.0299 2584 Winmgmt - ok
13:56:46.0489 2584 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\windows\system32\WsmSvc.dll
13:56:46.0539 2584 WinRM - ok
13:56:46.0599 2584 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\windows\system32\DRIVERS\WinUsb.sys
13:56:46.0619 2584 WinUsb - ok
13:56:46.0669 2584 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\windows\System32\wlansvc.dll
13:56:46.0689 2584 Wlansvc - ok
13:56:46.0899 2584 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
13:56:46.0929 2584 wlidsvc - ok
13:56:46.0959 2584 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\windows\system32\drivers\wmiacpi.sys
13:56:46.0959 2584 WmiAcpi - ok
13:56:47.0019 2584 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\windows\system32\wbem\WmiApSrv.exe
13:56:47.0019 2584 wmiApSrv - ok
13:56:47.0059 2584 WMPNetworkSvc - ok
13:56:47.0089 2584 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\windows\System32\wpcsvc.dll
13:56:47.0089 2584 WPCSvc - ok
13:56:47.0119 2584 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\windows\system32\wpdbusenum.dll
13:56:47.0129 2584 WPDBusEnum - ok
13:56:47.0189 2584 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\windows\system32\drivers\ws2ifsl.sys
13:56:47.0209 2584 ws2ifsl - ok
13:56:47.0249 2584 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\windows\system32\wscsvc.dll
13:56:47.0249 2584 wscsvc - ok
13:56:47.0259 2584 WSearch - ok
13:56:47.0399 2584 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\windows\system32\wuaueng.dll
13:56:47.0429 2584 wuauserv - ok
13:56:47.0449 2584 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\windows\system32\drivers\WudfPf.sys
13:56:47.0459 2584 WudfPf - ok
13:56:47.0489 2584 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\windows\system32\DRIVERS\WUDFRd.sys
13:56:47.0509 2584 WUDFRd - ok
13:56:47.0549 2584 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\windows\System32\WUDFSvc.dll
13:56:47.0559 2584 wudfsvc - ok
13:56:47.0589 2584 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\windows\System32\wwansvc.dll
13:56:47.0609 2584 WwanSvc - ok
13:56:47.0619 2584 ================ Scan global ===============================
13:56:47.0659 2584 [ BA0CD8C393E8C9F83354106093832C7B ] C:\windows\system32\basesrv.dll
13:56:47.0719 2584 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\windows\system32\winsrv.dll
13:56:47.0739 2584 [ EB6A48CC998E1090E44E8E7F1009A640 ] C:\windows\system32\winsrv.dll
13:56:47.0769 2584 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\windows\system32\sxssrv.dll
13:56:47.0849 2584 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\windows\system32\services.exe
13:56:47.0859 2584 [Global] - ok
13:56:47.0859 2584 ================ Scan MBR ==================================
13:56:47.0879 2584 [ 5B5E648D12FCADC244C1EC30318E1EB9 ] \Device\Harddisk0\DR0
13:56:50.0069 2584 \Device\Harddisk0\DR0 - ok
13:56:50.0069 2584 ================ Scan VBR ==================================
13:56:50.0099 2584 [ 66C43FF7C7CCD9F976397B9B8245C7D3 ] \Device\Harddisk0\DR0\Partition1
13:56:50.0129 2584 \Device\Harddisk0\DR0\Partition1 - ok
13:56:50.0129 2584 ============================================================
13:56:50.0129 2584 Scan finished
13:56:50.0129 2584 ============================================================
13:56:50.0129 1520 Detected object count: 0
13:56:50.0129 1520 Actual detected object count: 0



I will post the results of the last one once it is complete.

#6 JONES113

JONES113
  • Topic Starter

  • Members
  • 117 posts
  • OFFLINE
  •  
  • Local time:06:39 AM

Posted 27 September 2012 - 01:34 PM

Norman Malware Cleaner v2.05.06
Copyright © 1990 - 2012, Norman ASA.

Norman Scanner Engine Version: 6.08.06
nvcbin.def: Version: 6.08.00, Date: 2012/09/27 01:01:36, Variants: 18526623
nvcmacro.def: Version: 6.08.00, Date: 2011/12/19 05:20:35, Variants: 20465

Operating System: Windows 7 Service Pack 1 x64

Switches: /iagree /nomt /nosb

Scan started: 2012/09/27 14:14:29

Running pre-scan cleanup routine...

Number of malicious objects found: 0
Number of malicious objects cleaned: 0
Scanning time: 1s

Scanning running processes and process memory...

Number of objects found: 692
Number of objects scanned: 692
Number of objects not scanned: 0
Number of malicious memory objects found: 0
Number of malicious objects cleaned: 0
Number of malicious files found: 0
Number of malicious files cleaned: 0
Scanning time: 1m 19s

Scanning system for FakeAV...

Number of malicious objects found: 0
Number of malicious objects cleaned: 0
Number of malicious files found: 0
Number of malicious files cleaned: 0
Scanning time: 0s

Running quick scan...

Number of files found: 5377
Number of archives unpacked: 0
Number of objects found: 5377
Number of objects scanned: 5377
Number of objects not scanned: 0
Number of malicious objects found: 0
Number of malicious objects cleaned: 0
Number of malicious files found: 0
Number of malicious files cleaned: 0
Scanning time: 10m 19s

Running post-scan cleanup routine...

Number of malicious objects found: 0
Number of malicious objects cleaned: 0
Scanning time: 0s

Results:
Total number of files found: 5377
Total number of archives unpacked: 0
Total number of objects found: 6069
Total number of objects scanned: 6069
Total number of objects not scanned: 0
Total number of malicious objects found: 0
Total scanning time: 11m 39s

#7 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:05:39 AM

Posted 27 September 2012 - 05:01 PM

Are you still getting redirected? If so which browser.




Run the program below as admin hit the scan button allow it to finish then hit the delete button.

http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe

Download Rkill run it post the log.
http://www.bleepingcomputer.com/download/rkill/

Download the junkware removal tool save it to your desktop run it in safe mode post the log.
http://thisisudax.blogspot.com/2012/09/junkware-removal-tool-jrt-by-thisisu.html

Edited by InadequateInfirmity, 27 September 2012 - 05:01 PM.


#8 JONES113

JONES113
  • Topic Starter

  • Members
  • 117 posts
  • OFFLINE
  •  
  • Local time:06:39 AM

Posted 01 October 2012 - 09:25 AM

RogueKiller V8.1.0 [09/28/2012] by Tigzy
mail: tigzyRK<at>gmail<dot>com
Feedback: http://www.geekstogo.com/forum/files/file/413-roguekiller/
Website: http://tigzy.geekstogo.com/roguekiller.php
Blog: http://tigzyrk.blogspot.com

Operating System: Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Started in : Normal mode
User : JONES [Admin rights]
Mode : Scan -- Date : 10/01/2012 09:54:56

¤¤¤ Bad processes : 0 ¤¤¤

¤¤¤ Registry Entries : 5 ¤¤¤
[TASK][SUSP PATH] {AC37091C-4003-4938-909D-E04DE4AB22B3} : C:\windows\system32\pcalua.exe -a C:\Users\JONES\Desktop\maxlook.exe -d C:\Users\JONES\Desktop -> FOUND
[HJPOL] HKLM\[...]\System : DisableRegistryTools (0) -> FOUND
[HJPOL] HKLM\[...]\Wow6432Node\System : DisableRegistryTools (0) -> FOUND
[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> FOUND
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND

¤¤¤ Particular Files / Folders: ¤¤¤

¤¤¤ Driver : [NOT LOADED] ¤¤¤

¤¤¤ HOSTS File: ¤¤¤
--> C:\windows\system32\drivers\etc\hosts

127.0.0.1 localhost


¤¤¤ MBR Check: ¤¤¤

+++++ PhysicalDrive0: Hitachi HTS545025B9A300 ATA Device +++++
--- User ---
[MBR] e8a53ce722aafbc8f5caf6eb3fd4b362
[BSP] eb975b88c2c0c9b0cd3144b007d05bd9 : Windows Vista MBR Code
Partition table:
0 - [ACTIVE] ACER (0x27) [VISIBLE] Offset (sectors): 2048 | Size: 1500 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 3074048 | Size: 227744 Mo
2 - [XXXXXX] NTFS (0x17) [HIDDEN!] Offset (sectors): 469493760 | Size: 9230 Mo
User = LL1 ... OK!
User = LL2 ... OK!

+++++ PhysicalDrive1: Rocketfish USB Device +++++
--- User ---
[MBR] 4a333f75ae6c2842d59753994b07bf5f
[BSP] 33a07a59d299ab4ea9f4ab0156f9d86f : Windows XP MBR Code
Partition table:
0 - [ACTIVE] FAT32-LBA (0x0c) [VISIBLE] Offset (sectors): 32 | Size: 7727 Mo
User = LL1 ... OK!
Error reading LL2 MBR!

Finished : << RKreport[1].txt >>
RKreport[1].txt



RogueKiller V8.1.0 [09/28/2012] by Tigzy
mail: tigzyRK<at>gmail<dot>com
Feedback: http://www.geekstogo.com/forum/files/file/413-roguekiller/
Website: http://tigzy.geekstogo.com/roguekiller.php
Blog: http://tigzyrk.blogspot.com

Operating System: Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Started in : Normal mode
User : JONES [Admin rights]
Mode : Remove -- Date : 10/01/2012 09:56:09

¤¤¤ Bad processes : 0 ¤¤¤

¤¤¤ Registry Entries : 4 ¤¤¤
[TASK][SUSP PATH] {AC37091C-4003-4938-909D-E04DE4AB22B3} : C:\windows\system32\pcalua.exe -a C:\Users\JONES\Desktop\maxlook.exe -d C:\Users\JONES\Desktop -> DELETED
[HJPOL] HKLM\[...]\System : DisableRegistryTools (0) -> DELETED
[HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> REPLACED (0)
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REPLACED (0)

¤¤¤ Particular Files / Folders: ¤¤¤

¤¤¤ Driver : [NOT LOADED] ¤¤¤

¤¤¤ HOSTS File: ¤¤¤
--> C:\windows\system32\drivers\etc\hosts

127.0.0.1 localhost


¤¤¤ MBR Check: ¤¤¤

+++++ PhysicalDrive0: Hitachi HTS545025B9A300 ATA Device +++++
--- User ---
[MBR] e8a53ce722aafbc8f5caf6eb3fd4b362
[BSP] eb975b88c2c0c9b0cd3144b007d05bd9 : Windows Vista MBR Code
Partition table:
0 - [ACTIVE] ACER (0x27) [VISIBLE] Offset (sectors): 2048 | Size: 1500 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 3074048 | Size: 227744 Mo
2 - [XXXXXX] NTFS (0x17) [HIDDEN!] Offset (sectors): 469493760 | Size: 9230 Mo
User = LL1 ... OK!
User = LL2 ... OK!

+++++ PhysicalDrive1: Rocketfish USB Device +++++
--- User ---
[MBR] 4a333f75ae6c2842d59753994b07bf5f
[BSP] 33a07a59d299ab4ea9f4ab0156f9d86f : Windows XP MBR Code
Partition table:
0 - [ACTIVE] FAT32-LBA (0x0c) [VISIBLE] Offset (sectors): 32 | Size: 7727 Mo
User = LL1 ... OK!
Error reading LL2 MBR!

Finished : << RKreport[2].txt >>
RKreport[1].txt ; RKreport[2].txt



Rkill 2.4.3 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2012 BleepingComputer.com
More Information about Rkill can be found at this link:
http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 10/01/2012 09:57:03 AM in x64 mode.
Windows Version: Windows 7 Home Premium Service Pack 1

Checking for Windows services to stop:

* No malware services found to stop.

Checking for processes to terminate:

* No malware processes found to kill.

Checking Registry for malware related settings:

* No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.
* HKLM\Software\Classes\exefile\shell\open\command\\IsolatedCommand was changed. It was reset to "%1" %*!

* HKLM\Software\Classes\exefile\shell\runas\command\\IsolatedCommand was changed. It was reset to "%1" %*!


Performing miscellaneous checks:

* No issues found.

Checking Windows Service Integrity:

* No issues found.

Searching for Missing Digital Signatures:

* No issues found.

Checking HOSTS File:

* HOSTS file entries found:

127.0.0.1 localhost

Program finished at: 10/01/2012 09:57:22 AM
Execution time: 0 hours(s), 0 minute(s), and 18 seconds(s)



Junkware Removal Tool (JRT) by Thisisu
Version: 1.2.0 (10.01.2012)
OS: Windows 7 Home Premium x64
Ran by JONES on Mon 10/01/2012 at 10:10:33.36
Blog: http://thisisudax.blogspot.com
**************************************************************




*** Services: 0 Detections



*** Registry Values: 0 Detections



*** Registry Keys:

Successfully deleted: [KEY] hkey_local_machine\software\microsoft\internet explorer\searchscopes\{0633ee93-d776-472f-a0ff-e1416b8b2e3a}



*** Files: 0 Detections



*** Folders: 0 Detections



*** FireFox detected and repaired

Trojan:Win32/Tracur.AV Detected!
Successfully deleted: gsjdrplxpa@gsjdrplxpa.org.xpi


*** Event Viewer Logs - Cleared





**************************************************************
Scan was completed on Mon 10/01/2012 at 10:10:40.41
End of Report

#9 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:05:39 AM

Posted 01 October 2012 - 06:43 PM

Trojan:Win32/Tracur.AV Detected!

Start a thread in the malware removal forum.
http://www.bleepingcomputer.com/forums/topic34773.html




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users