Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Reg Clean pro


  • This topic is locked This topic is locked
14 replies to this topic

#1 Dignan

Dignan

  • Members
  • 55 posts
  • OFFLINE
  •  
  • Local time:11:30 PM

Posted 10 November 2012 - 09:11 PM

I am infected with malware that results in pop-ups for "Reg Clean Pro" and others. Computer running very slow. Please help. Thanks.

BC AdBot (Login to Remove)

 


#2 PcCmdr

PcCmdr

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Australia
  • Local time:12:30 PM

Posted 10 November 2012 - 10:06 PM

Try malwarebytes quickscan your system.

Also try IObit Advanced SystemCare Free 6.

Both great products for free.!!!

Edited by PcCmdr, 10 November 2012 - 10:06 PM.


#3 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,199 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:30 AM

Posted 10 November 2012 - 10:06 PM

Hello, I moved this to the Am I Infected forum.

Please Download

TDSSkiller


Launch it. Click on change parameters-Select TDLFS file system

Click on "Scan".
Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results.




Posted Image Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista or Seven, right-mouse click it and select Run as Administrator.
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.



I'd like us to scan your machine with ESET OnlineScan
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the Posted Image button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)[list=1]
  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the Posted Image
    icon on your desktop.
[*]Check "YES, I accept the Terms of Use."
[*]Click the Start button.
[*]Accept any security warnings from your browser.
[*]Under scan settings, check "Scan Archives" and "Remove found threats"
[*]Click Advanced settings and select the following:
  • Scan potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth technology
[*]ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
[*]When the scan completes, click List Threats
[*]Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
[*]Click the Back button.
[*]Click the Finish button.




Please download MiniToolBox, save it to your desktop and run it.Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.

Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run. Note: When using "Reset FF Proxy Settings" option Firefox should be closed.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#4 Dignan

Dignan
  • Topic Starter

  • Members
  • 55 posts
  • OFFLINE
  •  
  • Local time:11:30 PM

Posted 10 November 2012 - 10:17 PM

Thank you. Here is the TDSS log:

22:12:14.0818 2404 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
22:12:16.0858 2404 ============================================================
22:12:16.0858 2404 Current date / time: 2012/11/10 22:12:16.0858
22:12:16.0858 2404 SystemInfo:
22:12:16.0858 2404
22:12:16.0858 2404 OS Version: 6.1.7601 ServicePack: 1.0
22:12:16.0858 2404 Product type: Workstation
22:12:16.0858 2404 ComputerName: RAVEKIDS-PC
22:12:17.0008 2404 UserName: Rave Kids
22:12:17.0008 2404 Windows directory: C:\Windows
22:12:17.0008 2404 System windows directory: C:\Windows
22:12:17.0008 2404 Running under WOW64
22:12:17.0008 2404 Processor architecture: Intel x64
22:12:17.0008 2404 Number of processors: 2
22:12:17.0008 2404 Page size: 0x1000
22:12:17.0008 2404 Boot type: Normal boot
22:12:17.0008 2404 ============================================================
22:12:18.0858 2404 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
22:12:18.0898 2404 ============================================================
22:12:18.0898 2404 \Device\Harddisk0\DR0:
22:12:18.0898 2404 MBR partitions:
22:12:18.0898 2404 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x14000, BlocksNum 0x1DA0000
22:12:18.0898 2404 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1DB4000, BlocksNum 0x385D0000
22:12:18.0898 2404 ============================================================
22:12:18.0998 2404 C: <-> \Device\Harddisk0\DR0\Partition2
22:12:18.0998 2404 ============================================================
22:12:18.0998 2404 Initialize success
22:12:18.0998 2404 ============================================================
22:12:26.0008 3092 ============================================================
22:12:26.0008 3092 Scan started
22:12:26.0008 3092 Mode: Manual;
22:12:26.0008 3092 ============================================================
22:12:26.0278 3092 ================ Scan system memory ========================
22:12:26.0278 3092 System memory - ok
22:12:26.0278 3092 ================ Scan services =============================
22:12:26.0438 3092 [ 581D88B25C4D4121824FED2CA38E562F ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
22:12:26.0438 3092 !SASCORE - ok
22:12:26.0588 3092 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
22:12:26.0588 3092 1394ohci - ok
22:12:26.0618 3092 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
22:12:26.0618 3092 ACPI - ok
22:12:26.0628 3092 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
22:12:26.0628 3092 AcpiPmi - ok
22:12:26.0728 3092 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
22:12:26.0728 3092 AdobeARMservice - ok
22:12:26.0828 3092 [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
22:12:26.0828 3092 AdobeFlashPlayerUpdateSvc - ok
22:12:26.0858 3092 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
22:12:26.0868 3092 adp94xx - ok
22:12:26.0908 3092 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys
22:12:26.0908 3092 adpahci - ok
22:12:26.0928 3092 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
22:12:26.0938 3092 adpu320 - ok
22:12:26.0958 3092 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
22:12:26.0968 3092 AeLookupSvc - ok
22:12:26.0998 3092 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
22:12:27.0008 3092 AFD - ok
22:12:27.0028 3092 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
22:12:27.0038 3092 agp440 - ok
22:12:27.0058 3092 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
22:12:27.0058 3092 ALG - ok
22:12:27.0098 3092 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
22:12:27.0098 3092 aliide - ok
22:12:27.0108 3092 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
22:12:27.0108 3092 amdide - ok
22:12:27.0138 3092 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
22:12:27.0148 3092 AmdK8 - ok
22:12:27.0158 3092 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
22:12:27.0158 3092 AmdPPM - ok
22:12:27.0178 3092 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
22:12:27.0178 3092 amdsata - ok
22:12:27.0198 3092 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
22:12:27.0198 3092 amdsbs - ok
22:12:27.0218 3092 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
22:12:27.0218 3092 amdxata - ok
22:12:27.0238 3092 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
22:12:27.0248 3092 AppID - ok
22:12:27.0258 3092 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
22:12:27.0268 3092 AppIDSvc - ok
22:12:27.0308 3092 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
22:12:27.0308 3092 Appinfo - ok
22:12:27.0458 3092 [ F401929EE0CC92BFE7F15161CA535383 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
22:12:27.0458 3092 Apple Mobile Device - ok
22:12:27.0478 3092 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys
22:12:27.0478 3092 arc - ok
22:12:27.0488 3092 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys
22:12:27.0498 3092 arcsas - ok
22:12:27.0588 3092 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
22:12:27.0618 3092 aspnet_state - ok
22:12:27.0658 3092 [ 4FCAEF0C5BE7629AEB878998E0FE959B ] aswFsBlk C:\Windows\system32\drivers\aswFsBlk.sys
22:12:27.0658 3092 aswFsBlk - ok
22:12:27.0718 3092 [ 9FFC732E12FF53E05FE9E02C8C00CE87 ] aswFW C:\Windows\system32\drivers\aswFW.sys
22:12:27.0718 3092 aswFW - ok
22:12:27.0768 3092 [ 6B91E6D483AADB3FC4E13E2355200611 ] aswKbd C:\Windows\system32\drivers\aswKbd.sys
22:12:27.0768 3092 aswKbd - ok
22:12:27.0798 3092 [ B50CDD87772D6A11CB90924AAD399DF8 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
22:12:27.0798 3092 aswMonFlt - ok
22:12:27.0828 3092 [ 518B8D447A1975AB46DA093A2E743256 ] aswNdis C:\Windows\system32\DRIVERS\aswNdis.sys
22:12:27.0828 3092 aswNdis - ok
22:12:27.0868 3092 [ 5A832BBB1B563B6B3FDA46239B630037 ] aswNdis2 C:\Windows\system32\drivers\aswNdis2.sys
22:12:27.0868 3092 aswNdis2 - ok
22:12:27.0878 3092 [ 57768C7DB4681F2510F247F82EF31D4F ] aswRdr C:\Windows\System32\Drivers\aswrdr2.sys
22:12:27.0888 3092 aswRdr - ok
22:12:27.0918 3092 [ E71D826A1F3CE9C9DE3E77F2D02AFFBF ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
22:12:27.0928 3092 aswSnx - ok
22:12:27.0948 3092 [ 538A32E2C99BF073D4CA76C30BEDAA60 ] aswSP C:\Windows\system32\drivers\aswSP.sys
22:12:27.0958 3092 aswSP - ok
22:12:27.0968 3092 [ 6EDC79D73745FD44C41B55B2D13D0B70 ] aswTdi C:\Windows\system32\drivers\aswTdi.sys
22:12:27.0968 3092 aswTdi - ok
22:12:27.0998 3092 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
22:12:27.0998 3092 AsyncMac - ok
22:12:28.0018 3092 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
22:12:28.0018 3092 atapi - ok
22:12:28.0078 3092 [ 96ABF88241F90FF647E55C934C55C2F1 ] athr C:\Windows\system32\DRIVERS\athrx.sys
22:12:28.0128 3092 athr - ok
22:12:28.0168 3092 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
22:12:28.0178 3092 AudioEndpointBuilder - ok
22:12:28.0198 3092 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
22:12:28.0198 3092 AudioSrv - ok
22:12:28.0258 3092 [ 04AC21E821F259845BD7367CEE057290 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
22:12:28.0258 3092 avast! Antivirus - ok
22:12:28.0298 3092 [ DD4C61CB3CDBC8B0A7D2107C6944DC71 ] avast! Firewall C:\Program Files\AVAST Software\Avast\afwServ.exe
22:12:28.0298 3092 avast! Firewall - ok
22:12:28.0378 3092 [ 371428CF0F71934CB0F2344823ADFA32 ] avgtp C:\Windows\system32\drivers\avgtpx64.sys
22:12:28.0378 3092 avgtp - ok
22:12:28.0408 3092 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
22:12:28.0408 3092 AxInstSV - ok
22:12:28.0448 3092 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
22:12:28.0458 3092 b06bdrv - ok
22:12:28.0498 3092 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
22:12:28.0498 3092 b57nd60a - ok
22:12:28.0558 3092 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
22:12:28.0558 3092 BDESVC - ok
22:12:28.0568 3092 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
22:12:28.0568 3092 Beep - ok
22:12:28.0628 3092 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
22:12:28.0638 3092 BFE - ok
22:12:28.0678 3092 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
22:12:28.0768 3092 BITS - ok
22:12:28.0798 3092 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
22:12:28.0798 3092 blbdrive - ok
22:12:28.0878 3092 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
22:12:28.0888 3092 Bonjour Service - ok
22:12:28.0948 3092 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
22:12:28.0948 3092 bowser - ok
22:12:28.0978 3092 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
22:12:28.0978 3092 BrFiltLo - ok
22:12:28.0988 3092 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
22:12:28.0988 3092 BrFiltUp - ok
22:12:29.0018 3092 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
22:12:29.0018 3092 Browser - ok
22:12:29.0048 3092 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
22:12:29.0048 3092 Brserid - ok
22:12:29.0068 3092 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
22:12:29.0068 3092 BrSerWdm - ok
22:12:29.0078 3092 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
22:12:29.0078 3092 BrUsbMdm - ok
22:12:29.0088 3092 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
22:12:29.0088 3092 BrUsbSer - ok
22:12:29.0118 3092 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
22:12:29.0118 3092 BTHMODEM - ok
22:12:29.0148 3092 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
22:12:29.0158 3092 bthserv - ok
22:12:29.0168 3092 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
22:12:29.0168 3092 cdfs - ok
22:12:29.0208 3092 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
22:12:29.0208 3092 cdrom - ok
22:12:29.0258 3092 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
22:12:29.0258 3092 CertPropSvc - ok
22:12:29.0288 3092 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\drivers\circlass.sys
22:12:29.0298 3092 circlass - ok
22:12:29.0318 3092 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
22:12:29.0318 3092 CLFS - ok
22:12:29.0378 3092 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
22:12:29.0378 3092 clr_optimization_v2.0.50727_32 - ok
22:12:29.0498 3092 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
22:12:29.0518 3092 clr_optimization_v2.0.50727_64 - ok
22:12:29.0598 3092 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
22:12:29.0648 3092 clr_optimization_v4.0.30319_32 - ok
22:12:29.0688 3092 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
22:12:29.0698 3092 clr_optimization_v4.0.30319_64 - ok
22:12:29.0728 3092 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\drivers\CmBatt.sys
22:12:29.0728 3092 CmBatt - ok
22:12:29.0748 3092 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
22:12:29.0748 3092 cmdide - ok
22:12:29.0768 3092 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
22:12:29.0778 3092 CNG - ok
22:12:29.0828 3092 [ 5C855932E4DF00B1B6F5F6F57E82B6C5 ] CnxtHdAudService C:\Windows\system32\drivers\CHDRT64.sys
22:12:29.0858 3092 CnxtHdAudService - ok
22:12:29.0898 3092 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
22:12:29.0898 3092 Compbatt - ok
22:12:29.0908 3092 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
22:12:29.0918 3092 CompositeBus - ok
22:12:29.0928 3092 COMSysApp - ok
22:12:29.0948 3092 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
22:12:29.0948 3092 crcdisk - ok
22:12:29.0988 3092 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
22:12:29.0998 3092 CryptSvc - ok
22:12:30.0038 3092 [ BF62FF663AE55E4ED99DE76881C2C0F1 ] ctxusbm C:\Windows\system32\DRIVERS\ctxusbm.sys
22:12:30.0038 3092 ctxusbm - ok
22:12:30.0078 3092 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
22:12:30.0088 3092 DcomLaunch - ok
22:12:30.0198 3092 [ 34AE0DFA3EE3B5B9975042D87332D0B7 ] DefaultTabUpdate C:\Users\Rave Kids\AppData\Roaming\DefaultTab\DefaultTab\DTUpdate.exe
22:12:30.0208 3092 DefaultTabUpdate - ok
22:12:30.0228 3092 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
22:12:30.0228 3092 defragsvc - ok
22:12:30.0308 3092 [ 18B5C959CBE24D4D4C2381EFB87611DE ] DellDigitalDelivery C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe
22:12:30.0308 3092 DellDigitalDelivery - ok
22:12:30.0328 3092 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
22:12:30.0328 3092 DfsC - ok
22:12:30.0348 3092 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
22:12:30.0348 3092 Dhcp - ok
22:12:30.0368 3092 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
22:12:30.0378 3092 discache - ok
22:12:30.0398 3092 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\drivers\disk.sys
22:12:30.0398 3092 Disk - ok
22:12:30.0428 3092 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
22:12:30.0428 3092 Dnscache - ok
22:12:30.0448 3092 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
22:12:30.0448 3092 dot3svc - ok
22:12:30.0458 3092 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
22:12:30.0468 3092 DPS - ok
22:12:30.0498 3092 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
22:12:30.0498 3092 drmkaud - ok
22:12:30.0518 3092 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
22:12:30.0528 3092 DXGKrnl - ok
22:12:30.0548 3092 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
22:12:30.0558 3092 EapHost - ok
22:12:30.0618 3092 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\drivers\evbda.sys
22:12:30.0678 3092 ebdrv - ok
22:12:30.0698 3092 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
22:12:30.0708 3092 EFS - ok
22:12:30.0788 3092 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
22:12:30.0808 3092 ehRecvr - ok
22:12:30.0838 3092 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
22:12:30.0838 3092 ehSched - ok
22:12:30.0858 3092 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys
22:12:30.0868 3092 elxstor - ok
22:12:30.0878 3092 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
22:12:30.0878 3092 ErrDev - ok
22:12:30.0928 3092 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
22:12:30.0938 3092 EventSystem - ok
22:12:30.0958 3092 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
22:12:30.0968 3092 exfat - ok
22:12:30.0988 3092 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
22:12:30.0988 3092 fastfat - ok
22:12:31.0018 3092 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
22:12:31.0038 3092 Fax - ok
22:12:31.0048 3092 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\drivers\fdc.sys
22:12:31.0048 3092 fdc - ok
22:12:31.0058 3092 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
22:12:31.0058 3092 fdPHost - ok
22:12:31.0078 3092 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
22:12:31.0078 3092 FDResPub - ok
22:12:31.0088 3092 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
22:12:31.0088 3092 FileInfo - ok
22:12:31.0098 3092 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
22:12:31.0108 3092 Filetrace - ok
22:12:31.0108 3092 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
22:12:31.0118 3092 flpydisk - ok
22:12:31.0138 3092 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
22:12:31.0148 3092 FltMgr - ok
22:12:31.0178 3092 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
22:12:31.0198 3092 FontCache - ok
22:12:31.0238 3092 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
22:12:31.0238 3092 FontCache3.0.0.0 - ok
22:12:31.0258 3092 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
22:12:31.0258 3092 FsDepends - ok
22:12:31.0278 3092 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
22:12:31.0278 3092 Fs_Rec - ok
22:12:31.0318 3092 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
22:12:31.0318 3092 fvevol - ok
22:12:31.0338 3092 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
22:12:31.0338 3092 gagp30kx - ok
22:12:31.0368 3092 [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
22:12:31.0378 3092 GEARAspiWDM - ok
22:12:31.0408 3092 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
22:12:31.0428 3092 gpsvc - ok
22:12:31.0478 3092 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
22:12:31.0488 3092 gupdate - ok
22:12:31.0488 3092 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
22:12:31.0488 3092 gupdatem - ok
22:12:31.0538 3092 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
22:12:31.0548 3092 gusvc - ok
22:12:31.0569 3092 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
22:12:31.0569 3092 hcw85cir - ok
22:12:31.0589 3092 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
22:12:31.0599 3092 HDAudBus - ok
22:12:31.0619 3092 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
22:12:31.0629 3092 HidBatt - ok
22:12:31.0649 3092 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\drivers\hidbth.sys
22:12:31.0659 3092 HidBth - ok
22:12:31.0689 3092 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\drivers\hidir.sys
22:12:31.0939 3092 HidIr - ok
22:12:31.0959 3092 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
22:12:31.0969 3092 hidserv - ok
22:12:32.0029 3092 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
22:12:32.0029 3092 HidUsb - ok
22:12:32.0059 3092 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
22:12:32.0069 3092 hkmsvc - ok
22:12:32.0099 3092 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
22:12:32.0109 3092 HomeGroupListener - ok
22:12:32.0139 3092 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
22:12:32.0159 3092 HomeGroupProvider - ok
22:12:32.0189 3092 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
22:12:32.0199 3092 HpSAMD - ok
22:12:32.0239 3092 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
22:12:32.0269 3092 HTTP - ok
22:12:32.0279 3092 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
22:12:32.0279 3092 hwpolicy - ok
22:12:32.0309 3092 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
22:12:32.0309 3092 i8042prt - ok
22:12:32.0349 3092 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
22:12:32.0369 3092 iaStorV - ok
22:12:32.0459 3092 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
22:12:32.0489 3092 idsvc - ok
22:12:32.0930 3092 [ EFE5A0AF39A8E179624117C521F1E012 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
22:12:33.0140 3092 igfx - ok
22:12:33.0170 3092 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\drivers\iirsp.sys
22:12:33.0170 3092 iirsp - ok
22:12:33.0220 3092 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
22:12:33.0250 3092 IKEEXT - ok
22:12:33.0300 3092 [ FC727061C0F47C8059E88E05D5C8E381 ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
22:12:33.0310 3092 IntcDAud - ok
22:12:33.0340 3092 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
22:12:33.0340 3092 intelide - ok
22:12:33.0360 3092 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
22:12:33.0360 3092 intelppm - ok
22:12:33.0380 3092 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
22:12:33.0380 3092 IPBusEnum - ok
22:12:33.0400 3092 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
22:12:33.0400 3092 IpFilterDriver - ok
22:12:33.0430 3092 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
22:12:33.0440 3092 iphlpsvc - ok
22:12:33.0460 3092 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
22:12:33.0480 3092 IPMIDRV - ok
22:12:33.0490 3092 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
22:12:33.0500 3092 IPNAT - ok
22:12:33.0550 3092 [ A9AB99EE7D39725EAFEC82732D2B3271 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
22:12:33.0560 3092 iPod Service - ok
22:12:33.0600 3092 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
22:12:33.0610 3092 IRENUM - ok
22:12:33.0610 3092 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
22:12:33.0620 3092 isapnp - ok
22:12:33.0660 3092 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
22:12:33.0670 3092 iScsiPrt - ok
22:12:33.0710 3092 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
22:12:33.0710 3092 kbdclass - ok
22:12:33.0740 3092 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
22:12:33.0740 3092 kbdhid - ok
22:12:33.0750 3092 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
22:12:33.0750 3092 KeyIso - ok
22:12:33.0780 3092 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
22:12:33.0780 3092 KSecDD - ok
22:12:33.0790 3092 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
22:12:33.0800 3092 KSecPkg - ok
22:12:33.0810 3092 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
22:12:33.0810 3092 ksthunk - ok
22:12:33.0840 3092 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
22:12:33.0850 3092 KtmRm - ok
22:12:33.0890 3092 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
22:12:33.0900 3092 LanmanServer - ok
22:12:33.0920 3092 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
22:12:33.0930 3092 LanmanWorkstation - ok
22:12:33.0960 3092 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
22:12:33.0970 3092 lltdio - ok
22:12:34.0010 3092 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
22:12:34.0010 3092 lltdsvc - ok
22:12:34.0030 3092 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
22:12:34.0030 3092 lmhosts - ok
22:12:34.0070 3092 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
22:12:34.0070 3092 LSI_FC - ok
22:12:34.0100 3092 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
22:12:34.0100 3092 LSI_SAS - ok
22:12:34.0130 3092 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
22:12:34.0130 3092 LSI_SAS2 - ok
22:12:34.0150 3092 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
22:12:34.0160 3092 LSI_SCSI - ok
22:12:34.0180 3092 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
22:12:34.0190 3092 luafv - ok
22:12:34.0210 3092 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
22:12:34.0210 3092 Mcx2Svc - ok
22:12:34.0230 3092 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\drivers\megasas.sys
22:12:34.0230 3092 megasas - ok
22:12:34.0240 3092 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
22:12:34.0250 3092 MegaSR - ok
22:12:34.0280 3092 [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
22:12:34.0280 3092 MEIx64 - ok
22:12:34.0310 3092 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
22:12:34.0320 3092 MMCSS - ok
22:12:34.0330 3092 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
22:12:34.0330 3092 Modem - ok
22:12:34.0350 3092 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
22:12:34.0350 3092 monitor - ok
22:12:34.0380 3092 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
22:12:34.0380 3092 mouclass - ok
22:12:34.0400 3092 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
22:12:34.0410 3092 mouhid - ok
22:12:34.0420 3092 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
22:12:34.0430 3092 mountmgr - ok
22:12:34.0450 3092 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
22:12:34.0450 3092 mpio - ok
22:12:34.0470 3092 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
22:12:34.0470 3092 mpsdrv - ok
22:12:34.0500 3092 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
22:12:34.0510 3092 MpsSvc - ok
22:12:34.0530 3092 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
22:12:34.0530 3092 MRxDAV - ok
22:12:34.0550 3092 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
22:12:34.0550 3092 mrxsmb - ok
22:12:34.0570 3092 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
22:12:34.0580 3092 mrxsmb10 - ok
22:12:34.0591 3092 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
22:12:34.0601 3092 mrxsmb20 - ok
22:12:34.0621 3092 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
22:12:34.0621 3092 msahci - ok
22:12:34.0651 3092 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
22:12:34.0651 3092 msdsm - ok
22:12:34.0681 3092 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
22:12:34.0681 3092 MSDTC - ok
22:12:34.0711 3092 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
22:12:34.0721 3092 Msfs - ok
22:12:34.0731 3092 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
22:12:34.0731 3092 mshidkmdf - ok
22:12:34.0761 3092 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
22:12:34.0771 3092 msisadrv - ok
22:12:34.0801 3092 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
22:12:34.0801 3092 MSiSCSI - ok
22:12:34.0811 3092 msiserver - ok
22:12:34.0841 3092 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
22:12:34.0841 3092 MSKSSRV - ok
22:12:34.0861 3092 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
22:12:34.0861 3092 MSPCLOCK - ok
22:12:34.0891 3092 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
22:12:34.0891 3092 MSPQM - ok
22:12:34.0911 3092 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
22:12:34.0921 3092 MsRPC - ok
22:12:34.0941 3092 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
22:12:34.0941 3092 mssmbios - ok
22:12:34.0971 3092 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
22:12:34.0971 3092 MSTEE - ok
22:12:34.0981 3092 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
22:12:34.0991 3092 MTConfig - ok
22:12:35.0011 3092 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
22:12:35.0021 3092 Mup - ok
22:12:35.0051 3092 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
22:12:35.0061 3092 napagent - ok
22:12:35.0091 3092 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
22:12:35.0101 3092 NativeWifiP - ok
22:12:35.0181 3092 [ 9D1CCE440552500DED3A62F9D779CDB4 ] NAUpdate C:\Program Files (x86)\Nero\Update\NASvc.exe
22:12:35.0181 3092 NAUpdate - ok
22:12:35.0351 3092 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
22:12:35.0381 3092 NDIS - ok
22:12:35.0431 3092 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
22:12:35.0451 3092 NdisCap - ok
22:12:35.0491 3092 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
22:12:35.0491 3092 NdisTapi - ok
22:12:35.0511 3092 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
22:12:35.0521 3092 Ndisuio - ok
22:12:35.0551 3092 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
22:12:35.0551 3092 NdisWan - ok
22:12:35.0571 3092 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
22:12:35.0571 3092 NDProxy - ok
22:12:35.0601 3092 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
22:12:35.0601 3092 NetBIOS - ok
22:12:35.0621 3092 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
22:12:35.0631 3092 NetBT - ok
22:12:35.0641 3092 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
22:12:35.0641 3092 Netlogon - ok
22:12:35.0691 3092 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
22:12:35.0701 3092 Netman - ok
22:12:35.0721 3092 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:12:35.0741 3092 NetMsmqActivator - ok
22:12:35.0751 3092 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:12:35.0751 3092 NetPipeActivator - ok
22:12:35.0771 3092 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
22:12:35.0781 3092 netprofm - ok
22:12:35.0781 3092 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:12:35.0781 3092 NetTcpActivator - ok
22:12:35.0791 3092 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:12:35.0791 3092 NetTcpPortSharing - ok
22:12:35.0811 3092 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
22:12:35.0811 3092 nfrd960 - ok
22:12:35.0841 3092 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
22:12:35.0851 3092 NlaSvc - ok
22:12:35.0961 3092 [ B9B72FAAAA41D59B73B88FE3DD737ED1 ] NOBU C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe
22:12:36.0011 3092 NOBU - ok
22:12:36.0041 3092 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
22:12:36.0051 3092 Npfs - ok
22:12:36.0061 3092 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
22:12:36.0061 3092 nsi - ok
22:12:36.0081 3092 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
22:12:36.0081 3092 nsiproxy - ok
22:12:36.0151 3092 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
22:12:36.0181 3092 Ntfs - ok
22:12:36.0191 3092 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
22:12:36.0191 3092 Null - ok
22:12:36.0221 3092 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
22:12:36.0221 3092 nvraid - ok
22:12:36.0241 3092 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
22:12:36.0241 3092 nvstor - ok
22:12:36.0261 3092 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
22:12:36.0261 3092 nv_agp - ok
22:12:36.0281 3092 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
22:12:36.0281 3092 ohci1394 - ok
22:12:36.0341 3092 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
22:12:36.0341 3092 ose - ok
22:12:36.0461 3092 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
22:12:36.0551 3092 osppsvc - ok
22:12:36.0591 3092 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
22:12:36.0601 3092 p2pimsvc - ok
22:12:36.0652 3092 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
22:12:36.0672 3092 p2psvc - ok
22:12:36.0702 3092 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\drivers\parport.sys
22:12:36.0702 3092 Parport - ok
22:12:36.0722 3092 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
22:12:36.0722 3092 partmgr - ok
22:12:36.0742 3092 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
22:12:36.0752 3092 PcaSvc - ok
22:12:36.0782 3092 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
22:12:36.0782 3092 pci - ok
22:12:36.0812 3092 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
22:12:36.0812 3092 pciide - ok
22:12:36.0832 3092 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
22:12:36.0832 3092 pcmcia - ok
22:12:36.0862 3092 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
22:12:36.0862 3092 pcw - ok
22:12:36.0892 3092 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
22:12:36.0902 3092 PEAUTH - ok
22:12:36.0952 3092 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
22:12:36.0952 3092 PerfHost - ok
22:12:37.0012 3092 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
22:12:37.0042 3092 pla - ok
22:12:37.0082 3092 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
22:12:37.0092 3092 PlugPlay - ok
22:12:37.0102 3092 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
22:12:37.0102 3092 PNRPAutoReg - ok
22:12:37.0132 3092 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
22:12:37.0142 3092 PNRPsvc - ok
22:12:37.0162 3092 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
22:12:37.0172 3092 PolicyAgent - ok
22:12:37.0202 3092 [ A2CCA4FB273E6050F17A0A416CFF2FCD ] Power C:\Windows\system32\umpo.dll
22:12:37.0212 3092 Power - ok
22:12:37.0252 3092 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
22:12:37.0262 3092 PptpMiniport - ok
22:12:37.0282 3092 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\drivers\processr.sys
22:12:37.0282 3092 Processor - ok
22:12:37.0322 3092 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
22:12:37.0332 3092 ProfSvc - ok
22:12:37.0342 3092 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
22:12:37.0342 3092 ProtectedStorage - ok
22:12:37.0372 3092 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
22:12:37.0372 3092 Psched - ok
22:12:37.0422 3092 [ 87B04878A6D59D6C79251DC960C674C1 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
22:12:37.0422 3092 PxHlpa64 - ok
22:12:37.0482 3092 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
22:12:37.0512 3092 ql2300 - ok
22:12:37.0522 3092 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
22:12:37.0532 3092 ql40xx - ok
22:12:37.0552 3092 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
22:12:37.0562 3092 QWAVE - ok
22:12:37.0572 3092 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
22:12:37.0582 3092 QWAVEdrv - ok
22:12:37.0592 3092 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
22:12:37.0592 3092 RasAcd - ok
22:12:37.0622 3092 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
22:12:37.0622 3092 RasAgileVpn - ok
22:12:37.0642 3092 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
22:12:37.0652 3092 RasAuto - ok
22:12:37.0672 3092 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
22:12:37.0682 3092 Rasl2tp - ok
22:12:37.0692 3092 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
22:12:37.0702 3092 RasMan - ok
22:12:37.0722 3092 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
22:12:37.0722 3092 RasPppoe - ok
22:12:37.0752 3092 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
22:12:37.0752 3092 RasSstp - ok
22:12:37.0772 3092 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
22:12:37.0782 3092 rdbss - ok
22:12:37.0792 3092 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\drivers\rdpbus.sys
22:12:37.0792 3092 rdpbus - ok
22:12:37.0812 3092 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
22:12:37.0812 3092 RDPCDD - ok
22:12:37.0842 3092 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
22:12:37.0842 3092 RDPENCDD - ok
22:12:37.0862 3092 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
22:12:37.0862 3092 RDPREFMP - ok
22:12:37.0892 3092 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
22:12:37.0902 3092 RDPWD - ok
22:12:37.0922 3092 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
22:12:37.0922 3092 rdyboost - ok
22:12:37.0952 3092 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
22:12:37.0952 3092 RemoteAccess - ok
22:12:37.0982 3092 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
22:12:37.0992 3092 RemoteRegistry - ok
22:12:38.0102 3092 [ 3C957189B31C34D3AD21967B12B6AED7 ] RoxMediaDB12OEM C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe
22:12:38.0132 3092 RoxMediaDB12OEM - ok
22:12:38.0172 3092 [ 2B73088CC2CA757A172B425C9398E5BC ] RoxWatch12 C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe
22:12:38.0172 3092 RoxWatch12 - ok
22:12:38.0192 3092 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
22:12:38.0202 3092 RpcEptMapper - ok
22:12:38.0222 3092 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
22:12:38.0232 3092 RpcLocator - ok
22:12:38.0252 3092 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
22:12:38.0262 3092 RpcSs - ok
22:12:38.0292 3092 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
22:12:38.0302 3092 rspndr - ok
22:12:38.0352 3092 [ EE082E06A82FF630351D1E0EBBD3D8D0 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
22:12:38.0362 3092 RTL8167 - ok
22:12:38.0372 3092 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
22:12:38.0372 3092 SamSs - ok
22:12:38.0482 3092 [ 3289766038DB2CB14D07DC84392138D5 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
22:12:38.0482 3092 SASDIFSV - ok
22:12:38.0512 3092 [ 58A38E75F3316A83C23DF6173D41F2B5 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
22:12:38.0512 3092 SASKUTIL - ok
22:12:38.0532 3092 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
22:12:38.0542 3092 sbp2port - ok
22:12:38.0562 3092 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
22:12:38.0572 3092 SCardSvr - ok
22:12:38.0592 3092 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
22:12:38.0592 3092 scfilter - ok
22:12:38.0612 3092 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
22:12:38.0643 3092 Schedule - ok
22:12:38.0673 3092 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
22:12:38.0673 3092 SCPolicySvc - ok
22:12:38.0693 3092 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
22:12:38.0693 3092 SDRSVC - ok
22:12:38.0723 3092 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
22:12:38.0723 3092 secdrv - ok
22:12:38.0733 3092 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
22:12:38.0743 3092 seclogon - ok
22:12:38.0753 3092 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
22:12:38.0763 3092 SENS - ok
22:12:38.0783 3092 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
22:12:38.0783 3092 SensrSvc - ok
22:12:38.0803 3092 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\drivers\serenum.sys
22:12:38.0813 3092 Serenum - ok
22:12:38.0823 3092 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\drivers\serial.sys
22:12:38.0823 3092 Serial - ok
22:12:38.0843 3092 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\drivers\sermouse.sys
22:12:38.0843 3092 sermouse - ok
22:12:38.0873 3092 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
22:12:38.0883 3092 SessionEnv - ok
22:12:38.0893 3092 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
22:12:38.0893 3092 sffdisk - ok
22:12:38.0903 3092 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
22:12:38.0903 3092 sffp_mmc - ok
22:12:38.0933 3092 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
22:12:38.0953 3092 sffp_sd - ok
22:12:38.0953 3092 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
22:12:38.0963 3092 sfloppy - ok
22:12:39.0033 3092 [ 4215C271D6E6898C3F4DABAB4F387DC9 ] SftService C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
22:12:39.0063 3092 SftService - ok
22:12:39.0093 3092 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
22:12:39.0103 3092 SharedAccess - ok
22:12:39.0123 3092 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
22:12:39.0133 3092 ShellHWDetection - ok
22:12:39.0143 3092 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
22:12:39.0143 3092 SiSRaid2 - ok
22:12:39.0153 3092 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
22:12:39.0153 3092 SiSRaid4 - ok
22:12:39.0253 3092 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
22:12:39.0253 3092 SkypeUpdate - ok
22:12:39.0283 3092 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
22:12:39.0283 3092 Smb - ok
22:12:39.0323 3092 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
22:12:39.0333 3092 SNMPTRAP - ok
22:12:39.0343 3092 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
22:12:39.0343 3092 spldr - ok
22:12:39.0393 3092 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
22:12:39.0403 3092 Spooler - ok
22:12:39.0493 3092 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
22:12:39.0553 3092 sppsvc - ok
22:12:39.0573 3092 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
22:12:39.0583 3092 sppuinotify - ok
22:12:39.0613 3092 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
22:12:39.0623 3092 srv - ok
22:12:39.0643 3092 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
22:12:39.0643 3092 srv2 - ok
22:12:39.0663 3092 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
22:12:39.0663 3092 srvnet - ok
22:12:39.0683 3092 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
22:12:39.0693 3092 SSDPSRV - ok
22:12:39.0703 3092 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
22:12:39.0713 3092 SstpSvc - ok
22:12:39.0733 3092 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\drivers\stexstor.sys
22:12:39.0733 3092 stexstor - ok
22:12:39.0763 3092 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
22:12:39.0773 3092 stisvc - ok
22:12:39.0803 3092 [ 7731F46EC0D687A931CBA063E8F90EF0 ] stllssvr C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
22:12:39.0813 3092 stllssvr - ok
22:12:39.0823 3092 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
22:12:39.0823 3092 swenum - ok
22:12:39.0853 3092 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
22:12:39.0863 3092 swprv - ok
22:12:39.0923 3092 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
22:12:39.0963 3092 SysMain - ok
22:12:39.0983 3092 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
22:12:39.0993 3092 TabletInputService - ok
22:12:40.0013 3092 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
22:12:40.0023 3092 TapiSrv - ok
22:12:40.0053 3092 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
22:12:40.0093 3092 TBS - ok
22:12:40.0143 3092 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] Tcpip C:\Windows\system32\drivers\tcpip.sys
22:12:40.0183 3092 Tcpip - ok
22:12:40.0233 3092 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
22:12:40.0243 3092 TCPIP6 - ok
22:12:40.0273 3092 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
22:12:40.0273 3092 tcpipreg - ok
22:12:40.0293 3092 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
22:12:40.0293 3092 TDPIPE - ok
22:12:40.0313 3092 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
22:12:40.0313 3092 TDTCP - ok
22:12:40.0343 3092 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
22:12:40.0343 3092 tdx - ok
22:12:40.0363 3092 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
22:12:40.0363 3092 TermDD - ok
22:12:40.0393 3092 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
22:12:40.0403 3092 TermService - ok
22:12:40.0443 3092 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
22:12:40.0443 3092 Themes - ok
22:12:40.0463 3092 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
22:12:40.0463 3092 THREADORDER - ok
22:12:40.0483 3092 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
22:12:40.0483 3092 TrkWks - ok
22:12:40.0543 3092 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
22:12:40.0553 3092 TrustedInstaller - ok
22:12:40.0573 3092 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
22:12:40.0573 3092 tssecsrv - ok
22:12:40.0603 3092 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
22:12:40.0633 3092 TsUsbFlt - ok
22:12:40.0643 3092 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
22:12:40.0643 3092 TsUsbGD - ok
22:12:40.0683 3092 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
22:12:40.0693 3092 tunnel - ok
22:12:40.0703 3092 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
22:12:40.0713 3092 uagp35 - ok
22:12:40.0733 3092 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
22:12:40.0733 3092 udfs - ok
22:12:40.0763 3092 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
22:12:40.0763 3092 UI0Detect - ok
22:12:40.0773 3092 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
22:12:40.0773 3092 uliagpkx - ok
22:12:40.0803 3092 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
22:12:40.0803 3092 umbus - ok
22:12:40.0813 3092 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\drivers\umpass.sys
22:12:40.0813 3092 UmPass - ok
22:12:40.0853 3092 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
22:12:40.0863 3092 upnphost - ok
22:12:40.0893 3092 [ FB251567F41BC61988B26731DEC19E4B ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
22:12:40.0903 3092 USBAAPL64 - ok
22:12:40.0913 3092 [ 19AD7990C0B67E48DAC5B26F99628223 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
22:12:40.0923 3092 usbccgp - ok
22:12:40.0933 3092 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
22:12:40.0943 3092 usbcir - ok
22:12:40.0953 3092 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
22:12:40.0953 3092 usbehci - ok
22:12:40.0983 3092 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
22:12:40.0983 3092 usbhub - ok
22:12:41.0013 3092 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
22:12:41.0013 3092 usbohci - ok
22:12:41.0033 3092 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
22:12:41.0043 3092 usbprint - ok
22:12:41.0073 3092 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
22:12:41.0073 3092 usbscan - ok
22:12:41.0093 3092 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
22:12:41.0093 3092 USBSTOR - ok
22:12:41.0123 3092 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
22:12:41.0123 3092 usbuhci - ok
22:12:41.0153 3092 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
22:12:41.0163 3092 UxSms - ok
22:12:41.0183 3092 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
22:12:41.0183 3092 VaultSvc - ok
22:12:41.0203 3092 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
22:12:41.0203 3092 vdrvroot - ok
22:12:41.0233 3092 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
22:12:41.0253 3092 vds - ok
22:12:41.0283 3092 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
22:12:41.0283 3092 vga - ok
22:12:41.0303 3092 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
22:12:41.0313 3092 VgaSave - ok
22:12:41.0333 3092 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
22:12:41.0333 3092 vhdmp - ok
22:12:41.0343 3092 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
22:12:41.0343 3092 viaide - ok
22:12:41.0363 3092 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
22:12:41.0363 3092 volmgr - ok
22:12:41.0383 3092 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
22:12:41.0393 3092 volmgrx - ok
22:12:41.0403 3092 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
22:12:41.0413 3092 volsnap - ok
22:12:41.0433 3092 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
22:12:41.0433 3092 vsmraid - ok
22:12:41.0483 3092 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
22:12:41.0523 3092 VSS - ok
22:12:41.0613 3092 [ 7D110D645030C05A06C3CD08D1E47D0A ] vToolbarUpdater13.2.0 C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe
22:12:41.0623 3092 vToolbarUpdater13.2.0 - ok
22:12:41.0634 3092 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
22:12:41.0634 3092 vwifibus - ok
22:12:41.0664 3092 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
22:12:41.0664 3092 vwififlt - ok
22:12:41.0684 3092 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
22:12:41.0694 3092 W32Time - ok
22:12:41.0714 3092 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\drivers\wacompen.sys
22:12:41.0724 3092 WacomPen - ok
22:12:41.0734 3092 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
22:12:41.0744 3092 WANARP - ok
22:12:41.0754 3092 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
22:12:41.0754 3092 Wanarpv6 - ok
22:12:41.0814 3092 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
22:12:41.0844 3092 WatAdminSvc - ok
22:12:41.0884 3092 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
22:12:41.0924 3092 wbengine - ok
22:12:41.0934 3092 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
22:12:41.0944 3092 WbioSrvc - ok
22:12:41.0964 3092 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
22:12:41.0974 3092 wcncsvc - ok
22:12:41.0984 3092 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
22:12:41.0994 3092 WcsPlugInService - ok
22:12:42.0014 3092 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\drivers\wd.sys
22:12:42.0014 3092 Wd - ok
22:12:42.0064 3092 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
22:12:42.0074 3092 Wdf01000 - ok
22:12:42.0094 3092 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
22:12:42.0104 3092 WdiServiceHost - ok
22:12:42.0114 3092 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
22:12:42.0114 3092 WdiSystemHost - ok
22:12:42.0134 3092 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
22:12:42.0144 3092 WebClient - ok
22:12:42.0154 3092 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
22:12:42.0164 3092 Wecsvc - ok
22:12:42.0174 3092 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
22:12:42.0184 3092 wercplsupport - ok
22:12:42.0204 3092 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
22:12:42.0214 3092 WerSvc - ok
22:12:42.0244 3092 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
22:12:42.0254 3092 WfpLwf - ok
22:12:42.0324 3092 [ B14EF15BD757FA488F9C970EEE9C0D35 ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys
22:12:42.0324 3092 WimFltr - ok
22:12:42.0344 3092 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
22:12:42.0354 3092 WIMMount - ok
22:12:42.0374 3092 WinDefend - ok
22:12:42.0394 3092 WinHttpAutoProxySvc - ok
22:12:42.0434 3092 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
22:12:42.0444 3092 Winmgmt - ok
22:12:42.0504 3092 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
22:12:42.0544 3092 WinRM - ok
22:12:42.0584 3092 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
22:12:42.0594 3092 WinUsb - ok
22:12:42.0614 3092 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
22:12:42.0634 3092 Wlansvc - ok
22:12:42.0664 3092 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
22:12:42.0664 3092 wlcrasvc - ok
22:12:42.0744 3092 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
22:12:42.0784 3092 wlidsvc - ok
22:12:42.0804 3092 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
22:12:42.0814 3092 WmiAcpi - ok
22:12:42.0854 3092 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
22:12:42.0854 3092 wmiApSrv - ok
22:12:42.0874 3092 WMPNetworkSvc - ok
22:12:42.0904 3092 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
22:12:42.0914 3092 WPCSvc - ok
22:12:42.0934 3092 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
22:12:42.0944 3092 WPDBusEnum - ok
22:12:42.0954 3092 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
22:12:42.0954 3092 ws2ifsl - ok
22:12:42.0974 3092 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
22:12:42.0984 3092 wscsvc - ok
22:12:42.0984 3092 WSearch - ok
22:12:43.0054 3092 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
22:12:43.0104 3092 wuauserv - ok
22:12:43.0114 3092 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
22:12:43.0114 3092 WudfPf - ok
22:12:43.0144 3092 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
22:12:43.0154 3092 WUDFRd - ok
22:12:43.0164 3092 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
22:12:43.0174 3092 wudfsvc - ok
22:12:43.0194 3092 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
22:12:43.0224 3092 WwanSvc - ok
22:12:43.0284 3092 [ DD0042F0C3B606A6A8B92D49AFB18AD6 ] YahooAUService C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
22:12:43.0294 3092 YahooAUService - ok
22:12:43.0314 3092 ================ Scan global ===============================
22:12:43.0334 3092 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
22:12:43.0364 3092 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
22:12:43.0384 3092 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
22:12:43.0414 3092 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
22:12:43.0434 3092 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
22:12:43.0444 3092 [Global] - ok
22:12:43.0444 3092 ================ Scan MBR ==================================
22:12:43.0454 3092 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
22:12:43.0634 3092 \Device\Harddisk0\DR0 - ok
22:12:43.0634 3092 ================ Scan VBR ==================================
22:12:43.0634 3092 [ 2D7B3DA9E4DB1AE2FB75F152034079DF ] \Device\Harddisk0\DR0\Partition1
22:12:43.0644 3092 \Device\Harddisk0\DR0\Partition1 - ok
22:12:43.0675 3092 [ 257A05B941EC6942ECB98721B6B21C73 ] \Device\Harddisk0\DR0\Partition2
22:12:43.0675 3092 \Device\Harddisk0\DR0\Partition2 - ok
22:12:43.0675 3092 ============================================================
22:12:43.0675 3092 Scan finished
22:12:43.0675 3092 ============================================================
22:12:43.0695 3788 Detected object count: 0
22:12:43.0695 3788 Actual detected object count: 0
22:13:26.0192 2636 ============================================================
22:13:26.0192 2636 Scan started
22:13:26.0192 2636 Mode: Manual; TDLFS;
22:13:26.0192 2636 ============================================================
22:13:26.0333 2636 ================ Scan system memory ========================
22:13:26.0333 2636 System memory - ok
22:13:26.0333 2636 ================ Scan services =============================
22:13:26.0395 2636 [ 581D88B25C4D4121824FED2CA38E562F ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
22:13:26.0395 2636 !SASCORE - ok
22:13:26.0535 2636 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
22:13:26.0535 2636 1394ohci - ok
22:13:26.0567 2636 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
22:13:26.0567 2636 ACPI - ok
22:13:26.0582 2636 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
22:13:26.0582 2636 AcpiPmi - ok
22:13:26.0665 2636 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
22:13:26.0665 2636 AdobeARMservice - ok
22:13:26.0735 2636 [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
22:13:26.0735 2636 AdobeFlashPlayerUpdateSvc - ok
22:13:26.0765 2636 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
22:13:26.0765 2636 adp94xx - ok
22:13:26.0785 2636 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys
22:13:26.0795 2636 adpahci - ok
22:13:26.0805 2636 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
22:13:26.0805 2636 adpu320 - ok
22:13:26.0835 2636 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
22:13:26.0845 2636 AeLookupSvc - ok
22:13:26.0875 2636 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
22:13:26.0875 2636 AFD - ok
22:13:26.0895 2636 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
22:13:26.0895 2636 agp440 - ok
22:13:26.0905 2636 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
22:13:26.0915 2636 ALG - ok
22:13:26.0925 2636 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
22:13:26.0925 2636 aliide - ok
22:13:26.0935 2636 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
22:13:26.0935 2636 amdide - ok
22:13:26.0945 2636 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
22:13:26.0945 2636 AmdK8 - ok
22:13:26.0955 2636 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
22:13:26.0955 2636 AmdPPM - ok
22:13:26.0975 2636 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
22:13:26.0975 2636 amdsata - ok
22:13:26.0995 2636 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
22:13:26.0995 2636 amdsbs - ok
22:13:27.0015 2636 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
22:13:27.0015 2636 amdxata - ok
22:13:27.0025 2636 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
22:13:27.0025 2636 AppID - ok
22:13:27.0055 2636 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
22:13:27.0055 2636 AppIDSvc - ok
22:13:27.0075 2636 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
22:13:27.0075 2636 Appinfo - ok
22:13:27.0145 2636 [ F401929EE0CC92BFE7F15161CA535383 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
22:13:27.0145 2636 Apple Mobile Device - ok
22:13:27.0155 2636 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys
22:13:27.0155 2636 arc - ok
22:13:27.0165 2636 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys
22:13:27.0175 2636 arcsas - ok
22:13:27.0235 2636 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
22:13:27.0235 2636 aspnet_state - ok
22:13:27.0265 2636 [ 4FCAEF0C5BE7629AEB878998E0FE959B ] aswFsBlk C:\Windows\system32\drivers\aswFsBlk.sys
22:13:27.0265 2636 aswFsBlk - ok
22:13:27.0275 2636 [ 9FFC732E12FF53E05FE9E02C8C00CE87 ] aswFW C:\Windows\system32\drivers\aswFW.sys
22:13:27.0275 2636 aswFW - ok
22:13:27.0295 2636 [ 6B91E6D483AADB3FC4E13E2355200611 ] aswKbd C:\Windows\system32\drivers\aswKbd.sys
22:13:27.0295 2636 aswKbd - ok
22:13:27.0315 2636 [ B50CDD87772D6A11CB90924AAD399DF8 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
22:13:27.0315 2636 aswMonFlt - ok
22:13:27.0325 2636 [ 518B8D447A1975AB46DA093A2E743256 ] aswNdis C:\Windows\system32\DRIVERS\aswNdis.sys
22:13:27.0325 2636 aswNdis - ok
22:13:27.0385 2636 [ 5A832BBB1B563B6B3FDA46239B630037 ] aswNdis2 C:\Windows\system32\drivers\aswNdis2.sys
22:13:27.0385 2636 aswNdis2 - ok
22:13:27.0415 2636 [ 57768C7DB4681F2510F247F82EF31D4F ] aswRdr C:\Windows\System32\Drivers\aswrdr2.sys
22:13:27.0415 2636 aswRdr - ok
22:13:27.0445 2636 [ E71D826A1F3CE9C9DE3E77F2D02AFFBF ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
22:13:27.0445 2636 aswSnx - ok
22:13:27.0475 2636 [ 538A32E2C99BF073D4CA76C30BEDAA60 ] aswSP C:\Windows\system32\drivers\aswSP.sys
22:13:27.0475 2636 aswSP - ok
22:13:27.0495 2636 [ 6EDC79D73745FD44C41B55B2D13D0B70 ] aswTdi C:\Windows\system32\drivers\aswTdi.sys
22:13:27.0495 2636 aswTdi - ok
22:13:27.0515 2636 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
22:13:27.0515 2636 AsyncMac - ok
22:13:27.0525 2636 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
22:13:27.0525 2636 atapi - ok
22:13:27.0605 2636 [ 96ABF88241F90FF647E55C934C55C2F1 ] athr C:\Windows\system32\DRIVERS\athrx.sys
22:13:27.0615 2636 athr - ok
22:13:27.0655 2636 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
22:13:27.0665 2636 AudioEndpointBuilder - ok
22:13:27.0675 2636 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
22:13:27.0685 2636 AudioSrv - ok
22:13:27.0735 2636 [ 04AC21E821F259845BD7367CEE057290 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
22:13:27.0735 2636 avast! Antivirus - ok
22:13:27.0785 2636 [ DD4C61CB3CDBC8B0A7D2107C6944DC71 ] avast! Firewall C:\Program Files\AVAST Software\Avast\afwServ.exe
22:13:27.0785 2636 avast! Firewall - ok
22:13:27.0815 2636 [ 371428CF0F71934CB0F2344823ADFA32 ] avgtp C:\Windows\system32\drivers\avgtpx64.sys
22:13:27.0815 2636 avgtp - ok
22:13:27.0835 2636 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
22:13:27.0835 2636 AxInstSV - ok
22:13:27.0865 2636 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
22:13:27.0875 2636 b06bdrv - ok
22:13:27.0905 2636 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
22:13:27.0905 2636 b57nd60a - ok
22:13:27.0925 2636 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
22:13:27.0925 2636 BDESVC - ok
22:13:27.0935 2636 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
22:13:27.0935 2636 Beep - ok
22:13:27.0965 2636 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
22:13:27.0965 2636 BFE - ok
22:13:28.0005 2636 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
22:13:28.0015 2636 BITS - ok
22:13:28.0045 2636 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
22:13:28.0045 2636 blbdrive - ok
22:13:28.0105 2636 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
22:13:28.0105 2636 Bonjour Service - ok
22:13:28.0135 2636 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
22:13:28.0135 2636 bowser - ok
22:13:28.0155 2636 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
22:13:28.0155 2636 BrFiltLo - ok
22:13:28.0155 2636 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
22:13:28.0155 2636 BrFiltUp - ok
22:13:28.0185 2636 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
22:13:28.0185 2636 Browser - ok
22:13:28.0195 2636 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
22:13:28.0205 2636 Brserid - ok
22:13:28.0225 2636 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
22:13:28.0225 2636 BrSerWdm - ok
22:13:28.0235 2636 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
22:13:28.0235 2636 BrUsbMdm - ok
22:13:28.0245 2636 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
22:13:28.0245 2636 BrUsbSer - ok
22:13:28.0255 2636 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
22:13:28.0255 2636 BTHMODEM - ok
22:13:28.0285 2636 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
22:13:28.0295 2636 bthserv - ok
22:13:28.0315 2636 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
22:13:28.0315 2636 cdfs - ok
22:13:28.0335 2636 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
22:13:28.0345 2636 cdrom - ok
22:13:28.0365 2636 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
22:13:28.0365 2636 CertPropSvc - ok
22:13:28.0385 2636 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\drivers\circlass.sys
22:13:28.0385 2636 circlass - ok
22:13:28.0415 2636 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
22:13:28.0415 2636 CLFS - ok
22:13:28.0455 2636 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
22:13:28.0465 2636 clr_optimization_v2.0.50727_32 - ok
22:13:28.0515 2636 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
22:13:28.0515 2636 clr_optimization_v2.0.50727_64 - ok
22:13:28.0555 2636 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
22:13:28.0555 2636 clr_optimization_v4.0.30319_32 - ok
22:13:28.0565 2636 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
22:13:28.0565 2636 clr_optimization_v4.0.30319_64 - ok
22:13:28.0595 2636 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\drivers\CmBatt.sys
22:13:28.0595 2636 CmBatt - ok
22:13:28.0615 2636 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
22:13:28.0615 2636 cmdide - ok
22:13:28.0655 2636 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
22:13:28.0655 2636 CNG - ok
22:13:28.0705 2636 [ 5C855932E4DF00B1B6F5F6F57E82B6C5 ] CnxtHdAudService C:\Windows\system32\drivers\CHDRT64.sys
22:13:28.0725 2636 CnxtHdAudService - ok
22:13:28.0755 2636 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
22:13:28.0755 2636 Compbatt - ok
22:13:28.0765 2636 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
22:13:28.0765 2636 CompositeBus - ok
22:13:28.0785 2636 COMSysApp - ok
22:13:28.0805 2636 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
22:13:28.0805 2636 crcdisk - ok
22:13:28.0855 2636 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
22:13:28.0855 2636 CryptSvc - ok
22:13:28.0885 2636 [ BF62FF663AE55E4ED99DE76881C2C0F1 ] ctxusbm C:\Windows\system32\DRIVERS\ctxusbm.sys
22:13:28.0885 2636 ctxusbm - ok
22:13:28.0915 2636 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
22:13:28.0925 2636 DcomLaunch - ok
22:13:29.0015 2636 [ 34AE0DFA3EE3B5B9975042D87332D0B7 ] DefaultTabUpdate C:\Users\Rave Kids\AppData\Roaming\DefaultTab\DefaultTab\DTUpdate.exe
22:13:29.0015 2636 DefaultTabUpdate - ok
22:13:29.0035 2636 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
22:13:29.0045 2636 defragsvc - ok
22:13:29.0065 2636 [ 18B5C959CBE24D4D4C2381EFB87611DE ] DellDigitalDelivery C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe
22:13:29.0065 2636 DellDigitalDelivery - ok
22:13:29.0085 2636 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
22:13:29.0085 2636 DfsC - ok
22:13:29.0105 2636 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
22:13:29.0115 2636 Dhcp - ok
22:13:29.0135 2636 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
22:13:29.0135 2636 discache - ok
22:13:29.0145 2636 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\drivers\disk.sys
22:13:29.0145 2636 Disk - ok
22:13:29.0175 2636 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
22:13:29.0175 2636 Dnscache - ok
22:13:29.0195 2636 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
22:13:29.0205 2636 dot3svc - ok
22:13:29.0225 2636 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
22:13:29.0225 2636 DPS - ok
22:13:29.0245 2636 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
22:13:29.0245 2636 drmkaud - ok
22:13:29.0295 2636 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
22:13:29.0305 2636 DXGKrnl - ok
22:13:29.0315 2636 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
22:13:29.0325 2636 EapHost - ok
22:13:29.0395 2636 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\drivers\evbda.sys
22:13:29.0415 2636 ebdrv - ok
22:13:29.0445 2636 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
22:13:29.0445 2636 EFS - ok
22:13:29.0485 2636 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
22:13:29.0495 2636 ehRecvr - ok
22:13:29.0515 2636 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
22:13:29.0525 2636 ehSched - ok
22:13:29.0555 2636 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys
22:13:29.0565 2636 elxstor - ok
22:13:29.0575 2636 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
22:13:29.0575 2636 ErrDev - ok
22:13:29.0605 2636 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
22:13:29.0615 2636 EventSystem - ok
22:13:29.0635 2636 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
22:13:29.0635 2636 exfat - ok
22:13:29.0645 2636 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
22:13:29.0655 2636 fastfat - ok
22:13:29.0685 2636 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
22:13:29.0695 2636 Fax - ok
22:13:29.0705 2636 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\drivers\fdc.sys
22:13:29.0715 2636 fdc - ok
22:13:29.0725 2636 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
22:13:29.0725 2636 fdPHost - ok
22:13:29.0745 2636 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
22:13:29.0745 2636 FDResPub - ok
22:13:29.0765 2636 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
22:13:29.0765 2636 FileInfo - ok
22:13:29.0775 2636 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
22:13:29.0785 2636 Filetrace - ok
22:13:29.0795 2636 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
22:13:29.0795 2636 flpydisk - ok
22:13:29.0815 2636 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
22:13:29.0825 2636 FltMgr - ok
22:13:29.0865 2636 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
22:13:29.0875 2636 FontCache - ok
22:13:29.0915 2636 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
22:13:29.0915 2636 FontCache3.0.0.0 - ok
22:13:29.0935 2636 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
22:13:29.0935 2636 FsDepends - ok
22:13:29.0955 2636 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
22:13:29.0955 2636 Fs_Rec - ok
22:13:29.0986 2636 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
22:13:29.0986 2636 fvevol - ok
22:13:30.0006 2636 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
22:13:30.0006 2636 gagp30kx - ok
22:13:30.0036 2636 [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
22:13:30.0046 2636 GEARAspiWDM - ok
22:13:30.0076 2636 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
22:13:30.0086 2636 gpsvc - ok
22:13:30.0136 2636 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
22:13:30.0136 2636 gupdate - ok
22:13:30.0146 2636 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
22:13:30.0156 2636 gupdatem - ok
22:13:30.0196 2636 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
22:13:30.0196 2636 gusvc - ok
22:13:30.0206 2636 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
22:13:30.0216 2636 hcw85cir - ok
22:13:30.0226 2636 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
22:13:30.0226 2636 HDAudBus - ok
22:13:30.0256 2636 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
22:13:30.0256 2636 HidBatt - ok
22:13:30.0266 2636 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\drivers\hidbth.sys
22:13:30.0266 2636 HidBth - ok
22:13:30.0286 2636 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\drivers\hidir.sys
22:13:30.0286 2636 HidIr - ok
22:13:30.0306 2636 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
22:13:30.0316 2636 hidserv - ok
22:13:30.0316 2636 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
22:13:30.0326 2636 HidUsb - ok
22:13:30.0336 2636 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
22:13:30.0336 2636 hkmsvc - ok
22:13:30.0366 2636 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
22:13:30.0366 2636 HomeGroupListener - ok
22:13:30.0396 2636 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
22:13:30.0406 2636 HomeGroupProvider - ok
22:13:30.0426 2636 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
22:13:30.0426 2636 HpSAMD - ok
22:13:30.0446 2636 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
22:13:30.0456 2636 HTTP - ok
22:13:30.0476 2636 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
22:13:30.0486 2636 hwpolicy - ok
22:13:30.0496 2636 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
22:13:30.0496 2636 i8042prt - ok
22:13:30.0526 2636 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
22:13:30.0536 2636 iaStorV - ok
22:13:30.0576 2636 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
22:13:30.0596 2636 idsvc - ok
22:13:30.0836 2636 [ EFE5A0AF39A8E179624117C521F1E012 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
22:13:31.0046 2636 igfx - ok
22:13:31.0076 2636 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\drivers\iirsp.sys
22:13:31.0076 2636 iirsp - ok
22:13:31.0116 2636 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
22:13:31.0126 2636 IKEEXT - ok
22:13:31.0176 2636 [ FC727061C0F47C8059E88E05D5C8E381 ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
22:13:31.0176 2636 IntcDAud - ok
22:13:31.0206 2636 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
22:13:31.0206 2636 intelide - ok
22:13:31.0236 2636 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
22:13:31.0236 2636 intelppm - ok
22:13:31.0246 2636 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
22:13:31.0246 2636 IPBusEnum - ok
22:13:31.0266 2636 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
22:13:31.0266 2636 IpFilterDriver - ok
22:13:31.0306 2636 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
22:13:31.0316 2636 iphlpsvc - ok
22:13:31.0336 2636 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
22:13:31.0346 2636 IPMIDRV - ok
22:13:31.0376 2636 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
22:13:31.0376 2636 IPNAT - ok
22:13:31.0426 2636 [ A9AB99EE7D39725EAFEC82732D2B3271 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
22:13:31.0446 2636 iPod Service - ok
22:13:31.0456 2636 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
22:13:31.0456 2636 IRENUM - ok
22:13:31.0466 2636 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
22:13:31.0466 2636 isapnp - ok
22:13:31.0486 2636 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
22:13:31.0486 2636 iScsiPrt - ok
22:13:31.0506 2636 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
22:13:31.0506 2636 kbdclass - ok
22:13:31.0526 2636 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
22:13:31.0526 2636 kbdhid - ok
22:13:31.0546 2636 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
22:13:31.0546 2636 KeyIso - ok
22:13:31.0566 2636 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
22:13:31.0566 2636 KSecDD - ok
22:13:31.0586 2636 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
22:13:31.0596 2636 KSecPkg - ok
22:13:31.0606 2636 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
22:13:31.0606 2636 ksthunk - ok
22:13:31.0636 2636 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
22:13:31.0646 2636 KtmRm - ok
22:13:31.0686 2636 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
22:13:31.0696 2636 LanmanServer - ok
22:13:31.0716 2636 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
22:13:31.0726 2636 LanmanWorkstation - ok
22:13:31.0746 2636 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
22:13:31.0756 2636 lltdio - ok
22:13:31.0776 2636 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
22:13:31.0786 2636 lltdsvc - ok
22:13:31.0796 2636 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
22:13:31.0806 2636 lmhosts - ok
22:13:31.0826 2636 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
22:13:31.0836 2636 LSI_FC - ok
22:13:31.0856 2636 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
22:13:31.0856 2636 LSI_SAS - ok
22:13:31.0866 2636 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
22:13:31.0866 2636 LSI_SAS2 - ok
22:13:31.0876 2636 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
22:13:31.0876 2636 LSI_SCSI - ok
22:13:31.0896 2636 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
22:13:31.0896 2636 luafv - ok
22:13:31.0926 2636 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
22:13:31.0926 2636 Mcx2Svc - ok
22:13:31.0936 2636 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\drivers\megasas.sys
22:13:31.0936 2636 megasas - ok
22:13:31.0956 2636 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
22:13:31.0956 2636 MegaSR - ok
22:13:31.0986 2636 [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
22:13:31.0986 2636 MEIx64 - ok
22:13:32.0006 2636 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
22:13:32.0006 2636 MMCSS - ok
22:13:32.0026 2636 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
22:13:32.0026 2636 Modem - ok
22:13:32.0046 2636 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
22:13:32.0046 2636 monitor - ok
22:13:32.0066 2636 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
22:13:32.0066 2636 mouclass - ok
22:13:32.0076 2636 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
22:13:32.0086 2636 mouhid - ok
22:13:32.0096 2636 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
22:13:32.0096 2636 mountmgr - ok
22:13:32.0106 2636 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
22:13:32.0116 2636 mpio - ok
22:13:32.0126 2636 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
22:13:32.0136 2636 mpsdrv - ok
22:13:32.0156 2636 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
22:13:32.0166 2636 MpsSvc - ok
22:13:32.0186 2636 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
22:13:32.0196 2636 MRxDAV - ok
22:13:32.0216 2636 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
22:13:32.0216 2636 mrxsmb - ok
22:13:32.0236 2636 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
22:13:32.0246 2636 mrxsmb10 - ok
22:13:32.0256 2636 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
22:13:32.0256 2636 mrxsmb20 - ok
22:13:32.0286 2636 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
22:13:32.0286 2636 msahci - ok
22:13:32.0316 2636 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
22:13:32.0316 2636 msdsm - ok
22:13:32.0356 2636 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
22:13:32.0366 2636 MSDTC - ok
22:13:32.0386 2636 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
22:13:32.0386 2636 Msfs - ok
22:13:32.0406 2636 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
22:13:32.0406 2636 mshidkmdf - ok
22:13:32.0416 2636 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
22:13:32.0416 2636 msisadrv - ok
22:13:32.0446 2636 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
22:13:32.0446 2636 MSiSCSI - ok
22:13:32.0456 2636 msiserver - ok
22:13:32.0466 2636 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
22:13:32.0466 2636 MSKSSRV - ok
22:13:32.0476 2636 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
22:13:32.0476 2636 MSPCLOCK - ok
22:13:32.0486 2636 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
22:13:32.0486 2636 MSPQM - ok
22:13:32.0506 2636 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
22:13:32.0516 2636 MsRPC - ok
22:13:32.0526 2636 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
22:13:32.0536 2636 mssmbios - ok
22:13:32.0546 2636 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
22:13:32.0546 2636 MSTEE - ok
22:13:32.0556 2636 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
22:13:32.0556 2636 MTConfig - ok
22:13:32.0576 2636 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
22:13:32.0576 2636 Mup - ok
22:13:32.0606 2636 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
22:13:32.0616 2636 napagent - ok
22:13:32.0626 2636 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
22:13:32.0636 2636 NativeWifiP - ok
22:13:32.0736 2636 [ 9D1CCE440552500DED3A62F9D779CDB4 ] NAUpdate C:\Program Files (x86)\Nero\Update\NASvc.exe
22:13:32.0746 2636 NAUpdate - ok
22:13:32.0836 2636 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
22:13:32.0856 2636 NDIS - ok
22:13:32.0876 2636 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
22:13:32.0876 2636 NdisCap - ok
22:13:32.0906 2636 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
22:13:32.0906 2636 NdisTapi - ok
22:13:32.0916 2636 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
22:13:32.0926 2636 Ndisuio - ok
22:13:32.0956 2636 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
22:13:32.0966 2636 NdisWan - ok
22:13:32.0976 2636 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
22:13:32.0976 2636 NDProxy - ok
22:13:33.0006 2636 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
22:13:33.0006 2636 NetBIOS - ok
22:13:33.0026 2636 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
22:13:33.0026 2636 NetBT - ok
22:13:33.0046 2636 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
22:13:33.0046 2636 Netlogon - ok
22:13:33.0096 2636 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
22:13:33.0116 2636 Netman - ok
22:13:33.0146 2636 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:13:33.0146 2636 NetMsmqActivator - ok
22:13:33.0186 2636 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:13:33.0186 2636 NetPipeActivator - ok
22:13:33.0216 2636 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
22:13:33.0226 2636 netprofm - ok
22:13:33.0226 2636 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:13:33.0236 2636 NetTcpActivator - ok
22:13:33.0246 2636 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:13:33.0246 2636 NetTcpPortSharing - ok
22:13:33.0286 2636 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
22:13:33.0286 2636 nfrd960 - ok
22:13:33.0316 2636 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:\Windows\System32\nlasvc.dll
22:13:33.0326 2636 NlaSvc - ok
22:13:33.0426 2636 [ B9B72FAAAA41D59B73B88FE3DD737ED1 ] NOBU C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe
22:13:33.0456 2636 NOBU - ok
22:13:33.0486 2636 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
22:13:33.0486 2636 Npfs - ok
22:13:33.0506 2636 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
22:13:33.0506 2636 nsi - ok
22:13:33.0526 2636 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
22:13:33.0526 2636 nsiproxy - ok
22:13:33.0606 2636 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
22:13:33.0646 2636 Ntfs - ok
22:13:33.0666 2636 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
22:13:33.0676 2636 Null - ok
22:13:33.0696 2636 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
22:13:33.0696 2636 nvraid - ok
22:13:33.0726 2636 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
22:13:33.0726 2636 nvstor - ok
22:13:33.0746 2636 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
22:13:33.0746 2636 nv_agp - ok
22:13:33.0776 2636 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
22:13:33.0776 2636 ohci1394 - ok
22:13:33.0816 2636 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
22:13:33.0826 2636 ose - ok
22:13:34.0176 2636 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
22:13:34.0276 2636 osppsvc - ok
22:13:34.0326 2636 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
22:13:34.0336 2636 p2pimsvc - ok
22:13:34.0356 2636 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
22:13:34.0366 2636 p2psvc - ok
22:13:34.0386 2636 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\drivers\parport.sys
22:13:34.0386 2636 Parport - ok
22:13:34.0406 2636 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
22:13:34.0416 2636 partmgr - ok
22:13:34.0426 2636 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
22:13:34.0436 2636 PcaSvc - ok
22:13:34.0466 2636 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
22:13:34.0466 2636 pci - ok
22:13:34.0486 2636 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
22:13:34.0486 2636 pciide - ok
22:13:34.0506 2636 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
22:13:34.0516 2636 pcmcia - ok
22:13:34.0526 2636 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
22:13:34.0536 2636 pcw - ok
22:13:34.0566 2636 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
22:13:34.0576 2636 PEAUTH - ok
22:13:34.0646 2636 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
22:13:34.0666 2636 PerfHost - ok
22:13:34.0716 2636 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
22:13:34.0736 2636 pla - ok
22:13:34.0776 2636 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
22:13:34.0786 2636 PlugPlay - ok
22:13:34.0806 2636 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
22:13:34.0806 2636 PNRPAutoReg - ok
22:13:34.0826 2636 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
22:13:34.0836 2636 PNRPsvc - ok
22:13:34.0866 2636 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
22:13:34.0876 2636 PolicyAgent - ok
22:13:34.0906 2636 [ A2CCA4FB273E6050F17A0A416CFF2FCD ] Power C:\Windows\system32\umpo.dll
22:13:34.0916 2636 Power - ok
22:13:34.0946 2636 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
22:13:34.0956 2636 PptpMiniport - ok
22:13:34.0966 2636 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\drivers\processr.sys
22:13:34.0966 2636 Processor - ok
22:13:34.0996 2636 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
22:13:35.0006 2636 ProfSvc - ok
22:13:35.0016 2636 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
22:13:35.0016 2636 ProtectedStorage - ok
22:13:35.0036 2636 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
22:13:35.0036 2636 Psched - ok
22:13:35.0076 2636 [ 87B04878A6D59D6C79251DC960C674C1 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
22:13:35.0076 2636 PxHlpa64 - ok
22:13:35.0126 2636 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
22:13:35.0156 2636 ql2300 - ok
22:13:35.0166 2636 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
22:13:35.0176 2636 ql40xx - ok
22:13:35.0196 2636 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
22:13:35.0206 2636 QWAVE - ok
22:13:35.0216 2636 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
22:13:35.0226 2636 QWAVEdrv - ok
22:13:35.0226 2636 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
22:13:35.0236 2636 RasAcd - ok
22:13:35.0246 2636 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
22:13:35.0256 2636 RasAgileVpn - ok
22:13:35.0266 2636 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
22:13:35.0276 2636 RasAuto - ok
22:13:35.0286 2636 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
22:13:35.0296 2636 Rasl2tp - ok
22:13:35.0306 2636 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
22:13:35.0316 2636 RasMan - ok
22:13:35.0326 2636 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
22:13:35.0326 2636 RasPppoe - ok
22:13:35.0336 2636 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
22:13:35.0356 2636 RasSstp - ok
22:13:35.0376 2636 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
22:13:35.0376 2636 rdbss - ok
22:13:35.0396 2636 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\drivers\rdpbus.sys
22:13:35.0396 2636 rdpbus - ok
22:13:35.0416 2636 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
22:13:35.0416 2636 RDPCDD - ok
22:13:35.0436 2636 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
22:13:35.0446 2636 RDPENCDD - ok
22:13:35.0456 2636 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
22:13:35.0456 2636 RDPREFMP - ok
22:13:35.0486 2636 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
22:13:35.0486 2636 RDPWD - ok
22:13:35.0506 2636 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
22:13:35.0506 2636 rdyboost - ok
22:13:35.0536 2636 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
22:13:35.0536 2636 RemoteAccess - ok
22:13:35.0566 2636 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
22:13:35.0576 2636 RemoteRegistry - ok
22:13:35.0656 2636 [ 3C957189B31C34D3AD21967B12B6AED7 ] RoxMediaDB12OEM C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe
22:13:35.0686 2636 RoxMediaDB12OEM - ok
22:13:35.0726 2636 [ 2B73088CC2CA757A172B425C9398E5BC ] RoxWatch12 C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe
22:13:35.0726 2636 RoxWatch12 - ok
22:13:35.0736 2636 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
22:13:35.0746 2636 RpcEptMapper - ok
22:13:35.0776 2636 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
22:13:35.0786 2636 RpcLocator - ok
22:13:35.0806 2636 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
22:13:35.0816 2636 RpcSs - ok
22:13:35.0836 2636 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
22:13:35.0846 2636 rspndr - ok
22:13:35.0876 2636 [ EE082E06A82FF630351D1E0EBBD3D8D0 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
22:13:35.0886 2636 RTL8167 - ok
22:13:35.0896 2636 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
22:13:35.0906 2636 SamSs - ok
22:13:35.0966 2636 [ 3289766038DB2CB14D07DC84392138D5 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
22:13:35.0976 2636 SASDIFSV - ok
22:13:35.0986 2636 [ 58A38E75F3316A83C23DF6173D41F2B5 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
22:13:35.0986 2636 SASKUTIL - ok
22:13:36.0006 2636 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
22:13:36.0006 2636 sbp2port - ok
22:13:36.0036 2636 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
22:13:36.0046 2636 SCardSvr - ok
22:13:36.0066 2636 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
22:13:36.0076 2636 scfilter - ok
22:13:36.0106 2636 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
22:13:36.0126 2636 Schedule - ok
22:13:36.0176 2636 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
22:13:36.0186 2636 SCPolicySvc - ok
22:13:36.0206 2636 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
22:13:36.0216 2636 SDRSVC - ok
22:13:36.0226 2636 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
22:13:36.0236 2636 secdrv - ok
22:13:36.0246 2636 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
22:13:36.0256 2636 seclogon - ok
22:13:36.0266 2636 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
22:13:36.0276 2636 SENS - ok
22:13:36.0276 2636 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
22:13:36.0286 2636 SensrSvc - ok
22:13:36.0296 2636 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\drivers\serenum.sys
22:13:36.0306 2636 Serenum - ok
22:13:36.0306 2636 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\drivers\serial.sys
22:13:36.0316 2636 Serial - ok
22:13:36.0326 2636 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\drivers\sermouse.sys
22:13:36.0326 2636 sermouse - ok
22:13:36.0366 2636 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
22:13:36.0376 2636 SessionEnv - ok
22:13:36.0396 2636 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
22:13:36.0396 2636 sffdisk - ok
22:13:36.0396 2636 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
22:13:36.0406 2636 sffp_mmc - ok
22:13:36.0416 2636 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
22:13:36.0416 2636 sffp_sd - ok
22:13:36.0426 2636 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
22:13:36.0426 2636 sfloppy - ok
22:13:36.0506 2636 [ 4215C271D6E6898C3F4DABAB4F387DC9 ] SftService C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
22:13:36.0526 2636 SftService - ok
22:13:36.0546 2636 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
22:13:36.0556 2636 SharedAccess - ok
22:13:36.0566 2636 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
22:13:36.0576 2636 ShellHWDetection - ok
22:13:36.0586 2636 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
22:13:36.0586 2636 SiSRaid2 - ok
22:13:36.0596 2636 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
22:13:36.0596 2636 SiSRaid4 - ok
22:13:36.0666 2636 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
22:13:36.0666 2636 SkypeUpdate - ok
22:13:36.0676 2636 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
22:13:36.0676 2636 Smb - ok
22:13:36.0716 2636 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
22:13:36.0726 2636 SNMPTRAP - ok
22:13:36.0736 2636 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
22:13:36.0746 2636 spldr - ok
22:13:36.0786 2636 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
22:13:36.0796 2636 Spooler - ok
22:13:36.0876 2636 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
22:13:36.0936 2636 sppsvc - ok
22:13:36.0956 2636 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
22:13:36.0966 2636 sppuinotify - ok
22:13:37.0006 2636 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
22:13:37.0016 2636 srv - ok
22:13:37.0036 2636 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
22:13:37.0046 2636 srv2 - ok
22:13:37.0056 2636 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
22:13:37.0056 2636 srvnet - ok
22:13:37.0086 2636 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
22:13:37.0096 2636 SSDPSRV - ok
22:13:37.0106 2636 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
22:13:37.0116 2636 SstpSvc - ok
22:13:37.0136 2636 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\drivers\stexstor.sys
22:13:37.0136 2636 stexstor - ok
22:13:37.0166 2636 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
22:13:37.0176 2636 stisvc - ok
22:13:37.0206 2636 [ 7731F46EC0D687A931CBA063E8F90EF0 ] stllssvr C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
22:13:37.0226 2636 stllssvr - ok
22:13:37.0236 2636 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
22:13:37.0236 2636 swenum - ok
22:13:37.0266 2636 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
22:13:37.0276 2636 swprv - ok
22:13:37.0326 2636 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
22:13:37.0356 2636 SysMain - ok
22:13:37.0376 2636 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
22:13:37.0376 2636 TabletInputService - ok
22:13:37.0396 2636 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
22:13:37.0416 2636 TapiSrv - ok
22:13:37.0426 2636 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
22:13:37.0436 2636 TBS - ok
22:13:37.0516 2636 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] Tcpip C:\Windows\system32\drivers\tcpip.sys
22:13:37.0546 2636 Tcpip - ok
22:13:37.0596 2636 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
22:13:37.0616 2636 TCPIP6 - ok
22:13:37.0646 2636 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
22:13:37.0646 2636 tcpipreg - ok
22:13:37.0666 2636 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
22:13:37.0676 2636 TDPIPE - ok
22:13:37.0696 2636 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
22:13:37.0706 2636 TDTCP - ok
22:13:37.0716 2636 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
22:13:37.0726 2636 tdx - ok
22:13:37.0736 2636 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
22:13:37.0746 2636 TermDD - ok
22:13:37.0776 2636 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
22:13:37.0796 2636 TermService - ok
22:13:37.0816 2636 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
22:13:37.0826 2636 Themes - ok
22:13:37.0846 2636 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
22:13:37.0856 2636 THREADORDER - ok
22:13:37.0876 2636 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
22:13:37.0886 2636 TrkWks - ok
22:13:37.0926 2636 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
22:13:37.0926 2636 TrustedInstaller - ok
22:13:37.0956 2636 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
22:13:37.0966 2636 tssecsrv - ok
22:13:37.0976 2636 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
22:13:37.0976 2636 TsUsbFlt - ok
22:13:37.0986 2636 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
22:13:37.0986 2636 TsUsbGD - ok
22:13:38.0016 2636 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
22:13:38.0016 2636 tunnel - ok
22:13:38.0036 2636 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
22:13:38.0036 2636 uagp35 - ok
22:13:38.0056 2636 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
22:13:38.0066 2636 udfs - ok
22:13:38.0096 2636 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
22:13:38.0106 2636 UI0Detect - ok
22:13:38.0106 2636 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
22:13:38.0116 2636 uliagpkx - ok
22:13:38.0126 2636 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
22:13:38.0126 2636 umbus - ok
22:13:38.0136 2636 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\drivers\umpass.sys
22:13:38.0146 2636 UmPass - ok
22:13:38.0166 2636 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
22:13:38.0176 2636 upnphost - ok
22:13:38.0226 2636 [ FB251567F41BC61988B26731DEC19E4B ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
22:13:38.0226 2636 USBAAPL64 - ok
22:13:38.0256 2636 [ 19AD7990C0B67E48DAC5B26F99628223 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
22:13:38.0256 2636 usbccgp - ok
22:13:38.0266 2636 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
22:13:38.0286 2636 usbcir - ok
22:13:38.0316 2636 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
22:13:38.0316 2636 usbehci - ok
22:13:38.0346 2636 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
22:13:38.0346 2636 usbhub - ok
22:13:38.0366 2636 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
22:13:38.0366 2636 usbohci - ok
22:13:38.0396 2636 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
22:13:38.0396 2636 usbprint - ok
22:13:38.0406 2636 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
22:13:38.0406 2636 usbscan - ok
22:13:38.0416 2636 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
22:13:38.0426 2636 USBSTOR - ok
22:13:38.0446 2636 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
22:13:38.0456 2636 usbuhci - ok
22:13:38.0476 2636 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
22:13:38.0486 2636 UxSms - ok
22:13:38.0506 2636 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
22:13:38.0506 2636 VaultSvc - ok
22:13:38.0536 2636 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
22:13:38.0536 2636 vdrvroot - ok
22:13:38.0556 2636 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
22:13:38.0566 2636 vds - ok
22:13:38.0586 2636 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
22:13:38.0586 2636 vga - ok
22:13:38.0606 2636 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
22:13:38.0616 2636 VgaSave - ok
22:13:38.0636 2636 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
22:13:38.0636 2636 vhdmp - ok
22:13:38.0656 2636 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
22:13:38.0656 2636 viaide - ok
22:13:38.0666 2636 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
22:13:38.0676 2636 volmgr - ok
22:13:38.0686 2636 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
22:13:38.0696 2636 volmgrx - ok
22:13:38.0706 2636 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
22:13:38.0716 2636 volsnap - ok
22:13:38.0746 2636 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
22:13:38.0746 2636 vsmraid - ok
22:13:38.0836 2636 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
22:13:38.0866 2636 VSS - ok
22:13:38.0946 2636 [ 7D110D645030C05A06C3CD08D1E47D0A ] vToolbarUpdater13.2.0 C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe
22:13:38.0956 2636 vToolbarUpdater13.2.0 - ok
22:13:38.0976 2636 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
22:13:38.0986 2636 vwifibus - ok
22:13:39.0006 2636 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
22:13:39.0006 2636 vwififlt - ok
22:13:39.0036 2636 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
22:13:39.0046 2636 W32Time - ok
22:13:39.0096 2636 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\drivers\wacompen.sys
22:13:39.0096 2636 WacomPen - ok
22:13:39.0126 2636 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
22:13:39.0126 2636 WANARP - ok
22:13:39.0136 2636 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
22:13:39.0146 2636 Wanarpv6 - ok
22:13:39.0206 2636 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
22:13:39.0236 2636 WatAdminSvc - ok
22:13:39.0286 2636 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
22:13:39.0306 2636 wbengine - ok
22:13:39.0316 2636 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
22:13:39.0326 2636 WbioSrvc - ok
22:13:39.0356 2636 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
22:13:39.0366 2636 wcncsvc - ok
22:13:39.0386 2636 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
22:13:39.0396 2636 WcsPlugInService - ok
22:13:39.0416 2636 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\drivers\wd.sys
22:13:39.0416 2636 Wd - ok
22:13:39.0446 2636 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
22:13:39.0446 2636 Wdf01000 - ok
22:13:39.0466 2636 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
22:13:39.0476 2636 WdiServiceHost - ok
22:13:39.0476 2636 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
22:13:39.0486 2636 WdiSystemHost - ok
22:13:39.0506 2636 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
22:13:39.0516 2636 WebClient - ok
22:13:39.0536 2636 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
22:13:39.0546 2636 Wecsvc - ok
22:13:39.0556 2636 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
22:13:39.0566 2636 wercplsupport - ok
22:13:39.0576 2636 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
22:13:39.0586 2636 WerSvc - ok
22:13:39.0596 2636 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
22:13:39.0596 2636 WfpLwf - ok
22:13:39.0626 2636 [ B14EF15BD757FA488F9C970EEE9C0D35 ] WimFltr C:\Windows\system32\DRIVERS\wimfltr.sys
22:13:39.0626 2636 WimFltr - ok
22:13:39.0646 2636 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
22:13:39.0646 2636 WIMMount - ok
22:13:39.0666 2636 WinDefend - ok
22:13:39.0686 2636 WinHttpAutoProxySvc - ok
22:13:39.0736 2636 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
22:13:39.0736 2636 Winmgmt - ok
22:13:39.0806 2636 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
22:13:39.0846 2636 WinRM - ok
22:13:39.0886 2636 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
22:13:39.0896 2636 WinUsb - ok
22:13:39.0926 2636 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
22:13:39.0936 2636 Wlansvc - ok
22:13:39.0966 2636 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
22:13:39.0966 2636 wlcrasvc - ok
22:13:40.0037 2636 [ 7E47C328FC4768CB8BEAFBCFAFA70362 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
22:13:40.0077 2636 wlidsvc - ok
22:13:40.0107 2636 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
22:13:40.0117 2636 WmiAcpi - ok
22:13:40.0137 2636 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
22:13:40.0137 2636 wmiApSrv - ok
22:13:40.0157 2636 WMPNetworkSvc - ok
22:13:40.0177 2636 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
22:13:40.0177 2636 WPCSvc - ok
22:13:40.0207 2636 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
22:13:40.0207 2636 WPDBusEnum - ok
22:13:40.0227 2636 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
22:13:40.0227 2636 ws2ifsl - ok
22:13:40.0247 2636 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
22:13:40.0257 2636 wscsvc - ok
22:13:40.0277 2636 WSearch - ok
22:13:40.0347 2636 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
22:13:40.0367 2636 wuauserv - ok
22:13:40.0397 2636 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
22:13:40.0397 2636 WudfPf - ok
22:13:40.0407 2636 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
22:13:40.0417 2636 WUDFRd - ok
22:13:40.0427 2636 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
22:13:40.0437 2636 wudfsvc - ok
22:13:40.0457 2636 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
22:13:40.0467 2636 WwanSvc - ok
22:13:40.0527 2636 [ DD0042F0C3B606A6A8B92D49AFB18AD6 ] YahooAUService C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
22:13:40.0537 2636 YahooAUService - ok
22:13:40.0557 2636 ================ Scan global ===============================
22:13:40.0577 2636 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
22:13:40.0627 2636 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
22:13:40.0647 2636 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
22:13:40.0677 2636 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
22:13:40.0707 2636 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
22:13:40.0717 2636 [Global] - ok
22:13:40.0717 2636 ================ Scan MBR ==================================
22:13:40.0727 2636 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
22:13:41.0257 2636 \Device\Harddisk0\DR0 - ok
22:13:41.0257 2636 ================ Scan VBR ==================================
22:13:41.0287 2636 [ 2D7B3DA9E4DB1AE2FB75F152034079DF ] \Device\Harddisk0\DR0\Partition1
22:13:41.0287 2636 \Device\Harddisk0\DR0\Partition1 - ok
22:13:41.0297 2636 [ 257A05B941EC6942ECB98721B6B21C73 ] \Device\Harddisk0\DR0\Partition2
22:13:41.0307 2636 \Device\Harddisk0\DR0\Partition2 - ok
22:13:41.0307 2636 ============================================================
22:13:41.0307 2636 Scan finished
22:13:41.0307 2636 ============================================================
22:13:41.0317 3232 Detected object count: 0
22:13:41.0317 3232 Actual detected object count: 0

#5 Dignan

Dignan
  • Topic Starter

  • Members
  • 55 posts
  • OFFLINE
  •  
  • Local time:11:30 PM

Posted 10 November 2012 - 10:31 PM

JRT scan:

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 2.9.6 (11.10.2012)
OS: Windows 7 Home Premium x64
Ran by Rave Kids on Sat 11/10/2012 at 22:20:12.48
Blog: http://thisisudax.blogspot.com
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services

Successfully stopped: [Service] DefaultTabUpdate
Successfully deleted: [Service] DefaultTabUpdate



~~~ Registry Values

Successfully nulled: [Registry Value] hkey_local_machine\software\microsoft\windows nt\currentversion\windows\\AppInit_DLLs
Successfully deleted: [Registry Value] hkey_local_machine\software\microsoft\windows\currentversion\run\\DATAMNGR
Successfully deleted: [Registry Value] hkey_current_user\software\microsoft\windows\currentversion\run\\Smart PC Cleaner
Successfully deleted: [Registry Value] hkey_local_machine\software\microsoft\internet explorer\toolbar\\{98889811-442d-49dd-99d7-dc866be87dbc}
Successfully deleted: [Registry Value] hkey_local_machine\software\microsoft\internet explorer\toolbar\\{ef99bd32-c1fb-11d2-892f-0090271d4f88}
Successfully deleted: [Registry Value] hkey_local_machine\software\microsoft\internet explorer\toolbar\\{f34c9277-6577-4dff-b2d7-7d58092f272f}
Successfully repaired: [Registry Value] hkey_current_user\software\microsoft\internet explorer\searchscopes\\DefaultScope
Successfully repaired: [Registry Value] hkey_local_machine\software\microsoft\internet explorer\searchscopes\\DefaultScope
Successfully repaired: [Registry Value] hkey_users\.default\software\microsoft\internet explorer\searchscopes\\DefaultScope
Successfully repaired: [Registry Value] hkey_users\s-1-5-18\software\microsoft\internet explorer\searchscopes\\DefaultScope
Successfully repaired: [Registry Value] hkey_users\s-1-5-19\software\microsoft\internet explorer\searchscopes\\DefaultScope
Successfully repaired: [Registry Value] hkey_users\s-1-5-20\software\microsoft\internet explorer\searchscopes\\DefaultScope
Successfully repaired: [Registry Value] hkey_users\S-1-5-21-1062750341-1121655170-158322855-1001\software\microsoft\internet explorer\searchscopes\\DefaultScope



~~~ Registry Keys

Successfully deleted: [Registry Key] "hkey_classes_root\escort.escortiepane"
Successfully deleted: [Registry Key] "hkey_classes_root\escort.escortiepane.1"
Successfully deleted: [Registry Key] "hkey_classes_root\esrv.babylonesrvc"
Successfully deleted: [Registry Key] "hkey_classes_root\esrv.babylonesrvc.1"
Successfully deleted: [Registry Key] "hkey_current_user\software\appdatalow\software\crossrider"
Successfully deleted: [Registry Key] "hkey_current_user\software\appdatalow\software\defaulttab"
Successfully deleted: [Registry Key] "hkey_current_user\software\babylontoolbar"
Successfully deleted: [Registry Key] "hkey_current_user\software\cr_installer"
Successfully deleted: [Registry Key] "hkey_current_user\software\datamngr"
Successfully deleted: [Registry Key] "hkey_current_user\software\datamngr_toolbar"
Successfully deleted: [Registry Key] "hkey_current_user\software\defaulttab"
Successfully deleted: [Registry Key] "hkey_current_user\software\installedbrowserextensions"
Successfully deleted: [Registry Key] "hkey_current_user\software\softonic"
Successfully deleted: [Registry Key] "hkey_local_machine\software\babylon"
Successfully deleted: [Registry Key] "hkey_local_machine\software\babylontoolbar"
Successfully deleted: [Registry Key] "hkey_local_machine\software\classes\appid\browserconnection.dll"
Successfully deleted: [Registry Key] "hkey_local_machine\software\classes\appid\escort.dll"
Successfully deleted: [Registry Key] "hkey_local_machine\software\classes\appid\escortapp.dll"
Successfully deleted: [Registry Key] "hkey_local_machine\software\classes\appid\escorteng.dll"
Successfully deleted: [Registry Key] "hkey_local_machine\software\classes\appid\escortlbr.dll"
Successfully deleted: [Registry Key] "hkey_local_machine\software\classes\appid\esrv.exe"
Successfully deleted: [Registry Key] "hkey_local_machine\software\classes\b"
Successfully deleted: [Registry Key] "hkey_local_machine\software\classes\babylon.dskbnd"
Successfully deleted: [Registry Key] "hkey_local_machine\software\classes\babylon.dskbnd.1"
Successfully deleted: [Registry Key] "hkey_local_machine\software\classes\bbylnapp.appcore"
Successfully deleted: [Registry Key] "hkey_local_machine\software\classes\bbylnapp.appcore.1"
Successfully deleted: [Registry Key] "hkey_local_machine\software\classes\browserconnection.loader"
Successfully deleted: [Registry Key] "hkey_local_machine\software\classes\browserconnection.loader.1"
Successfully deleted: [Registry Key] "hkey_local_machine\software\datamngr"
Successfully deleted: [Registry Key] "hkey_local_machine\software\default tab"
Successfully deleted: [Registry Key] "hkey_local_machine\software\microsoft\tracing\setupdatamngr_searchqu_rasapi32"
Successfully deleted: [Registry Key] "hkey_local_machine\software\microsoft\tracing\setupdatamngr_searchqu_rasmancs"
Successfully deleted: [Registry Key] "hkey_local_machine\software\wow6432node\microsoft\tracing\mybabylontb_rasapi32"
Successfully deleted: [Registry Key] "hkey_local_machine\software\wow6432node\microsoft\tracing\mybabylontb_rasmancs"
Successfully deleted: [Registry Key] hkey_current_user\software\microsoft\internet explorer\searchscopes\{0ecdf796-c2dc-4d79-a620-cce0c0a66cc9}
Successfully deleted: [Registry Key] hkey_classes_root\clsid\{291bccc1-6890-484a-89d3-318c928dac1b}
Successfully deleted: [Registry Key] hkey_classes_root\clsid\{2eecd738-5844-4a99-b4b6-146bf802613b}
Successfully deleted: [Registry Key] hkey_local_machine\software\microsoft\windows\currentversion\explorer\browser helper objects\{2eecd738-5844-4a99-b4b6-146bf802613b}
Successfully deleted: [Registry Key] hkey_classes_root\clsid\{7f6afbf1-e065-4627-a2fd-810366367d01}
Successfully deleted: [Registry Key] hkey_local_machine\software\microsoft\windows\currentversion\explorer\browser helper objects\{7f6afbf1-e065-4627-a2fd-810366367d01}
Successfully deleted: [Registry Key] hkey_classes_root\clsid\{97f2ff5b-260c-4ccf-834a-2dda4e29e39e}
Successfully deleted: [Registry Key] hkey_classes_root\clsid\{98889811-442d-49dd-99d7-dc866be87dbc}
Successfully deleted: [Registry Key] hkey_current_user\software\microsoft\internet explorer\searchscopes\{9bb47c17-9c68-4bb3-b188-dd9af0fd2406}
Successfully deleted: [Registry Key] hkey_local_machine\software\microsoft\internet explorer\searchscopes\{9bb47c17-9c68-4bb3-b188-dd9af0fd2406}
Successfully deleted: [Registry Key] hkey_classes_root\clsid\{b8276a94-891d-453c-9ff3-715c042a2575}
Successfully deleted: [Registry Key] hkey_classes_root\clsid\{c1ed9da0-afd0-4b90-ac6a-d3874f591014}
Successfully deleted: [Registry Key] hkey_local_machine\software\microsoft\windows\currentversion\explorer\browser helper objects\{c1ed9da0-afd0-4b90-ac6a-d3874f591014}
Successfully deleted: [Registry Key] hkey_classes_root\clsid\{ef99bd32-c1fb-11d2-892f-0090271d4f88}
Successfully deleted: [Registry Key] hkey_classes_root\clsid\{f34c9277-6577-4dff-b2d7-7d58092f272f}
Successfully deleted: [Registry Key] hkey_local_machine\software\microsoft\windows\currentversion\explorer\browser helper objects\{f34c9277-6577-4dff-b2d7-7d58092f272f}
Successfully deleted: [Registry Key] hkey_classes_root\clsid\{fd72061e-9fde-484d-a58a-0bab4151cad8}
Successfully deleted: [Registry Key] hkey_local_machine\software\microsoft\windows\currentversion\explorer\browser helper objects\{fd72061e-9fde-484d-a58a-0bab4151cad8}
Successfully deleted: [Registry Key] hkey_classes_root\clsid\{ffb9adcb-8c79-4c29-81d3-74d46a93d370}



~~~ Files

Successfully deleted: [File] C:\Windows\prefetch\BABYLONTOOLBARSRV.EXE-C91572C9.pf



~~~ Folders

Successfully deleted: [Folder] "C:\ProgramData\babylon"
Successfully deleted: [Folder] "C:\ProgramData\boost_interprocess"
Successfully deleted: [Folder] "C:\ProgramData\systweak"
Successfully deleted: [Folder] "C:\ProgramData\tarma installer"
Successfully deleted: [Folder] "C:\Users\Rave Kids\AppData\Roaming\babylon"
Failed to delete: [Folder-LOCKED!] "C:\Users\Rave Kids\AppData\Roaming\defaulttab"
Successfully deleted: [Folder] "C:\Users\Rave Kids\AppData\Roaming\systweak"
Successfully deleted: [Folder] "C:\Users\Rave Kids\appdata\locallow\babylontoolbar"
Successfully deleted: [Folder] "C:\Users\Rave Kids\appdata\locallow\datamngr"
Successfully deleted: [Folder] "C:\Program Files (x86)\advanced system protector"
Failed to delete: [Folder-LOCKED!] "C:\Program Files (x86)\babylontoolbar"
Successfully deleted: [Folder] "C:\Program Files (x86)\playready"
Failed to delete: [Folder-LOCKED!] "C:\Program Files (x86)\search results toolbar"
Successfully deleted: [Folder] "C:\Program Files (x86)\smart pc cleaner"
Failed to delete: [Folder-LOCKED!] "C:\Program Files (x86)\yontoo"
Successfully deleted: [Folder] "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\advanced system protector"



~~~ Chrome

Successfully deleted: [Registry Key] hkey_local_machine\software\google\chrome\extensions\niapdbllcanepiiimjjndipklodoedlc



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Sat 11/10/2012 at 22:31:13.94
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

#6 Dignan

Dignan
  • Topic Starter

  • Members
  • 55 posts
  • OFFLINE
  •  
  • Local time:11:30 PM

Posted 10 November 2012 - 11:30 PM

ESET:

C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.8.3.8\BabylonToolbarApp.dll a variant of Win32/Toolbar.Babylon application cleaned by deleting (after the next restart) - quarantined
C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.8.3.8\BabylonToolbarsrv.exe probably a variant of Win32/Toolbar.Babylon application cleaned by deleting - quarantined
C:\Program Files (x86)\Search Results Toolbar\Datamngr\datamngr.dll a variant of Win32/Toolbar.SearchSuite application cleaned by deleting (after the next restart) - quarantined
C:\Program Files (x86)\Search Results Toolbar\Datamngr\IEBHO.dll a variant of Win32/Toolbar.SearchSuite application cleaned by deleting (after the next restart) - quarantined
C:\Program Files (x86)\Vid-Saver\Vid-Saver.dll a variant of Win32/Toolbar.CrossRider.A application cleaned by deleting (after the next restart) - quarantined
C:\Program Files (x86)\Yontoo\YontooIEClient.dll a variant of Win32/Adware.Yontoo.A application cleaned by deleting (after the next restart) - quarantined
C:\Users\Rave Kids\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\QNCH1F6X\7zip_installer_d684869.exe a variant of Win32/InstallIQ application cleaned by deleting - quarantined
C:\Users\Rave Kids\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VTM386I2\SoftonicDownloader_for_slender-the-eight-pages.exe a variant of Win32/SoftonicDownloader.E application cleaned by deleting - quarantined
C:\Users\Rave Kids\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\W9PCR0Y9\Slender_Setup.exe a variant of Win32/Adware.iBryte.C application cleaned by deleting - quarantined
C:\Users\Rave Kids\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\W9PCR0Y9\Vid-Saver-ppd[1].exe a variant of Win32/Toolbar.CrossRider.A application cleaned by deleting - quarantined
C:\Users\Rave Kids\AppData\Local\Temp\NOD14C4.tmp a variant of Win32/Toolbar.CrossRider.A application cleaned by deleting (after the next restart) - quarantined
C:\Users\Rave Kids\AppData\Local\Temp\NODA22F.tmp a variant of Win32/Toolbar.Babylon application cleaned by deleting (after the next restart) - quarantined
C:\Users\Rave Kids\AppData\Local\Temp\NODAAB4.tmp a variant of Win32/Toolbar.SearchSuite application cleaned by deleting (after the next restart) - quarantined
C:\Users\Rave Kids\AppData\Local\Temp\NODADFF.tmp a variant of Win32/Toolbar.SearchSuite application cleaned by deleting (after the next restart) - quarantined
C:\Users\Rave Kids\AppData\Local\Temp\NODB444.tmp a variant of Win32/Adware.Yontoo.A application cleaned by deleting (after the next restart) - quarantined
C:\Users\Rave Kids\AppData\Local\Temp\Vid-Saver-ppd.exe a variant of Win32/Toolbar.CrossRider.A application cleaned by deleting - quarantined
C:\Users\Rave Kids\AppData\Local\Temp\YontooSetup-S.exe multiple threats cleaned by deleting - quarantined
C:\Users\Rave Kids\AppData\Local\Temp\502BBE79-BAB0-7891-881E-35ED28856BAE\Latest\MyBabylonTB.exe Win32/Toolbar.Babylon application cleaned by deleting - quarantined

#7 Dignan

Dignan
  • Topic Starter

  • Members
  • 55 posts
  • OFFLINE
  •  
  • Local time:11:30 PM

Posted 10 November 2012 - 11:33 PM

MiniToolBox:

MiniToolBox by Farbar Version: 10-11-2012 02
Ran by Rave Kids (administrator) on 10-11-2012 at 23:31:53
Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================



========================= IP Configuration: ================================

Realtek PCIe GBE Family Controller = Local Area Connection (Connected)
Dell Wireless 1502 802.11b/g/n = Wireless Network Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : RaveKids-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Wireless LAN adapter Wireless Network Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Dell Wireless 1502 802.11b/g/n
Physical Address. . . . . . . . . : E0-06-E6-07-95-17
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
Physical Address. . . . . . . . . : D4-BE-D9-CE-D7-82
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2002:4576:fb07:0:598f:72f2:b4db:e8a2(Preferred)
Temporary IPv6 Address. . . . . . : 2002:4576:fb07:0:7cf8:3dc:8c9b:df65(Preferred)
Link-local IPv6 Address . . . . . : fe80::598f:72f2:b4db:e8a2%11(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.138(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Saturday, November 10, 2012 10:09:52 PM
Lease Expires . . . . . . . . . . : Sunday, November 11, 2012 10:09:52 PM
Default Gateway . . . . . . . . . : fe80::c2c1:c0ff:fe1a:d389%11
192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 248823513
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-17-8F-79-6F-D4-BE-D9-CE-D7-82
DNS Servers . . . . . . . . . . . : 167.206.245.129
167.206.245.130
192.168.1.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.{8D986426-C33B-4FA6-B34A-091CAA01CE70}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 11:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{2861DDEB-39D2-4EA9-B8A8-758D5B5B2305}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:2806:324f:ba89:4f8(Preferred)
Link-local IPv6 Address . . . . . : fe80::2806:324f:ba89:4f8%16(Preferred)
Default Gateway . . . . . . . . . :
NetBIOS over Tcpip. . . . . . . . : Disabled
Server: vdns1.srv.prnynj.cv.net
Address: 167.206.245.129

Name: google.com
Addresses: 2607:f8b0:4006:802::1009
74.125.226.233
74.125.226.231
74.125.226.229
74.125.226.230
74.125.226.226
74.125.226.238
74.125.226.224
74.125.226.228
74.125.226.225
74.125.226.227
74.125.226.232


Pinging google.com [173.194.43.0] with 32 bytes of data:
Reply from 173.194.43.0: bytes=32 time=11ms TTL=55
Reply from 173.194.43.0: bytes=32 time=8ms TTL=55

Ping statistics for 173.194.43.0:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 8ms, Maximum = 11ms, Average = 9ms
Server: vdns1.srv.prnynj.cv.net
Address: 167.206.245.129

Name: yahoo.com
Addresses: 72.30.38.140
98.139.183.24
98.138.253.109


Pinging yahoo.com [98.139.183.24] with 32 bytes of data:
Reply from 98.139.183.24: bytes=32 time=126ms TTL=52
Reply from 98.139.183.24: bytes=32 time=53ms TTL=52

Ping statistics for 98.139.183.24:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 53ms, Maximum = 126ms, Average = 89ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
14...e0 06 e6 07 95 17 ......Dell Wireless 1502 802.11b/g/n
11...d4 be d9 ce d7 82 ......Realtek PCIe GBE Family Controller
1...........................Software Loopback Interface 1
12...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
13...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter
15...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
16...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.138 10
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.138 266
192.168.1.138 255.255.255.255 On-link 192.168.1.138 266
192.168.1.255 255.255.255.255 On-link 192.168.1.138 266
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.138 266
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.138 266
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
11 4106 ::/0 fe80::c2c1:c0ff:fe1a:d389
1 306 ::1/128 On-link
16 58 2001::/32 On-link
16 306 2001:0:4137:9e76:2806:324f:ba89:4f8/128
On-link
11 18 2002:4576:fb07::/64 On-link
11 266 2002:4576:fb07:0:598f:72f2:b4db:e8a2/128
On-link
11 266 2002:4576:fb07:0:7cf8:3dc:8c9b:df65/128
On-link
11 266 fe80::/64 On-link
16 306 fe80::/64 On-link
16 306 fe80::2806:324f:ba89:4f8/128
On-link
11 266 fe80::598f:72f2:b4db:e8a2/128
On-link
1 306 ff00::/8 On-link
16 306 ff00::/8 On-link
11 266 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 09 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 09 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (11/10/2012 11:30:31 PM) (Source: Application Error) (User: )
Description: Faulting application name: iexplore.exe, version: 9.0.8112.16450, time stamp: 0x503723f6
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc000041d
Fault offset: 0x07d77d28
Faulting process id: 0x87c
Faulting application start time: 0xiexplore.exe0
Faulting application path: iexplore.exe1
Faulting module path: iexplore.exe2
Report Id: iexplore.exe3

Error: (11/10/2012 11:30:28 PM) (Source: Application Error) (User: )
Description: Faulting application name: iexplore.exe, version: 9.0.8112.16450, time stamp: 0x503723f6
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x07d77d28
Faulting process id: 0x87c
Faulting application start time: 0xiexplore.exe0
Faulting application path: iexplore.exe1
Faulting module path: iexplore.exe2
Report Id: iexplore.exe3


System errors:
=============
Error: (11/10/2012 10:43:57 PM) (Source: DCOM) (User: )
Description: {995C996E-D918-4A8C-A302-45719A6F4EA7}


Microsoft Office Sessions:
=========================
Error: (11/10/2012 11:30:31 PM) (Source: Application Error)(User: )
Description: iexplore.exe9.0.8112.16450503723f6unknown0.0.0.000000000c000041d07d77d2887c01cdbfbd279e979eC:\Program Files (x86)\Internet Explorer\iexplore.exeunknown86aa82e0-2bb8-11e2-89f1-d4bed9ced782

Error: (11/10/2012 11:30:28 PM) (Source: Application Error)(User: )
Description: iexplore.exe9.0.8112.16450503723f6unknown0.0.0.000000000c000000507d77d2887c01cdbfbd279e979eC:\Program Files (x86)\Internet Explorer\iexplore.exeunknown84a859a5-2bb8-11e2-89f1-d4bed9ced782


=========================== Installed Programs ============================

µTorrent (Version: 3.2.0)
7-zip v9.20 (Version: v9.20)
Adobe AIR (Version: 2.6.0.19120)
Adobe Flash Player 11 ActiveX (Version: 11.4.402.287)
Adobe Reader X (10.1.4) MUI (Version: 10.1.4)
Apple Application Support (Version: 2.1.9)
Apple Mobile Device Support (Version: 5.2.0.6)
Apple Software Update (Version: 2.1.3.127)
avast! Internet Security (Version: 7.0.1474.0)
AVG Security Toolbar (Version: 13.2.0.5)
Babylon toolbar
BargainMatch version 1.0.4.0 (Version: 1.0.4.0)
Big Fish Games: Game Manager (Version: 3.0.1.60)
Blio (Version: 2.3.7140)
Bonjour (Version: 3.0.0.10)
Citrix Receiver (HDX Flash Redirection) (Version: 13.0.0.6685)
Citrix Receiver (Version: 13.0.0.6685)
Citrix Receiver Inside (Version: 3.0.0.56418)
Citrix Receiver(Aero) (Version: 13.0.0.6685)
Citrix Receiver(DV) (Version: 13.0.0.6685)
Citrix Receiver(USB) (Version: 13.0.0.6685)
Conexant HD Audio (Version: 8.50.4.0)
Consumer In-Home Service Agreement (Version: 2.0.0)
Cozi (Version: 1.0.6505.38692)
D3DX10 (Version: 15.4.2368.0902)
DefaultTab (Version: 1.2.8.0)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
Dell DataSafe Local Backup - Support Software (Version: 9.4.67)
Dell DataSafe Local Backup (Version: 9.4.67)
Dell DataSafe Online (Version: 2.1.19634)
Dell Digital Delivery (Version: 2.2.2000.0)
Dell Edoc Viewer (Version: 1.0.0)
Dell Getting Started Guide (Version: 1.00.0000)
Dell MusicStage (Version: 1.6.225.0)
Dell PhotoStage (Version: 1.5.0.130)
Dell Stage (Version: 1.7.209.0)
Dell Stage Remote (Version: 2.0.0.43)
Dell Support Center (Version: 3.1.5907.16)
Dell VideoStage (Version: 1.3.0.2214)
DirectX 9 Runtime (Version: 1.00.0000)
ESET Online Scanner v3
Google Chrome (Version: 22.0.1229.94)
Google Earth (Version: 6.2.2.6613)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.4.3230.2052)
Google Update Helper (Version: 1.3.21.123)
High-Definition Video Playback (Version: 7.3.10000.0.0)
HP Officejet 6600 Basic Device Software (Version: 25.0.619.0)
HP Officejet 6600 Help (Version: 140.0.2.2)
HP Officejet 6600 Product Improvement Study (Version: 25.0.619.0)
HP Update (Version: 5.003.000.004)
I.R.I.S. OCR (Version: 12.3.4.0)
iLivid (Version: 4.0.0.2208)
Intel® Processor Graphics (Version: 8.15.10.2291)
iTunes (Version: 10.6.3.25)
Java 7 Update 9 (Version: 7.0.90)
Java Auto Updater (Version: 2.1.9.0)
JavaFX 2.1.1 (Version: 2.1.1)
Junk Mail filter update (Version: 15.4.3502.0922)
Malwarebytes Anti-Malware version 1.65.1.1000 (Version: 1.65.1.1000)
Mesh Runtime (Version: 15.4.5722.2)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Home and Business 2010 (Version: 14.0.6029.1000)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.6029.1000)
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Single Image 2010 (Version: 14.0.6029.1000)
Microsoft Office Word MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (Version: 10.0.30319)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Nero 10 Movie ThemePack Basic (Version: 10.2.10200.0.0)
Nero Control Center 10 (Version: 10.6.12800.0.8)
Nero ControlCenter 10 Help (CHM) (Version: 10.2.10800)
Nero Core Components 10 (Version: 2.0.20500.9.16)
Nero Update (Version: 1.0.0018)
Online Plug-in (Version: 13.0.0.6685)
PhotoShowExpress (Version: 2.0.063)
Plants vs. Zombies
PlayReady PC Runtime x86 (Version: 1.3.0)
RBVirtualFolder64Inst (Version: 1.00.0000)
RegClean Pro (Version: 6.21)
Roxio Activation Module (Version: 1.0)
Roxio BackOnTrack (Version: 1.3.3)
Roxio Burn (Version: 1.8)
Roxio Creator Starter (Version: 1.0.439)
Roxio Creator Starter (Version: 12.1.77.0)
Roxio Creator Starter (Version: 5.0.0)
Roxio Express Labeler 3 (Version: 3.2.2)
Roxio File Backup (Version: 1.3.2)
Search-Results Toolbar (Version: 1.0.0.12)
Skype™ 5.10 (Version: 5.10.116)
Smart PC Cleaner v3.0 (Version: 3.0)
Sonic CinePlayer Decoder Pack (Version: 4.3.0)
SUPERAntiSpyware (Version: 5.5.1016)
SyncUP (Version: 1.12.11500.11.105)
SyncUP (Version: 10.2.16500)
Torch (Version: 2.0.0.1690)
TweakNow PowerPack 2012 (Version: 4.2.1.1)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
Update for Microsoft Office 2010 (KB2553065)
Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553270) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553272) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition
Update for Microsoft Office 2010 (KB2566458)
Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition
Update for Microsoft Office 2010 (KB2598289) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2589345) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2553248) 32-Bit Edition
Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition
Vid-Saver (Version: 1.23.151.151)
VisualBee for Microsoft PowerPoint (Version: V3.6)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3508.1109)
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3508.1109)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
Wizard101 (Version: 1.0.0)
Wizard101 Test (Version: 1.0.0)
Yahoo! Software Update
Yahoo! Toolbar
Yontoo 1.10.02 (Version: 1.10.02)
Zinio Reader 4 (Version: 4.2.4164)

========================= Memory info: ===================================

Percentage of memory in use: 68%
Total physical RAM: 1960.64 MB
Available physical RAM: 607.87 MB
Total Pagefile: 3921.29 MB
Available Pagefile: 2159.85 MB
Total Virtual: 4095.88 MB
Available Virtual: 3962.74 MB

========================= Partitions: =====================================

1 Drive c: (OS) (Fixed) (Total:450.91 GB) (Free:373.72 GB) NTFS

========================= Users: ========================================

User accounts for \\RAVEKIDS-PC

Administrator Guest Rave Kids


**** End of log ****

#8 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,199 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:30 AM

Posted 11 November 2012 - 03:43 PM

Howare the Popups now?
Please uninstall these items thru the Control Panel/

Yahoo! Toolbar
Yontoo 1.10.02 (Version: 1.10.02)
AVG Security Toolbar (Version: 13.2.0.5)
Babylon toolbar


Reboot the PC.

Also run TFC
Please download TFC (Temp File Cleaner) by Old Timer and save it to your desktop.
alternate download link
  • Save any unsaved work. TFC will close ALL open programs including your browser!
  • Double-click on TFC.exe to run it. If you are using Vista, right-click on the file and choose Run As Administrator.
  • Click the Start button to begin the cleaning process and let it run uninterrupted to completion.
  • TFC will clear out all temp folders for all user accounts (temp, IE temp, Java, FF, Opera, Chrome, Safari), including Administrator, All Users, LocalService, NetworkService, and any other accounts in the user folder.
  • Important! If TFC prompts you to reboot, please do so immediately. If not prompted, manually reboot the machine anyway to ensure a complete clean.
Note: It is normal for the computer to be slow to boot after running TFC cleaner the first time.

Edited by boopme, 11 November 2012 - 03:44 PM.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#9 Dignan

Dignan
  • Topic Starter

  • Members
  • 55 posts
  • OFFLINE
  •  
  • Local time:11:30 PM

Posted 11 November 2012 - 07:55 PM

OK all done. I could not seem to remove the Yahoo! toolbar, however.

I still seem to be getting the same pop-ups although the machine seems to be running smoothly now.

#10 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,199 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:30 AM

Posted 11 November 2012 - 08:46 PM

BTW apologies to PcCmdr as it appears we posted at the same time.

Lets run thess next..

Please download Rkill by Grinler and save it to your desktop.Link 1
Link 2
  • Double-click on the Rkill desktop icon to run the tool.
  • If using Vista, right-click on it and Run As Administrator.
  • A black DOS box will briefly flash and then disappear. This is normal and indicates the tool ran successfully.
  • If not, delete the file, then download and use the one provided in Link 2.
  • If it does not work, repeat the process and attempt to use one of the remaining links until the tool runs.
  • If the tool does not run from any of the links provided, please let me know.
Do not reboot the computer, you will need to run the application again.


Please download Malwarebytes Anti-Malware Posted Image and save it to your desktop.
  • Important!! When you save the mbam-setup file, rename it to something random (such as 123abc.exe) before beginning the download.
Malwarebytes may "make changes to your registry" as part of its disinfection routine. If using other security programs that detect registry changes (ie Spybot's Teatimer), they may interfere or alert you. Temporarily disable such programs or permit them to allow the changes.

  • Make sure you are connected to the Internet and double-click on the renamed file to install the application.
  • When the installation begins, follow the prompts and do not make any changes to default settings.
  • Malwarebytes will automatically start and you will be asked to update the program before performing a scan.
  • If an update is found, the program will automatically update itself. Press the OK button and continue.
  • If you cannot update Malwarebytes or use the Internet to download any files to the infected computer, manually update the database by following the instructions in FAQ Section A: 4. Issues.
  • Under the Scanner tab, make sure the "Perform Quick Scan" option is selected.
  • Click on the Scan button.
  • When the scan is complete, click OK, then click the Show Results button to see a list of any malware that was found.
  • Make sure that everything is checked and then click Remove Selected.
  • When removal is completed, a log report will open in Notepad.
  • The log is automatically saved and can be viewed by clicking the Logs tab.
  • Copy and paste the contents of that report in your next reply. Be sure to post the complete log to include the top portion which shows the database version and your operating system.
  • Exit Malwarebytes when done.
Note: If Malwarebytes encounters a file that is difficult to remove, you will be asked to reboot your computer so it can proceed with the disinfection process. If asked to restart the computer, please do so immediately. Failure to reboot normally will prevent Malwarebytes from removing all the malware.

-- Some types of malware will target Malwarebytes and other security tools to keep them from running properly. If that's the case, use Malwarebytes Chameleon and follow the onscreen instructions. The Chameleon folder can be accessed by opening the program folder for Malwarebytes Anti-Malware (normally C:\Program Files\Malwarebytes' Anti-Malware or C:\Program Files (x86)\Malwarebytes' Anti-Malware).


Lastly Run SAS:
Please download and scan with SUPERAntiSpyware Free
  • Double-click SUPERAntiSypware.exe and use the default settings for installation.
    For instructions with screenshots, please refer to the How to use SUPERAntiSpyware to scan and remove malware from your computer Guide.
  • An icon will be created on your desktop. Double-click that icon to launch the program.
  • If it will not start, go to Start > All Prgrams > SUPERAntiSpyware and click on Alternate Start.
  • If asked to update the program definitions, click "Yes". If not, update the definitions before scanning by selecting "Check for Updates". (If you encounter any problems while downloading the updates, manually download them from here. Double-click on the hyperlink for Download Installer and save SASDEFINITIONS.EXE to your desktop. Then double-click on SASDEFINITIONS.EXE to install the definitions.)
  • In the Main Menu, click the Preferences... button.
  • Click the "General and Startup" tab, and under Start-up Options, make sure "Start SUPERAntiSpyware when Windows starts" box is unchecked.
  • Click the "Scanning Control" tab, and under Scanner Options, make sure the following are checked (leave all other options as they are set):
    • Close browsers before scanning.
    • Scan for tracking cookies.
    • Terminate memory threats before quarantining.
  • Click the "Close" button to leave the Control Center screen.
  • Back on the main screen, under "Select Scan Type" check the box for Complete Scan.
  • If your computer is badly infected, be sure to check the box next to Enable Rescue Scan (Highly Infected Systems ONLY).
  • Click the Scan your computer... button.
  • After the scan is complete, a Scan Summary box will appear with potentially harmful items that were detected. Click "OK".
  • Make sure everything has a checkmark next to it and click "Next".
  • A notification will appear that "Quarantine and Removal is Complete". Click "OK" and then click the "Finish" button to return to the main menu.
  • If asked if you want to reboot, click "Yes" and reboot normally.

To retrieve the scan log after reboot, launch SUPERAntiSpyware again.
  • Click the View Scan Logs button at the bottom.
  • This will open the Scanner Logs Window.
  • Click on the log to highlight it and then click on View Selected Log to open it.
  • Copy and paste the scan log results in your next reply.
-- Some types of malware will disable security tools. If SUPERAntiSpyware will not install, please refer to these instructions for using the SUPERAntiSpyware Installer. If SUPERAntiSpyware is already installed but will not run, then follow the instructions for using RUNSAS.EXE to launch the program.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#11 Dignan

Dignan
  • Topic Starter

  • Members
  • 55 posts
  • OFFLINE
  •  
  • Local time:11:30 PM

Posted 11 November 2012 - 09:38 PM

Malwarebytes log:

Malwarebytes Anti-Malware 1.65.1.1000
www.malwarebytes.org

Database version: v2012.11.12.01

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Rave Kids :: RAVEKIDS-PC [administrator]

11/11/2012 9:35:26 PM
mbam-log-2012-11-11 (21-35-26).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 201151
Time elapsed: 2 minute(s), 19 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 13
HKCR\CLSID\{11111111-1111-1111-1111-110011341191} (PUP.GamePlayLab) -> Quarantined and deleted successfully.
HKCR\TypeLib\{44444444-4444-4444-4444-440044344491} (PUP.GamePlayLab) -> Quarantined and deleted successfully.
HKCR\Interface\{55555555-5555-5555-5555-550055345591} (PUP.GamePlayLab) -> Quarantined and deleted successfully.
HKCR\CrossriderApp0003491.BHO.1 (PUP.GamePlayLab) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110011341191} (PUP.GamePlayLab) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{11111111-1111-1111-1111-110011341191} (PUP.GamePlayLab) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{11111111-1111-1111-1111-110011341191} (PUP.GamePlayLab) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{11111111-1111-1111-1111-110011341191} (PUP.GamePlayLab) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110011341191} (PUP.GamePlayLab) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{C1ED9DA0-AFD0-4B90-AC6A-D3874F591014} (PUP.Datamngr) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{C1ED9DA0-AFD0-4B90-AC6A-D3874F591014} (PUP.Datamngr) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{f34c9277-6577-4dff-b2d7-7d58092f272f} (PUP.Datamngr) -> Quarantined and deleted successfully.
HKCR\CrossriderApp0003491.BHO (PUP.GamePlayLab) -> Quarantined and deleted successfully.

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

#12 Dignan

Dignan
  • Topic Starter

  • Members
  • 55 posts
  • OFFLINE
  •  
  • Local time:11:30 PM

Posted 11 November 2012 - 10:18 PM

SAS log:

SUPERAntiSpyware Scan Log
http://www.superantispyware.com

Generated 11/11/2012 at 10:12 PM

Application Version : 5.6.1014

Core Rules Database Version : 9571
Trace Rules Database Version: 7383

Scan type : Complete Scan
Total Scan Time : 00:28:06

Operating System Information
Windows 7 Home Premium 64-bit, Service Pack 1 (Build 6.01.7601)
UAC On - Limited User

Memory items scanned : 531
Memory threats detected : 0
Registry items scanned : 72470
Registry threats detected : 0
File items scanned : 47318
File threats detected : 57

Adware.Tracking Cookie
C:\Users\Rave Kids\AppData\Roaming\Microsoft\Windows\Cookies\VE53HQK2.txt [ /ads.bleepingcomputer.com ]
C:\Users\Rave Kids\AppData\Roaming\Microsoft\Windows\Cookies\0VNX81CZ.txt [ /ad.yieldmanager.com ]
C:\Users\Rave Kids\AppData\Roaming\Microsoft\Windows\Cookies\ECV4JXC5.txt [ /ru4.com ]
C:\Users\Rave Kids\AppData\Roaming\Microsoft\Windows\Cookies\OHDRJAZA.txt [ /kontera.com ]
C:\Users\Rave Kids\AppData\Roaming\Microsoft\Windows\Cookies\H61ABLVB.txt [ /apmebf.com ]
C:\Users\Rave Kids\AppData\Roaming\Microsoft\Windows\Cookies\4KE6R4T3.txt [ /doubleclick.net ]
C:\Users\Rave Kids\AppData\Roaming\Microsoft\Windows\Cookies\ADJYTGCW.txt [ /lucidmedia.com ]
C:\Users\Rave Kids\AppData\Roaming\Microsoft\Windows\Cookies\1N3RB8KF.txt [ /atdmt.com ]
C:\Users\Rave Kids\AppData\Roaming\Microsoft\Windows\Cookies\SLDID3RC.txt [ /invitemedia.com ]
C:\Users\Rave Kids\AppData\Roaming\Microsoft\Windows\Cookies\GKSQX42F.txt [ /mediaplex.com ]
C:\USERS\RAVE KIDS\AppData\Roaming\Microsoft\Windows\Cookies\Low\E1FO7T6J.txt [ Cookie:rave kids@pointroll.com/ ]
C:\USERS\RAVE KIDS\AppData\Roaming\Microsoft\Windows\Cookies\Low\WML9GJW6.txt [ Cookie:rave kids@clickbooth.com/ ]
C:\USERS\RAVE KIDS\AppData\Roaming\Microsoft\Windows\Cookies\Low\RNKTDIAN.txt [ Cookie:rave kids@questionmarket.com/ ]
C:\USERS\RAVE KIDS\AppData\Roaming\Microsoft\Windows\Cookies\Low\9T3MIDDB.txt [ Cookie:rave kids@tribalfusion.com/ ]
C:\USERS\RAVE KIDS\AppData\Roaming\Microsoft\Windows\Cookies\Low\FWSFZQDS.txt [ Cookie:rave kids@a.intentmedia.net/ ]
C:\USERS\RAVE KIDS\AppData\Roaming\Microsoft\Windows\Cookies\Low\EF3IY0S6.txt [ Cookie:rave kids@tacoda.net/ ]
C:\USERS\RAVE KIDS\AppData\Roaming\Microsoft\Windows\Cookies\Low\5Q4DHS4Y.txt [ Cookie:rave kids@ru4.com/ ]
C:\USERS\RAVE KIDS\AppData\Roaming\Microsoft\Windows\Cookies\Low\QQHRAYHT.txt [ Cookie:rave kids@interclick.com/ ]
C:\USERS\RAVE KIDS\AppData\Roaming\Microsoft\Windows\Cookies\Low\DIIXSI9G.txt [ Cookie:rave kids@www.burstnet.com/ ]
C:\USERS\RAVE KIDS\AppData\Roaming\Microsoft\Windows\Cookies\Low\TYP3532M.txt [ Cookie:rave kids@tacoda.at.atwola.com/ ]
C:\USERS\RAVE KIDS\AppData\Roaming\Microsoft\Windows\Cookies\Low\9MPSL0XW.txt [ Cookie:rave kids@adtechus.com/ ]
C:\USERS\RAVE KIDS\AppData\Roaming\Microsoft\Windows\Cookies\Low\3AJTPFDZ.txt [ Cookie:rave kids@apmebf.com/ ]
C:\USERS\RAVE KIDS\AppData\Roaming\Microsoft\Windows\Cookies\Low\FVQM3XA4.txt [ Cookie:rave kids@at.atwola.com/ ]
C:\USERS\RAVE KIDS\AppData\Roaming\Microsoft\Windows\Cookies\Low\OQTH8TEN.txt [ Cookie:rave kids@a1.interclick.com/ ]
C:\USERS\RAVE KIDS\AppData\Roaming\Microsoft\Windows\Cookies\Low\29Z3F5YM.txt [ Cookie:rave kids@burstnet.com/ ]
C:\USERS\RAVE KIDS\AppData\Roaming\Microsoft\Windows\Cookies\Low\ZFPOKEOX.txt [ Cookie:rave kids@collective-media.net/ ]
C:\USERS\RAVE KIDS\AppData\Roaming\Microsoft\Windows\Cookies\Low\C08U3NX9.txt [ Cookie:rave kids@specificclick.net/ ]
C:\USERS\RAVE KIDS\AppData\Roaming\Microsoft\Windows\Cookies\Low\DJ3G5WEM.txt [ Cookie:rave kids@eset.122.2o7.net/ ]
C:\USERS\RAVE KIDS\AppData\Roaming\Microsoft\Windows\Cookies\Low\M60VH1BM.txt [ Cookie:rave kids@mediaservices-d.openxenterprise.com/ ]
C:\USERS\RAVE KIDS\AppData\Roaming\Microsoft\Windows\Cookies\Low\7QSU0QC4.txt [ Cookie:rave kids@imrworldwide.com/cgi-bin ]
C:\USERS\RAVE KIDS\AppData\Roaming\Microsoft\Windows\Cookies\Low\R9DXMOAB.txt [ Cookie:rave kids@serving-sys.com/ ]
C:\USERS\RAVE KIDS\AppData\Roaming\Microsoft\Windows\Cookies\Low\BJR3XANG.txt [ Cookie:rave kids@lucidmedia.com/ ]
C:\USERS\RAVE KIDS\AppData\Roaming\Microsoft\Windows\Cookies\Low\P8I7Q7W3.txt [ Cookie:rave kids@atdmt.com/ ]
C:\USERS\RAVE KIDS\AppData\Roaming\Microsoft\Windows\Cookies\Low\0WA2U0MA.txt [ Cookie:rave kids@intermundomedia.com/ ]
C:\USERS\RAVE KIDS\AppData\Roaming\Microsoft\Windows\Cookies\Low\7TODUD5J.txt [ Cookie:rave kids@www.googleadservices.com/pagead/conversion/1026649162/ ]
C:\USERS\RAVE KIDS\AppData\Roaming\Microsoft\Windows\Cookies\Low\692JW3DD.txt [ Cookie:rave kids@feed.validclick.com/ ]
C:\USERS\RAVE KIDS\AppData\Roaming\Microsoft\Windows\Cookies\Low\XETY2WCJ.txt [ Cookie:rave kids@invitemedia.com/ ]
C:\USERS\RAVE KIDS\AppData\Roaming\Microsoft\Windows\Cookies\Low\AJ1QJ6GS.txt [ Cookie:rave kids@media6degrees.com/ ]
C:\USERS\RAVE KIDS\AppData\Roaming\Microsoft\Windows\Cookies\Low\YDJ369CB.txt [ Cookie:rave kids@2o7.net/ ]
C:\USERS\RAVE KIDS\AppData\Roaming\Microsoft\Windows\Cookies\Low\AVKVOZOT.txt [ Cookie:rave kids@pulse-analytics-beacon.reutersmedia.net/ ]
C:\USERS\RAVE KIDS\AppData\Roaming\Microsoft\Windows\Cookies\Low\FPM03JI9.txt [ Cookie:rave kids@zedo.com/ ]
C:\USERS\RAVE KIDS\AppData\Roaming\Microsoft\Windows\Cookies\Low\8GHMGF3I.txt [ Cookie:rave kids@legolas-media.com/ ]
C:\USERS\RAVE KIDS\AppData\Roaming\Microsoft\Windows\Cookies\Low\2LRUMIKB.txt [ Cookie:rave kids@statcounter.com/ ]
C:\USERS\RAVE KIDS\AppData\Roaming\Microsoft\Windows\Cookies\Low\N9Z0EHW8.txt [ Cookie:rave kids@advertising.com/ ]
C:\USERS\RAVE KIDS\AppData\Roaming\Microsoft\Windows\Cookies\Low\SWK29JR2.txt [ Cookie:rave kids@pro-market.net/ ]
C:\USERS\RAVE KIDS\AppData\Roaming\Microsoft\Windows\Cookies\Low\N24I8Z7N.txt [ Cookie:rave kids@www.googleadservices.com/pagead/conversion/1010380645/ ]
C:\USERS\RAVE KIDS\AppData\Roaming\Microsoft\Windows\Cookies\Low\JKJN4FBN.txt [ Cookie:rave kids@allbritton.122.2o7.net/ ]
C:\USERS\RAVE KIDS\AppData\Roaming\Microsoft\Windows\Cookies\Low\72PMP95J.txt [ Cookie:rave kids@clkads.com/adServe ]
C:\USERS\RAVE KIDS\AppData\Roaming\Microsoft\Windows\Cookies\Low\8EPBZI8K.txt [ Cookie:rave kids@www.googleadservices.com/pagead/conversion/1036980325/ ]
C:\USERS\RAVE KIDS\Cookies\ECV4JXC5.txt [ Cookie:rave kids@ru4.com/ ]
C:\USERS\RAVE KIDS\Cookies\H61ABLVB.txt [ Cookie:rave kids@apmebf.com/ ]
C:\USERS\RAVE KIDS\Cookies\ADJYTGCW.txt [ Cookie:rave kids@lucidmedia.com/ ]
C:\USERS\RAVE KIDS\Cookies\1N3RB8KF.txt [ Cookie:rave kids@atdmt.com/ ]
C:\USERS\RAVE KIDS\Cookies\SLDID3RC.txt [ Cookie:rave kids@invitemedia.com/ ]

PUP.BabylonToolbar
C:\PROGRAM FILES (X86)\BABYLONTOOLBAR\BABYLONTOOLBAR\1.8.3.8\BABYLONTOOLBARENG.DLL
C:\PROGRAM FILES (X86)\BABYLONTOOLBAR\BABYLONTOOLBAR\1.8.3.8\BABYLONTOOLBARTLBR.DLL
C:\PROGRAM FILES (X86)\BABYLONTOOLBAR\BABYLONTOOLBAR\1.8.3.8\BH\BABYLONTOOLBAR.DLL

#13 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,199 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:30 AM

Posted 11 November 2012 - 10:53 PM

Looks like this Babylon was persistant. Redirects stopped?

If not we'll need to get a deeper look. Please follow this Preparation Guide and post in a new topic.
If Gmer won't run,skip it.

Let me know if all went well.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#14 Dignan

Dignan
  • Topic Starter

  • Members
  • 55 posts
  • OFFLINE
  •  
  • Local time:11:30 PM

Posted 12 November 2012 - 07:41 AM

Thanks. Still getting pop-ups. I will follow your directions. I appreciate your assistance.

#15 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,199 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:30 AM

Posted 12 November 2012 - 04:39 PM

Youi're welcome! We'll get this.

New topic
http://www.bleepingcomputer.com/forums/user-139967/dignan/

Now that your log is properly posted, you should NOT make further changes to your computer (install/uninstall programs, use special fix tools, delete files, edit the registry, etc) unless advised by a Malware Removal Team member, nor should you continue to ask for help elsewhere. Doing so can result in system changes which may not show it the log you already posted. Further, any modifications you make on your own may cause confusion for the helper assisting you and could complicate the malware removal process which would extend the time it takes to clean your computer.

From this point on the Malware Removal Team should be the only members that you take advice from, until they have verified your log as clean.

Please be patient. It may take a while to get a response because the Malware Removal Team members are very busy working logs posted before yours. They are volunteers who will help you out as soon as possible. Once you have made your post and are waiting, please DO NOT make another reply until it has been responded to by a member of the Malware Removal Team. Generally the staff checks the forum for postings that have 0 replies as this makes it easier for them to identify those who have not been helped. If you post another response there will be 1 reply. A team member, looking for a new log to work may assume another MRL Team member is already assisting you and not open the thread to respond.

The current wait time is 1 - 2 days and ALL logs are answered.

If HelpBot replies to your topic, PLEASE follow Step One so it will report your topic to the team members.

To avoid confusion, I am closing this topic.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users