Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

MSE constant cleaning


  • Please log in to reply
30 replies to this topic

#1 dflahe

dflahe

  • Members
  • 40 posts
  • OFFLINE
  •  
  • Local time:09:03 PM

Posted 28 January 2013 - 02:47 PM

Hi..Mv MSE continues to quarantine this: Trojan:JS/Medfos.B. It was 35Medfos.B earlier. Ran MSE Deep scan, it was found around 20 times, quarantined, and I deleted it. It pops up off the tray saying' Detected Threats are being cleaned, no action necessary. I rean Super-antispyware thru it, didn't kill it. I had rec'd a note in AOL from "fedex" saying i had a package at the post office..stupid me i, 'Clicked Here for Receipt. " I`see it pop up as a notebook .txt, i save it to desktop, then trash it, but it comes back. MSE says it's a Severe threat...Anybody else seeing this??

Edited by bloopie, 28 January 2013 - 03:15 PM.
Moved topic from XP to the more appropriate forum. ~bloopie


BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:03 PM

Posted 28 January 2013 - 03:44 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here.If you get crashes in normal mode,run it in safemode with networking

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 dflahe

dflahe
  • Topic Starter

  • Members
  • 40 posts
  • OFFLINE
  •  
  • Local time:09:03 PM

Posted 28 January 2013 - 06:14 PM

Thanx..I'll do tomorrow, if that's ok??

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:03 PM

Posted 28 January 2013 - 06:19 PM

Ok :thumbup2:

#5 dflahe

dflahe
  • Topic Starter

  • Members
  • 40 posts
  • OFFLINE
  •  
  • Local time:09:03 PM

Posted 29 January 2013 - 09:11 AM

Hate to sound like a rube, but i have the first actions report as a text document..how can I 'post" that?

Thanx...Dana

#6 dflahe

dflahe
  • Topic Starter

  • Members
  • 40 posts
  • OFFLINE
  •  
  • Local time:09:03 PM

Posted 29 January 2013 - 09:39 AM

Is it just Copy and Paste?

#7 dflahe

dflahe
  • Topic Starter

  • Members
  • 40 posts
  • OFFLINE
  •  
  • Local time:09:03 PM

Posted 29 January 2013 - 12:34 PM

9:04:09.0953 0392 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
09:04:10.0281 0392 ============================================================
09:04:10.0281 0392 Current date / time: 2013/01/29 09:04:10.0281
09:04:10.0281 0392 SystemInfo:
09:04:10.0281 0392
09:04:10.0281 0392 OS Version: 5.1.2600 ServicePack: 3.0
09:04:10.0281 0392 Product type: Workstation
09:04:10.0281 0392 ComputerName: LAPTOP
09:04:10.0281 0392 UserName: Dana
09:04:10.0281 0392 Windows directory: C:\WINDOWS
09:04:10.0281 0392 System windows directory: C:\WINDOWS
09:04:10.0281 0392 Processor architecture: Intel x86
09:04:10.0281 0392 Number of processors: 2
09:04:10.0281 0392 Page size: 0x1000
09:04:10.0281 0392 Boot type: Normal boot
09:04:10.0281 0392 ============================================================
09:04:14.0718 0392 Drive \Device\Harddisk0\DR0 - Size: 0xDF8F90000 (55.89 Gb), SectorSize: 0x200, Cylinders: 0x1C80, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
09:04:14.0718 0392 ============================================================
09:04:14.0718 0392 \Device\Harddisk0\DR0:
09:04:14.0718 0392 MBR partitions:
09:04:14.0718 0392 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x6FC7C41
09:04:14.0718 0392 ============================================================
09:04:14.0765 0392 C: <-> \Device\Harddisk0\DR0\Partition1
09:04:14.0765 0392 ============================================================
09:04:14.0765 0392 Initialize success
09:04:14.0765 0392 ============================================================
09:04:43.0015 4084 ============================================================
09:04:43.0015 4084 Scan started
09:04:43.0015 4084 Mode: Manual; TDLFS;
09:04:43.0015 4084 ============================================================
09:04:43.0203 4084 ================ Scan system memory ========================
09:04:43.0203 4084 System memory - ok
09:04:43.0203 4084 ================ Scan services =============================
09:04:43.0359 4084 [ 01E81C84AD1D0ACC61CF3CFD06632210 ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
09:04:43.0375 4084 !SASCORE - ok
09:04:43.0500 4084 Abiosdsk - ok
09:04:43.0500 4084 abp480n5 - ok
09:04:43.0562 4084 [ 8FD99680A539792A30E97944FDAECF17 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
09:04:43.0578 4084 ACPI - ok
09:04:43.0640 4084 [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
09:04:43.0640 4084 ACPIEC - ok
09:04:43.0687 4084 [ 84F21F6572D0AFE02074291F6CEABBDB ] ACS C:\WINDOWS\system32\ACS.exe
09:04:43.0687 4084 ACS - ok
09:04:43.0796 4084 [ 1474F121C3DF1232D3E7239C03691EE6 ] AdobeActiveFileMonitor9.0 C:\Program Files\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe
09:04:43.0796 4084 AdobeActiveFileMonitor9.0 - ok
09:04:43.0921 4084 [ 424877CB9D5517F980FF7BACA2EB379D ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
09:04:43.0937 4084 AdobeFlashPlayerUpdateSvc - ok
09:04:43.0937 4084 adpu160m - ok
09:04:44.0125 4084 [ 96D6CDD0B32846E8CFBE592F4F32E608 ] AdvancedSystemCareService5 C:\Program Files\IObit\Advanced SystemCare 5\ASCService.exe
09:04:44.0156 4084 AdvancedSystemCareService5 - ok
09:04:44.0187 4084 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
09:04:44.0187 4084 aec - ok
09:04:44.0234 4084 [ A7B8A3A79D35215D798A300DF49ED23F ] Afc C:\WINDOWS\system32\drivers\Afc.sys
09:04:44.0234 4084 Afc - ok
09:04:44.0296 4084 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
09:04:44.0296 4084 AFD - ok
09:04:44.0421 4084 [ 052343CD49C8DA20C48958CFE73C7D44 ] AgereSoftModem C:\WINDOWS\system32\DRIVERS\AGRSM.sys
09:04:44.0453 4084 AgereSoftModem - ok
09:04:44.0468 4084 Aha154x - ok
09:04:44.0484 4084 aic78u2 - ok
09:04:44.0500 4084 aic78xx - ok
09:04:44.0562 4084 [ BA88534A3CEB6161E7432438B9EA4F54 ] ALCXSENS C:\WINDOWS\system32\drivers\ALCXSENS.SYS
09:04:44.0578 4084 ALCXSENS - ok
09:04:44.0625 4084 [ 5FF6F7E58C798F1474C0BBFFC23CB78D ] ALCXWDM C:\WINDOWS\system32\drivers\ALCXWDM.SYS
09:04:44.0640 4084 ALCXWDM - ok
09:04:44.0687 4084 [ A9A3DAA780CA6C9671A19D52456705B4 ] Alerter C:\WINDOWS\system32\alrsvc.dll
09:04:44.0687 4084 Alerter - ok
09:04:44.0718 4084 [ 8C515081584A38AA007909CD02020B3D ] ALG C:\WINDOWS\System32\alg.exe
09:04:44.0734 4084 ALG - ok
09:04:44.0734 4084 AliIde - ok
09:04:44.0750 4084 amsint - ok
09:04:44.0921 4084 [ 8FA646F0E639D9A8C8B98E217D471DC0 ] AOL ACS C:\PROGRA~1\COMMON~1\AOL\ACS\AOLacsd.exe
09:04:44.0953 4084 AOL ACS - ok
09:04:45.0015 4084 [ 3ED81E8B4709D13E5A38DB2D8E792B28 ] ApfiltrService C:\WINDOWS\system32\DRIVERS\Apfiltr.sys
09:04:45.0015 4084 ApfiltrService - ok
09:04:45.0109 4084 [ F401929EE0CC92BFE7F15161CA535383 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
09:04:45.0125 4084 Apple Mobile Device - ok
09:04:45.0218 4084 [ 89142F8A7C303D9F9A8B38A5385E3FD2 ] Application Updater C:\Program Files\Application Updater\ApplicationUpdater.exe
09:04:45.0234 4084 Application Updater - ok
09:04:45.0250 4084 AppMgmt - ok
09:04:45.0343 4084 [ 37E1A3630872B3CCAA45E2468F437DF0 ] AR5211 C:\WINDOWS\system32\DRIVERS\ar5211.sys
09:04:45.0343 4084 AR5211 - ok
09:04:45.0406 4084 [ B5B8A80875C1DEDEDA8B02765642C32F ] Arp1394 C:\WINDOWS\system32\DRIVERS\arp1394.sys
09:04:45.0406 4084 Arp1394 - ok
09:04:45.0421 4084 asc - ok
09:04:45.0453 4084 asc3350p - ok
09:04:45.0468 4084 asc3550 - ok
09:04:45.0640 4084 [ 776ACEFA0CA9DF0FAA51A5FB2F435705 ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
09:04:45.0718 4084 aspnet_state - ok
09:04:45.0750 4084 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
09:04:45.0750 4084 AsyncMac - ok
09:04:45.0796 4084 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
09:04:45.0796 4084 atapi - ok
09:04:45.0812 4084 Atdisk - ok
09:04:45.0890 4084 [ 174C7EE63011017CA12E31CED195581D ] Ati HotKey Poller C:\WINDOWS\system32\Ati2evxx.exe
09:04:45.0890 4084 Ati HotKey Poller - ok
09:04:45.0953 4084 [ 4938AD74DE9088F70922FABF86912EEE ] ati2mtag C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
09:04:45.0968 4084 ati2mtag - ok
09:04:46.0015 4084 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
09:04:46.0015 4084 Atmarpc - ok
09:04:46.0062 4084 [ DEF7A7882BEC100FE0B2CE2549188F9D ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
09:04:46.0062 4084 AudioSrv - ok
09:04:46.0125 4084 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
09:04:46.0125 4084 audstub - ok
09:04:46.0265 4084 [ F48FEB7DA35821DA15E0B006DCB9A169 ] BBSvc C:\Program Files\Microsoft\BingBar\7.1.391.0\BBSvc.exe
09:04:46.0265 4084 BBSvc - ok
09:04:46.0296 4084 [ 8E16F7A85441986FD2B9CE6C879524E4 ] BBUpdate C:\Program Files\Microsoft\BingBar\7.1.391.0\SeaPort.exe
09:04:46.0312 4084 BBUpdate - ok
09:04:46.0375 4084 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
09:04:46.0375 4084 Beep - ok
09:04:46.0437 4084 [ 574738F61FCA2935F5265DC4E5691314 ] BITS C:\WINDOWS\system32\qmgr.dll
09:04:46.0546 4084 BITS - ok
09:04:46.0656 4084 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
09:04:46.0656 4084 Bonjour Service - ok
09:04:46.0718 4084 [ CFD4E51402DA9838B5A04AE680AF54A0 ] Browser C:\WINDOWS\System32\browser.dll
09:04:46.0734 4084 Browser - ok
09:04:46.0781 4084 [ 10D5FB74EE18EA49C30DAAA203C0E0EC ] caboagp C:\WINDOWS\system32\DRIVERS\atisgkaf.sys
09:04:46.0781 4084 caboagp - ok
09:04:46.0843 4084 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
09:04:46.0843 4084 cbidf2k - ok
09:04:46.0843 4084 cd20xrnt - ok
09:04:46.0906 4084 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
09:04:46.0906 4084 Cdaudio - ok
09:04:46.0937 4084 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
09:04:46.0937 4084 Cdfs - ok
09:04:46.0968 4084 [ C3E76B0C05EBF7261ABFB08D9E75822E ] Cdr4_xp C:\WINDOWS\system32\drivers\Cdr4_xp.sys
09:04:46.0968 4084 Cdr4_xp - ok
09:04:46.0984 4084 [ 17590DFE29E02842A6E3A463E443D1B9 ] Cdralw2k C:\WINDOWS\system32\drivers\Cdralw2k.sys
09:04:46.0984 4084 Cdralw2k - ok
09:04:47.0015 4084 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
09:04:47.0015 4084 Cdrom - ok
09:04:47.0125 4084 [ 003F755C884B6C61FAFD371E01609976 ] CeEPwrSvc C:\Program Files\Toshiba\Power Management\CeEPwrSvc.exe
09:04:47.0125 4084 CeEPwrSvc - ok
09:04:47.0187 4084 [ 527235C8109BF5D4DBDA7D1948648C46 ] CFSvcs C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
09:04:47.0187 4084 CFSvcs - ok
09:04:47.0203 4084 Changer - ok
09:04:47.0250 4084 [ 1CFE720EB8D93A7158A4EBC3AB178BDE ] CiSvc C:\WINDOWS\system32\cisvc.exe
09:04:47.0250 4084 CiSvc - ok
09:04:47.0296 4084 [ 34CBE729F38138217F9C80212A2A0C82 ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
09:04:47.0296 4084 ClipSrv - ok
09:04:47.0406 4084 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
09:04:47.0484 4084 clr_optimization_v2.0.50727_32 - ok
09:04:47.0546 4084 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
09:04:47.0750 4084 clr_optimization_v4.0.30319_32 - ok
09:04:47.0781 4084 [ 0F6C187D38D98F8DF904589A5F94D411 ] CmBatt C:\WINDOWS\system32\DRIVERS\CmBatt.sys
09:04:47.0781 4084 CmBatt - ok
09:04:47.0796 4084 CmdIde - ok
09:04:47.0843 4084 [ 6E4C9F21F0FAE8940661144F41B13203 ] Compbatt C:\WINDOWS\system32\DRIVERS\compbatt.sys
09:04:47.0859 4084 Compbatt - ok
09:04:47.0859 4084 COMSysApp - ok
09:04:47.0890 4084 Cpqarray - ok
09:04:47.0953 4084 [ 3C8B6609712F4FF78E521F6DCFC4032B ] Creative Service for CDROM Access C:\WINDOWS\system32\CTsvcCDA.EXE
09:04:47.0953 4084 Creative Service for CDROM Access - ok
09:04:48.0015 4084 [ 3D4E199942E29207970E04315D02AD3B ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
09:04:48.0015 4084 CryptSvc - ok
09:04:48.0031 4084 dac2w2k - ok
09:04:48.0046 4084 dac960nt - ok
09:04:48.0140 4084 [ 6B27A5C03DFB94B4245739065431322C ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
09:04:48.0156 4084 DcomLaunch - ok
09:04:48.0218 4084 [ 5E38D7684A49CACFB752B046357E0589 ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
09:04:48.0218 4084 Dhcp - ok
09:04:48.0265 4084 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
09:04:48.0281 4084 Disk - ok
09:04:48.0312 4084 [ E73B3A5337EA55C2BAE2A1A0CAF7A728 ] DKbFltr C:\WINDOWS\system32\Drivers\DKbFltr.sys
09:04:48.0312 4084 DKbFltr - ok
09:04:48.0328 4084 dmadmin - ok
09:04:48.0421 4084 [ D992FE1274BDE0F84AD826ACAE022A41 ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
09:04:48.0437 4084 dmboot - ok
09:04:48.0468 4084 [ 7C824CF7BBDE77D95C08005717A95F6F ] dmio C:\WINDOWS\system32\drivers\dmio.sys
09:04:48.0468 4084 dmio - ok
09:04:48.0531 4084 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
09:04:48.0531 4084 dmload - ok
09:04:48.0578 4084 [ 57EDEC2E5F59F0335E92F35184BC8631 ] dmserver C:\WINDOWS\System32\dmserver.dll
09:04:48.0578 4084 dmserver - ok
09:04:48.0625 4084 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
09:04:48.0625 4084 DMusic - ok
09:04:48.0687 4084 [ 812F9714B6D2D93078BF4D126167C5BA ] DNE C:\WINDOWS\system32\DRIVERS\dne2000.sys
09:04:48.0703 4084 DNE - ok
09:04:48.0750 4084 [ 5F7E24FA9EAB896051FFB87F840730D2 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
09:04:48.0750 4084 Dnscache - ok
09:04:48.0812 4084 [ 0F0F6E687E5E15579EF4DA8DD6945814 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
09:04:48.0812 4084 Dot3svc - ok
09:04:48.0828 4084 dpti2o - ok
09:04:48.0859 4084 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
09:04:48.0859 4084 drmkaud - ok
09:04:48.0921 4084 [ F41619AE216B51D68DDA163805EEFAA9 ] drvmcdb C:\WINDOWS\system32\drivers\drvmcdb.sys
09:04:48.0937 4084 drvmcdb - ok
09:04:48.0968 4084 [ 2FF629C1C443E25D0149B9DFB77E43A8 ] drvnddm C:\WINDOWS\system32\drivers\drvnddm.sys
09:04:50.0234 4084 drvnddm - ok
09:04:50.0328 4084 [ 77C4901986FC7A83E853B300E80D234B ] DVD-RAM_Service C:\WINDOWS\system32\DVDRAMSV.exe
09:04:50.0343 4084 DVD-RAM_Service - ok
09:04:50.0375 4084 [ 2187855A7703ADEF0CEF9EE4285182CC ] EapHost C:\WINDOWS\System32\eapsvc.dll
09:04:50.0375 4084 EapHost - ok
09:04:50.0437 4084 [ 6428A1CE5ABE3E71A97DFDDA0A19546F ] EMSCR C:\WINDOWS\system32\DRIVERS\EMS7SK.sys
09:04:50.0437 4084 EMSCR - ok
09:04:50.0484 4084 [ 0B07768AE046F9ED6A75E5BC75660828 ] EPOWER C:\WINDOWS\system32\Drivers\hkdrv.sys
09:04:50.0515 4084 EPOWER - ok
09:04:50.0562 4084 [ BC93B4A066477954555966D77FEC9ECB ] ERSvc C:\WINDOWS\System32\ersvc.dll
09:04:50.0562 4084 ERSvc - ok
09:04:50.0609 4084 [ 772127B385DEC14B13325D9EFCC0AC14 ] ESDCR C:\WINDOWS\system32\DRIVERS\ESD7SK.sys
09:04:50.0609 4084 ESDCR - ok
09:04:50.0671 4084 [ 472EA4E9734147F8ADA93C4AB944B958 ] ESMCR C:\WINDOWS\system32\DRIVERS\ESM7SK.sys
09:04:50.0671 4084 ESMCR - ok
09:04:50.0734 4084 [ 65DF52F5B8B6E9BBD183505225C37315 ] Eventlog C:\WINDOWS\system32\services.exe
09:04:50.0734 4084 Eventlog - ok
09:04:50.0796 4084 [ D4991D98F2DB73C60D042F1AEF79EFAE ] EventSystem C:\WINDOWS\system32\es.dll
09:04:50.0828 4084 EventSystem - ok
09:04:50.0843 4084 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
09:04:50.0843 4084 Fastfat - ok
09:04:50.0906 4084 [ 99BC0B50F511924348BE19C7C7313BBF ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
09:04:50.0906 4084 FastUserSwitchingCompatibility - ok
09:04:50.0937 4084 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\drivers\Fdc.sys
09:04:50.0937 4084 Fdc - ok
09:04:50.0984 4084 [ D45926117EB9FA946A6AF572FBE1CAA3 ] Fips C:\WINDOWS\system32\drivers\Fips.sys
09:04:50.0984 4084 Fips - ok
09:04:51.0000 4084 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\drivers\Flpydisk.sys
09:04:51.0000 4084 Flpydisk - ok
09:04:51.0062 4084 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
09:04:51.0062 4084 FltMgr - ok
09:04:51.0156 4084 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
09:04:51.0203 4084 FontCache3.0.0.0 - ok
09:04:51.0328 4084 [ 81B4A2C6C9BD17FFB6031A0A61C09764 ] FreeAgentGoNext Service C:\Program Files\Seagate\SeagateManager\Sync\FreeAgentService.exe
09:04:51.0343 4084 FreeAgentGoNext Service - ok
09:04:51.0406 4084 [ 5DF31D9ABA3FE74E042E0005AFAA3574 ] FreeAgentTheater Service C:\Program Files\Seagate\FreeAgent_Theater\Sync\MediaAggreService.exe
09:04:51.0406 4084 FreeAgentTheater Service - ok
09:04:51.0437 4084 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
09:04:51.0437 4084 Fs_Rec - ok
09:04:51.0468 4084 [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
09:04:51.0468 4084 Ftdisk - ok
09:04:51.0515 4084 [ 8182FF89C65E4D38B2DE4BB0FB18564E ] GEARAspiWDM C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
09:04:51.0515 4084 GEARAspiWDM - ok
09:04:51.0562 4084 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
09:04:51.0562 4084 Gpc - ok
09:04:51.0640 4084 [ 626A24ED1228580B9518C01930936DF9 ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
09:04:51.0640 4084 gupdate - ok
09:04:51.0656 4084 [ 626A24ED1228580B9518C01930936DF9 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
09:04:51.0656 4084 gupdatem - ok
09:04:51.0718 4084 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
09:04:51.0718 4084 gusvc - ok
09:04:51.0828 4084 [ 4FCCA060DFE0C51A09DD5C3843888BCD ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
09:04:51.0828 4084 helpsvc - ok
09:04:51.0890 4084 [ DEB04DA35CC871B6D309B77E1443C796 ] HidServ C:\WINDOWS\System32\hidserv.dll
09:04:51.0906 4084 HidServ - ok
09:04:51.0968 4084 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
09:04:52.0015 4084 HidUsb - ok
09:04:52.0062 4084 [ 8878BD685E490239777BFE51320B88E9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
09:04:52.0062 4084 hkmsvc - ok
09:04:52.0078 4084 hpn - ok
09:04:52.0140 4084 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
09:04:52.0156 4084 HTTP - ok
09:04:52.0187 4084 [ 6100A808600F44D999CEBDEF8841C7A3 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
09:04:52.0187 4084 HTTPFilter - ok
09:04:52.0203 4084 i2omgmt - ok
09:04:52.0218 4084 i2omp - ok
09:04:52.0265 4084 [ 4A0B06AA8943C1E332520F7440C0AA30 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
09:04:52.0265 4084 i8042prt - ok
09:04:52.0390 4084 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
09:04:52.0406 4084 idsvc - ok
09:04:52.0531 4084 [ C135BFF15563592B8EA070EA109967F7 ] IHA_MessageCenter C:\Program Files\Verizon\IHA_MessageCenter\Bin\Verizon_IHAMessageCenter.exe
09:04:52.0546 4084 IHA_MessageCenter - ok
09:04:52.0578 4084 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
09:04:52.0593 4084 Imapi - ok
09:04:52.0656 4084 [ 30DEAF54A9755BB8546168CFE8A6B5E1 ] ImapiService C:\WINDOWS\system32\imapi.exe
09:04:52.0656 4084 ImapiService - ok
09:04:52.0671 4084 ini910u - ok
09:04:52.0687 4084 IntelIde - ok
09:04:52.0750 4084 [ 8C953733D8F36EB2133F5BB58808B66B ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
09:04:52.0750 4084 intelppm - ok
09:04:52.0781 4084 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys
09:04:52.0781 4084 Ip6Fw - ok
09:04:52.0828 4084 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
09:04:52.0828 4084 IpFilterDriver - ok
09:04:52.0875 4084 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
09:04:52.0875 4084 IpInIp - ok
09:04:52.0921 4084 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
09:04:52.0937 4084 IpNat - ok
09:04:53.0031 4084 [ E6BE7A41A28D8F2DB174957454D32448 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
09:04:53.0062 4084 iPod Service - ok
09:04:53.0078 4084 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
09:04:53.0078 4084 IPSec - ok
09:04:53.0125 4084 [ ACA5E7B54409F9CB5EED97ED0C81120E ] irda C:\WINDOWS\system32\DRIVERS\irda.sys
09:04:53.0140 4084 irda - ok
09:04:53.0187 4084 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
09:04:53.0187 4084 IRENUM - ok
09:04:53.0218 4084 [ 49CC4533CE897CB2E93C1E84A818FDE5 ] Irmon C:\WINDOWS\System32\irmon.dll
09:04:53.0218 4084 Irmon - ok
09:04:53.0250 4084 [ 05A299EC56E52649B1CF2FC52D20F2D7 ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
09:04:53.0250 4084 isapnp - ok
09:04:53.0281 4084 [ F59C3569A2F2C464BB78CB1BDCDCA55E ] Iviaspi C:\WINDOWS\system32\drivers\iviaspi.sys
09:04:53.0281 4084 Iviaspi - ok
09:04:53.0406 4084 [ 691B9B7C0CC1653732717D292D6B305D ] JavaQuickStarterService C:\Program Files\Java\jre6\bin\jqs.exe
09:04:53.0406 4084 JavaQuickStarterService - ok
09:04:53.0531 4084 [ 463C1EC80CD17420A542B7F36A36F128 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
09:04:53.0546 4084 Kbdclass - ok
09:04:53.0562 4084 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
09:04:53.0578 4084 kmixer - ok
09:04:53.0609 4084 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
09:04:53.0609 4084 KSecDD - ok
09:04:53.0656 4084 [ 3A7C3CBE5D96B8AE96CE81F0B22FB527 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
09:04:53.0656 4084 lanmanserver - ok
09:04:53.0718 4084 [ A8888A5327621856C0CEC4E385F69309 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
09:04:53.0750 4084 lanmanworkstation - ok
09:04:53.0765 4084 lbrtfdc - ok
09:04:53.0812 4084 [ A7DB739AE99A796D91580147E919CC59 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
09:04:53.0812 4084 LmHosts - ok
09:04:53.0875 4084 [ 98312C9EAB656053BE1ACA3A8A5912B3 ] MASPINT C:\WINDOWS\system32\drivers\MASPINT.sys
09:04:53.0875 4084 MASPINT - ok
09:04:53.0921 4084 [ 8FEE53C104223973ED9919936D9CD156 ] MDC8021X C:\WINDOWS\system32\DRIVERS\mdc8021x.sys
09:04:53.0921 4084 MDC8021X - ok
09:04:53.0953 4084 [ 6A75FD0B5F008D711DC44D9693E8D632 ] meiudf C:\WINDOWS\system32\Drivers\meiudf.sys
09:04:54.0046 4084 meiudf - ok
09:04:54.0078 4084 [ 986B1FF5814366D71E0AC5755C88F2D3 ] Messenger C:\WINDOWS\System32\msgsvc.dll
09:04:54.0078 4084 Messenger - ok
09:04:54.0125 4084 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
09:04:54.0125 4084 mnmdd - ok
09:04:54.0171 4084 [ D18F1F0C101D06A1C1ADF26EED16FCDD ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
09:04:54.0171 4084 mnmsrvc - ok
09:04:54.0203 4084 [ DFCBAD3CEC1C5F964962AE10E0BCC8E1 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
09:04:54.0203 4084 Modem - ok
09:04:54.0218 4084 [ 35C9E97194C8CFB8430125F8DBC34D04 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
09:04:54.0218 4084 Mouclass - ok
09:04:54.0265 4084 [ B1C303E17FB9D46E87A98E4BA6769685 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
09:04:54.0265 4084 mouhid - ok
09:04:54.0296 4084 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
09:04:54.0296 4084 MountMgr - ok
09:04:54.0343 4084 [ EE728AF83850DDAD9A3FCAC0AAB3AD97 ] MpFilter C:\WINDOWS\system32\DRIVERS\MpFilter.sys
09:04:54.0343 4084 MpFilter - ok
09:04:54.0500 4084 [ A69630D039C38018689190234F866D77 ] MpKslc1c651ab c:\Documents and Settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{005A0EC2-1092-42D3-B2FF-D495DBFC0244}\MpKslc1c651ab.sys
09:04:54.0515 4084 MpKslc1c651ab - ok
09:04:54.0515 4084 mraid35x - ok
09:04:54.0531 4084 mrtRate - ok
09:04:54.0578 4084 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
09:04:54.0593 4084 MRxDAV - ok
09:04:54.0671 4084 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
09:04:54.0671 4084 MRxSmb - ok
09:04:54.0734 4084 [ A137F1470499A205ABBB9AAFB3B6F2B1 ] MSDTC C:\WINDOWS\system32\msdtc.exe
09:04:54.0734 4084 MSDTC - ok
09:04:54.0765 4084 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
09:04:54.0765 4084 Msfs - ok
09:04:54.0781 4084 MSIServer - ok
09:04:54.0843 4084 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
09:04:54.0843 4084 MSKSSRV - ok
09:04:54.0953 4084 [ E077FCA2A7E79FB9BF67D3E30B5CE593 ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
09:04:54.0953 4084 MsMpSvc - ok
09:04:54.0968 4084 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
09:04:54.0968 4084 MSPCLOCK - ok
09:04:54.0984 4084 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
09:04:55.0000 4084 MSPQM - ok
09:04:55.0046 4084 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
09:04:55.0046 4084 mssmbios - ok
09:04:55.0125 4084 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
09:04:55.0125 4084 Mup - ok
09:04:55.0203 4084 [ 0102140028FAD045756796E1C685D695 ] napagent C:\WINDOWS\System32\qagentrt.dll
09:04:55.0203 4084 napagent - ok
09:04:55.0234 4084 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
09:04:55.0250 4084 NDIS - ok
09:04:55.0296 4084 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
09:04:55.0296 4084 NdisTapi - ok
09:04:55.0312 4084 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
09:04:55.0312 4084 Ndisuio - ok
09:04:55.0343 4084 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
09:04:55.0343 4084 NdisWan - ok
09:04:55.0406 4084 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
09:04:55.0406 4084 NDProxy - ok
09:04:55.0421 4084 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
09:04:55.0421 4084 NetBIOS - ok
09:04:55.0468 4084 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
09:04:55.0468 4084 NetBT - ok
09:04:55.0546 4084 [ B857BA82860D7FF85AE29B095645563B ] NetDDE C:\WINDOWS\system32\netdde.exe
09:04:55.0546 4084 NetDDE - ok
09:04:55.0546 4084 [ B857BA82860D7FF85AE29B095645563B ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
09:04:55.0562 4084 NetDDEdsdm - ok
09:04:55.0609 4084 [ 1265EB253ED4EBE4ACB3BD5F548FF796 ] Netdevio C:\WINDOWS\system32\DRIVERS\netdevio.sys
09:04:55.0609 4084 Netdevio - ok
09:04:55.0656 4084 [ BF2466B3E18E970D8A976FB95FC1CA85 ] Netlogon C:\WINDOWS\system32\lsass.exe
09:04:55.0656 4084 Netlogon - ok
09:04:55.0718 4084 [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE ] Netman C:\WINDOWS\System32\netman.dll
09:04:55.0734 4084 Netman - ok
09:04:55.0781 4084 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
09:04:55.0859 4084 NetTcpPortSharing - ok
09:04:55.0890 4084 [ E9E47CFB2D461FA0FC75B7A74C6383EA ] NIC1394 C:\WINDOWS\system32\DRIVERS\nic1394.sys
09:04:55.0921 4084 NIC1394 - ok
09:04:55.0984 4084 [ 943337D786A56729263071623BBB9DE5 ] Nla C:\WINDOWS\System32\mswsock.dll
09:04:55.0984 4084 Nla - ok
09:04:56.0015 4084 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
09:04:56.0015 4084 Npfs - ok
09:04:56.0078 4084 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
09:04:56.0093 4084 Ntfs - ok
09:04:56.0109 4084 [ BF2466B3E18E970D8A976FB95FC1CA85 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
09:04:56.0109 4084 NtLmSsp - ok
09:04:56.0156 4084 [ 156F64A3345BD23C600655FB4D10BC08 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
09:04:56.0171 4084 NtmsSvc - ok
09:04:56.0218 4084 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
09:04:56.0218 4084 Null - ok
09:04:56.0234 4084 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
09:04:56.0234 4084 NwlnkFlt - ok
09:04:56.0281 4084 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
09:04:56.0281 4084 NwlnkFwd - ok
09:04:56.0328 4084 [ CA33832DF41AFB202EE7AEB05145922F ] ohci1394 C:\WINDOWS\system32\DRIVERS\ohci1394.sys
09:04:56.0328 4084 ohci1394 - ok
09:04:56.0375 4084 [ 7A56CF3E3F12E8AF599963B16F50FB6A ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
09:04:56.0390 4084 ose - ok
09:04:56.0421 4084 [ 5575FAF8F97CE5E713D108C2A58D7C7C ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
09:04:56.0421 4084 Parport - ok
09:04:56.0453 4084 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
09:04:56.0453 4084 PartMgr - ok
09:04:56.0500 4084 [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
09:04:56.0500 4084 ParVdm - ok
09:04:56.0515 4084 [ A219903CCF74233761D92BEF471A07B1 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
09:04:56.0531 4084 PCI - ok
09:04:56.0531 4084 PCIDump - ok
09:04:56.0593 4084 [ CCF5F451BB1A5A2A522A76E670000FF0 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
09:04:56.0593 4084 PCIIde - ok
09:04:56.0656 4084 [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1 ] Pcmcia C:\WINDOWS\system32\DRIVERS\pcmcia.sys
09:04:56.0656 4084 Pcmcia - ok
09:04:56.0671 4084 PDCOMP - ok
09:04:56.0687 4084 PDFRAME - ok
09:04:56.0703 4084 PDRELI - ok
09:04:56.0718 4084 PDRFRAME - ok
09:04:56.0718 4084 perc2 - ok
09:04:56.0734 4084 perc2hib - ok
09:04:56.0796 4084 [ 6C1618A07B49E3873582B6449E744088 ] Pfc C:\WINDOWS\system32\drivers\pfc.sys
09:04:56.0859 4084 Pfc - ok
09:04:56.0921 4084 [ 0ABC514F6606324CE15484D079027798 ] PfModNT C:\WINDOWS\system32\drivers\PfModNT.sys
09:04:56.0921 4084 PfModNT - ok
09:04:56.0953 4084 [ 65DF52F5B8B6E9BBD183505225C37315 ] PlugPlay C:\WINDOWS\system32\services.exe
09:04:56.0968 4084 PlugPlay - ok
09:04:56.0984 4084 [ BF2466B3E18E970D8A976FB95FC1CA85 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
09:04:56.0984 4084 PolicyAgent - ok
09:04:57.0015 4084 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
09:04:57.0015 4084 PptpMiniport - ok
09:04:57.0031 4084 [ BF2466B3E18E970D8A976FB95FC1CA85 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
09:04:57.0031 4084 ProtectedStorage - ok
09:04:57.0046 4084 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
09:04:57.0046 4084 PSched - ok
09:04:57.0109 4084 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
09:04:57.0109 4084 Ptilink - ok
09:04:57.0140 4084 [ E42E3433DBB4CFFE8FDD91EAB29AEA8E ] PxHelp20 C:\WINDOWS\system32\Drivers\PxHelp20.sys
09:04:57.0140 4084 PxHelp20 - ok
09:04:57.0156 4084 ql1080 - ok
09:04:57.0171 4084 Ql10wnt - ok
09:04:57.0187 4084 ql12160 - ok
09:04:57.0203 4084 ql1240 - ok
09:04:57.0203 4084 ql1280 - ok
09:04:57.0296 4084 [ E5287727FADC9ECE88DD95E17ECE0885 ] RampartSvc C:\Program Files\SonicWALL\SonicWALL Global VPN Client\RampartSvc.exe
09:04:57.0437 4084 RampartSvc - ok
09:04:57.0593 4084 [ 3AF684252780CF87DC2809F85B8F7591 ] RapportCerberus_43926 C:\Documents and Settings\All Users\Application Data\Trusteer\Rapport\store\exts\RapportCerberus\43926\RapportCerberus32_43926.sys
09:04:57.0593 4084 RapportCerberus_43926 - ok
09:04:57.0734 4084 [ 093B6A040BCF3FD4A0FFF397BAF28330 ] RapportEI C:\Program Files\Trusteer\Rapport\bin\RapportEI.sys
09:04:57.0734 4084 RapportEI - ok
09:04:57.0921 4084 [ 35199EC35EDC7DCBA71FDA711DFB05C0 ] RapportIaso c:\documents and settings\all users\application data\trusteer\rapport\store\exts\rapportms\39624\rapportiaso.sys
09:04:57.0921 4084 RapportIaso - ok
09:04:57.0953 4084 [ 660436FBE447EBC73873EF2B0B2094B4 ] RapportKELL C:\WINDOWS\system32\Drivers\RapportKELL.sys
09:04:57.0953 4084 RapportKELL - ok
09:04:58.0015 4084 [ 61B37C0B3FD7DA7414C20D917469BFFF ] RapportMgmtService C:\Program Files\Trusteer\Rapport\bin\RapportMgmtService.exe
09:04:58.0062 4084 RapportMgmtService - ok
09:04:58.0109 4084 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
09:04:58.0109 4084 RasAcd - ok
09:04:58.0171 4084 [ AD188BE7BDF94E8DF4CA0A55C00A5073 ] RasAuto C:\WINDOWS\System32\rasauto.dll
09:04:58.0187 4084 RasAuto - ok
09:04:58.0218 4084 [ 0207D26DDF796A193CCD9F83047BB5FC ] Rasirda C:\WINDOWS\system32\DRIVERS\rasirda.sys
09:04:58.0234 4084 Rasirda - ok
09:04:58.0281 4084 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
09:04:58.0281 4084 Rasl2tp - ok
09:04:58.0359 4084 [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] RasMan C:\WINDOWS\System32\rasmans.dll
09:04:58.0359 4084 RasMan - ok
09:04:58.0375 4084 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
09:04:58.0390 4084 RasPppoe - ok
09:04:58.0390 4084 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
09:04:58.0406 4084 Raspti - ok
09:04:58.0468 4084 [ 02B4C051D302A6E291EBDCC07A5FB594 ] RCFOX C:\WINDOWS\system32\Drivers\RCFOX.sys
09:04:58.0578 4084 RCFOX - ok
09:04:58.0609 4084 [ BCA39C96B11318CBC2797C4B842E22E4 ] rcvpn C:\WINDOWS\system32\DRIVERS\rcvpn.sys
09:04:58.0625 4084 rcvpn - ok
09:04:58.0687 4084 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
09:04:58.0687 4084 Rdbss - ok
09:04:58.0734 4084 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
09:04:58.0734 4084 RDPCDD - ok
09:04:58.0812 4084 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
09:04:58.0812 4084 RDPWD - ok
09:04:58.0843 4084 [ 3C37BF86641BDA977C3BF8A840F3B7FA ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
09:04:58.0859 4084 RDSessMgr - ok
09:04:58.0875 4084 [ F828DD7E1419B6653894A8F97A0094C5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
09:04:58.0890 4084 redbook - ok
09:04:58.0921 4084 [ 7E699FF5F59B5D9DE5390E3C34C67CF5 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
09:04:58.0921 4084 RemoteAccess - ok
09:04:59.0125 4084 [ 05FC44D32A144925EAE45570029FD6E1 ] RoxMediaDB10 C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe
09:04:59.0140 4084 RoxMediaDB10 - ok
09:04:59.0171 4084 [ AAED593F84AFA419BBAE8572AF87CF6A ] RpcLocator C:\WINDOWS\system32\locator.exe
09:04:59.0187 4084 RpcLocator - ok
09:04:59.0218 4084 [ 6B27A5C03DFB94B4245739065431322C ] RpcSs C:\WINDOWS\system32\rpcss.dll
09:04:59.0218 4084 RpcSs - ok
09:04:59.0265 4084 [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP C:\WINDOWS\system32\rsvp.exe
09:04:59.0281 4084 RSVP - ok
09:04:59.0328 4084 [ 29F9879A1FD386F7251AE9FDADB2CBF1 ] RTL8023 C:\WINDOWS\system32\DRIVERS\Rtlnic51.sys
09:04:59.0328 4084 RTL8023 - ok
09:04:59.0390 4084 [ D507C1400284176573224903819FFDA3 ] rtl8139 C:\WINDOWS\system32\DRIVERS\RTL8139.SYS
09:04:59.0390 4084 rtl8139 - ok
09:04:59.0421 4084 [ BF2466B3E18E970D8A976FB95FC1CA85 ] SamSs C:\WINDOWS\system32\lsass.exe
09:04:59.0437 4084 SamSs - ok
09:04:59.0562 4084 [ 39763504067962108505BFF25F024345 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
09:04:59.0562 4084 SASDIFSV - ok
09:04:59.0593 4084 [ 77B9FC20084B48408AD3E87570EB4A85 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
09:04:59.0593 4084 SASKUTIL - ok
09:04:59.0640 4084 [ 86D007E7A654B9A71D1D7D856B104353 ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
09:04:59.0656 4084 SCardSvr - ok
09:04:59.0718 4084 [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] Schedule C:\WINDOWS\system32\schedsvc.dll
09:04:59.0718 4084 Schedule - ok
09:04:59.0750 4084 [ 8D04819A3CE51B9EB47E5689B44D43C4 ] sdbus C:\WINDOWS\system32\DRIVERS\sdbus.sys
09:04:59.0750 4084 sdbus - ok
09:04:59.0796 4084 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
09:04:59.0796 4084 Secdrv - ok
09:04:59.0828 4084 [ CBE612E2BB6A10E3563336191EDA1250 ] seclogon C:\WINDOWS\System32\seclogon.dll
09:04:59.0828 4084 seclogon - ok
09:04:59.0875 4084 [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] SENS C:\WINDOWS\system32\sens.dll
09:04:59.0890 4084 SENS - ok
09:04:59.0953 4084 [ CCA207A8896D4C6A0C9CE29A4AE411A7 ] Serial C:\WINDOWS\system32\drivers\Serial.sys
09:04:59.0953 4084 Serial - ok
09:05:00.0031 4084 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
09:05:00.0031 4084 Sfloppy - ok
09:05:00.0109 4084 [ 83F41D0D89645D7235C051AB1D9523AC ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
09:05:00.0125 4084 SharedAccess - ok
09:05:00.0171 4084 [ 99BC0B50F511924348BE19C7C7313BBF ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
09:05:00.0171 4084 ShellHWDetection - ok
09:05:00.0187 4084 Simbad - ok
09:05:00.0250 4084 [ 14BB60A4F1C5291217A05D5728C403E6 ] SmartDefragDriver C:\WINDOWS\system32\Drivers\SmartDefragDriver.sys
09:05:00.0250 4084 SmartDefragDriver - ok
09:05:00.0296 4084 [ 707647A1AA0EDB6CBEF61B0C75C28ED3 ] SMCIRDA C:\WINDOWS\system32\DRIVERS\smcirda.sys
09:05:00.0296 4084 SMCIRDA - ok
09:05:00.0312 4084 Sparrow - ok
09:05:00.0359 4084 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
09:05:00.0359 4084 splitter - ok
09:05:00.0406 4084 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe
09:05:00.0421 4084 Spooler - ok
09:05:00.0421 4084 [ 76BB022C2FB6902FD5BDD4F78FC13A5D ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
09:05:00.0437 4084 sr - ok
09:05:00.0468 4084 [ 3805DF0AC4296A34BA4BF93B346CC378 ] srservice C:\WINDOWS\system32\srsvc.dll
09:05:00.0468 4084 srservice - ok
09:05:00.0546 4084 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
09:05:00.0546 4084 Srv - ok
09:05:00.0578 4084 [ 3B01A9316255CDD17F9C8E79AA573406 ] SrvcEKIOMngr C:\WINDOWS\system32\Drivers\EKIoMngr.sys
09:05:00.0625 4084 SrvcEKIOMngr - ok
09:05:00.0656 4084 [ 0A4F36C355E49D3A92D80E6B7C443BAE ] SrvcEPECioctl C:\WINDOWS\system32\Drivers\ECioctl.sys
09:05:00.0703 4084 SrvcEPECioctl - ok
09:05:00.0734 4084 [ C996C839A3261CAB5409C61E5702B620 ] SrvcEPIOMngr C:\WINDOWS\system32\Drivers\EPIoMngr.sys
09:05:00.0781 4084 SrvcEPIOMngr - ok
09:05:00.0812 4084 [ 79B7AF340D55861DF1D69E7BAC975FCC ] SrvcSSIOMngr C:\WINDOWS\system32\Drivers\SSIoMngr.sys
09:05:00.0859 4084 SrvcSSIOMngr - ok
09:05:00.0890 4084 [ CBC0BE9758BACE83FC9AC25F4CCA20E7 ] SrvcTPIOMngr C:\WINDOWS\system32\Drivers\TPIoMngr.sys
09:05:00.0921 4084 SrvcTPIOMngr - ok
09:05:00.0968 4084 [ 1CBD1B58A32DE97899F5290B05F856DB ] sscdbhk5 C:\WINDOWS\system32\drivers\sscdbhk5.sys
09:05:01.0000 4084 sscdbhk5 - ok
09:05:01.0046 4084 [ 0A5679B3714EDAB99E357057EE88FCA6 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
09:05:01.0062 4084 SSDPSRV - ok
09:05:01.0062 4084 [ 7FB07AC152D7A87E66204860002BD9A4 ] ssrtln C:\WINDOWS\system32\drivers\ssrtln.sys
09:05:01.0125 4084 ssrtln - ok
09:05:01.0203 4084 [ 8BAD69CBAC032D4BBACFCE0306174C30 ] stisvc C:\WINDOWS\system32\wiaservc.dll
09:05:01.0218 4084 stisvc - ok
09:05:01.0281 4084 [ FF5EB78AF7DFB68C2FB363537AAF753E ] stllssvr C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
09:05:01.0406 4084 stllssvr - ok
09:05:01.0453 4084 [ C99010707441D2428C90EB8D0069E153 ] StMp3Rec C:\WINDOWS\system32\Drivers\StMp3Rec.sys
09:05:01.0500 4084 StMp3Rec - ok
09:05:01.0546 4084 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
09:05:01.0562 4084 swenum - ok
09:05:01.0578 4084 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
09:05:01.0578 4084 swmidi - ok
09:05:01.0593 4084 SwPrv - ok
09:05:01.0718 4084 [ 74E8543A4647A53A26788D5ED3C2172F ] Swupdtmr c:\Toshiba\Ivp\Swupdate\swupdtmr.exe
09:05:01.0718 4084 Swupdtmr - ok
09:05:01.0734 4084 symc810 - ok
09:05:01.0750 4084 symc8xx - ok
09:05:01.0875 4084 [ 67C5AF84809468061121FBCBECB19285 ] SymWSC C:\Program Files\Common Files\Symantec Shared\Security Center\SymWSC.exe
09:05:01.0875 4084 SymWSC - ok
09:05:01.0890 4084 sym_hi - ok
09:05:01.0906 4084 sym_u3 - ok
09:05:01.0937 4084 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
09:05:01.0953 4084 sysaudio - ok
09:05:01.0984 4084 [ C7ABBC59B43274B1109DF6B24D617051 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
09:05:01.0984 4084 SysmonLog - ok
09:05:02.0062 4084 [ 3CB78C17BB664637787C9A1C98F79C38 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
09:05:02.0062 4084 TapiSrv - ok
09:05:02.0125 4084 [ EECA2B57545E7B7BE949B5E70E31444F ] TBiosDrv C:\WINDOWS\system32\drivers\TBiosDrv.sys
09:05:02.0140 4084 TBiosDrv - ok
09:05:02.0218 4084 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
09:05:02.0218 4084 Tcpip - ok
09:05:02.0250 4084 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
09:05:02.0250 4084 TDPIPE - ok
09:05:02.0296 4084 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
09:05:02.0296 4084 TDTCP - ok
09:05:02.0328 4084 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
09:05:02.0328 4084 TermDD - ok
09:05:02.0390 4084 [ FF3477C03BE7201C294C35F684B3479F ] TermService C:\WINDOWS\System32\termsrv.dll
09:05:02.0406 4084 TermService - ok
09:05:02.0468 4084 [ 2DA3CA4022ABB0802DE7EEDA574E78D6 ] tfsnboio C:\WINDOWS\system32\dla\tfsnboio.sys
09:05:02.0515 4084 tfsnboio - ok
09:05:02.0546 4084 [ C8D6928759B77701C21DC90AD61197F2 ] tfsncofs C:\WINDOWS\system32\dla\tfsncofs.sys
09:05:02.0578 4084 tfsncofs - ok
09:05:02.0625 4084 [ BACDEF5510FA643683CDDCA418E49446 ] tfsndrct C:\WINDOWS\system32\dla\tfsndrct.sys
09:05:02.0656 4084 tfsndrct - ok
09:05:02.0687 4084 [ 3FC9F390FAC563C3D3910D540ADBD408 ] tfsndres C:\WINDOWS\system32\dla\tfsndres.sys
09:05:02.0703 4084 tfsndres - ok
09:05:02.0750 4084 [ 6AEF3EC0B64689536891A9B96E9D7B82 ] tfsnifs C:\WINDOWS\system32\dla\tfsnifs.sys
09:05:02.0812 4084 tfsnifs - ok
09:05:02.0828 4084 [ 7239873A72DD456F6E74E6987CDB9687 ] tfsnopio C:\WINDOWS\system32\dla\tfsnopio.sys
09:05:02.0859 4084 tfsnopio - ok
09:05:02.0890 4084 [ B78631E3593DDD76A4A8BA7CB8E32302 ] tfsnpool C:\WINDOWS\system32\dla\tfsnpool.sys
09:05:02.0906 4084 tfsnpool - ok
09:05:02.0937 4084 [ 9E8B4ABB93E5784FC4E5D3202566CC7A ] tfsnudf C:\WINDOWS\system32\dla\tfsnudf.sys
09:05:03.0000 4084 tfsnudf - ok
09:05:03.0031 4084 [ 056FA0A11BA4CD688E1E40E48FFEE921 ] tfsnudfa C:\WINDOWS\system32\dla\tfsnudfa.sys
09:05:03.0093 4084 tfsnudfa - ok
09:05:03.0125 4084 [ 99BC0B50F511924348BE19C7C7313BBF ] Themes C:\WINDOWS\System32\shsvcs.dll
09:05:03.0125 4084 Themes - ok
09:05:03.0140 4084 TosIde - ok
09:05:03.0187 4084 [ 55BCA12F7F523D35CA3CB833C725F54E ] TrkWks C:\WINDOWS\system32\trkwks.dll
09:05:03.0203 4084 TrkWks - ok
09:05:03.0234 4084 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
09:05:03.0234 4084 Udfs - ok
09:05:03.0250 4084 ultra - ok
09:05:03.0328 4084 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
09:05:03.0343 4084 Update - ok
09:05:03.0390 4084 [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91 ] upnphost C:\WINDOWS\System32\upnphost.dll
09:05:03.0390 4084 upnphost - ok
09:05:03.0406 4084 [ 05365FB38FCA1E98F7A566AAAF5D1815 ] UPS C:\WINDOWS\System32\ups.exe
09:05:03.0406 4084 UPS - ok
09:05:03.0468 4084 [ EAFE1E00739AFE6C51487A050E772E17 ] USBAAPL C:\WINDOWS\system32\Drivers\usbaapl.sys
09:05:03.0468 4084 USBAAPL - ok
09:05:03.0531 4084 [ E919708DB44ED8543A7C017953148330 ] usbaudio C:\WINDOWS\system32\drivers\usbaudio.sys
09:05:03.0546 4084 usbaudio - ok
09:05:03.0625 4084 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
09:05:03.0625 4084 usbccgp - ok
09:05:03.0671 4084 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
09:05:03.0671 4084 usbehci - ok
09:05:03.0750 4084 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
09:05:03.0750 4084 usbhub - ok
09:05:03.0796 4084 [ 0DAECCE65366EA32B162F85F07C6753B ] usbohci C:\WINDOWS\system32\DRIVERS\usbohci.sys
09:05:03.0796 4084 usbohci - ok
09:05:03.0843 4084 [ A717C8721046828520C9EDF31288FC00 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
09:05:03.0843 4084 usbprint - ok
09:05:03.0890 4084 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
09:05:03.0890 4084 usbscan - ok
09:05:03.0937 4084 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
09:05:03.0937 4084 USBSTOR - ok
09:05:03.0968 4084 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
09:05:03.0984 4084 VgaSave - ok
09:05:03.0984 4084 ViaIde - ok
09:05:04.0015 4084 [ 4C8FCB5CC53AAB716D810740FE59D025 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
09:05:04.0015 4084 VolSnap - ok
09:05:04.0062 4084 [ 7A9DB3A67C333BF0BD42E42B8596854B ] VSS C:\WINDOWS\System32\vssvc.exe
09:05:04.0078 4084 VSS - ok
09:05:04.0109 4084 [ 54AF4B1D5459500EF0937F6D33B1914F ] W32Time C:\WINDOWS\system32\w32time.dll
09:05:04.0109 4084 W32Time - ok
09:05:04.0140 4084 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
09:05:04.0140 4084 Wanarp - ok
09:05:04.0187 4084 [ 0A716C08CB13C3A8F4F51E882DBF7416 ] wanatw C:\WINDOWS\system32\DRIVERS\wanatw4.sys
09:05:04.0187 4084 wanatw - ok
09:05:04.0203 4084 WDICA - ok
09:05:04.0234 4084 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
09:05:04.0234 4084 wdmaud - ok
09:05:04.0281 4084 [ 77A354E28153AD2D5E120A5A8687BC06 ] WebClient C:\WINDOWS\System32\webclnt.dll
09:05:04.0296 4084 WebClient - ok
09:05:04.0390 4084 [ 2D0E4ED081963804CCC196A0929275B5 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
09:05:04.0390 4084 winmgmt - ok
09:05:04.0500 4084 [ 18F347402DA544A780949B8FDF83351B ] WinRM C:\WINDOWS\system32\WsmSvc.dll
09:05:04.0531 4084 WinRM - ok
09:05:04.0734 4084 [ 5144AE67D60EC653F97DDF3FEED29E77 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
09:05:04.0765 4084 wlidsvc - ok
09:05:04.0812 4084 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
09:05:04.0812 4084 WmdmPmSN - ok
09:05:04.0875 4084 [ E0673F1106E62A68D2257E376079F821 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
09:05:04.0875 4084 WmiApSrv - ok
09:05:05.0000 4084 [ F74E3D9A7FA9556C3BBB14D4E5E63D3B ] WMPNetworkSvc C:\Program Files\Windows Media Player\WMPNetwk.exe
09:05:05.0015 4084 WMPNetworkSvc - ok
09:05:05.0156 4084 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
09:05:05.0171 4084 WPFFontCache_v0400 - ok
09:05:05.0250 4084 [ 7C278E6408D1DCE642230C0585A854D5 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
09:05:05.0250 4084 wscsvc - ok
09:05:05.0265 4084 [ 35321FB577CDC98CE3EB3A3EB9E4610A ] wuauserv C:\WINDOWS\system32\wuauserv.dll
09:05:05.0312 4084 wuauserv - ok
09:05:05.0343 4084 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
09:05:05.0359 4084 WudfPf - ok
09:05:05.0390 4084 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
09:05:05.0390 4084 WudfRd - ok
09:05:05.0421 4084 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
09:05:05.0421 4084 WudfSvc - ok
09:05:05.0531 4084 [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
09:05:05.0531 4084 WZCSVC - ok
09:05:05.0578 4084 [ 295D21F14C335B53CB8154E5B1F892B9 ] xmlprov C:\WINDOWS\System32\xmlprov.dll
09:05:05.0578 4084 xmlprov - ok
09:05:05.0609 4084 ================ Scan global ===============================
09:05:05.0656 4084 [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\WINDOWS\system32\basesrv.dll
09:05:05.0734 4084 [ 8C7DCA4B158BF16894120786A7A5F366 ] C:\WINDOWS\system32\winsrv.dll
09:05:05.0750 4084 [ 8C7DCA4B158BF16894120786A7A5F366 ] C:\WINDOWS\system32\winsrv.dll
09:05:05.0796 4084 [ 65DF52F5B8B6E9BBD183505225C37315 ] C:\WINDOWS\system32\services.exe
09:05:05.0796 4084 [Global] - ok
09:05:05.0796 4084 ================ Scan MBR ==================================
09:05:05.0875 4084 [ 671B81004FDD1588FA9ED1331C9CECA9 ] \Device\Harddisk0\DR0
09:05:06.0062 4084 \Device\Harddisk0\DR0 - ok
09:05:06.0062 4084 ================ Scan VBR ==================================
09:05:06.0062 4084 [ E5E4E4E22E4E52D197F614672D058149 ] \Device\Harddisk0\DR0\Partition1
09:05:06.0078 4084 \Device\Harddisk0\DR0\Partition1 - ok
09:05:06.0078 4084 ============================================================
09:05:06.0078 4084 Scan finished
09:05:06.0078 4084 ============================================================
09:05:06.0093 0596 Detected object count: 0
09:05:06.0093 0596 Actual detected object count: 0

#8 dflahe

dflahe
  • Topic Starter

  • Members
  • 40 posts
  • OFFLINE
  •  
  • Local time:09:03 PM

Posted 29 January 2013 - 12:41 PM

This is the second scan

aswMBR version 0.9.9.1707 Copyright© 2011 AVAST Software
Run date: 2013-01-29 09:14:42
-----------------------------
09:14:42.109 OS Version: Windows 5.1.2600 Service Pack 3
09:14:42.109 Number of processors: 2 586 0x401
09:14:42.109 ComputerName: LAPTOP UserName: Dana
09:14:43.187 Initialize success
09:15:42.140 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-3
09:15:42.140 Disk 0 Vendor: TOSHIBA_MK6026GAX PA200U Size: 57231MB BusType: 3
09:15:42.171 Disk 0 MBR read successfully
09:15:42.171 Disk 0 MBR scan
09:15:42.171 Disk 0 unknown MBR code
09:15:42.171 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 57231 MB offset 63
09:15:42.171 Disk 0 scanning sectors +117210240
09:15:42.250 Disk 0 scanning C:\WINDOWS\system32\drivers
09:15:52.593 Service scanning
09:16:01.625 Service MpKslc1c651ab c:\Documents and Settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{005A0EC2-1092-42D3-B2FF-D495DBFC0244}\MpKslc1c651ab.sys **LOCKED** 32
09:16:10.328 Modules scanning
09:16:18.968 Disk 0 trace - called modules:
09:16:19.000 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll atapi.sys pciide.sys PCIIDEX.SYS
09:16:19.000 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x83780ab8]
09:16:19.000 3 CLASSPNP.SYS[f80c1fd7] -> nt!IofCallDriver -> \Device\00000088[0x8372d288]
09:16:19.000 5 ACPI.sys[f8018620] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-3[0x83782940]
09:16:19.015 Scan finished successfully
09:16:35.375 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\Dana\Desktop\MBR.dat"
09:16:35.406 The log file has been saved successfully to "C:\Documents and Settings\Dana\Desktop\aswMBR.txt"

#9 dflahe

dflahe
  • Topic Starter

  • Members
  • 40 posts
  • OFFLINE
  •  
  • Local time:09:03 PM

Posted 29 January 2013 - 12:43 PM

This is the 3rd scan..says cleaned and deleted, but MSE is still 'cleaning' it....

C:\Documents and Settings\Dana\Application Data\malmn.dll a variant of Win32/Medfos.JC trojan cleaned by deleting (after the next restart) - quarantined
C:\Documents and Settings\Dana\Application Data\wdple.dll a variant of Win32/Medfos.JD trojan cleaned by deleting (after the next restart) - quarantined
C:\Program Files\Object\bho_project.dll a variant of Win32/Adware.Facetheme.A application cleaned by deleting (after the next restart) - quarantined

#10 dflahe

dflahe
  • Topic Starter

  • Members
  • 40 posts
  • OFFLINE
  •  
  • Local time:09:03 PM

Posted 29 January 2013 - 12:50 PM

The Asw scan line at 9:16:01:625 is in Yellow on the screen

#11 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:03 PM

Posted 29 January 2013 - 01:40 PM

Download

Malwarebytes

Install,update and run a full scan

Click on Show results.Right click on the list ,select all and remove them.

Post the generated log here

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size
List restore points

Click Go and post the result.

Download

Farbar service scanner

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.

Download

adware cleaner

Launch it click on Delete

A log should be generated after scan ,post it here

Download

Junkware removal tool

For vista and windows 7 right click on the tool and select run as administrator

After scan gets completed,post the generated log here.


Download

http://www.bleepingcomputer.com/download/rkill/

Run it and after scan finishes,post the contents of RKILL log located on the desktop here


Download

Autoruns

Extract and launch autoruns.exe

Allow the scan to get finished

Now click on FILE-SAVE

Filename:Autoruns.txt
Save as :Text

Paste the contents of text here

#12 dflahe

dflahe
  • Topic Starter

  • Members
  • 40 posts
  • OFFLINE
  •  
  • Local time:09:03 PM

Posted 29 January 2013 - 09:27 PM

MalwareBytes log;
Malwarebytes Anti-Malware (Trial) 1.70.0.1100
www.malwarebytes.org

Database version: v2013.01.29.10

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Dana :: LAPTOP [administrator]

Protection: Enabled

1/29/2013 6:02:33 PM
mbam-log-2013-01-29 (18-02-33).txt

Scan type: Full scan (C:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 434052
Time elapsed: 2 hour(s), 25 minute(s), 56 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 1
C:\Program Files\InfoAtoms\IE32\InfoAtomsClientIE.dll (PUP.InfoAtoms) -> Delete on reboot.

Registry Keys Detected: 14
HKCR\CLSID\{103089DA-0F31-4A8B-843F-7D24A7FE8345} (PUP.InfoAtoms) -> Quarantined and deleted successfully.
HKCR\TypeLib\{EF96EDE0-E1F8-4EB2-956B-D54DF35335E4} (PUP.InfoAtoms) -> Quarantined and deleted successfully.
HKCR\Interface\{44C0ECF5-4AC6-4E39-8091-E57070F8945A} (PUP.InfoAtoms) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{103089DA-0F31-4A8B-843F-7D24A7FE8345} (PUP.InfoAtoms) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{103089DA-0F31-4A8B-843F-7D24A7FE8345} (PUP.InfoAtoms) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{103089DA-0F31-4A8B-843F-7D24A7FE8345} (PUP.InfoAtoms) -> Quarantined and deleted successfully.
HKCR\CLSID\{66D8FBA6-D90F-40A9-AC55-84896F79CA69} (Trojan.BHO) -> Quarantined and deleted successfully.
HKCR\bho_project.bho_object.1 (Trojan.BHO) -> Quarantined and deleted successfully.
HKCR\bho_project.bho_object (Trojan.BHO) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{66D8FBA6-D90F-40A9-AC55-84896F79CA69} (Trojan.BHO) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{66D8FBA6-D90F-40A9-AC55-84896F79CA69} (Trojan.BHO) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{66D8FBA6-D90F-40A9-AC55-84896F79CA69} (Trojan.BHO) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{66D8FBA6-D90F-40A9-AC55-84896F79CA69} (Trojan.BHO) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Google\Chrome\Extensions\kincjchfokkeneeofpeefomkikfkiedl (PUP.FCTPlugin) -> Quarantined and deleted successfully.

Registry Values Detected: 1
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run|msnmsgr (Backdoor.Agent) -> Data: "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background -> Quarantined and deleted successfully.

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 6

#13 dflahe

dflahe
  • Topic Starter

  • Members
  • 40 posts
  • OFFLINE
  •  
  • Local time:09:03 PM

Posted 29 January 2013 - 09:43 PM

Mini Tool Box Log;

MiniToolBox by Farbar Version:10-01-2013
Ran by Dana (administrator) on 29-01-2013 at 21:41:03
Running from "C:\Documents and Settings\Dana\desktop"
Microsoft Windows XP Service Pack 3 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================


Windows IP Configuration



Successfully flushed the DNS Resolver Cache.


========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================

"network.proxy.type", 0

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================


127.0.0.1 localhost

========================= IP Configuration: ================================

Atheros AR5005GS Wireless Network Adapter = Wireless Network Connection (Connected)
Realtek RTL8139/810x Family Fast Ethernet NIC = Local Area Connection (Media disconnected)
SonicWALL VPN Adapter = SonicWALL Virtual Adapter (Media disconnected)


# ----------------------------------
# Interface IP Configuration
# ----------------------------------
pushd interface ip


# Interface IP Configuration for "Wireless Network Connection"

set address name="Wireless Network Connection" source=dhcp
set dns name="Wireless Network Connection" source=dhcp register=PRIMARY
set wins name="Wireless Network Connection" source=dhcp

# Interface IP Configuration for "Local Area Connection"

set address name="Local Area Connection" source=dhcp
set dns name="Local Area Connection" source=dhcp register=PRIMARY
set wins name="Local Area Connection" source=dhcp

# Interface IP Configuration for "SonicWALL Virtual Adapter"

set address name="SonicWALL Virtual Adapter" source=dhcp
set dns name="SonicWALL Virtual Adapter" source=dhcp register=PRIMARY
set wins name="SonicWALL Virtual Adapter" source=dhcp


popd
# End of interface IP configuration




Windows IP Configuration



Host Name . . . . . . . . . . . . : Laptop

Primary Dns Suffix . . . . . . . :

Node Type . . . . . . . . . . . . : Unknown

IP Routing Enabled. . . . . . . . : No

WINS Proxy Enabled. . . . . . . . : No

DNS Suffix Search List. . . . . . : myhome.westell.com



Ethernet adapter Wireless Network Connection:



Connection-specific DNS Suffix . : myhome.westell.com

Description . . . . . . . . . . . : Atheros AR5005GS Wireless Network Adapter

Physical Address. . . . . . . . . : 00-11-F5-75-38-AD

Dhcp Enabled. . . . . . . . . . . : Yes

Autoconfiguration Enabled . . . . : Yes

IP Address. . . . . . . . . . . . : 192.168.1.39

Subnet Mask . . . . . . . . . . . : 255.255.255.0

Default Gateway . . . . . . . . . : 192.168.1.1

DHCP Server . . . . . . . . . . . : 192.168.1.1

DNS Servers . . . . . . . . . . . : 192.168.1.1

192.168.1.1

Lease Obtained. . . . . . . . . . : Tuesday, January 29, 2013 9:31:53 PM

Lease Expires . . . . . . . . . . : Wednesday, January 30, 2013 9:31:53 PM



Ethernet adapter Local Area Connection:



Media State . . . . . . . . . . . : Media disconnected

Description . . . . . . . . . . . : Realtek RTL8139/810x Family Fast Ethernet NIC

Physical Address. . . . . . . . . : 00-0F-B0-8D-43-F4



Ethernet adapter SonicWALL Virtual Adapter:



Media State . . . . . . . . . . . : Media disconnected

Description . . . . . . . . . . . : SonicWALL VPN Adapter

Physical Address. . . . . . . . . : 00-60-73-E3-09-47

Server: dslrouter
Address: 192.168.1.1

Name: google.com
Addresses: 74.125.226.226, 74.125.226.225, 74.125.226.238, 74.125.226.224
74.125.226.229, 74.125.226.228, 74.125.226.233, 74.125.226.227, 74.125.226.231
74.125.226.230, 74.125.226.232



Pinging google.com [74.125.226.226] with 32 bytes of data:



Reply from 74.125.226.226: bytes=32 time=44ms TTL=56

Reply from 74.125.226.226: bytes=32 time=38ms TTL=56



Ping statistics for 74.125.226.226:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 38ms, Maximum = 44ms, Average = 41ms

Server: dslrouter
Address: 192.168.1.1

Name: yahoo.com
Addresses: 98.139.183.24, 98.138.253.109, 206.190.36.45



Pinging yahoo.com [98.139.183.24] with 32 bytes of data:



Reply from 98.139.183.24: bytes=32 time=167ms TTL=50

Reply from 98.139.183.24: bytes=32 time=125ms TTL=50



Ping statistics for 98.139.183.24:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 125ms, Maximum = 167ms, Average = 146ms



Pinging 127.0.0.1 with 32 bytes of data:



Reply from 127.0.0.1: bytes=32 time<1ms TTL=64

Reply from 127.0.0.1: bytes=32 time<1ms TTL=64



Ping statistics for 127.0.0.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
0x1 ........................... MS TCP Loopback interface
0x2 ...00 11 f5 75 38 ad ...... Atheros AR5005GS Wireless Network Adapter - Packet Scheduler Miniport
0x3 ...00 0f b0 8d 43 f4 ...... Realtek RTL8139/810x Family Fast Ethernet NIC - Packet Scheduler Miniport
0x4 ...00 60 73 e3 09 47 ...... SonicWALL VPN Adapter - Packet Scheduler Miniport
===========================================================================
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.39 25
127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1
169.254.0.0 255.255.0.0 192.168.1.39 192.168.1.39 20
192.168.1.0 255.255.255.0 192.168.1.39 192.168.1.39 25
192.168.1.39 255.255.255.255 127.0.0.1 127.0.0.1 25
192.168.1.255 255.255.255.255 192.168.1.39 192.168.1.39 25
224.0.0.0 240.0.0.0 192.168.1.39 192.168.1.39 25
255.255.255.255 255.255.255.255 192.168.1.39 192.168.1.39 1
255.255.255.255 255.255.255.255 192.168.1.39 3 1
255.255.255.255 255.255.255.255 192.168.1.39 4 1
Default Gateway: 192.168.1.1
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\System32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 02 C:\Windows\System32\winrnr.dll [16896] (Microsoft Corporation)
Catalog5 03 C:\Windows\System32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 04 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 20 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (01/28/2013 03:55:40 PM) (Source: Application Error) (User: )
Description: Faulting application padexe.exe, version 1.2.4.0, faulting module padhook.dll, version 1.2.2.0, fault address 0x00001652.
Processing media-specific event for [padexe.exe!ws!]

Error: (01/27/2013 09:12:08 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 15594

Error: (01/27/2013 09:12:08 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 15594

Error: (01/27/2013 09:12:08 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (01/25/2013 06:29:50 PM) (Source: MPSampleSubmission) (User: )
Description: EventType mptelemetry, P1 microsoft security essentials (edb4fa23-53b8-4afa-8c5d-99752cca7094), P2 4.1.522.0, P3 timeout, P4 1.1.9103.0, P5 fixed, P6 2 _ 1024, P7 5 _ not boot, P8 NIL, P9 mptelemetry0, P10 mptelemetry1.

Error: (01/19/2013 08:12:22 PM) (Source: Application Error) (User: )
Description: Faulting application iexplore.exe, version 8.0.6001.18702, faulting module rapportutil.dll, version 3.5.1201.94, fault address 0x000b0f97.
Processing media-specific event for [iexplore.exe!ws!]

Error: (01/18/2013 04:11:44 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 6781

Error: (01/18/2013 04:11:44 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 6781

Error: (01/18/2013 04:11:44 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (01/18/2013 04:11:42 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 4797


System errors:
=============
Error: (01/29/2013 09:31:58 PM) (Source: Service Control Manager) (User: )
Description: The mrtRate service failed to start due to the following error:
%%2


Microsoft Office Sessions:
=========================
Error: (01/28/2013 03:55:40 PM) (Source: Application Error)(User: )
Description: padexe.exe1.2.4.0padhook.dll1.2.2.000001652

Error: (01/27/2013 09:12:08 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 15594

Error: (01/27/2013 09:12:08 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 15594

Error: (01/27/2013 09:12:08 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (01/25/2013 06:29:50 PM) (Source: MPSampleSubmission)(User: )
Description: mptelemetrymicrosoft security essentials (edb4fa23-53b8-4afa-8c5d-99752cca7094)4.1.522.0timeout1.1.9103.0fixed2 _ 10245 _ not bootNILNILNIL

Error: (01/19/2013 08:12:22 PM) (Source: Application Error)(User: )
Description: iexplore.exe8.0.6001.18702rapportutil.dll3.5.1201.94000b0f97

Error: (01/18/2013 04:11:44 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 6781

Error: (01/18/2013 04:11:44 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 6781

Error: (01/18/2013 04:11:44 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (01/18/2013 04:11:42 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 4797


=========================== Installed Programs ============================

ABBYY FineReader 6.0 Sprint (Version: 6.00.1395.4512)
Acrobat.com (Version: 1.7.186)
Adobe AIR (Version: 3.1.0.4880)
Adobe Community Help (Version: 3.5.23)
Adobe Flash Player 11 ActiveX (Version: 11.5.502.146)
Adobe Flash Player 11 Plugin (Version: 11.1.102.55)
Adobe Photoshop Elements 9 (Version: 9.0)
Adobe Photoshop.com Inspiration Browser (Version: 3.07)
Adobe Reader X (10.1.5) (Version: 10.1.5)
Advanced SystemCare 5 (Version: 5.3.0)
ALPS Touch Pad Driver
America Online (Choose which version to remove)
AOL Coach Version 1.0(Build:20040229.1 en)
AOL Connectivity Services
AOL Spyware Protection (Version: 1.0.66)
AOL Toolbar 5.0
AOL You've Got Pictures Screensaver
Apple Application Support (Version: 2.1.9)
Apple Mobile Device Support (Version: 5.2.0.6)
Apple Software Update (Version: 2.1.3.127)
ArcSoft PhotoImpression 5
ArcSoft Software Suite
Ask Toolbar (Version: 4.1.0.2)
AT&T Connection Services Manager
Atheros Client Utility
Atheros Wireless LAN MiniPCI card Driver
ATI - Software Uninstall Utility (Version: 6.14.10.1008)
ATI Control Panel (Version: 6.14.10.5103)
ATI Display Driver (Version: 8.01-040421a-015460C-Toshiba)
Audacity 1.2.6
AudibleManager
Auslogics Disk Defrag (Version: version 3.1)
Bing Bar (Version: 7.1.391.0)
Bonjour (Version: 3.0.0.10)
Carbonite Online Backup Setup (Version: 3.8.0)
Cartoonly (Version: 1.0)
CCCalc 2.0 (Version: 2.0)
CD/DVD Drive Acoustic Silencer (Version: 1.00.005)
Creative Mass Storage Drivers
Creative MediaSource (Version: 2.00)
Creative MuVo NX-TX (Version: 1.0)
Creative System Information
Cypress USB Mass Storage Driver Installation
Dealio Toolbar v6.7 (Version: 6.7)
DirectX 9 Runtime (Version: 1.00.0000)
Dropbox (Version: 1.4.20)
DTCLookup
DVD-RAM Driver
Easy Button
Elements 9 Organizer (Version: 9.0)
Elements STI Installer (Version: 1.0)
EndItAll 2.0 (Version: 2.0)
Epson Copy Utility 3.5 (Version: 3.5.0.0)
Epson Event Manager (Version: 2.30.01)
EPSON Perfection V600 Photo Scanner Driver Update
EPSON PictureMate User's Guide
EPSON Printer Software
EPSON Scan
ESET Online Scanner v3
FinePixViewer Ver.4.0
FUJIFILM USB Driver
Game Booster (Version: 2.2.0.0)
Glarysoft Toolbar (Version: 1.1.0)
Google Chrome (Version: 24.0.1312.56)
Google Earth (Version: 5.0.11733.9347)
Google Earth (Version: 6.1.0.5001)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.4.3607.2246)
Google Update Helper (Version: 1.3.21.123)
IHA_MessageCenter (Version: 1.6.0)
ImageMixer VCD for FinePix
InfoAtoms (Version: 1.4.0.0)
InternetHelper1.5 Toolbar (Version: 6.10.3.27)
InterVideo WinDVD Creator 2 (Version: 2.0.14.339)
InterVideo WinDVD for TOSHIBA (Version: 5.0-B11.445)
IObit Toolbar v6.7 (Version: 6.7)
iTunes (Version: 10.6.3.25)
Java 2 Runtime Environment, SE v1.4.2_05 (Version: 1.4.2_05)
Java Auto Updater (Version: 2.0.7.2)
Java™ 6 Update 23 (Version: 6.0.230)
Java™ 6 Update 37 (Version: 6.0.370)
Junk Mail filter update (Version: 14.0.8117.416)
Karen's Cookie Viewer (Version: 3.6.0.0)
LAME v3.98.3 for Audacity
Learn2 Player (Uninstall Only)
LiveUpdate 1.90 (Symantec Corporation) (Version: 1.90.15.0)
Malwarebytes Anti-Malware version 1.70.0.1100 (Version: 1.70.0.1100)
MathPlayer (Version: 1.1 beta 3)
Microsoft .NET Framework 1.1 (Version: 1.1.4322)
Microsoft .NET Framework 1.1 Security Update (KB2698023)
Microsoft .NET Framework 1.1 Security Update (KB2742597)
Microsoft .NET Framework 1.1 Security Update (KB979906)
Microsoft .NET Framework 2.0 Service Pack 2 (Version: 2.2.30729)
Microsoft .NET Framework 3.0 Service Pack 2 (Version: 3.2.30729)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Base Smart Card Cryptographic Service Provider Package
Microsoft Choice Guard (Version: 2.0.48.0)
Microsoft Compression Client Pack 1.0 for Windows XP (Version: 1)
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft National Language Support Downlevel APIs
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Live Add-in 1.5 (Version: 2.0.4024.1)
Microsoft Office OneNote 2003 (Version: 11.0.8173.0)
Microsoft Office Outlook Connector (Version: 12.0.6423.1000)
Microsoft Office Standard Edition 2003 (Version: 11.0.8173.0)
Microsoft Security Client (Version: 4.1.0522.0)
Microsoft Security Essentials (Version: 4.1.522.0)
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Sync Framework Runtime Native v1.0 (x86) (Version: 1.0.1215.0)
Microsoft Sync Framework Services Native v1.0 (x86) (Version: 1.0.1215.0)
Microsoft UI Engine (Version: 4.0.0318.1)
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.50727.363)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Works 7.0 (Version: 07.02.0620)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86 (Version: 8.0.50727.4053)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
MicroStaff WINASPI NT
MSVCRT (Version: 14.0.1468.721)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
muvee autoProducer 6.1 Seagate Edition (Version: 6.10.050)
Napster (Version: 2.2.0.9)
Norton WMI Update (Version: 2005.1.0.111)
Notebook Maximizer
Quick ShutDown
Quicken 2004 (Version: 13.00.0000)
QuickTime (Version: 7.72.80.56)
Rapport (Version: 3.5.1201.94)
RAW FILE CONVERTER LE
RealNetworks - Microsoft Visual C++ 2008 Runtime (Version: 9.0)
RealPlayer (Version: 15.0.5)
Realtek AC'97 Audio
Realtek Fast Ethernet Adapter Driver (Version: 5.00)
RealUpgrade 1.1 (Version: 1.1.0)
Redistributable_MM (Version: 1.00.0000)
Roxio Activation Module (Version: 1.0)
Roxio Burn Engine (Version: 1.2.0000)
Roxio Central Audio (Version: 3.8.0)
Roxio Central Core (Version: 3.8.0)
Roxio Easy LP to MP3 (Version: 10.3)
Roxio Easy LP to MP3 (Version: 10.3.104)
Roxio Easy LP to MP3 (Version: 3.8.0)
Roxio Express Labeler 3 (Version: 3.2.1)
Roxio Update Manager (Version: 6.0.0)
Seagate FreeAgent Theater PC Software (Version: 2.00.0103)
Seagate Manager Installer (Version: 2.01.0700)
Seagate Thumbnail Creator (Version: 1.0.0)
Segoe UI (Version: 14.0.4327.805)
Smart Defrag 2 (Version: 2.0.1)
SMSC IrCC V5.1.3600.3 SP1 (Version: r1.14)
Sonic CinePlayer Decoder Pack (Version: 4.3.0)
Sonic DLA (Version: 4.95)
Sonic RecordNow! (Version: 7.22)
SonicWALL Global VPN Client 4.0.0.830 (Version: 4.0.0.830)
Spesoft Toolbar (Version: )
Spotify (Version: 0.8.5.1333.g822e0de8)
SRS WOW XT Plug-In for Windows Media Player for Toshiba version 1.0.2 (Version: 1.0.2.0)
Startup Delayer v2.5 (build 138)
SUPERAntiSpyware (Version: 5.6.1014)
The Weather Channel App
Timed Shutdown 0.51b
TOSHIBA Access
TOSHIBA ConfigFree (Version: 4.90.57)
TOSHIBA Console
TOSHIBA Fax Extension
TOSHIBA Hotkey Utility (Version: 1.23.1.3)
TOSHIBA PC Diagnostic Tool
TOSHIBA Power Management Utility (Version: 1.23.2.5)
Toshiba Registration (Version: 1.00.0000)
TOSHIBA Software Modem (Version: 2.1.38 (SM2138ALD04))
TOSHIBA Software Upgrades
TOSHIBA Speech System Applications
TOSHIBA Speech System SR Engine(U.S.) Version1.0
TOSHIBA Speech System TTS Engine(U.S.) Version1.0
Toshiba Tbiosdrv Driver
Touch and Launch
TouchPad On/Off Utility (Version: 1.23.0.2)
Uninstall Startup Inspector
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Microsoft Windows (KB971513)
Update for Windows Internet Explorer 7 (KB976749) (Version: 1)
Update for Windows Internet Explorer 7 (KB980182) (Version: 1)
Update for Windows Internet Explorer 8 (KB2447568) (Version: 1)
Update for Windows Internet Explorer 8 (KB2598845) (Version: 1)
Update for Windows Internet Explorer 8 (KB2632503) (Version: 1)
Update for Windows Internet Explorer 8 (KB976662) (Version: 1)
Update for Windows Internet Explorer 8 (KB980182) (Version: 1)
Update for Windows Internet Explorer 8 (KB980302) (Version: 1)
Update for Windows XP (KB2141007) (Version: 1)
Update for Windows XP (KB2345886) (Version: 1)
Update for Windows XP (KB2467659) (Version: 1)
Update for Windows XP (KB2492386) (Version: 1)
Update for Windows XP (KB2541763) (Version: 1)
Update for Windows XP (KB2607712) (Version: 1)
Update for Windows XP (KB2616676) (Version: 1)
Update for Windows XP (KB2641690) (Version: 1)
Update for Windows XP (KB2661254-v2) (Version: 2)
Update for Windows XP (KB2718704) (Version: 1)
Update for Windows XP (KB2736233) (Version: 1)
Update for Windows XP (KB2749655) (Version: 1)
Update for Windows XP (KB951978) (Version: 1)
Update for Windows XP (KB955759) (Version: 1)
Update for Windows XP (KB961503) (Version: 1)
Update for Windows XP (KB967715) (Version: 1)
Update for Windows XP (KB968389) (Version: 1)
Update for Windows XP (KB971029) (Version: 1)
Update for Windows XP (KB971737) (Version: 1)
Update for Windows XP (KB973687) (Version: 1)
Update for Windows XP (KB973815) (Version: 1)
USB Storage Adapter FX (SM1)
Viewpoint Media Player
Visual C++ 2008 x86 Runtime - (v9.0.30729) (Version: 9.0.30729)
Visual C++ 2008 x86 Runtime - v9.0.30729.01 (Version: 9.0.30729.01)
Vz In Home Agent (Version: 8.03.53)
WebFldrs XP (Version: 9.50.7523)
WinDirStat 1.1.2
Windows Genuine Advantage Validation Tool (KB892130)
Windows Imaging Component (Version: 3.0.0.0)
Windows Internet Explorer 7 (Version: 20070813.185237)
Windows Internet Explorer 8 (Version: 20090308.140743)
Windows Live Communications Platform (Version: 14.0.8117.416)
Windows Live Essentials (Version: 14.0.8117.0416)
Windows Live Essentials (Version: 14.0.8117.416)
Windows Live ID Sign-in Assistant (Version: 6.500.3165.0)
Windows Live Mail (Version: 14.0.8117.0416)
Windows Live Photo Gallery (Version: 14.0.8117.416)
Windows Live Sync (Version: 14.0.8117.416)
Windows Live Upload Tool (Version: 14.0.8014.1029)
Windows Management Framework Core
Windows Media Format 11 runtime
Windows Media Player 11
Windows XP Service Pack 3 (Version: 20080414.031525)

========================= Memory info: ===================================

Percentage of memory in use: 84%
Total physical RAM: 702.98 MB
Available physical RAM: 106.29 MB
Total Pagefile: 1719.49 MB
Available Pagefile: 1062.5 MB
Total Virtual: 2047.88 MB
Available Virtual: 1970.85 MB

========================= Partitions: =====================================

1 Drive c: (SQ003627) (Fixed) (Total:55.89 GB) (Free:7.46 GB) NTFS

========================= Users: ========================================

User accounts for \\LAPTOP

Administrator ASPNET Brendan
Dana Guest HelpAssistant
Kathy SUPPORT_388945a0

========================= Restore Points ==================================

26-12-2012 03:09:15 Software Distribution Service 3.0
27-12-2012 23:09:11 Software Distribution Service 3.0
29-12-2012 00:23:23 Software Distribution Service 3.0
30-12-2012 00:45:08 System Checkpoint
30-12-2012 21:36:27 Software Distribution Service 3.0
01-01-2013 02:22:52 Software Distribution Service 3.0
02-01-2013 17:02:26 Software Distribution Service 3.0
03-01-2013 21:36:31 Software Distribution Service 3.0
03-01-2013 21:49:24 Software Distribution Service 3.0
04-01-2013 23:06:38 Software Distribution Service 3.0
05-01-2013 23:57:53 System Checkpoint
06-01-2013 02:22:30 Software Distribution Service 3.0
08-01-2013 16:17:31 Software Distribution Service 3.0
10-01-2013 22:25:08 Software Distribution Service 3.0
11-01-2013 00:25:59 Software Distribution Service 3.0
11-01-2013 22:42:21 Software Distribution Service 3.0
12-01-2013 01:56:07 Software Distribution Service 3.0
14-01-2013 02:37:20 Software Distribution Service 3.0
15-01-2013 00:22:25 Software Distribution Service 3.0
15-01-2013 17:47:45 Software Distribution Service 3.0
16-01-2013 21:52:03 Software Distribution Service 3.0
17-01-2013 22:48:31 Software Distribution Service 3.0
19-01-2013 00:24:21 Software Distribution Service 3.0
20-01-2013 00:54:42 Software Distribution Service 3.0
21-01-2013 01:32:09 System Checkpoint
24-01-2013 13:15:03 Software Distribution Service 3.0
24-01-2013 22:06:45 Restore Operation
24-01-2013 22:38:46 Software Distribution Service 3.0
25-01-2013 23:23:38 Software Distribution Service 3.0
27-01-2013 16:35:18 Software Distribution Service 3.0
27-01-2013 17:20:25 Microsoft Antimalware Checkpoint
28-01-2013 17:26:02 Microsoft Antimalware Checkpoint
28-01-2013 19:33:45 Software Distribution Service 3.0
28-01-2013 20:35:41 Installed Microsoft Fix it 50102
29-01-2013 17:29:51 Microsoft Antimalware Checkpoint

**** End of log ****

#14 dflahe

dflahe
  • Topic Starter

  • Members
  • 40 posts
  • OFFLINE
  •  
  • Local time:09:03 PM

Posted 29 January 2013 - 09:49 PM

# AdwCleaner v2.109 - Logfile created 01/29/2013 at 21:46:58
# Updated 26/01/2013 by Xplode
# Operating system : Microsoft Windows XP Service Pack 3 (32 bits)
# User : Dana - LAPTOP
# Boot Mode : Normal
# Running from : C:\Documents and Settings\Dana\desktop\adwcleaner.exe
# Option [Search]


***** [Services] *****

Found : Application Updater

***** [Files / Folders] *****

Folder Found : C:\Documents and Settings\All Users\Application Data\InstallMate
Folder Found : C:\Documents and Settings\All Users\Application Data\Premium
Folder Found : C:\Documents and Settings\All Users\Application Data\Viewpoint
Folder Found : C:\Documents and Settings\Brendan\Application Data\Search Settings
Folder Found : C:\Documents and Settings\Dana\Application Data\BabylonToolbar
Folder Found : C:\Documents and Settings\Dana\Application Data\Dealio
Folder Found : C:\Documents and Settings\Dana\Application Data\Mozilla\Firefox\Profiles\or8jdflt.default\bflixtoolbar
Folder Found : C:\Documents and Settings\Dana\Application Data\Mozilla\Firefox\Profiles\or8jdflt.default\extensions\{a6bf16ab-42a1-4bc5-965d-5e407e449aaa}
Folder Found : C:\Documents and Settings\Dana\Application Data\Search Settings
Folder Found : C:\Documents and Settings\Dana\Application Data\Toolbar4
Folder Found : C:\Documents and Settings\Dana\Local Settings\Application Data\Conduit
Folder Found : C:\Documents and Settings\Dana\Local Settings\Application Data\InternetHelper1.5
Folder Found : C:\Documents and Settings\Dana\Local Settings\Application Data\Spesoft
Folder Found : C:\Documents and Settings\Dana\My Documents\ShopToWin
Folder Found : C:\Documents and Settings\Kathy\Application Data\bflixtoolbar
Folder Found : C:\Documents and Settings\Kathy\Application Data\Dealio
Folder Found : C:\Documents and Settings\Kathy\Application Data\Search Settings
Folder Found : C:\Documents and Settings\Kathy\Application Data\Toolbar4
Folder Found : C:\Documents and Settings\Kathy\Local Settings\Application Data\Conduit
Folder Found : C:\Documents and Settings\Kathy\Local Settings\Application Data\InternetHelper1.5
Folder Found : C:\Program Files\Application Updater
Folder Found : C:\Program Files\AskBarDis
Folder Found : C:\Program Files\Babylon
Folder Found : C:\Program Files\Common Files\spigot
Folder Found : C:\Program Files\Conduit
Folder Found : C:\Program Files\Dealio Toolbar
Folder Found : C:\Program Files\Glarysoft Toolbar
Folder Found : C:\Program Files\InternetHelper1.5
Folder Found : C:\Program Files\Object
Folder Found : C:\Program Files\Spesoft
Folder Found : C:\Program Files\Viewpoint

***** [Registry] *****

Key Found : HKCU\Software\AppDataLow\AskBarDis
Key Found : HKCU\Software\AppDataLow\Software\Conduit
Key Found : HKCU\Software\AppDataLow\Software\Dealio
Key Found : HKCU\Software\AppDataLow\Software\Freecause
Key Found : HKCU\Software\AppDataLow\Software\Search Settings
Key Found : HKCU\Software\Conduit
Key Found : HKCU\Software\ConduitSearchScopes
Key Found : HKCU\Software\Dealio
Key Found : HKCU\Software\InternetHelper1.5
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{1930E38A-DEEF-4CF4-9BFB-9C4EA3689A9D}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{201F27D4-3704-41D6-89C1-AA35E39143ED}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2EECD738-5844-4A99-B4B6-146BF802613B}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3041D03E-FD4B-44E0-B742-2D9B88305F98}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{32D47EA5-9473-4CAD-805D-9999F15D5AE2}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{94817C02-FEAC-4AA8-99D8-1CB47BF4D4C0}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{98889811-442D-49DD-99D7-DC866BE87DBC}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{9CFACCB6-2F3F-4177-94EA-0D2B72D384C1}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A6BF16AB-42A1-4BC5-965D-5E407E449AAA}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A7AF277D-1466-4A7B-93AF-B043984A5671}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{E312764E-7706-43F1-8DAB-FCDD2B1E416D}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1930E38A-DEEF-4CF4-9BFB-9C4EA3689A9D}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{201F27D4-3704-41D6-89C1-AA35E39143ED}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2EECD738-5844-4A99-B4B6-146BF802613B}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3041D03E-FD4B-44E0-B742-2D9B88305F98}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{32D47EA5-9473-4CAD-805D-9999F15D5AE2}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{94817C02-FEAC-4AA8-99D8-1CB47BF4D4C0}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{98889811-442D-49DD-99D7-DC866BE87DBC}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9CFACCB6-2F3F-4177-94EA-0D2B72D384C1}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A6BF16AB-42A1-4BC5-965D-5E407E449AAA}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A7AF277D-1466-4A7B-93AF-B043984A5671}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{E312764E-7706-43F1-8DAB-FCDD2B1E416D}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F72841F0-4EF1-4DF5-BCE5-B3AC8ACF5478}
Key Found : HKCU\Software\Search Settings
Key Found : HKCU\Software\SmartBar
Key Found : HKCU\Software\Spesoft
Key Found : HKCU\Software\TBSB05810
Key Found : HKCU\Software\Zugo
Key Found : HKCU\Toolbar
Key Found : HKLM\Software\Application Updater
Key Found : HKLM\Software\AskBarDis
Key Found : HKLM\Software\bflixtoolbar
Key Found : HKLM\SOFTWARE\Classes\AppID\{4CE516A7-F7AC-4628-B411-8F886DC5733E}
Key Found : HKLM\SOFTWARE\Classes\AppID\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
Key Found : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Key Found : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Key Found : HKLM\SOFTWARE\Classes\AppID\TbCommonUtils.DLL
Key Found : HKLM\SOFTWARE\Classes\AppID\TbHelper.EXE
Key Found : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtl
Key Found : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtl.1
Key Found : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtlSecondary
Key Found : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtlSecondary.1
Key Found : HKLM\SOFTWARE\Classes\CLSID\{01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{03F998B2-0E00-11D3-A498-00104B6EB52E}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{0702A2B6-13AA-4090-9E01-BCDC85DD933F}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{08993A7C-E764-4172-9627-BFB5EA6897B2}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{128A6C66-AC6A-4617-8268-AB7F47B7215E}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{1930E38A-DEEF-4CF4-9BFB-9C4EA3689A9D}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{1C950DE5-D31E-42FB-AFB9-91B0161633D8}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{201F27D4-3704-41D6-89C1-AA35E39143ED}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{3041D03E-FD4B-44E0-B742-2D9B88305F98}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{32D47EA5-9473-4CAD-805D-9999F15D5AE2}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{3BDF4CE9-E81D-432B-A55E-9F0570CE811F}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{571715D7-3395-4DF0-B43C-784836209E60}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{57CADC46-58FF-4105-B733-5A9F3FC9783C}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{622FD888-4E91-4D68-84D4-7262FD0811BF}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{94817C02-FEAC-4AA8-99D8-1CB47BF4D4C0}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{9AFB8248-617F-460D-9366-D71CDEDA3179}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{9F34B17E-FF0D-4FAB-97C4-9713FEE79052}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{A7AF277D-1466-4A7B-93AF-B043984A5671}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{A9A56B8E-2DEB-4ED3-BC92-1FA450BCE1A5}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{AE338F6D-5A7C-4D1D-86E3-C618532079B5}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{B0DE3308-5D5A-470D-81B9-634FC078393B}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{C339D489-FABC-41DD-B39D-276101667C70}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{CF0A6C67-CFD0-40B0-A375-4B9893C2B339}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{D433A9D0-8267-40CB-8AD5-24F22FA5373F}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{D565B35E-B787-40FA-95E3-E3562F8FC1A0}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{D89031C2-10DA-4C90-9A62-FCED012BC46B}
Key Found : HKLM\SOFTWARE\Classes\ComObject.DeskbarEnabler
Key Found : HKLM\SOFTWARE\Classes\ComObject.DeskbarEnabler.1
Key Found : HKLM\SOFTWARE\Classes\Interface\{01221FCC-4BFB-461C-B08C-F6D2DF309921}
Key Found : HKLM\SOFTWARE\Classes\Interface\{0FA32667-9A8A-4E9C-902F-CA3323180003}
Key Found : HKLM\SOFTWARE\Classes\Interface\{2A42D13C-D427-4787-821B-CF6973855778}
Key Found : HKLM\SOFTWARE\Classes\Interface\{3D8478AA-7B88-48A9-8BCB-B85D594411EC}
Key Found : HKLM\SOFTWARE\Classes\Interface\{452AE416-9A97-44CA-93DA-D0F15C36254F}
Key Found : HKLM\SOFTWARE\Classes\Interface\{45CDA4F7-594C-49A0-AAD1-8224517FE979}
Key Found : HKLM\SOFTWARE\Classes\Interface\{4634804A-F0B0-4A74-A550-FC0EEF8A4362}
Key Found : HKLM\SOFTWARE\Classes\Interface\{4C07EA4F-5F52-4222-B170-4CD9ED33BAEA}
Key Found : HKLM\SOFTWARE\Classes\Interface\{4D8ED2B3-DC62-43EC-ABA3-5B74F046B1BE}
Key Found : HKLM\SOFTWARE\Classes\Interface\{6B458F62-592F-4B25-8967-E6A350A59328}
Key Found : HKLM\SOFTWARE\Classes\Interface\{81E852CC-1FD5-4004-8761-79A48B975E29}
Key Found : HKLM\SOFTWARE\Classes\Interface\{95B6A271-FEB4-4160-B0FF-44394C21C8DC}
Key Found : HKLM\SOFTWARE\Classes\Interface\{B2CA345D-ADB8-4F5D-AC64-4AB34322F659}
Key Found : HKLM\SOFTWARE\Classes\Interface\{B9F43021-60D4-42A6-A065-9BA37F38AC47}
Key Found : HKLM\SOFTWARE\Classes\Interface\{BF921DD3-732A-4A11-933B-A5EA49F2FD2C}
Key Found : HKLM\SOFTWARE\Classes\Interface\{C44FEFF4-EF0C-4CF7-83D0-92B4266A32B9}
Key Found : HKLM\SOFTWARE\Classes\Interface\{D83B296A-2FA6-425B-8AE8-A1F33D99FBD6}
Key Found : HKLM\SOFTWARE\Classes\Interface\{E67D5BC7-7129-493E-9281-F47BDAFACE4F}
Key Found : HKLM\SOFTWARE\Classes\Interface\{F131923C-381D-4E4C-A472-4A17118FD742}
Key Found : HKLM\SOFTWARE\Classes\Interface\{FCC9CDD3-EFFF-11D1-A9F0-00A0244AC403}
Key Found : HKLM\SOFTWARE\Classes\Prod.cap
Key Found : HKLM\SOFTWARE\Classes\TbCommonUtils.CommonUtils
Key Found : HKLM\SOFTWARE\Classes\TbCommonUtils.CommonUtils.1
Key Found : HKLM\SOFTWARE\Classes\TbHelper.TbDownloadManager
Key Found : HKLM\SOFTWARE\Classes\TbHelper.TbDownloadManager.1
Key Found : HKLM\SOFTWARE\Classes\TbHelper.TbPropertyManager
Key Found : HKLM\SOFTWARE\Classes\TbHelper.TbPropertyManager.1
Key Found : HKLM\SOFTWARE\Classes\TbHelper.TbRequest
Key Found : HKLM\SOFTWARE\Classes\TbHelper.TbRequest.1
Key Found : HKLM\SOFTWARE\Classes\TbHelper.TbTask
Key Found : HKLM\SOFTWARE\Classes\TbHelper.TbTask.1
Key Found : HKLM\SOFTWARE\Classes\TbHelper.ToolbarHelper
Key Found : HKLM\SOFTWARE\Classes\TbHelper.ToolbarHelper.1
Key Found : HKLM\SOFTWARE\Classes\TBSB05810.IEToolbar
Key Found : HKLM\SOFTWARE\Classes\TBSB05810.IEToolbar.1
Key Found : HKLM\SOFTWARE\Classes\TBSB05810.TBSB05810
Key Found : HKLM\SOFTWARE\Classes\TBSB05810.TBSB05810.3
Key Found : HKLM\SOFTWARE\Classes\Toolbar.CT3247201
Key Found : HKLM\SOFTWARE\Classes\Toolbar3.ContextMenuNotifier
Key Found : HKLM\SOFTWARE\Classes\Toolbar3.ContextMenuNotifier.1
Key Found : HKLM\SOFTWARE\Classes\Toolbar3.CustomInternetSecurityImpl
Key Found : HKLM\SOFTWARE\Classes\Toolbar3.CustomInternetSecurityImpl.1
Key Found : HKLM\SOFTWARE\Classes\Toolbar3.SearchProviderManager
Key Found : HKLM\SOFTWARE\Classes\Toolbar3.SearchProviderManager.1
Key Found : HKLM\SOFTWARE\Classes\Toolbar3.TBSB05810
Key Found : HKLM\SOFTWARE\Classes\Toolbar3.TBSB05810.1
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{4B1C1E16-6B34-430E-B074-5928ECA4C150}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{B87F8B63-7274-43FD-87FA-09D3B7496148}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{C4BAE205-5E02-4E32-876E-F34B4E2D000C}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{D2E5FA06-DCC7-46F9-BEFF-BFD06F69B9B2}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{EC4085F2-8DB3-45A6-AD0B-CA289F3C5D7E}
Key Found : HKLM\Software\Conduit
Key Found : HKLM\Software\Dealio
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\dhkplhfnhceodhffomolpfigojocbpcb
Key Found : HKLM\Software\InternetHelper1.5
Key Found : HKLM\Software\MetaStream
Key Found : HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{03F998B2-0E00-11D3-A498-00104B6EB52E}
Key Found : HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{39B97D28-AA7F-41FD-85EE-161E41CC4752}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{55BE09B0-D564-415F-9A88-47F90DD945C9}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
Key Found : HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SearchSettings
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{7ABD4437-12A5-4644-A954-F83B3FBE7FBF}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Ask Toolbar_is1
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\InternetHelper1.5 Toolbar
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Spesoft Toolbar
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\ViewpointMediaPlayer
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1930E38A-DEEF-4CF4-9BFB-9C4EA3689A9D}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{201F27D4-3704-41D6-89C1-AA35E39143ED}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{94817C02-FEAC-4AA8-99D8-1CB47BF4D4C0}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A7AF277D-1466-4A7B-93AF-B043984A5671}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{CF0A6C67-CFD0-40B0-A375-4B9893C2B339}
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\063A857434EDED11A893800002C0A966
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\23A03A6765D10864EB278629A2DF32C3
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\305B09CE8C53A214DB58887F62F25536
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3A4FCCE032CA50340A6975C92410AE30
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6E00D9B24354FBA44AE2CA0FA86EF2E2
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7C13F41728A69EF41AA1A3372FB86FA6
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B92A2929968AED344BD6B34AD60E6604
Key Found : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ED1CAE30F47D14B41B5FC8FA53658044
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Ask Toolbar_is1
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\InternetHelper1.5 Toolbar
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Spesoft Toolbar
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ViewpointMediaPlayer
Key Found : HKLM\SOFTWARE\MozillaPlugins\@viewpoint.com/VMP
Key Found : HKLM\Software\Search Settings
Key Found : HKLM\Software\Spesoft
Key Found : HKLM\Software\Viewpoint
Key Found : HKU\S-1-5-21-1953132717-246057347-4292747179-1006\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Key Found : HKU\S-1-5-21-1953132717-246057347-4292747179-1006\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Value Found : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{1930E38A-DEEF-4CF4-9BFB-9C4EA3689A9D}]
Value Found : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{3041D03E-FD4B-44E0-B742-2D9B88305F98}]
Value Found : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{32D47EA5-9473-4CAD-805D-9999F15D5AE2}]
Value Found : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{94817C02-FEAC-4AA8-99D8-1CB47BF4D4C0}]
Value Found : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C}]
Value Found : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{1930E38A-DEEF-4CF4-9BFB-9C4EA3689A9D}]
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C}]
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{1930E38A-DEEF-4CF4-9BFB-9C4EA3689A9D}]
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{3041D03E-FD4B-44E0-B742-2D9B88305F98}]
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{32D47EA5-9473-4CAD-805D-9999F15D5AE2}]
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{94817C02-FEAC-4AA8-99D8-1CB47BF4D4C0}]
Value Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [SearchSettings]

***** [Internet Browsers] *****

-\\ Internet Explorer v8.0.6001.18702

[HKCU\Software\Microsoft\Internet Explorer\Main - Start Page] = hxxp://search.conduit.com?SearchSource=10&ctid=CT3247201
[HKCU\Software\Microsoft\Internet Explorer\Main - Default_Page_URL] = hxxp://isearch.glarysoft.com/?src=iehome
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main - Default_Page_URL] = hxxp://isearch.glarysoft.com/?src=iehome
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Main - Start Page] = hxxp://isearch.glarysoft.com/?src=iehome

-\\ Mozilla Firefox v [Unable to get version]

File : C:\Documents and Settings\Dana\Application Data\Mozilla\Firefox\Profiles\or8jdflt.default\prefs.js

Found : user_pref("browser.startup.homepage", "hxxp://isearch.glarysoft.com/?src=ffhome");

-\\ Google Chrome v24.0.1312.56

File : C:\Documents and Settings\Dana\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences

Found [l.20] : urls_to_restore_on_startup = [ "hxxp://search.conduit.com/?ctid=CT3247201&SearchSource=48" ]
Found [l.2433] : urls_to_restore_on_startup = [ "hxxp://search.conduit.com/?ctid=CT3247201&SearchSource=48" ]

File : C:\Documents and Settings\Kathy\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

File : C:\Documents and Settings\Brendan\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[R1].txt - [20094 octets] - [29/01/2013 21:46:58]

########## EOF - C:\AdwCleaner[R1].txt - [20155 octets] ##########

#15 dflahe

dflahe
  • Topic Starter

  • Members
  • 40 posts
  • OFFLINE
  •  
  • Local time:09:03 PM

Posted 29 January 2013 - 10:16 PM

Adware after Delete

AdwCleaner v2.109 - Logfile created 01/29/2013 at 21:48:16
# Updated 26/01/2013 by Xplode
# Operating system : Microsoft Windows XP Service Pack 3 (32 bits)
# User : Dana - LAPTOP
# Boot Mode : Normal
# Running from : C:\Documents and Settings\Dana\desktop\adwcleaner.exe
# Option [Delete]


***** [Services] *****

Stopped & Deleted : Application Updater

***** [Files / Folders] *****

Folder Deleted : C:\Documents and Settings\All Users\Application Data\InstallMate
Folder Deleted : C:\Documents and Settings\All Users\Application Data\Premium
Folder Deleted : C:\Documents and Settings\All Users\Application Data\Viewpoint
Folder Deleted : C:\Documents and Settings\Brendan\Application Data\Search Settings
Folder Deleted : C:\Documents and Settings\Dana\Application Data\BabylonToolbar
Folder Deleted : C:\Documents and Settings\Dana\Application Data\Dealio
Folder Deleted : C:\Documents and Settings\Dana\Application Data\Mozilla\Firefox\Profiles\or8jdflt.default\bflixtoolbar
Folder Deleted : C:\Documents and Settings\Dana\Application Data\Mozilla\Firefox\Profiles\or8jdflt.default\extensions\{a6bf16ab-42a1-4bc5-965d-5e407e449aaa}
Folder Deleted : C:\Documents and Settings\Dana\Application Data\Search Settings
Folder Deleted : C:\Documents and Settings\Dana\Application Data\Toolbar4
Folder Deleted : C:\Documents and Settings\Dana\Local Settings\Application Data\Conduit
Folder Deleted : C:\Documents and Settings\Dana\Local Settings\Application Data\InternetHelper1.5
Folder Deleted : C:\Documents and Settings\Dana\Local Settings\Application Data\Spesoft
Folder Deleted : C:\Documents and Settings\Dana\My Documents\ShopToWin
Folder Deleted : C:\Documents and Settings\Kathy\Application Data\bflixtoolbar
Folder Deleted : C:\Documents and Settings\Kathy\Application Data\Dealio
Folder Deleted : C:\Documents and Settings\Kathy\Application Data\Search Settings
Folder Deleted : C:\Documents and Settings\Kathy\Application Data\Toolbar4
Folder Deleted : C:\Documents and Settings\Kathy\Local Settings\Application Data\Conduit
Folder Deleted : C:\Documents and Settings\Kathy\Local Settings\Application Data\InternetHelper1.5
Folder Deleted : C:\Program Files\Application Updater
Folder Deleted : C:\Program Files\AskBarDis
Folder Deleted : C:\Program Files\Babylon
Folder Deleted : C:\Program Files\Common Files\spigot
Folder Deleted : C:\Program Files\Conduit
Folder Deleted : C:\Program Files\Dealio Toolbar
Folder Deleted : C:\Program Files\Glarysoft Toolbar
Folder Deleted : C:\Program Files\InternetHelper1.5
Folder Deleted : C:\Program Files\Object
Folder Deleted : C:\Program Files\Spesoft
Folder Deleted : C:\Program Files\Viewpoint

***** [Registry] *****

Key Deleted : HKCU\Software\AppDataLow\AskBarDis
Key Deleted : HKCU\Software\AppDataLow\Software\Conduit
Key Deleted : HKCU\Software\AppDataLow\Software\Dealio
Key Deleted : HKCU\Software\AppDataLow\Software\Freecause
Key Deleted : HKCU\Software\AppDataLow\Software\Search Settings
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\ConduitSearchScopes
Key Deleted : HKCU\Software\Dealio
Key Deleted : HKCU\Software\InternetHelper1.5
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{1930E38A-DEEF-4CF4-9BFB-9C4EA3689A9D}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{201F27D4-3704-41D6-89C1-AA35E39143ED}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2EECD738-5844-4A99-B4B6-146BF802613B}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3041D03E-FD4B-44E0-B742-2D9B88305F98}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{32D47EA5-9473-4CAD-805D-9999F15D5AE2}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{94817C02-FEAC-4AA8-99D8-1CB47BF4D4C0}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{98889811-442D-49DD-99D7-DC866BE87DBC}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{9CFACCB6-2F3F-4177-94EA-0D2B72D384C1}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A6BF16AB-42A1-4BC5-965D-5E407E449AAA}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A7AF277D-1466-4A7B-93AF-B043984A5671}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{E312764E-7706-43F1-8DAB-FCDD2B1E416D}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1930E38A-DEEF-4CF4-9BFB-9C4EA3689A9D}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{201F27D4-3704-41D6-89C1-AA35E39143ED}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2EECD738-5844-4A99-B4B6-146BF802613B}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3041D03E-FD4B-44E0-B742-2D9B88305F98}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{32D47EA5-9473-4CAD-805D-9999F15D5AE2}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{94817C02-FEAC-4AA8-99D8-1CB47BF4D4C0}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{98889811-442D-49DD-99D7-DC866BE87DBC}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9CFACCB6-2F3F-4177-94EA-0D2B72D384C1}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A6BF16AB-42A1-4BC5-965D-5E407E449AAA}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A7AF277D-1466-4A7B-93AF-B043984A5671}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{E312764E-7706-43F1-8DAB-FCDD2B1E416D}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F72841F0-4EF1-4DF5-BCE5-B3AC8ACF5478}
Key Deleted : HKCU\Software\Search Settings
Key Deleted : HKCU\Software\SmartBar
Key Deleted : HKCU\Software\Spesoft
Key Deleted : HKCU\Software\TBSB05810
Key Deleted : HKCU\Software\Zugo
Key Deleted : HKCU\Toolbar
Key Deleted : HKLM\Software\Application Updater
Key Deleted : HKLM\Software\AskBarDis
Key Deleted : HKLM\Software\bflixtoolbar
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{4CE516A7-F7AC-4628-B411-8F886DC5733E}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\TbCommonUtils.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\TbHelper.EXE
Key Deleted : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtl
Key Deleted : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtl.1
Key Deleted : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtlSecondary
Key Deleted : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtlSecondary.1
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{03F998B2-0E00-11D3-A498-00104B6EB52E}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{0702A2B6-13AA-4090-9E01-BCDC85DD933F}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{08993A7C-E764-4172-9627-BFB5EA6897B2}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{128A6C66-AC6A-4617-8268-AB7F47B7215E}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1930E38A-DEEF-4CF4-9BFB-9C4EA3689A9D}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1C950DE5-D31E-42FB-AFB9-91B0161633D8}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{201F27D4-3704-41D6-89C1-AA35E39143ED}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3041D03E-FD4B-44E0-B742-2D9B88305F98}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{32D47EA5-9473-4CAD-805D-9999F15D5AE2}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3BDF4CE9-E81D-432B-A55E-9F0570CE811F}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{571715D7-3395-4DF0-B43C-784836209E60}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{57CADC46-58FF-4105-B733-5A9F3FC9783C}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{622FD888-4E91-4D68-84D4-7262FD0811BF}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{94817C02-FEAC-4AA8-99D8-1CB47BF4D4C0}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{9AFB8248-617F-460D-9366-D71CDEDA3179}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{9F34B17E-FF0D-4FAB-97C4-9713FEE79052}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A7AF277D-1466-4A7B-93AF-B043984A5671}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A9A56B8E-2DEB-4ED3-BC92-1FA450BCE1A5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE338F6D-5A7C-4D1D-86E3-C618532079B5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B0DE3308-5D5A-470D-81B9-634FC078393B}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{C339D489-FABC-41DD-B39D-276101667C70}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CF0A6C67-CFD0-40B0-A375-4B9893C2B339}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{D433A9D0-8267-40CB-8AD5-24F22FA5373F}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{D565B35E-B787-40FA-95E3-E3562F8FC1A0}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{D89031C2-10DA-4C90-9A62-FCED012BC46B}
Key Deleted : HKLM\SOFTWARE\Classes\ComObject.DeskbarEnabler
Key Deleted : HKLM\SOFTWARE\Classes\ComObject.DeskbarEnabler.1
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{01221FCC-4BFB-461C-B08C-F6D2DF309921}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0FA32667-9A8A-4E9C-902F-CA3323180003}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2A42D13C-D427-4787-821B-CF6973855778}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3D8478AA-7B88-48A9-8BCB-B85D594411EC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{452AE416-9A97-44CA-93DA-D0F15C36254F}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{45CDA4F7-594C-49A0-AAD1-8224517FE979}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4634804A-F0B0-4A74-A550-FC0EEF8A4362}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4C07EA4F-5F52-4222-B170-4CD9ED33BAEA}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4D8ED2B3-DC62-43EC-ABA3-5B74F046B1BE}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{6B458F62-592F-4B25-8967-E6A350A59328}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{81E852CC-1FD5-4004-8761-79A48B975E29}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{95B6A271-FEB4-4160-B0FF-44394C21C8DC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B2CA345D-ADB8-4F5D-AC64-4AB34322F659}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B9F43021-60D4-42A6-A065-9BA37F38AC47}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{BF921DD3-732A-4A11-933B-A5EA49F2FD2C}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C44FEFF4-EF0C-4CF7-83D0-92B4266A32B9}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D83B296A-2FA6-425B-8AE8-A1F33D99FBD6}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E67D5BC7-7129-493E-9281-F47BDAFACE4F}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{F131923C-381D-4E4C-A472-4A17118FD742}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FCC9CDD3-EFFF-11D1-A9F0-00A0244AC403}
Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap
Key Deleted : HKLM\SOFTWARE\Classes\TbCommonUtils.CommonUtils
Key Deleted : HKLM\SOFTWARE\Classes\TbCommonUtils.CommonUtils.1
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbDownloadManager
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbDownloadManager.1
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbPropertyManager
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbPropertyManager.1
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbRequest
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbRequest.1
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbTask
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbTask.1
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.ToolbarHelper
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.ToolbarHelper.1
Key Deleted : HKLM\SOFTWARE\Classes\TBSB05810.IEToolbar
Key Deleted : HKLM\SOFTWARE\Classes\TBSB05810.IEToolbar.1
Key Deleted : HKLM\SOFTWARE\Classes\TBSB05810.TBSB05810
Key Deleted : HKLM\SOFTWARE\Classes\TBSB05810.TBSB05810.3
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT3247201
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar3.ContextMenuNotifier
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar3.ContextMenuNotifier.1
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar3.CustomInternetSecurityImpl
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar3.CustomInternetSecurityImpl.1
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar3.SearchProviderManager
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar3.SearchProviderManager.1
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar3.TBSB05810
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar3.TBSB05810.1
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{4B1C1E16-6B34-430E-B074-5928ECA4C150}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{B87F8B63-7274-43FD-87FA-09D3B7496148}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{C4BAE205-5E02-4E32-876E-F34B4E2D000C}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{D2E5FA06-DCC7-46F9-BEFF-BFD06F69B9B2}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{EC4085F2-8DB3-45A6-AD0B-CA289F3C5D7E}
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\Dealio
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\dhkplhfnhceodhffomolpfigojocbpcb
Key Deleted : HKLM\Software\InternetHelper1.5
Key Deleted : HKLM\Software\MetaStream
Key Deleted : HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{03F998B2-0E00-11D3-A498-00104B6EB52E}
Key Deleted : HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{39B97D28-AA7F-41FD-85EE-161E41CC4752}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{55BE09B0-D564-415F-9A88-47F90DD945C9}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
Key Deleted : HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SearchSettings
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{7ABD4437-12A5-4644-A954-F83B3FBE7FBF}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Ask Toolbar_is1
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\InternetHelper1.5 Toolbar
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Spesoft Toolbar
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\ViewpointMediaPlayer
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1930E38A-DEEF-4CF4-9BFB-9C4EA3689A9D}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{201F27D4-3704-41D6-89C1-AA35E39143ED}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{94817C02-FEAC-4AA8-99D8-1CB47BF4D4C0}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A7AF277D-1466-4A7B-93AF-B043984A5671}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{CF0A6C67-CFD0-40B0-A375-4B9893C2B339}
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\063A857434EDED11A893800002C0A966
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\23A03A6765D10864EB278629A2DF32C3
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\305B09CE8C53A214DB58887F62F25536
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3A4FCCE032CA50340A6975C92410AE30
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6E00D9B24354FBA44AE2CA0FA86EF2E2
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7C13F41728A69EF41AA1A3372FB86FA6
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B92A2929968AED344BD6B34AD60E6604
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ED1CAE30F47D14B41B5FC8FA53658044
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Ask Toolbar_is1
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\InternetHelper1.5 Toolbar
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Spesoft Toolbar
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ViewpointMediaPlayer
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@viewpoint.com/VMP
Key Deleted : HKLM\Software\Search Settings
Key Deleted : HKLM\Software\Spesoft
Key Deleted : HKLM\Software\Viewpoint
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{1930E38A-DEEF-4CF4-9BFB-9C4EA3689A9D}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{3041D03E-FD4B-44E0-B742-2D9B88305F98}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{32D47EA5-9473-4CAD-805D-9999F15D5AE2}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{94817C02-FEAC-4AA8-99D8-1CB47BF4D4C0}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{1930E38A-DEEF-4CF4-9BFB-9C4EA3689A9D}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{1930E38A-DEEF-4CF4-9BFB-9C4EA3689A9D}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{3041D03E-FD4B-44E0-B742-2D9B88305F98}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{32D47EA5-9473-4CAD-805D-9999F15D5AE2}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{94817C02-FEAC-4AA8-99D8-1CB47BF4D4C0}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [SearchSettings]

***** [Internet Browsers] *****

-\\ Internet Explorer v8.0.6001.18702

Replaced : [HKCU\Software\Microsoft\Internet Explorer\Main - Start Page] = hxxp://search.conduit.com?SearchSource=10&ctid=CT3247201 --> hxxp://www.google.com
Replaced : [HKCU\Software\Microsoft\Internet Explorer\Main - Default_Page_URL] = hxxp://isearch.glarysoft.com/?src=iehome --> hxxp://www.google.com
Replaced : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main - Default_Page_URL] = hxxp://isearch.glarysoft.com/?src=iehome --> hxxp://www.google.com
Replaced : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main - Start Page] = hxxp://isearch.glarysoft.com/?src=iehome --> hxxp://www.google.com

-\\ Mozilla Firefox v [Unable to get version]

File : C:\Documents and Settings\Dana\Application Data\Mozilla\Firefox\Profiles\or8jdflt.default\prefs.js

Deleted : user_pref("browser.startup.homepage", "hxxp://isearch.glarysoft.com/?src=ffhome");

-\\ Google Chrome v24.0.1312.56

File : C:\Documents and Settings\Dana\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences

Deleted [l.20] : urls_to_restore_on_startup = [ "hxxp://search.conduit.com/?ctid=CT3247201&SearchSource=48"[...]
Deleted [l.2433] : urls_to_restore_on_startup = [ "hxxp://search.conduit.com/?ctid=CT3247201&SearchSource=48" ]

File : C:\Documents and Settings\Kathy\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

File : C:\Documents and Settings\Brendan\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[R1].txt - [20225 octets] - [29/01/2013 21:46:58]
AdwCleaner[S1].txt - [20456 octets] - [29/01/2013 21:48:16]

########## EOF - C:\AdwCleaner[S1].txt - [20517 octets] ##########




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users