Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Pop ups and redirects


  • Please log in to reply
20 replies to this topic

#1 andrew826

andrew826

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:08:14 AM

Posted 03 October 2012 - 10:53 AM

Hi I keep getting pop ups in the bottom right of my browser (firefox) and some redirects. Would appreciate the help.

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:14 AM

Posted 03 October 2012 - 11:16 AM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here.If you get crashes in normal mode,run it in safemode with networking

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 andrew826

andrew826
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:08:14 AM

Posted 03 October 2012 - 03:54 PM

16:52:19.0176 0552 TDSS rootkit removing tool 2.8.10.0 Sep 17 2012 19:23:24
16:52:19.0406 0552 ============================================================
16:52:19.0406 0552 Current date / time: 2012/10/03 16:52:19.0406
16:52:19.0406 0552 SystemInfo:
16:52:19.0406 0552
16:52:19.0406 0552 OS Version: 6.1.7600 ServicePack: 0.0
16:52:19.0406 0552 Product type: Workstation
16:52:19.0406 0552 ComputerName: ANDREW-PC
16:52:19.0406 0552 UserName: Andrew
16:52:19.0406 0552 Windows directory: C:\Windows
16:52:19.0406 0552 System windows directory: C:\Windows
16:52:19.0406 0552 Running under WOW64
16:52:19.0406 0552 Processor architecture: Intel x64
16:52:19.0406 0552 Number of processors: 2
16:52:19.0406 0552 Page size: 0x1000
16:52:19.0406 0552 Boot type: Normal boot
16:52:19.0406 0552 ============================================================
16:52:20.0166 0552 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
16:52:20.0196 0552 ============================================================
16:52:20.0196 0552 \Device\Harddisk0\DR0:
16:52:20.0196 0552 MBR partitions:
16:52:20.0196 0552 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1800800, BlocksNum 0x32000
16:52:20.0196 0552 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1832800, BlocksNum 0x1B992800
16:52:20.0196 0552 ============================================================
16:52:20.0216 0552 C: <-> \Device\Harddisk0\DR0\Partition2
16:52:20.0216 0552 ============================================================
16:52:20.0216 0552 Initialize success
16:52:20.0216 0552 ============================================================
16:52:31.0297 0608 ============================================================
16:52:31.0297 0608 Scan started
16:52:31.0297 0608 Mode: Manual;
16:52:31.0297 0608 ============================================================
16:52:32.0047 0608 ================ Scan system memory ========================
16:52:32.0047 0608 System memory - ok
16:52:32.0057 0608 ================ Scan services =============================
16:52:32.0137 0608 [ 7D9D615201A483D6FA99491C2E655A5A ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
16:52:32.0147 0608 !SASCORE - ok
16:52:32.0327 0608 [ 1B00662092F9F9568B995902F0CC40D5 ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
16:52:32.0337 0608 1394ohci - ok
16:52:32.0407 0608 [ 6F11E88748CDEFD2F76AA215F97DDFE5 ] ACPI C:\Windows\system32\DRIVERS\ACPI.sys
16:52:32.0417 0608 ACPI - ok
16:52:32.0477 0608 [ 63B05A0420CE4BF0E4AF6DCC7CADA254 ] AcpiPmi C:\Windows\system32\DRIVERS\acpipmi.sys
16:52:32.0477 0608 AcpiPmi - ok
16:52:32.0607 0608 [ E12CFCF1DDBFC50948A75E6E38793225 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
16:52:32.0607 0608 AdobeFlashPlayerUpdateSvc - ok
16:52:32.0647 0608 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
16:52:32.0657 0608 adp94xx - ok
16:52:32.0707 0608 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
16:52:32.0707 0608 adpahci - ok
16:52:32.0747 0608 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
16:52:32.0747 0608 adpu320 - ok
16:52:32.0837 0608 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
16:52:32.0837 0608 AeLookupSvc - ok
16:52:32.0877 0608 [ B9384E03479D2506BC924C16A3DB87BC ] AFD C:\Windows\system32\drivers\afd.sys
16:52:32.0887 0608 AFD - ok
16:52:32.0917 0608 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\DRIVERS\agp440.sys
16:52:32.0927 0608 agp440 - ok
16:52:32.0957 0608 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
16:52:32.0957 0608 ALG - ok
16:52:32.0997 0608 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\DRIVERS\aliide.sys
16:52:32.0997 0608 aliide - ok
16:52:33.0007 0608 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\DRIVERS\amdide.sys
16:52:33.0027 0608 amdide - ok
16:52:33.0047 0608 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
16:52:33.0057 0608 AmdK8 - ok
16:52:33.0067 0608 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
16:52:33.0067 0608 AmdPPM - ok
16:52:33.0117 0608 [ EC7EBAB00A4D8448BAB68D1E49B4BEB9 ] amdsata C:\Windows\system32\drivers\amdsata.sys
16:52:33.0137 0608 amdsata - ok
16:52:33.0177 0608 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
16:52:33.0187 0608 amdsbs - ok
16:52:33.0207 0608 [ DB27766102C7BF7E95140A2AA81D042E ] amdxata C:\Windows\system32\drivers\amdxata.sys
16:52:33.0207 0608 amdxata - ok
16:52:33.0267 0608 [ 42FD751B27FA0E9C69BB39F39E409594 ] AppID C:\Windows\system32\drivers\appid.sys
16:52:33.0267 0608 AppID - ok
16:52:33.0307 0608 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
16:52:33.0317 0608 AppIDSvc - ok
16:52:33.0327 0608 [ D065BE66822847B7F127D1F90158376E ] Appinfo C:\Windows\System32\appinfo.dll
16:52:33.0337 0608 Appinfo - ok
16:52:33.0427 0608 [ 7EF47644B74EBE721CC32211D3C35E76 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
16:52:33.0427 0608 Apple Mobile Device - ok
16:52:33.0457 0608 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
16:52:33.0467 0608 arc - ok
16:52:33.0507 0608 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
16:52:33.0517 0608 arcsas - ok
16:52:33.0547 0608 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
16:52:33.0547 0608 AsyncMac - ok
16:52:33.0577 0608 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\DRIVERS\atapi.sys
16:52:33.0577 0608 atapi - ok
16:52:33.0627 0608 [ B2C3A8618867404475228F7DD260698B ] athr C:\Windows\system32\DRIVERS\athrx.sys
16:52:33.0657 0608 athr - ok
16:52:33.0707 0608 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
16:52:33.0717 0608 AudioEndpointBuilder - ok
16:52:33.0727 0608 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioSrv C:\Windows\System32\Audiosrv.dll
16:52:33.0737 0608 AudioSrv - ok
16:52:33.0767 0608 [ B20B5FA5CA050E9926E4D1DB81501B32 ] AxInstSV C:\Windows\System32\AxInstSV.dll
16:52:33.0767 0608 AxInstSV - ok
16:52:33.0837 0608 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
16:52:33.0837 0608 b06bdrv - ok
16:52:33.0877 0608 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
16:52:33.0887 0608 b57nd60a - ok
16:52:33.0927 0608 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
16:52:33.0927 0608 BDESVC - ok
16:52:33.0937 0608 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
16:52:33.0937 0608 Beep - ok
16:52:34.0007 0608 [ 4992C609A6315671463E30F6512BC022 ] BFE C:\Windows\System32\bfe.dll
16:52:34.0017 0608 BFE - ok
16:52:34.0227 0608 [ DDAE7B27BDBB3DA1276784753138B9C2 ] BHDrvx64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_4.0.0.127\Definitions\BASHDefs\20100901.003\BHDrvx64.sys
16:52:34.0237 0608 BHDrvx64 - ok
16:52:34.0307 0608 [ 7F0C323FE3DA28AA4AA1BDA3F575707F ] BITS C:\Windows\System32\qmgr.dll
16:52:34.0327 0608 BITS - ok
16:52:34.0367 0608 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
16:52:34.0367 0608 blbdrive - ok
16:52:34.0457 0608 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
16:52:34.0467 0608 Bonjour Service - ok
16:52:34.0527 0608 [ 19D20159708E152267E53B66677A4995 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
16:52:34.0527 0608 bowser - ok
16:52:34.0557 0608 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
16:52:34.0557 0608 BrFiltLo - ok
16:52:34.0587 0608 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
16:52:34.0587 0608 BrFiltUp - ok
16:52:34.0617 0608 [ 94FBC06F294D58D02361918418F996E3 ] Browser C:\Windows\System32\browser.dll
16:52:34.0617 0608 Browser - ok
16:52:34.0647 0608 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
16:52:34.0647 0608 Brserid - ok
16:52:34.0697 0608 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
16:52:34.0697 0608 BrSerWdm - ok
16:52:34.0747 0608 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
16:52:34.0747 0608 BrUsbMdm - ok
16:52:34.0767 0608 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
16:52:34.0787 0608 BrUsbSer - ok
16:52:34.0807 0608 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
16:52:34.0807 0608 BTHMODEM - ok
16:52:34.0827 0608 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
16:52:34.0827 0608 bthserv - ok
16:52:34.0917 0608 [ D1787E11C6A0078DDEAF8CF3EE2AB293 ] CAXHWAZL C:\Windows\system32\DRIVERS\CAXHWAZL.sys
16:52:34.0917 0608 CAXHWAZL - ok
16:52:35.0017 0608 [ 37F1BAEC39B505B3B51893A35C8337EA ] ccHP C:\Windows\system32\drivers\N360x64\0404000.00C\ccHPx64.sys
16:52:35.0027 0608 ccHP - ok
16:52:35.0047 0608 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
16:52:35.0057 0608 cdfs - ok
16:52:35.0107 0608 [ 83D2D75E1EFB81B3450C18131443F7DB ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
16:52:35.0117 0608 cdrom - ok
16:52:35.0157 0608 [ 312E2F82AF11E79906898AC3E3D58A1F ] CertPropSvc C:\Windows\System32\certprop.dll
16:52:35.0157 0608 CertPropSvc - ok
16:52:35.0187 0608 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
16:52:35.0187 0608 circlass - ok
16:52:35.0237 0608 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
16:52:35.0247 0608 CLFS - ok
16:52:35.0377 0608 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:52:35.0377 0608 clr_optimization_v2.0.50727_32 - ok
16:52:35.0447 0608 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
16:52:35.0447 0608 clr_optimization_v2.0.50727_64 - ok
16:52:35.0577 0608 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
16:52:35.0577 0608 clr_optimization_v4.0.30319_32 - ok
16:52:35.0677 0608 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
16:52:35.0677 0608 clr_optimization_v4.0.30319_64 - ok
16:52:35.0707 0608 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
16:52:35.0707 0608 CmBatt - ok
16:52:35.0727 0608 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\DRIVERS\cmdide.sys
16:52:35.0727 0608 cmdide - ok
16:52:35.0757 0608 [ F95FD4CB7DA00BA2A63CE9F6B5C053E1 ] CNG C:\Windows\system32\Drivers\cng.sys
16:52:35.0767 0608 CNG - ok
16:52:35.0837 0608 [ 0D23C3312838EEA1ED55D5F135BCA613 ] CnxtHdAudService C:\Windows\system32\drivers\CHDRT64.sys
16:52:35.0847 0608 CnxtHdAudService - ok
16:52:35.0877 0608 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
16:52:35.0877 0608 Compbatt - ok
16:52:35.0917 0608 [ F26B3A86F6FA87CA360B879581AB4123 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
16:52:35.0927 0608 CompositeBus - ok
16:52:35.0938 0608 COMSysApp - ok
16:52:35.0978 0608 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
16:52:35.0988 0608 crcdisk - ok
16:52:36.0058 0608 [ 8C57411B66282C01533CB776F98AD384 ] CryptSvc C:\Windows\system32\cryptsvc.dll
16:52:36.0068 0608 CryptSvc - ok
16:52:36.0118 0608 [ 7266972E86890E2B30C0C322E906B027 ] DcomLaunch C:\Windows\system32\rpcss.dll
16:52:36.0128 0608 DcomLaunch - ok
16:52:36.0168 0608 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
16:52:36.0178 0608 defragsvc - ok
16:52:36.0208 0608 [ 3F1DC527070ACB87E40AFE46EF6DA749 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
16:52:36.0208 0608 DfsC - ok
16:52:36.0238 0608 [ CE3B9562D997F69B330D181A8875960F ] Dhcp C:\Windows\system32\dhcpcore.dll
16:52:36.0248 0608 Dhcp - ok
16:52:36.0278 0608 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
16:52:36.0278 0608 discache - ok
16:52:36.0318 0608 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
16:52:36.0328 0608 Disk - ok
16:52:36.0378 0608 [ 85CF424C74A1D5EC33533E1DBFF9920A ] Dnscache C:\Windows\System32\dnsrslvr.dll
16:52:36.0388 0608 Dnscache - ok
16:52:36.0428 0608 [ 14452ACDB09B70964C8C21BF80A13ACB ] dot3svc C:\Windows\System32\dot3svc.dll
16:52:36.0438 0608 dot3svc - ok
16:52:36.0448 0608 [ 8C2BA6BEA949EE6E68385F5692BAFB94 ] DPS C:\Windows\system32\dps.dll
16:52:36.0448 0608 DPS - ok
16:52:36.0498 0608 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
16:52:36.0498 0608 drmkaud - ok
16:52:36.0568 0608 [ 1633B9ABF52784A1331476397A48CBEF ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
16:52:36.0588 0608 DXGKrnl - ok
16:52:36.0628 0608 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
16:52:36.0628 0608 EapHost - ok
16:52:36.0778 0608 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
16:52:36.0898 0608 ebdrv - ok
16:52:36.0968 0608 [ 066108AE4C35835081598827A1A7D08D ] eeCtrl C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
16:52:36.0968 0608 eeCtrl - ok
16:52:37.0018 0608 [ 0793F40B9B8A1BDD266296409DBD91EA ] EFS C:\Windows\System32\lsass.exe
16:52:37.0018 0608 EFS - ok
16:52:37.0128 0608 [ 47C071994C3F649F23D9CD075AC9304A ] ehRecvr C:\Windows\ehome\ehRecvr.exe
16:52:37.0138 0608 ehRecvr - ok
16:52:37.0168 0608 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
16:52:37.0178 0608 ehSched - ok
16:52:37.0218 0608 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
16:52:37.0228 0608 elxstor - ok
16:52:37.0338 0608 [ 7C35C6865957289D9EFE6CC73F4AB2E1 ] ePowerSvc C:\Program Files\Gateway\Gateway Power Management\ePowerSvc.exe
16:52:37.0358 0608 ePowerSvc - ok
16:52:37.0438 0608 [ 12866876E3851F1E5D462B2A83E25578 ] EraserUtilRebootDrv C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
16:52:37.0438 0608 EraserUtilRebootDrv - ok
16:52:37.0458 0608 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\DRIVERS\errdev.sys
16:52:37.0458 0608 ErrDev - ok
16:52:37.0508 0608 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
16:52:37.0518 0608 EventSystem - ok
16:52:37.0578 0608 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
16:52:37.0578 0608 exfat - ok
16:52:37.0618 0608 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
16:52:37.0628 0608 fastfat - ok
16:52:37.0668 0608 [ D607B2F1BEE3992AA6C2C92C0A2F0855 ] Fax C:\Windows\system32\fxssvc.exe
16:52:37.0678 0608 Fax - ok
16:52:37.0698 0608 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
16:52:37.0698 0608 fdc - ok
16:52:37.0758 0608 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
16:52:37.0778 0608 fdPHost - ok
16:52:37.0798 0608 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
16:52:37.0808 0608 FDResPub - ok
16:52:37.0838 0608 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
16:52:37.0848 0608 FileInfo - ok
16:52:37.0888 0608 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
16:52:37.0888 0608 Filetrace - ok
16:52:37.0918 0608 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
16:52:37.0918 0608 flpydisk - ok
16:52:37.0948 0608 [ F7866AF72ABBAF84B1FA5AA195378C59 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
16:52:37.0948 0608 FltMgr - ok
16:52:38.0018 0608 [ CB5E4B9C319E3C6BB363EB7E58A4A051 ] FontCache C:\Windows\system32\FntCache.dll
16:52:38.0038 0608 FontCache - ok
16:52:38.0088 0608 [ 8D89E3131C27FDD6932189CB785E1B7A ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
16:52:38.0088 0608 FontCache3.0.0.0 - ok
16:52:38.0148 0608 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
16:52:38.0168 0608 FsDepends - ok
16:52:38.0188 0608 [ E95EF8547DE20CF0603557C0CF7A9462 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
16:52:38.0188 0608 Fs_Rec - ok
16:52:38.0238 0608 [ AE87BA80D0EC3B57126ED2CDC15B24ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
16:52:38.0248 0608 fvevol - ok
16:52:38.0268 0608 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
16:52:38.0268 0608 gagp30kx - ok
16:52:38.0358 0608 [ C403C5DB49A0F9AAF4F2128EDC0106D8 ] GamesAppService C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
16:52:38.0368 0608 GamesAppService - ok
16:52:38.0408 0608 [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
16:52:38.0408 0608 GEARAspiWDM - ok
16:52:38.0458 0608 [ FE5AB4525BC2EC68B9119A6E5D40128B ] gpsvc C:\Windows\System32\gpsvc.dll
16:52:38.0468 0608 gpsvc - ok
16:52:38.0558 0608 [ 816FD5A6F3C2F3D600900096632FC60E ] Greg_Service C:\Program Files (x86)\Gateway\Registration\GregHSRW.exe
16:52:38.0578 0608 Greg_Service - ok
16:52:38.0708 0608 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:52:38.0708 0608 gupdate - ok
16:52:38.0728 0608 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:52:38.0728 0608 gupdatem - ok
16:52:38.0778 0608 [ CC839E8D766CC31A7710C9F38CF3E375 ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
16:52:38.0788 0608 gusvc - ok
16:52:38.0818 0608 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
16:52:38.0818 0608 hcw85cir - ok
16:52:38.0838 0608 [ 6410F6F415B2A5A9037224C41DA8BF12 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
16:52:38.0838 0608 HdAudAddService - ok
16:52:38.0888 0608 [ 0A49913402747A0B67DE940FB42CBDBB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
16:52:38.0888 0608 HDAudBus - ok
16:52:38.0908 0608 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
16:52:38.0908 0608 HidBatt - ok
16:52:38.0928 0608 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
16:52:38.0938 0608 HidBth - ok
16:52:38.0968 0608 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
16:52:38.0978 0608 HidIr - ok
16:52:39.0008 0608 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
16:52:39.0008 0608 hidserv - ok
16:52:39.0048 0608 [ B3BF6B5B50006DEF50B66306D99FCF6F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
16:52:39.0048 0608 HidUsb - ok
16:52:39.0068 0608 [ EFA58EDE58DD74388FFD04CB32681518 ] hkmsvc C:\Windows\system32\kmsvc.dll
16:52:39.0078 0608 hkmsvc - ok
16:52:39.0088 0608 [ 046B2673767CA626E2CFB7FDF735E9E8 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
16:52:39.0098 0608 HomeGroupListener - ok
16:52:39.0158 0608 [ 06A7422224D9865A5613710A089987DF ] HomeGroupProvider C:\Windows\system32\provsvc.dll
16:52:39.0158 0608 HomeGroupProvider - ok
16:52:39.0198 0608 [ 0886D440058F203EBA0E1825E4355914 ] HpSAMD C:\Windows\system32\DRIVERS\HpSAMD.sys
16:52:39.0198 0608 HpSAMD - ok
16:52:39.0318 0608 [ 447256D1C026654C5CD3CC17E7B20631 ] HsfXAudioService C:\Windows\SysWOW64\XAudio64.dll
16:52:39.0328 0608 HsfXAudioService - ok
16:52:39.0398 0608 [ 26C5D00321937E49B6BC91029947D094 ] HSF_DPV C:\Windows\system32\DRIVERS\CAX_DPV.sys
16:52:39.0418 0608 HSF_DPV - ok
16:52:39.0548 0608 [ CEE049CAC4EFA7F4E1E4AD014414A5D4 ] HTTP C:\Windows\system32\drivers\HTTP.sys
16:52:39.0568 0608 HTTP - ok
16:52:39.0588 0608 [ F17766A19145F111856378DF337A5D79 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
16:52:39.0588 0608 hwpolicy - ok
16:52:39.0628 0608 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
16:52:39.0628 0608 i8042prt - ok
16:52:39.0698 0608 [ 0E899D0DB39617AA0B2F992E7E95B5EB ] IAANTMON C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
16:52:39.0708 0608 IAANTMON - ok
16:52:39.0778 0608 [ BBB3B6DF1ABB0FE35802EDE85CC1C011 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
16:52:39.0778 0608 iaStor - ok
16:52:39.0858 0608 [ B75E45C564E944A2657167D197AB29DA ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
16:52:39.0868 0608 iaStorV - ok
16:52:39.0938 0608 [ 2F2BE70D3E02B6FA877921AB9516D43C ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
16:52:39.0948 0608 idsvc - ok
16:52:40.0148 0608 [ C3292140BF458B46CF8ABBFD7E177BBE ] IDSVia64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_4.0.0.127\Definitions\IPSDefs\20100924.001\IDSvia64.sys
16:52:40.0148 0608 IDSVia64 - ok
16:52:40.0418 0608 [ DFEAF0A1D98D397035012C8E28D1520F ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
16:52:40.0718 0608 igfx - ok
16:52:40.0808 0608 [ 23E1BCADABE423C35C19BBDFF10CCE6D ] IHA_MessageCenter C:\Program Files (x86)\Verizon\IHA_MessageCenter\Bin\Verizon_IHAMessageCenter.exe
16:52:40.0818 0608 IHA_MessageCenter - ok
16:52:40.0858 0608 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
16:52:40.0858 0608 iirsp - ok
16:52:40.0908 0608 [ C5B4683680DF085B57BC53E5EF34861F ] IKEEXT C:\Windows\System32\ikeext.dll
16:52:40.0928 0608 IKEEXT - ok
16:52:41.0018 0608 [ 8C7FA71CB1EBCD3EDE8958D27B1BF0B4 ] int15.sys C:\Windows\System32\OEM\Factory\int15.sys
16:52:41.0018 0608 int15.sys - ok
16:52:41.0068 0608 [ D485D3BD3E2179AA86853A182F70699F ] IntcHdmiAddService C:\Windows\system32\drivers\IntcHdmi.sys
16:52:41.0068 0608 IntcHdmiAddService - ok
16:52:41.0098 0608 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\DRIVERS\intelide.sys
16:52:41.0098 0608 intelide - ok
16:52:41.0138 0608 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
16:52:41.0138 0608 intelppm - ok
16:52:41.0168 0608 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
16:52:41.0168 0608 IPBusEnum - ok
16:52:41.0198 0608 [ 722DD294DF62483CECAAE6E094B4D695 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
16:52:41.0198 0608 IpFilterDriver - ok
16:52:41.0248 0608 [ F8E058D17363EC580E4B7232778B6CB5 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
16:52:41.0258 0608 iphlpsvc - ok
16:52:41.0308 0608 [ E2B4A4494DB7CB9B89B55CA268C337C5 ] IPMIDRV C:\Windows\system32\DRIVERS\IPMIDrv.sys
16:52:41.0308 0608 IPMIDRV - ok
16:52:41.0338 0608 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
16:52:41.0358 0608 IPNAT - ok
16:52:41.0428 0608 [ 50D6CCC6FF5561F9F56946B3E6164FB8 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
16:52:41.0438 0608 iPod Service - ok
16:52:41.0468 0608 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
16:52:41.0478 0608 IRENUM - ok
16:52:41.0488 0608 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\DRIVERS\isapnp.sys
16:52:41.0488 0608 isapnp - ok
16:52:41.0508 0608 [ FA4D2557DE56D45B0A346F93564BE6E1 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
16:52:41.0508 0608 iScsiPrt - ok
16:52:41.0528 0608 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
16:52:41.0528 0608 kbdclass - ok
16:52:41.0558 0608 [ 6DEF98F8541E1B5DCEB2C822A11F7323 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
16:52:41.0558 0608 kbdhid - ok
16:52:41.0568 0608 [ 0793F40B9B8A1BDD266296409DBD91EA ] KeyIso C:\Windows\system32\lsass.exe
16:52:41.0568 0608 KeyIso - ok
16:52:41.0578 0608 [ E8B6FCC9C83535C67F835D407620BD27 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
16:52:41.0578 0608 KSecDD - ok
16:52:41.0648 0608 [ A8C63880EF6F4D3FEC7B616B9C060215 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
16:52:41.0658 0608 KSecPkg - ok
16:52:41.0708 0608 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
16:52:41.0718 0608 ksthunk - ok
16:52:41.0748 0608 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
16:52:41.0758 0608 KtmRm - ok
16:52:41.0848 0608 [ 81F1D04D4D0E433099365127375FD501 ] LanmanServer C:\Windows\system32\srvsvc.dll
16:52:41.0858 0608 LanmanServer - ok
16:52:41.0898 0608 [ 27026EAC8818E8A6C00A1CAD2F11D29A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
16:52:41.0898 0608 LanmanWorkstation - ok
16:52:41.0938 0608 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
16:52:41.0938 0608 lltdio - ok
16:52:41.0978 0608 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
16:52:41.0988 0608 lltdsvc - ok
16:52:42.0058 0608 lltdsvc32 - ok
16:52:42.0088 0608 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
16:52:42.0088 0608 lmhosts - ok
16:52:42.0128 0608 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
16:52:42.0128 0608 LSI_FC - ok
16:52:42.0148 0608 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
16:52:42.0148 0608 LSI_SAS - ok
16:52:42.0178 0608 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
16:52:42.0178 0608 LSI_SAS2 - ok
16:52:42.0198 0608 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
16:52:42.0198 0608 LSI_SCSI - ok
16:52:42.0228 0608 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
16:52:42.0228 0608 luafv - ok
16:52:42.0248 0608 lxcy_device - ok
16:52:42.0288 0608 [ 922CBAC7B992B9614CAB7122F4BF9406 ] ManyCam C:\Windows\system32\DRIVERS\mcvidrv_x64.sys
16:52:42.0298 0608 ManyCam - ok
16:52:42.0358 0608 [ B9FC4CCE5758B816F27DD4D1EED11841 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
16:52:42.0358 0608 MBAMProtector - ok
16:52:42.0478 0608 [ 0DCF16B1449811EFA47AB52CAC84093C ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
16:52:42.0488 0608 MBAMScheduler - ok
16:52:42.0518 0608 [ 9EAABA4D601004BEA4DAA6E146E19A96 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
16:52:42.0528 0608 MBAMService - ok
16:52:42.0578 0608 [ 34A42DD7CF525D0D2C5232916496E4B8 ] mcaudrv_simple C:\Windows\system32\drivers\mcaudrv_x64.sys
16:52:42.0578 0608 mcaudrv_simple - ok
16:52:42.0608 0608 [ F84C8F1000BC11E3B7B23CBD3BAFF111 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
16:52:42.0608 0608 Mcx2Svc - ok
16:52:42.0628 0608 [ E4F44EC214B3E381E1FC844A02926666 ] mdmxsdk C:\Windows\system32\DRIVERS\mdmxsdk.sys
16:52:42.0628 0608 mdmxsdk - ok
16:52:42.0668 0608 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
16:52:42.0668 0608 megasas - ok
16:52:42.0688 0608 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
16:52:42.0698 0608 MegaSR - ok
16:52:42.0708 0608 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
16:52:42.0718 0608 MMCSS - ok
16:52:42.0728 0608 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
16:52:42.0728 0608 Modem - ok
16:52:42.0748 0608 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
16:52:42.0748 0608 monitor - ok
16:52:42.0818 0608 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
16:52:42.0818 0608 mouclass - ok
16:52:42.0848 0608 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
16:52:42.0848 0608 mouhid - ok
16:52:42.0868 0608 [ 791AF66C4D0E7C90A3646066386FB571 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
16:52:42.0878 0608 mountmgr - ok
16:52:42.0948 0608 [ CB8AF049AC9BE419A77ADAE288673359 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
16:52:42.0948 0608 MozillaMaintenance - ok
16:52:42.0968 0608 [ 609D1D87649ECC19796F4D76D4C15CEA ] mpio C:\Windows\system32\DRIVERS\mpio.sys
16:52:42.0978 0608 mpio - ok
16:52:43.0008 0608 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
16:52:43.0008 0608 mpsdrv - ok
16:52:43.0058 0608 [ AECAB449567D1846DAD63ECE49E893E3 ] MpsSvc C:\Windows\system32\mpssvc.dll
16:52:43.0078 0608 MpsSvc - ok
16:52:43.0098 0608 [ 30524261BB51D96D6FCBAC20C810183C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
16:52:43.0108 0608 MRxDAV - ok
16:52:43.0168 0608 [ B7F3D2C40BDF8FFB73EBFB19C77734E2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
16:52:43.0168 0608 mrxsmb - ok
16:52:43.0198 0608 [ 86C6F88B5168CE21CF8D69D0B3FF5D19 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
16:52:43.0198 0608 mrxsmb10 - ok
16:52:43.0228 0608 [ B081069251C8E9F42CB8769D07148F9C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
16:52:43.0238 0608 mrxsmb20 - ok
16:52:43.0258 0608 [ 5C37497276E3B3A5488B23A326A754B7 ] msahci C:\Windows\system32\DRIVERS\msahci.sys
16:52:43.0268 0608 msahci - ok
16:52:43.0268 0608 [ 8D27B597229AED79430FB9DB3BCBFBD0 ] msdsm C:\Windows\system32\DRIVERS\msdsm.sys
16:52:43.0278 0608 msdsm - ok
16:52:43.0328 0608 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
16:52:43.0328 0608 MSDTC - ok
16:52:43.0378 0608 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
16:52:43.0388 0608 Msfs - ok
16:52:43.0418 0608 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
16:52:43.0418 0608 mshidkmdf - ok
16:52:43.0458 0608 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\DRIVERS\msisadrv.sys
16:52:43.0458 0608 msisadrv - ok
16:52:43.0488 0608 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
16:52:43.0498 0608 MSiSCSI - ok
16:52:43.0508 0608 msiserver - ok
16:52:43.0548 0608 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
16:52:43.0558 0608 MSKSSRV - ok
16:52:43.0588 0608 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
16:52:43.0588 0608 MSPCLOCK - ok
16:52:43.0598 0608 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
16:52:43.0598 0608 MSPQM - ok
16:52:43.0618 0608 [ 89CB141AA8616D8C6A4610FA26C60964 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
16:52:43.0628 0608 MsRPC - ok
16:52:43.0648 0608 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
16:52:43.0648 0608 mssmbios - ok
16:52:43.0658 0608 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
16:52:43.0658 0608 MSTEE - ok
16:52:43.0678 0608 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
16:52:43.0678 0608 MTConfig - ok
16:52:43.0708 0608 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
16:52:43.0708 0608 Mup - ok
16:52:43.0758 0608 [ B4187346F54E362DAFFE647B25A58D50 ] N360 C:\Program Files (x86)\Norton 360\Engine\4.4.0.12\ccSvcHst.exe
16:52:43.0758 0608 N360 - ok
16:52:43.0808 0608 [ 4987E079A4530FA737A128BE54B63B12 ] napagent C:\Windows\system32\qagentRT.dll
16:52:43.0818 0608 napagent - ok
16:52:43.0858 0608 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
16:52:43.0868 0608 NativeWifiP - ok
16:52:43.0918 0608 NAVENG - ok
16:52:43.0928 0608 NAVEX15 - ok
16:52:43.0968 0608 [ CAD515DBD07D082BB317D9928CE8962C ] NDIS C:\Windows\system32\drivers\ndis.sys
16:52:43.0988 0608 NDIS - ok
16:52:44.0028 0608 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
16:52:44.0028 0608 NdisCap - ok
16:52:44.0048 0608 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
16:52:44.0048 0608 NdisTapi - ok
16:52:44.0068 0608 [ F105BA1E22BF1F2EE8F005D4305E4BEC ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
16:52:44.0068 0608 Ndisuio - ok
16:52:44.0088 0608 [ 557DFAB9CA1FCB036AC77564C010DAD3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
16:52:44.0098 0608 NdisWan - ok
16:52:44.0108 0608 [ 659B74FB74B86228D6338D643CD3E3CF ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
16:52:44.0108 0608 NDProxy - ok
16:52:44.0128 0608 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
16:52:44.0128 0608 NetBIOS - ok
16:52:44.0148 0608 [ 9162B273A44AB9DCE5B44362731D062A ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
16:52:44.0168 0608 NetBT - ok
16:52:44.0198 0608 [ 0793F40B9B8A1BDD266296409DBD91EA ] Netlogon C:\Windows\system32\lsass.exe
16:52:44.0198 0608 Netlogon - ok
16:52:44.0238 0608 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
16:52:44.0248 0608 Netman - ok
16:52:44.0278 0608 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
16:52:44.0288 0608 netprofm - ok
16:52:44.0308 0608 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
16:52:44.0318 0608 NetTcpPortSharing - ok
16:52:44.0348 0608 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
16:52:44.0348 0608 nfrd960 - ok
16:52:44.0388 0608 [ D9A0CE66046D6EFA0C61BAA885CBA0A8 ] NlaSvc C:\Windows\System32\nlasvc.dll
16:52:44.0398 0608 NlaSvc - ok
16:52:44.0418 0608 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
16:52:44.0418 0608 Npfs - ok
16:52:44.0448 0608 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
16:52:44.0448 0608 nsi - ok
16:52:44.0458 0608 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
16:52:44.0458 0608 nsiproxy - ok
16:52:44.0548 0608 [ 378E0E0DFEA67D98AE6EA53ADBBD76BC ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
16:52:44.0578 0608 Ntfs - ok
16:52:44.0598 0608 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
16:52:44.0598 0608 Null - ok
16:52:44.0618 0608 [ A4D9C9A608A97F59307C2F2600EDC6A4 ] nvraid C:\Windows\system32\drivers\nvraid.sys
16:52:44.0618 0608 nvraid - ok
16:52:44.0678 0608 [ 6C1D5F70E7A6A3FD1C90D840EDC048B9 ] nvstor C:\Windows\system32\drivers\nvstor.sys
16:52:44.0678 0608 nvstor - ok
16:52:44.0708 0608 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\DRIVERS\nv_agp.sys
16:52:44.0718 0608 nv_agp - ok
16:52:44.0748 0608 [ D955D5DE998DB2476BF0892BE3A96C26 ] O2FLASH C:\Windows\system32\DRIVERS\o2flash.exe
16:52:44.0748 0608 O2FLASH - ok
16:52:44.0778 0608 [ 26DA4B40670AD436F7DAEC053A2A9ECA ] O2MDRDR C:\Windows\system32\DRIVERS\o2mdx64.sys
16:52:44.0778 0608 O2MDRDR - ok
16:52:44.0798 0608 [ 2E69A2ADC12DAA7AC7B4FFD8601E88B0 ] O2SDRDR C:\Windows\system32\DRIVERS\o2sdx64.sys
16:52:44.0808 0608 O2SDRDR - ok
16:52:44.0918 0608 [ 1F0E05DFF4F5A833168E49BE1256F002 ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
16:52:44.0928 0608 odserv - ok
16:52:44.0959 0608 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
16:52:44.0959 0608 ohci1394 - ok
16:52:45.0019 0608 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
16:52:45.0029 0608 ose - ok
16:52:45.0069 0608 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
16:52:45.0079 0608 p2pimsvc - ok
16:52:45.0099 0608 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
16:52:45.0109 0608 p2psvc - ok
16:52:45.0139 0608 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
16:52:45.0159 0608 Parport - ok
16:52:45.0179 0608 [ 7DAA117143316C4A1537E074A5A9EAF0 ] partmgr C:\Windows\system32\drivers\partmgr.sys
16:52:45.0209 0608 partmgr - ok
16:52:45.0249 0608 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
16:52:45.0249 0608 PcaSvc - ok
16:52:45.0289 0608 [ F36F6504009F2FB0DFD1B17A116AD74B ] pci C:\Windows\system32\DRIVERS\pci.sys
16:52:45.0299 0608 pci - ok
16:52:45.0329 0608 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\DRIVERS\pciide.sys
16:52:45.0329 0608 pciide - ok
16:52:45.0379 0608 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
16:52:45.0389 0608 pcmcia - ok
16:52:45.0409 0608 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
16:52:45.0409 0608 pcw - ok
16:52:45.0439 0608 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
16:52:45.0449 0608 PEAUTH - ok
16:52:45.0479 0608 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
16:52:45.0479 0608 PerfHost - ok
16:52:45.0599 0608 [ 557E9A86F65F0DE18C9B6751DFE9D3F1 ] pla C:\Windows\system32\pla.dll
16:52:45.0649 0608 pla - ok
16:52:45.0689 0608 [ 23157D583244400E1D7FBAEE2E4B31B7 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
16:52:45.0699 0608 PlugPlay - ok
16:52:45.0709 0608 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
16:52:45.0709 0608 PNRPAutoReg - ok
16:52:45.0739 0608 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
16:52:45.0739 0608 PNRPsvc - ok
16:52:45.0779 0608 [ 166EB40D1F5B47E615DE3D0FFFE5F243 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
16:52:45.0789 0608 PolicyAgent - ok
16:52:45.0819 0608 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
16:52:45.0829 0608 Power - ok
16:52:45.0869 0608 [ 27CC19E81BA5E3403C48302127BDA717 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
16:52:45.0869 0608 PptpMiniport - ok
16:52:45.0889 0608 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
16:52:45.0889 0608 Processor - ok
16:52:45.0969 0608 [ F381975E1F4346DE875CB07339CE8D3A ] ProfSvc C:\Windows\system32\profsvc.dll
16:52:45.0969 0608 ProfSvc - ok
16:52:45.0989 0608 [ 0793F40B9B8A1BDD266296409DBD91EA ] ProtectedStorage C:\Windows\system32\lsass.exe
16:52:45.0999 0608 ProtectedStorage - ok
16:52:46.0029 0608 [ EE992183BD8EAEFD9973F352E587A299 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
16:52:46.0029 0608 Psched - ok
16:52:46.0089 0608 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
16:52:46.0119 0608 ql2300 - ok
16:52:46.0139 0608 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
16:52:46.0139 0608 ql40xx - ok
16:52:46.0169 0608 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
16:52:46.0179 0608 QWAVE - ok
16:52:46.0189 0608 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
16:52:46.0189 0608 QWAVEdrv - ok
16:52:46.0199 0608 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
16:52:46.0199 0608 RasAcd - ok
16:52:46.0239 0608 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
16:52:46.0239 0608 RasAgileVpn - ok
16:52:46.0249 0608 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
16:52:46.0259 0608 RasAuto - ok
16:52:46.0269 0608 [ 87A6E852A22991580D6D39ADC4790463 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
16:52:46.0279 0608 Rasl2tp - ok
16:52:46.0309 0608 [ 47394ED3D16D053F5906EFE5AB51CC83 ] RasMan C:\Windows\System32\rasmans.dll
16:52:46.0319 0608 RasMan - ok
16:52:46.0329 0608 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
16:52:46.0329 0608 RasPppoe - ok
16:52:46.0349 0608 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
16:52:46.0349 0608 RasSstp - ok
16:52:46.0369 0608 [ 3BAC8142102C15D59A87757C1D41DCE5 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
16:52:46.0379 0608 rdbss - ok
16:52:46.0389 0608 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
16:52:46.0389 0608 rdpbus - ok
16:52:46.0439 0608 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
16:52:46.0439 0608 RDPCDD - ok
16:52:46.0449 0608 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
16:52:46.0449 0608 RDPENCDD - ok
16:52:46.0459 0608 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
16:52:46.0469 0608 RDPREFMP - ok
16:52:46.0489 0608 [ 8A3E6BEA1C53EA6177FE2B6EBA2C80D7 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
16:52:46.0489 0608 RDPWD - ok
16:52:46.0529 0608 [ 634B9A2181D98F15941236886164EC8B ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
16:52:46.0529 0608 rdyboost - ok
16:52:46.0569 0608 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
16:52:46.0569 0608 RemoteAccess - ok
16:52:46.0619 0608 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
16:52:46.0629 0608 RemoteRegistry - ok
16:52:46.0649 0608 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
16:52:46.0649 0608 RpcEptMapper - ok
16:52:46.0659 0608 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
16:52:46.0659 0608 RpcLocator - ok
16:52:46.0689 0608 [ 7266972E86890E2B30C0C322E906B027 ] RpcSs C:\Windows\system32\rpcss.dll
16:52:46.0699 0608 RpcSs - ok
16:52:46.0739 0608 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
16:52:46.0739 0608 rspndr - ok
16:52:46.0749 0608 [ 0793F40B9B8A1BDD266296409DBD91EA ] SamSs C:\Windows\system32\lsass.exe
16:52:46.0749 0608 SamSs - ok
16:52:46.0809 0608 [ 3289766038DB2CB14D07DC84392138D5 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
16:52:46.0809 0608 SASDIFSV - ok
16:52:46.0819 0608 [ 58A38E75F3316A83C23DF6173D41F2B5 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
16:52:46.0819 0608 SASKUTIL - ok
16:52:46.0849 0608 [ E3BBB89983DAF5622C1D50CF49F28227 ] sbp2port C:\Windows\system32\DRIVERS\sbp2port.sys
16:52:46.0849 0608 sbp2port - ok
16:52:46.0879 0608 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
16:52:46.0889 0608 SCardSvr - ok
16:52:46.0899 0608 [ C94DA20C7E3BA1DCA269BC8460D98387 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
16:52:46.0899 0608 scfilter - ok
16:52:46.0969 0608 [ 624D0F5FF99428BB90A5B8A4123E918E ] Schedule C:\Windows\system32\schedsvc.dll
16:52:46.0989 0608 Schedule - ok
16:52:47.0009 0608 [ 312E2F82AF11E79906898AC3E3D58A1F ] SCPolicySvc C:\Windows\System32\certprop.dll
16:52:47.0019 0608 SCPolicySvc - ok
16:52:47.0039 0608 [ 54E47AD086782D3AE9417C155CDCEB9B ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
16:52:47.0039 0608 sdbus - ok
16:52:47.0079 0608 [ 765A27C3279CE11D14CB9E4F5869FCA5 ] SDRSVC C:\Windows\System32\SDRSVC.dll
16:52:47.0089 0608 SDRSVC - ok
16:52:47.0109 0608 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
16:52:47.0109 0608 secdrv - ok
16:52:47.0129 0608 [ 463B386EBC70F98DA5DFF85F7E654346 ] seclogon C:\Windows\system32\seclogon.dll
16:52:47.0129 0608 seclogon - ok
16:52:47.0149 0608 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
16:52:47.0149 0608 SENS - ok
16:52:47.0159 0608 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
16:52:47.0169 0608 SensrSvc - ok
16:52:47.0179 0608 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
16:52:47.0189 0608 Serenum - ok
16:52:47.0209 0608 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
16:52:47.0209 0608 Serial - ok
16:52:47.0239 0608 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
16:52:47.0239 0608 sermouse - ok
16:52:47.0299 0608 [ C3BC61CE47FF6F4E88AB8A3B429A36AF ] SessionEnv C:\Windows\system32\sessenv.dll
16:52:47.0299 0608 SessionEnv - ok
16:52:47.0329 0608 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
16:52:47.0329 0608 sffdisk - ok
16:52:47.0339 0608 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\DRIVERS\sffp_mmc.sys
16:52:47.0339 0608 sffp_mmc - ok
16:52:47.0359 0608 [ 5588B8C6193EB1522490C122EB94DFFA ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
16:52:47.0379 0608 sffp_sd - ok
16:52:47.0379 0608 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
16:52:47.0389 0608 sfloppy - ok
16:52:47.0409 0608 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
16:52:47.0419 0608 SharedAccess - ok
16:52:47.0439 0608 [ 0298AC45D0EFFFB2DB4BAA7DD186E7BF ] ShellHWDetection C:\Windows\System32\shsvcs.dll
16:52:47.0439 0608 ShellHWDetection - ok
16:52:47.0459 0608 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
16:52:47.0459 0608 SiSRaid2 - ok
16:52:47.0469 0608 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
16:52:47.0479 0608 SiSRaid4 - ok
16:52:47.0499 0608 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
16:52:47.0499 0608 Smb - ok
16:52:47.0549 0608 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
16:52:47.0559 0608 SNMPTRAP - ok
16:52:47.0569 0608 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
16:52:47.0569 0608 spldr - ok
16:52:47.0659 0608 [ F8E1FA03CB70D54A9892AC88B91D1E7B ] Spooler C:\Windows\System32\spoolsv.exe
16:52:47.0669 0608 Spooler - ok
16:52:47.0789 0608 [ 913D843498553A1BC8F8DBAD6358E49F ] sppsvc C:\Windows\system32\sppsvc.exe
16:52:47.0879 0608 sppsvc - ok
16:52:47.0889 0608 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
16:52:47.0899 0608 sppuinotify - ok
16:52:47.0979 0608 [ 96BABC4906ECDB1C69D1176F8647AD8E ] SRTSP C:\Windows\System32\Drivers\N360x64\0404000.00C\SRTSP64.SYS
16:52:47.0989 0608 SRTSP - ok
16:52:48.0029 0608 [ C7F491A290E0E4222F5CDCD50EEB8167 ] SRTSPX C:\Windows\system32\drivers\N360x64\0404000.00C\SRTSPX64.SYS
16:52:48.0029 0608 SRTSPX - ok
16:52:48.0089 0608 [ 148D50904D2A0DF29A19778715EB35BB ] srv C:\Windows\system32\DRIVERS\srv.sys
16:52:48.0099 0608 srv - ok
16:52:48.0169 0608 [ CE2189FE31D36678AC9EB7DDEE08EC96 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
16:52:48.0169 0608 srv2 - ok
16:52:48.0229 0608 [ 0C4540311E11664B245A263E1154CEF8 ] SrvHsfHDA C:\Windows\system32\DRIVERS\VSTAZL6.SYS
16:52:48.0229 0608 SrvHsfHDA - ok
16:52:48.0319 0608 [ 02071D207A9858FBE3A48CBFD59C4A04 ] SrvHsfV92 C:\Windows\system32\DRIVERS\VSTDPV6.SYS
16:52:48.0389 0608 SrvHsfV92 - ok
16:52:48.0419 0608 [ 18E40C245DBFAF36FD0134A7EF2DF396 ] SrvHsfWinac C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
16:52:48.0429 0608 SrvHsfWinac - ok
16:52:48.0469 0608 [ CB69EDEB069A49577592835659CD0E46 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
16:52:48.0469 0608 srvnet - ok
16:52:48.0519 0608 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
16:52:48.0519 0608 SSDPSRV - ok
16:52:48.0529 0608 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
16:52:48.0539 0608 SstpSvc - ok
16:52:48.0569 0608 Steam Client Service - ok
16:52:48.0599 0608 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
16:52:48.0599 0608 stexstor - ok
16:52:48.0699 0608 [ 52D0E33B681BD0F33FDC08812FEE4F7D ] stisvc C:\Windows\System32\wiaservc.dll
16:52:48.0709 0608 stisvc - ok
16:52:48.0739 0608 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
16:52:48.0739 0608 swenum - ok
16:52:48.0779 0608 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
16:52:48.0789 0608 swprv - ok
16:52:48.0819 0608 [ 659B227A72B76115975A6A9491B2FE1F ] SymDS C:\Windows\system32\drivers\N360x64\0404000.00C\SYMDS64.SYS
16:52:48.0829 0608 SymDS - ok
16:52:48.0859 0608 [ 9F5783A4A03D0091CDBDAA858B566926 ] SymEFA C:\Windows\system32\drivers\N360x64\0404000.00C\SYMEFA64.SYS
16:52:48.0859 0608 SymEFA - ok
16:52:48.0919 0608 [ 3F9D5FE52585E2653E59FDBFDF09A94C ] SymEvent C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
16:52:48.0919 0608 SymEvent - ok
16:52:48.0959 0608 [ F57588546E738DB1583981D8F44E9BC2 ] SymIRON C:\Windows\system32\drivers\N360x64\0404000.00C\Ironx64.SYS
16:52:48.0959 0608 SymIRON - ok
16:52:49.0029 0608 [ 3ADFB72F0797AE3832509FE030755E21 ] SYMTDIv C:\Windows\System32\Drivers\N360x64\0404000.00C\SYMTDIV.SYS
16:52:49.0029 0608 SYMTDIv - ok
16:52:49.0079 0608 [ BCF305959B53B200CEB2AD25AD22F8A7 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
16:52:49.0079 0608 SynTP - ok
16:52:49.0159 0608 [ 3C1284516A62078FB68F768DE4F1A7BE ] SysMain C:\Windows\system32\sysmain.dll
16:52:49.0189 0608 SysMain - ok
16:52:49.0219 0608 szkg5 - ok
16:52:49.0249 0608 [ 238935C3CF2854886DC7CBB2A0E2CC66 ] TabletInputService C:\Windows\System32\TabSvc.dll
16:52:49.0249 0608 TabletInputService - ok
16:52:49.0279 0608 [ 884264AC597B690C5707C89723BB8E7B ] TapiSrv C:\Windows\System32\tapisrv.dll
16:52:49.0279 0608 TapiSrv - ok
16:52:49.0309 0608 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
16:52:49.0319 0608 TBS - ok
16:52:49.0439 0608 [ 90A2D722CF64D911879D6C4A4F802A4D ] Tcpip C:\Windows\system32\drivers\tcpip.sys
16:52:49.0489 0608 Tcpip - ok
16:52:49.0529 0608 [ 90A2D722CF64D911879D6C4A4F802A4D ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
16:52:49.0539 0608 TCPIP6 - ok
16:52:49.0579 0608 [ 76D078AF6F587B162D50210F761EB9ED ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
16:52:49.0579 0608 tcpipreg - ok
16:52:49.0609 0608 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
16:52:49.0609 0608 TDPIPE - ok
16:52:49.0619 0608 [ E4245BDA3190A582D55ED09E137401A9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
16:52:49.0619 0608 TDTCP - ok
16:52:49.0639 0608 [ 079125C4B17B01FCAEEBCE0BCB290C0F ] tdx C:\Windows\system32\DRIVERS\tdx.sys
16:52:49.0639 0608 tdx - ok
16:52:49.0659 0608 [ C448651339196C0E869A355171875522 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
16:52:49.0659 0608 TermDD - ok
16:52:49.0699 0608 [ 0F05EC2887BFE197AD82A13287D2F404 ] TermService C:\Windows\System32\termsrv.dll
16:52:49.0709 0608 TermService - ok
16:52:49.0739 0608 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
16:52:49.0739 0608 Themes - ok
16:52:49.0759 0608 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
16:52:49.0759 0608 THREADORDER - ok
16:52:49.0779 0608 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
16:52:49.0779 0608 TrkWks - ok
16:52:49.0849 0608 [ 840F7FB849F5887A49BA18C13B2DA920 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
16:52:49.0849 0608 TrustedInstaller - ok
16:52:49.0879 0608 [ 61B96C26131E37B24E93327A0BD1FB95 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
16:52:49.0879 0608 tssecsrv - ok
16:52:49.0929 0608 [ 3836171A2CDF3AF8EF10856DB9835A70 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
16:52:49.0929 0608 tunnel - ok
16:52:49.0959 0608 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
16:52:49.0959 0608 uagp35 - ok
16:52:49.0989 0608 [ D47BAEAD86C65D4F4069D7CE0A4EDCEB ] udfs C:\Windows\system32\DRIVERS\udfs.sys
16:52:49.0999 0608 udfs - ok
16:52:50.0039 0608 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
16:52:50.0039 0608 UI0Detect - ok
16:52:50.0079 0608 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\DRIVERS\uliagpkx.sys
16:52:50.0079 0608 uliagpkx - ok
16:52:50.0109 0608 [ EAB6C35E62B1B0DB0D1B48B671D3A117 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
16:52:50.0109 0608 umbus - ok
16:52:50.0129 0608 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
16:52:50.0129 0608 UmPass - ok
16:52:50.0219 0608 [ 70DDE3A86DBEB1D6C3C30AD687B1877A ] Updater Service C:\Program Files\Gateway\Gateway Updater\UpdaterService.exe
16:52:50.0219 0608 Updater Service - ok
16:52:50.0259 0608 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
16:52:50.0269 0608 upnphost - ok
16:52:50.0319 0608 [ FB251567F41BC61988B26731DEC19E4B ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
16:52:50.0319 0608 USBAAPL64 - ok
16:52:50.0369 0608 [ 7B6A127C93EE590E4D79A5F2A76FE46F ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
16:52:50.0369 0608 usbccgp - ok
16:52:50.0399 0608 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\DRIVERS\usbcir.sys
16:52:50.0399 0608 usbcir - ok
16:52:50.0429 0608 [ 92969BA5AC44E229C55A332864F79677 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
16:52:50.0439 0608 usbehci - ok
16:52:50.0479 0608 [ E7DF1CFD28CA86B35EF5ADD0735CEEF3 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
16:52:50.0479 0608 usbhub - ok
16:52:50.0509 0608 [ F1BB1E55F1E7A65C5839CCC7B36D773E ] usbohci C:\Windows\system32\drivers\usbohci.sys
16:52:50.0529 0608 usbohci - ok
16:52:50.0559 0608 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
16:52:50.0559 0608 usbprint - ok
16:52:50.0619 0608 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
16:52:50.0619 0608 usbscan - ok
16:52:50.0659 0608 [ F39983647BC1F3E6100778DDFE9DCE29 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
16:52:50.0659 0608 USBSTOR - ok
16:52:50.0689 0608 [ BC3070350A491D84B518D7CCA9ABD36F ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
16:52:50.0689 0608 usbuhci - ok
16:52:50.0749 0608 [ 7CB8C573C6E4A2714402CC0A36EAB4FE ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
16:52:50.0749 0608 usbvideo - ok
16:52:50.0779 0608 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
16:52:50.0779 0608 UxSms - ok
16:52:50.0789 0608 [ 0793F40B9B8A1BDD266296409DBD91EA ] VaultSvc C:\Windows\system32\lsass.exe
16:52:50.0799 0608 VaultSvc - ok
16:52:50.0829 0608 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\DRIVERS\vdrvroot.sys
16:52:50.0829 0608 vdrvroot - ok
16:52:50.0849 0608 [ 44D73E0BBC1D3C8981304BA15135C2F2 ] vds C:\Windows\System32\vds.exe
16:52:50.0859 0608 vds - ok
16:52:50.0879 0608 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
16:52:50.0879 0608 vga - ok
16:52:50.0899 0608 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
16:52:50.0899 0608 VgaSave - ok
16:52:50.0929 0608 [ C82E748660F62A242B2DFAC1442F22A4 ] vhdmp C:\Windows\system32\DRIVERS\vhdmp.sys
16:52:50.0929 0608 vhdmp - ok
16:52:50.0949 0608 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\DRIVERS\viaide.sys
16:52:50.0949 0608 viaide - ok
16:52:50.0979 0608 [ 2B1A3DAE2B4E70DBBA822B7A03FBD4A3 ] volmgr C:\Windows\system32\DRIVERS\volmgr.sys
16:52:50.0979 0608 volmgr - ok
16:52:51.0009 0608 [ 99B0CBB569CA79ACAED8C91461D765FB ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
16:52:51.0019 0608 volmgrx - ok
16:52:51.0029 0608 [ 58F82EED8CA24B461441F9C3E4F0BF5C ] volsnap C:\Windows\system32\DRIVERS\volsnap.sys
16:52:51.0029 0608 volsnap - ok
16:52:51.0059 0608 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
16:52:51.0059 0608 vsmraid - ok
16:52:51.0119 0608 [ 787898BF9FB6D7BD87A36E2D95C899BA ] VSS C:\Windows\system32\vssvc.exe
16:52:51.0149 0608 VSS - ok
16:52:51.0179 0608 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
16:52:51.0179 0608 vwifibus - ok
16:52:51.0199 0608 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
16:52:51.0209 0608 vwififlt - ok
16:52:51.0249 0608 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
16:52:51.0259 0608 W32Time - ok
16:52:51.0279 0608 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
16:52:51.0279 0608 WacomPen - ok
16:52:51.0369 0608 [ 4AA2CC5979AFF984227364F2C23B04F3 ] WajamUpdater C:\Program Files (x86)\Wajam\Updater\WajamUpdater.exe
16:52:51.0369 0608 WajamUpdater - ok
16:52:51.0409 0608 [ 47CA49400643EFFD3F1C9A27E1D69324 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
16:52:51.0409 0608 WANARP - ok
16:52:51.0409 0608 [ 47CA49400643EFFD3F1C9A27E1D69324 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
16:52:51.0419 0608 Wanarpv6 - ok
16:52:51.0479 0608 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
16:52:51.0509 0608 WatAdminSvc - ok
16:52:51.0579 0608 [ 5AB1BB85BD8B5089CC5D64200DEDAE68 ] wbengine C:\Windows\system32\wbengine.exe
16:52:51.0609 0608 wbengine - ok
16:52:51.0649 0608 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
16:52:51.0659 0608 WbioSrvc - ok
16:52:51.0699 0608 [ DD1BAE8EBFC653824D29CCF8C9054D68 ] wcncsvc C:\Windows\System32\wcncsvc.dll
16:52:51.0709 0608 wcncsvc - ok
16:52:51.0719 0608 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
16:52:51.0719 0608 WcsPlugInService - ok
16:52:51.0749 0608 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
16:52:51.0749 0608 Wd - ok
16:52:51.0789 0608 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
16:52:51.0799 0608 Wdf01000 - ok
16:52:51.0819 0608 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
16:52:51.0829 0608 WdiServiceHost - ok
16:52:51.0829 0608 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
16:52:51.0829 0608 WdiSystemHost - ok
16:52:51.0889 0608 [ 733006127F235BE7C35354EBEE7B9A7B ] WebClient C:\Windows\System32\webclnt.dll
16:52:51.0889 0608 WebClient - ok
16:52:51.0909 0608 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
16:52:51.0919 0608 Wecsvc - ok
16:52:51.0929 0608 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
16:52:51.0929 0608 wercplsupport - ok
16:52:51.0949 0608 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
16:52:51.0959 0608 WerSvc - ok
16:52:52.0029 0608 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
16:52:52.0039 0608 WfpLwf - ok
16:52:52.0049 0608 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
16:52:52.0049 0608 WIMMount - ok
16:52:52.0089 0608 [ A6EA7A3FC4B00F48535B506DB1E86EFD ] winachsf C:\Windows\system32\DRIVERS\CAX_CNXT.sys
16:52:52.0099 0608 winachsf - ok
16:52:52.0129 0608 WinDefend - ok
16:52:52.0129 0608 WinHttpAutoProxySvc - ok
16:52:52.0189 0608 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
16:52:52.0189 0608 Winmgmt - ok
16:52:52.0259 0608 [ 41FBB751936B387F9179E7F03A74FE29 ] WinRM C:\Windows\system32\WsmSvc.dll
16:52:52.0299 0608 WinRM - ok
16:52:52.0369 0608 [ 817EAFF5D38674EDD7713B9DFB8E9791 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
16:52:52.0379 0608 WinUsb - ok
16:52:52.0429 0608 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
16:52:52.0439 0608 Wlansvc - ok
16:52:52.0499 0608 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
16:52:52.0499 0608 WmiAcpi - ok
16:52:52.0529 0608 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
16:52:52.0539 0608 wmiApSrv - ok
16:52:52.0559 0608 WMPNetworkSvc - ok
16:52:52.0589 0608 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
16:52:52.0589 0608 WPCSvc - ok
16:52:52.0619 0608 [ 2E57DDF2880A7E52E76F41C7E96D327B ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
16:52:52.0629 0608 WPDBusEnum - ok
16:52:52.0659 0608 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
16:52:52.0659 0608 ws2ifsl - ok
16:52:52.0709 0608 [ 8F9F3969933C02DA96EB0F84576DB43E ] wscsvc C:\Windows\System32\wscsvc.dll
16:52:52.0709 0608 wscsvc - ok
16:52:52.0719 0608 WSearch - ok
16:52:52.0789 0608 [ 38340204A2D0228F1E87740FC5E554A7 ] wuauserv C:\Windows\system32\wuaueng.dll
16:52:52.0849 0608 wuauserv - ok
16:52:52.0879 0608 [ 7CADC74271DD6461C452C271B30BD378 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
16:52:52.0879 0608 WudfPf - ok
16:52:52.0909 0608 [ 3B197AF0FFF08AA66B6B2241CA538D64 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
16:52:52.0909 0608 WUDFRd - ok
16:52:52.0950 0608 [ B551D6637AA0E132C18AC6E504F7B79B ] wudfsvc C:\Windows\System32\WUDFSvc.dll
16:52:52.0950 0608 wudfsvc - ok
16:52:52.0970 0608 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
16:52:52.0980 0608 WwanSvc - ok
16:52:53.0010 0608 [ E8F3FA126A06F8E7088F63757112A186 ] XAudio C:\Windows\system32\DRIVERS\XAudio64.sys
16:52:53.0010 0608 XAudio - ok
16:52:53.0060 0608 [ 79D9CE9614C955DD31AA2556B4014662 ] yukonw7 C:\Windows\system32\DRIVERS\yk62x64.sys
16:52:53.0060 0608 yukonw7 - ok
16:52:53.0090 0608 ================ Scan global ===============================
16:52:53.0120 0608 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
16:52:53.0160 0608 [ B200DECA2186858595A97FBE63E896CC ] C:\Windows\system32\winsrv.dll
16:52:53.0180 0608 [ B200DECA2186858595A97FBE63E896CC ] C:\Windows\system32\winsrv.dll
16:52:53.0210 0608 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
16:52:53.0240 0608 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
16:52:53.0250 0608 [Global] - ok
16:52:53.0250 0608 ================ Scan MBR ==================================
16:52:53.0280 0608 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
16:52:53.0540 0608 \Device\Harddisk0\DR0 - ok
16:52:53.0540 0608 ================ Scan VBR ==================================
16:52:53.0550 0608 [ 617D802F713544E300C9C87601518EAD ] \Device\Harddisk0\DR0\Partition1
16:52:53.0550 0608 \Device\Harddisk0\DR0\Partition1 - ok
16:52:53.0570 0608 [ C8CCC81E5EB1F7C0CC79EFF38B6CBA81 ] \Device\Harddisk0\DR0\Partition2
16:52:53.0570 0608 \Device\Harddisk0\DR0\Partition2 - ok
16:52:53.0570 0608 ============================================================
16:52:53.0570 0608 Scan finished
16:52:53.0570 0608 ============================================================
16:52:53.0580 1964 Detected object count: 0
16:52:53.0580 1964 Actual detected object count: 0
16:53:23.0325 2540 ============================================================
16:53:23.0325 2540 Scan started
16:53:23.0325 2540 Mode: Manual; TDLFS;
16:53:23.0325 2540 ============================================================
16:53:23.0475 2540 ================ Scan system memory ========================
16:53:23.0475 2540 System memory - ok
16:53:23.0475 2540 ================ Scan services =============================
16:53:23.0535 2540 [ 7D9D615201A483D6FA99491C2E655A5A ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
16:53:23.0535 2540 !SASCORE - ok
16:53:23.0675 2540 [ 1B00662092F9F9568B995902F0CC40D5 ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
16:53:23.0675 2540 1394ohci - ok
16:53:23.0715 2540 [ 6F11E88748CDEFD2F76AA215F97DDFE5 ] ACPI C:\Windows\system32\DRIVERS\ACPI.sys
16:53:23.0715 2540 ACPI - ok
16:53:23.0745 2540 [ 63B05A0420CE4BF0E4AF6DCC7CADA254 ] AcpiPmi C:\Windows\system32\DRIVERS\acpipmi.sys
16:53:23.0745 2540 AcpiPmi - ok
16:53:23.0905 2540 [ E12CFCF1DDBFC50948A75E6E38793225 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
16:53:23.0905 2540 AdobeFlashPlayerUpdateSvc - ok
16:53:23.0955 2540 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
16:53:23.0965 2540 adp94xx - ok
16:53:24.0005 2540 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
16:53:24.0005 2540 adpahci - ok
16:53:24.0025 2540 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
16:53:24.0025 2540 adpu320 - ok
16:53:24.0075 2540 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
16:53:24.0075 2540 AeLookupSvc - ok
16:53:24.0125 2540 [ B9384E03479D2506BC924C16A3DB87BC ] AFD C:\Windows\system32\drivers\afd.sys
16:53:24.0135 2540 AFD - ok
16:53:24.0165 2540 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\DRIVERS\agp440.sys
16:53:24.0165 2540 agp440 - ok
16:53:24.0205 2540 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
16:53:24.0205 2540 ALG - ok
16:53:24.0215 2540 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\DRIVERS\aliide.sys
16:53:24.0215 2540 aliide - ok
16:53:24.0255 2540 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\DRIVERS\amdide.sys
16:53:24.0255 2540 amdide - ok
16:53:24.0275 2540 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
16:53:24.0275 2540 AmdK8 - ok
16:53:24.0305 2540 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
16:53:24.0305 2540 AmdPPM - ok
16:53:24.0335 2540 [ EC7EBAB00A4D8448BAB68D1E49B4BEB9 ] amdsata C:\Windows\system32\drivers\amdsata.sys
16:53:24.0335 2540 amdsata - ok
16:53:24.0365 2540 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
16:53:24.0365 2540 amdsbs - ok
16:53:24.0375 2540 [ DB27766102C7BF7E95140A2AA81D042E ] amdxata C:\Windows\system32\drivers\amdxata.sys
16:53:24.0375 2540 amdxata - ok
16:53:24.0395 2540 [ 42FD751B27FA0E9C69BB39F39E409594 ] AppID C:\Windows\system32\drivers\appid.sys
16:53:24.0395 2540 AppID - ok
16:53:24.0425 2540 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
16:53:24.0425 2540 AppIDSvc - ok
16:53:24.0445 2540 [ D065BE66822847B7F127D1F90158376E ] Appinfo C:\Windows\System32\appinfo.dll
16:53:24.0445 2540 Appinfo - ok
16:53:24.0515 2540 [ 7EF47644B74EBE721CC32211D3C35E76 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
16:53:24.0525 2540 Apple Mobile Device - ok
16:53:24.0575 2540 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
16:53:24.0575 2540 arc - ok
16:53:24.0615 2540 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
16:53:24.0615 2540 arcsas - ok
16:53:24.0635 2540 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
16:53:24.0635 2540 AsyncMac - ok
16:53:24.0655 2540 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\DRIVERS\atapi.sys
16:53:24.0655 2540 atapi - ok
16:53:24.0705 2540 [ B2C3A8618867404475228F7DD260698B ] athr C:\Windows\system32\DRIVERS\athrx.sys
16:53:24.0715 2540 athr - ok
16:53:24.0765 2540 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
16:53:24.0765 2540 AudioEndpointBuilder - ok
16:53:24.0785 2540 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioSrv C:\Windows\System32\Audiosrv.dll
16:53:24.0785 2540 AudioSrv - ok
16:53:24.0805 2540 [ B20B5FA5CA050E9926E4D1DB81501B32 ] AxInstSV C:\Windows\System32\AxInstSV.dll
16:53:24.0805 2540 AxInstSV - ok
16:53:24.0895 2540 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
16:53:24.0895 2540 b06bdrv - ok
16:53:24.0925 2540 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
16:53:24.0925 2540 b57nd60a - ok
16:53:24.0955 2540 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
16:53:24.0955 2540 BDESVC - ok
16:53:24.0975 2540 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
16:53:24.0975 2540 Beep - ok
16:53:25.0015 2540 [ 4992C609A6315671463E30F6512BC022 ] BFE C:\Windows\System32\bfe.dll
16:53:25.0015 2540 BFE - ok
16:53:25.0205 2540 [ DDAE7B27BDBB3DA1276784753138B9C2 ] BHDrvx64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_4.0.0.127\Definitions\BASHDefs\20100901.003\BHDrvx64.sys
16:53:25.0215 2540 BHDrvx64 - ok
16:53:25.0265 2540 [ 7F0C323FE3DA28AA4AA1BDA3F575707F ] BITS C:\Windows\System32\qmgr.dll
16:53:25.0275 2540 BITS - ok
16:53:25.0295 2540 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
16:53:25.0295 2540 blbdrive - ok
16:53:25.0375 2540 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
16:53:25.0385 2540 Bonjour Service - ok
16:53:25.0415 2540 [ 19D20159708E152267E53B66677A4995 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
16:53:25.0415 2540 bowser - ok
16:53:25.0445 2540 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
16:53:25.0445 2540 BrFiltLo - ok
16:53:25.0465 2540 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
16:53:25.0465 2540 BrFiltUp - ok
16:53:25.0495 2540 [ 94FBC06F294D58D02361918418F996E3 ] Browser C:\Windows\System32\browser.dll
16:53:25.0495 2540 Browser - ok
16:53:25.0575 2540 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
16:53:25.0575 2540 Brserid - ok
16:53:25.0615 2540 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
16:53:25.0615 2540 BrSerWdm - ok
16:53:25.0645 2540 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
16:53:25.0655 2540 BrUsbMdm - ok
16:53:25.0705 2540 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
16:53:25.0705 2540 BrUsbSer - ok
16:53:25.0735 2540 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
16:53:25.0735 2540 BTHMODEM - ok
16:53:25.0815 2540 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
16:53:25.0815 2540 bthserv - ok
16:53:25.0865 2540 [ D1787E11C6A0078DDEAF8CF3EE2AB293 ] CAXHWAZL C:\Windows\system32\DRIVERS\CAXHWAZL.sys
16:53:25.0865 2540 CAXHWAZL - ok
16:53:26.0025 2540 [ 37F1BAEC39B505B3B51893A35C8337EA ] ccHP C:\Windows\system32\drivers\N360x64\0404000.00C\ccHPx64.sys
16:53:26.0035 2540 ccHP - ok
16:53:26.0065 2540 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
16:53:26.0065 2540 cdfs - ok
16:53:26.0105 2540 [ 83D2D75E1EFB81B3450C18131443F7DB ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
16:53:26.0115 2540 cdrom - ok
16:53:26.0145 2540 [ 312E2F82AF11E79906898AC3E3D58A1F ] CertPropSvc C:\Windows\System32\certprop.dll
16:53:26.0145 2540 CertPropSvc - ok
16:53:26.0185 2540 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
16:53:26.0185 2540 circlass - ok
16:53:26.0215 2540 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
16:53:26.0225 2540 CLFS - ok
16:53:26.0295 2540 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:53:26.0305 2540 clr_optimization_v2.0.50727_32 - ok
16:53:26.0355 2540 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
16:53:26.0355 2540 clr_optimization_v2.0.50727_64 - ok
16:53:26.0435 2540 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
16:53:26.0435 2540 clr_optimization_v4.0.30319_32 - ok
16:53:26.0515 2540 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
16:53:26.0515 2540 clr_optimization_v4.0.30319_64 - ok
16:53:26.0555 2540 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
16:53:26.0555 2540 CmBatt - ok
16:53:26.0595 2540 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\DRIVERS\cmdide.sys
16:53:26.0595 2540 cmdide - ok
16:53:26.0645 2540 [ F95FD4CB7DA00BA2A63CE9F6B5C053E1 ] CNG C:\Windows\system32\Drivers\cng.sys
16:53:26.0645 2540 CNG - ok
16:53:26.0695 2540 [ 0D23C3312838EEA1ED55D5F135BCA613 ] CnxtHdAudService C:\Windows\system32\drivers\CHDRT64.sys
16:53:26.0705 2540 CnxtHdAudService - ok
16:53:26.0725 2540 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
16:53:26.0725 2540 Compbatt - ok
16:53:26.0755 2540 [ F26B3A86F6FA87CA360B879581AB4123 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
16:53:26.0755 2540 CompositeBus - ok
16:53:26.0765 2540 COMSysApp - ok
16:53:26.0795 2540 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
16:53:26.0795 2540 crcdisk - ok
16:53:26.0855 2540 [ 8C57411B66282C01533CB776F98AD384 ] CryptSvc C:\Windows\system32\cryptsvc.dll
16:53:26.0855 2540 CryptSvc - ok
16:53:26.0895 2540 [ 7266972E86890E2B30C0C322E906B027 ] DcomLaunch C:\Windows\system32\rpcss.dll
16:53:26.0895 2540 DcomLaunch - ok
16:53:26.0935 2540 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
16:53:26.0945 2540 defragsvc - ok
16:53:26.0975 2540 [ 3F1DC527070ACB87E40AFE46EF6DA749 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
16:53:26.0975 2540 DfsC - ok
16:53:27.0015 2540 [ CE3B9562D997F69B330D181A8875960F ] Dhcp C:\Windows\system32\dhcpcore.dll
16:53:27.0025 2540 Dhcp - ok
16:53:27.0075 2540 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
16:53:27.0075 2540 discache - ok
16:53:27.0115 2540 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
16:53:27.0115 2540 Disk - ok
16:53:27.0175 2540 [ 85CF424C74A1D5EC33533E1DBFF9920A ] Dnscache C:\Windows\System32\dnsrslvr.dll
16:53:27.0175 2540 Dnscache - ok
16:53:27.0225 2540 [ 14452ACDB09B70964C8C21BF80A13ACB ] dot3svc C:\Windows\System32\dot3svc.dll
16:53:27.0225 2540 dot3svc - ok
16:53:27.0235 2540 [ 8C2BA6BEA949EE6E68385F5692BAFB94 ] DPS C:\Windows\system32\dps.dll
16:53:27.0235 2540 DPS - ok
16:53:27.0265 2540 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
16:53:27.0265 2540 drmkaud - ok
16:53:27.0335 2540 [ 1633B9ABF52784A1331476397A48CBEF ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
16:53:27.0345 2540 DXGKrnl - ok
16:53:27.0375 2540 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
16:53:27.0375 2540 EapHost - ok
16:53:27.0495 2540 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
16:53:27.0515 2540 ebdrv - ok
16:53:27.0575 2540 [ 066108AE4C35835081598827A1A7D08D ] eeCtrl C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
16:53:27.0575 2540 eeCtrl - ok
16:53:27.0615 2540 [ 0793F40B9B8A1BDD266296409DBD91EA ] EFS C:\Windows\System32\lsass.exe
16:53:27.0615 2540 EFS - ok
16:53:27.0695 2540 [ 47C071994C3F649F23D9CD075AC9304A ] ehRecvr C:\Windows\ehome\ehRecvr.exe
16:53:27.0705 2540 ehRecvr - ok
16:53:27.0735 2540 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
16:53:27.0745 2540 ehSched - ok
16:53:27.0795 2540 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
16:53:27.0805 2540 elxstor - ok
16:53:27.0935 2540 [ 7C35C6865957289D9EFE6CC73F4AB2E1 ] ePowerSvc C:\Program Files\Gateway\Gateway Power Management\ePowerSvc.exe
16:53:27.0945 2540 ePowerSvc - ok
16:53:27.0975 2540 [ 12866876E3851F1E5D462B2A83E25578 ] EraserUtilRebootDrv C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
16:53:27.0975 2540 EraserUtilRebootDrv - ok
16:53:27.0995 2540 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\DRIVERS\errdev.sys
16:53:27.0995 2540 ErrDev - ok
16:53:28.0045 2540 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
16:53:28.0055 2540 EventSystem - ok
16:53:28.0075 2540 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
16:53:28.0075 2540 exfat - ok
16:53:28.0125 2540 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
16:53:28.0125 2540 fastfat - ok
16:53:28.0165 2540 [ D607B2F1BEE3992AA6C2C92C0A2F0855 ] Fax C:\Windows\system32\fxssvc.exe
16:53:28.0175 2540 Fax - ok
16:53:28.0195 2540 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
16:53:28.0195 2540 fdc - ok
16:53:28.0225 2540 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
16:53:28.0225 2540 fdPHost - ok
16:53:28.0245 2540 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
16:53:28.0245 2540 FDResPub - ok
16:53:28.0275 2540 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
16:53:28.0275 2540 FileInfo - ok
16:53:28.0295 2540 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
16:53:28.0295 2540 Filetrace - ok
16:53:28.0315 2540 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
16:53:28.0315 2540 flpydisk - ok
16:53:28.0335 2540 [ F7866AF72ABBAF84B1FA5AA195378C59 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
16:53:28.0335 2540 FltMgr - ok
16:53:28.0415 2540 [ CB5E4B9C319E3C6BB363EB7E58A4A051 ] FontCache C:\Windows\system32\FntCache.dll
16:53:28.0415 2540 FontCache - ok
16:53:28.0465 2540 [ 8D89E3131C27FDD6932189CB785E1B7A ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
16:53:28.0465 2540 FontCache3.0.0.0 - ok
16:53:28.0515 2540 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
16:53:28.0515 2540 FsDepends - ok
16:53:28.0535 2540 [ E95EF8547DE20CF0603557C0CF7A9462 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
16:53:28.0535 2540 Fs_Rec - ok
16:53:28.0585 2540 [ AE87BA80D0EC3B57126ED2CDC15B24ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
16:53:28.0585 2540 fvevol - ok
16:53:28.0625 2540 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
16:53:28.0625 2540 gagp30kx - ok
16:53:28.0675 2540 [ C403C5DB49A0F9AAF4F2128EDC0106D8 ] GamesAppService C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
16:53:28.0675 2540 GamesAppService - ok
16:53:28.0715 2540 [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
16:53:28.0715 2540 GEARAspiWDM - ok
16:53:28.0765 2540 [ FE5AB4525BC2EC68B9119A6E5D40128B ] gpsvc C:\Windows\System32\gpsvc.dll
16:53:28.0775 2540 gpsvc - ok
16:53:28.0875 2540 [ 816FD5A6F3C2F3D600900096632FC60E ] Greg_Service C:\Program Files (x86)\Gateway\Registration\GregHSRW.exe
16:53:28.0885 2540 Greg_Service - ok
16:53:29.0005 2540 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:53:29.0005 2540 gupdate - ok
16:53:29.0015 2540 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:53:29.0025 2540 gupdatem - ok
16:53:29.0065 2540 [ CC839E8D766CC31A7710C9F38CF3E375 ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
16:53:29.0065 2540 gusvc - ok
16:53:29.0095 2540 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
16:53:29.0095 2540 hcw85cir - ok
16:53:29.0125 2540 [ 6410F6F415B2A5A9037224C41DA8BF12 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
16:53:29.0125 2540 HdAudAddService - ok
16:53:29.0155 2540 [ 0A49913402747A0B67DE940FB42CBDBB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
16:53:29.0155 2540 HDAudBus - ok
16:53:29.0175 2540 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
16:53:29.0175 2540 HidBatt - ok
16:53:29.0205 2540 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
16:53:29.0205 2540 HidBth - ok
16:53:29.0235 2540 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
16:53:29.0235 2540 HidIr - ok
16:53:29.0265 2540 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
16:53:29.0265 2540 hidserv - ok
16:53:29.0315 2540 [ B3BF6B5B50006DEF50B66306D99FCF6F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
16:53:29.0315 2540 HidUsb - ok
16:53:29.0335 2540 [ EFA58EDE58DD74388FFD04CB32681518 ] hkmsvc C:\Windows\system32\kmsvc.dll
16:53:29.0345 2540 hkmsvc - ok
16:53:29.0355 2540 [ 046B2673767CA626E2CFB7FDF735E9E8 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
16:53:29.0365 2540 HomeGroupListener - ok
16:53:29.0405 2540 [ 06A7422224D9865A5613710A089987DF ] HomeGroupProvider C:\Windows\system32\provsvc.dll
16:53:29.0405 2540 HomeGroupProvider - ok
16:53:29.0425 2540 [ 0886D440058F203EBA0E1825E4355914 ] HpSAMD C:\Windows\system32\DRIVERS\HpSAMD.sys
16:53:29.0425 2540 HpSAMD - ok
16:53:29.0535 2540 [ 447256D1C026654C5CD3CC17E7B20631 ] HsfXAudioService C:\Windows\SysWOW64\XAudio64.dll
16:53:29.0535 2540 HsfXAudioService - ok
16:53:29.0585 2540 [ 26C5D00321937E49B6BC91029947D094 ] HSF_DPV C:\Windows\system32\DRIVERS\CAX_DPV.sys
16:53:29.0595 2540 HSF_DPV - ok
16:53:29.0655 2540 [ CEE049CAC4EFA7F4E1E4AD014414A5D4 ] HTTP C:\Windows\system32\drivers\HTTP.sys
16:53:29.0665 2540 HTTP - ok
16:53:29.0675 2540 [ F17766A19145F111856378DF337A5D79 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
16:53:29.0675 2540 hwpolicy - ok
16:53:29.0715 2540 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
16:53:29.0715 2540 i8042prt - ok
16:53:29.0785 2540 [ 0E899D0DB39617AA0B2F992E7E95B5EB ] IAANTMON C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
16:53:29.0795 2540 IAANTMON - ok
16:53:29.0835 2540 [ BBB3B6DF1ABB0FE35802EDE85CC1C011 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
16:53:29.0845 2540 iaStor - ok
16:53:29.0895 2540 [ B75E45C564E944A2657167D197AB29DA ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
16:53:29.0895 2540 iaStorV - ok
16:53:30.0005 2540 [ 2F2BE70D3E02B6FA877921AB9516D43C ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
16:53:30.0015 2540 idsvc - ok
16:53:30.0195 2540 [ C3292140BF458B46CF8ABBFD7E177BBE ] IDSVia64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_4.0.0.127\Definitions\IPSDefs\20100924.001\IDSvia64.sys
16:53:30.0205 2540 IDSVia64 - ok
16:53:30.0425 2540 [ DFEAF0A1D98D397035012C8E28D1520F ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
16:53:30.0475 2540 igfx - ok
16:53:30.0545 2540 [ 23E1BCADABE423C35C19BBDFF10CCE6D ] IHA_MessageCenter C:\Program Files (x86)\Verizon\IHA_MessageCenter\Bin\Verizon_IHAMessageCenter.exe
16:53:30.0545 2540 IHA_MessageCenter - ok
16:53:30.0575 2540 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
16:53:30.0575 2540 iirsp - ok
16:53:30.0625 2540 [ C5B4683680DF085B57BC53E5EF34861F ] IKEEXT C:\Windows\System32\ikeext.dll
16:53:30.0625 2540 IKEEXT - ok
16:53:30.0705 2540 [ 8C7FA71CB1EBCD3EDE8958D27B1BF0B4 ] int15.sys C:\Windows\System32\OEM\Factory\int15.sys
16:53:30.0705 2540 int15.sys - ok
16:53:30.0745 2540 [ D485D3BD3E2179AA86853A182F70699F ] IntcHdmiAddService C:\Windows\system32\drivers\IntcHdmi.sys
16:53:30.0755 2540 IntcHdmiAddService - ok
16:53:30.0785 2540 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\DRIVERS\intelide.sys
16:53:30.0785 2540 intelide - ok
16:53:30.0805 2540 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
16:53:30.0805 2540 intelppm - ok
16:53:30.0825 2540 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
16:53:30.0825 2540 IPBusEnum - ok
16:53:30.0855 2540 [ 722DD294DF62483CECAAE6E094B4D695 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
16:53:30.0855 2540 IpFilterDriver - ok
16:53:30.0885 2540 [ F8E058D17363EC580E4B7232778B6CB5 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
16:53:30.0885 2540 iphlpsvc - ok
16:53:30.0905 2540 [ E2B4A4494DB7CB9B89B55CA268C337C5 ] IPMIDRV C:\Windows\system32\DRIVERS\IPMIDrv.sys
16:53:30.0915 2540 IPMIDRV - ok
16:53:30.0925 2540 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
16:53:30.0935 2540 IPNAT - ok
16:53:30.0995 2540 [ 50D6CCC6FF5561F9F56946B3E6164FB8 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
16:53:30.0995 2540 iPod Service - ok
16:53:31.0025 2540 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
16:53:31.0025 2540 IRENUM - ok
16:53:31.0055 2540 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\DRIVERS\isapnp.sys
16:53:31.0055 2540 isapnp - ok
16:53:31.0075 2540 [ FA4D2557DE56D45B0A346F93564BE6E1 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
16:53:31.0075 2540 iScsiPrt - ok
16:53:31.0095 2540 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
16:53:31.0095 2540 kbdclass - ok
16:53:31.0115 2540 [ 6DEF98F8541E1B5DCEB2C822A11F7323 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
16:53:31.0115 2540 kbdhid - ok
16:53:31.0125 2540 [ 0793F40B9B8A1BDD266296409DBD91EA ] KeyIso C:\Windows\system32\lsass.exe
16:53:31.0125 2540 KeyIso - ok
16:53:31.0135 2540 [ E8B6FCC9C83535C67F835D407620BD27 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
16:53:31.0135 2540 KSecDD - ok
16:53:31.0185 2540 [ A8C63880EF6F4D3FEC7B616B9C060215 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
16:53:31.0185 2540 KSecPkg - ok
16:53:31.0205 2540 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
16:53:31.0205 2540 ksthunk - ok
16:53:31.0245 2540 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
16:53:31.0245 2540 KtmRm - ok
16:53:31.0315 2540 [ 81F1D04D4D0E433099365127375FD501 ] LanmanServer C:\Windows\system32\srvsvc.dll
16:53:31.0315 2540 LanmanServer - ok
16:53:31.0365 2540 [ 27026EAC8818E8A6C00A1CAD2F11D29A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
16:53:31.0365 2540 LanmanWorkstation - ok
16:53:31.0385 2540 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
16:53:31.0385 2540 lltdio - ok
16:53:31.0425 2540 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
16:53:31.0425 2540 lltdsvc - ok
16:53:31.0435 2540 lltdsvc32 - ok
16:53:31.0455 2540 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
16:53:31.0455 2540 lmhosts - ok
16:53:31.0485 2540 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
16:53:31.0485 2540 LSI_FC - ok
16:53:31.0505 2540 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
16:53:31.0505 2540 LSI_SAS - ok
16:53:31.0525 2540 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
16:53:31.0525 2540 LSI_SAS2 - ok
16:53:31.0545 2540 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
16:53:31.0545 2540 LSI_SCSI - ok
16:53:31.0565 2540 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
16:53:31.0565 2540 luafv - ok
16:53:31.0575 2540 lxcy_device - ok
16:53:31.0615 2540 [ 922CBAC7B992B9614CAB7122F4BF9406 ] ManyCam C:\Windows\system32\DRIVERS\mcvidrv_x64.sys
16:53:31.0615 2540 ManyCam - ok
16:53:31.0655 2540 [ B9FC4CCE5758B816F27DD4D1EED11841 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
16:53:31.0655 2540 MBAMProtector - ok
16:53:31.0695 2540 [ 0DCF16B1449811EFA47AB52CAC84093C ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
16:53:31.0705 2540 MBAMScheduler - ok
16:53:31.0725 2540 [ 9EAABA4D601004BEA4DAA6E146E19A96 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
16:53:31.0735 2540 MBAMService - ok
16:53:31.0765 2540 [ 34A42DD7CF525D0D2C5232916496E4B8 ] mcaudrv_simple C:\Windows\system32\drivers\mcaudrv_x64.sys
16:53:31.0765 2540 mcaudrv_simple - ok
16:53:31.0795 2540 [ F84C8F1000BC11E3B7B23CBD3BAFF111 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
16:53:31.0795 2540 Mcx2Svc - ok
16:53:31.0825 2540 [ E4F44EC214B3E381E1FC844A02926666 ] mdmxsdk C:\Windows\system32\DRIVERS\mdmxsdk.sys
16:53:31.0825 2540 mdmxsdk - ok
16:53:31.0855 2540 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
16:53:31.0855 2540 megasas - ok
16:53:31.0875 2540 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
16:53:31.0885 2540 MegaSR - ok
16:53:31.0905 2540 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
16:53:31.0905 2540 MMCSS - ok
16:53:31.0925 2540 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
16:53:31.0925 2540 Modem - ok
16:53:31.0945 2540 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
16:53:31.0945 2540 monitor - ok
16:53:31.0955 2540 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
16:53:31.0955 2540 mouclass - ok
16:53:31.0985 2540 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
16:53:31.0985 2540 mouhid - ok
16:53:32.0016 2540 [ 791AF66C4D0E7C90A3646066386FB571 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
16:53:32.0016 2540 mountmgr - ok
16:53:32.0086 2540 [ CB8AF049AC9BE419A77ADAE288673359 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
16:53:32.0086 2540 MozillaMaintenance - ok
16:53:32.0136 2540 [ 609D1D87649ECC19796F4D76D4C15CEA ] mpio C:\Windows\system32\DRIVERS\mpio.sys
16:53:32.0136 2540 mpio - ok
16:53:32.0156 2540 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
16:53:32.0166 2540 mpsdrv - ok
16:53:32.0216 2540 [ AECAB449567D1846DAD63ECE49E893E3 ] MpsSvc C:\Windows\system32\mpssvc.dll
16:53:32.0216 2540 MpsSvc - ok
16:53:32.0236 2540 [ 30524261BB51D96D6FCBAC20C810183C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
16:53:32.0236 2540 MRxDAV - ok
16:53:32.0276 2540 [ B7F3D2C40BDF8FFB73EBFB19C77734E2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
16:53:32.0276 2540 mrxsmb - ok
16:53:32.0296 2540 [ 86C6F88B5168CE21CF8D69D0B3FF5D19 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
16:53:32.0296 2540 mrxsmb10 - ok
16:53:32.0326 2540 [ B081069251C8E9F42CB8769D07148F9C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
16:53:32.0326 2540 mrxsmb20 - ok
16:53:32.0356 2540 [ 5C37497276E3B3A5488B23A326A754B7 ] msahci C:\Windows\system32\DRIVERS\msahci.sys
16:53:32.0356 2540 msahci - ok
16:53:32.0366 2540 [ 8D27B597229AED79430FB9DB3BCBFBD0 ] msdsm C:\Windows\system32\DRIVERS\msdsm.sys
16:53:32.0366 2540 msdsm - ok
16:53:32.0376 2540 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
16:53:32.0386 2540 MSDTC - ok
16:53:32.0406 2540 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
16:53:32.0406 2540 Msfs - ok
16:53:32.0446 2540 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
16:53:32.0446 2540 mshidkmdf - ok
16:53:32.0466 2540 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\DRIVERS\msisadrv.sys
16:53:32.0466 2540 msisadrv - ok
16:53:32.0496 2540 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
16:53:32.0506 2540 MSiSCSI - ok
16:53:32.0506 2540 msiserver - ok
16:53:32.0536 2540 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
16:53:32.0536 2540 MSKSSRV - ok
16:53:32.0566 2540 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
16:53:32.0566 2540 MSPCLOCK - ok
16:53:32.0576 2540 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
16:53:32.0576 2540 MSPQM - ok
16:53:32.0596 2540 [ 89CB141AA8616D8C6A4610FA26C60964 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
16:53:32.0606 2540 MsRPC - ok
16:53:32.0626 2540 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
16:53:32.0626 2540 mssmbios - ok
16:53:32.0646 2540 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
16:53:32.0646 2540 MSTEE - ok
16:53:32.0666 2540 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
16:53:32.0666 2540 MTConfig - ok
16:53:32.0686 2540 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
16:53:32.0686 2540 Mup - ok
16:53:32.0746 2540 [ B4187346F54E362DAFFE647B25A58D50 ] N360 C:\Program Files (x86)\Norton 360\Engine\4.4.0.12\ccSvcHst.exe
16:53:32.0746 2540 N360 - ok
16:53:32.0836 2540 [ 4987E079A4530FA737A128BE54B63B12 ] napagent C:\Windows\system32\qagentRT.dll
16:53:32.0846 2540 napagent - ok
16:53:32.0886 2540 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
16:53:32.0886 2540 NativeWifiP - ok
16:53:32.0936 2540 NAVENG - ok
16:53:32.0936 2540 NAVEX15 - ok
16:53:32.0976 2540 [ CAD515DBD07D082BB317D9928CE8962C ] NDIS C:\Windows\system32\drivers\ndis.sys
16:53:32.0976 2540 NDIS - ok
16:53:33.0016 2540 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
16:53:33.0016 2540 NdisCap - ok
16:53:33.0037 2540 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
16:53:33.0037 2540 NdisTapi - ok
16:53:33.0057 2540 [ F105BA1E22BF1F2EE8F005D4305E4BEC ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
16:53:33.0057 2540 Ndisuio - ok
16:53:33.0067 2540 [ 557DFAB9CA1FCB036AC77564C010DAD3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
16:53:33.0067 2540 NdisWan - ok
16:53:33.0087 2540 [ 659B74FB74B86228D6338D643CD3E3CF ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
16:53:33.0087 2540 NDProxy - ok
16:53:33.0107 2540 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
16:53:33.0107 2540 NetBIOS - ok
16:53:33.0127 2540 [ 9162B273A44AB9DCE5B44362731D062A ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
16:53:33.0127 2540 NetBT - ok
16:53:33.0157 2540 [ 0793F40B9B8A1BDD266296409DBD91EA ] Netlogon C:\Windows\system32\lsass.exe
16:53:33.0167 2540 Netlogon - ok
16:53:33.0217 2540 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
16:53:33.0227 2540 Netman - ok
16:53:33.0267 2540 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
16:53:33.0267 2540 netprofm - ok
16:53:33.0307 2540 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
16:53:33.0317 2540 NetTcpPortSharing - ok
16:53:33.0347 2540 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
16:53:33.0347 2540 nfrd960 - ok
16:53:33.0377 2540 [ D9A0CE66046D6EFA0C61BAA885CBA0A8 ] NlaSvc C:\Windows\System32\nlasvc.dll
16:53:33.0377 2540 NlaSvc - ok
16:53:33.0407 2540 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
16:53:33.0407 2540 Npfs - ok
16:53:33.0437 2540 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
16:53:33.0437 2540 nsi - ok
16:53:33.0447 2540 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
16:53:33.0447 2540 nsiproxy - ok
16:53:33.0557 2540 [ 378E0E0DFEA67D98AE6EA53ADBBD76BC ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
16:53:33.0567 2540 Ntfs - ok
16:53:33.0597 2540 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
16:53:33.0597 2540 Null - ok
16:53:33.0617 2540 [ A4D9C9A608A97F59307C2F2600EDC6A4 ] nvraid C:\Windows\system32\drivers\nvraid.sys
16:53:33.0617 2540 nvraid - ok
16:53:33.0667 2540 [ 6C1D5F70E7A6A3FD1C90D840EDC048B9 ] nvstor C:\Windows\system32\drivers\nvstor.sys
16:53:33.0667 2540 nvstor - ok
16:53:33.0687 2540 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\DRIVERS\nv_agp.sys
16:53:33.0687 2540 nv_agp - ok
16:53:33.0717 2540 [ D955D5DE998DB2476BF0892BE3A96C26 ] O2FLASH C:\Windows\system32\DRIVERS\o2flash.exe
16:53:33.0717 2540 O2FLASH - ok
16:53:33.0727 2540 [ 26DA4B40670AD436F7DAEC053A2A9ECA ] O2MDRDR C:\Windows\system32\DRIVERS\o2mdx64.sys
16:53:33.0737 2540 O2MDRDR - ok
16:53:33.0747 2540 [ 2E69A2ADC12DAA7AC7B4FFD8601E88B0 ] O2SDRDR C:\Windows\system32\DRIVERS\o2sdx64.sys
16:53:33.0747 2540 O2SDRDR - ok
16:53:33.0847 2540 [ 1F0E05DFF4F5A833168E49BE1256F002 ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
16:53:33.0857 2540 odserv - ok
16:53:33.0887 2540 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
16:53:33.0887 2540 ohci1394 - ok
16:53:33.0947 2540 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
16:53:33.0947 2540 ose - ok
16:53:33.0987 2540 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
16:53:33.0987 2540 p2pimsvc - ok
16:53:34.0017 2540 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
16:53:34.0017 2540 p2psvc - ok
16:53:34.0047 2540 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
16:53:34.0047 2540 Parport - ok
16:53:34.0067 2540 [ 7DAA117143316C4A1537E074A5A9EAF0 ] partmgr C:\Windows\system32\drivers\partmgr.sys
16:53:34.0067 2540 partmgr - ok
16:53:34.0077 2540 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
16:53:34.0077 2540 PcaSvc - ok
16:53:34.0117 2540 [ F36F6504009F2FB0DFD1B17A116AD74B ] pci C:\Windows\system32\DRIVERS\pci.sys
16:53:34.0117 2540 pci - ok
16:53:34.0137 2540 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\DRIVERS\pciide.sys
16:53:34.0137 2540 pciide - ok
16:53:34.0157 2540 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
16:53:34.0157 2540 pcmcia - ok
16:53:34.0177 2540 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
16:53:34.0177 2540 pcw - ok
16:53:34.0207 2540 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
16:53:34.0217 2540 PEAUTH - ok
16:53:34.0247 2540 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
16:53:34.0247 2540 PerfHost - ok
16:53:34.0317 2540 [ 557E9A86F65F0DE18C9B6751DFE9D3F1 ] pla C:\Windows\system32\pla.dll
16:53:34.0327 2540 pla - ok
16:53:34.0357 2540 [ 23157D583244400E1D7FBAEE2E4B31B7 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
16:53:34.0357 2540 PlugPlay - ok
16:53:34.0377 2540 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
16:53:34.0377 2540 PNRPAutoReg - ok
16:53:34.0407 2540 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
16:53:34.0407 2540 PNRPsvc - ok
16:53:34.0447 2540 [ 166EB40D1F5B47E615DE3D0FFFE5F243 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
16:53:34.0447 2540 PolicyAgent - ok
16:53:34.0487 2540 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
16:53:34.0497 2540 Power - ok
16:53:34.0557 2540 [ 27CC19E81BA5E3403C48302127BDA717 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
16:53:34.0557 2540 PptpMiniport - ok
16:53:34.0567 2540 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
16:53:34.0567 2540 Processor - ok
16:53:34.0607 2540 [ F381975E1F4346DE875CB07339CE8D3A ] ProfSvc C:\Windows\system32\profsvc.dll
16:53:34.0607 2540 ProfSvc - ok
16:53:34.0637 2540 [ 0793F40B9B8A1BDD266296409DBD91EA ] ProtectedStorage C:\Windows\system32\lsass.exe
16:53:34.0637 2540 ProtectedStorage - ok
16:53:34.0657 2540 [ EE992183BD8EAEFD9973F352E587A299 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
16:53:34.0657 2540 Psched - ok
16:53:34.0727 2540 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
16:53:34.0737 2540 ql2300 - ok
16:53:34.0777 2540 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
16:53:34.0777 2540 ql40xx - ok
16:53:34.0807 2540 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
16:53:34.0807 2540 QWAVE - ok
16:53:34.0817 2540 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
16:53:34.0817 2540 QWAVEdrv - ok
16:53:34.0837 2540 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
16:53:34.0837 2540 RasAcd - ok
16:53:34.0867 2540 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
16:53:34.0867 2540 RasAgileVpn - ok
16:53:34.0897 2540 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
16:53:34.0897 2540 RasAuto - ok
16:53:34.0927 2540 [ 87A6E852A22991580D6D39ADC4790463 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
16:53:34.0927 2540 Rasl2tp - ok
16:53:34.0987 2540 [ 47394ED3D16D053F5906EFE5AB51CC83 ] RasMan C:\Windows\System32\rasmans.dll
16:53:34.0997 2540 RasMan - ok
16:53:35.0007 2540 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
16:53:35.0007 2540 RasPppoe - ok
16:53:35.0027 2540 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
16:53:35.0027 2540 RasSstp - ok
16:53:35.0057 2540 [ 3BAC8142102C15D59A87757C1D41DCE5 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
16:53:35.0057 2540 rdbss - ok
16:53:35.0077 2540 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
16:53:35.0077 2540 rdpbus - ok
16:53:35.0087 2540 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
16:53:35.0097 2540 RDPCDD - ok
16:53:35.0107 2540 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
16:53:35.0107 2540 RDPENCDD - ok
16:53:35.0117 2540 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
16:53:35.0117 2540 RDPREFMP - ok
16:53:35.0147 2540 [ 8A3E6BEA1C53EA6177FE2B6EBA2C80D7 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
16:53:35.0147 2540 RDPWD - ok
16:53:35.0167 2540 [ 634B9A2181D98F15941236886164EC8B ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
16:53:35.0177 2540 rdyboost - ok
16:53:35.0207 2540 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
16:53:35.0217 2540 RemoteAccess - ok
16:53:35.0257 2540 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
16:53:35.0257 2540 RemoteRegistry - ok
16:53:35.0277 2540 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
16:53:35.0277 2540 RpcEptMapper - ok
16:53:35.0297 2540 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
16:53:35.0297 2540 RpcLocator - ok
16:53:35.0327 2540 [ 7266972E86890E2B30C0C322E906B027 ] RpcSs C:\Windows\system32\rpcss.dll
16:53:35.0327 2540 RpcSs - ok
16:53:35.0367 2540 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
16:53:35.0377 2540 rspndr - ok
16:53:35.0417 2540 [ 0793F40B9B8A1BDD266296409DBD91EA ] SamSs C:\Windows\system32\lsass.exe
16:53:35.0417 2540 SamSs - ok
16:53:35.0447 2540 [ 3289766038DB2CB14D07DC84392138D5 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
16:53:35.0447 2540 SASDIFSV - ok
16:53:35.0467 2540 [ 58A38E75F3316A83C23DF6173D41F2B5 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
16:53:35.0467 2540 SASKUTIL - ok
16:53:35.0487 2540 [ E3BBB89983DAF5622C1D50CF49F28227 ] sbp2port C:\Windows\system32\DRIVERS\sbp2port.sys
16:53:35.0487 2540 sbp2port - ok
16:53:35.0517 2540 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
16:53:35.0517 2540 SCardSvr - ok
16:53:35.0557 2540 [ C94DA20C7E3BA1DCA269BC8460D98387 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
16:53:35.0557 2540 scfilter - ok
16:53:35.0657 2540 [ 624D0F5FF99428BB90A5B8A4123E918E ] Schedule C:\Windows\system32\schedsvc.dll
16:53:35.0667 2540 Schedule - ok
16:53:35.0707 2540 [ 312E2F82AF11E79906898AC3E3D58A1F ] SCPolicySvc C:\Windows\System32\certprop.dll
16:53:35.0707 2540 SCPolicySvc - ok
16:53:35.0727 2540 [ 54E47AD086782D3AE9417C155CDCEB9B ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
16:53:35.0727 2540 sdbus - ok
16:53:35.0767 2540 [ 765A27C3279CE11D14CB9E4F5869FCA5 ] SDRSVC C:\Windows\System32\SDRSVC.dll
16:53:35.0767 2540 SDRSVC - ok
16:53:35.0797 2540 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
16:53:35.0807 2540 secdrv - ok
16:53:35.0817 2540 [ 463B386EBC70F98DA5DFF85F7E654346 ] seclogon C:\Windows\system32\seclogon.dll
16:53:35.0817 2540 seclogon - ok
16:53:35.0837 2540 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
16:53:35.0837 2540 SENS - ok
16:53:35.0847 2540 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
16:53:35.0857 2540 SensrSvc - ok
16:53:35.0877 2540 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
16:53:35.0877 2540 Serenum - ok
16:53:35.0897 2540 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
16:53:35.0897 2540 Serial - ok
16:53:35.0917 2540 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
16:53:35.0917 2540 sermouse - ok
16:53:35.0997 2540 [ C3BC61CE47FF6F4E88AB8A3B429A36AF ] SessionEnv C:\Windows\system32\sessenv.dll
16:53:35.0997 2540 SessionEnv - ok
16:53:36.0027 2540 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
16:53:36.0027 2540 sffdisk - ok
16:53:36.0048 2540 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\DRIVERS\sffp_mmc.sys
16:53:36.0058 2540 sffp_mmc - ok
16:53:36.0078 2540 [ 5588B8C6193EB1522490C122EB94DFFA ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
16:53:36.0078 2540 sffp_sd - ok
16:53:36.0078 2540 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
16:53:36.0088 2540 sfloppy - ok
16:53:36.0108 2540 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
16:53:36.0108 2540 SharedAccess - ok
16:53:36.0138 2540 [ 0298AC45D0EFFFB2DB4BAA7DD186E7BF ] ShellHWDetection C:\Windows\System32\shsvcs.dll
16:53:36.0138 2540 ShellHWDetection - ok
16:53:36.0158 2540 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
16:53:36.0168 2540 SiSRaid2 - ok
16:53:36.0168 2540 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
16:53:36.0168 2540 SiSRaid4 - ok
16:53:36.0188 2540 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
16:53:36.0188 2540 Smb - ok
16:53:36.0228 2540 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
16:53:36.0238 2540 SNMPTRAP - ok
16:53:36.0248 2540 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
16:53:36.0248 2540 spldr - ok
16:53:36.0338 2540 [ F8E1FA03CB70D54A9892AC88B91D1E7B ] Spooler C:\Windows\System32\spoolsv.exe
16:53:36.0348 2540 Spooler - ok
16:53:36.0468 2540 [ 913D843498553A1BC8F8DBAD6358E49F ] sppsvc C:\Windows\system32\sppsvc.exe
16:53:36.0488 2540 sppsvc - ok
16:53:36.0518 2540 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
16:53:36.0518 2540 sppuinotify - ok
16:53:36.0598 2540 [ 96BABC4906ECDB1C69D1176F8647AD8E ] SRTSP C:\Windows\System32\Drivers\N360x64\0404000.00C\SRTSP64.SYS
16:53:36.0598 2540 SRTSP - ok
16:53:36.0618 2540 [ C7F491A290E0E4222F5CDCD50EEB8167 ] SRTSPX C:\Windows\system32\drivers\N360x64\0404000.00C\SRTSPX64.SYS
16:53:36.0618 2540 SRTSPX - ok
16:53:36.0678 2540 [ 148D50904D2A0DF29A19778715EB35BB ] srv C:\Windows\system32\DRIVERS\srv.sys
16:53:36.0678 2540 srv - ok
16:53:36.0728 2540 [ CE2189FE31D36678AC9EB7DDEE08EC96 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
16:53:36.0738 2540 srv2 - ok
16:53:36.0778 2540 [ 0C4540311E11664B245A263E1154CEF8 ] SrvHsfHDA C:\Windows\system32\DRIVERS\VSTAZL6.SYS
16:53:36.0788 2540 SrvHsfHDA - ok
16:53:36.0838 2540 [ 02071D207A9858FBE3A48CBFD59C4A04 ] SrvHsfV92 C:\Windows\system32\DRIVERS\VSTDPV6.SYS
16:53:36.0848 2540 SrvHsfV92 - ok
16:53:36.0888 2540 [ 18E40C245DBFAF36FD0134A7EF2DF396 ] SrvHsfWinac C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
16:53:36.0888 2540 SrvHsfWinac - ok
16:53:36.0938 2540 [ CB69EDEB069A49577592835659CD0E46 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
16:53:36.0938 2540 srvnet - ok
16:53:36.0968 2540 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
16:53:36.0978 2540 SSDPSRV - ok
16:53:37.0008 2540 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
16:53:37.0018 2540 SstpSvc - ok
16:53:37.0028 2540 Steam Client Service - ok
16:53:37.0058 2540 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
16:53:37.0058 2540 stexstor - ok
16:53:37.0098 2540 [ 52D0E33B681BD0F33FDC08812FEE4F7D ] stisvc C:\Windows\System32\wiaservc.dll
16:53:37.0098 2540 stisvc - ok
16:53:37.0118 2540 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
16:53:37.0118 2540 swenum - ok
16:53:37.0158 2540 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
16:53:37.0158 2540 swprv - ok
16:53:37.0188 2540 [ 659B227A72B76115975A6A9491B2FE1F ] SymDS C:\Windows\system32\drivers\N360x64\0404000.00C\SYMDS64.SYS
16:53:37.0188 2540 SymDS - ok
16:53:37.0228 2540 [ 9F5783A4A03D0091CDBDAA858B566926 ] SymEFA C:\Windows\system32\drivers\N360x64\0404000.00C\SYMEFA64.SYS
16:53:37.0228 2540 SymEFA - ok
16:53:37.0278 2540 [ 3F9D5FE52585E2653E59FDBFDF09A94C ] SymEvent C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
16:53:37.0278 2540 SymEvent - ok
16:53:37.0308 2540 [ F57588546E738DB1583981D8F44E9BC2 ] SymIRON C:\Windows\system32\drivers\N360x64\0404000.00C\Ironx64.SYS
16:53:37.0308 2540 SymIRON - ok
16:53:37.0368 2540 [ 3ADFB72F0797AE3832509FE030755E21 ] SYMTDIv C:\Windows\System32\Drivers\N360x64\0404000.00C\SYMTDIV.SYS
16:53:37.0378 2540 SYMTDIv - ok
16:53:37.0408 2540 [ BCF305959B53B200CEB2AD25AD22F8A7 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
16:53:37.0418 2540 SynTP - ok
16:53:37.0488 2540 [ 3C1284516A62078FB68F768DE4F1A7BE ] SysMain C:\Windows\system32\sysmain.dll
16:53:37.0498 2540 SysMain - ok
16:53:37.0528 2540 szkg5 - ok
16:53:37.0558 2540 [ 238935C3CF2854886DC7CBB2A0E2CC66 ] TabletInputService C:\Windows\System32\TabSvc.dll
16:53:37.0568 2540 TabletInputService - ok
16:53:37.0588 2540 [ 884264AC597B690C5707C89723BB8E7B ] TapiSrv C:\Windows\System32\tapisrv.dll
16:53:37.0588 2540 TapiSrv - ok
16:53:37.0618 2540 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
16:53:37.0618 2540 TBS - ok
16:53:37.0688 2540 [ 90A2D722CF64D911879D6C4A4F802A4D ] Tcpip C:\Windows\system32\drivers\tcpip.sys
16:53:37.0698 2540 Tcpip - ok
16:53:37.0738 2540 [ 90A2D722CF64D911879D6C4A4F802A4D ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
16:53:37.0748 2540 TCPIP6 - ok
16:53:37.0778 2540 [ 76D078AF6F587B162D50210F761EB9ED ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
16:53:37.0778 2540 tcpipreg - ok
16:53:37.0798 2540 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
16:53:37.0798 2540 TDPIPE - ok
16:53:37.0808 2540 [ E4245BDA3190A582D55ED09E137401A9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
16:53:37.0808 2540 TDTCP - ok
16:53:37.0828 2540 [ 079125C4B17B01FCAEEBCE0BCB290C0F ] tdx C:\Windows\system32\DRIVERS\tdx.sys
16:53:37.0828 2540 tdx - ok
16:53:37.0848 2540 [ C448651339196C0E869A355171875522 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
16:53:37.0848 2540 TermDD - ok
16:53:37.0888 2540 [ 0F05EC2887BFE197AD82A13287D2F404 ] TermService C:\Windows\System32\termsrv.dll
16:53:37.0898 2540 TermService - ok
16:53:37.0908 2540 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
16:53:37.0908 2540 Themes - ok
16:53:37.0928 2540 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
16:53:37.0928 2540 THREADORDER - ok
16:53:37.0948 2540 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
16:53:37.0948 2540 TrkWks - ok
16:53:38.0028 2540 [ 840F7FB849F5887A49BA18C13B2DA920 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
16:53:38.0028 2540 TrustedInstaller - ok
16:53:38.0058 2540 [ 61B96C26131E37B24E93327A0BD1FB95 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
16:53:38.0058 2540 tssecsrv - ok
16:53:38.0068 2540 [ 3836171A2CDF3AF8EF10856DB9835A70 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
16:53:38.0078 2540 tunnel - ok
16:53:38.0088 2540 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
16:53:38.0088 2540 uagp35 - ok
16:53:38.0118 2540 [ D47BAEAD86C65D4F4069D7CE0A4EDCEB ] udfs C:\Windows\system32\DRIVERS\udfs.sys
16:53:38.0118 2540 udfs - ok
16:53:38.0158 2540 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
16:53:38.0158 2540 UI0Detect - ok
16:53:38.0178 2540 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\DRIVERS\uliagpkx.sys
16:53:38.0178 2540 uliagpkx - ok
16:53:38.0198 2540 [ EAB6C35E62B1B0DB0D1B48B671D3A117 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
16:53:38.0198 2540 umbus - ok
16:53:38.0248 2540 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
16:53:38.0248 2540 UmPass - ok
16:53:38.0328 2540 [ 70DDE3A86DBEB1D6C3C30AD687B1877A ] Updater Service C:\Program Files\Gateway\Gateway Updater\UpdaterService.exe
16:53:38.0328 2540 Updater Service - ok
16:53:38.0368 2540 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
16:53:38.0378 2540 upnphost - ok
16:53:38.0418 2540 [ FB251567F41BC61988B26731DEC19E4B ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
16:53:38.0418 2540 USBAAPL64 - ok
16:53:38.0458 2540 [ 7B6A127C93EE590E4D79A5F2A76FE46F ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
16:53:38.0458 2540 usbccgp - ok
16:53:38.0488 2540 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\DRIVERS\usbcir.sys
16:53:38.0488 2540 usbcir - ok
16:53:38.0518 2540 [ 92969BA5AC44E229C55A332864F79677 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
16:53:38.0528 2540 usbehci - ok
16:53:38.0548 2540 [ E7DF1CFD28CA86B35EF5ADD0735CEEF3 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
16:53:38.0548 2540 usbhub - ok
16:53:38.0558 2540 [ F1BB1E55F1E7A65C5839CCC7B36D773E ] usbohci C:\Windows\system32\drivers\usbohci.sys
16:53:38.0558 2540 usbohci - ok
16:53:38.0578 2540 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
16:53:38.0578 2540 usbprint - ok
16:53:38.0618 2540 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
16:53:38.0618 2540 usbscan - ok
16:53:38.0658 2540 [ F39983647BC1F3E6100778DDFE9DCE29 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
16:53:38.0658 2540 USBSTOR - ok
16:53:38.0738 2540 [ BC3070350A491D84B518D7CCA9ABD36F ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
16:53:38.0738 2540 usbuhci - ok
16:53:38.0778 2540 [ 7CB8C573C6E4A2714402CC0A36EAB4FE ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
16:53:38.0778 2540 usbvideo - ok
16:53:38.0798 2540 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
16:53:38.0808 2540 UxSms - ok
16:53:38.0818 2540 [ 0793F40B9B8A1BDD266296409DBD91EA ] VaultSvc C:\Windows\system32\lsass.exe
16:53:38.0818 2540 VaultSvc - ok
16:53:38.0848 2540 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\DRIVERS\vdrvroot.sys
16:53:38.0848 2540 vdrvroot - ok
16:53:38.0878 2540 [ 44D73E0BBC1D3C8981304BA15135C2F2 ] vds C:\Windows\System32\vds.exe
16:53:38.0888 2540 vds - ok
16:53:38.0898 2540 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
16:53:38.0898 2540 vga - ok
16:53:38.0918 2540 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
16:53:38.0918 2540 VgaSave - ok
16:53:38.0938 2540 [ C82E748660F62A242B2DFAC1442F22A4 ] vhdmp C:\Windows\system32\DRIVERS\vhdmp.sys
16:53:38.0938 2540 vhdmp - ok
16:53:38.0958 2540 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\DRIVERS\viaide.sys
16:53:38.0958 2540 viaide - ok
16:53:38.0978 2540 [ 2B1A3DAE2B4E70DBBA822B7A03FBD4A3 ] volmgr C:\Windows\system32\DRIVERS\volmgr.sys
16:53:38.0988 2540 volmgr - ok
16:53:39.0018 2540 [ 99B0CBB569CA79ACAED8C91461D765FB ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
16:53:39.0028 2540 volmgrx - ok
16:53:39.0048 2540 [ 58F82EED8CA24B461441F9C3E4F0BF5C ] volsnap C:\Windows\system32\DRIVERS\volsnap.sys
16:53:39.0048 2540 volsnap - ok
16:53:39.0078 2540 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
16:53:39.0078 2540 vsmraid - ok
16:53:39.0138 2540 [ 787898BF9FB6D7BD87A36E2D95C899BA ] VSS C:\Windows\system32\vssvc.exe
16:53:39.0158 2540 VSS - ok
16:53:39.0178 2540 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
16:53:39.0178 2540 vwifibus - ok
16:53:39.0188 2540 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
16:53:39.0198 2540 vwififlt - ok
16:53:39.0228 2540 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
16:53:39.0228 2540 W32Time - ok
16:53:39.0268 2540 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
16:53:39.0268 2540 WacomPen - ok
16:53:39.0308 2540 [ 4AA2CC5979AFF984227364F2C23B04F3 ] WajamUpdater C:\Program Files (x86)\Wajam\Updater\WajamUpdater.exe
16:53:39.0308 2540 WajamUpdater - ok
16:53:39.0328 2540 [ 47CA49400643EFFD3F1C9A27E1D69324 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
16:53:39.0328 2540 WANARP - ok
16:53:39.0338 2540 [ 47CA49400643EFFD3F1C9A27E1D69324 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
16:53:39.0338 2540 Wanarpv6 - ok
16:53:39.0458 2540 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
16:53:39.0468 2540 WatAdminSvc - ok
16:53:39.0528 2540 [ 5AB1BB85BD8B5089CC5D64200DEDAE68 ] wbengine C:\Windows\system32\wbengine.exe
16:53:39.0538 2540 wbengine - ok
16:53:39.0578 2540 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
16:53:39.0578 2540 WbioSrvc - ok
16:53:39.0618 2540 [ DD1BAE8EBFC653824D29CCF8C9054D68 ] wcncsvc C:\Windows\System32\wcncsvc.dll
16:53:39.0628 2540 wcncsvc - ok
16:53:39.0638 2540 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
16:53:39.0648 2540 WcsPlugInService - ok
16:53:39.0668 2540 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
16:53:39.0668 2540 Wd - ok
16:53:39.0698 2540 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
16:53:39.0698 2540 Wdf01000 - ok
16:53:39.0718 2540 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
16:53:39.0728 2540 WdiServiceHost - ok
16:53:39.0728 2540 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
16:53:39.0738 2540 WdiSystemHost - ok
16:53:39.0778 2540 [ 733006127F235BE7C35354EBEE7B9A7B ] WebClient C:\Windows\System32\webclnt.dll
16:53:39.0778 2540 WebClient - ok
16:53:39.0798 2540 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
16:53:39.0798 2540 Wecsvc - ok
16:53:39.0818 2540 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
16:53:39.0818 2540 wercplsupport - ok
16:53:39.0828 2540 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
16:53:39.0838 2540 WerSvc - ok
16:53:39.0868 2540 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
16:53:39.0868 2540 WfpLwf - ok
16:53:39.0888 2540 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
16:53:39.0888 2540 WIMMount - ok
16:53:39.0918 2540 [ A6EA7A3FC4B00F48535B506DB1E86EFD ] winachsf C:\Windows\system32\DRIVERS\CAX_CNXT.sys
16:53:39.0928 2540 winachsf - ok
16:53:39.0948 2540 WinDefend - ok
16:53:39.0958 2540 WinHttpAutoProxySvc - ok
16:53:40.0008 2540 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
16:53:40.0008 2540 Winmgmt - ok
16:53:40.0088 2540 [ 41FBB751936B387F9179E7F03A74FE29 ] WinRM C:\Windows\system32\WsmSvc.dll
16:53:40.0098 2540 WinRM - ok
16:53:40.0138 2540 [ 817EAFF5D38674EDD7713B9DFB8E9791 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
16:53:40.0138 2540 WinUsb - ok
16:53:40.0198 2540 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
16:53:40.0198 2540 Wlansvc - ok
16:53:40.0238 2540 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
16:53:40.0238 2540 WmiAcpi - ok
16:53:40.0268 2540 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
16:53:40.0268 2540 wmiApSrv - ok
16:53:40.0288 2540 WMPNetworkSvc - ok
16:53:40.0328 2540 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
16:53:40.0328 2540 WPCSvc - ok
16:53:40.0348 2540 [ 2E57DDF2880A7E52E76F41C7E96D327B ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
16:53:40.0348 2540 WPDBusEnum - ok
16:53:40.0378 2540 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
16:53:40.0378 2540 ws2ifsl - ok
16:53:40.0418 2540 [ 8F9F3969933C02DA96EB0F84576DB43E ] wscsvc C:\Windows\System32\wscsvc.dll
16:53:40.0428 2540 wscsvc - ok
16:53:40.0428 2540 WSearch - ok
16:53:40.0508 2540 [ 38340204A2D0228F1E87740FC5E554A7 ] wuauserv C:\Windows\system32\wuaueng.dll
16:53:40.0518 2540 wuauserv - ok
16:53:40.0548 2540 [ 7CADC74271DD6461C452C271B30BD378 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
16:53:40.0548 2540 WudfPf - ok
16:53:40.0568 2540 [ 3B197AF0FFF08AA66B6B2241CA538D64 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
16:53:40.0568 2540 WUDFRd - ok
16:53:40.0598 2540 [ B551D6637AA0E132C18AC6E504F7B79B ] wudfsvc C:\Windows\System32\WUDFSvc.dll
16:53:40.0608 2540 wudfsvc - ok
16:53:40.0628 2540 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
16:53:40.0628 2540 WwanSvc - ok
16:53:40.0658 2540 [ E8F3FA126A06F8E7088F63757112A186 ] XAudio C:\Windows\system32\DRIVERS\XAudio64.sys
16:53:40.0658 2540 XAudio - ok
16:53:40.0678 2540 [ 79D9CE9614C955DD31AA2556B4014662 ] yukonw7 C:\Windows\system32\DRIVERS\yk62x64.sys
16:53:40.0678 2540 yukonw7 - ok
16:53:40.0688 2540 ================ Scan global ===============================
16:53:40.0718 2540 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
16:53:40.0768 2540 [ B200DECA2186858595A97FBE63E896CC ] C:\Windows\system32\winsrv.dll
16:53:40.0778 2540 [ B200DECA2186858595A97FBE63E896CC ] C:\Windows\system32\winsrv.dll
16:53:40.0798 2540 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
16:53:40.0818 2540 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
16:53:40.0828 2540 [Global] - ok
16:53:40.0828 2540 ================ Scan MBR ==================================
16:53:40.0838 2540 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
16:53:41.0198 2540 \Device\Harddisk0\DR0 - ok
16:53:41.0208 2540 ================ Scan VBR ==================================
16:53:41.0218 2540 [ 617D802F713544E300C9C87601518EAD ] \Device\Harddisk0\DR0\Partition1
16:53:41.0218 2540 \Device\Harddisk0\DR0\Partition1 - ok
16:53:41.0258 2540 [ C8CCC81E5EB1F7C0CC79EFF38B6CBA81 ] \Device\Harddisk0\DR0\Partition2
16:53:41.0258 2540 \Device\Harddisk0\DR0\Partition2 - ok
16:53:41.0258 2540 ============================================================
16:53:41.0258 2540 Scan finished
16:53:41.0258 2540 ============================================================
16:53:41.0278 0968 Detected object count: 0
16:53:41.0278 0968 Actual detected object count: 0

#4 andrew826

andrew826
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:08:14 AM

Posted 03 October 2012 - 04:29 PM

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-10-03 16:59:41
-----------------------------
16:59:41.645 OS Version: Windows x64 6.1.7600
16:59:41.645 Number of processors: 2 586 0x170A
16:59:41.645 ComputerName: ANDREW-PC UserName: Andrew
16:59:43.096 Initialize success
16:59:53.267 AVAST engine defs: 12100301
16:59:54.952 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
16:59:54.967 Disk 0 Vendor: Hitachi_ FBEO Size: 238475MB BusType: 3
16:59:54.983 Disk 0 MBR read successfully
16:59:54.983 Disk 0 MBR scan
16:59:54.998 Disk 0 Windows 7 default MBR code
16:59:55.045 Disk 0 Partition 1 00 27 Hidden NTFS WinRE NTFS 12288 MB offset 2048
16:59:55.076 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 25167872
16:59:55.108 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 226085 MB offset 25372672
16:59:55.186 Disk 0 scanning C:\Windows\system32\drivers
17:00:25.652 Service scanning
17:00:59.894 Modules scanning
17:00:59.894 Disk 0 trace - called modules:
17:00:59.910 ntoskrnl.exe CLASSPNP.SYS disk.sys iaStor.sys hal.dll
17:00:59.910 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8003dbf320]
17:00:59.910 3 CLASSPNP.SYS[fffff88001a9143f] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8002d3a050]
17:01:01.486 AVAST engine scan C:\Windows
17:01:04.637 AVAST engine scan C:\Windows\system32
17:04:46.551 AVAST engine scan C:\Windows\system32\drivers
17:04:58.079 AVAST engine scan C:\Users\Andrew
17:06:36.161 Disk 0 MBR has been saved successfully to "C:\Users\Andrew\Downloads\MBR.dat"
17:06:36.161 The log file has been saved successfully to "C:\Users\Andrew\Downloads\aswMBR.txt"


aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-10-03 17:07:13
-----------------------------
17:07:13.711 OS Version: Windows x64 6.1.7600
17:07:13.711 Number of processors: 2 586 0x170A
17:07:13.721 ComputerName: ANDREW-PC UserName: Andrew
17:07:14.581 Initialize success
17:07:22.211 AVAST engine defs: 12100301
17:07:36.995 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
17:07:36.995 Disk 0 Vendor: Hitachi_ FBEO Size: 238475MB BusType: 3
17:07:37.025 Disk 0 MBR read successfully
17:07:37.035 Disk 0 MBR scan
17:07:37.045 Disk 0 Windows 7 default MBR code
17:07:37.055 Disk 0 Partition 1 00 27 Hidden NTFS WinRE NTFS 12288 MB offset 2048
17:07:37.085 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 25167872
17:07:37.105 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 226085 MB offset 25372672
17:07:37.145 Disk 0 scanning C:\Windows\system32\drivers
17:07:56.625 Service scanning
17:08:30.697 Modules scanning
17:08:30.697 Disk 0 trace - called modules:
17:08:30.728 ntoskrnl.exe CLASSPNP.SYS disk.sys iaStor.sys hal.dll
17:08:31.086 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8003dbf320]
17:08:31.096 3 CLASSPNP.SYS[fffff88001a9143f] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8002d3a050]
17:08:32.286 AVAST engine scan C:\Windows
17:08:43.656 AVAST engine scan C:\Windows\system32
17:14:04.356 AVAST engine scan C:\Windows\system32\drivers
17:14:16.266 AVAST engine scan C:\Users\Andrew
17:21:53.959 AVAST engine scan C:\ProgramData
17:23:59.188 Scan finished successfully
17:27:24.161 Disk 0 MBR has been saved successfully to "C:\Users\Andrew\Downloads\MBR.dat"
17:27:24.171 The log file has been saved successfully to "C:\Users\Andrew\Downloads\aswMBR.txt"

#5 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:14 AM

Posted 03 October 2012 - 04:36 PM

ESET log?

#6 andrew826

andrew826
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:08:14 AM

Posted 03 October 2012 - 05:44 PM

C:\ProgramData\Tarma Installer\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}\_Setupx.dll Win32/Adware.Yontoo.B application cleaned by deleting - quarantined
C:\Users\Andrew\AppData\Roaming\Mozilla\Firefox\Profiles\l76hobno.default\extensions\{64269206-bffd-4613-ad18-4e8bf4e07ad5}\chrome.manifest Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\Users\Andrew\AppData\Roaming\Mozilla\Firefox\Profiles\l76hobno.default\extensions\{710bfbb1-99a8-49fc-8801-6967d655ac6a}\chrome.manifest Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\Users\Andrew\AppData\Roaming\Mozilla\Firefox\Profiles\l76hobno.default\extensions\{710bfbb1-99a8-49fc-8801-6967d655ac6a}\chrome\xulcache.jar JS/Agent.NDO trojan cleaned by deleting - quarantined
C:\Users\Andrew\AppData\Roaming\Mozilla\Firefox\Profiles\l76hobno.default\extensions\{d5fa26d1-1b9d-4375-ac75-ec2f5bbb1652}\chrome.manifest Win32/TrojanDownloader.Tracur.F trojan cleaned by deleting - quarantined
C:\Users\Andrew\Downloads\RARSoftwareInstaller.exe Win32/FreeInstaller application cleaned by deleting - quarantined
C:\Users\Andrew\Downloads\thepriceisrightgamerbug-setup.exe Win32/DownloadAdmin.A.Gen application cleaned by deleting - quarantined

#7 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:14 AM

Posted 03 October 2012 - 06:04 PM

Download

Malwarebytes

Install,update and run a full scan

Click on Show results.Right click on the list ,select all and remove them.

Post the generated log here

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size
List restore points

Click Go and post the result.

Download

FSS

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.

Download

adware cleaner

Launch it click on Delete

A log should be generated after scan ,post it here

Download

Junkware removal tool

Right click on the tool and select run as administrator

After scan gets completed,post the generated log here.

#8 andrew826

andrew826
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:08:14 AM

Posted 03 October 2012 - 07:15 PM

Malwayrebytes found nothing.

MiniToolBox by Farbar Version: 23-07-2012
Ran by Andrew (administrator) on 03-10-2012 at 20:14:22
Microsoft Windows 7 Home Premium (X64)
Boot Mode: Network
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================

"network.proxy.http", "127.0.0.1"
"network.proxy.http_port", 50970
"network.proxy.type", 0

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

::1 localhost








































































































































































































74.55.76.230 www.google-analytics.com.
74.55.76.230 ad-emea.doubleclick.net.
74.55.76.230 www.statcounter.com.
178.250.45.15 www.google-analytics.com.
178.250.45.15 ad-emea.doubleclick.net.
178.250.45.15 www.statcounter.com.

127.0.0.1 localhost

========================= IP Configuration: ================================

Atheros AR5B91 Wireless Network Adapter = Wireless Network Connection (Connected)
Marvell Yukon 88E8057 PCI-E Gigabit Ethernet Controller = Local Area Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled
add address name="Local Area Connection" address=192.168.137.1


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Andrew-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : home

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . : home
Description . . . . . . . . . . . : Atheros AR5B91 Wireless Network Adapter
Physical Address. . . . . . . . . : 0C-EE-E6-B6-85-65
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::5cc6:37f:a514:4d3%13(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.37(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Wednesday, October 03, 2012 4:57:51 PM
Lease Expires . . . . . . . . . . : Thursday, October 04, 2012 4:57:53 PM
Default Gateway . . . . . . . . . : 192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 319614694
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-12-6B-04-35-00-26-9E-5D-5E-0B
DNS Servers . . . . . . . . . . . : 192.168.1.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Marvell Yukon 88E8057 PCI-E Gigabit Ethernet Controller
Physical Address. . . . . . . . . : 00-26-9E-5D-5E-0B
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter 6TO4 Adapter:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.home:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Reusable Microsoft 6To4 Adapter:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 11:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter #4
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 12:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter #5
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 13:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter #6
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 14:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter #7
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 15:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter #8
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 16:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter #9
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 17:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter #10
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 18:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter #11
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 19:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter #12
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 20:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter #13
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 21:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter #14
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 22:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter #15
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 23:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter #16
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 24:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter #17
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 25:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter #18
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 26:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter #19
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 27:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter #20
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 28:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter #21
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 29:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter #22
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 30:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter #23
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 31:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter #24
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 32:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter #25
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 33:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter #26
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 35:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter #28
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 36:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter #29
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 37:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter #30
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 38:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter #31
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 39:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter #32
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 40:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter #33
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 41:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter #34
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 42:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter #35
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 43:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter #36
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 44:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter #37
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 45:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter #38
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 46:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter #39
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: Wireless_Broadband_Router.home
Address: 192.168.1.1

Name: google.com
Addresses: 2607:f8b0:4004:801::1003
74.125.228.40
74.125.228.46
74.125.228.34
74.125.228.38
74.125.228.33
74.125.228.36
74.125.228.35
74.125.228.39
74.125.228.41
74.125.228.37
74.125.228.32


Pinging google.com [74.125.228.46] with 32 bytes of data:
Reply from 74.125.228.46: bytes=32 time=15ms TTL=252
Reply from 74.125.228.46: bytes=32 time=15ms TTL=252

Ping statistics for 74.125.228.46:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 15ms, Maximum = 15ms, Average = 15ms
Server: Wireless_Broadband_Router.home
Address: 192.168.1.1

Name: yahoo.com
Addresses: 98.138.253.109
72.30.38.140
98.139.183.24


Pinging yahoo.com [72.30.38.140] with 32 bytes of data:
Reply from 72.30.38.140: bytes=32 time=342ms TTL=250
Reply from 72.30.38.140: bytes=32 time=455ms TTL=250

Ping statistics for 72.30.38.140:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 342ms, Maximum = 455ms, Average = 398ms
Server: Wireless_Broadband_Router.home
Address: 192.168.1.1

Name: bleepingcomputer.com
Address: 208.43.87.2


Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.

Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
13...0c ee e6 b6 85 65 ......Atheros AR5B91 Wireless Network Adapter
11...00 26 9e 5d 5e 0b ......Marvell Yukon 88E8057 PCI-E Gigabit Ethernet Controller
1...........................Software Loopback Interface 1
12...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter
55...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
14...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
15...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter #2
17...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter #4
18...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter #5
19...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter #6
20...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter #7
21...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter #8
22...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter #9
23...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter #10
24...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter #11
25...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter #12
26...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter #13
27...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter #14
28...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter #15
29...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter #16
30...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter #17
31...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter #18
32...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter #19
33...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter #20
34...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter #21
35...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter #22
36...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter #23
37...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter #24
38...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter #25
39...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter #26
41...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter #28
42...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter #29
43...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter #30
44...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter #31
45...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter #32
46...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter #33
47...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter #34
48...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter #35
49...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter #36
50...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter #37
51...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter #38
52...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter #39
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.37 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.37 281
192.168.1.37 255.255.255.255 On-link 192.168.1.37 281
192.168.1.255 255.255.255.255 On-link 192.168.1.37 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.37 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.37 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
13 281 fe80::/64 On-link
13 281 fe80::5cc6:37f:a514:4d3/128
On-link
1 306 ff00::/8 On-link
13 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [51712] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70144] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [320000] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (10/03/2012 06:44:13 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_fa62ad231704eab7.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd.manifest.

Error: (10/03/2012 06:40:23 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"1".
Dependent Assembly msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (10/03/2012 04:58:18 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"1".
Dependent Assembly msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (10/03/2012 04:58:18 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"1".
Dependent Assembly msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (10/03/2012 04:16:20 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"1".
Dependent Assembly msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (10/03/2012 01:42:04 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"1".
Dependent Assembly msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (10/03/2012 11:54:08 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 2948

Error: (10/03/2012 11:54:08 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 2948

Error: (10/03/2012 11:54:08 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (10/03/2012 11:54:07 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1529


System errors:
=============
Error: (10/03/2012 08:12:21 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (10/03/2012 08:12:21 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (10/03/2012 08:12:21 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (10/03/2012 08:10:15 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (10/03/2012 08:10:15 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (10/03/2012 08:10:15 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (10/03/2012 08:05:15 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (10/03/2012 08:05:15 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (10/03/2012 08:05:15 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068

Error: (10/03/2012 08:03:07 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068


Microsoft Office Sessions:
=========================

=========================== Installed Programs ============================

Update for Microsoft Office 2007 (KB2508958)
2007 Microsoft Office Suite Service Pack 2 (SP2)
7-Zip 9.20
7-Zip 9.21 (Version: 9.21.00.0)
ABBYY FineReader 6.0 Sprint (Version: 6.00.1703.41614)
Acrobat.com (Version: 1.6.65)
Adobe AIR (Version: 1.5.0.7220)
Adobe Flash Player 11 ActiveX (Version: 11.4.402.278)
Adobe Flash Player 11 Plugin (Version: 11.4.402.278)
Adobe Reader 9.3.2 MUI (Version: 9.3.2)
Apple Application Support (Version: 2.1.7)
Apple Mobile Device Support (Version: 5.1.1.4)
Apple Software Update (Version: 2.1.3.127)
Ask Toolbar (Version: 1.15.4.0)
Ask Toolbar Updater (Version: 1.2.2.23821)
Bonjour (Version: 3.0.0.10)
Choice Guard (Version: 1.2.87.0)
Compatibility Pack for the 2007 Office system (Version: 12.0.6425.1000)
Conexant HD Audio (Version: 4.98.4.60)
CyberLink Power2Go (Version: 6.0.3108)
CyberLink PowerDVD 8 (Version: 8.0.2815m.50)
eBay Worldwide (Version: 2.1.0703)
Free YouTube to MP3 Converter version 3.11.27.819 (Version: 3.11.27.819)
Gateway Games (Version: 1.0.0.71)
Gateway InfoCentre (Version: 3.02.3000)
Gateway Power Management (Version: 4.05.3002)
Gateway Recovery Management (Version: 4.05.3003)
Gateway Registration (Version: 1.02.3004)
Gateway Updater (Version: 1.01.3014)
Google Earth Plug-in (Version: 6.2.2.6613)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Update Helper (Version: 1.3.21.123)
HDAUDIO Soft Data Fax Modem with SmartCP (Version: 7.80.4.50)
Identity Card (Version: 1.00.3001)
IHA_MessageCenter (Version: 1.8.70)
Intel® Graphics Media Accelerator Driver
Intel® Matrix Storage Manager
iPad/iPhone/iPod to Computer Transfer 7.7.7
iTunes (Version: 10.6.1.7)
Java Auto Updater (Version: 2.0.2.4)
Java™ 6 Update 21 (Version: 6.0.210)
Java™ 7 Update 5 (Version: 7.0.50)
JavaFX 2.1.1 (Version: 2.1.1)
Junk Mail filter update (Version: 14.0.8064.206)
Lexmark 3400 Series
Lexmark Fax Solutions
Lexmark Toolbar
Malwarebytes Anti-Malware version 1.65.0.1400 (Version: 1.65.0.1400)
ManyCam 3.0.80 (remove only) (Version: 3.0.80)
MapleStory
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Home and Student 2007 (Version: 12.0.6425.1000)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6425.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office PowerPoint Viewer 2007 (English) (Version: 12.0.6425.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Suite Activation Assistant (Version: 2.9)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable - KB2467175 (Version: 8.0.51011)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (Version: 8.0.51011)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Works (Version: 9.7.0621)
Mozilla Firefox 15.0.1 (x86 en-US) (Version: 15.0.1)
Mozilla Maintenance Service (Version: 15.0.1)
MSVCRT (Version: 14.0.1468.721)
Norton 360 (Version: 4.4.0.12)
Norton Online Backup (Version: 1.2.0.36)
O2Micro Flash Memory Card Reader Driver (Version: 3.31.02)
ooVoo (Version: 3.5.1072)
ooVoo Toolbar (Version: 2.5.0.3)
Pando Media Booster (Version: 2.3.4.1)
RealNetworks - Microsoft Visual C++ 2008 Runtime (Version: 9.0)
RealPlayer (Version: 15.0.6)
RealUpgrade 1.1 (Version: 1.1.0)
RingtoneJunkiez Desktop (Version: 1.0.0)
Steam (Version: 1.0.0.0)
SUPERAntiSpyware (Version: 5.0.1150)
Synaptics Pointing Device Driver (Version: 13.2.2.0)
Update for 2007 Microsoft Office System (KB2284654)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office OneNote 2007 (KB980729)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
Update Installer for WildTangent Games App
Video Web Camera (Version: 1.7.55.803)
Visual Studio 2008 x64 Redistributables (Version: 10.0.0.2)
Vz In Home Agent (Version: 8.03.53)
Wajam (Version: 1.42)
Welcome Center (Version: 1.00.3005)
WildTangent Games App (Version: 4.0.9.7)
Windows Live Call (Version: 14.0.8064.0206)
Windows Live Communications Platform (Version: 14.0.8064.206)
Windows Live Essentials (Version: 14.0.8064.0206)
Windows Live Essentials (Version: 14.0.8064.206)
Windows Live Mail (Version: 14.0.8064.0206)
Windows Live Messenger (Version: 14.0.8064.0206)
Windows Live Photo Gallery (Version: 14.0.8064.206)
Windows Live Sign-in Assistant (Version: 5.000.818.5)
Windows Live Sync (Version: 14.0.8064.206)
Windows Live Upload Tool (Version: 14.0.8014.1029)
Windows Live Writer (Version: 14.0.8064.0206)
Windows Media Player Firefox Plugin (Version: 1.0.0.8)
WinRAR 4.01 (32-bit) (Version: 4.01.0)
Yontoo 1.10.02 (Version: 1.10.02)

========================= Memory info: ===================================

Percentage of memory in use: 57%
Total physical RAM: 2936.92 MB
Available physical RAM: 1252 MB
Total Pagefile: 5871.99 MB
Available Pagefile: 4471.55 MB
Total Virtual: 4095.88 MB
Available Virtual: 3974.55 MB

========================= Partitions: =====================================

1 Drive c: (Gateway) (Fixed) (Total:220.79 GB) (Free:154.7 GB) NTFS

========================= Users: ========================================

User accounts for \\ANDREW-PC

Administrator Andrew Guest

========================= Restore Points ==================================

01-09-2012 23:28:47 Scheduled Checkpoint
05-09-2012 17:58:44 FiOS Installation
13-09-2012 01:43:46 Scheduled Checkpoint
20-09-2012 04:15:50 Scheduled Checkpoint
29-09-2012 03:34:59 Scheduled Checkpoint

**** End of log ****

#9 andrew826

andrew826
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:08:14 AM

Posted 03 October 2012 - 07:16 PM

Farbar Service Scanner Version: 19-09-2012
Ran by Andrew (administrator) on 03-10-2012 at 20:16:28
Running from "C:\Users\Andrew\Downloads"
Microsoft Windows 7 Home Premium (X64)
Boot Mode: Network
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============
SDRSVC Service is not running. Checking service configuration:
The start type of SDRSVC service is OK.
The ImagePath of SDRSVC service is OK.
The ServiceDll of SDRSVC service is OK.

VSS Service is not running. Checking service configuration:
The start type of VSS service is OK.
The ImagePath of VSS service is OK.


System Restore Disabled Policy:
========================


Action Center:
============
wscsvc Service is not running. Checking service configuration:
The start type of wscsvc service is OK.
The ImagePath of wscsvc service is OK.
The ServiceDll of wscsvc service is OK.


Windows Update:
============
wuauserv Service is not running. Checking service configuration:
The start type of wuauserv service is OK.
The ImagePath of wuauserv service is OK.
The ServiceDll of wuauserv service is OK.

BITS Service is not running. Checking service configuration:
The start type of BITS service is set to Demand. The default start type is Auto.
The ImagePath of BITS service is OK.
The ServiceDll of BITS service is OK.

EventSystem Service is not running. Checking service configuration:
The start type of EventSystem service is OK.
The ImagePath of EventSystem service is OK.
The ServiceDll of EventSystem service is OK.


Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll
[2009-07-13 20:09] - [2009-07-13 21:41] - 0824832 ____A (Microsoft Corporation) AECAB449567D1846DAD63ECE49E893E3

C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll
[2009-07-13 19:36] - [2009-07-13 21:41] - 0170496 ____A (Microsoft Corporation) 765A27C3279CE11D14CB9E4F5869FCA5

C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll
[2009-07-13 20:36] - [2009-07-13 21:41] - 2418176 ____A (Microsoft Corporation) 38340204A2D0228F1E87740FC5E554A7

C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****

#10 andrew826

andrew826
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:08:14 AM

Posted 03 October 2012 - 07:21 PM

# AdwCleaner v2.003 - Logfile created 10/03/2012 at 20:17:55
# Updated 23/09/2012 by Xplode
# Operating system : Windows 7 Home Premium (64 bits)
# User : Andrew - ANDREW-PC
# Boot Mode : Safe mode with networking
# Running from : C:\Users\Andrew\Downloads\adwcleaner.exe
# Option [Delete]


***** [Services] *****

Stopped & Deleted : WajamUpdater

***** [Files / Folders] *****

File Deleted : C:\Users\Andrew\AppData\Local\funmoods-speeddial.crx
File Deleted : C:\Users\Andrew\AppData\Roaming\Mozilla\Firefox\Profiles\l76hobno.default\searchplugins\search.xml
Folder Deleted : C:\Program Files (x86)\Ask.com
Folder Deleted : C:\Program Files (x86)\Funmoods
Folder Deleted : C:\Program Files (x86)\Wajam
Folder Deleted : C:\Program Files (x86)\Yontoo
Folder Deleted : C:\ProgramData\Ask
Folder Deleted : C:\ProgramData\Partner
Folder Deleted : C:\ProgramData\Tarma Installer
Folder Deleted : C:\Users\Andrew\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_mpfapcdfbbledbojijcbcclmlieaoogk_0
Folder Deleted : C:\Users\Andrew\AppData\Local\Temp\boost_interprocess
Folder Deleted : C:\Users\Andrew\AppData\Local\Wajam
Folder Deleted : C:\Users\Andrew\AppData\LocalLow\AskToolbar
Folder Deleted : C:\Users\Andrew\AppData\LocalLow\Funmoods
Folder Deleted : C:\Users\Andrew\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wajam
Folder Deleted : C:\Users\Andrew\AppData\Roaming\Mozilla\Firefox\Profiles\l76hobno.default\extensions\toolbar@ask.com
Folder Deleted : C:\Users\Andrew\AppData\Roaming\Mozilla\Firefox\Profiles\l76hobno.default\FCTB
Folder Deleted : C:\Users\Andrew\AppData\Roaming\OpenCandy
Folder Deleted : C:\Windows\Installer\{86D4B82A-ABED-442A-BE86-96357B70F4FE}

***** [Registry] *****

Key Deleted : HKCU\Software\APN
Key Deleted : HKCU\Software\AppDataLow\Software\AskToolbar
Key Deleted : HKCU\Software\AppDataLow\Software\Crossrider
Key Deleted : HKCU\Software\AppDataLow\Software\I Want This
Key Deleted : HKCU\Software\Ask.com
Key Deleted : HKCU\Software\Cr_Installer
Key Deleted : HKCU\Software\Funmoods
Key Deleted : HKCU\Software\Google\Chrome\Extensions\cjpglkicenollcignonpgiafdgfeehoj
Key Deleted : HKCU\Software\Google\Chrome\Extensions\fdloijijlkoblmigdofommgnheckmaki
Key Deleted : HKCU\Software\InstalledBrowserExtensions
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{79A765E1-C399-405B-85AF-466F52E918B0}
Key Deleted : HKCU\Software\Wajam
Key Deleted : HKCU\Software\Zugo
Key Deleted : HKLM\Software\APN
Key Deleted : HKLM\Software\AskToolbar
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{1FAEE6D5-34F4-42AA-8025-3FD8F3EC4634}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{960DF771-CFCB-4E53-A5B5-6EF2BBE6E706}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{CFDAFE39-20CE-451D-BD45-A37452F39CF0}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{D616A4A2-7B38-4DBC-9093-6FE7A4A21B17}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escortApp.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escortEng.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escorTlbr.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
Key Deleted : HKLM\SOFTWARE\Classes\AppID\GenericAskToolbar.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\YontooIEClient.DLL
Key Deleted : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd
Key Deleted : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd.1
Key Deleted : HKLM\SOFTWARE\Classes\Installer\Features\A28B4D68DEBAA244EB686953B7074FEF
Key Deleted : HKLM\SOFTWARE\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{095BFD3C-4602-4FE1-96F1-AEFAFBFD067D}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{D372567D-67C1-4B29-B3F0-159B52B3E967}
Key Deleted : HKLM\SOFTWARE\Classes\wajam.WajamBHO
Key Deleted : HKLM\SOFTWARE\Classes\wajam.WajamBHO.1
Key Deleted : HKLM\SOFTWARE\Classes\wajam.WajamDownloader
Key Deleted : HKLM\SOFTWARE\Classes\wajam.WajamDownloader.1
Key Deleted : HKLM\SOFTWARE\Classes\YontooIEClient.Api
Key Deleted : HKLM\SOFTWARE\Classes\YontooIEClient.Api.1
Key Deleted : HKLM\SOFTWARE\Classes\YontooIEClient.Layers
Key Deleted : HKLM\SOFTWARE\Classes\YontooIEClient.Layers.1
Key Deleted : HKLM\Software\Funmoods
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Key Deleted : HKLM\Software\Wajam
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{00000000-6E41-4FD3-8538-502F5495E5FC}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{431532BD-0AE1-4ABC-BE8C-919F3D1332E2}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{7E84186E-B5DE-4226-8A66-6E49C6B511B4}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{99066096-8989-4612-841F-621A01D54AD7}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{FE9271F2-6EFD-44B0-A826-84C829536E93}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{23C70BCA-6E23-4A65-AD2E-1389062074F1}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{23D8EEF7-0E13-4000-B9C4-6603C1E912D1}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{295CACB4-51F5-46FD-914E-C72BAAE1B672}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{2CE5C4B9-6DBE-4528-96FA-C9FF38EF1762}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{34C1FDF7-02C1-4F23-B393-F48B16E071D1}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{431532BD-0AE1-4ABC-BE8C-919F3D1332E2}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{54291324-7A3D-4F11-B707-3FB6A2C97BD9}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{59C63F11-D4E5-46E7-9B8A-EE158DCA83A8}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{5DA22CBD-0029-4A09-B757-CF0FAFC488ED}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{77A6E7D4-4A83-4A9B-A2A0-EF3B125DC29D}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{C0585B2F-74D7-4734-88DE-6C150C5D4036}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{D8242E89-2F81-484A-AE5B-BA8CAD5B7347}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{EF0588D6-1621-4A75-B8BE-F4BC34794136}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\cjpglkicenollcignonpgiafdgfeehoj
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\jpmbfleldcgkldadpdinhjjopdfpjfjp
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\niapdbllcanepiiimjjndipklodoedlc
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Wajam
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0D80F1C5-D17B-4177-AC68-955F3EF9F191}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{23C70BCA-6E23-4A65-AD2E-1389062074F1}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{23D8EEF7-0E13-4000-B9C4-6603C1E912D1}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{295CACB4-51F5-46FD-914E-C72BAAE1B672}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2CE5C4B9-6DBE-4528-96FA-C9FF38EF1762}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{34C1FDF7-02C1-4F23-B393-F48B16E071D1}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{431532BD-0AE1-4ABC-BE8C-919F3D1332E2}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{54291324-7A3D-4F11-B707-3FB6A2C97BD9}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550055225558}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{59C63F11-D4E5-46E7-9B8A-EE158DCA83A8}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{5DA22CBD-0029-4A09-B757-CF0FAFC488ED}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660066226658}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{77777777-7777-7777-7777-770077227758}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{77A6E7D4-4A83-4A9B-A2A0-EF3B125DC29D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C0585B2F-74D7-4734-88DE-6C150C5D4036}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D8242E89-2F81-484A-AE5B-BA8CAD5B7347}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EF0588D6-1621-4A75-B8BE-F4BC34794136}
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\cjpglkicenollcignonpgiafdgfeehoj
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\fdloijijlkoblmigdofommgnheckmaki
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A28B4D68DEBAA244EB686953B7074FEF
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}
Key Deleted : HKLM\SOFTWARE\Tarma Installer
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\New Windows\Allow [*.crossrider.com]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\New Windows\Allow [*.crossrider.com]
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [ApnUpdater]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{D4027C7F-154A-4066-A1AD-4243D8127440}]

***** [Internet Browsers] *****

-\\ Internet Explorer v8.0.7600.16385

Restored : [HKCU\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKCU\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKU\S-1-5-18\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKU\S-1-5-19\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Restored : [HKU\S-1-5-20\Software\Microsoft\Internet Explorer\SearchScopes - DefaultScope]
Replaced : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main - Start Page] = hxxp://start.funmoods.com/?f=1&a=adknlg&chnl=adknlg&cd=2XzutAtN2Y1L1QzutD0C0E0E0EyC0ByCzzyDyCyDzzzz0ByEtN0D0TzutBtDtCtBtDyCtDyC&cr=932927250 --> hxxp://www.google.com
Replaced : [HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURls - Tabs] = hxxp://start.funmoods.com/?f=2&a=adknlg&chnl=adknlg&cd=2XzutAtN2Y1L1QzutD0C0E0E0EyC0ByCzzyDyCyDzzzz0ByEtN0D0TzutBtDtCtBtDyCtDyC&cr=932927250 --> hxxp://www.google.com

-\\ Mozilla Firefox v15.0.1 (en-US)

Profile name : default
File : C:\Users\Andrew\AppData\Roaming\Mozilla\Firefox\Profiles\l76hobno.default\prefs.js

C:\Users\Andrew\AppData\Roaming\Mozilla\Firefox\Profiles\l76hobno.default\user.js ... Deleted !

Deleted : user_pref("extensions.asktb.InstallDir", "C:\\Program Files (x86)\\Ask.com\\");
Deleted : user_pref("extensions.asktb.abar-war-regex", "conduit\\.com");
Deleted : user_pref("extensions.asktb.apn_dbr", "ie_8.0.7600.16385");
Deleted : user_pref("extensions.asktb.autofill-competitor-query-enabled", true);
Deleted : user_pref("extensions.asktb.cbid", "5I");
Deleted : user_pref("extensions.asktb.config-updated", false);
Deleted : user_pref("extensions.asktb.crumb", "2012.07.06+21.14.54-toolbar001iad-US-V2FybWluc3RlcixQQSxVbml0ZW[...]
Deleted : user_pref("extensions.asktb.default-channel-url-mask", "hxxp://www.ask.com/web?q={query}&o={o}&l={l}[...]
Deleted : user_pref("extensions.asktb.displaybehavior", "");
Deleted : user_pref("extensions.asktb.displaytext", "");
Deleted : user_pref("extensions.asktb.dtid", "YYYYYYYYUS");
Deleted : user_pref("extensions.asktb.dyn-weather-do-locid-lookup-weatherWidget", false);
Deleted : user_pref("extensions.asktb.dyn-weather-locid-weatherWidget", "USPA1723");
Deleted : user_pref("extensions.asktb.dyn-weather-tempunit-weatherWidget", "F");
Deleted : user_pref("extensions.asktb.fresh-install", false);
Deleted : user_pref("extensions.asktb.guid", "0fb9b07a-140d-4a0b-b960-9b5b99abf044");
Deleted : user_pref("extensions.asktb.hxxp-header-whitelist-hosts", "[\"static-dev.en.dev.ask.com\", \"ask.com[...]
Deleted : user_pref("extensions.asktb.if", "first");
Deleted : user_pref("extensions.asktb.l", "dis");
Deleted : user_pref("extensions.asktb.last-config-req", "1349264824724");
Deleted : user_pref("extensions.asktb.last-search-timestamp", "1346958993217");
Deleted : user_pref("extensions.asktb.locale", "en_US");
Deleted : user_pref("extensions.asktb.location", "Warminster,PA,United States");
Deleted : user_pref("extensions.asktb.lstation", "");
Deleted : user_pref("extensions.asktb.new-tab-enabled", true);
Deleted : user_pref("extensions.asktb.news-native-on", true);
Deleted : user_pref("extensions.asktb.o", "102868");
Deleted : user_pref("extensions.asktb.overlay-reloaded-using-restart", true);
Deleted : user_pref("extensions.asktb.pstate", "");
Deleted : user_pref("extensions.asktb.qsrc", "2871");
Deleted : user_pref("extensions.asktb.r", "2");
Deleted : user_pref("extensions.asktb.sa", "NO");
Deleted : user_pref("extensions.asktb.search-history-queries", "how tall is kevin hert");
Deleted : user_pref("extensions.asktb.search-suggestions-enabled", true);
Deleted : user_pref("extensions.asktb.silent-upgrade-from-pre-newtabs-build", false);
Deleted : user_pref("extensions.asktb.socialmini-first", true);
Deleted : user_pref("extensions.asktb.socialmini-interval", "1200000");
Deleted : user_pref("extensions.asktb.socialmini-max-char-ticker", "33");
Deleted : user_pref("extensions.asktb.socialmini-max-items", "30");
Deleted : user_pref("extensions.asktb.socialmini-native-on", true);
Deleted : user_pref("extensions.asktb.socialmini-speed", "10000");
Deleted : user_pref("extensions.asktb.socialmini-transition-first-open", false);
Deleted : user_pref("extensions.asktb.themeid", "");
Deleted : user_pref("extensions.asktb.timeinstalled", "7/7/2012 12:15:06 AM");
Deleted : user_pref("extensions.asktb.to", "");
Deleted : user_pref("extensions.asktb.v", "3.15.4.100013");
Deleted : user_pref("extensions.asktb.version", "5.15.4.23821");
Deleted : user_pref("extensions.asktb.volume", "");
Deleted : user_pref("extensions.crossriderapp2258.2258.InstallationThankYouPage", true);
Deleted : user_pref("extensions.crossriderapp2258.2258.InstallationTime", 1342315924);
Deleted : user_pref("extensions.crossriderapp2258.2258.InstallationUserSettings.searchUserConifrmation", false[...]
Deleted : user_pref("extensions.crossriderapp2258.2258.InstallationUserSettings.setHomepage", false);
Deleted : user_pref("extensions.crossriderapp2258.2258.InstallationUserSettings.setNewTab", false);
Deleted : user_pref("extensions.crossriderapp2258.2258.InstallationUserSettings.setSearch", false);
Deleted : user_pref("extensions.crossriderapp2258.2258.active", true);
Deleted : user_pref("extensions.crossriderapp2258.2258.addressbar", "");
Deleted : user_pref("extensions.crossriderapp2258.2258.affid", "0");
Deleted : user_pref("extensions.crossriderapp2258.2258.backgroundjs", "\n\n_GPL_PID = 21;\nfunction parse_url([...]
Deleted : user_pref("extensions.crossriderapp2258.2258.backgroundver", 10);
Deleted : user_pref("extensions.crossriderapp2258.2258.can_run_bg_code", true);
Deleted : user_pref("extensions.crossriderapp2258.2258.certdomaininstaller", "");
Deleted : user_pref("extensions.crossriderapp2258.2258.changeprevious", false);
Deleted : user_pref("extensions.crossriderapp2258.2258.cookie.InstallationTime.expiration", "Fri Feb 01 2030 0[...]
Deleted : user_pref("extensions.crossriderapp2258.2258.cookie.InstallationTime.value", "1342315924");
Deleted : user_pref("extensions.crossriderapp2258.2258.cookie.InstallerParams.expiration", "Fri Feb 01 2030 00[...]
Deleted : user_pref("extensions.crossriderapp2258.2258.cookie._GPL_aoi.expiration", "Fri Feb 01 2030 00:00:00 [...]
Deleted : user_pref("extensions.crossriderapp2258.2258.cookie._GPL_aoi.value", "1342315924");
Deleted : user_pref("extensions.crossriderapp2258.2258.cookie._GPL_hotfix20111102645.expiration", "Fri Feb 01 [...]
Deleted : user_pref("extensions.crossriderapp2258.2258.cookie._GPL_hotfix20111102645.value", "%221%22");
Deleted : user_pref("extensions.crossriderapp2258.2258.cookie._GPL_parent_zoneid.expiration", "Fri Feb 01 2030[...]
Deleted : user_pref("extensions.crossriderapp2258.2258.cookie._GPL_parent_zoneid.value", "%2214019%22");
Deleted : user_pref("extensions.crossriderapp2258.2258.cookie._GPL_product_id.expiration", "Fri Feb 01 2030 00[...]
Deleted : user_pref("extensions.crossriderapp2258.2258.cookie._GPL_product_id.value", "%2221%22");
Deleted : user_pref("extensions.crossriderapp2258.2258.cookie._GPL_zoneid.expiration", "Fri Feb 01 2030 00:00:[...]
Deleted : user_pref("extensions.crossriderapp2258.2258.cookie._GPL_zoneid.value", "%2256362%22");
Deleted : user_pref("extensions.crossriderapp2258.2258.description", "I Want This!");
Deleted : user_pref("extensions.crossriderapp2258.2258.domain", "");
Deleted : user_pref("extensions.crossriderapp2258.2258.emailsig", "");
Deleted : user_pref("extensions.crossriderapp2258.2258.enablesearch", false);
Deleted : user_pref("extensions.crossriderapp2258.2258.exposesites", "");
Deleted : user_pref("extensions.crossriderapp2258.2258.fbremoteurl", "");
Deleted : user_pref("extensions.crossriderapp2258.2258.group", 0);
Deleted : user_pref("extensions.crossriderapp2258.2258.homepage", "");
Deleted : user_pref("extensions.crossriderapp2258.2258.iframe", false);
Deleted : user_pref("extensions.crossriderapp2258.2258.internaldb.InstallerIdentifiers.expiration", "Fri Feb 0[...]
Deleted : user_pref("extensions.crossriderapp2258.2258.internaldb.InstallerIdentifiers.value", "%7B%22installe[...]
Deleted : user_pref("extensions.crossriderapp2258.2258.js", "\nvar _GPL_PID=21,_GPL_baseCDN=\"contentcache-a.a[...]
Deleted : user_pref("extensions.crossriderapp2258.2258.manifesturl", "");
Deleted : user_pref("extensions.crossriderapp2258.2258.name", "I Want This");
Deleted : user_pref("extensions.crossriderapp2258.2258.newtab", "");
Deleted : user_pref("extensions.crossriderapp2258.2258.opensearch", "");
Deleted : user_pref("extensions.crossriderapp2258.2258.plugins.plugin_13.code", "(function(a){a.selectedText=f[...]
Deleted : user_pref("extensions.crossriderapp2258.2258.plugins.plugin_13.name", "CrossriderAppUtils");
Deleted : user_pref("extensions.crossriderapp2258.2258.plugins.plugin_13.ver", 1);
Deleted : user_pref("extensions.crossriderapp2258.2258.plugins.plugin_14.code", "if(typeof(appAPI)===\"undefin[...]
Deleted : user_pref("extensions.crossriderapp2258.2258.plugins.plugin_14.name", "CrossriderUtils");
Deleted : user_pref("extensions.crossriderapp2258.2258.plugins.plugin_14.ver", 1);
Deleted : user_pref("extensions.crossriderapp2258.2258.plugins.plugin_15.code", "(function(f){var u={};var e=M[...]
Deleted : user_pref("extensions.crossriderapp2258.2258.plugins.plugin_15.name", "FacebookFFIE");
Deleted : user_pref("extensions.crossriderapp2258.2258.plugins.plugin_15.ver", 1);
Deleted : user_pref("extensions.crossriderapp2258.2258.plugins.plugin_16.code", "(function(f,B){if(typeof(B)==[...]
Deleted : user_pref("extensions.crossriderapp2258.2258.plugins.plugin_16.name", "FFAppAPIWrapper");
Deleted : user_pref("extensions.crossriderapp2258.2258.plugins.plugin_16.ver", 3);
Deleted : user_pref("extensions.crossriderapp2258.2258.plugins.plugin_17.code", "if(typeof window!==\"undefine[...]
Deleted : user_pref("extensions.crossriderapp2258.2258.plugins.plugin_17.name", "jQuery");
Deleted : user_pref("extensions.crossriderapp2258.2258.plugins.plugin_17.ver", 1);
Deleted : user_pref("extensions.crossriderapp2258.2258.plugins_lists.plugins_0", "17,14,16");
Deleted : user_pref("extensions.crossriderapp2258.2258.plugins_lists.plugins_1", "17,14,13,16,15");
Deleted : user_pref("extensions.crossriderapp2258.2258.pluginsurl", "hxxp://app-static.crossrider.com/plugin/a[...]
Deleted : user_pref("extensions.crossriderapp2258.2258.pluginsversion", 4);
Deleted : user_pref("extensions.crossriderapp2258.2258.premium", true);
Deleted : user_pref("extensions.crossriderapp2258.2258.publisher", "215 Apps");
Deleted : user_pref("extensions.crossriderapp2258.2258.searchstatus", 0);
Deleted : user_pref("extensions.crossriderapp2258.2258.setnewtab", false);
Deleted : user_pref("extensions.crossriderapp2258.2258.settingsurl", "");
Deleted : user_pref("extensions.crossriderapp2258.2258.thankyou", "");
Deleted : user_pref("extensions.crossriderapp2258.2258.updateinterval", 360);
Deleted : user_pref("extensions.crossriderapp2258.2258.ver", 61);
Deleted : user_pref("extensions.crossriderapp2258.apps", "2258");
Deleted : user_pref("extensions.crossriderapp2258.bic", "138888fbb7ec545d1a50583a03fd35be");
Deleted : user_pref("extensions.crossriderapp2258.cid", 2258);
Deleted : user_pref("extensions.crossriderapp2258.firstrun", false);
Deleted : user_pref("extensions.crossriderapp2258.hadappinstalled", true);
Deleted : user_pref("extensions.crossriderapp2258.installationdate", 1342320917);
Deleted : user_pref("extensions.crossriderapp2258.lastcheck", 22384427);
Deleted : user_pref("extensions.crossriderapp2258.lastcheckitem", 22384492);
Deleted : user_pref("extensions.enabledAddons", "{710bfbb1-99a8-49fc-8801-6967d655ac6a}:1.0,{ACAA314B-EEBA-48e[...]
Deleted : user_pref("extensions.funmoods.aflt", "adknlg");
Deleted : user_pref("extensions.funmoods.autoRvrt", false);
Deleted : user_pref("extensions.funmoods.cntry", "US");
Deleted : user_pref("extensions.funmoods.dfltLng", "");
Deleted : user_pref("extensions.funmoods.dfltSrch", true);
Deleted : user_pref("extensions.funmoods.dnsErr", true);
Deleted : user_pref("extensions.funmoods.envrmnt", "production");
Deleted : user_pref("extensions.funmoods.excTlbr", false);
Deleted : user_pref("extensions.funmoods.hdrMd5", "CE98000C4BB94294E7AAB6E817EF3765");
Deleted : user_pref("extensions.funmoods.hmpg", true);
Deleted : user_pref("extensions.funmoods.hmpgUrl", "hxxp://start.funmoods.com/?f=1&a=adknlg&chnl=adknlg&cd=2Xz[...]
Deleted : user_pref("extensions.funmoods.id", "c07b88b40000000000000ceee6b68565");
Deleted : user_pref("extensions.funmoods.instlDay", "15497");
Deleted : user_pref("extensions.funmoods.instlRef", "adknlg");
Deleted : user_pref("extensions.funmoods.isdcmntcmplt", true);
Deleted : user_pref("extensions.funmoods.lastVrsnTs", "1.5.23.2223:13:26");
Deleted : user_pref("extensions.funmoods.mntrvrsn", "1.3.0");
Deleted : user_pref("extensions.funmoods.newTab", true);
Deleted : user_pref("extensions.funmoods.newTabUrl", "hxxp://start.funmoods.com/?f=2&a=adknlg&chnl=adknlg&cd=2[...]
Deleted : user_pref("extensions.funmoods.prdct", "funmoods");
Deleted : user_pref("extensions.funmoods.prtnrId", "funmoods");
Deleted : user_pref("extensions.funmoods.sg", "none");
Deleted : user_pref("extensions.funmoods.smplGrp", "none");
Deleted : user_pref("extensions.funmoods.srchPrvdr", "Search");
Deleted : user_pref("extensions.funmoods.tlbrId", "base");
Deleted : user_pref("extensions.funmoods.tlbrSrchUrl", "");
Deleted : user_pref("extensions.funmoods.vrsn", "1.5.23.22");
Deleted : user_pref("extensions.funmoods.vrsnTs", "1.5.23.2223:13:26");
Deleted : user_pref("extensions.funmoods.vrsni", "1.5.23.22");
Deleted : user_pref("extensions.funmoods_i.newTab", true);
Deleted : user_pref("extensions.funmoods_i.smplGrp", "none");
Deleted : user_pref("extensions.funmoods_i.vrsnTs", "1.5.23.2223:13:26");
Deleted : user_pref("freecause758d6aeb75e49f24fd4951b640add07f.AutoSearchEventData", "auto%20search");
Deleted : user_pref("freecause758d6aeb75e49f24fd4951b640add07f.ClearCacheDate", 20);
Deleted : user_pref("freecause758d6aeb75e49f24fd4951b640add07f.DNSCatch", true);
Deleted : user_pref("freecause758d6aeb75e49f24fd4951b640add07f.DisplayEULA", true);
Deleted : user_pref("freecause758d6aeb75e49f24fd4951b640add07f.DnsCatchEventData", "dns%20catch");
Deleted : user_pref("freecause758d6aeb75e49f24fd4951b640add07f.EBOMode", true);
Deleted : user_pref("freecause758d6aeb75e49f24fd4951b640add07f.FirstLaunchShown", true);
Deleted : user_pref("freecause758d6aeb75e49f24fd4951b640add07f.InstallDomain", "freecause.com");
Deleted : user_pref("freecause758d6aeb75e49f24fd4951b640add07f.InstallType", "standard");
Deleted : user_pref("freecause758d6aeb75e49f24fd4951b640add07f.LoadLayoutDate.100815", 20);
Deleted : user_pref("freecause758d6aeb75e49f24fd4951b640add07f.NewTabSearchEventData", "tab%20search");
Deleted : user_pref("freecause758d6aeb75e49f24fd4951b640add07f.ShowRecommendedOptions", true);
Deleted : user_pref("freecause758d6aeb75e49f24fd4951b640add07f.StateReportDate", "1342813923791");
Deleted : user_pref("freecause758d6aeb75e49f24fd4951b640add07f.TopRightSearchEventData", "top%20right%20search[...]
Deleted : user_pref("freecause758d6aeb75e49f24fd4951b640add07f.beforeInstallSaved", true);
Deleted : user_pref("freecause758d6aeb75e49f24fd4951b640add07f.beforeinstall.homepage", "hxxp%3A//start.funmoo[...]
Deleted : user_pref("freecause758d6aeb75e49f24fd4951b640add07f.beforeinstall.search", "Search");
Deleted : user_pref("freecause758d6aeb75e49f24fd4951b640add07f.customNewTab", true);
Deleted : user_pref("freecause758d6aeb75e49f24fd4951b640add07f.helpUsImprove", true);
Deleted : user_pref("freecause758d6aeb75e49f24fd4951b640add07f.hideOthers", true);
Deleted : user_pref("freecause758d6aeb75e49f24fd4951b640add07f.partnerauth", false);
Deleted : user_pref("freecause758d6aeb75e49f24fd4951b640add07f.processAddrBar", true);
Deleted : user_pref("freecause758d6aeb75e49f24fd4951b640add07f.restoreSearch", false);
Deleted : user_pref("freecause758d6aeb75e49f24fd4951b640add07f.runcmd.", "bb_acct_status_1342813925");
Deleted : user_pref("freecause758d6aeb75e49f24fd4951b640add07f.searchHistory", true);
Deleted : user_pref("freecause758d6aeb75e49f24fd4951b640add07f.session", "E05A5BAF6897EACBF3A3267FC1FE4EADAC07[...]
Deleted : user_pref("freecause758d6aeb75e49f24fd4951b640add07f.showFirstLaunchOptions", false);
Deleted : user_pref("freecause758d6aeb75e49f24fd4951b640add07f.tb_lang", "en");
Deleted : user_pref("freecause758d6aeb75e49f24fd4951b640add07f.tool_id", "100815");
Deleted : user_pref("freecause758d6aeb75e49f24fd4951b640add07f.user_id", "113393164");
Deleted : user_pref("freecause758d6aeb75e49f24fd4951b640add07f.user_key", "689cd01af5004b88c74574f7c900bdcaac2[...]
Deleted : user_pref("freecause758d6aeb75e49f24fd4951b640add07f.user_layouts", "100815");
Deleted : user_pref("freecause758d6aeb75e49f24fd4951b640add07f.user_lnames", "fcreward.100815.b");
Deleted : user_pref("freecause758d6aeb75e49f24fd4951b640add07f.xml_service_url", "6bb94bbf55fe2f255901a560824a[...]
Deleted : user_pref("freecause758d6aeb75e49f24fd4951b640add07f.yahooSearch", true);
Deleted : user_pref("keyword.URL", "hxxp://search.internet-search-results.com/?sid=10101182100&s=");

*************************

AdwCleaner[S1].txt - [30182 octets] - [03/10/2012 20:17:55]

########## EOF - C:\AdwCleaner[S1].txt - [30243 octets] ##########

#11 andrew826

andrew826
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:08:14 AM

Posted 03 October 2012 - 07:39 PM

Junkware Removal Tool (JRT) by Thisisu
Version: 1.2.3 (10.03.2012)
OS: Windows 7 Home Premium x64
Ran by Andrew on Wed 10/03/2012 at 20:38:16.79
Blog: http://thisisudax.blogspot.com
**************************************************************




*** Services: 0 Detections



*** Registry Values: 0 Detections



*** Registry Keys: 0 Detections



*** Files: 0 Detections



*** Folders: 0 Detections



*** FireFox detected and repaired

Successfully deleted: [FF EXTENSIONS PROFILE] {acaa314b-eeba-48e4-ad47-84e31c44796c}
Removed the following from [PREFS.JS] :

user_pref("extensions.crossrider.bic", "138888fbb7ec545d1a50583a03fd35be");
user_pref("extentions.y2layers.defaultEnableAppsList", "ezLooker,pagerage,buzzdock,toprelatedtopics,twittube");
user_pref("extentions.y2layers.installId", "bed3662f-e6af-4684-9659-6088ef371f27");
user_pref("extentions.y2layers.lastDnsTest", 371955);


*** Event Viewer Logs - Cleared





**************************************************************
Scan was completed on Wed 10/03/2012 at 20:38:18.61
End of Report

#12 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:14 AM

Posted 03 October 2012 - 08:30 PM

Click on startmenu and type

cmd

right click on it and select run as administrator

Now copy following commands and press ENTER one by one

cd C:\windows\system32\drivers\etc
takeown /a /f hosts
cacls hosts /p everyone:f


Press Y

attrib -s -h -r hosts

After running these commands

Download

Hosts fixit

Run it,restart the PC

Now launch mini toolbox and checkmark hosts contents alone and post the new log

Download

http://www.bleepingcomputer.com/download/rkill/

Run it and after scan finishes,post the contents of RKILL log located on the desktop here

Download

Autoruns

Extract and launch autoruns.exe

Allow the scan to get finished

Now click on FILE-SAVE

Filename:Autoruns.txt
Save as :Text

Paste the text contents here

#13 andrew826

andrew826
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:08:14 AM

Posted 03 October 2012 - 09:06 PM

MiniToolBox by Farbar Version: 23-07-2012
Ran by Andrew (administrator) on 03-10-2012 at 22:05:04
Microsoft Windows 7 Home Premium (X64)
Boot Mode: Normal
***************************************************************************
========================= Hosts content: =================================

::1 localhost








































































































































































































74.55.76.230 www.google-analytics.com.
74.55.76.230 ad-emea.doubleclick.net.
74.55.76.230 www.statcounter.com.
178.250.45.15 www.google-analytics.com.
178.250.45.15 ad-emea.doubleclick.net.
178.250.45.15 www.statcounter.com.

127.0.0.1 localhost


**** End of log ****

#14 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:14 AM

Posted 03 October 2012 - 09:08 PM

Please follow my previous instructions again :)

#15 andrew826

andrew826
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:08:14 AM

Posted 03 October 2012 - 09:11 PM

Rkill 2.4.3 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2012 BleepingComputer.com
More Information about Rkill can be found at this link:
http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 10/03/2012 10:09:46 PM in x64 mode.
Windows Version: Windows 7 Home Premium

Checking for Windows services to stop:

* No malware services found to stop.

Checking for processes to terminate:

* No malware processes found to kill.

Checking Registry for malware related settings:

* Explorer Policy Removed: NoActiveDesktopChanges [HKLM]

Backup Registry file created at:
C:\Users\Andrew\Desktop\rkill\rkill-10-03-2012-10-09-51.reg

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

* Windows Defender Disabled

[HKLM\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware" = dword:00000001

Checking Windows Service Integrity:

* Windows Defender (WinDefend) is not Running.
Startup Type set to: Manual

Searching for Missing Digital Signatures:

* No issues found.

Checking HOSTS File:

* Cannot edit the HOSTS file.
* Permissions Fixed. Administrators can now edit the HOSTS file.

* HOSTS file entries found:

127.0.0.1 localhost
::1 localhost
74.55.76.230 www.google-analytics.com.
74.55.76.230 ad-emea.doubleclick.net.
74.55.76.230 www.statcounter.com.
178.250.45.15 www.google-analytics.com.
178.250.45.15 ad-emea.doubleclick.net.
178.250.45.15 www.statcounter.com.

Program finished at: 10/03/2012 10:10:05 PM
Execution time: 0 hours(s), 0 minute(s), and 18 seconds(s)

Ok, am I supposed to enter the commands exactly as is (ie with spaces?)




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users