Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Privitize VPN


  • Please log in to reply
8 replies to this topic

#1 Kimaran

Kimaran

  • Members
  • 38 posts
  • OFFLINE
  •  
  • Local time:05:49 PM

Posted 27 December 2012 - 06:56 PM

I downloaded Privitize VPN and it gave me a few viruses/malware on my computer. I tried to get rid of it, but It's still there. I can't connect to the internet with any of my games or will my steam,skype, or lolrecorder startup. When I tried opening malwarebytes it has an error 372 about vbalgrid. Also, my adobe flash player has been disabled or uninstalled from everything and when I try to reinstall it just freezes. Please help. I'm on Windows Vista.
I get errors when trying to install certain programs such as super antispyware. I also get a blue screen when I run rogue killer.
I also cannot copy and paste things.

Edited by Kimaran, 28 December 2012 - 01:11 AM.


BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,331 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:08:49 PM

Posted 13 July 2013 - 07:39 PM

Is your error... Failed to load 'vbalGrid' from vbalsgrid6.ocx.

 

Can you run these next.

If needed to complete the scans use Safe Mode with Networking as a boot option.

Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:

  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.

Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
Note: When using "Reset FF Proxy Settings" option Firefox should be closed.

 

Please Download TDSSkiller
Launch it.
Click on change parameters-Select TDLFS file system
Click on "Scan".
Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results.

 

Please download AdwCleaner by Xplode onto your desktop.
Close all open programs and internet browsers.
Double click on adwcleaner.exe to run the tool.
Click on Delete.
Confirm each time with Ok.
You will be prompted to restart your computer. A text file will open after the restart.
Please post the contents of that logfile with your next reply.
You can find the logfile at C:\AdwCleaner[S1].txt as well.

 

Last run ESET.

  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
  • Scan potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE:Sometimes if ESET finds no infections it will not create a log.


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 Kimaran

Kimaran
  • Topic Starter

  • Members
  • 38 posts
  • OFFLINE
  •  
  • Local time:05:49 PM

Posted 13 August 2013 - 08:28 AM

MiniToolBox by Farbar  Version: 13-07-2013
Ran by Maranon (administrator) on 12-08-2013 at 21:44:03
Running from "C:\Users\Maranon\Desktop"
Windows Vista ™ Home Premium Service Pack 2 (X64)
Boot Mode: Network
***************************************************************************
 
========================= Flush DNS: ===================================
 
Windows IP Configuration
 
Successfully flushed the DNS Resolver Cache.
 
========================= IE Proxy Settings: ============================== 
 
Proxy is not enabled.
No Proxy Server is set.
 
"Reset IE Proxy Settings": IE Proxy Settings were reset.
 
========================= FF Proxy Settings: ============================== 
 
 
"Reset FF Proxy Settings": Firefox Proxy settings were reset.
 
========================= Hosts content: =================================
 
::1             localhost
 
127.0.0.1       localhost
 
========================= IP Configuration: ================================
 
The following command was not found: int ip dump.
 
Windows IP Configuration
 
   Host Name . . . . . . . . . . . . : Maranon-PC
   Primary Dns Suffix  . . . . . . . : 
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : sd.cox.net
 
Ethernet adapter Local Area Connection:
 
   Connection-specific DNS Suffix  . : sd.cox.net
   Description . . . . . . . . . . . : NVIDIA nForce 10/100/1000 Mbps Networking Controller 
   Physical Address. . . . . . . . . : 00-1D-72-A1-47-2A
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : fddf:13b2:c7fd:0:4983:e7f5:f14f:b9c1(Deprecated) 
   Temporary IPv6 Address. . . . . . : fddf:13b2:c7fd:0:a413:9b21:2337:e27c(Deprecated) 
   Link-local IPv6 Address . . . . . : fe80::4983:e7f5:f14f:b9c1%10(Preferred) 
   IPv4 Address. . . . . . . . . . . : 192.168.1.115(Preferred) 
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Monday, August 12, 2013 8:04:10 PM
   Lease Expires . . . . . . . . . . : Tuesday, August 13, 2013 8:04:09 PM
   Default Gateway . . . . . . . . . : 192.168.1.1
   DHCP Server . . . . . . . . . . . : 192.168.1.1
   DHCPv6 IAID . . . . . . . . . . . : 234888562
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-0C-C1-09-35-00-1D-72-A1-47-2A
   DNS Servers . . . . . . . . . . . : 68.105.28.12
                                       68.105.29.12
                                       68.105.28.11
   NetBIOS over Tcpip. . . . . . . . : Enabled
 
Tunnel adapter Local Area Connection* 6:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : isatap.sd.cox.net
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter Local Area Connection* 7:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 02-00-54-55-4E-01
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter Local Area Connection* 12:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : 6TO4 Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
Server:  cdns2.cox.net
Address:  68.105.28.12
 
Name:    google.com
Addresses:  2607:f8b0:4007:802::1009
 74.125.239.9
 74.125.239.14
 74.125.239.0
 74.125.239.1
 74.125.239.2
 74.125.239.3
 74.125.239.4
 74.125.239.5
 74.125.239.6
 74.125.239.7
 74.125.239.8
 
 
 
Pinging google.com [74.125.224.71] with 32 bytes of data:
 
Reply from 74.125.224.71: bytes=32 time=14ms TTL=55
 
Reply from 74.125.224.71: bytes=32 time=13ms TTL=55
 
 
 
Ping statistics for 74.125.224.71:
 
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
 
Approximate round trip times in milli-seconds:
 
    Minimum = 13ms, Maximum = 14ms, Average = 13ms
 
Server:  cdns2.cox.net
Address:  68.105.28.12
 
Name:    yahoo.com
Addresses:  98.138.253.109
 98.139.183.24
 206.190.36.45
 
 
 
Pinging yahoo.com [206.190.36.45] with 32 bytes of data:
 
Reply from 206.190.36.45: bytes=32 time=82ms TTL=51
 
Reply from 206.190.36.45: bytes=32 time=58ms TTL=51
 
 
 
Ping statistics for 206.190.36.45:
 
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
 
Approximate round trip times in milli-seconds:
 
    Minimum = 58ms, Maximum = 82ms, Average = 70ms
 
 
 
Pinging 127.0.0.1 with 32 bytes of data:
 
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
 
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
 
 
 
Ping statistics for 127.0.0.1:
 
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
 
Approximate round trip times in milli-seconds:
 
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
 
===========================================================================
Interface List
 10 ...00 1d 72 a1 47 2a ...... NVIDIA nForce 10/100/1000 Mbps Networking Controller 
  1 ........................... Software Loopback Interface 1
 15 ...00 00 00 00 00 00 00 e0  isatap.sd.cox.net
 11 ...02 00 54 55 4e 01 ...... Teredo Tunneling Pseudo-Interface
 13 ...00 00 00 00 00 00 00 e0  6TO4 Adapter
===========================================================================
 
IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.1.1    192.168.1.115     20
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.1.0    255.255.255.0         On-link     192.168.1.115    276
    192.168.1.115  255.255.255.255         On-link     192.168.1.115    276
    192.168.1.255  255.255.255.255         On-link     192.168.1.115    276
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link     192.168.1.115    276
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link     192.168.1.115    276
===========================================================================
Persistent Routes:
  None
 
IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
  1    306 ::1/128                  On-link
 10     28 fddf:13b2:c7fd::/64      On-link
 10    276 fddf:13b2:c7fd:0:4983:e7f5:f14f:b9c1/128
                                    On-link
 10    276 fddf:13b2:c7fd:0:a413:9b21:2337:e27c/128
                                    On-link
 10    276 fe80::/64                On-link
 10    276 fe80::4983:e7f5:f14f:b9c1/128
                                    On-link
  1    306 ff00::/8                 On-link
 10    276 ff00::/8                 On-link
===========================================================================
Persistent Routes:
 If Metric Network Destination      Gateway
  0 4294967295 2620:9b::/96             On-link
  0   9000 ::/0                     2620:9b::500:1
===========================================================================
========================= Winsock entries =====================================
 
Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [48128] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [50176] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 05 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog5 06 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog5 07 C:\Windows\SysWOW64\winrnr.dll [19968] (Microsoft Corporation)
Catalog9 01 C:\Windows\SysWOW64\nvLsp.dll [163840] (NVIDIA)
Catalog9 02 C:\Windows\SysWOW64\nvLsp.dll [163840] (NVIDIA)
Catalog9 03 C:\Windows\SysWOW64\nvLsp.dll [163840] (NVIDIA)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 12 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 13 C:\Windows\SysWOW64\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 14 C:\Windows\SysWOW64\nvLsp.dll [163840] (NVIDIA)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [61440] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [62976] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [78848] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [78848] (Microsoft Corporation)
x64-Catalog5 05 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog5 06 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\winrnr.dll [27648] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\nvLsp64.dll [189440] (NVIDIA)
x64-Catalog9 02 C:\Windows\System32\nvLsp64.dll [189440] (NVIDIA)
x64-Catalog9 03 C:\Windows\System32\nvLsp64.dll [189440] (NVIDIA)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 12 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 13 C:\Windows\System32\mswsock.dll [304128] (Microsoft Corporation)
x64-Catalog9 14 C:\Windows\System32\nvLsp64.dll [189440] (NVIDIA)
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (08/12/2013 08:05:25 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (08/12/2013 08:04:31 PM) (Source: EventSystem) (User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c
 
Error: (04/21/2013 06:52:50 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (04/21/2013 06:51:49 PM) (Source: EventSystem) (User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c
 
Error: (04/21/2013 06:49:09 PM) (Source: EventSystem) (User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c
 
Error: (04/21/2013 06:31:00 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (04/21/2013 06:30:01 PM) (Source: EventSystem) (User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c
 
Error: (01/13/2013 08:44:20 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (01/13/2013 08:43:21 PM) (Source: EventSystem) (User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c
 
Error: (12/29/2012 06:00:01 PM) (Source: EventSystem) (User: )
Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c
 
 
System errors:
=============
Error: (08/12/2013 08:23:22 PM) (Source: DCOM) (User: )
Description: 1084NVSvc{DCAB0989-1301-4319-BE5F-ADE89F88581C}
 
Error: (08/12/2013 08:05:52 PM) (Source: Microsoft Antimalware) (User: )
Description: %NT AUTHORITY60 has encountered an error trying to update the engine.
 
New Engine Version: 
 
Previous Engine Version: 2.1.8904.0
 
Engine Type: %NT AUTHORITY604
 
User: NT AUTHORITY\NETWORK SERVICE
 
Error Code: %NT AUTHORITY601
 
Error description: %NT AUTHORITY602
 
Error: (08/12/2013 08:05:52 PM) (Source: Microsoft Antimalware) (User: )
Description: %NT AUTHORITY60 has encountered an error trying to update signatures.
 
New Signature Version: 
 
Previous Signature Version: 18.36.0.0
 
Update Source: %NT AUTHORITY15
 
Update Stage: 4.1.0522.00
 
Source Path: 4.1.0522.01
 
Signature Type: %NT AUTHORITY602
 
Update Type: %NT AUTHORITY604
 
User: NT AUTHORITY\NETWORK SERVICE
 
Current Engine Version: %NT AUTHORITY605
 
Previous Engine Version: %NT AUTHORITY606
 
Error code: %NT AUTHORITY607
 
Error description: %NT AUTHORITY608
 
Error: (08/12/2013 08:05:26 PM) (Source: Service Control Manager) (User: )
Description: i8042prt
MpFilter
spldr
Wanarpv6
 
Error: (08/12/2013 08:05:26 PM) (Source: Service Control Manager) (User: )
Description: Computer BrowserServer%%1068
 
Error: (08/12/2013 08:04:36 PM) (Source: DCOM) (User: )
Description: 1084WSearch{9E175B6D-F52A-11D8-B9A5-505054503030}
 
Error: (08/12/2013 08:04:31 PM) (Source: DCOM) (User: )
Description: 1084EventSystem{1BE1F766-5536-11D1-B726-00C04FB926AF}
 
Error: (08/12/2013 08:04:23 PM) (Source: Microsoft Antimalware) (User: )
Description: %NT AUTHORITY60 has encountered an error trying to update signatures.
 
New Signature Version: 
 
Previous Signature Version: 1.141.3843.0
 
Update Source: %NT AUTHORITY59
 
Update Stage: 4.1.0522.00
 
Source Path: 4.1.0522.01
 
Signature Type: %NT AUTHORITY602
 
Update Type: %NT AUTHORITY604
 
User: NT AUTHORITY\SYSTEM
 
Current Engine Version: %NT AUTHORITY605
 
Previous Engine Version: %NT AUTHORITY606
 
Error code: %NT AUTHORITY607
 
Error description: %NT AUTHORITY608
 
Error: (08/12/2013 08:04:23 PM) (Source: DCOM) (User: )
Description: 1084wuauserv{E60687F7-01A1-40AA-86AC-DB1CBF673334}
 
Error: (08/12/2013 08:04:23 PM) (Source: DCOM) (User: )
Description: 1084ShellHWDetection{DD522ACC-F821-461A-A407-50B198B896DC}
 
 
Microsoft Office Sessions:
=========================
 
CodeIntegrity Errors:
===================================
  Date: 2012-12-26 17:52:20.112
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hitmanpro37.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2012-12-26 17:52:19.488
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hitmanpro37.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2012-12-26 17:52:19.035
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hitmanpro37.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2012-12-26 17:52:18.645
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hitmanpro37.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2012-12-24 17:54:53.077
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hitmanpro37.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2012-12-24 17:54:52.677
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hitmanpro37.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2012-12-24 15:30:24.326
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hitmanpro37.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2012-12-24 15:30:23.899
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hitmanpro37.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2012-12-24 14:25:03.882
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hitmanpro37.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2012-12-24 14:25:03.355
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\hitmanpro37.sys because the set of per-page image hashes could not be found on the system.
 
 
=========================== Installed Programs ============================
 
Agere Systems PCI-SV92EX Soft Modem
Akamai NetSession Interface
Bonjour (Version: 3.0.0.10)
Bullzip PDF Printer 7.2.0.1304 (Version: 7.2.0.1304)
Canon iP1800 series
Canon iP2700 series Printer Driver
Canon My Printer
CCleaner (Version: 3.26)
Google Chrome (Version: 23.0.1271.97)
HitmanPro 3.7 (Version: 3.7.0.185)
LSI PCI-SV92EX Soft Modem (Version: 2.2.100)
Macro Recorder (Version: 5.0.0.158)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Security Client (Version: 4.1.0522.0)
Microsoft Security Essentials (Version: 4.1.522.0)
Microsoft Xbox 360 Accessories 1.1 (Version: 1.10.123.0)
NVIDIA 3D Vision Controller Driver 296.10 (Version: 296.10)
NVIDIA 3D Vision Driver 306.97 (Version: 306.97)
NVIDIA Control Panel 306.97 (Version: 306.97)
NVIDIA Drivers (Version: 1.10.62.40)
NVIDIA ForceWare Network Access Manager (Version: 1.00.6776)
NVIDIA Graphics Driver 306.97 (Version: 306.97)
NVIDIA HD Audio Driver 1.3.12.0 (Version: 1.3.12.0)
NVIDIA Install Application (Version: 2.1002.85.551)
NVIDIA PhysX System Software 9.12.0213 (Version: 9.12.0213)
NVIDIA Update 1.10.8 (Version: 1.10.8)
NVIDIA Update Components (Version: 1.10.8)
Spotify (Version: 0.8.1.76.g4773b858)
Unity Web Player (Version: )
Windows Driver Package - PrimeSense (psdrv3) PrimeSensor  (07/13/2010 3.1.0.4) (Version: 07/13/2010 3.1.0.4)
Yahoo! BrowserPlus 2.9.8
 
========================= Memory info: ===================================
 
Percentage of memory in use: 27%
Total physical RAM: 3837.62 MB
Available physical RAM: 2791.06 MB
Total Pagefile: 7861.77 MB
Available Pagefile: 7065.46 MB
Total Virtual: 4095.88 MB
Available Virtual: 4008.41 MB
 
========================= Partitions: =====================================
 
1 Drive c: (ACER) (Fixed) (Total:139.82 GB) (Free:27.06 GB) NTFS
2 Drive d: (DATA) (Fixed) (Total:139.77 GB) (Free:91.08 GB) NTFS
3 Drive e: (USB DISK) (Removable) (Total:7.2 GB) (Free:7.2 GB) FAT32
 
========================= Users: ========================================
 
User accounts for \\MARANON-PC
 
Administrator            gabe                     Guest                    
Maranon                  UpdatusUser              
 
 
**** End of log ****
 

 

 

 

 

21:39:41.0360 1844  TDSS rootkit removing tool 2.8.18.0 Jun 10 2013 21:44:19
21:39:41.0969 1844  ============================================================
21:39:41.0969 1844  Current date / time: 2013/08/12 21:39:41.0969
21:39:41.0969 1844  SystemInfo:
21:39:41.0969 1844  
21:39:41.0969 1844  OS Version: 6.0.6002 ServicePack: 2.0
21:39:41.0969 1844  Product type: Workstation
21:39:41.0984 1844  ComputerName: MARANON-PC
21:39:41.0984 1844  UserName: Maranon
21:39:41.0984 1844  Windows directory: C:\Windows
21:39:41.0984 1844  System windows directory: C:\Windows
21:39:41.0984 1844  Running under WOW64
21:39:41.0984 1844  Processor architecture: Intel x64
21:39:41.0984 1844  Number of processors: 2
21:39:41.0984 1844  Page size: 0x1000
21:39:41.0984 1844  Boot type: Safe boot with network
21:39:41.0984 1844  ============================================================
21:39:42.0343 1844  Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
21:39:42.0749 1844  Drive \Device\Harddisk2\DR2 - Size: 0x1CD940000 (7.21 Gb), SectorSize: 0x200, Cylinders: 0x3AD, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
21:39:42.0764 1844  ============================================================
21:39:42.0764 1844  \Device\Harddisk0\DR0:
21:39:42.0764 1844  MBR partitions:
21:39:42.0764 1844  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2500800, BlocksNum 0x117A5800
21:39:42.0764 1844  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x13CA6000, BlocksNum 0x11788000
21:39:42.0764 1844  \Device\Harddisk2\DR2:
21:39:42.0764 1844  MBR partitions:
21:39:42.0764 1844  \Device\Harddisk2\DR2\Partition1: MBR, Type 0xC, StartLBA 0x1F80, BlocksNum 0xE6AA80
21:39:42.0764 1844  ============================================================
21:39:42.0796 1844  C: <-> \Device\Harddisk0\DR0\Partition1
21:39:42.0858 1844  D: <-> \Device\Harddisk0\DR0\Partition2
21:39:42.0858 1844  ============================================================
21:39:42.0858 1844  Initialize success
21:39:42.0858 1844  ============================================================
21:39:43.0778 1980  ============================================================
21:39:43.0778 1980  Scan started
21:39:43.0778 1980  Mode: Manual; 
21:39:43.0778 1980  ============================================================
21:39:44.0044 1980  ================ Scan system memory ========================
21:39:44.0044 1980  System memory - ok
21:39:44.0044 1980  ================ Scan services =============================
21:39:44.0184 1980  [ 517D30057C726C797764BFD70A55D82A ] Acer HomeMedia Connect Service C:\Program Files (x86)\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.exe
21:39:44.0200 1980  Acer HomeMedia Connect Service - ok
21:39:44.0933 1980  [ 1965AAFFAB07E3FB03C77F81BEBA3547 ] ACPI            C:\Windows\system32\drivers\acpi.sys
21:39:44.0948 1980  ACPI - ok
21:39:45.0042 1980  [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
21:39:45.0042 1980  AdobeARMservice - ok
21:39:45.0167 1980  [ 95CE557D16A75606CCC2D7F3B0B0BCCB ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
21:39:45.0167 1980  AdobeFlashPlayerUpdateSvc - ok
21:39:45.0214 1980  [ F14215E37CF124104575073F782111D2 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
21:39:45.0229 1980  adp94xx - ok
21:39:45.0260 1980  [ 7D05A75E3066861A6610F7EE04FF085C ] adpahci         C:\Windows\system32\drivers\adpahci.sys
21:39:45.0260 1980  adpahci - ok
21:39:45.0292 1980  [ 820A201FE08A0C345B3BEDBC30E1A77C ] adpu160m        C:\Windows\system32\drivers\adpu160m.sys
21:39:45.0292 1980  adpu160m - ok
21:39:45.0307 1980  [ 9B4AB6854559DC168FBB4C24FC52E794 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
21:39:45.0307 1980  adpu320 - ok
21:39:45.0338 1980  [ 0F421175574BFE0BF2F4D8E910A253BB ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
21:39:45.0338 1980  AeLookupSvc - ok
21:39:45.0401 1980  [ C4F6CE6087760AD70960C9EB130E7943 ] AFD             C:\Windows\system32\drivers\afd.sys
21:39:45.0401 1980  AFD - ok
21:39:45.0432 1980  [ 8B0D8B5BAFD4C9D57B41426BC68B32F9 ] AgereModemAudio C:\Windows\system32\agr64svc.exe
21:39:45.0432 1980  AgereModemAudio - ok
21:39:45.0479 1980  [ DDF52C4C92D831A4CDB7788B37585E36 ] AgereSoftModem  C:\Windows\system32\DRIVERS\agrsm64.sys
21:39:45.0494 1980  AgereSoftModem - ok
21:39:45.0526 1980  [ F6F6793B7F17B550ECFDBD3B229173F7 ] agp440          C:\Windows\system32\drivers\agp440.sys
21:39:45.0526 1980  agp440 - ok
21:39:45.0557 1980  [ 222CB641B4B8A1D1126F8033F9FD6A00 ] aic78xx         C:\Windows\system32\drivers\djsvs.sys
21:39:45.0557 1980  aic78xx - ok
21:39:45.0588 1980  [ 5922F4F59B7868F3D74BBBBEB7B825A3 ] ALG             C:\Windows\System32\alg.exe
21:39:45.0588 1980  ALG - ok
21:39:45.0604 1980  [ 157D0898D4B73F075CE9FA26B482DF98 ] aliide          C:\Windows\system32\drivers\aliide.sys
21:39:45.0604 1980  aliide - ok
21:39:45.0619 1980  [ 970FA5059E61E30D25307B99903E991E ] amdide          C:\Windows\system32\drivers\amdide.sys
21:39:45.0619 1980  amdide - ok
21:39:45.0635 1980  [ CDC3632A3A5EA4DBB83E46076A3165A1 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
21:39:45.0635 1980  AmdK8 - ok
21:39:45.0682 1980  [ 9C37B3FD5615477CB9A0CD116CF43F5C ] Appinfo         C:\Windows\System32\appinfo.dll
21:39:45.0682 1980  Appinfo - ok
21:39:45.0713 1980  [ BA8417D4765F3988FF921F30F630E303 ] arc             C:\Windows\system32\drivers\arc.sys
21:39:45.0713 1980  arc - ok
21:39:45.0728 1980  [ 9D41C435619733B34CC16A511E644B11 ] arcsas          C:\Windows\system32\drivers\arcsas.sys
21:39:45.0728 1980  arcsas - ok
21:39:45.0760 1980  [ 22D13FF3DAFEC2A80634752B1EAA2DE6 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
21:39:45.0760 1980  AsyncMac - ok
21:39:45.0791 1980  [ E68D9B3A3905619732F7FE039466A623 ] atapi           C:\Windows\system32\drivers\atapi.sys
21:39:45.0791 1980  atapi - ok
21:39:45.0838 1980  [ 79318C744693EC983D20E9337A2F8196 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
21:39:45.0838 1980  AudioEndpointBuilder - ok
21:39:45.0853 1980  [ 79318C744693EC983D20E9337A2F8196 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
21:39:45.0853 1980  AudioSrv - ok
21:39:45.0916 1980  [ FFB96C2589FFA60473EAD78B39FBDE29 ] BFE             C:\Windows\System32\bfe.dll
21:39:45.0931 1980  BFE - ok
21:39:45.0978 1980  [ 6D316F4859634071CC25C4FD4589AD2C ] BITS            C:\Windows\System32\qmgr.dll
21:39:45.0994 1980  BITS - ok
21:39:46.0040 1980  [ 79FEEB40056683F8F61398D81DDA65D2 ] blbdrive        C:\Windows\system32\drivers\blbdrive.sys
21:39:46.0040 1980  blbdrive - ok
21:39:46.0134 1980  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
21:39:46.0134 1980  Bonjour Service - ok
21:39:46.0196 1980  [ 2348447A80920B2493A9B582A23E81E1 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
21:39:46.0196 1980  bowser - ok
21:39:46.0212 1980  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\drivers\brfiltlo.sys
21:39:46.0212 1980  BrFiltLo - ok
21:39:46.0228 1980  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\drivers\brfiltup.sys
21:39:46.0228 1980  BrFiltUp - ok
21:39:46.0259 1980  [ A1B39DE453433B115B4EA69EE0343816 ] Browser         C:\Windows\System32\browser.dll
21:39:46.0259 1980  Browser - ok
21:39:46.0290 1980  [ F0F0BA4D815BE446AA6A4583CA3BCA9B ] Brserid         C:\Windows\system32\drivers\brserid.sys
21:39:46.0290 1980  Brserid - ok
21:39:46.0306 1980  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\system32\drivers\brserwdm.sys
21:39:46.0306 1980  BrSerWdm - ok
21:39:46.0321 1980  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\system32\drivers\brusbmdm.sys
21:39:46.0321 1980  BrUsbMdm - ok
21:39:46.0337 1980  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\system32\drivers\brusbser.sys
21:39:46.0337 1980  BrUsbSer - ok
21:39:46.0352 1980  [ E0777B34E05F8A82A21856EFC900C29F ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
21:39:46.0352 1980  BTHMODEM - ok
21:39:46.0415 1980  [ 09E6AFFAE6C0E9158BF05C7D08D0107A ] BUNAgentSvc     C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe
21:39:46.0415 1980  BUNAgentSvc - ok
21:39:46.0430 1980  [ B4D787DB8D30793A4D4DF9FEED18F136 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
21:39:46.0430 1980  cdfs - ok
21:39:46.0462 1980  [ C025AA69BE3D0D25C7A2E746EF6F94FC ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
21:39:46.0462 1980  cdrom - ok
21:39:46.0508 1980  [ 5A268127633C7EE2A7FB87F39D748D56 ] CertPropSvc     C:\Windows\System32\certprop.dll
21:39:46.0508 1980  CertPropSvc - ok
21:39:46.0540 1980  [ 02EA568D498BBDD4BA55BF3FCE34D456 ] circlass        C:\Windows\system32\drivers\circlass.sys
21:39:46.0540 1980  circlass - ok
21:39:46.0586 1980  [ 3DCA9A18B204939CFB24BEA53E31EB48 ] CLFS            C:\Windows\system32\CLFS.sys
21:39:46.0586 1980  CLFS - ok
21:39:46.0649 1980  [ 8EE772032E2FE80A924F3B8DD5082194 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:39:46.0664 1980  clr_optimization_v2.0.50727_32 - ok
21:39:46.0727 1980  [ CE07A466201096F021CD09D631B21540 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
21:39:46.0727 1980  clr_optimization_v2.0.50727_64 - ok
21:39:46.0805 1980  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
21:39:46.0836 1980  clr_optimization_v4.0.30319_32 - ok
21:39:46.0898 1980  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
21:39:46.0914 1980  clr_optimization_v4.0.30319_64 - ok
21:39:46.0945 1980  [ E5D5499A1C50A54B5161296B6AFE6192 ] cmdide          C:\Windows\system32\drivers\cmdide.sys
21:39:46.0945 1980  cmdide - ok
21:39:46.0961 1980  [ 7FB8AD01DB0EABE60C8A861531A8F431 ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
21:39:46.0961 1980  Compbatt - ok
21:39:46.0976 1980  COMSysApp - ok
21:39:47.0008 1980  [ A8585B6412253803CE8EFCBD6D6DC15C ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
21:39:47.0008 1980  crcdisk - ok
21:39:47.0054 1980  [ CA78B312C44E4D52E842C2C8BD48E452 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
21:39:47.0054 1980  CryptSvc - ok
21:39:47.0101 1980  [ CF8B9A3A5E7DC57724A89D0C3E8CF9EF ] DcomLaunch      C:\Windows\system32\rpcss.dll
21:39:47.0117 1980  DcomLaunch - ok
21:39:47.0148 1980  [ 8B722BA35205C71E7951CDC4CDBADE19 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
21:39:47.0148 1980  DfsC - ok
21:39:47.0242 1980  [ C647F468F7DE343DF8C143655C5557D4 ] DFSR            C:\Windows\system32\DFSR.exe
21:39:47.0304 1980  DFSR - ok
21:39:47.0366 1980  [ 3ED0321127CE70ACDAABBF77E157C2A7 ] Dhcp            C:\Windows\System32\dhcpcsvc.dll
21:39:47.0366 1980  Dhcp - ok
21:39:47.0398 1980  [ B0107E40ECDB5FA692EBF832F295D905 ] disk            C:\Windows\system32\drivers\disk.sys
21:39:47.0398 1980  disk - ok
21:39:47.0444 1980  [ 06230F1B721494A6DF8D47FD395BB1B0 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
21:39:47.0476 1980  Dnscache - ok
21:39:47.0522 1980  [ 1A7156DD1E850E9914E5E991E3225B94 ] dot3svc         C:\Windows\System32\dot3svc.dll
21:39:47.0522 1980  dot3svc - ok
21:39:47.0554 1980  [ 1583B39790DB3EAEC7EDB0CB0140C708 ] DPS             C:\Windows\system32\dps.dll
21:39:47.0554 1980  DPS - ok
21:39:47.0585 1980  [ F1A78A98CFC2EE02144C6BEC945447E6 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
21:39:47.0585 1980  drmkaud - ok
21:39:47.0585 1980  dump_wmimmc - ok
21:39:47.0632 1980  [ B8E554E502D5123BC111F99D6A2181B4 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
21:39:47.0663 1980  DXGKrnl - ok
21:39:47.0694 1980  [ 264CEE7B031A9D6C827F3D0CB031F2FE ] E1G60           C:\Windows\system32\DRIVERS\E1G6032E.sys
21:39:47.0694 1980  E1G60 - ok
21:39:47.0725 1980  [ C2303883FD9BE49DC36A6400643002EA ] EapHost         C:\Windows\System32\eapsvc.dll
21:39:47.0725 1980  EapHost - ok
21:39:47.0756 1980  [ 5F94962BE5A62DB6E447FF6470C4F48A ] Ecache          C:\Windows\system32\drivers\ecache.sys
21:39:47.0772 1980  Ecache - ok
21:39:47.0803 1980  [ 14CE384D2E27B64C256BDA4DC39C312D ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
21:39:47.0803 1980  ehRecvr - ok
21:39:47.0819 1980  [ B93159C1313D66FDFBBE876F5189CD52 ] ehSched         C:\Windows\ehome\ehsched.exe
21:39:47.0819 1980  ehSched - ok
21:39:47.0834 1980  [ F5EE2527D74449868E3C3227A59BCD28 ] ehstart         C:\Windows\ehome\ehstart.dll
21:39:47.0834 1980  ehstart - ok
21:39:47.0866 1980  [ C4636D6E10469404AB5308D9FD45ED07 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
21:39:47.0866 1980  elxstor - ok
21:39:47.0912 1980  [ A9B18B63A4FD6BAAB83326706D857FAB ] EMDMgmt         C:\Windows\system32\emdmgmt.dll
21:39:47.0928 1980  EMDMgmt - ok
21:39:47.0944 1980  [ BC3A58E938BB277E46BF4B3003B01ABD ] ErrDev          C:\Windows\system32\drivers\errdev.sys
21:39:47.0944 1980  ErrDev - ok
21:39:48.0006 1980  [ E12F22B73F153DECE721CD45EC05B4AF ] EventSystem     C:\Windows\system32\es.dll
21:39:48.0006 1980  EventSystem - ok
21:39:48.0037 1980  [ 486844F47B6636044A42454614ED4523 ] exfat           C:\Windows\system32\drivers\exfat.sys
21:39:48.0037 1980  exfat - ok
21:39:48.0068 1980  [ 1A4BEE34277784619DDAF0422C0C6E23 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
21:39:48.0068 1980  fastfat - ok
21:39:48.0084 1980  [ 81B79B6DF71FA1D2C6D688D830616E39 ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
21:39:48.0084 1980  fdc - ok
21:39:48.0115 1980  [ BB9267ACACD8B7533DD936C34A0CBA5E ] fdPHost         C:\Windows\system32\fdPHost.dll
21:39:48.0115 1980  fdPHost - ok
21:39:48.0131 1980  [ 300C80931EABBE1DB7591C516EFE8D0F ] FDResPub        C:\Windows\system32\fdrespub.dll
21:39:48.0131 1980  FDResPub - ok
21:39:48.0131 1980  [ 457B7D1D533E4BD62A99AED9C7BB4C59 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
21:39:48.0131 1980  FileInfo - ok
21:39:48.0146 1980  [ D421327FD6EFCCAF884A54C58E1B0D7F ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
21:39:48.0162 1980  Filetrace - ok
21:39:48.0178 1980  [ 230923EA2B80F79B0F88D90F87B87EBD ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
21:39:48.0178 1980  flpydisk - ok
21:39:48.0209 1980  [ E3041BC26D6930D61F42AEDB79C91720 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
21:39:48.0209 1980  FltMgr - ok
21:39:48.0287 1980  [ BE1C5BD1CA7ED015BC6FA1AE67E592C8 ] FontCache       C:\Windows\system32\FntCache.dll
21:39:48.0302 1980  FontCache - ok
21:39:48.0365 1980  [ BC5B0BE5AF3510B0FD8C140EE42C6D3E ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
21:39:48.0365 1980  FontCache3.0.0.0 - ok
21:39:48.0427 1980  [ 03EC8C6EEB24E245DAD858C9FC6A1B68 ] ForceWare Intelligent Application Manager (IAM) C:\Program Files\bin32\nSvcAppFlt.exe
21:39:48.0443 1980  ForceWare Intelligent Application Manager (IAM) - ok
21:39:48.0458 1980  [ 5779B86CD8B32519FBECB136394D946A ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
21:39:48.0458 1980  Fs_Rec - ok
21:39:48.0474 1980  [ C8E416668D3DC2BE3D4FE4C79224997F ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
21:39:48.0490 1980  gagp30kx - ok
21:39:48.0536 1980  [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
21:39:48.0536 1980  GEARAspiWDM - ok
21:39:48.0552 1980  GenericMount - ok
21:39:48.0568 1980  GGSAFERDriver - ok
21:39:48.0614 1980  [ A0E1B575BA8F504968CD40C0FAEB2384 ] gpsvc           C:\Windows\System32\gpsvc.dll
21:39:48.0630 1980  gpsvc - ok
21:39:48.0708 1980  [ F02A533F517EB38333CB12A9E8963773 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:39:48.0708 1980  gupdate - ok
21:39:48.0724 1980  [ F02A533F517EB38333CB12A9E8963773 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:39:48.0724 1980  gupdatem - ok
21:39:48.0770 1980  [ 1E6438D4EA6E1174A3B3B1EDC4DE660B ] hamachi         C:\Windows\system32\DRIVERS\hamachi.sys
21:39:48.0770 1980  hamachi - ok
21:39:48.0802 1980  [ DF45F8142DC6DF9D18C39B3EFFBD0409 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
21:39:48.0817 1980  HdAudAddService - ok
21:39:48.0864 1980  [ F942C5820205F2FB453243EDFEC82A3D ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
21:39:48.0880 1980  HDAudBus - ok
21:39:48.0895 1980  [ B4881C84A180E75B8C25DC1D726C375F ] HidBth          C:\Windows\system32\drivers\hidbth.sys
21:39:48.0895 1980  HidBth - ok
21:39:48.0911 1980  [ 4E77A77E2C986E8F88F996BB3E1AD829 ] HidIr           C:\Windows\system32\drivers\hidir.sys
21:39:48.0911 1980  HidIr - ok
21:39:48.0958 1980  [ 59361D38A297755D46A540E450202B2A ] hidserv         C:\Windows\system32\hidserv.dll
21:39:48.0958 1980  hidserv - ok
21:39:48.0989 1980  [ 443BDD2D30BB4F00795C797E2CF99EDF ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
21:39:48.0989 1980  HidUsb - ok
21:39:49.0067 1980  [ 5350AEF38CA2D8885F47D4455E7EF4EE ] HiPatchService  C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
21:39:49.0067 1980  HiPatchService - ok
21:39:49.0238 1980  [ F17E6B94BD68109FA517F8C8D9C7092D ] HitmanPro36CrusaderBoot C:\Program Files\HitmanPro\HitmanPro.exe
21:39:49.0301 1980  HitmanPro36CrusaderBoot - ok
21:39:49.0316 1980  [ 9C66FEEFCA9D5DD712AB78D17BB16DA8 ] HitmanProScheduler C:\Program Files\HitmanPro\hmpsched.exe
21:39:49.0316 1980  HitmanProScheduler - ok
21:39:49.0348 1980  [ B12F367EA39C0795FD57E31242CE1A5A ] hkmsvc          C:\Windows\system32\kmsvc.dll
21:39:49.0348 1980  hkmsvc - ok
21:39:49.0379 1980  [ D7109A1E6BD2DFDBCBA72A6BC626A13B ] HpCISSs         C:\Windows\system32\drivers\hpcisss.sys
21:39:49.0379 1980  HpCISSs - ok
21:39:49.0426 1980  [ 098F1E4E5C9CB5B0063A959063631610 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
21:39:49.0441 1980  HTTP - ok
21:39:49.0457 1980  [ DA94C854CEA5FAC549D4E1F6E88349E8 ] i2omp           C:\Windows\system32\drivers\i2omp.sys
21:39:49.0457 1980  i2omp - ok
21:39:49.0488 1980  [ CBB597659A2713CE0C9CC20C88C7591F ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
21:39:49.0488 1980  i8042prt - ok
21:39:49.0504 1980  [ 3E3BF3627D886736D0B4E90054F929F6 ] iaStorV         C:\Windows\system32\drivers\iastorv.sys
21:39:49.0504 1980  iaStorV - ok
21:39:49.0582 1980  [ 749F5F8CEDCA70F2A512945325FC489D ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
21:39:49.0597 1980  idsvc - ok
21:39:49.0613 1980  [ 8C3951AD2FE886EF76C7B5027C3125D3 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
21:39:49.0613 1980  iirsp - ok
21:39:49.0675 1980  [ 78DF31CDD3A380E7F9CFCC8B4E24813C ] IJPLMSVC        C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
21:39:49.0691 1980  IJPLMSVC - ok
21:39:49.0738 1980  [ 0C9EA6E654E7B0471741E343A6C671AF ] IKEEXT          C:\Windows\System32\ikeext.dll
21:39:49.0738 1980  IKEEXT - ok
21:39:49.0800 1980  [ 2C62599E693372A9221C262B8040E3AC ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
21:39:49.0831 1980  IntcAzAudAddService - ok
21:39:49.0862 1980  [ DF797A12176F11B2D301C5B234BB200E ] intelide        C:\Windows\system32\drivers\intelide.sys
21:39:49.0878 1980  intelide - ok
21:39:49.0878 1980  [ BFD84AF32FA1BAD6231C4585CB469630 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
21:39:49.0894 1980  intelppm - ok
21:39:49.0909 1980  [ 5624BC1BC5EEB49C0AB76A8114F05EA3 ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
21:39:49.0925 1980  IPBusEnum - ok
21:39:49.0956 1980  [ D8AABC341311E4780D6FCE8C73C0AD81 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:39:49.0956 1980  IpFilterDriver - ok
21:39:50.0003 1980  [ BF0DBFA9792C5C14FA00F61C75116C1B ] IpHlpSvc        C:\Windows\System32\iphlpsvc.dll
21:39:50.0018 1980  IpHlpSvc - ok
21:39:50.0018 1980  IpInIp - ok
21:39:50.0050 1980  [ 9C2EE2E6E5A7203BFAE15C299475EC67 ] IPMIDRV         C:\Windows\system32\drivers\ipmidrv.sys
21:39:50.0050 1980  IPMIDRV - ok
21:39:50.0065 1980  [ B7E6212F581EA5F6AB0C3A6CEEEB89BE ] IPNAT           C:\Windows\system32\DRIVERS\ipnat.sys
21:39:50.0065 1980  IPNAT - ok
21:39:50.0081 1980  [ 8C42CA155343A2F11D29FECA67FAA88D ] IRENUM          C:\Windows\system32\drivers\irenum.sys
21:39:50.0081 1980  IRENUM - ok
21:39:50.0112 1980  [ 0672BFCEDC6FC468A2B0500D81437F4F ] isapnp          C:\Windows\system32\drivers\isapnp.sys
21:39:50.0112 1980  isapnp - ok
21:39:50.0174 1980  [ E4FDF99599F27EC25D2CF6D754243520 ] iScsiPrt        C:\Windows\system32\DRIVERS\msiscsi.sys
21:39:50.0174 1980  iScsiPrt - ok
21:39:50.0190 1980  [ 63C766CDC609FF8206CB447A65ABBA4A ] iteatapi        C:\Windows\system32\drivers\iteatapi.sys
21:39:50.0190 1980  iteatapi - ok
21:39:50.0221 1980  [ 1281FE73B17664631D12F643CBEA3F59 ] iteraid         C:\Windows\system32\drivers\iteraid.sys
21:39:50.0221 1980  iteraid - ok
21:39:50.0237 1980  [ 423696F3BA6472DD17699209B933BC26 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
21:39:50.0237 1980  kbdclass - ok
21:39:50.0268 1980  [ DBDF75D51464FBC47D0104EC3D572C05 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
21:39:50.0268 1980  kbdhid - ok
21:39:50.0284 1980  [ 260BF9C43EE12C6898A9F5AAB0FB0E5D ] KeyIso          C:\Windows\system32\lsass.exe
21:39:50.0284 1980  KeyIso - ok
21:39:50.0330 1980  [ 88956AD9FA510848AD176777A6C6C1F5 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
21:39:50.0330 1980  KSecDD - ok
21:39:50.0377 1980  [ 1D419CF43DB29396ECD7113D129D94EB ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
21:39:50.0377 1980  ksthunk - ok
21:39:50.0408 1980  [ 1FAF6926F3416D3DA05C5B265491BDAE ] KtmRm           C:\Windows\system32\msdtckrm.dll
21:39:50.0424 1980  KtmRm - ok
21:39:50.0440 1980  [ 50C7A3CB427E9BB5ED0708A669956AB5 ] LanmanServer    C:\Windows\system32\srvsvc.dll
21:39:50.0440 1980  LanmanServer - ok
21:39:50.0486 1980  [ CAF86FC1388BE1E470F1A7B43E348ADB ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
21:39:50.0502 1980  LanmanWorkstation - ok
21:39:50.0533 1980  [ 285954C6C6EF43B78AB84034750FAC6A ] libusb0         C:\Windows\system32\DRIVERS\libusb0.sys
21:39:50.0533 1980  libusb0 - ok
21:39:50.0549 1980  libusbd - ok
21:39:50.0580 1980  [ 793FF718477345CD5D232C50BED1E452 ] LightScribeService C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
21:39:50.0580 1980  LightScribeService - ok
21:39:50.0611 1980  [ 96ECE2659B6654C10A0C310AE3A6D02C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
21:39:50.0611 1980  lltdio - ok
21:39:50.0642 1980  [ 961CCBD0B1CCB5675D64976FAE37D092 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
21:39:50.0642 1980  lltdsvc - ok
21:39:50.0658 1980  [ A47F8080CACC23C91FE823AD19AA5612 ] lmhosts         C:\Windows\System32\lmhsvc.dll
21:39:50.0658 1980  lmhosts - ok
21:39:50.0689 1980  [ ACBE1AF32D3123E330A07BFBC5EC4A9B ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
21:39:50.0689 1980  LSI_FC - ok
21:39:50.0705 1980  [ 799FFB2FC4729FA46D2157C0065B3525 ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
21:39:50.0705 1980  LSI_SAS - ok
21:39:50.0720 1980  [ F445FF1DAAD8A226366BFAF42551226B ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
21:39:50.0720 1980  LSI_SCSI - ok
21:39:50.0736 1980  [ 52F87B9CC8932C2A7375C3B2A9BE5E3E ] luafv           C:\Windows\system32\drivers\luafv.sys
21:39:50.0736 1980  luafv - ok
21:39:50.0767 1980  [ 8B03202C731A0B967927EB7E5B2E470C ] mbamchameleon   C:\Windows\system32\drivers\mbamchameleon.sys
21:39:50.0767 1980  mbamchameleon - ok
21:39:50.0861 1980  [ FD3AD5E1ECDAA94A89D6697F5C5465D6 ] McComponentHostService C:\Program Files (x86)\McAfee Security Scan\2.1.121\McCHSvc.exe
21:39:50.0876 1980  McComponentHostService - ok
21:39:50.0892 1980  [ 76A58DF02BD4EA29F189B82D0BEF17F8 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
21:39:50.0892 1980  Mcx2Svc - ok
21:39:50.0923 1980  [ 5C5CD6AACED32FB26C3FB34B3DCF972F ] megasas         C:\Windows\system32\drivers\megasas.sys
21:39:50.0923 1980  megasas - ok
21:39:50.0954 1980  [ 859BC2436B076C77C159ED694ACFE8F8 ] MegaSR          C:\Windows\system32\drivers\megasr.sys
21:39:50.0954 1980  MegaSR - ok
21:39:51.0048 1980  [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
21:39:51.0048 1980  Microsoft Office Groove Audit Service - ok
21:39:51.0079 1980  [ 3CBE4995E80E13CCFBC42E5DCF3AC81A ] MMCSS           C:\Windows\system32\mmcss.dll
21:39:51.0079 1980  MMCSS - ok
21:39:51.0126 1980  [ 59848D5CC74606F0EE7557983BB73C2E ] Modem           C:\Windows\system32\drivers\modem.sys
21:39:51.0126 1980  Modem - ok
21:39:51.0142 1980  [ C247CC2A57E0A0C8C6DCCF7807B3E9E5 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
21:39:51.0142 1980  monitor - ok
21:39:51.0173 1980  [ 9367304E5E412B120CF5F4EA14E4E4F1 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
21:39:51.0173 1980  mouclass - ok
21:39:51.0188 1980  [ C2C2BD5C5CE5AAF786DDD74B75D2AC69 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
21:39:51.0188 1980  mouhid - ok
21:39:51.0204 1980  [ 11BC9B1E8801B01F7F6ADB9EAD30019B ] MountMgr        C:\Windows\system32\drivers\mountmgr.sys
21:39:51.0204 1980  MountMgr - ok
21:39:51.0266 1980  [ 8C7336950F1E69CDFD811CBBD9CF00A2 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
21:39:51.0266 1980  MozillaMaintenance - ok
21:39:51.0329 1980  [ 05BF204EC0E82CC4A054DB189C8A3D84 ] MpFilter        C:\Windows\system32\DRIVERS\MpFilter.sys
21:39:51.0329 1980  MpFilter - ok
21:39:51.0360 1980  [ F8276EB8698142884498A528DFEA8478 ] mpio            C:\Windows\system32\drivers\mpio.sys
21:39:51.0360 1980  mpio - ok
21:39:51.0391 1980  [ C92B9ABDB65A5991E00C28F13491DBA2 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
21:39:51.0391 1980  mpsdrv - ok
21:39:51.0438 1980  [ 897E3BAF68BA406A61682AE39C83900C ] MpsSvc          C:\Windows\system32\mpssvc.dll
21:39:51.0454 1980  MpsSvc - ok
21:39:51.0469 1980  [ 3C200630A89EF2C0864D515B7A75802E ] Mraid35x        C:\Windows\system32\drivers\mraid35x.sys
21:39:51.0485 1980  Mraid35x - ok
21:39:51.0516 1980  [ 7C1DE4AA96DC0C071611F9E7DE02A68D ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
21:39:51.0516 1980  MRxDAV - ok
21:39:51.0547 1980  [ 1485811B320FF8C7EDAD1CAEBB1C6C2B ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
21:39:51.0547 1980  mrxsmb - ok
21:39:51.0594 1980  [ 3B929A60C833FC615FD97FBA82BC7632 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:39:51.0594 1980  mrxsmb10 - ok
21:39:51.0641 1980  [ C64AB3E1F53B4F5B5BB6D796B2D7BEC3 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:39:51.0641 1980  mrxsmb20 - ok
21:39:51.0656 1980  [ 1AC860612B85D8E85EE257D372E39F4D ] msahci          C:\Windows\system32\drivers\msahci.sys
21:39:51.0672 1980  msahci - ok
21:39:51.0688 1980  [ 264BBB4AAF312A485F0E44B65A6B7202 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
21:39:51.0688 1980  msdsm - ok
21:39:51.0703 1980  [ 7EC02CE772F068ED0BEAFA3DA341A9BC ] MSDTC           C:\Windows\System32\msdtc.exe
21:39:51.0703 1980  MSDTC - ok
21:39:51.0734 1980  [ 704F59BFC4512D2BB0146AEC31B10A7C ] Msfs            C:\Windows\system32\drivers\Msfs.sys
21:39:51.0734 1980  Msfs - ok
21:39:51.0766 1980  [ 00EBC952961664780D43DCA157E79B27 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
21:39:51.0766 1980  msisadrv - ok
21:39:51.0797 1980  [ 366B0C1F4478B519C181E37D43DCDA32 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
21:39:51.0797 1980  MSiSCSI - ok
21:39:51.0797 1980  msiserver - ok
21:39:51.0828 1980  [ 0EA73E498F53B96D83DBFCA074AD4CF8 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
21:39:51.0828 1980  MSKSSRV - ok
21:39:51.0890 1980  [ CC8E4F72F21340A4D3A3D4DB50313EF5 ] MsMpSvc         C:\Program Files\Microsoft Security Client\MsMpEng.exe
21:39:51.0890 1980  MsMpSvc - ok
21:39:51.0906 1980  [ 52E59B7E992A58E740AA63F57EDBAE8B ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
21:39:51.0906 1980  MSPCLOCK - ok
21:39:51.0937 1980  [ 49084A75BAE043AE02D5B44D02991BB2 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
21:39:51.0937 1980  MSPQM - ok
21:39:51.0968 1980  [ DC6CCF440CDEDE4293DB41C37A5060A5 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
21:39:51.0968 1980  MsRPC - ok
21:39:52.0000 1980  [ 855796E59DF77EA93AF46F20155BF55B ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
21:39:52.0000 1980  mssmbios - ok
21:39:52.0015 1980  [ 86D632D75D05D5B7C7C043FA3564AE86 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
21:39:52.0015 1980  MSTEE - ok
21:39:52.0031 1980  [ 0CC49F78D8ACA0877D885F149084E543 ] Mup             C:\Windows\system32\Drivers\mup.sys
21:39:52.0031 1980  Mup - ok
21:39:52.0062 1980  [ A5B10C845E7538C60C0F5D87A57CB3F5 ] napagent        C:\Windows\system32\qagentRT.dll
21:39:52.0078 1980  napagent - ok
21:39:52.0124 1980  [ 2007B826C4ACD94AE32232B41F0842B9 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
21:39:52.0140 1980  NativeWifiP - ok
21:39:52.0187 1980  [ 65950E07329FCEE8E6516B17C8D0ABB6 ] NDIS            C:\Windows\system32\drivers\ndis.sys
21:39:52.0265 1980  NDIS - ok
21:39:52.0280 1980  [ 64DF698A425478E321981431AC171334 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
21:39:52.0280 1980  NdisTapi - ok
21:39:52.0296 1980  [ 8BAA43196D7B5BB972C9A6B2BBF61A19 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
21:39:52.0296 1980  Ndisuio - ok
21:39:52.0343 1980  [ F8158771905260982CE724076419EF19 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
21:39:52.0343 1980  NdisWan - ok
21:39:52.0374 1980  [ 9CB77ED7CB72850253E973A2D6AFDF49 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
21:39:52.0374 1980  NDProxy - ok
21:39:52.0390 1980  [ A499294F5029A7862ADC115BDA7371CE ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
21:39:52.0390 1980  NetBIOS - ok
21:39:52.0421 1980  [ FC2C792EBDDC8E28DF939D6A92C83D61 ] netbt           C:\Windows\system32\DRIVERS\netbt.sys
21:39:52.0421 1980  netbt - ok
21:39:52.0436 1980  [ 260BF9C43EE12C6898A9F5AAB0FB0E5D ] Netlogon        C:\Windows\system32\lsass.exe
21:39:52.0436 1980  Netlogon - ok
21:39:52.0468 1980  [ 9B63B29DEFC0F3115A559D2597BF5D75 ] Netman          C:\Windows\System32\netman.dll
21:39:52.0468 1980  Netman - ok
21:39:52.0499 1980  [ 7846D0136CC2B264926A73047BA7688A ] netprofm        C:\Windows\System32\netprofm.dll
21:39:52.0499 1980  netprofm - ok
21:39:52.0702 1980  [ 74751DDA198165947FD7454D83F49825 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
21:39:52.0702 1980  NetTcpPortSharing - ok
21:39:52.0733 1980  [ 4AC08BD6AF2DF42E0C3196D826C8AEA7 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
21:39:52.0733 1980  nfrd960 - ok
21:39:52.0780 1980  [ 5FF89F20317309D28AC1EDEB0CD1BA72 ] NisDrv          C:\Windows\system32\DRIVERS\NisDrvWFP.sys
21:39:52.0780 1980  NisDrv - ok
21:39:52.0826 1980  [ 79E80B10FE8F6662E0C9162A68C43444 ] NisSrv          C:\Program Files\Microsoft Security Client\NisSrv.exe
21:39:52.0826 1980  NisSrv - ok
21:39:52.0842 1980  [ F145BF4C4668E7E312069F81EF847CFC ] NlaSvc          C:\Windows\System32\nlasvc.dll
21:39:52.0842 1980  NlaSvc - ok
21:39:52.0904 1980  Norton PC Checkup Application Launcher - ok
21:39:52.0936 1980  [ C31FA031335EFF434B2D94278E74BCCE ] npf             C:\Windows\system32\drivers\npf.sys
21:39:52.0936 1980  npf - ok
21:39:52.0967 1980  [ B298874F8E0EA93F06EC40AA8D146478 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
21:39:52.0967 1980  Npfs - ok
21:39:52.0967 1980  NPPTNT2 - ok
21:39:52.0998 1980  [ ACB62BAA1C319B17752553DF3026EEEB ] nsi             C:\Windows\system32\nsisvc.dll
21:39:52.0998 1980  nsi - ok
21:39:52.0998 1980  [ 1523AF19EE8B030BA682F7A53537EAEB ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
21:39:52.0998 1980  nsiproxy - ok
21:39:53.0014 1980  [ C5117E7FF9F373AD470CE5379617F464 ] nSvcIp          C:\Program Files\bin32\nSvcIp.exe
21:39:53.0014 1980  nSvcIp - ok
21:39:53.0092 1980  [ BAC869DFB98E499BA4D9BB1FB43270E1 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
21:39:53.0123 1980  Ntfs - ok
21:39:53.0154 1980  [ A2B6583A5652A385DFF5E4F49AD48761 ] NTIBackupSvc    C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
21:39:53.0154 1980  NTIBackupSvc - ok
21:39:53.0185 1980  [ 7D397449AAF52B0E7C79B64F6AD4473E ] NTIDrvr         C:\Windows\system32\Drivers\NTIDrvr.sys
21:39:53.0185 1980  NTIDrvr - ok
21:39:53.0201 1980  [ 40B87FE8A1A9A5AC9E5A91D96F212BCD ] NTISchedulerSvc C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
21:39:53.0201 1980  NTISchedulerSvc - ok
21:39:53.0248 1980  [ D4012918D3A3847B44B888D56BC095D6 ] NuidFltr        C:\Windows\system32\DRIVERS\NuidFltr.sys
21:39:53.0248 1980  NuidFltr - ok
21:39:53.0263 1980  [ DD5D684975352B85B52E3FD5347C20CB ] Null            C:\Windows\system32\drivers\Null.sys
21:39:53.0263 1980  Null - ok
21:39:53.0310 1980  [ CF2A023F422CE6E43302B139E4B87B05 ] NVENETFD        C:\Windows\system32\DRIVERS\nvmfdx64.sys
21:39:53.0310 1980  NVENETFD - ok
21:39:53.0341 1980  [ 8D4AAC74B571FC356560E5B308955E93 ] NVHDA           C:\Windows\system32\drivers\nvhda64v.sys
21:39:53.0341 1980  NVHDA - ok
21:39:53.0591 1980  [ 5104BAC2DA2A5BDD86AC6B0708B00F06 ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
21:39:53.0778 1980  nvlddmkm - ok
21:39:53.0809 1980  [ CF2A023F422CE6E43302B139E4B87B05 ] NVNET           C:\Windows\system32\DRIVERS\nvmfdx64.sys
21:39:53.0809 1980  NVNET - ok
21:39:53.0840 1980  [ 2C040B7ADA5B06F6FACADAC8514AA034 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
21:39:53.0840 1980  nvraid - ok
21:39:53.0856 1980  [ F6C6D8298DD85507F680437EC2E6899C ] nvsmu           C:\Windows\system32\DRIVERS\nvsmu.sys
21:39:53.0856 1980  nvsmu - ok
21:39:53.0872 1980  [ F7EA0FE82842D05EDA3EFDD376DBFDBA ] nvstor          C:\Windows\system32\drivers\nvstor.sys
21:39:53.0872 1980  nvstor - ok
21:39:53.0887 1980  [ 14E8409CCE4BFC7591F8697A8748DC5B ] nvstor64        C:\Windows\system32\DRIVERS\nvstor64.sys
21:39:53.0887 1980  nvstor64 - ok
21:39:53.0950 1980  [ DDFAFCE89A5C93D04712B86F94E9FCBA ] nvsvc           C:\Windows\system32\nvvsvc.exe
21:39:53.0965 1980  nvsvc - ok
21:39:54.0059 1980  [ 84E035225474E48CD3A6A3CE52332095 ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
21:39:54.0090 1980  nvUpdatusService - ok
21:39:54.0121 1980  [ 19067CA93075EF4823E3938A686F532F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
21:39:54.0121 1980  nv_agp - ok
21:39:54.0121 1980  NwlnkFlt - ok
21:39:54.0121 1980  NwlnkFwd - ok
21:39:54.0199 1980  [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv          C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
21:39:54.0215 1980  odserv - ok
21:39:54.0277 1980  [ B5B1CE65AC15BBD11C0619E3EF7CFC28 ] ohci1394        C:\Windows\system32\DRIVERS\ohci1394.sys
21:39:54.0277 1980  ohci1394 - ok
21:39:54.0293 1980  [ 5A432A042DAE460ABE7199B758E8606C ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:39:54.0308 1980  ose - ok
21:39:54.0355 1980  [ 9AE31D2E1D15C10D91318E0EC149CEAC ] p2pimsvc        C:\Windows\system32\p2psvc.dll
21:39:54.0386 1980  p2pimsvc - ok
21:39:54.0402 1980  [ 9AE31D2E1D15C10D91318E0EC149CEAC ] p2psvc          C:\Windows\system32\p2psvc.dll
21:39:54.0402 1980  p2psvc - ok
21:39:54.0433 1980  [ AECD57F94C887F58919F307C35498EA0 ] Parport         C:\Windows\system32\drivers\parport.sys
21:39:54.0433 1980  Parport - ok
21:39:54.0464 1980  [ B43751085E2ABE389DA466BC62A4B987 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
21:39:54.0464 1980  partmgr - ok
21:39:54.0496 1980  [ 9AB157B374192FF276C1628FBDBA2B0E ] PcaSvc          C:\Windows\System32\pcasvc.dll
21:39:54.0496 1980  PcaSvc - ok
21:39:54.0527 1980  [ 2F86BE1818C2D7AC90478E3323EE7FCB ] PCCUJobMgr      C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.5\ccSvcHst.exe
21:39:54.0542 1980  PCCUJobMgr - ok
21:39:54.0574 1980  [ 47AB1E0FC9D0E12BB53BA246E3A0906D ] pci             C:\Windows\system32\drivers\pci.sys
21:39:54.0589 1980  pci - ok
21:39:54.0620 1980  [ 2657F6C0B78C36D95034BE109336E382 ] pciide          C:\Windows\system32\drivers\pciide.sys
21:39:54.0620 1980  pciide - ok
21:39:54.0636 1980  [ 037661F3D7C507C9993B7010CEEE6288 ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
21:39:54.0636 1980  pcmcia - ok
21:39:54.0714 1980  [ 953615A27D3E873E71320E2FE464049C ] PCToolsSSDMonitorSvc C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe
21:39:54.0730 1980  PCToolsSSDMonitorSvc - ok
21:39:54.0745 1980  [ 58865916F53592A61549B04941BFD80D ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
21:39:54.0761 1980  PEAUTH - ok
21:39:54.0839 1980  [ 0ED8727EA0172860F47258456C06CAEA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
21:39:54.0839 1980  PerfHost - ok
21:39:54.0917 1980  [ E9E68C1A0F25CF4A7AC966EEA74EE89E ] pla             C:\Windows\system32\pla.dll
21:39:54.0948 1980  pla - ok
21:39:54.0979 1980  [ FE6B0F59215C9FD9F9D26539C58C8B82 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
21:39:54.0979 1980  PlugPlay - ok
21:39:55.0042 1980  [ 9AE31D2E1D15C10D91318E0EC149CEAC ] PNRPAutoReg     C:\Windows\system32\p2psvc.dll
21:39:55.0057 1980  PNRPAutoReg - ok
21:39:55.0088 1980  [ 9AE31D2E1D15C10D91318E0EC149CEAC ] PNRPsvc         C:\Windows\system32\p2psvc.dll
21:39:55.0104 1980  PNRPsvc - ok
21:39:55.0151 1980  [ 89A5560671C2D8B4A4B51F3E1AA069D8 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
21:39:55.0166 1980  PolicyAgent - ok
21:39:55.0213 1980  [ 23386E9952025F5F21C368971E2E7301 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
21:39:55.0213 1980  PptpMiniport - ok
21:39:55.0229 1980  [ 5080E59ECEE0BC923F14018803AA7A01 ] Processor       C:\Windows\system32\DRIVERS\processr.sys
21:39:55.0229 1980  Processor - ok
21:39:55.0276 1980  [ E058CE4FC2449D8BFA14739C83B7FF2A ] ProfSvc         C:\Windows\system32\profsvc.dll
21:39:55.0276 1980  ProfSvc - ok
21:39:55.0291 1980  [ 260BF9C43EE12C6898A9F5AAB0FB0E5D ] ProtectedStorage C:\Windows\system32\lsass.exe
21:39:55.0291 1980  ProtectedStorage - ok
21:39:55.0322 1980  [ C5AB7F0809392D0DA027F4A2A81BFA31 ] PSched          C:\Windows\system32\DRIVERS\pacer.sys
21:39:55.0322 1980  PSched - ok
21:39:55.0369 1980  [ 56F602290BEBF54CBDEEB8744C91DAD8 ] psdrv3          C:\Windows\system32\Drivers\psdrv3.sys
21:39:55.0369 1980  psdrv3 - ok
21:39:55.0400 1980  [ 0B83F4E681062F3839BE2EC1D98FD94A ] ql2300          C:\Windows\system32\drivers\ql2300.sys
21:39:55.0432 1980  ql2300 - ok
21:39:55.0463 1980  [ E1C80F8D4D1E39EF9595809C1369BF2A ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
21:39:55.0463 1980  ql40xx - ok
21:39:55.0494 1980  [ 90574842C3DA781E279061A3EFF91F07 ] QWAVE           C:\Windows\system32\qwave.dll
21:39:55.0494 1980  QWAVE - ok
21:39:55.0510 1980  [ E8D76EDAB77EC9C634C27B8EAC33ADC5 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
21:39:55.0510 1980  QWAVEdrv - ok
21:39:55.0525 1980  [ 1013B3B663A56D3DDD784F581C1BD005 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
21:39:55.0525 1980  RasAcd - ok
21:39:55.0541 1980  [ B2AE18F847D07F0044404DDF7CB04497 ] RasAuto         C:\Windows\System32\rasauto.dll
21:39:55.0541 1980  RasAuto - ok
21:39:55.0588 1980  [ AC7BC4D42A7E558718DFDEC599BBFC2C ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
21:39:55.0588 1980  Rasl2tp - ok
21:39:55.0603 1980  [ 3AD83E4046C43BE510DE681588ACB8AF ] RasMan          C:\Windows\System32\rasmans.dll
21:39:55.0603 1980  RasMan - ok
21:39:55.0650 1980  [ 4517FBF8B42524AFE4EDE1DE102AAE3E ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
21:39:55.0650 1980  RasPppoe - ok
21:39:55.0681 1980  [ C6A593B51F34C33E5474539544072527 ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
21:39:55.0681 1980  RasSstp - ok
21:39:55.0712 1980  [ 322DB5C6B55E8D8EE8D6F358B2AAABB1 ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
21:39:55.0728 1980  rdbss - ok
21:39:55.0744 1980  [ 603900CC05F6BE65CCBF373800AF3716 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
21:39:55.0744 1980  RDPCDD - ok
21:39:55.0775 1980  [ C045D1FB111C28DF0D1BE8D4BDA22C06 ] rdpdr           C:\Windows\system32\drivers\rdpdr.sys
21:39:55.0775 1980  rdpdr - ok
21:39:55.0775 1980  [ CAB9421DAF3D97B33D0D055858E2C3AB ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
21:39:55.0790 1980  RDPENCDD - ok
21:39:55.0822 1980  [ AE4BD9E1C33D351D8E607FC81F15160C ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
21:39:55.0822 1980  RDPWD - ok
21:39:55.0853 1980  [ C612B9557DA73F70D41F8A6FBC8E5344 ] RemoteAccess    C:\Windows\System32\mprdim.dll
21:39:55.0853 1980  RemoteAccess - ok
21:39:55.0884 1980  [ 44B9D8EC2F3EF3A0EFB00857AF70D861 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
21:39:55.0900 1980  RemoteRegistry - ok
21:39:55.0931 1980  [ C1C132455200AD4704142442C89D0FA4 ] RichVideo       C:\Program Files (x86)\CyberLink\Shared Files\RichVideo.exe
21:39:55.0931 1980  RichVideo - ok
21:39:55.0946 1980  [ F46C457840D4B7A4DAAFEE739CE04102 ] RpcLocator      C:\Windows\system32\locator.exe
21:39:55.0946 1980  RpcLocator - ok
21:39:55.0993 1980  [ CF8B9A3A5E7DC57724A89D0C3E8CF9EF ] RpcSs           C:\Windows\system32\rpcss.dll
21:39:55.0993 1980  RpcSs - ok
21:39:56.0024 1980  [ 22A9CB08B1A6707C1550C6BF099AAE73 ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
21:39:56.0040 1980  rspndr - ok
21:39:56.0040 1980  [ 260BF9C43EE12C6898A9F5AAB0FB0E5D ] SamSs           C:\Windows\system32\lsass.exe
21:39:56.0040 1980  SamSs - ok
21:39:56.0071 1980  [ CD9C693589C60AD59BBBCFB0E524E01B ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
21:39:56.0071 1980  sbp2port - ok
21:39:56.0118 1980  [ FD1CDCF108D5EF3366F00D18B70FB89B ] SCardSvr        C:\Windows\System32\SCardSvr.dll
21:39:56.0118 1980  SCardSvr - ok
21:39:56.0165 1980  [ 0F838C811AD295D2A4489B9993096C63 ] Schedule        C:\Windows\system32\schedsvc.dll
21:39:56.0180 1980  Schedule - ok
21:39:56.0227 1980  [ 5A268127633C7EE2A7FB87F39D748D56 ] SCPolicySvc     C:\Windows\System32\certprop.dll
21:39:56.0227 1980  SCPolicySvc - ok
21:39:56.0258 1980  [ 4FF71B076A7760FE75EA5AE2D0EE0018 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
21:39:56.0258 1980  SDRSVC - ok
21:39:56.0274 1980  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
21:39:56.0274 1980  secdrv - ok
21:39:56.0305 1980  [ 5ACDCBC67FCF894A1815B9F96D704490 ] seclogon        C:\Windows\system32\seclogon.dll
21:39:56.0305 1980  seclogon - ok
21:39:56.0321 1980  [ 90973A64B96CD647FF81C79443618EED ] SENS            C:\Windows\System32\sens.dll
21:39:56.0321 1980  SENS - ok
21:39:56.0336 1980  [ F71BFE7AC6C52273B7C82CBF1BB2A222 ] Serenum         C:\Windows\system32\drivers\serenum.sys
21:39:56.0336 1980  Serenum - ok
21:39:56.0352 1980  [ E62FAC91EE288DB29A9696A9D279929C ] Serial          C:\Windows\system32\drivers\serial.sys
21:39:56.0352 1980  Serial - ok
21:39:56.0368 1980  [ A842F04833684BCEEA7336211BE478DF ] sermouse        C:\Windows\system32\drivers\sermouse.sys
21:39:56.0368 1980  sermouse - ok
21:39:56.0414 1980  [ A8E4A4407A09F35DCCC3771AF590B0C4 ] SessionEnv      C:\Windows\system32\sessenv.dll
21:39:56.0414 1980  SessionEnv - ok
21:39:56.0430 1980  [ 14D4B4465193A87C127933978E8C4106 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
21:39:56.0430 1980  sffdisk - ok
21:39:56.0446 1980  [ 7073AEE3F82F3D598E3825962AA98AB2 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
21:39:56.0446 1980  sffp_mmc - ok
21:39:56.0461 1980  [ 35E59EBE4A01A0532ED67975161C7B82 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
21:39:56.0461 1980  sffp_sd - ok
21:39:56.0492 1980  [ 40567781F0785C4A69411D1B40DA8987 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
21:39:56.0492 1980  sfloppy - ok
21:39:56.0555 1980  [ 4C5AEE179DA7E1EE9A9CCB9DA289AF34 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
21:39:56.0555 1980  SharedAccess - ok
21:39:56.0602 1980  [ 56793271ECDEDD350C5ADD305603E963 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
21:39:56.0602 1980  ShellHWDetection - ok
21:39:56.0648 1980  [ 7A5DE502AEB719D4594C6471060A78B3 ] SiSRaid2        C:\Windows\system32\drivers\sisraid2.sys
21:39:56.0648 1980  SiSRaid2 - ok
21:39:56.0664 1980  [ 3A2F769FAB9582BC720E11EA1DFB184D ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
21:39:56.0664 1980  SiSRaid4 - ok
21:39:56.0711 1980  [ B866E8C5ED1DCBEA72285BA4107892C2 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
21:39:56.0711 1980  SkypeUpdate - ok
21:39:56.0789 1980  [ A9A27A8E257B45A604FDAD4F26FE7241 ] slsvc           C:\Windows\system32\SLsvc.exe
21:39:56.0867 1980  slsvc - ok
21:39:56.0898 1980  [ FD74B4B7C2088E390A30C85A896FC3AF ] SLUINotify      C:\Windows\system32\SLUINotify.dll
21:39:56.0898 1980  SLUINotify - ok
21:39:56.0929 1980  [ 290B6F6A0EC4FCDFC90F5CB6D7020473 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
21:39:56.0929 1980  Smb - ok
21:39:56.0976 1980  [ F8F47F38909823B1AF28D60B96340CFF ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
21:39:56.0976 1980  SNMPTRAP - ok
21:39:57.0023 1980  [ 386C3C63F00A7040C7EC5E384217E89D ] spldr           C:\Windows\system32\drivers\spldr.sys
21:39:57.0023 1980  spldr - ok
21:39:57.0054 1980  [ F66FF751E7EFC816D266977939EF5DC3 ] Spooler         C:\Windows\System32\spoolsv.exe
21:39:57.0054 1980  Spooler - ok
21:39:57.0101 1980  [ 880A57FCCB571EBD063D4DD50E93E46D ] srv             C:\Windows\system32\DRIVERS\srv.sys
21:39:57.0101 1980  srv - ok
21:39:57.0148 1980  [ A1AD14A6D7A37891FFFECA35EBBB0730 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
21:39:57.0163 1980  srv2 - ok
21:39:57.0163 1980  [ 4BED62F4FA4D8300973F1151F4C4D8A7 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
21:39:57.0179 1980  srvnet - ok
21:39:57.0210 1980  [ 192C74646EC5725AEF3F80D19FF75F6A ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
21:39:57.0210 1980  SSDPSRV - ok
21:39:57.0241 1980  [ 2EE3FA0308E6185BA64A9A7F2E74332B ] SstpSvc         C:\Windows\system32\sstpsvc.dll
21:39:57.0241 1980  SstpSvc - ok
21:39:57.0335 1980  [ B1691AF4A072CB674D600DB16DD7308E ] StarWindServiceAE C:\Program Files (x86)\Alcohol Soft\Alcohol 52\StarWind\StarWindServiceAE.exe
21:39:57.0335 1980  StarWindServiceAE - ok
21:39:57.0397 1980  Steam Client Service - ok
21:39:57.0475 1980  [ F0359F7CE712D69ACEF0886BDB4792ED ] Stereo Service  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
21:39:57.0475 1980  Stereo Service - ok
21:39:57.0522 1980  [ 15825C1FBFB8779992CB65087F316AF5 ] stisvc          C:\Windows\System32\wiaservc.dll
21:39:57.0553 1980  stisvc - ok
21:39:57.0600 1980  [ 8A851CA908B8B974F89C50D2E18D4F0C ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
21:39:57.0600 1980  swenum - ok
21:39:57.0631 1980  [ 6DE37F4DE19D4EFD9C48C43ADDBC949A ] swprv           C:\Windows\System32\swprv.dll
21:39:57.0647 1980  swprv - ok
21:39:57.0678 1980  [ 2F26A2C6FC96B29BEFF5D8ED74E6625B ] Symc8xx         C:\Windows\system32\drivers\symc8xx.sys
21:39:57.0694 1980  Symc8xx - ok
21:39:57.0694 1980  [ A909667976D3BCCD1DF813FED517D837 ] Sym_hi          C:\Windows\system32\drivers\sym_hi.sys
21:39:57.0709 1980  Sym_hi - ok
21:39:57.0709 1980  [ 36887B56EC2D98B9C362F6AE4DE5B7B0 ] Sym_u3          C:\Windows\system32\drivers\sym_u3.sys
21:39:57.0709 1980  Sym_u3 - ok
21:39:57.0756 1980  [ 92D7A8B0F87B036F17D25885937897A6 ] SysMain         C:\Windows\system32\sysmain.dll
21:39:57.0772 1980  SysMain - ok
21:39:57.0818 1980  [ 005CE42567F9113A3BCCB3B20073B029 ] TabletInputService C:\Windows\System32\TabSvc.dll
21:39:57.0818 1980  TabletInputService - ok
21:39:57.0850 1980  [ CC2562B4D55E0B6A4758C65407F63B79 ] TapiSrv         C:\Windows\System32\tapisrv.dll
21:39:57.0865 1980  TapiSrv - ok
21:39:57.0881 1980  [ CDBE8D7C1E201B911CDC346D06617FB5 ] TBS             C:\Windows\System32\tbssvc.dll
21:39:57.0881 1980  TBS - ok
21:39:57.0928 1980  [ AC8D5728E6AD6A7C4819D9A67008337A ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
21:39:57.0959 1980  Tcpip - ok
21:39:57.0990 1980  [ AC8D5728E6AD6A7C4819D9A67008337A ] Tcpip6          C:\Windows\system32\DRIVERS\tcpip.sys
21:39:58.0006 1980  Tcpip6 - ok
21:39:58.0037 1980  [ FD8FDE859E38E40A20085EBB0C22B416 ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
21:39:58.0037 1980  tcpipreg - ok
21:39:58.0068 1980  [ 1D8BF4AAA5FB7A2761475781DC1195BC ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
21:39:58.0068 1980  TDPIPE - ok
21:39:58.0084 1980  [ 7F7E00CDF609DF657F4CDA02DD1C9BB1 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
21:39:58.0084 1980  TDTCP - ok
21:39:58.0130 1980  [ 458919C8C42E398DC4802178D5FFEE27 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
21:39:58.0130 1980  tdx - ok
21:39:58.0162 1980  [ 8C19678D22649EC002EF2282EAE92F98 ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
21:39:58.0162 1980  TermDD - ok
21:39:58.0208 1980  [ 5CDD30BC217082DAC71A9878D9BFD566 ] TermService     C:\Windows\System32\termsrv.dll
21:39:58.0240 1980  TermService - ok
21:39:58.0271 1980  [ 56793271ECDEDD350C5ADD305603E963 ] Themes          C:\Windows\system32\shsvcs.dll
21:39:58.0271 1980  Themes - ok
21:39:58.0286 1980  [ 3CBE4995E80E13CCFBC42E5DCF3AC81A ] THREADORDER     C:\Windows\system32\mmcss.dll
21:39:58.0286 1980  THREADORDER - ok
21:39:58.0349 1980  [ F4689F05AF472A651A7B1B7B02D200E7 ] TrkWks          C:\Windows\System32\trkwks.dll
21:39:58.0349 1980  TrkWks - ok
21:39:58.0396 1980  [ 66328B08EF5A9305D8EDE36B93930369 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
21:39:58.0411 1980  TrustedInstaller - ok
21:39:58.0427 1980  [ 9E5409CD17C8BEF193AAD498F3BC2CB8 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
21:39:58.0427 1980  tssecsrv - ok
21:39:58.0458 1980  [ 89EC74A9E602D16A75A4170511029B3C ] tunmp           C:\Windows\system32\DRIVERS\tunmp.sys
21:39:58.0458 1980  tunmp - ok
21:39:58.0474 1980  [ 30A9B3F45AD081BFFC3BCAA9C812B609 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
21:39:58.0474 1980  tunnel - ok
21:39:58.0489 1980  [ FEC266EF401966311744BD0F359F7F56 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
21:39:58.0489 1980  uagp35 - ok
21:39:58.0520 1980  [ 00C8CE31657624A125FDB90EFD554371 ] UBHelper        C:\Windows\system32\drivers\UBHelper.sys
21:39:58.0520 1980  UBHelper - ok
21:39:58.0552 1980  [ FAF2640A2A76ED03D449E443194C4C34 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
21:39:58.0552 1980  udfs - ok
21:39:58.0614 1980  [ 060507C4113391394478F6953A79EEDC ] UI0Detect       C:\Windows\system32\UI0Detect.exe
21:39:58.0614 1980  UI0Detect - ok
21:39:58.0630 1980  [ 4EC9447AC3AB462647F60E547208CA00 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
21:39:58.0630 1980  uliagpkx - ok
21:39:58.0645 1980  [ 697F0446134CDC8F99E69306184FBBB4 ] uliahci         C:\Windows\system32\drivers\uliahci.sys
21:39:58.0645 1980  uliahci - ok
21:39:58.0661 1980  [ 31707F09846056651EA2C37858F5DDB0 ] UlSata          C:\Windows\system32\drivers\ulsata.sys
21:39:58.0661 1980  UlSata - ok
21:39:58.0676 1980  [ 85E5E43ED5B48C8376281BAB519271B7 ] ulsata2         C:\Windows\system32\drivers\ulsata2.sys
21:39:58.0676 1980  ulsata2 - ok
21:39:58.0692 1980  [ 46E9A994C4FED537DD951F60B86AD3F4 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
21:39:58.0692 1980  umbus - ok
21:39:58.0739 1980  [ 7093799FF80E9DECA0680D2E3535BE60 ] upnphost        C:\Windows\System32\upnphost.dll
21:39:58.0739 1980  upnphost - ok
21:39:58.0754 1980  USBAAPL64 - ok
21:39:58.0786 1980  [ C6BA890DE6E41857FBE84175519CAE7D ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
21:39:58.0786 1980  usbaudio - ok
21:39:58.0817 1980  [ 07E3498FC60834219D2356293DA0FECC ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
21:39:58.0817 1980  usbccgp - ok
21:39:58.0832 1980  [ 9247F7E0B65852C1F6631480984D6ED2 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
21:39:58.0848 1980  usbcir - ok
21:39:58.0864 1980  [ 827E44DE934A736EA31E91D353EB126F ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
21:39:58.0864 1980  usbehci - ok
21:39:58.0910 1980  [ BB35CD80A2ECECFADC73569B3D70C7D1 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
21:39:58.0910 1980  usbhub - ok
21:39:58.0942 1980  [ E406B003A354776D317762694956B0FC ] usbohci         C:\Windows\system32\DRIVERS\usbohci.sys
21:39:58.0942 1980  usbohci - ok
21:39:58.0973 1980  [ 28B693B6D31E7B9332C1BDCEFEF228C1 ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
21:39:58.0973 1980  usbprint - ok
21:39:59.0004 1980  [ B854C1558FCA0C269A38663E8B59B581 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
21:39:59.0004 1980  USBSTOR - ok
21:39:59.0020 1980  [ B2872CBF9F47316ABD0E0C74A1ABA507 ] usbuhci         C:\Windows\system32\DRIVERS\usbuhci.sys
21:39:59.0020 1980  usbuhci - ok
21:39:59.0066 1980  [ D76E231E4850BB3F88A3D9A78DF191E3 ] UxSms           C:\Windows\System32\uxsms.dll
21:39:59.0066 1980  UxSms - ok
21:39:59.0113 1980  [ 294945381DFA7CE58CECF0A9896AF327 ] vds             C:\Windows\System32\vds.exe
21:39:59.0113 1980  vds - ok
21:39:59.0144 1980  [ 916B94BCF1E09873FFF2D5FB11767BBC ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
21:39:59.0144 1980  vga - ok
21:39:59.0176 1980  [ B83AB16B51FEDA65DD81B8C59D114D63 ] VgaSave         C:\Windows\System32\drivers\vga.sys
21:39:59.0176 1980  VgaSave - ok
21:39:59.0191 1980  [ 8294B6C3FDB6C33F24E150DE647ECDAA ] viaide          C:\Windows\system32\drivers\viaide.sys
21:39:59.0191 1980  viaide - ok
21:39:59.0222 1980  [ 2B7E885ED951519A12C450D24535DFCA ] volmgr          C:\Windows\system32\drivers\volmgr.sys
21:39:59.0222 1980  volmgr - ok
21:39:59.0285 1980  [ CEC5AC15277D75D9E5DEC2E1C6EAF877 ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
21:39:59.0285 1980  volmgrx - ok
21:39:59.0332 1980  [ 582F710097B46140F5A89A19A6573D4B ] volsnap         C:\Windows\system32\drivers\volsnap.sys
21:39:59.0332 1980  volsnap - ok
21:39:59.0347 1980  [ A68F455ED2673835209318DD61BFBB0E ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
21:39:59.0363 1980  vsmraid - ok
21:39:59.0410 1980  [ B75232DAD33BFD95BF6F0A3E6BFF51E1 ] VSS             C:\Windows\system32\vssvc.exe
21:39:59.0441 1980  VSS - ok
21:39:59.0488 1980  [ F14A7DE2EA41883E250892E1E5230A9A ] W32Time         C:\Windows\system32\w32time.dll
21:39:59.0503 1980  W32Time - ok
21:39:59.0534 1980  [ FEF8FE5923FEAD2CEE4DFABFCE3393A7 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
21:39:59.0534 1980  WacomPen - ok
21:39:59.0566 1980  [ B8E7049622300D20BA6D8BE0C47C0CFD ] Wanarp          C:\Windows\system32\DRIVERS\wanarp.sys
21:39:59.0566 1980  Wanarp - ok
21:39:59.0581 1980  [ B8E7049622300D20BA6D8BE0C47C0CFD ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
21:39:59.0581 1980  Wanarpv6 - ok
21:39:59.0628 1980  [ B4E4C37D0AA6100090A53213EE2BF1C1 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
21:39:59.0644 1980  wcncsvc - ok
21:39:59.0675 1980  [ EA4B369560E986F19D93F45A881484AC ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
21:39:59.0675 1980  WcsPlugInService - ok
21:39:59.0690 1980  [ 0C17A0816F65B89E362E682AD5E7266E ] Wd              C:\Windows\system32\drivers\wd.sys
21:39:59.0690 1980  Wd - ok
21:39:59.0753 1980  [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
21:39:59.0768 1980  Wdf01000 - ok
21:39:59.0815 1980  [ C5EFDA73EBFCA8B02A094898DE0A9276 ] WdiServiceHost  C:\Windows\system32\wdi.dll
21:39:59.0815 1980  WdiServiceHost - ok
21:39:59.0815 1980  [ C5EFDA73EBFCA8B02A094898DE0A9276 ] WdiSystemHost   C:\Windows\system32\wdi.dll
21:39:59.0815 1980  WdiSystemHost - ok
21:39:59.0862 1980  [ 3E6D05381CF35F75EBB055544A8ED9AC ] WebClient       C:\Windows\System32\webclnt.dll
21:39:59.0862 1980  WebClient - ok
21:39:59.0893 1980  [ 8D40BC587993F876658BF9FB0F7D3462 ] Wecsvc          C:\Windows\system32\wecsvc.dll
21:39:59.0893 1980  Wecsvc - ok
21:39:59.0924 1980  [ 9C980351D7E96288EA0C23AE232BD065 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
21:39:59.0940 1980  wercplsupport - ok
21:39:59.0956 1980  [ 66B9ECEBC46683F47EDC06333C075FEF ] WerSvc          C:\Windows\System32\WerSvc.dll
21:39:59.0956 1980  WerSvc - ok
21:39:59.0971 1980  WinDefend - ok
21:40:00.0049 1980  WINFLASH64 - ok
21:40:00.0049 1980  WinHttpAutoProxySvc - ok
21:40:00.0127 1980  [ D2E7296ED1BD26D8DB2799770C077A02 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
21:40:00.0127 1980  Winmgmt - ok
21:40:00.0190 1980  [ 6CBB0C68F13B9C2EC1B16F5FA5E7C869 ] WinRM           C:\Windows\system32\WsmSvc.dll
21:40:00.0236 1980  WinRM - ok
21:40:00.0283 1980  [ EC339C8115E91BAED835957E9A677F16 ] Wlansvc         C:\Windows\System32\wlansvc.dll
21:40:00.0299 1980  Wlansvc - ok
21:40:00.0346 1980  [ E18AEBAAA5A773FE11AA2C70F65320F5 ] WmiAcpi         C:\Windows\system32\DRIVERS\wmiacpi.sys
21:40:00.0346 1980  WmiAcpi - ok
21:40:00.0392 1980  [ 21FA389E65A852698B6A1341F36EE02D ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
21:40:00.0392 1980  wmiApSrv - ok
21:40:00.0424 1980  WMPNetworkSvc - ok
21:40:00.0439 1980  [ CBC156C913F099E6680D1DF9307DB7A8 ] WPCSvc          C:\Windows\System32\wpcsvc.dll
21:40:00.0455 1980  WPCSvc - ok
21:40:00.0486 1980  [ 490A18B4E4D53DC10879DEAA8E8B70D9 ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
21:40:00.0486 1980  WPDBusEnum - ok
21:40:00.0533 1980  [ 5E2401B3FC1089C90E081291357371A9 ] WpdUsb          C:\Windows\system32\DRIVERS\wpdusb.sys
21:40:00.0533 1980  WpdUsb - ok
21:40:00.0642 1980  [ 991E2C2CF3BC204C2BB2EE1476149E4E ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\WPF\WPFFontCache_v0400.exe
21:40:00.0658 1980  WPFFontCache_v0400 - ok
21:40:00.0689 1980  [ 8A900348370E359B6BFF6A550E4649E1 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
21:40:00.0689 1980  ws2ifsl - ok
21:40:00.0736 1980  [ 9EA3E6D0EF7A5C2B9181961052A4B01A ] wscsvc          C:\Windows\System32\wscsvc.dll
21:40:00.0736 1980  wscsvc - ok
21:40:00.0751 1980  WSearch - ok
21:40:00.0814 1980  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
21:40:00.0845 1980  wuauserv - ok
21:40:00.0892 1980  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
21:40:00.0907 1980  WudfPf - ok
21:40:00.0923 1980  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
21:40:00.0923 1980  WUDFRd - ok
21:40:00.0970 1980  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
21:40:00.0970 1980  wudfsvc - ok
21:40:00.0970 1980  X6va006 - ok
21:40:00.0970 1980  X6va008 - ok
21:40:01.0016 1980  [ 47AEA795C67B7440E60D1F7542CB3D38 ] xusb21          C:\Windows\system32\DRIVERS\xusb21.sys
21:40:01.0032 1980  xusb21 - ok
21:40:01.0094 1980  [ DD0042F0C3B606A6A8B92D49AFB18AD6 ] YahooAUService  C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
21:40:01.0126 1980  YahooAUService - ok
21:40:01.0126 1980  ================ Scan global ===============================
21:40:01.0172 1980  [ 060DC3A7A9A2626031EB23D90151428D ] C:\Windows\system32\basesrv.dll
21:40:01.0204 1980  [ AA137104CDFC81818A309CDE32ABB74A ] C:\Windows\system32\winsrv.dll
21:40:01.0219 1980  [ AA137104CDFC81818A309CDE32ABB74A ] C:\Windows\system32\winsrv.dll
21:40:01.0266 1980  [ 934E0B7D77FF78C18D9F8891221B6DE3 ] C:\Windows\system32\services.exe
21:40:01.0266 1980  [Global] - ok
21:40:01.0266 1980  ================ Scan MBR ==================================
21:40:01.0282 1980  [ 9309CFD135A4254BF4738924714BFA9A ] \Device\Harddisk0\DR0
21:40:01.0484 1980  \Device\Harddisk0\DR0 - ok
21:40:01.0484 1980  [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk2\DR2
21:40:01.0484 1980  \Device\Harddisk2\DR2 - ok
21:40:01.0484 1980  ================ Scan VBR ==================================
21:40:01.0500 1980  [ 2E20800C2CCB959EDAF3A1233FB46F7E ] \Device\Harddisk0\DR0\Partition1
21:40:01.0500 1980  \Device\Harddisk0\DR0\Partition1 - ok
21:40:01.0516 1980  [ EF0ED1443C4B5BEAD5D02FE218FC4F69 ] \Device\Harddisk0\DR0\Partition2
21:40:01.0516 1980  \Device\Harddisk0\DR0\Partition2 - ok
21:40:01.0516 1980  [ FD79B0E00DFB1448ABDDA37F41ED2707 ] \Device\Harddisk2\DR2\Partition1
21:40:01.0516 1980  \Device\Harddisk2\DR2\Partition1 - ok
21:40:01.0516 1980  ============================================================
21:40:01.0516 1980  Scan finished
21:40:01.0516 1980  ============================================================
21:40:01.0531 2036  Detected object count: 0
21:40:01.0531 2036  Actual detected object count: 0
21:40:58.0456 1756  Deinitialize success
 

 

 

 

# AdwCleaner v2.306 - Logfile created 08/12/2013 at 21:45:45
# Updated 19/07/2013 by Xplode
# Operating system :  Service Pack 2 (64 bits)
# User : Maranon - MARANON-PC
# Boot Mode : Safe mode with networking
# Running from : C:\Users\Maranon\Desktop\AdwCleaner.exe
# Option [Delete]
 
 
***** [Services] *****
 
 
***** [Files / Folders] *****
 
Deleted on reboot : C:\Users\Maranon\AppData\Local\DownTango
Deleted on reboot : C:\Users\Maranon\AppData\LocalLow\BabylonToolbar
Deleted on reboot : C:\Users\Maranon\AppData\LocalLow\boost_interprocess
Deleted on reboot : C:\Users\Maranon\AppData\Roaming\Mozilla\Firefox\Profiles\b6w3tetd.default\jetpack
Deleted on reboot : C:\Users\Maranon\AppData\Roaming\registry mechanic
File Deleted : C:\Users\Maranon\AppData\Roaming\Mozilla\Firefox\Profiles\b6w3tetd.default\searchplugins\Searchab.xml
 
***** [Registry] *****
 
Key Deleted : HKCU\Software\1ClickDownload
Key Deleted : HKCU\Software\ExpressFiles
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Key Deleted : HKCU\Software\PrivitizeVPNInstallDates
Key Deleted : HKCU\Software\YahooPartnerToolbar
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{6536801B-F50C-449B-9476-093DFD3789E3}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\BabylonHelper.EXE
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{EF99BD32-C1FB-11D2-892F-0090271D4F88}]
 
***** [Internet Browsers] *****
 
-\\ Internet Explorer v
 
Replaced : [HKCU\Software\Microsoft\Internet Explorer\Main - Start Page] = hxxp://searchab.com/?aff=7&uid=d67759b6-4fc5-11e2-84bb-001d72a1472a --> hxxp://www.google.com
 
-\\ Mozilla Firefox v [Unable to get version]
 
File : C:\Users\Maranon\AppData\Roaming\Mozilla\Firefox\Profiles\b6w3tetd.default\prefs.js
 
Deleted : user_pref("browser.startup.homepage", "hxxp://searchab.com/?aff=7&uid=d67759b6-4fc5-11e2-84bb-001d72[...]
Deleted : user_pref("keyword.URL", "hxxp://searchab.com/?aff=7&uid=d67759b6-4fc5-11e2-84bb-001d72a1472a&q=");
 
-\\ Google Chrome v23.0.1271.97
 
File : C:\Users\Maranon\AppData\Local\Google\Chrome\User Data\Default\Preferences
 
Deleted [l.13] : homepage = "hxxp://searchab.com/?aff=7&uid=d67759b6-4fc5-11e2-84bb-001d72a1472a",
Deleted [l.49] : keyword = "searchab.com",
Deleted [l.52] : search_url = "hxxp://searchab.com/?aff=7&uid=d67759b6-4fc5-11e2-84bb-001d72a1472a&q={searchTe[...]
Deleted [l.1680] : homepage = "hxxp://searchab.com/?aff=7&uid=d67759b6-4fc5-11e2-84bb-001d72a1472a",
 
*************************
 
AdwCleaner[S1].txt - [4937 octets] - [27/12/2012 16:47:58]
AdwCleaner[S2].txt - [3236 octets] - [12/08/2013 21:45:45]
 
########## EOF - C:\AdwCleaner[S2].txt - [3296 octets] ##########
 

 

C:\Users\Maranon\Downloads\avira_free_antivirus_en.exe a variant of Win32/Bundled.Toolbar.Ask application deleted - quarantined


#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,331 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:08:49 PM

Posted 13 August 2013 - 01:40 PM

Will MBAM run now?
 
Try running this first then MBAM
 
Please download Rkill by Grinler and save it to your desktop.
  • Link 1
  • Link 2 %5BLIST%5D
  • Double-click on the Rkill desktop icon to run the tool.
  • If using Vista, right-click on it and Run As Administrator.
  • A black DOS box will briefly flash and then disappear. This is normal and indicates the tool ran successfully.
  • If not, delete the file, then download and use the one provided in Link 2.
  • If it does not work, repeat the process and attempt to use one of the remaining links until the tool runs.
  • If the tool does not run from any of the links provided, please let me know.
  • Do not reboot the computer, you will need to run the application again.
  • [/list]

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#5 Kimaran

Kimaran
  • Topic Starter

  • Members
  • 38 posts
  • OFFLINE
  •  
  • Local time:05:49 PM

Posted 13 August 2013 - 08:45 PM

I still get 

run time error 372

Failed to load control vbalgrid from vbalgrid.ocx Your version of vbalgrid6.ocx may be out dated

 

here's the r kill log

Rkill 2.6.0 by Lawrence Abrams (Grinler)
Copyright 2008-2013 BleepingComputer.com
More Information about Rkill can be found at this link:
 
Program started at: 08/13/2013 06:26:58 PM in x64 mode. (Safe Mode)
Windows Version: Windows Vista ™ Home Premium Service Pack 2
 
Checking for Windows services to stop:
 
 * No malware services found to stop.
 
Checking for processes to terminate:
 
 * No malware processes found to kill.
 
Checking Registry for malware related settings:
 
 * No issues found in the Registry.
 
Resetting .EXE, .COM, & .BAT associations in the Windows Registry.
 
Performing miscellaneous checks:
 
 * ALERT: ZEROACCESS rootkit symptoms found!
 
     * C:\Users\Maranon\AppData\Local\{22f93c74-47c9-2bd8-9fd8-c7faf1282bc5}\ [ZA Dir]
     * C:\Users\Maranon\AppData\Local\{22f93c74-47c9-2bd8-9fd8-c7faf1282bc5}\@ [ZA File]
     * C:\Users\Maranon\AppData\Local\{22f93c74-47c9-2bd8-9fd8-c7faf1282bc5}\L\ [ZA Dir]
     * C:\Users\Maranon\AppData\Local\{22f93c74-47c9-2bd8-9fd8-c7faf1282bc5}\U\ [ZA Dir]
     * C:\Windows\Installer\{22f93c74-47c9-2bd8-9fd8-c7faf1282bc5}\ [ZA Dir]
     * C:\Windows\Installer\{22f93c74-47c9-2bd8-9fd8-c7faf1282bc5}\U\ [ZA Dir]
 
Checking Windows Service Integrity: 
 
 * COM+ Event System (EventSystem) is not Running.
   Startup Type set to: Automatic
 
 * Security Center (wscsvc) is not Running.
   Startup Type set to: Automatic (Delayed Start)
 
 * Windows Update (wuauserv) is not Running.
   Startup Type set to: Automatic (Delayed Start)
 
Searching for Missing Digital Signatures: 
 
 * No issues found.
 
Checking HOSTS File: 
 
 * HOSTS file entries found: 
 
  127.0.0.1       localhost
  ::1             localhost
 
Program finished at: 08/13/2013 06:32:50 PM
Execution time: 0 hours(s), 5 minute(s), and 51 seconds(s)


#6 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,331 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:08:49 PM

Posted 13 August 2013 - 10:02 PM

Please download/install Visual Basic 6.0 run-time files: http://support.microsoft.com/kb/192461
 
 then...

Please do a MBAM clean re-install by doing the following:

1.Download and run the latest mbam-clean.exe.
2.Restart your computer, please allow it to do so - VERY IMPORTANT!
3.Disable your Anti-Virus and install the latest version of Malwarebytes' Anti-Malware from HERE.
4.Reactivate the PRO version of the program, if applicable, using the license within the boxed version or was sent via email.
5.Launch the program and set the Protection and Registration, if applicable. Then go to the UPDATE tab if not done during installation and check for updates.
6.Restart the computer again and verify that MBAM is in the task tray if using the PRO version.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#7 Kimaran

Kimaran
  • Topic Starter

  • Members
  • 38 posts
  • OFFLINE
  •  
  • Local time:05:49 PM

Posted 13 August 2013 - 10:14 PM

Still not working.


Edited by Kimaran, 14 August 2013 - 08:03 PM.


#8 Kimaran

Kimaran
  • Topic Starter

  • Members
  • 38 posts
  • OFFLINE
  •  
  • Local time:05:49 PM

Posted 14 August 2013 - 08:02 PM

I tried it again.  It repeats the run time error 372.



#9 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,331 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:08:49 PM

Posted 14 August 2013 - 08:47 PM

OK, looking at this, it because of the Zeroaccess infection. We need to start a new topic on this.

Please follow this Preparation Guide and post in a new topic.
Let me know if all went well.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users