Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Fake Windows SIte Got Me


  • This topic is locked This topic is locked
19 replies to this topic

#1 garganof

garganof

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:04:42 AM

Posted 28 March 2013 - 06:33 PM

A afke windowa site popped up saying it was antivirus. After I activated it, none of my programs will work. Cannot run PC Tools, Antivirus, word, nothing. I can get on internet through a backdoor but that is it. Cannot do a systems restor.



BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,221 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:04:42 AM

Posted 28 March 2013 - 07:58 PM

Hello did it give itself a name ?? Example... Remove Disk Antivirus Professional ....
What is your operating system?
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,221 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:04:42 AM

Posted 29 March 2013 - 09:03 PM

If you can get in try this
 
Please download Rkill by Grinler and save it to your desktop.[url="http://download.bleepingcomputer.com/grinler/rkill.exe"]Link 2.
  • A black DOS box will briefly flash and then disappear. This is normal and indicates the tool ran successfully.
  • If not, delete the file, then download and use the one provided in Link 2.
  • If it does not work, repeat the process and attempt to use one of the remaining links until the tool runs.
  • If the tool does not run from any of the links provided, please let me know.
  • Do not reboot the computer, you will need to run the application again.
     
     
     
    Please Download[url="http://www.bleepingcomputer.com/download/tdsskiller/dl/4/"] TDSSkillerLaunch it.
    Click on change parameters-Select TDLFS file system
    Click on "Scan".
    Please post the LOG report(log file should be in your C drive)
     
    Do not change the default options on scan results.

Edited by boopme, 29 March 2013 - 09:03 PM.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#4 garganof

garganof
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:04:42 AM

Posted 01 April 2013 - 09:47 PM

The first link ran and said it fixed Windows Defender but Defender does not work. The others cannot even run.



#5 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,221 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:04:42 AM

Posted 02 April 2013 - 03:44 PM

Ok looks like something more serious.. Can you run DDS from the guide below and post it in a new topic as per step 8.

Please follow this Preparation Guide and post in a new topic.

 

Let me know if all went well.


 


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#6 garganof

garganof
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:04:42 AM

Posted 03 April 2013 - 08:35 PM

Something in what I did the first time must have worked. I can now access the internet from the icon on the dektop. I was able to run avira scan and windows defender scan but only from the control panel. Both came up with no viruses, etc. I cannot download anything, i.e. google earth. Nothing else will open like google earth or Pc Tools.



#7 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,221 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:04:42 AM

Posted 03 April 2013 - 08:42 PM

OK,good let's do these then... and see how it is after.

 

Run RKill again.

 

Please Download TDSSkiller
Launch it.
Click on change parameters-Select TDLFS file system
Click on "Scan".
Please post the LOG report(log file should be in your C drive)
 
Do not change the default options on scan results.

 

 

 

Please download AdwCleaner by Xplode onto your desktop.
•Close all open programs and internet browsers.
•Double click on adwcleaner.exe to run the tool.
•Click on Delete.
•Confirm each time with Ok.
•You will be prompted to restart your computer. A text file will open after the restart.
•Please post the contents of that logfile with your next reply.
•You can find the logfile at C:\AdwCleaner[S1].txt as well.


>>>>

Now I'd like us to scan your machine with ESET OnlineScan

  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png  button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.

NOTE:Sometimes if ESET finds no infections it will not create a log.


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#8 rotor123

rotor123

  • Moderator
  • 8,093 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:New Jersey
  • Local time:04:42 AM

Posted 24 May 2013 - 09:34 PM

Boopme, Hi

 

I have her laptop here as of today Since she isn't real good with computers. She's been using her tablet for the time being.

I hope You don't mind if I pick up where she left off. It may be a day or too as real life has been intruding on my time.

 

Best Regards

Roger


Fortune Cookie says: Fortune not Found: Abort, Retry, Ignore?

Sent from my All-In-One Desktop. Perfect for Internet, Not for heavy usage or gaming however.

How Does a computer get Infected? http://www.bleepingcomputer.com/forums/t/2520/how-did-i-get-infected/
Forum Rules,    The BC Welcome Guide

167 @ June 2015


#9 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,221 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:04:42 AM

Posted 25 May 2013 - 10:18 PM

take your time..
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#10 rotor123

rotor123

  • Moderator
  • 8,093 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:New Jersey
  • Local time:04:42 AM

Posted 27 May 2013 - 08:52 AM

Hi Boopme

 

Here are the first two logs, I had to rename them to .com to get them to run.I got the error "choose the program You want to open this program" Where it offered Internet Explorer as its choice.

 

I could not get eset to work. I tried the installer and the online version. The on line version gave an error when it got to the download signatures after I selected all the options.

 

It appears that file associations are messed up? Or is that some Malware? Not really my field.

 

Here is the tdsskiller log

09:29:09.0832 1368  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
09:29:09.0863 1368  ============================================================
09:29:09.0863 1368  Current date / time: 2013/05/27 09:29:09.0863
09:29:09.0863 1368  SystemInfo:
09:29:09.0863 1368  
09:29:09.0863 1368  OS Version: 6.0.6002 ServicePack: 2.0
09:29:09.0863 1368  Product type: Workstation
09:29:09.0863 1368  ComputerName: GARGANOF-PC
09:29:09.0863 1368  UserName: garganof
09:29:09.0863 1368  Windows directory: C:\Windows
09:29:09.0863 1368  System windows directory: C:\Windows
09:29:09.0863 1368  Processor architecture: Intel x86
09:29:09.0863 1368  Number of processors: 2
09:29:09.0863 1368  Page size: 0x1000
09:29:09.0863 1368  Boot type: Safe boot with network
09:29:09.0863 1368  ============================================================
09:29:20.0409 1368  Drive \Device\Harddisk0\DR0 - Size: 0xAEA8CDE000 (698.64 Gb), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
09:29:20.0409 1368  Drive \Device\Harddisk1\DR2 - Size: 0x780C00000 (30.01 Gb), SectorSize: 0x200, Cylinders: 0xF4D, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
09:29:20.0424 1368  ============================================================
09:29:20.0424 1368  \Device\Harddisk0\DR0:
09:29:20.0424 1368  MBR partitions:
09:29:20.0424 1368  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x57545000
09:29:20.0424 1368  \Device\Harddisk1\DR2:
09:29:20.0424 1368  MBR partitions:
09:29:20.0424 1368  \Device\Harddisk1\DR2\Partition1: MBR, Type 0xB, StartLBA 0x100, BlocksNum 0x3C05F00
09:29:20.0424 1368  ============================================================
09:29:20.0455 1368  C: <-> \Device\Harddisk0\DR0\Partition1
09:29:20.0455 1368  ============================================================
09:29:20.0455 1368  Initialize success
09:29:20.0455 1368  ============================================================
09:29:50.0626 0640  ============================================================
09:29:50.0626 0640  Scan started
09:29:50.0626 0640  Mode: Manual; TDLFS;
09:29:50.0626 0640  ============================================================
09:29:52.0030 0640  ================ Scan system memory ========================
09:29:52.0030 0640  System memory - ok
09:29:52.0045 0640  ================ Scan services =============================
09:29:52.0233 0640  [ 82B296AE1892FE3DBEE00C9CF92F8AC7 ] ACPI            C:\Windows\system32\drivers\acpi.sys
09:29:52.0248 0640  ACPI - ok
09:29:52.0389 0640  [ 6D182C31ACF16213407F2768F1107FE3 ] Adobe LM Service C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
09:29:52.0389 0640  Adobe LM Service - ok
09:29:52.0513 0640  [ 3927397AC60D943DAF8808AFFED582B7 ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
09:29:52.0513 0640  AdobeARMservice - ok
09:29:52.0623 0640  [ F040037B149FD0F5A5044AE563390FA7 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
09:29:52.0638 0640  AdobeFlashPlayerUpdateSvc - ok
09:29:52.0685 0640  [ 04F0FCAC69C7C71A3AC4EB97FAFC8303 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
09:29:52.0701 0640  adp94xx - ok
09:29:52.0732 0640  [ 60505E0041F7751BDBB80F88BF45C2CE ] adpahci         C:\Windows\system32\drivers\adpahci.sys
09:29:52.0732 0640  adpahci - ok
09:29:52.0747 0640  [ 8A42779B02AEC986EAB64ECFC98F8BD7 ] adpu160m        C:\Windows\system32\drivers\adpu160m.sys
09:29:52.0747 0640  adpu160m - ok
09:29:52.0779 0640  [ 241C9E37F8CE45EF51C3DE27515CA4E5 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
09:29:52.0779 0640  adpu320 - ok
09:29:52.0841 0640  [ 9D1FDA9E086BA64E3C93C9DE32461BCF ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
09:29:52.0841 0640  AeLookupSvc - ok
09:29:53.0028 0640  [ 087B04CA45E2F059A55709B0B8F95EA9 ] AESTFilters     C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_ae0b52e0\aestsrv.exe
09:29:53.0044 0640  AESTFilters - ok
09:29:53.0091 0640  [ 3911B972B55FEA0478476B2E777B29FA ] AFD             C:\Windows\system32\drivers\afd.sys
09:29:53.0106 0640  AFD - ok
09:29:53.0137 0640  [ 13F9E33747E6B41A3FF305C37DB0D360 ] agp440          C:\Windows\system32\drivers\agp440.sys
09:29:53.0137 0640  agp440 - ok
09:29:53.0153 0640  [ AE1FDF7BF7BB6C6A70F67699D880592A ] aic78xx         C:\Windows\system32\drivers\djsvs.sys
09:29:53.0169 0640  aic78xx - ok
09:29:53.0200 0640  [ A1545B731579895D8CC44FC0481C1192 ] ALG             C:\Windows\System32\alg.exe
09:29:53.0200 0640  ALG - ok
09:29:53.0231 0640  [ 9EAEF5FC9B8E351AFA7E78A6FAE91F91 ] aliide          C:\Windows\system32\drivers\aliide.sys
09:29:53.0231 0640  aliide - ok
09:29:53.0247 0640  [ C47344BC706E5F0B9DCE369516661578 ] amdagp          C:\Windows\system32\drivers\amdagp.sys
09:29:53.0262 0640  amdagp - ok
09:29:53.0278 0640  [ 9B78A39A4C173FDBC1321E0DD659B34C ] amdide          C:\Windows\system32\drivers\amdide.sys
09:29:53.0278 0640  amdide - ok
09:29:53.0293 0640  [ 18F29B49AD23ECEE3D2A826C725C8D48 ] AmdK7           C:\Windows\system32\drivers\amdk7.sys
09:29:53.0293 0640  AmdK7 - ok
09:29:53.0309 0640  [ 93AE7F7DD54AB986A6F1A1B37BE7442D ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
09:29:53.0309 0640  AmdK8 - ok
09:29:53.0449 0640  [ C2170E010C9B6739A136211FC0427527 ] AntiVirSchedulerService C:\Program Files\Avira\AntiVir Desktop\sched.exe
09:29:53.0527 0640  AntiVirSchedulerService - ok
09:29:53.0559 0640  [ 47EB3F0EF84E0AF8AE75DB98EEF34255 ] AntiVirService  C:\Program Files\Avira\AntiVir Desktop\avguard.exe
09:29:53.0559 0640  AntiVirService - ok
09:29:53.0621 0640  [ 290446A23C0AC2442CBAC587A57C5AE0 ] AntiVirWebService C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE
09:29:53.0621 0640  AntiVirWebService - ok
09:29:53.0652 0640  [ C6D704C7F0434DC791AAC37CAC4B6E14 ] Appinfo         C:\Windows\System32\appinfo.dll
09:29:53.0652 0640  Appinfo - ok
09:29:53.0746 0640  [ 5D2888182FB46632511ACEE92FDAD522 ] arc             C:\Windows\system32\drivers\arc.sys
09:29:53.0746 0640  arc - ok
09:29:53.0777 0640  [ 5E2A321BD7C8B3624E41FDEC3E244945 ] arcsas          C:\Windows\system32\drivers\arcsas.sys
09:29:53.0777 0640  arcsas - ok
09:29:53.0808 0640  [ 53B202ABEE6455406254444303E87BE1 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
09:29:53.0808 0640  AsyncMac - ok
09:29:53.0855 0640  [ 1F05B78AB91C9075565A9D8A4B880BC4 ] atapi           C:\Windows\system32\drivers\atapi.sys
09:29:53.0855 0640  atapi - ok
09:29:53.0902 0640  [ 68E2A1A0407A66CF50DA0300852424AB ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
09:29:53.0917 0640  AudioEndpointBuilder - ok
09:29:53.0933 0640  [ 68E2A1A0407A66CF50DA0300852424AB ] Audiosrv        C:\Windows\System32\Audiosrv.dll
09:29:53.0949 0640  Audiosrv - ok
09:29:54.0011 0640  [ 87425709A251386064C99B684BF96F72 ] avgntflt        C:\Windows\system32\DRIVERS\avgntflt.sys
09:29:54.0027 0640  avgntflt - ok
09:29:54.0042 0640  [ D50FBA68163BC498F2C136E0E5BA8E2F ] avipbb          C:\Windows\system32\DRIVERS\avipbb.sys
09:29:54.0042 0640  avipbb - ok
09:29:54.0073 0640  [ CB8741CD7B126499FED40C9B197F6AC5 ] avkmgr          C:\Windows\system32\DRIVERS\avkmgr.sys
09:29:54.0073 0640  avkmgr - ok
09:29:54.0120 0640  [ F17463EDDB3B6A988F939FF403E067C3 ] b57nd60x        C:\Windows\system32\DRIVERS\b57nd60x.sys
09:29:54.0120 0640  b57nd60x - ok
09:29:54.0229 0640  [ 0D1EA7509F394D8B705B239EE71F5118 ] BBSvc           C:\Program Files\Microsoft\BingBar\BBSvc.EXE
09:29:54.0245 0640  BBSvc - ok
09:29:54.0245 0640  BCM42RLY - ok
09:29:54.0292 0640  [ CDF7F28FFD693B1B4137845DD1EF1CCC ] BCM43XV         C:\Windows\system32\DRIVERS\bcmwl6.sys
09:29:54.0307 0640  BCM43XV - ok
09:29:54.0323 0640  [ CDF7F28FFD693B1B4137845DD1EF1CCC ] BCM43XX         C:\Windows\system32\DRIVERS\bcmwl6.sys
09:29:54.0339 0640  BCM43XX - ok
09:29:54.0354 0640  [ 67E506B75BD5326A3EC7B70BD014DFB6 ] Beep            C:\Windows\system32\drivers\Beep.sys
09:29:54.0354 0640  Beep - ok
09:29:54.0401 0640  [ C789AF0F724FDA5852FB9A7D3A432381 ] BFE             C:\Windows\System32\bfe.dll
09:29:54.0417 0640  BFE - ok
09:29:54.0526 0640  [ 85D5E6AC46A2AE4672C1AC813AE45B95 ] BingDesktopUpdate C:\Program Files\Microsoft\BingDesktop\BingDesktopUpdater.exe
09:29:54.0526 0640  BingDesktopUpdate - ok
09:29:54.0619 0640  [ 93952506C6D67330367F7E7934B6A02F ] BITS            C:\Windows\system32\qmgr.dll
09:29:54.0713 0640  BITS - ok
09:29:54.0744 0640  [ D4DF28447741FD3D953526E33A617397 ] blbdrive        C:\Windows\system32\drivers\blbdrive.sys
09:29:54.0744 0640  blbdrive - ok
09:29:54.0807 0640  [ 35F376253F687BDE63976CCB3F2108CA ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
09:29:54.0807 0640  bowser - ok
09:29:54.0838 0640  [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo        C:\Windows\system32\drivers\brfiltlo.sys
09:29:54.0838 0640  BrFiltLo - ok
09:29:54.0869 0640  [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp        C:\Windows\system32\drivers\brfiltup.sys
09:29:54.0869 0640  BrFiltUp - ok
09:29:54.0900 0640  [ A3629A0C4226F9E9C72FAAEEBC3AD33C ] Browser         C:\Windows\System32\browser.dll
09:29:54.0900 0640  Browser - ok
09:29:55.0025 0640  [ 52C724DAC8ADDC50F593E331A9863979 ] Browser Defender Update Service C:\Program Files\PC Tools\PC Tools Security\BDT\BDTUpdateService.exe
09:29:55.0041 0640  Browser Defender Update Service - ok
09:29:55.0056 0640  [ B304E75CFF293029EDDF094246747113 ] Brserid         C:\Windows\system32\drivers\brserid.sys
09:29:55.0056 0640  Brserid - ok
09:29:55.0087 0640  [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm        C:\Windows\system32\drivers\brserwdm.sys
09:29:55.0087 0640  BrSerWdm - ok
09:29:55.0103 0640  [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm        C:\Windows\system32\drivers\brusbmdm.sys
09:29:55.0103 0640  BrUsbMdm - ok
09:29:55.0134 0640  [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer        C:\Windows\system32\drivers\brusbser.sys
09:29:55.0134 0640  BrUsbSer - ok
09:29:55.0150 0640  [ AD07C1EC6665B8B35741AB91200C6B68 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
09:29:55.0150 0640  BTHMODEM - ok
09:29:55.0165 0640  [ 7ADD03E75BEB9E6DD102C3081D29840A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
09:29:55.0165 0640  cdfs - ok
09:29:55.0212 0640  [ 6B4BFFB9BECD728097024276430DB314 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
09:29:55.0212 0640  cdrom - ok
09:29:55.0259 0640  [ 312EC3E37A0A1F2006534913E37B4423 ] CertPropSvc     C:\Windows\System32\certprop.dll
09:29:55.0259 0640  CertPropSvc - ok
09:29:55.0290 0640  [ E5D4133F37219DBCFE102BC61072589D ] circlass        C:\Windows\system32\drivers\circlass.sys
09:29:55.0290 0640  circlass - ok
09:29:55.0321 0640  [ D7659D3B5B92C31E84E53C1431F35132 ] CLFS            C:\Windows\system32\CLFS.sys
09:29:55.0337 0640  CLFS - ok
09:29:55.0415 0640  [ 8EE772032E2FE80A924F3B8DD5082194 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
09:29:55.0415 0640  clr_optimization_v2.0.50727_32 - ok
09:29:55.0524 0640  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
09:29:55.0587 0640  clr_optimization_v4.0.30319_32 - ok
09:29:55.0633 0640  [ 99AFC3795B58CC478FBBBCDC658FCB56 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
09:29:55.0633 0640  CmBatt - ok
09:29:55.0680 0640  [ 0CA25E686A4928484E9FDABD168AB629 ] cmdide          C:\Windows\system32\drivers\cmdide.sys
09:29:55.0680 0640  cmdide - ok
09:29:55.0680 0640  [ 6AFEF0B60FA25DE07C0968983EE4F60A ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
09:29:55.0680 0640  Compbatt - ok
09:29:55.0696 0640  COMSysApp - ok
09:29:55.0696 0640  [ 741E9DFF4F42D2D8477D0FC1DC0DF871 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
09:29:55.0696 0640  crcdisk - ok
09:29:55.0727 0640  [ 1F07BECDCA750766A96CDA811BA86410 ] Crusoe          C:\Windows\system32\drivers\crusoe.sys
09:29:55.0727 0640  Crusoe - ok
09:29:55.0774 0640  [ F1E8C34892336D33EDDCDFE44E474F64 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
09:29:55.0774 0640  CryptSvc - ok
09:29:55.0821 0640  [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] DcomLaunch      C:\Windows\system32\rpcss.dll
09:29:55.0836 0640  DcomLaunch - ok
09:29:55.0883 0640  [ 622C41A07CA7E6DD91770F50D532CB6C ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
09:29:55.0883 0640  DfsC - ok
09:29:55.0977 0640  [ 2CC3DCFB533A1035B13DCAB6160AB38B ] DFSR            C:\Windows\system32\DFSR.exe
09:29:56.0023 0640  DFSR - ok
09:29:56.0086 0640  [ 9028559C132146FB75EB7ACF384B086A ] Dhcp            C:\Windows\System32\dhcpcsvc.dll
09:29:56.0086 0640  Dhcp - ok
09:29:56.0148 0640  [ 5D4AEFC3386920236A548271F8F1AF6A ] disk            C:\Windows\system32\drivers\disk.sys
09:29:56.0148 0640  disk - ok
09:29:56.0304 0640  [ 31B7596EDD9505FCBB07670FB69CBB48 ] dldtCATSCustConnectService C:\Windows\system32\spool\DRIVERS\W32X86\3\\dldtserv.exe
09:29:56.0320 0640  dldtCATSCustConnectService - ok
09:29:56.0351 0640  dldt_device - ok
09:29:56.0398 0640  [ 57D762F6F5974AF0DA2BE88A3349BAAA ] Dnscache        C:\Windows\System32\dnsrslvr.dll
09:29:56.0413 0640  Dnscache - ok
09:29:56.0460 0640  [ 324FD74686B1EF5E7C19A8AF49E748F6 ] dot3svc         C:\Windows\System32\dot3svc.dll
09:29:56.0460 0640  dot3svc - ok
09:29:56.0491 0640  [ A622E888F8AA2F6B49E9BC466F0E5DEF ] DPS             C:\Windows\system32\dps.dll
09:29:56.0491 0640  DPS - ok
09:29:56.0538 0640  [ F7BDA38AFBDA04F0A89DEBA767EEDA79 ] DragonSvc       C:\Program Files\Common Files\Nuance\dgnsvc.exe
09:29:56.0554 0640  DragonSvc - ok
09:29:56.0632 0640  [ 97FEF831AB90BEE128C9AF390E243F80 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
09:29:56.0632 0640  drmkaud - ok
09:29:56.0694 0640  [ 5DE0FAEC9E5D1AAE74F8568897891A01 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
09:29:56.0710 0640  DXGKrnl - ok
09:29:56.0741 0640  [ 5425F74AC0C1DBD96A1E04F17D63F94C ] E1G60           C:\Windows\system32\DRIVERS\E1G60I32.sys
09:29:56.0757 0640  E1G60 - ok
09:29:56.0819 0640  [ C0B95E40D85CD807D614E264248A45B9 ] EapHost         C:\Windows\System32\eapsvc.dll
09:29:56.0819 0640  EapHost - ok
09:29:56.0819 0640  [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371 ] Ecache          C:\Windows\system32\drivers\ecache.sys
09:29:56.0835 0640  Ecache - ok
09:29:56.0913 0640  [ 9BE3744D295A7701EB425332014F0797 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
09:29:56.0928 0640  ehRecvr - ok
09:29:56.0944 0640  [ AD1870C8E5D6DD340C829E6074BF3C3F ] ehSched         C:\Windows\ehome\ehsched.exe
09:29:56.0944 0640  ehSched - ok
09:29:56.0959 0640  [ C27C4EE8926E74AA72EFCAB24C5242C3 ] ehstart         C:\Windows\ehome\ehstart.dll
09:29:56.0959 0640  ehstart - ok
09:29:56.0991 0640  [ 23B62471681A124889978F6295B3F4C6 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
09:29:57.0006 0640  elxstor - ok
09:29:57.0053 0640  [ 4E6B23DFC917EA39306B529B773950F4 ] EMDMgmt         C:\Windows\system32\emdmgmt.dll
09:29:57.0053 0640  EMDMgmt - ok
09:29:57.0084 0640  [ 3DB974F3935483555D7148663F726C61 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
09:29:57.0084 0640  ErrDev - ok
09:29:57.0178 0640  [ 67058C46504BC12D821F38CF99B7B28F ] EventSystem     C:\Windows\system32\es.dll
09:29:57.0178 0640  EventSystem - ok
09:29:57.0209 0640  [ 22B408651F9123527BCEE54B4F6C5CAE ] exfat           C:\Windows\system32\drivers\exfat.sys
09:29:57.0225 0640  exfat - ok
09:29:57.0271 0640  [ 1E9B9A70D332103C52995E957DC09EF8 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
09:29:57.0271 0640  fastfat - ok
09:29:57.0303 0640  [ AFE1E8B9782A0DD7FB46BBD88E43F89A ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
09:29:57.0303 0640  fdc - ok
09:29:57.0303 0640  [ 6629B5F0E98151F4AFDD87567EA32BA3 ] fdPHost         C:\Windows\system32\fdPHost.dll
09:29:57.0303 0640  fdPHost - ok
09:29:57.0334 0640  [ 89ED56DCE8E47AF40892778A5BD31FD2 ] FDResPub        C:\Windows\system32\fdrespub.dll
09:29:57.0334 0640  FDResPub - ok
09:29:57.0334 0640  [ A8C0139A884861E3AAE9CFE73B208A9F ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
09:29:57.0334 0640  FileInfo - ok
09:29:57.0365 0640  [ 0AE429A696AECBC5970E3CF2C62635AE ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
09:29:57.0365 0640  Filetrace - ok
09:29:57.0396 0640  [ 85B7CF99D532820495D68D747FDA9EBD ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
09:29:57.0396 0640  flpydisk - ok
09:29:57.0427 0640  [ 01334F9EA68E6877C4EF05D3EA8ABB05 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
09:29:57.0443 0640  FltMgr - ok
09:29:57.0505 0640  [ 8CE364388C8ECA59B14B539179276D44 ] FontCache       C:\Windows\system32\FntCache.dll
09:29:57.0521 0640  FontCache - ok
09:29:57.0568 0640  [ C7FBDD1ED42F82BFA35167A5C9803EA3 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
09:29:57.0568 0640  FontCache3.0.0.0 - ok
09:29:57.0630 0640  [ BFAAA92861526BB0ADCD01E964AB6609 ] fssfltr         C:\Windows\system32\DRIVERS\fssfltr.sys
09:29:57.0630 0640  fssfltr - ok
09:29:57.0724 0640  [ 40CDFAD174B3D5E80F95DDA003C0B97F ] fsssvc          C:\Program Files\Windows Live\Family Safety\fsssvc.exe
09:29:57.0755 0640  fsssvc - ok
09:29:57.0833 0640  [ B972A66758577E0BFD1DE0F91AAA27B5 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
09:29:57.0849 0640  Fs_Rec - ok
09:29:57.0880 0640  [ 34582A6E6573D54A07ECE5FE24A126B5 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
09:29:57.0880 0640  gagp30kx - ok
09:29:57.0942 0640  [ 8F6AE606EB0CC884EE12C41948424422 ] GoToAssist      C:\Program Files\Citrix\GoToAssist\615\g2aservice.exe
09:29:57.0942 0640  GoToAssist - ok
09:29:57.0973 0640  [ CD5D0AEEE35DFD4E986A5AA1500A6E66 ] gpsvc           C:\Windows\System32\gpsvc.dll
09:29:57.0989 0640  gpsvc - ok
09:29:58.0036 0640  [ 3F90E001369A07243763BD5A523D8722 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
09:29:58.0051 0640  HdAudAddService - ok
09:29:58.0098 0640  [ 062452B7FFD68C8C042A6261FE8DFF4A ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
09:29:58.0098 0640  HDAudBus - ok
09:29:58.0129 0640  [ 1338520E78D90154ED6BE8F84DE5FCEB ] HidBth          C:\Windows\system32\drivers\hidbth.sys
09:29:58.0145 0640  HidBth - ok
09:29:58.0161 0640  [ FF3160C3A2445128C5A6D9B076DA519E ] HidIr           C:\Windows\system32\drivers\hidir.sys
09:29:58.0161 0640  HidIr - ok
09:29:58.0192 0640  [ 84067081F3318162797385E11A8F0582 ] hidserv         C:\Windows\System32\hidserv.dll
09:29:58.0192 0640  hidserv - ok
09:29:58.0223 0640  [ CCA4B519B17E23A00B826C55716809CC ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
09:29:58.0223 0640  HidUsb - ok
09:29:58.0270 0640  [ D8AD255B37DA92434C26E4876DB7D418 ] hkmsvc          C:\Windows\system32\kmsvc.dll
09:29:58.0270 0640  hkmsvc - ok
09:29:58.0301 0640  [ 16EE7B23A009E00D835CDB79574A91A6 ] HpCISSs         C:\Windows\system32\drivers\hpcisss.sys
09:29:58.0301 0640  HpCISSs - ok
09:29:58.0348 0640  [ F870AA3E254628EBEAFE754108D664DE ] HTTP            C:\Windows\system32\drivers\HTTP.sys
09:29:58.0348 0640  HTTP - ok
09:29:58.0379 0640  [ C6B032D69650985468160FC9937CF5B4 ] i2omp           C:\Windows\system32\drivers\i2omp.sys
09:29:58.0379 0640  i2omp - ok
09:29:58.0379 0640  [ 22D56C8184586B7A1F6FA60BE5F5A2BD ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
09:29:58.0395 0640  i8042prt - ok
09:29:58.0426 0640  [ 54155EA1B0DF185878E0FC9EC3AC3A14 ] iaStorV         C:\Windows\system32\drivers\iastorv.sys
09:29:58.0426 0640  iaStorV - ok
09:29:58.0519 0640  [ 98477B08E61945F974ED9FDC4CB6BDAB ] idsvc           C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
09:29:58.0551 0640  idsvc - ok
09:29:58.0629 0640  [ 9378D57E2B96C0A185D844770AD49948 ] igfx            C:\Windows\system32\DRIVERS\igdkmd32.sys
09:29:58.0691 0640  igfx - ok
09:29:58.0722 0640  [ 2D077BF86E843F901D8DB709C95B49A5 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
09:29:58.0722 0640  iirsp - ok
09:29:58.0769 0640  [ 9908D8A397B76CD8D31D0D383C5773C9 ] IKEEXT          C:\Windows\System32\ikeext.dll
09:29:58.0785 0640  IKEEXT - ok
09:29:58.0816 0640  [ 83AA759F3189E6370C30DE5DC5590718 ] intelide        C:\Windows\system32\drivers\intelide.sys
09:29:58.0816 0640  intelide - ok
09:29:58.0847 0640  [ 224191001E78C89DFA78924C3EA595FF ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
09:29:58.0847 0640  intelppm - ok
09:29:58.0909 0640  [ 9AC218C6E6105477484C6FDBE7D409A4 ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
09:29:58.0909 0640  IPBusEnum - ok
09:29:58.0956 0640  [ 62C265C38769B864CB25B4BCF62DF6C3 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
09:29:58.0956 0640  IpFilterDriver - ok
09:29:59.0003 0640  [ 1998BD97F950680BB55F55A7244679C2 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
09:29:59.0019 0640  iphlpsvc - ok
09:29:59.0019 0640  IpInIp - ok
09:29:59.0050 0640  [ B25AAF203552B7B3491139D582B39AD1 ] IPMIDRV         C:\Windows\system32\drivers\ipmidrv.sys
09:29:59.0050 0640  IPMIDRV - ok
09:29:59.0081 0640  [ 8793643A67B42CEC66490B2A0CF92D68 ] IPNAT           C:\Windows\system32\DRIVERS\ipnat.sys
09:29:59.0081 0640  IPNAT - ok
09:29:59.0097 0640  [ 109C0DFB82C3632FBD11949B73AEEAC9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
09:29:59.0097 0640  IRENUM - ok
09:29:59.0112 0640  [ 6C70698A3E5C4376C6AB5C7C17FB0614 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
09:29:59.0128 0640  isapnp - ok
09:29:59.0159 0640  [ 232FA340531D940AAC623B121A595034 ] iScsiPrt        C:\Windows\system32\DRIVERS\msiscsi.sys
09:29:59.0175 0640  iScsiPrt - ok
09:29:59.0190 0640  [ BCED60D16156E428F8DF8CF27B0DF150 ] iteatapi        C:\Windows\system32\drivers\iteatapi.sys
09:29:59.0190 0640  iteatapi - ok
09:29:59.0221 0640  [ 06FA654504A498C30ADCA8BEC4E87E7E ] iteraid         C:\Windows\system32\drivers\iteraid.sys
09:29:59.0221 0640  iteraid - ok
09:29:59.0253 0640  [ 37605E0A8CF00CBBA538E753E4344C6E ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
09:29:59.0253 0640  kbdclass - ok
09:29:59.0284 0640  [ 18247836959BA67E3511B62846B9C2E0 ] kbdhid          C:\Windows\system32\drivers\kbdhid.sys
09:29:59.0284 0640  kbdhid - ok
09:29:59.0331 0640  [ A3E186B4B935905B829219502557314E ] KeyIso          C:\Windows\system32\lsass.exe
09:29:59.0331 0640  KeyIso - ok
09:29:59.0393 0640  [ 4A1445EFA932A3BAF5BDB02D7131EE20 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
09:29:59.0393 0640  KSecDD - ok
09:29:59.0440 0640  [ 8078F8F8F7A79E2E6B494523A828C585 ] KtmRm           C:\Windows\system32\msdtckrm.dll
09:29:59.0455 0640  KtmRm - ok
09:29:59.0549 0640  [ 1BF5EEBFD518DD7298434D8C862F825D ] LanmanServer    C:\Windows\System32\srvsvc.dll
09:29:59.0580 0640  LanmanServer - ok
09:29:59.0658 0640  [ 1DB69705B695B987082C8BAEC0C6B34F ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
09:29:59.0674 0640  LanmanWorkstation - ok
09:29:59.0689 0640  [ D1C5883087A0C3F1344D9D55A44901F6 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
09:29:59.0689 0640  lltdio - ok
09:29:59.0736 0640  [ 2D5A428872F1442631D0959A34ABFF63 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
09:29:59.0736 0640  lltdsvc - ok
09:29:59.0752 0640  [ 35D40113E4A5B961B6CE5C5857702518 ] lmhosts         C:\Windows\System32\lmhsvc.dll
09:29:59.0752 0640  lmhosts - ok
09:29:59.0783 0640  [ C7E15E82879BF3235B559563D4185365 ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
09:29:59.0783 0640  LSI_FC - ok
09:29:59.0814 0640  [ EE01EBAE8C9BF0FA072E0FF68718920A ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
09:29:59.0814 0640  LSI_SAS - ok
09:29:59.0830 0640  [ 912A04696E9CA30146A62AFA1463DD5C ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
09:29:59.0830 0640  LSI_SCSI - ok
09:29:59.0892 0640  [ 8F5C7426567798E62A3B3614965D62CC ] luafv           C:\Windows\system32\drivers\luafv.sys
09:29:59.0892 0640  luafv - ok
09:29:59.0923 0640  [ AEF9BABB8A506BC4CE0451A64AADED46 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
09:29:59.0939 0640  Mcx2Svc - ok
09:29:59.0955 0640  [ 0001CE609D66632FA17B84705F658879 ] megasas         C:\Windows\system32\drivers\megasas.sys
09:29:59.0970 0640  megasas - ok
09:30:00.0001 0640  [ C252F32CD9A49DBFC25ECF26EBD51A99 ] MegaSR          C:\Windows\system32\drivers\megasr.sys
09:30:00.0001 0640  MegaSR - ok
09:30:00.0033 0640  [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] MMCSS           C:\Windows\system32\mmcss.dll
09:30:00.0033 0640  MMCSS - ok
09:30:00.0064 0640  [ E13B5EA0F51BA5B1512EC671393D09BA ] Modem           C:\Windows\system32\drivers\modem.sys
09:30:00.0064 0640  Modem - ok
09:30:00.0079 0640  [ 0A9BB33B56E294F686ABB7C1E4E2D8A8 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
09:30:00.0079 0640  monitor - ok
09:30:00.0095 0640  [ 5BF6A1326A335C5298477754A506D263 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
09:30:00.0095 0640  mouclass - ok
09:30:00.0126 0640  [ 93B8D4869E12CFBE663915502900876F ] mouhid          C:\Windows\system32\drivers\mouhid.sys
09:30:00.0126 0640  mouhid - ok
09:30:00.0157 0640  [ BDAFC88AA6B92F7842416EA6A48E1600 ] MountMgr        C:\Windows\system32\drivers\mountmgr.sys
09:30:00.0157 0640  MountMgr - ok
09:30:00.0204 0640  [ CB8AF049AC9BE419A77ADAE288673359 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
09:30:00.0204 0640  MozillaMaintenance - ok
09:30:00.0251 0640  [ 511D011289755DD9F9A7579FB0B064E6 ] mpio            C:\Windows\system32\drivers\mpio.sys
09:30:00.0251 0640  mpio - ok
09:30:00.0267 0640  [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
09:30:00.0267 0640  mpsdrv - ok
09:30:00.0329 0640  [ 5DE62C6E9108F14F6794060A9BDECAEC ] MpsSvc          C:\Windows\system32\mpssvc.dll
09:30:00.0345 0640  MpsSvc - ok
09:30:00.0376 0640  [ 4FBBB70D30FD20EC51F80061703B001E ] Mraid35x        C:\Windows\system32\drivers\mraid35x.sys
09:30:00.0376 0640  Mraid35x - ok
09:30:00.0407 0640  [ 82CEA0395524AACFEB58BA1448E8325C ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
09:30:00.0407 0640  MRxDAV - ok
09:30:00.0469 0640  [ 1E94971C4B446AB2290DEB71D01CF0C2 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
09:30:00.0469 0640  mrxsmb - ok
09:30:00.0516 0640  [ 4FCCB34D793B116423209C0F8B7A3B03 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
09:30:00.0516 0640  mrxsmb10 - ok
09:30:00.0516 0640  [ C3CB1B40AD4A0124D617A1199B0B9D7C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
09:30:00.0532 0640  mrxsmb20 - ok
09:30:00.0563 0640  [ 5457DCFA7C0DA43522F4D9D4049C1472 ] msahci          C:\Windows\system32\drivers\msahci.sys
09:30:00.0563 0640  msahci - ok
09:30:00.0579 0640  [ 4468B0F385A86ECDDAF8D3CA662EC0E7 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
09:30:00.0579 0640  msdsm - ok
09:30:00.0610 0640  [ FD7520CC3A80C5FC8C48852BB24C6DED ] MSDTC           C:\Windows\System32\msdtc.exe
09:30:00.0610 0640  MSDTC - ok
09:30:00.0641 0640  [ A9927F4A46B816C92F461ACB90CF8515 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
09:30:00.0641 0640  Msfs - ok
09:30:00.0657 0640  [ 0F400E306F385C56317357D6DEA56F62 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
09:30:00.0657 0640  msisadrv - ok
09:30:00.0703 0640  [ 85466C0757A23D9A9AECDC0755203CB2 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
09:30:00.0703 0640  MSiSCSI - ok
09:30:00.0735 0640  msiserver - ok
09:30:00.0797 0640  [ D8C63D34D9C9E56C059E24EC7185CC07 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
09:30:00.0797 0640  MSKSSRV - ok
09:30:00.0828 0640  [ 1D373C90D62DDB641D50E55B9E78D65E ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
09:30:00.0828 0640  MSPCLOCK - ok
09:30:00.0859 0640  [ B572DA05BF4E098D4BBA3A4734FB505B ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
09:30:00.0859 0640  MSPQM - ok
09:30:00.0891 0640  [ B49456D70555DE905C311BCDA6EC6ADB ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
09:30:00.0891 0640  MsRPC - ok
09:30:00.0922 0640  [ E384487CB84BE41D09711C30CA79646C ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
09:30:00.0922 0640  mssmbios - ok
09:30:00.0937 0640  [ 7199C1EEC1E4993CAF96B8C0A26BD58A ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
09:30:00.0937 0640  MSTEE - ok
09:30:00.0937 0640  [ 6A57B5733D4CB702C8EA4542E836B96C ] Mup             C:\Windows\system32\Drivers\mup.sys
09:30:00.0937 0640  Mup - ok
09:30:01.0000 0640  [ E4EAF0C5C1B41B5C83386CF212CA9584 ] napagent        C:\Windows\system32\qagentRT.dll
09:30:01.0000 0640  napagent - ok
09:30:01.0078 0640  [ 85C44FDFF9CF7E72A40DCB7EC06A4416 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
09:30:01.0078 0640  NativeWifiP - ok
09:30:01.0093 0640  [ 1357274D1883F68300AEADD15D7BBB42 ] NDIS            C:\Windows\system32\drivers\ndis.sys
09:30:01.0093 0640  NDIS - ok
09:30:01.0109 0640  [ 0E186E90404980569FB449BA7519AE61 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
09:30:01.0109 0640  NdisTapi - ok
09:30:01.0171 0640  [ D6973AA34C4D5D76C0430B181C3CD389 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
09:30:01.0171 0640  Ndisuio - ok
09:30:01.0187 0640  [ 818F648618AE34F729FDB47EC68345C3 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
09:30:01.0187 0640  NdisWan - ok
09:30:01.0187 0640  [ 71DAB552B41936358F3B541AE5997FB3 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
09:30:01.0187 0640  NDProxy - ok
09:30:01.0203 0640  [ BCD093A5A6777CF626434568DC7DBA78 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
09:30:01.0203 0640  NetBIOS - ok
09:30:01.0218 0640  [ ECD64230A59CBD93C85F1CD1CAB9F3F6 ] netbt           C:\Windows\system32\DRIVERS\netbt.sys
09:30:01.0218 0640  netbt - ok
09:30:01.0234 0640  [ A3E186B4B935905B829219502557314E ] Netlogon        C:\Windows\system32\lsass.exe
09:30:01.0234 0640  Netlogon - ok
09:30:01.0265 0640  [ C8052711DAECC48B982434C5116CA401 ] Netman          C:\Windows\System32\netman.dll
09:30:01.0281 0640  Netman - ok
09:30:01.0296 0640  [ 2EF3BBE22E5A5ACD1428EE387A0D0172 ] netprofm        C:\Windows\System32\netprofm.dll
09:30:01.0312 0640  netprofm - ok
09:30:01.0359 0640  [ D6C4E4A39A36029AC0813D476FBD0248 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
09:30:01.0359 0640  NetTcpPortSharing - ok
09:30:01.0390 0640  [ 2E7FB731D4790A1BC6270ACCEFACB36E ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
09:30:01.0390 0640  nfrd960 - ok
09:30:01.0421 0640  [ 2997B15415F9BBE05B5A4C1C85E0C6A2 ] NlaSvc          C:\Windows\System32\nlasvc.dll
09:30:01.0421 0640  NlaSvc - ok
09:30:01.0437 0640  [ D36F239D7CCE1931598E8FB90A0DBC26 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
09:30:01.0437 0640  Npfs - ok
09:30:01.0452 0640  [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD ] nsi             C:\Windows\system32\nsisvc.dll
09:30:01.0452 0640  nsi - ok
09:30:01.0468 0640  [ 609773E344A97410CE4EBF74A8914FCF ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
09:30:01.0468 0640  nsiproxy - ok
09:30:01.0530 0640  [ 2C1121F2B87E9A6B12485DF53CD848C7 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
09:30:01.0561 0640  Ntfs - ok
09:30:01.0593 0640  [ E875C093AEC0C978A90F30C9E0DFBB72 ] ntrigdigi       C:\Windows\system32\drivers\ntrigdigi.sys
09:30:01.0593 0640  ntrigdigi - ok
09:30:01.0608 0640  [ C5DBBCDA07D780BDA9B685DF333BB41E ] Null            C:\Windows\system32\drivers\Null.sys
09:30:01.0608 0640  Null - ok
09:30:01.0639 0640  [ 2EDF9E7751554B42CBB60116DE727101 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
09:30:01.0639 0640  nvraid - ok
09:30:01.0655 0640  [ ABED0C09758D1D97DB0042DBB2688177 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
09:30:01.0655 0640  nvstor - ok
09:30:01.0717 0640  [ 18BBDF913916B71BD54575BDB6EEAC0B ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
09:30:01.0733 0640  nv_agp - ok
09:30:01.0733 0640  NwlnkFlt - ok
09:30:01.0749 0640  NwlnkFwd - ok
09:30:01.0858 0640  [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv          C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
09:30:01.0858 0640  odserv - ok
09:30:01.0889 0640  [ 6F310E890D46E246E0E261A63D9B36B4 ] ohci1394        C:\Windows\system32\DRIVERS\ohci1394.sys
09:30:01.0889 0640  ohci1394 - ok
09:30:01.0936 0640  [ 5A432A042DAE460ABE7199B758E8606C ] ose             C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
09:30:01.0951 0640  ose - ok
09:30:02.0014 0640  [ 0C8E8E61AD1EB0B250B846712C917506 ] p2pimsvc        C:\Windows\system32\p2psvc.dll
09:30:02.0014 0640  p2pimsvc - ok
09:30:02.0045 0640  [ 0C8E8E61AD1EB0B250B846712C917506 ] p2psvc          C:\Windows\system32\p2psvc.dll
09:30:02.0045 0640  p2psvc - ok
09:30:02.0061 0640  [ 0FA9B5055484649D63C303FE404E5F4D ] Parport         C:\Windows\system32\drivers\parport.sys
09:30:02.0061 0640  Parport - ok
09:30:02.0107 0640  [ B9C2B89F08670E159F7181891E449CD9 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
09:30:02.0107 0640  partmgr - ok
09:30:02.0139 0640  [ 4F9A6A8A31413180D0FCB279AD5D8112 ] Parvdm          C:\Windows\system32\drivers\parvdm.sys
09:30:02.0139 0640  Parvdm - ok
09:30:02.0185 0640  [ C6276AD11F4BB49B58AA1ED88537F14A ] PcaSvc          C:\Windows\System32\pcasvc.dll
09:30:02.0185 0640  PcaSvc - ok
09:30:02.0217 0640  [ 941DC1D19E7E8620F40BBC206981EFDB ] pci             C:\Windows\system32\drivers\pci.sys
09:30:02.0232 0640  pci - ok
09:30:02.0248 0640  [ FC175F5DDAB666D7F4D17449A547626F ] pciide          C:\Windows\system32\drivers\pciide.sys
09:30:02.0248 0640  pciide - ok
09:30:02.0279 0640  [ E6F3FB1B86AA519E7698AD05E58B04E5 ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
09:30:02.0279 0640  pcmcia - ok
09:30:02.0326 0640  [ 9DCE45B0DC51EBB7CD7063F8C3B086D0 ] PCTBD           C:\Windows\system32\Drivers\PCTBD.sys
09:30:02.0326 0640  PCTBD - ok
09:30:02.0357 0640  [ 6349F6ED9C623B44B52EA3C63C831A92 ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
09:30:02.0388 0640  PEAUTH - ok
09:30:02.0435 0640  [ B1689DF169143F57053F795390C99DB3 ] pla             C:\Windows\system32\pla.dll
09:30:02.0482 0640  pla - ok
09:30:02.0529 0640  [ C5E7F8A996EC0A82D508FD9064A5569E ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
09:30:02.0529 0640  PlugPlay - ok
09:30:02.0575 0640  [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPAutoReg     C:\Windows\system32\p2psvc.dll
09:30:02.0575 0640  PNRPAutoReg - ok
09:30:02.0607 0640  [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPsvc         C:\Windows\system32\p2psvc.dll
09:30:02.0607 0640  PNRPsvc - ok
09:30:02.0653 0640  [ D0494460421A03CD5225CCA0059AA146 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
09:30:02.0669 0640  PolicyAgent - ok
09:30:02.0685 0640  [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
09:30:02.0685 0640  PptpMiniport - ok
09:30:02.0716 0640  [ 2027293619DD0F047C584CF2E7DF4FFD ] Processor       C:\Windows\system32\drivers\processr.sys
09:30:02.0716 0640  Processor - ok
09:30:02.0763 0640  [ 0508FAA222D28835310B7BFCA7A77346 ] ProfSvc         C:\Windows\system32\profsvc.dll
09:30:02.0763 0640  ProfSvc - ok
09:30:02.0778 0640  [ A3E186B4B935905B829219502557314E ] ProtectedStorage C:\Windows\system32\lsass.exe
09:30:02.0778 0640  ProtectedStorage - ok
09:30:02.0856 0640  [ 99514FAA8DF93D34B5589187DB3AA0BA ] PSched          C:\Windows\system32\DRIVERS\pacer.sys
09:30:02.0856 0640  PSched - ok
09:30:02.0887 0640  [ 153D02480A0A2F45785522E814C634B6 ] PxHelp20        C:\Windows\system32\Drivers\PxHelp20.sys
09:30:02.0903 0640  PxHelp20 - ok
09:30:02.0950 0640  [ 0A6DB55AFB7820C99AA1F3A1D270F4F6 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
09:30:02.0981 0640  ql2300 - ok
09:30:03.0043 0640  [ 81A7E5C076E59995D54BC1ED3A16E60B ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
09:30:03.0043 0640  ql40xx - ok
09:30:03.0075 0640  [ E9ECAE663F47E6CB43962D18AB18890F ] QWAVE           C:\Windows\system32\qwave.dll
09:30:03.0075 0640  QWAVE - ok
09:30:03.0090 0640  [ 9F5E0E1926014D17486901C88ECA2DB7 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
09:30:03.0090 0640  QWAVEdrv - ok
09:30:03.0106 0640  [ 147D7F9C556D259924351FEB0DE606C3 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
09:30:03.0106 0640  RasAcd - ok
09:30:03.0121 0640  [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F ] RasAuto         C:\Windows\System32\rasauto.dll
09:30:03.0137 0640  RasAuto - ok
09:30:03.0137 0640  [ A214ADBAF4CB47DD2728859EF31F26B0 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
09:30:03.0137 0640  Rasl2tp - ok
09:30:03.0168 0640  [ 75D47445D70CA6F9F894B032FBC64FCF ] RasMan          C:\Windows\System32\rasmans.dll
09:30:03.0168 0640  RasMan - ok
09:30:03.0199 0640  [ 509A98DD18AF4375E1FC40BC175F1DEF ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
09:30:03.0199 0640  RasPppoe - ok
09:30:03.0215 0640  [ 2005F4A1E05FA09389AC85840F0A9E4D ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
09:30:03.0215 0640  RasSstp - ok
09:30:03.0246 0640  [ B14C9D5B9ADD2F84F70570BBBFAA7935 ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
09:30:03.0246 0640  rdbss - ok
09:30:03.0262 0640  [ 89E59BE9A564262A3FB6C4F4F1CD9899 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
09:30:03.0262 0640  RDPCDD - ok
09:30:03.0293 0640  [ FBC0BACD9C3D7F6956853F64A66E252D ] rdpdr           C:\Windows\system32\drivers\rdpdr.sys
09:30:03.0293 0640  rdpdr - ok
09:30:03.0309 0640  [ 9D91FE5286F748862ECFFA05F8A0710C ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
09:30:03.0309 0640  RDPENCDD - ok
09:30:03.0340 0640  [ C127EBD5AFAB31524662C48DFCEB773A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
09:30:03.0355 0640  RDPWD - ok
09:30:03.0465 0640  [ A0FF419B61AE47E26ADF3BB15DB4F2FE ] RealNetworks Downloader Resolver Service C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe
09:30:03.0465 0640  RealNetworks Downloader Resolver Service - ok
09:30:03.0511 0640  [ BCDD6B4804D06B1F7EBF29E53A57ECE9 ] RemoteAccess    C:\Windows\System32\mprdim.dll
09:30:03.0511 0640  RemoteAccess - ok
09:30:03.0527 0640  [ 9E6894EA18DAFF37B63E1005F83AE4AB ] RemoteRegistry  C:\Windows\system32\regsvc.dll
09:30:03.0543 0640  RemoteRegistry - ok
09:30:03.0589 0640  [ EA885E7A56F1BE1F14C372337C42FE48 ] rimmptsk        C:\Windows\system32\DRIVERS\rimmptsk.sys
09:30:03.0589 0640  rimmptsk - ok
09:30:03.0605 0640  [ D7E09BC852684A7B1FC0F74FE090D45A ] rimsptsk        C:\Windows\system32\DRIVERS\rimsptsk.sys
09:30:03.0605 0640  rimsptsk - ok
09:30:03.0605 0640  [ B0A7494A9BA7909EFAC64E05D3F160DB ] rismxdp         C:\Windows\system32\DRIVERS\rixdptsk.sys
09:30:03.0605 0640  rismxdp - ok
09:30:03.0636 0640  [ 5123F83CBC4349D065534EEB6BBDC42B ] RpcLocator      C:\Windows\system32\locator.exe
09:30:03.0636 0640  RpcLocator - ok
09:30:03.0683 0640  [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] RpcSs           C:\Windows\System32\rpcss.dll
09:30:03.0683 0640  RpcSs - ok
09:30:03.0699 0640  [ 9C508F4074A39E8B4B31D27198146FAD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
09:30:03.0699 0640  rspndr - ok
09:30:03.0714 0640  [ A3E186B4B935905B829219502557314E ] SamSs           C:\Windows\system32\lsass.exe
09:30:03.0714 0640  SamSs - ok
09:30:03.0745 0640  [ 3CE8F073A557E172B330109436984E30 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
09:30:03.0745 0640  sbp2port - ok
09:30:03.0777 0640  [ 77B7A11A0C3D78D3386398FBBEA1B632 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
09:30:03.0777 0640  SCardSvr - ok
09:30:03.0839 0640  [ 1A58069DB21D05EB2AB58EE5753EBE8D ] Schedule        C:\Windows\system32\schedsvc.dll
09:30:03.0855 0640  Schedule - ok
09:30:03.0901 0640  [ 312EC3E37A0A1F2006534913E37B4423 ] SCPolicySvc     C:\Windows\System32\certprop.dll
09:30:03.0901 0640  SCPolicySvc - ok
09:30:03.0917 0640  [ 8F36B54688C31EED4580129040C6A3D3 ] sdbus           C:\Windows\system32\DRIVERS\sdbus.sys
09:30:03.0917 0640  sdbus - ok
09:30:03.0948 0640  [ 716313D9F6B0529D03F726D5AAF6F191 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
09:30:03.0948 0640  SDRSVC - ok
09:30:03.0995 0640  [ 78779EE07231C658B483B1F38B5088DF ] SeaPort         C:\Program Files\Microsoft\BingBar\SeaPort.EXE
09:30:04.0011 0640  SeaPort - ok
09:30:04.0026 0640  [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
09:30:04.0026 0640  secdrv - ok
09:30:04.0042 0640  [ FD5199D4D8A521005E4B5EE7FE00FA9B ] seclogon        C:\Windows\system32\seclogon.dll
09:30:04.0042 0640  seclogon - ok
09:30:04.0057 0640  [ A9BBAB5759771E523F55563D6CBE140F ] SENS            C:\Windows\system32\sens.dll
09:30:04.0073 0640  SENS - ok
09:30:04.0089 0640  [ 68E44E331D46F0FB38F0863A84CD1A31 ] Serenum         C:\Windows\system32\drivers\serenum.sys
09:30:04.0089 0640  Serenum - ok
09:30:04.0120 0640  [ C70D69A918B178D3C3B06339B40C2E1B ] Serial          C:\Windows\system32\drivers\serial.sys
09:30:04.0120 0640  Serial - ok
09:30:04.0151 0640  [ 8AF3D28A879BF75DB53A0EE7A4289624 ] sermouse        C:\Windows\system32\drivers\sermouse.sys
09:30:04.0151 0640  sermouse - ok
09:30:04.0167 0640  [ D2193326F729B163125610DBF3E17D57 ] SessionEnv      C:\Windows\system32\sessenv.dll
09:30:04.0167 0640  SessionEnv - ok
09:30:04.0182 0640  [ 3EFA810BDCA87F6ECC24F9832243FE86 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
09:30:04.0182 0640  sffdisk - ok
09:30:04.0213 0640  [ E95D451F7EA3E583AEC75F3B3EE42DC5 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
09:30:04.0213 0640  sffp_mmc - ok
09:30:04.0245 0640  [ 3D0EA348784B7AC9EA9BD9F317980979 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
09:30:04.0245 0640  sffp_sd - ok
09:30:04.0276 0640  [ 46ED8E91793B2E6F848015445A0AC188 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
09:30:04.0276 0640  sfloppy - ok
09:30:04.0323 0640  [ E1499BD0FF76B1B2FBBF1AF339D91165 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
09:30:04.0338 0640  SharedAccess - ok
09:30:04.0385 0640  [ C7230FBEE14437716701C15BE02C27B8 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
09:30:04.0401 0640  ShellHWDetection - ok
09:30:04.0432 0640  [ 1D76624A09A054F682D746B924E2DBC3 ] sisagp          C:\Windows\system32\drivers\sisagp.sys
09:30:04.0432 0640  sisagp - ok
09:30:04.0463 0640  [ 43CB7AA756C7DB280D01DA9B676CFDE2 ] SiSRaid2        C:\Windows\system32\drivers\sisraid2.sys
09:30:04.0463 0640  SiSRaid2 - ok
09:30:04.0494 0640  [ A99C6C8B0BAA970D8AA59DDC50B57F94 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
09:30:04.0494 0640  SiSRaid4 - ok
09:30:04.0588 0640  [ 862BB4CBC05D80C5B45BE430E5EF872F ] slsvc           C:\Windows\system32\SLsvc.exe
09:30:04.0666 0640  slsvc - ok
09:30:04.0713 0640  [ 6EDC422215CD78AA8A9CDE6B30ABBD35 ] SLUINotify      C:\Windows\system32\SLUINotify.dll
09:30:04.0728 0640  SLUINotify - ok
09:30:04.0775 0640  [ 7B75299A4D201D6A6533603D6914AB04 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
09:30:04.0791 0640  Smb - ok
09:30:04.0806 0640  [ 2A146A055B4401C16EE62D18B8E2A032 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
09:30:04.0806 0640  SNMPTRAP - ok
09:30:04.0822 0640  [ 7AEBDEEF071FE28B0EEF2CDD69102BFF ] spldr           C:\Windows\system32\drivers\spldr.sys
09:30:04.0822 0640  spldr - ok
09:30:04.0869 0640  [ 8554097E5136C3BF9F69FE578A1B35F4 ] Spooler         C:\Windows\System32\spoolsv.exe
09:30:04.0884 0640  Spooler - ok
09:30:04.0931 0640  [ 41987F9FC0E61ADF54F581E15029AD91 ] srv             C:\Windows\system32\DRIVERS\srv.sys
09:30:04.0947 0640  srv - ok
09:30:05.0009 0640  [ FF33AFF99564B1AA534F58868CBE41EF ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
09:30:05.0009 0640  srv2 - ok
09:30:05.0056 0640  [ 7605C0E1D01A08F3ECD743F38B834A44 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
09:30:05.0056 0640  srvnet - ok
09:30:05.0071 0640  [ 03D50B37234967433A5EA5BA72BC0B62 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
09:30:05.0071 0640  SSDPSRV - ok
09:30:05.0149 0640  [ A36EE93698802CD899F98BFD553D8185 ] ssmdrv          C:\Windows\system32\DRIVERS\ssmdrv.sys
09:30:05.0149 0640  ssmdrv - ok
09:30:05.0181 0640  [ 6F1A32E7B7B30F004D9A20AFADB14944 ] SstpSvc         C:\Windows\system32\sstpsvc.dll
09:30:05.0181 0640  SstpSvc - ok
09:30:05.0337 0640  [ CB2449150A5EA17CAA0B94363D9440CC ] STacSV          C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_ae0b52e0\STacSV.exe
09:30:05.0337 0640  STacSV - ok
09:30:05.0368 0640  [ 14A9AD287FDA70A06463E09C4328C1F2 ] STHDA           C:\Windows\system32\DRIVERS\stwrt.sys
09:30:05.0368 0640  STHDA - ok
09:30:05.0430 0640  [ 5DE7D67E49B88F5F07F3E53C4B92A352 ] stisvc          C:\Windows\System32\wiaservc.dll
09:30:05.0430 0640  stisvc - ok
09:30:05.0477 0640  [ 7489520E98A119B5A9A00857F4F87D16 ] stllssvr        C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
09:30:05.0477 0640  stllssvr - ok
09:30:05.0508 0640  [ 7BA58ECF0C0A9A69D44B3DCA62BECF56 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
09:30:05.0508 0640  swenum - ok
09:30:05.0586 0640  [ F21FD248040681CCA1FB6C9A03AAA93D ] swprv           C:\Windows\System32\swprv.dll
09:30:05.0602 0640  swprv - ok
09:30:05.0617 0640  [ 192AA3AC01DF071B541094F251DEED10 ] Symc8xx         C:\Windows\system32\drivers\symc8xx.sys
09:30:05.0617 0640  Symc8xx - ok
09:30:05.0649 0640  [ 8C8EB8C76736EBAF3B13B633B2E64125 ] Sym_hi          C:\Windows\system32\drivers\sym_hi.sys
09:30:05.0649 0640  Sym_hi - ok
09:30:05.0695 0640  [ 8072AF52B5FD103BBBA387A1E49F62CB ] Sym_u3          C:\Windows\system32\drivers\sym_u3.sys
09:30:05.0695 0640  Sym_u3 - ok
09:30:05.0758 0640  [ 451E8037E2EB6DA6BDF0A66F65D1810B ] SynTP           C:\Windows\system32\DRIVERS\SynTP.sys
09:30:05.0758 0640  SynTP - ok
09:30:05.0773 0640  [ 9A51B04E9886AA4EE90093586B0BA88D ] SysMain         C:\Windows\system32\sysmain.dll
09:30:05.0789 0640  SysMain - ok
09:30:05.0805 0640  [ 2DCA225EAE15F42C0933E998EE0231C3 ] TabletInputService C:\Windows\System32\TabSvc.dll
09:30:05.0805 0640  TabletInputService - ok
09:30:05.0836 0640  [ D7673E4B38CE21EE54C59EEEB65E2483 ] TapiSrv         C:\Windows\System32\tapisrv.dll
09:30:05.0836 0640  TapiSrv - ok
09:30:05.0867 0640  [ CB05822CD9CC6C688168E113C603DBE7 ] TBS             C:\Windows\System32\tbssvc.dll
09:30:05.0867 0640  TBS - ok
09:30:05.0929 0640  [ 3535CD93F944C00F098E73E12EE7FEB6 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
09:30:05.0945 0640  Tcpip - ok
09:30:05.0976 0640  [ 3535CD93F944C00F098E73E12EE7FEB6 ] Tcpip6          C:\Windows\system32\DRIVERS\tcpip.sys
09:30:05.0976 0640  Tcpip6 - ok
09:30:06.0023 0640  [ CD21572F83F7EC6E2C20C465967BEDD9 ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
09:30:06.0023 0640  tcpipreg - ok
09:30:06.0054 0640  [ 5DCF5E267BE67A1AE926F2DF77FBCC56 ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
09:30:06.0054 0640  TDPIPE - ok
09:30:06.0085 0640  [ 389C63E32B3CEFED425B61ED92D3F021 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
09:30:06.0085 0640  TDTCP - ok
09:30:06.0132 0640  [ 76B06EB8A01FC8624D699E7045303E54 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
09:30:06.0132 0640  tdx - ok
09:30:06.0148 0640  [ 3CAD38910468EAB9A6479E2F01DB43C7 ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
09:30:06.0148 0640  TermDD - ok
09:30:06.0179 0640  [ BB95DA09BEF6E7A131BFF3BA5032090D ] TermService     C:\Windows\System32\termsrv.dll
09:30:06.0195 0640  TermService - ok
09:30:06.0226 0640  TfFsMon - ok
09:30:06.0241 0640  TfNetMon - ok
09:30:06.0257 0640  TFSysMon - ok
09:30:06.0288 0640  [ C7230FBEE14437716701C15BE02C27B8 ] Themes          C:\Windows\system32\shsvcs.dll
09:30:06.0288 0640  Themes - ok
09:30:06.0351 0640  [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] THREADORDER     C:\Windows\system32\mmcss.dll
09:30:06.0351 0640  THREADORDER - ok
09:30:06.0366 0640  [ EC74E77D0EB004BD3A809B5F8FB8C2CE ] TrkWks          C:\Windows\System32\trkwks.dll
09:30:06.0366 0640  TrkWks - ok
09:30:06.0413 0640  [ 97D9D6A04E3AD9B6C626B9931DB78DBA ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
09:30:06.0413 0640  TrustedInstaller - ok
09:30:06.0413 0640  [ DCF0F056A2E4F52287264F5AB29CF206 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
09:30:06.0413 0640  tssecsrv - ok
09:30:06.0429 0640  [ CAECC0120AC49E3D2F758B9169872D38 ] tunmp           C:\Windows\system32\DRIVERS\tunmp.sys
09:30:06.0429 0640  tunmp - ok
09:30:06.0475 0640  [ 300DB877AC094FEAB0BE7688C3454A9C ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
09:30:06.0475 0640  tunnel - ok
09:30:06.0491 0640  [ 7D33C4DB2CE363C8518D2DFCF533941F ] uagp35          C:\Windows\system32\drivers\uagp35.sys
09:30:06.0491 0640  uagp35 - ok
09:30:06.0522 0640  [ D9728AF68C4C7693CB100B8441CBDEC6 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
09:30:06.0522 0640  udfs - ok
09:30:06.0553 0640  [ ECEF404F62863755951E09C802C94AD5 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
09:30:06.0569 0640  UI0Detect - ok
09:30:06.0585 0640  [ B0ACFDC9E4AF279E9116C03E014B2B27 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
09:30:06.0600 0640  uliagpkx - ok
09:30:06.0631 0640  [ 9224BB254F591DE4CA8D572A5F0D635C ] uliahci         C:\Windows\system32\drivers\uliahci.sys
09:30:06.0631 0640  uliahci - ok
09:30:06.0663 0640  [ 8514D0E5CD0534467C5FC61BE94A569F ] UlSata          C:\Windows\system32\drivers\ulsata.sys
09:30:06.0663 0640  UlSata - ok
09:30:06.0694 0640  [ 38C3C6E62B157A6BC46594FADA45C62B ] ulsata2         C:\Windows\system32\drivers\ulsata2.sys
09:30:06.0694 0640  ulsata2 - ok
09:30:06.0694 0640  [ 32CFF9F809AE9AED85464492BF3E32D2 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
09:30:06.0694 0640  umbus - ok
09:30:06.0756 0640  [ 68308183F4AE0BE7BF8ECD07CB297999 ] upnphost        C:\Windows\System32\upnphost.dll
09:30:06.0756 0640  upnphost - ok
09:30:06.0834 0640  [ 32DB9517628FF0D070682AAB61E688F0 ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
09:30:06.0834 0640  usbaudio - ok
09:30:06.0881 0640  [ CAF811AE4C147FFCD5B51750C7F09142 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
09:30:06.0881 0640  usbccgp - ok
09:30:06.0897 0640  [ E9476E6C486E76BC4898074768FB7131 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
09:30:06.0912 0640  usbcir - ok
09:30:06.0928 0640  [ 79E96C23A97CE7B8F14D310DA2DB0C9B ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
09:30:06.0928 0640  usbehci - ok
09:30:06.0959 0640  [ 4673BBCB006AF60E7ABDDBE7A130BA42 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
09:30:06.0959 0640  usbhub - ok
09:30:06.0990 0640  [ 38DBC7DD6CC5A72011F187425384388B ] usbohci         C:\Windows\system32\drivers\usbohci.sys
09:30:07.0006 0640  usbohci - ok
09:30:07.0037 0640  [ E75C4B5269091D15A2E7DC0B6D35F2F5 ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
09:30:07.0037 0640  usbprint - ok
09:30:07.0115 0640  [ A508C9BD8724980512136B039BBA65E9 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
09:30:07.0115 0640  usbscan - ok
09:30:07.0146 0640  [ BE3DA31C191BC222D9AD503C5224F2AD ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
09:30:07.0146 0640  USBSTOR - ok
09:30:07.0146 0640  [ 814D653EFC4D48BE3B04A307ECEFF56F ] usbuhci         C:\Windows\system32\DRIVERS\usbuhci.sys
09:30:07.0162 0640  usbuhci - ok
09:30:07.0255 0640  [ 1509E705F3AC1D474C92454A5C2DD81F ] UxSms           C:\Windows\System32\uxsms.dll
09:30:07.0255 0640  UxSms - ok
09:30:07.0287 0640  [ CD88D1B7776DC17A119049742EC07EB4 ] vds             C:\Windows\System32\vds.exe
09:30:07.0287 0640  vds - ok
09:30:07.0318 0640  [ 87B06E1F30B749A114F74622D013F8D4 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
09:30:07.0318 0640  vga - ok
09:30:07.0349 0640  [ 2E93AC0A1D8C79D019DB6C51F036636C ] VgaSave         C:\Windows\System32\drivers\vga.sys
09:30:07.0349 0640  VgaSave - ok
09:30:07.0380 0640  [ 5D7159DEF58A800D5781BA3A879627BC ] viaagp          C:\Windows\system32\drivers\viaagp.sys
09:30:07.0380 0640  viaagp - ok
09:30:07.0411 0640  [ C4F3A691B5BAD343E6249BD8C2D45DEE ] ViaC7           C:\Windows\system32\drivers\viac7.sys
09:30:07.0411 0640  ViaC7 - ok
09:30:07.0427 0640  [ AADF5587A4063F52C2C3FED7887426FC ] viaide          C:\Windows\system32\drivers\viaide.sys
09:30:07.0427 0640  viaide - ok
09:30:07.0443 0640  [ 69503668AC66C77C6CD7AF86FBDF8C43 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
09:30:07.0443 0640  volmgr - ok
09:30:07.0521 0640  [ 23E41B834759917BFD6B9A0D625D0C28 ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
09:30:07.0521 0640  volmgrx - ok
09:30:07.0567 0640  [ 786DB5771F05EF300390399F626BF30A ] volsnap         C:\Windows\system32\drivers\volsnap.sys
09:30:07.0583 0640  volsnap - ok
09:30:07.0645 0640  [ 587253E09325E6BF226B299774B728A9 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
09:30:07.0645 0640  vsmraid - ok
09:30:07.0723 0640  [ DB3D19F850C6EB32BDCB9BC0836ACDDB ] VSS             C:\Windows\system32\vssvc.exe
09:30:07.0755 0640  VSS - ok
09:30:07.0817 0640  [ 96EA68B9EB310A69C25EBB0282B2B9DE ] W32Time         C:\Windows\system32\w32time.dll
09:30:07.0817 0640  W32Time - ok
09:30:07.0879 0640  [ 48DFEE8F1AF7C8235D4E626F0C4FE031 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
09:30:07.0879 0640  WacomPen - ok
09:30:07.0911 0640  [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarp          C:\Windows\system32\DRIVERS\wanarp.sys
09:30:07.0911 0640  Wanarp - ok
09:30:07.0926 0640  [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
09:30:07.0926 0640  Wanarpv6 - ok
09:30:07.0957 0640  [ A3CD60FD826381B49F03832590E069AF ] wcncsvc         C:\Windows\System32\wcncsvc.dll
09:30:07.0973 0640  wcncsvc - ok
09:30:08.0020 0640  [ 11BCB7AFCDD7AADACB5746F544D3A9C7 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
09:30:08.0020 0640  WcsPlugInService - ok
09:30:08.0035 0640  [ 78FE9542363F297B18C027B2D7E7C07F ] Wd              C:\Windows\system32\drivers\wd.sys
09:30:08.0035 0640  Wd - ok
09:30:08.0098 0640  [ A840213F1ACDCC175B4D1D5AAEAC0D7A ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
09:30:08.0113 0640  Wdf01000 - ok
09:30:08.0129 0640  [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiServiceHost  C:\Windows\system32\wdi.dll
09:30:08.0129 0640  WdiServiceHost - ok
09:30:08.0129 0640  [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiSystemHost   C:\Windows\system32\wdi.dll
09:30:08.0145 0640  WdiSystemHost - ok
09:30:08.0207 0640  [ 04C37D8107320312FBAE09926103D5E2 ] WebClient       C:\Windows\System32\webclnt.dll
09:30:08.0207 0640  WebClient - ok
09:30:08.0254 0640  [ AE3736E7E8892241C23E4EBBB7453B60 ] Wecsvc          C:\Windows\system32\wecsvc.dll
09:30:08.0269 0640  Wecsvc - ok
09:30:08.0285 0640  [ 670FF720071ED741206D69BD995EA453 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
09:30:08.0285 0640  wercplsupport - ok
09:30:08.0332 0640  [ 32B88481D3B326DA6DEB07B1D03481E7 ] WerSvc          C:\Windows\System32\WerSvc.dll
09:30:08.0332 0640  WerSvc - ok
09:30:08.0394 0640  [ 4575AA12561C5648483403541D0D7F2B ] WinDefend       C:\Program Files\Windows Defender\mpsvc.dll
09:30:08.0394 0640  WinDefend - ok
09:30:08.0410 0640  WinHttpAutoProxySvc - ok
09:30:08.0457 0640  [ 6B2A1D0E80110E3D04E6863C6E62FD8A ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
09:30:08.0472 0640  Winmgmt - ok
09:30:08.0519 0640  [ 7CFE68BDC065E55AA5E8421607037511 ] WinRM           C:\Windows\system32\WsmSvc.dll
09:30:08.0550 0640  WinRM - ok
09:30:08.0644 0640  [ C008405E4FEEB069E30DA1D823910234 ] Wlansvc         C:\Windows\System32\wlansvc.dll
09:30:08.0644 0640  Wlansvc - ok
09:30:08.0737 0640  [ 6067ACEF367E79914AF628FA1E9B5330 ] wlcrasvc        C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
09:30:08.0737 0640  wlcrasvc - ok
09:30:08.0815 0640  [ FB01D4AE207B9EFDBABFC55DC95C7E31 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
09:30:08.0847 0640  wlidsvc - ok
09:30:08.0847 0640  wltrysvc - ok
09:30:08.0878 0640  [ 2E7255D172DF0B8283CDFB7B433B864E ] WmiAcpi         C:\Windows\system32\DRIVERS\wmiacpi.sys
09:30:08.0878 0640  WmiAcpi - ok
09:30:08.0925 0640  [ 43BE3875207DCB62A85C8C49970B66CC ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
09:30:08.0925 0640  wmiApSrv - ok
09:30:08.0971 0640  [ 3978704576A121A9204F8CC49A301A9B ] WMPNetworkSvc   C:\Program Files\Windows Media Player\wmpnetwk.exe
09:30:08.0987 0640  WMPNetworkSvc - ok
09:30:09.0034 0640  [ CFC5A04558F5070CEE3E3A7809F3FF52 ] WPCSvc          C:\Windows\System32\wpcsvc.dll
09:30:09.0034 0640  WPCSvc - ok
09:30:09.0081 0640  [ 801FBDB89D472B3C467EB112A0FC9246 ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
09:30:09.0081 0640  WPDBusEnum - ok
09:30:09.0159 0640  [ DE9D36F91A4DF3D911626643DEBF11EA ] WpdUsb          C:\Windows\system32\DRIVERS\wpdusb.sys
09:30:09.0159 0640  WpdUsb - ok
09:30:09.0330 0640  [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
09:30:09.0346 0640  WPFFontCache_v0400 - ok
09:30:09.0393 0640  [ E3A3CB253C0EC2494D4A61F5E43A389C ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
09:30:09.0393 0640  ws2ifsl - ok
09:30:09.0455 0640  [ 1CA6C40261DDC0425987980D0CD2AAAB ] wscsvc          C:\Windows\system32\wscsvc.dll
09:30:09.0455 0640  wscsvc - ok
09:30:09.0517 0640  [ 4422AC5ED8D4C2F0DB63E71D4C069DD7 ] WSDPrintDevice  C:\Windows\system32\DRIVERS\WSDPrint.sys
09:30:09.0517 0640  WSDPrintDevice - ok
09:30:09.0533 0640  WSearch - ok
09:30:09.0611 0640  [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv        C:\Windows\system32\wuaueng.dll
09:30:09.0658 0640  wuauserv - ok
09:30:09.0689 0640  [ 06E6F32C8D0A3F66D956F57B43A2E070 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
09:30:09.0705 0640  WudfPf - ok
09:30:09.0736 0640  [ 867C301E8B790040AE9CF6486E8041DF ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
09:30:09.0736 0640  WUDFRd - ok
09:30:09.0783 0640  [ FE47B7BC8EA320C2D9B5E5BF6E303765 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
09:30:09.0783 0640  wudfsvc - ok
09:30:09.0861 0640  [ 12F9EAD58E8CA6C8377B0E61766C5A12 ] XobniService    C:\Program Files\Xobni\XobniService.exe
09:30:09.0861 0640  XobniService - ok
09:30:09.0876 0640  ================ Scan global ===============================
09:30:09.0970 0640  [ F31EEBC1A1C81FD04005489CC3DCDFE7 ] C:\Windows\system32\basesrv.dll
09:30:10.0032 0640  [ A508314231C49AEE86987CEA3EAECAD1 ] C:\Windows\system32\winsrv.dll
09:30:10.0048 0640  [ A508314231C49AEE86987CEA3EAECAD1 ] C:\Windows\system32\winsrv.dll
09:30:10.0126 0640  [ D4E6D91C1349B7BFB3599A6ADA56851B ] C:\Windows\system32\services.exe
09:30:10.0126 0640  [Global] - ok
09:30:10.0126 0640  ================ Scan MBR ==================================
09:30:10.0141 0640  [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
09:30:10.0875 0640  \Device\Harddisk0\DR0 - ok
09:30:10.0875 0640  [ DDAE9D649DB12F6AFF24483F2C298989 ] \Device\Harddisk1\DR2
09:30:11.0062 0640  \Device\Harddisk1\DR2 - ok
09:30:11.0062 0640  ================ Scan VBR ==================================
09:30:11.0077 0640  [ 502814CE7E8B3244AFDD9196E7164C6C ] \Device\Harddisk0\DR0\Partition1
09:30:11.0077 0640  \Device\Harddisk0\DR0\Partition1 - ok
09:30:11.0077 0640  [ 5DB5C7740846F5621B2C1BBB99255486 ] \Device\Harddisk1\DR2\Partition1
09:30:11.0093 0640  \Device\Harddisk1\DR2\Partition1 - ok
09:30:11.0093 0640  ============================================================
09:30:11.0093 0640  Scan finished
09:30:11.0093 0640  ============================================================
09:30:11.0093 0724  Detected object count: 0
09:30:11.0093 0724  Actual detected object count: 0
 

And here is the adwcleaner log

# AdwCleaner v2.301 - Logfile created 05/27/2013 at 09:32:33
# Updated 16/05/2013 by Xplode
# Operating system : Windows Vista ™ Home Premium Service Pack 2 (32 bits)
# User : garganof - GARGANOF-PC
# Boot Mode : Safe mode with networking
# Running from : C:\Users\garganof\Desktop\AdwCleaner.com
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

File Deleted : C:\Users\garganof\AppData\Roaming\Mozilla\Firefox\Profiles\56cv81mq.default\searchplugins\Askcom.xml
Folder Deleted : C:\Program Files\Ask.com
Folder Deleted : C:\Users\garganof\AppData\Local\AskToolbar
Folder Deleted : C:\Users\garganof\AppData\Local\Temp\AskSearch
Folder Deleted : C:\Users\garganof\AppData\LocalLow\AskToolbar
Folder Deleted : C:\Users\garganof\AppData\Roaming\Mozilla\Firefox\Profiles\56cv81mq.default\extensions\toolbar@ask.com
Folder Deleted : C:\Windows\Installer\{86D4B82A-ABED-442A-BE86-96357B70F4FE}

***** [Registry] *****

Key Deleted : HKCU\Software\APN
Key Deleted : HKCU\Software\AppDataLow\Software\AskToolbar
Key Deleted : HKCU\Software\Ask.com
Key Deleted : HKCU\Software\AskToolbar
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{79A765E1-C399-405B-85AF-466F52E918B0}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{79A765E1-C399-405B-85AF-466F52E918B0}
Key Deleted : HKLM\Software\APN
Key Deleted : HKLM\Software\AskToolbar
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{C17DC5CF-54FF-4E63-8AC7-94335D6DA231}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{D14D0EE2-2DD1-4230-BE70-3F3AD6172C40}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\GenericAskToolbar.DLL
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{00000000-6E41-4FD3-8538-502F5495E5FC}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{05366194-3126-4601-AC1A-DDE573E093DC}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{061F450C-37B9-4330-9235-0F25D9F75B33}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{19D2F415-D58B-46BC-9390-C03DCBC21EB2}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{22FEB0F5-0BA0-4D4B-8A66-55A21667BC31}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{26249267-15F4-4DA3-8247-C5A78E4FA918}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{39B217B4-8C69-4E45-A8DC-8CC4DAD3CF0A}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3CB4CE45-8849-4638-9226-D6B615A15827}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{43AB7B5D-4C40-4103-A549-7002A116A7D5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6E45F3E8-2683-4824-A6BE-08108022FB36}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{996ED20F-A740-47A2-A7EF-9620D422BB4E}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{9F0F16DD-4E76-4049-A9B1-7A91E48F0323}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{D2B79F7D-2D7D-4420-B2A9-ECE52C7C83A0}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F4288797-CB12-49CE-9DF8-7CDFA1143BEA}
Key Deleted : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd
Key Deleted : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd.1
Key Deleted : HKLM\Software\Classes\Installer\Features\A28B4D68DEBAA244EB686953B7074FEF
Key Deleted : HKLM\Software\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{061F450C-37B9-4330-9235-0F25D9F75B33}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{22FEB0F5-0BA0-4D4B-8A66-55A21667BC31}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D2B79F7D-2D7D-4420-B2A9-ECE52C7C83A0}
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHost.Tool
Key Deleted : HKLM\SOFTWARE\Classes\ScriptHost.Tool.1
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{1D55DAA5-04AC-4036-B0BE-DA81EE9676CD}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{212C2C4F-C845-4FBC-9561-C833A13D8DCE}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{3C5D1D57-16C8-473C-A552-37B8D88596FE}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{4A115D8A-6A7B-4C72-92B1-2E2D01F36979}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{58CBF821-A0C7-4AE8-9430-77DD1AF38E99}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{72BCBFF7-2837-4CA0-B3B5-3DAED7F54601}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{824125FD-7732-4DA2-9277-3A7D0A0A0813}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{99DF8440-814E-497F-BDDD-FB93E9E9DF96}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{83CAD530-387D-40FD-82EA-B9E863D92A9B}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C17DC5CF-54FF-4E63-8AC7-94335D6DA231}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D14D0EE2-2DD1-4230-BE70-3F3AD6172C40}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F994E0D9-8335-48F1-99C2-A712C21F8D5F}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\F928123A039649549966D4C29D35B1C9
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\00F1A65D97AD1E11D8D76334268807B9
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\029DEE7E67AD1E113852DB04268807B9
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\03576BC0A7AD1E1188A9A434268807B9
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\04CFD72C0A6D1E1179AC85E3268807B9
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\07B0B68797AD1E118A6A4E24268807B9
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0828D86187AD1E1129764B14268807B9
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\088A41FE97AD1E114BD41434268807B9
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\090E991ED42E1E11D93A5C2F168807B9
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0CFE535C35F99574E8340BFA75BF92C2
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E12F736682067FDE4D1158D5940A82E
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0F968E620A6D1E11B999E6D3268807B9
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF1D43997AD1E11FA430034268807B9
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\120DFADEB50841F408F04D2A278F9509
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1A24B5BB8521B03E0C8D908F5ABC0AE6
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2010C0B997AD1E111983F034268807B9
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\20414E2897AD1E116B041F24268807B9
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\241E1DAF97AD1E11CBD65434268807B9
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\261F213D1F55267499B1F87D0CC3BCF7
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2B0D56C4F4C46D844A57FFED6F0D2852
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2BDF3E992C0908741B7C11F4B4E0F775
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2D5CB10287AD1E112AF1CB14268807B9
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\41B9E26133CD1E114A4E096D168807B9
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\42B7416F0A6D1E112971B6E3268807B9
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\435ED11E0A6D1E1138C146E3268807B9
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\466B1A160A6D1E11DAFD1AD3268807B9
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49D4375FE41653242AEA4C969E4E65E0
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\600642CA97AD1E11EB30A134268807B9
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\61C07F78D42E1E113849882F168807B9
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\638A55350A6D1E114AE6C9D3268807B9
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\63C6A3960A6D1E1199A78AD3268807B9
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\65BE09BB77AD1E1129594214268807B9
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\67F9C62077AD1E11BA0CBC04268807B9
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6967575E4ADD1E11E9E591AF068807B9
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6A0601CF0A6D1E11EA66D6E3268807B9
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AA0923513360135B272E8289C5F13FA
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6B3BC4CF5ECE1F54BBA174C13A1AB907
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6D34269C97AD1E11DAE42334268807B9
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6DE790BA0A6D1E111B7A93E3268807B9
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6F7467AF8F29C134CBBAB394ECCFDE96
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6F874FC077AD1E11FB2CCC04268807B9
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\72D3312E1E95E8C4AAA81BADB30D5FC0
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\741B4ADF27276464790022C965AB6DA8
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\74E6A1B4EEAA8A942B405B51643FD2FC
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7DE196B10195F5647A2B21B761F3DE01
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\800967B40A6D1E1129B8C8D3268807B9
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\814DDE340A6D1E11B833B8D3268807B9
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\818F60F20A6D1E1149E987D3268807B9
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8225E07F67AD1E1138657C04268807B9
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\83011A2A97AD1E1139DD6134268807B9
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\85D3F53D0A6D1E112BC9F5E3268807B9
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\860F3B99848D1E119B5569D6168807B9
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\87B1CC30A7AD1E117BC59434268807B9
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8849E84D67AD1E11A8881B04268807B9
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8A7FEEA8848D1E11D8ABF7D6168807B9
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8B065BD72ADD1E116B25978F068807B9
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8B58DAA50A6D1E11C924D9D3268807B9
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8B8DC47DD42E1E119948EB2F168807B9
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8BCF643B0A6D1E113A80C4E3268807B9
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8C52E23087AD1E11BB364914268807B9
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\922525DCC5199162F8935747CA3D8E59
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\980D2637EBB4E31449BDFE2D7447AE03
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9D0E499F53381f84992C7A212CF1D8F5
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9D4F5849367142E4685ED8C25E44C5ED
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A301910E5ADD1E11CBD5C1BF068807B9
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A51CAA4F77AD1E116923D714268807B9
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A5875B04372C19545BEB90D4D606C472
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A6EA75AD0A6D1E116B9506E3268807B9
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A81E6B410A6D1E11B98E66D3268807B9
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A876D9E80B896EC44A8620248CC79296
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AD31AEF90A6D1E112B67A2E3268807B9
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AF79D8530A6D1E11296968D3268807B9
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B5BAE2ED018083A4C8DA86D6E3F4B024
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B66FFAB725B92594C986DE826A867888
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BA82713BF2918244BB38D4D3626E2F31
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BCDA179D619B91648538E3394CAC94CC
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BEABAA33A5E68374DBF197F2A00CD011
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C5A5C56BD42E1E11AA061B2F168807B9
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C61425DC0A6D1E11488AE5E3268807B9
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C6D6135E97AD1E11783A0434268807B9
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C6D68CEE0A6D1E1129B096E3268807B9
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CB5F24F10A6D1E118B7AD6D3268807B9
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CB61AF52AD64B6B45930BE969F316720
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CBE5FFA897AD1E11CA349F24268807B9
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CC46BC9AD42E1E11B93ADA2F168807B9
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D677B1A9671D4D4004F6F2A4469E86EA
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DD1402A9DD4215A43ABDE169A41AFA0E
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E0B84F7CD42E1E113A65AB2F168807B9
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E0C668D287AD1E117AAAFB14268807B9
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E318FDD30A6D1E115956A8D3268807B9
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E36E114A0EAD2AD46B381D23AD69CDDF
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E58C26300A6D1E11EBCF16D3268807B9
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E81243990A6D1E117B9C52E3268807B9
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E90A558E0A6D1E111A4356E3268807B9
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E942FF4ABC342DA42A4C40617E8ADC8C
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EF874E5B67AD1E113A7B2A04268807B9
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EF8E618DB3AEDFBB384561B5C548F65E
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A28B4D68DEBAA244EB686953B7074FEF
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [ApnUpdater]

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16483

[OK] Registry is clean.

-\\ Mozilla Firefox v15.0.1 (en-US)

File : C:\Users\garganof\AppData\Roaming\Mozilla\Firefox\Profiles\56cv81mq.default\prefs.js

Deleted : user_pref("browser.search.order.1", "Ask.com");
Deleted : user_pref("browser.search.defaultengine", "Ask.com");
Deleted : user_pref("extensions.asktb.ff-original-keyword-url", "");

-\\ Google Chrome v [Unable to get version]

File : C:\Users\garganof\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[S1].txt - [19709 octets] - [27/05/2013 09:32:33]

########## EOF - C:\AdwCleaner[S1].txt - [19770 octets] ##########
 

And since Eset would not run, there is no log for it.

 

Thank You

Roger


Edited by rotor123, 27 May 2013 - 08:54 AM.

Fortune Cookie says: Fortune not Found: Abort, Retry, Ignore?

Sent from my All-In-One Desktop. Perfect for Internet, Not for heavy usage or gaming however.

How Does a computer get Infected? http://www.bleepingcomputer.com/forums/t/2520/how-did-i-get-infected/
Forum Rules,    The BC Welcome Guide

167 @ June 2015


#11 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,221 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:04:42 AM

Posted 27 May 2013 - 09:26 PM

Try this one......
Please run the F-Secure Online Scanner
Follow the Instruction here for installation.
Accept the License Agreement.
Once the ActiveX installs,Click Full System Scan
Once the download completes, the scan will begin automatically.
The scan will take some time to finish, so please be patient.
When the scan completes, click the Automatic cleaning (recommended) button.
Click the Show Report button and Copy&Paste the entire report in your next reply.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#12 dj07

dj07

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:03:42 AM

Posted 29 May 2013 - 06:02 AM

It is always said to practice safe browsing while using Internet to keep you away from the spyware and backdoor threats. Clicking on any link is not appreciated in any condition. Look now, you have ended up with virus infection by doing the same. These backdoor threats and spyware not only harm your data but also create doorways for hackers and cyber criminals. You should be aware of these facts. Now you need to remove this virus infection as soon as possible. You can use a good and strong antivirus like Norton, Kaspersky, Immunet Protect Plus, Avast or any other that you want and perform a complete scan of your computer system. A complete scan will not only detect the infection, but it will also be quarantine and you will get rid of this backdoor infection easily. Hope this will help.



#13 rotor123

rotor123

  • Moderator
  • 8,093 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:New Jersey
  • Local time:04:42 AM

Posted 29 May 2013 - 08:14 AM

Hi, Boopme

 

F-Secure did not find anything nd I did not see any Log file. Then I had a mini brainstorm and tried the Eset Online scan again. I found where it was in the Program Files directory. I changed the extension from .exe to .com, ran it and this time it ran and downloaded the signatures so I am attaching the results from it here.

 

C:\Program Files\Avira\AntiVir Desktop\apnic.dll    a variant of Win32/Bundled.Toolbar.Ask application    cleaned by deleting - quarantined
C:\Program Files\Avira\AntiVir Desktop\apntoolbarinstaller.exe    a variant of Win32/Bundled.Toolbar.Ask application    cleaned by deleting - quarantined
 

dj07, I'll pass Your suggestions on to the laptops owner.

 

Thanks

Roger


Fortune Cookie says: Fortune not Found: Abort, Retry, Ignore?

Sent from my All-In-One Desktop. Perfect for Internet, Not for heavy usage or gaming however.

How Does a computer get Infected? http://www.bleepingcomputer.com/forums/t/2520/how-did-i-get-infected/
Forum Rules,    The BC Welcome Guide

167 @ June 2015


#14 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,221 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:04:42 AM

Posted 29 May 2013 - 10:34 AM

Does the fake still exist? If so we will need to post a DDS log.


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#15 rotor123

rotor123

  • Moderator
  • 8,093 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:New Jersey
  • Local time:04:42 AM

Posted 29 May 2013 - 11:00 AM

Hello, No the fake is not there, The normal looking desktop is there so something that Fran ran appears to have killed the fake. It has Internet now. When You give the all clear then I'll try Windows update as I'm sure it is out of date.

I haven't dug deep, but the one problem I know for sure is that .exe programs do not want to run from the desktop or flash drive. I didn't dig deeper. I do not know if that is just broken associations or some malware blocking them that blocks them but allows .com to run. I was thinking, A dangerous thing to do I know, I could run the windows repair tool. However so as not to cause confusion, I'm holding off.

 

BTW, I do have a spare Malwarebytes paid version to install if needed or when the computer is done. The Egg had a sale on them and I bought several. One is on my computer and I put one on my Brothers computer, The Third one was for my Sister in Washington state, But she doesn't want it and does everything from work or via her Ipad so I figure I'll use it in this laptop.

 

Thank You for the help

Roger


Fortune Cookie says: Fortune not Found: Abort, Retry, Ignore?

Sent from my All-In-One Desktop. Perfect for Internet, Not for heavy usage or gaming however.

How Does a computer get Infected? http://www.bleepingcomputer.com/forums/t/2520/how-did-i-get-infected/
Forum Rules,    The BC Welcome Guide

167 @ June 2015





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users